VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Vir pravděpodobně z FB ale je jich tu víc.

https://forum.viry.cz:443/viewtopic.php?t=115031

Stránka 2 z 3

Re: Vir pravděpodobně z FB ale je jich tu víc.

Napsal: 31 srp 2011 18:31
od cibetka9
windows nabehly, ale divne, nejprv skocila tabulka s vyberem :
microsoft windows recovery console
microsoft win. XP home edition
microsoft win. XP professional intalace
rovnou se to poslalo do instalace, kde to zamrzlo s napisem si3112r.sys poskozen
po restartu a zvoleni home edition nabehl v poradku
tady je log
ComboFix 11-08-30.02 - Michal 31.08.2011 19:18:10.4.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1023.689 [GMT 2:00]
Spuštěný z: c:\documents and settings\Michal\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Michal\Plocha\CFScript.txt
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
AV: Norton Internet Security *Disabled/Outdated* {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton Internet Security *Disabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
.
FILE ::
"c:\windows\Tasks\AppleSoftwareUpdate.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\unrar.exe"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\av_ico
c:\windows\av_ico\ico_avast_desktop.ico
c:\windows\av_ico\ico_avast_start.ico
c:\windows\av_ico\ico_mcafee_start.ico
c:\windows\av_ico\ico_NOD_AV_START.ico
c:\windows\av_ico\ico_NOD_SYSINSP.ico
c:\windows\av_ico\ico_NOD_SYSRESC.ico
c:\windows\av_ico\ico_NOD_TXT.ico
c:\windows\av_ico\ico_NOD_UNINSTALL.ico
c:\windows\av_ico\ico_norton_start.ico
c:\windows\Tasks\AppleSoftwareUpdate.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\ufa
c:\windows\ufa\ufa.exe
c:\windows\unrar.exe
c:\windows\update.8.1
c:\windows\update.tray-10-0-lnk
c:\windows\update.tray-10-0
c:\windows\update.tray-2-0-lnk
c:\windows\update.tray-2-0
c:\windows\update.tray-7-0-lnk
c:\windows\update.tray-7-0
c:\windows\update.tray-9-0-lnk
c:\windows\update.tray-9-0
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_GUPDATE
-------\Service_gupdate
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-07-28 do 2011-08-31 )))))))))))))))))))))))))))))))
.
.
2011-08-31 14:16 . 2011-08-31 14:17 -------- d-----w- C:\rsit
2011-08-31 14:16 . 2011-08-31 14:17 -------- d-----w- c:\program files\trend micro
2011-08-31 13:51 . 2011-08-31 13:51 -------- d-----w- c:\windows\system32\CatRoot_bak
2011-08-31 13:28 . 2011-08-31 13:28 -------- d-----w- C:\$WIN_NT$.~BT
2011-08-31 13:16 . 2011-08-31 13:16 -------- d-----w- c:\documents and settings\Michal\Data aplikací\SUPERAntiSpyware.com
2011-08-31 13:16 . 2011-08-31 13:16 -------- d-----w- c:\program files\SUPERAntiSpyware
2011-08-31 13:16 . 2011-08-31 13:16 -------- d-----w- c:\documents and settings\All Users\Data aplikací\SUPERAntiSpyware.com
2011-08-31 13:16 . 2011-08-31 13:16 -------- d-sh--w- c:\documents and settings\Michal\PrivacIE
2011-08-30 18:28 . 2011-08-30 18:28 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\ESET
2011-08-30 18:26 . 2011-08-30 18:26 -------- d-----w- c:\documents and settings\Michal\Local Settings\Data aplikací\ESET
2011-08-30 10:05 . 2008-10-15 04:22 4379984 ----a-w- c:\windows\system32\D3DX9_40.dll
2011-08-30 10:05 . 2007-05-16 14:45 3497832 ----a-w- c:\windows\system32\d3dx9_34.dll
2011-08-30 10:05 . 2011-08-30 10:05 -------- d-----w- c:\windows\Logs
2011-08-30 09:29 . 2011-08-30 09:29 268435456 --sha-w- C:\WinPEpge.sys
2011-08-30 09:02 . 2011-08-30 09:02 -------- d-----w- C:\$WINDOWS.~BT
2011-08-29 15:55 . 2011-08-29 15:55 -------- d-----w- c:\documents and settings\Administrator
2011-08-29 15:36 . 2011-08-29 15:36 -------- d-----w- c:\program files\CCleaner
2011-08-26 19:18 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2011-08-26 19:18 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2011-08-26 19:17 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2011-08-26 19:17 . 2004-08-18 12:00 611328 ----a-w- c:\windows\system32\dllcache\comctl32.dll
2011-08-26 19:16 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2011-08-26 19:16 . 2011-06-24 14:10 139656 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2011-08-26 19:15 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2011-08-25 23:13 . 2011-08-30 18:07 -------- d-----w- c:\windows\l2schemas
2011-08-25 23:13 . 2011-08-25 23:13 -------- d-----w- c:\windows\system32\cs
2011-08-25 23:13 . 2011-08-25 23:13 -------- d-----w- c:\windows\system32\bits
2011-08-25 23:05 . 2010-03-05 14:57 65536 ----a-w- c:\windows\system32\dllcache\asycfilt.dll
2011-08-25 23:04 . 2011-08-25 23:04 -------- d-----w- c:\windows\EHome
2011-08-25 18:11