Avast 5 - nelze zapnout stit

[solaris104]

Dostal se mi do rukou zavirovany pocitac, kde bylo jeste AVG 6.0 . To jsem odinstaloval, nainstaloval posledni Avast Free a u nej nelze zapnout stit. Asi tam jeste neco je, co Avast neodhali pri testu po zapnuti. Taky mi nefunguje IPconfig, vypise chybu.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:04:32, on 21.4.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\totalcmd\TOTALCMD.EXE
g:\HijackThis.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.stahuj.cz
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Poskytovatel aplikace Microsoft Internet Explorer: Stahuj.cz
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - (no file)
O2 - BHO: QuickSearch SearchBar - {82315A18-6CFB-44a7-BDFD-90E36537C252} - C:\Program Files\QuickSearch\QuickSearchBar3_28.dll (file missing)
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: QuickSearch SearchBar - {82315A18-6CFB-44a7-BDFD-90E36537C252} - C:\Program Files\QuickSearch\QuickSearchBar3_28.dll (file missing)
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb08.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Microsoft Windows Game Updater] msgame32.exe
O4 - HKLM\..\Run: [wcmdmgr] C:\WINDOWS\wt\updater\wcmdmgrl.exe -launch
O4 - HKLM\..\Run: [wmvdiag] C:\WINDOWS\System32\wmvconf.exe
O4 - HKLM\..\Run: [uvnx] c:\windows\system32\uvnx.exe
O4 - HKLM\..\Run: [sysinter] C:\WINDOWS\System32\adirss.exe
O4 - HKLM\..\Run: [lnwin.exe] C:\WINDOWS\System32\lnwin.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\RunServices: [Microsoft Windows Game Updater] msgame32.exe
O4 - HKLM\..\RunServices: [SystemTools] C:\WINDOWS\System32\testeter.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredi ... xmk570YYCZ
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Stahuj.cz - {52B0995A-416B-493B-A7F8-A5385D07ECD8} - http://www.stahuj.cz (file missing) (HKCU)
O14 - IERESET.INF: START_PAGE_URL=http://www.stahuj.cz
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocach ... 0.0.15.cab
O16 - DPF: {A1426AC5-8CE5-4A00-B71E-011D35709AC6} (Progetto1.int_ver34) - http://advnt01.com/dialer/ce_ver34.CAB
O20 - AppInit_DLLs: confwmv.dll wmvstat.dll confjpg.dll jpgstat.dll e1.dll confdbg.dll dbgstat.dll confifc.dll ifcstat.dll
O20 - Winlogon Notify: crypt - crypts.dll (file missing)
O20 - Winlogon Notify: dbgmgr - ifcmgr32.dll (file missing)
O20 - Winlogon Notify: jpgmgr - jpgmgr32.dll (file missing)
O20 - Winlogon Notify: sysfldr - sysfldr.dll (file missing)
O20 - Winlogon Notify: wmvmgr - wmvmgr32.dll (file missing)
O20 - Winlogon Notify: xpspqdvd - C:\WINDOWS\System32\xpspqdvd.dll (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

--
End of file - 6126 bytes

[JaRon]

no kolko srandy
O4 - HKLM\..\Run: [Microsoft Windows Game Updater] msgame32.exe
O4 - HKLM\..\Run: [wmvdiag] C:\WINDOWS\System32\wmvconf.exe
O4 - HKLM\..\Run: [uvnx] c:\windows\system32\uvnx.exe
O4 - HKLM\..\Run: [sysinter] C:\WINDOWS\System32\adirss.exe
O4 - HKLM\..\Run: [lnwin.exe] C:\WINDOWS\System32\lnwin.exe
O4 - HKLM\..\RunServices: [Microsoft Windows Game Updater] msgame32.exe
O4 - HKLM\..\RunServices: [SystemTools] C:\WINDOWS\System32\testeter.exe
FIXni v HJT
restart a vloz log RSIT

[solaris104]

Logfile of random's system information tool 1.08 (written by random/random)
Run by BRAVE at 2011-04-21 10:54:00
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 30 GB (53%) free of 57 GB
Total RAM: 511 MB (58% free)

HijackThis download failed

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{82315A18-6CFB-44a7-BDFD-90E36537C252}]
QuickSearch SearchBar - C:\Program Files\QuickSearch\QuickSearchBar3_28.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-02-23 814160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{82315A18-6CFB-44a7-BDFD-90E36537C252} - QuickSearch SearchBar - C:\Program Files\QuickSearch\QuickSearchBar3_28.dll []
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-02-23 814160]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=NvQTwk,NvCplDaemon initialize []
"nwiz"=nwiz.exe /install []
"AGRSMMSG"=C:\WINDOWS\AGRSMMSG.exe [2002-09-25 87751]
"HPDJ Taskbar Utility"=C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb08.exe [2003-03-11 172032]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2004-01-09 77824]
"Cmaudio"=RunDll32 cmicnfg.cpl,CMICtrlWnd []
"OpwareSE4"=C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe [2007-02-04 79400]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-02-23 3451496]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" confwmv.dll wmvstat.dll confjpg.dll jpgstat.dll e1.dll confdbg.dll dbgstat.dll confifc.dll ifcstat.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt]
crypts.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dbgmgr]
ifcmgr32.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\jpgmgr]
jpgmgr32.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sysfldr]
sysfldr.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wmvmgr]
wmvmgr32.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\xpspqdvd]
C:\WINDOWS\System32\xpspqdvd.dll []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0x91000000

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2011-04-21 10:52:56 ----D---- C:\Program Files\trend micro
2011-04-21 10:52:54 ----DC---- C:\rsit
2011-04-21 09:18:26 ----D---- C:\WINDOWS\pss
2011-04-21 07:48:01 ----ASH---- C:\hiberfil.sys
2011-04-20 12:45:41 ----A---- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2011-04-20 12:45:40 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2011-04-20 12:45:38 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2011-04-20 12:45:37 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2011-04-20 12:45:37 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2011-04-20 12:45:35 ----A---- C:\WINDOWS\system32\drivers\aswmon2.sys
2011-04-20 12:45:35 ----A---- C:\WINDOWS\system32\drivers\aswmon.sys
2011-04-20 12:45:35 ----A---- C:\WINDOWS\system32\drivers\aavmker4.sys
2011-04-20 12:45:16 ----A---- C:\WINDOWS\system32\aswBoot.exe
2011-04-20 12:45:10 ----D---- C:\Program Files\AVAST Software
2011-04-20 12:45:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2011-04-20 12:37:06 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVG7
2011-04-20 11:41:37 ----A---- C:\WINDOWS\system32\drivers\Rtlnicxp.sys
2011-04-20 11:40:16 ----D---- C:\Program Files\totalcmd
2011-04-20 11:40:16 ----A---- C:\WINDOWS\UC.PIF
2011-04-20 11:40:16 ----A---- C:\WINDOWS\RAR.PIF
2011-04-20 11:40:16 ----A---- C:\WINDOWS\PKZIP.PIF
2011-04-20 11:40:16 ----A---- C:\WINDOWS\PKUNZIP.PIF
2011-04-20 11:40:16 ----A---- C:\WINDOWS\NOCLOSE.PIF
2011-04-20 11:40:16 ----A---- C:\WINDOWS\LHA.PIF
2011-04-20 11:40:16 ----A---- C:\WINDOWS\d.ini
2011-04-20 11:40:16 ----A---- C:\WINDOWS\ARJ.PIF
2011-04-20 10:47:54 ----D---- C:\WINDOWS\Prefetch
2011-04-20 09:44:13 ----N---- C:\WINDOWS\system32\msxml6r.dll
2011-04-20 09:44:13 ----N---- C:\WINDOWS\system32\msxml6.dll
2011-04-20 09:44:05 ----N---- C:\WINDOWS\system32\wmpdxm.dll
2011-04-20 09:44:04 ----N---- C:\WINDOWS\system32\wmpasf.dll
2011-04-20 09:44:04 ----N---- C:\WINDOWS\system32\wmp.dll
2011-04-20 09:44:04 ----N---- C:\WINDOWS\system32\wmerror.dll
2011-04-20 09:44:02 ----N---- C:\WINDOWS\system32\proxycfg.exe
2011-04-20 09:44:02 ----N---- C:\WINDOWS\system32\logman.exe
2011-04-20 09:43:59 ----N---- C:\WINDOWS\system32\auditusr.exe
2011-04-20 09:43:59 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2011-04-20 09:43:59 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2011-04-20 09:43:59 ----N---- C:\WINDOWS\system32\ati3duag.dll
2011-04-20 09:43:59 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2011-04-20 09:43:59 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2011-04-20 09:43:59 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2011-04-20 09:43:59 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2011-04-20 09:43:59 ----N---- C:\WINDOWS\system32\aaclient.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\dot3ui.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\dot3svc.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\dot3msm.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\dot3api.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\dimsroam.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\credssp.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\cmsetacl.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\btpanui.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\bthserv.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\bthci.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\blastcln.exe
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\bitsprx3.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\bitsprx2.dll
2011-04-20 09:43:58 ----N---- C:\WINDOWS\system32\azroles.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\kbdinmal.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\kbdinben.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\kbdinbe1.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\kbdfi1.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\ieencode.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\httpapi.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\fwcfg.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\fsquirt.exe
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\fltmc.exe
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\fltlib.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\extmgr.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\eapsvc.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\eapqec.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\eappprxy.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\eapphost.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\eappgnui.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\eappcfg.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2011-04-20 09:43:57 ----N---- C:\WINDOWS\system32\eapolqec.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\mssha.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\msdadiag.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\mmcperf.exe
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\mmcex.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\kmsvc.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\kbdukx.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\kbdsmsno.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\kbdsmsfi.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\kbdpash.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\kbdno1.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\kbdmlt48.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\kbdmlt47.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\kbdmaori.dll
2011-04-20 09:43:56 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\xpob2res.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\slextspk.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\slcoinst.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\setupn.exe
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\sdhcinst.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\s3gnb.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\rasqec.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\qutil.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\qcliprov.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\qagentrt.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\qagent.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\powercfg.exe
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\pnrpnsp.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\p2psvc.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\p2pnetsh.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\p2pgraph.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\p2pgasvc.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\p2p.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\onex.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\napstat.exe
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\napmontr.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\napipsec.dll
2011-04-20 09:43:55 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2011-04-20 09:43:54 ----N---- C:\WINDOWS\system32\xpsp3res.dll
2011-04-20 09:43:54 ----N---- C:\WINDOWS\system32\xpsp2res.dll
2011-04-20 09:43:54 ----N---- C:\WINDOWS\system32\w3ssl.dll
2011-04-20 09:43:54 ----N---- C:\WINDOWS\system32\verclsid.exe
2011-04-20 09:43:54 ----N---- C:\WINDOWS\system32\tzchange.exe
2011-04-20 09:43:54 ----N---- C:\WINDOWS\system32\twext.dll
2011-04-20 09:43:54 ----N---- C:\WINDOWS\system32\tspkg.dll
2011-04-20 09:43:54 ----N---- C:\WINDOWS\system32\tsgqec.dll
2011-04-20 09:43:54 ----N---- C:\WINDOWS\system32\strmfilt.dll
2011-04-20 09:43:54 ----N---- C:\WINDOWS\system32\smbinst.exe
2011-04-20 09:43:54 ----N---- C:\WINDOWS\system32\slserv.exe
2011-04-20 09:43:54 ----N---- C:\WINDOWS\system32\slrundll.exe
2011-04-20 09:43:54 ----N---- C:\WINDOWS\system32\slgen.dll
2011-04-20 09:43:53 ----N---- C:\WINDOWS\system32\xmlprovi.dll
2011-04-20 09:43:53 ----N---- C:\WINDOWS\system32\xmlprov.dll
2011-04-20 09:43:53 ----N---- C:\WINDOWS\system32\xmllite.dll
2011-04-20 09:43:53 ----N---- C:\WINDOWS\system32\wshbth.dll
2011-04-20 09:43:53 ----N---- C:\WINDOWS\system32\wscsvc.dll
2011-04-20 09:43:53 ----N---- C:\WINDOWS\system32\wscntfy.exe
2011-04-20 09:43:53 ----N---- C:\WINDOWS\system32\wmphoto.dll
2011-04-20 09:43:53 ----N---- C:\WINDOWS\system32\wlanapi.dll
2011-04-20 09:43:53 ----N---- C:\WINDOWS\system32\winshfhc.dll
2011-04-20 09:43:53 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2011-04-20 09:43:53 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2011-04-20 09:43:53 ----N---- C:\WINDOWS\slrundll.exe
2011-04-20 09:43:53 ----D---- C:\WINDOWS\system32\cs-cz
2011-04-20 09:43:52 ----D---- C:\WINDOWS\provisioning
2011-04-20 09:43:51 ----D---- C:\WINDOWS\system32\cs
2011-04-20 09:43:51 ----D---- C:\WINDOWS\l2schemas
2011-04-20 09:43:50 ----D---- C:\WINDOWS\system32\bits
2011-04-20 09:43:50 ----D---- C:\WINDOWS\peernet
2011-04-20 09:41:36 ----D---- C:\WINDOWS\ServicePackFiles
2011-04-20 09:39:44 ----D---- C:\WINDOWS\network diagnostic
2011-04-20 09:39:43 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2011-04-20 09:39:43 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2011-04-20 09:39:43 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2011-04-20 09:39:43 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2011-04-20 09:39:43 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2011-04-20 09:39:43 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2011-04-20 09:39:43 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2011-04-20 09:39:43 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2011-04-20 09:39:43 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2011-04-20 09:39:43 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2011-04-20 09:39:43 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2011-04-20 09:39:43 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2011-04-20 09:39:43 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2011-04-20 09:39:43 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2011-04-20 09:39:43 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2011-04-20 09:39:43 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2011-04-20 09:39:42 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2011-04-20 09:39:41 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2011-04-20 09:39:41 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2011-04-20 09:39:41 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2011-04-20 09:39:41 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2011-04-20 09:39:41 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2011-04-20 09:39:41 ----N---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2011-04-20 09:39:41 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2011-04-20 09:39:41 ----N---- C:\WINDOWS\system32\drivers\fltmgr.sys
2011-04-20 09:39:41 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2011-04-20 09:39:41 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2011-04-20 09:39:41 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2011-04-20 09:39:41 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2011-04-20 09:39:41 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2011-04-20 09:39:41 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2011-04-20 09:39:41 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2011-04-20 09:39:41 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2011-04-20 09:39:40 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2011-04-20 09:39:40 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2011-04-20 09:39:40 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2011-04-20 09:39:40 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2011-04-20 09:39:40 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2011-04-20 09:39:40 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2011-04-20 09:39:40 ----N---- C:\WINDOWS\system32\drivers\mssmbios.sys
2011-04-20 09:39:40 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2011-04-20 09:39:40 ----N---- C:\WINDOWS\system32\drivers\ip6fw.sys
2011-04-20 09:39:40 ----N---- C:\WINDOWS\system32\drivers\intelppm.sys
2011-04-20 09:39:40 ----N---- C:\WINDOWS\system32\drivers\http.sys
2011-04-20 09:39:40 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2011-04-20 09:39:39 ----N---- C:\WINDOWS\system32\drivers\uagp35.sys
2011-04-20 09:39:39 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2011-04-20 09:39:39 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2011-04-20 09:39:39 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2011-04-20 09:39:39 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2011-04-20 09:39:39 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2011-04-20 09:39:39 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2011-04-20 09:39:39 ----N---- C:\WINDOWS\system32\drivers\siint5.dll
2011-04-20 09:39:39 ----N---- C:\WINDOWS\system32\drivers\sffp_sd.sys
2011-04-20 09:39:39 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2011-04-20 09:39:39 ----N---- C:\WINDOWS\system32\drivers\sffdisk.sys
2011-04-20 09:39:39 ----N---- C:\WINDOWS\system32\drivers\sdbus.sys
2011-04-20 09:39:39 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2011-04-20 09:39:39 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2011-04-20 09:39:39 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2011-04-20 09:39:38 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2011-04-20 09:39:38 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2011-04-20 09:39:38 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2011-04-20 09:39:38 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2011-04-20 09:39:38 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2011-04-20 09:39:38 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2011-04-20 09:39:38 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2011-04-20 09:39:38 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2011-04-20 09:39:38 ----N---- C:\WINDOWS\system32\drivers\usbvideo.sys
2011-04-20 09:39:38 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2011-04-20 09:38:39 ----A---- C:\WINDOWS\002546_.tmp
2011-04-20 09:38:09 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2011-04-20 09:34:58 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2011-04-20 09:34:53 ----D---- C:\WINDOWS\EHome
2011-04-19 21:07:24 ----RA---- C:\WINDOWS\system32\drivers\Rtlnic.sys
2011-04-19 18:03:21 ----D---- C:\Documents and Settings\All Users\Data aplikací\CanonIJPLM
2011-04-19 17:59:50 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys
2011-04-19 17:59:12 ----A---- C:\WINDOWS\MAXLINK.INI
2011-04-19 17:59:11 ----D---- C:\Documents and Settings\All Users\Data aplikací\InstallShield
2011-04-19 17:58:58 ----D---- C:\Program Files\Common Files\ScanSoft Shared
2011-04-19 17:58:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\ScanSoft
2011-04-19 17:58:34 ----D---- C:\Program Files\ScanSoft
2011-04-19 17:55:53 ----HD---- C:\Documents and Settings\All Users\Data aplikací\CanonBJ
2011-04-19 17:55:43 ----A---- C:\WINDOWS\system32\CNMLM8R.DLL
2011-04-19 17:55:39 ----HD---- C:\WINDOWS\system32\CanonIJ Uninstaller Information
2011-04-19 17:55:30 ----A---- C:\WINDOWS\system32\cnco140.dll
2011-04-19 17:55:30 ----A---- C:\WINDOWS\system32\CNCL140.DLL
2011-04-19 17:55:30 ----A---- C:\WINDOWS\system32\CNCI140.DLL
2011-04-19 17:55:29 ----A---- C:\WINDOWS\system32\CNCC140.DLL
2011-04-19 17:55:18 ----HD---- C:\Program Files\CanonBJ
2011-04-19 17:54:35 ----D---- C:\Program Files\Canon
2011-04-19 08:43:01 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2011-04-16 09:56:55 ----A---- C:\WINDOWS\system32\usbui.dll
2011-04-16 09:56:55 ----A---- C:\WINDOWS\system32\drivers\usbport.sys
2011-04-16 09:56:55 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys
2011-04-16 09:56:54 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2011-04-16 09:56:45 ----A---- C:\WINDOWS\system32\drivers\usbuhci.sys
2011-04-16 09:56:04 ----A---- C:\WINDOWS\system32\drivers\pciidex.sys
2011-04-16 09:56:04 ----A---- C:\WINDOWS\system32\drivers\pciide.sys
2011-04-16 09:56:04 ----A---- C:\WINDOWS\system32\drivers\atapi.sys
2011-04-16 09:55:46 ----A---- C:\WINDOWS\system32\drivers\isapnp.sys
2011-04-16 09:55:32 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2011-04-16 09:55:21 ----A---- C:\WINDOWS\system32\drivers\agp440.sys

======List of files/folders modified in the last 1 months======

2011-04-21 10:52:56 ----AD---- C:\Program Files
2011-04-21 10:49:18 ----D---- C:\WINDOWS\Temp
2011-04-21 10:47:34 ----A---- C:\WINDOWS\WINCMD.INI
2011-04-21 10:45:56 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-04-21 10:36:40 ----D---- C:\WINDOWS
2011-04-21 09:49:11 ----D---- C:\Program Files\ICQLite
2011-04-21 09:49:08 ----D---- C:\Documents and Settings\BRAVE\Data aplikací\ICQLite
2011-04-21 07:24:46 ----A---- C:\WINDOWS\WSST_Screen_Saver.ini
2011-04-20 13:00:18 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-04-20 12:59:45 ----A---- C:\WINDOWS\ntbtlog.txt
2011-04-20 12:45:41 ----D---- C:\WINDOWS\system32\drivers
2011-04-20 12:45:31 ----SHD---- C:\WINDOWS\Installer
2011-04-20 12:45:29 ----D---- C:\WINDOWS\WinSxS
2011-04-20 12:45:28 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-04-20 12:45:16 ----AD---- C:\WINDOWS\system32
2011-04-20 12:43:52 ----DC---- C:\1ea8a8cda63584cbc82095932b9cb3
2011-04-20 12:41:17 ----D---- C:\WINDOWS\system
2011-04-20 12:40:11 ----SD---- C:\Documents and Settings\BRAVE\Data aplikací\Microsoft
2011-04-20 12:35:53 ----D---- C:\Program Files\Grisoft
2011-04-20 11:52:40 ----D---- C:\WINDOWS\system32\CatRoot2
2011-04-20 11:42:41 ----HD---- C:\WINDOWS\inf
2011-04-20 11:01:45 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-04-20 10:54:11 ----D---- C:\WINDOWS\security
2011-04-20 10:51:20 ----D---- C:\WINDOWS\Debug
2011-04-20 10:50:58 ----A---- C:\WINDOWS\OEWABLog.txt
2011-04-20 10:50:19 ----D---- C:\WINDOWS\system32\wbem
2011-04-20 10:48:37 ----A---- C:\WINDOWS\win.ini
2011-04-20 10:48:36 ----D---- C:\Program Files\Windows Media Player
2011-04-20 10:48:04 ----A---- C:\WINDOWS\setuplog.txt
2011-04-20 10:47:20 ----D---- C:\WINDOWS\AppPatch
2011-04-20 10:47:19 ----RSD---- C:\WINDOWS\Fonts
2011-04-20 10:47:19 ----D---- C:\WINDOWS\system32\Setup
2011-04-20 10:46:04 ----A---- C:\WINDOWS\imsins.BAK
2011-04-20 09:48:45 ----D---- C:\WINDOWS\system32\CatRoot
2011-04-20 09:47:32 ----RASHC---- C:\boot.ini
2011-04-20 09:44:16 ----D---- C:\Program Files\Messenger
2011-04-20 09:44:15 ----D---- C:\WINDOWS\Help
2011-04-20 09:44:13 ----RSHD---- C:\WINDOWS\system32\dllcache
2011-04-20 09:44:02 ----D---- C:\WINDOWS\ime
2011-04-20 09:43:53 ----D---- C:\WINDOWS\system32\oobe
2011-04-20 09:43:52 ----D---- C:\WINDOWS\system32\usmt
2011-04-20 09:43:51 ----D---- C:\Program Files\Internet Explorer
2011-04-20 09:43:50 ----D---- C:\WINDOWS\Media
2011-04-20 09:43:50 ----D---- C:\Program Files\Movie Maker
2011-04-20 09:41:30 ----D---- C:\WINDOWS\system32\Restore
2011-04-20 09:41:30 ----D---- C:\WINDOWS\system32\npp
2011-04-20 09:41:30 ----D---- C:\WINDOWS\msagent
2011-04-20 09:41:29 ----D---- C:\WINDOWS\srchasst
2011-04-20 09:41:27 ----D---- C:\Program Files\NetMeeting
2011-04-20 09:41:26 ----D---- C:\WINDOWS\system32\Com
2011-04-20 09:41:24 ----D---- C:\Program Files\Windows NT
2011-04-20 09:41:24 ----D---- C:\Program Files\Outlook Express
2011-04-20 09:41:19 ----D---- C:\Program Files\Common Files\System
2011-04-20 09:39:44 ----RD---- C:\WINDOWS\Web
2011-04-20 09:39:28 ----RASH---- C:\NTDETECT.COM
2011-04-20 09:38:31 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-04-19 20:54:42 ----D---- C:\Program Files\ESET
2011-04-19 20:50:13 ----A---- C:\WINDOWS\hpdj3500.ini
2011-04-19 17:58:58 ----D---- C:\Program Files\Common Files\InstallShield
2011-04-19 17:58:58 ----D---- C:\Program Files\Common Files
2011-04-19 17:55:38 ----D---- C:\WINDOWS\twain_32
2011-04-17 14:54:54 ----D---- C:\Demo
2011-04-16 10:07:27 ----A---- C:\WINDOWS\Ascd_tmp.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\System32\DRIVERS\agp440.sys [2008-04-14 42368]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2006-08-25 36528]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-08-10 50688]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sfvfs02;StarForce Protection VFS Driver (version 2.x); C:\WINDOWS\System32\drivers\sfvfs02.sys [2005-11-03 63488]
R0 viaagp;Filtr VIA sběrnice AGP ; C:\WINDOWS\System32\DRIVERS\viaagp.sys [2008-04-14 42240]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-02-23 30680]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-02-23 25432]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2011-02-23 371544]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-02-23 301528]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-02-23 49240]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2002-09-23 12032]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-02-23 19544]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-02-23 102232]
R2 Fallback;Fallback; C:\WINDOWS\System32\DRIVERS\HSF_FALL.sys [2001-08-17 289887]
R2 Fsks;Fsks; C:\WINDOWS\System32\DRIVERS\HSF_FSKS.sys [2001-08-17 115807]
R2 irda;Protokol IrDA; C:\WINDOWS\System32\DRIVERS\irda.sys [2008-04-14 88192]
R2 K56;K56; C:\WINDOWS\System32\DRIVERS\HSF_K56K.sys [2001-08-17 391199]
R2 SoftFax;SoftFax; C:\WINDOWS\System32\DRIVERS\HSF_FAXX.sys [2001-08-17 199711]
R2 SpeakerPhone;SpeakerPhone; C:\WINDOWS\System32\DRIVERS\HSF_SPKP.sys [2001-08-17 73279]
R2 Tones;Tones; C:\WINDOWS\System32\DRIVERS\HSF_TONE.sys [2001-08-17 50751]
R2 V124;V124; C:\WINDOWS\System32\DRIVERS\HSF_V124.sys [2001-08-17 488383]
R3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2005-05-12 1332544]
R3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2002-07-16 981466]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\System32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\System32\DRIVERS\Rtlnicxp.sys [2005-03-04 74496]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\System32\DRIVERS\amdk7.sys [2008-04-14 41600]
S1 nod32drv;nod32drv; C:\WINDOWS\system32\drivers\nod32drv.sys []
S1 pe386;Win23 lzx files loader; \??\C:\WINDOWS\System32:lzx32.sys []
S2 poof;poof; \??\C:\WINDOWS\System32\poof []
S2 wincom32;wincom32; \??\C:\WINDOWS\System32\wincom32.sys []
S3 AgereSoftModem;Microcom InPorte Home; C:\WINDOWS\System32\DRIVERS\AGRSM.sys [2002-09-25 1141248]
S3 basic2;basic2; C:\WINDOWS\System32\DRIVERS\HSF_BSC2.sys [2001-08-17 67167]
S3 EL90XBC;3Com EtherLink XL 90XB/C Adapter Driver; C:\WINDOWS\System32\DRIVERS\el90xbc5.sys [2001-08-17 66591]
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 HCF_MSFT;HCF_MSFT; C:\WINDOWS\System32\DRIVERS\HCF_MSFT.sys [2001-10-24 907456]
S3 hidgame;Microsoft Hid to Joystick Port Enabler; C:\WINDOWS\System32\DRIVERS\hidgame.sys [2001-08-17 8576]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 hsf_msft;hsf_msft; C:\WINDOWS\System32\DRIVERS\HSF_MSFT.sys [2001-08-17 542879]
S3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\System32\DRIVERS\irsir.sys [2001-08-17 18688]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:\WINDOWS\System32\DRIVERS\k750bus.sys [2006-12-26 55216]
S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:\WINDOWS\System32\DRIVERS\k750mdfl.sys [2006-12-26 6576]
S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:\WINDOWS\System32\DRIVERS\k750mdm.sys [2006-12-26 89872]
S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:\WINDOWS\System32\DRIVERS\k750mgmt.sys [2006-12-26 81728]
S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; C:\WINDOWS\System32\DRIVERS\k750obex.sys [2006-12-26 79488]
S3 kprof;kprof; \??\C:\WINDOWS\System32\kprof []
S3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
S3 nm;Ovladač programu Sledování sítě; C:\WINDOWS\System32\DRIVERS\NMnt.sys [2008-04-14 40320]
S3 Rksample;Rksample; C:\WINDOWS\System32\DRIVERS\HSF_SAMP.sys [2001-08-17 57471]
S3 RTL8023;TP-LINK 10/100Mbps PCI Network Adapter Driver; C:\WINDOWS\System32\DRIVERS\Rtlnic.sys [2004-12-02 70144]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [2008-04-13 20992]
S3 Ser2pl;Prolific Serial port driver; C:\WINDOWS\System32\DRIVERS\ser2pl.sys [2003-07-16 43264]
S3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-14 12288]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\System32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 VIAudio;VIA AC'97 Audio Controller (WDM); C:\WINDOWS\system32\drivers\viaudio.sys [2002-09-16 64128]
S3 vsdatant;vsdatant; \??\C:\WINDOWS\System32\vsdatant.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-02-23 42184]
R2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\System32\nvsvc32.exe [2002-07-16 61440]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\System32\wdfmgr.exe [2005-01-28 38912]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768]
S4 IJPLMSVC;PIXMA Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2006-11-10 99936]
S4 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [2001-02-23 270336]

-----------------EOF-----------------

[JaRon]

Presun ComboFix
na plochu (ak tam este nie je)

otvor si Poznamkovy blok - notepad

do neho zkopiruj skript z nasledujiceho okna:

Kód: Vybrat vše

Driver::
nod32drv
pe386
poof
wincom32

Registry::
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dbgmgr]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\jpgmgr]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sysfldr]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wmvmgr]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\xpspqdvd]

uloz vytvoreny textovy soubor ako CFScript.txt na plochu

po ulozeni uchop vytvoreny skript lavym tlacitkom mysi a presun ho nad ikonu Combofixu, nad nim skript upust:



po aplikacii by mal vzniknut dalsi log, ten vloz sem

[solaris104]

Tentokrat to bezelo dlouho:-)

ComboFix 11-04-20.03 - BRAVE 21.04.2011 12:18:05.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.511.293 [GMT 2:00]
Spuštěný z: c:\documents and settings\BRAVE\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\BRAVE\Plocha\CFScript.txt
AV: avast! Antivirus *Enabled/Outdated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\audiograbber\audiograbber.exe
c:\documents and settings\BRAVE\WINDOWS
c:\documents and settings\Monika\WINDOWS
c:\documents and settings\Patrik\WINDOWS
c:\program files\FunWebProducts
c:\program files\FunWebProducts\Shared\0005C76E.dat
c:\program files\FunWebProducts\Shared\00304B2A.dat
c:\program files\MyWebSearch
c:\program files\MyWebSearch\bar\2.bin\MWSBAR(2).DLL
c:\program files\MyWebSearch\bar\2.bin\MWSBAR(3).DLL
c:\program files\MyWebSearch\bar\2.bin\MWSBAR(4).DLL
c:\program files\MyWebSearch\bar\2.bin\MWSBAR.DLL
c:\windows\d.ini
c:\windows\dia6vm2.bmp
c:\windows\Downloaded Program Files\f3initialsetup1.0.0.15.inf
c:\windows\FreeOffers.ini
c:\windows\serrv.s
c:\windows\serrv.wax
c:\windows\system32\dlh9jkd1q8.exe
c:\windows\system32\pfxzmtsmtspm.dll
c:\windows\system32\pfxzmtwbmail.dll
c:\windows\system32\sfxzmtsmtspm.dll
c:\windows\system32\sfxzmtwbmail.dll
c:\windows\system32\vx.tll
c:\windows\system32\wincom32.ini
c:\windows\system32\zlbw.dll
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_POOF
-------\Legacy_WINCOM32
-------\Service_kprof
-------\Service_pe386
-------\Service_poof
-------\Service_wincom32
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-03-21 do 2011-04-21 )))))))))))))))))))))))))))))))
.
.
2011-04-21 08:52 . 2011-04-21 08:52 -------- d-----w- c:\program files\trend micro
2011-04-21 08:52 . 2011-04-21 08:53 -------- dc----w- C:\rsit
2011-04-20 10:45 . 2011-02-23 13:54 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-04-20 10:45 . 2011-02-23 13:56 301528 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-04-20 10:45 . 2011-02-23 13:55 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-04-20 10:45 . 2011-02-23 13:56 371544 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-04-20 10:45 . 2011-02-23 13:55 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-04-20 10:45 . 2011-02-23 13:55 102232 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-04-20 10:45 . 2011-02-23 13:55 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-04-20 10:45 . 2011-02-23 13:54 30680 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-04-20 10:45 . 2011-02-23 14:04 40648 ----a-w- c:\windows\avastSS.scr
2011-04-20 10:45 . 2011-02-23 14:04 190016 ----a-w- c:\windows\system32\aswBoot.exe
2011-04-20 10:45 . 2011-04-20 10:45 -------- d-----w- c:\program files\AVAST Software
2011-04-20 10:45 . 2011-04-20 10:45 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVAST Software
2011-04-20 10:37 . 2011-04-20 10:39 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVG7
2011-04-20 09:41 . 2005-03-04 09:10 74496 ----a-w- c:\windows\system32\drivers\Rtlnicxp.sys
2011-04-20 09:40 . 2011-04-20 09:40 -------- d-----w- c:\documents and settings\BRAVE\Local Settings\Data aplikací\GHISLER
2011-04-20 09:40 . 2011-04-20 09:40 -------- d-----w- c:\program files\totalcmd
2011-04-20 09:40 . 2010-12-17 05:56 545 ----a-w- c:\windows\UC.PIF
2011-04-20 09:40 . 2010-12-17 05:56 545 ----a-w- c:\windows\RAR.PIF
2011-04-20 09:40 . 2010-12-17 05:56 545 ----a-w- c:\windows\PKZIP.PIF
2011-04-20 09:40 . 2010-12-17 05:56 545 ----a-w- c:\windows\PKUNZIP.PIF
2011-04-20 09:40 . 2010-12-17 05:56 545 ----a-w- c:\windows\NOCLOSE.PIF
2011-04-20 09:40 . 2010-12-17 05:56 545 ----a-w- c:\windows\LHA.PIF
2011-04-20 09:40 . 2010-12-17 05:56 545 ----a-w- c:\windows\ARJ.PIF
2011-04-20 08:50 . 2011-04-20 08:50 -------- d-----w- c:\documents and settings\LocalService\Nabídka Start
2011-04-20 08:50 . 2011-04-20 08:50 -------- d-----w- c:\windows\system32\wbem\AutoRecover
2011-04-20 07:43 . 2008-04-14 06:52 9728 ------w- c:\windows\system32\ativdaxx.ax
2011-04-20 07:41 . 2011-04-20 07:41 -------- d-----w- c:\windows\ServicePackFiles
2011-04-20 07:38 . 2006-12-28 22:31 19569 ----a-w- c:\windows\002546_.tmp
2011-04-20 07:38 . 2007-08-10 18:43 26488 ----a-w- c:\windows\system32\spupdsvc.exe
2011-04-20 07:34 . 2011-04-20 07:34 -------- d-----w- c:\windows\EHome
2011-04-19 19:07 . 2004-12-02 08:36 70144 ----a-r- c:\windows\system32\drivers\Rtlnic.sys
2011-04-19 18:50 . 2003-03-11 09:04 266240 ----a-w- c:\windows\system32\hpdj3500
2011-04-19 18:18 . 2011-04-19 18:18 -------- d-----w- c:\documents and settings\BRAVE\Local Settings\Data aplikací\Scansoft
2011-04-19 16:03 . 2011-04-19 16:03 -------- d-----w- c:\documents and settings\All Users\Data aplikací\CanonIJPLM
2011-04-19 15:59 . 2008-04-13 22:15 15104 ----a-w- c:\windows\system32\drivers\usbscan.sys
2011-04-19 15:59 . 2011-04-19 15:59 -------- d-----w- c:\documents and settings\All Users\Data aplikací\InstallShield
2011-04-19 15:59 . 2011-04-19 15:59 -------- d-----w- c:\documents and settings\Monika\Data aplikací\ScanSoft
2011-04-19 15:58 . 2011-04-19 15:59 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ScanSoft
2011-04-19 15:58 . 2011-04-19 15:58 -------- d-----w- c:\program files\Common Files\ScanSoft Shared
2011-04-19 15:58 . 2011-04-19 15:58 -------- d-----w- c:\program files\ScanSoft
2011-04-19 15:55 . 2011-04-19 15:55 -------- d--h--w- c:\documents and settings\All Users\Data aplikací\CanonBJ
2011-04-19 15:55 . 2006-12-25 20:00 69632 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\CNMPP8R.DLL
2011-04-19 15:55 . 2006-12-25 20:00 27136 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\CNMPD8R.DLL
2011-04-19 15:55 . 2006-12-25 20:00 198656 ----a-w- c:\windows\system32\CNMLM8R.DLL
2011-04-19 15:55 . 2011-04-19 15:55 -------- d--h--w- c:\windows\system32\CanonIJ Uninstaller Information
2011-04-19 15:55 . 2006-11-10 01:59 57344 ----a-w- c:\windows\system32\CNCI140.DLL
2011-04-19 15:55 . 2006-06-29 05:29 106496 ----a-w- c:\windows\system32\cnco140.dll
2011-04-19 15:55 . 2006-05-26 01:54 135168 ----a-w- c:\windows\system32\CNCL140.DLL
2011-04-19 15:55 . 2006-11-10 02:00 1314816 ----a-w- c:\windows\system32\CNCC140.DLL
2011-04-19 15:54 . 2011-04-19 16:03 -------- d-----w- c:\program files\Canon
2011-04-19 06:43 . 2008-04-13 22:15 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2011-04-16 07:56 . 2008-04-14 06:52 75264 ----a-w- c:\windows\system32\usbui.dll
2011-04-16 07:56 . 2008-04-13 22:15 143872 ----a-w- c:\windows\system32\drivers\usbport.sys
2011-04-16 07:56 . 2008-04-13 22:15 30208 ----a-w- c:\windows\system32\drivers\usbehci.sys
2011-04-16 07:56 . 2008-04-13 22:15 59520 ----a-w- c:\windows\system32\drivers\usbhub.sys
2011-04-16 07:56 . 2008-04-13 22:15 20608 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2011-04-16 07:56 . 2008-04-13 22:10 96512 ----a-w- c:\windows\system32\drivers\atapi.sys
2011-04-16 07:56 . 2008-04-13 22:10 24960 ----a-w- c:\windows\system32\drivers\pciidex.sys
2011-04-16 07:56 . 2001-10-24 09:52 3328 ----a-w- c:\windows\system32\drivers\pciide.sys
2011-04-16 07:56 . 2001-10-24 09:52 3328 ----a-w- c:\windows\system32\dllcache\pciide.sys
2011-04-16 07:55 . 2008-04-14 05:57 37248 ----a-w- c:\windows\system32\drivers\isapnp.sys
2011-04-16 07:55 . 2008-04-14 06:10 68736 ----a-w- c:\windows\system32\drivers\pci.sys
2011-04-16 07:55 . 2008-04-13 22:06 42368 ----a-w- c:\windows\system32\drivers\agp440.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-04-21 11:02 . 2007-04-01 14:46 1409 ----a-w- c:\windows\QTFont.for
.
.
------- Sigcheck -------
.
[7] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tcpip.sys
[-] 2002-09-23 . 244A2F9816BC9B593957281EF577D976 . 332928 . . [5.1.2600.1106] . . c:\windows\$NtServicePackUninstall$\tcpip.sys
.
c:\windows\System32\drivers\tcpip.sys ... chybí !!
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-02-23 14:04 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="NvQTwk" [X]
"nwiz"="nwiz.exe" [2002-07-16 372736]
"AGRSMMSG"="AGRSMMSG.exe" [2002-09-25 87751]
"HPDJ Taskbar Utility"="c:\windows\System32\spool\drivers\w32x86\3\hpztsb08.exe" [2003-03-11 172032]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2004-01-09 77824]
"OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4\OpwareSE4.exe" [2007-02-04 79400]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-02-23 3451496]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [2000-1-21 65588]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [20.4.2011 12:45 371544]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [20.4.2011 12:45 301528]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [20.4.2011 12:45 19544]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Connection Wizard,ShellNext = iexplore
IE: &ICQ Toolbar Search - c:\program files\ICQToolbar\toolbaru.dll/SEARCH.HTML
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-Run-Cmaudio - cmicnfg.cpl
HKU-Default-Run-adirka - c:\windows\System32\adirka.exe
AddRemove-DesetiPrsty5 - c:\program files\DesetiPrsty\pmqUnInstall.exe
AddRemove-Indeo® Software - c:\program files\Ligos\Indeo\Uninst.isu
AddRemove-UWFX_5_is1 - c:\program files\WinFixer 2005\unins000.exe
AddRemove-wcmdmgr.exe - c:\windows\wt\updater\wcmdmgr.exe
AddRemove-wtwebdriver - c:\windows\wt\updater\wcmdmgr.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-04-21 13:09
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(492)
c:\program files\ScanSoft\OmniPageSE4\OpHookSE4.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\System32\nvsvc32.exe
c:\windows\System32\wdfmgr.exe
c:\windows\system32\wscntfy.exe
c:\windows\AGRSMMSG.exe
c:\windows\system32\RunDll32.exe
.
**************************************************************************
.
Celkový čas: 2011-04-21 13:22:41 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-04-21 11:22
.
Před spuštěním: Volných bajtů: 31 836 618 752
Po spuštění: Volných bajtů: 32 551 567 360
.
- - End Of File - - 8649000520C865686F9EFFB049AA634E

[solaris104]

Nahral jsem chybejici soubor tcpip.sys z c:\windows\ServicePackFiles\i386\tcpip.sys
do c:\windows\System32\drivers\tcpip.sys a Avast funguje a ipconfig take. Ted aktualizuji antivir a jsem na netu.

[JaRon]

super to bola riadna hroza
prescanuj este PC s MBAM a mozno aj hotovo ,,,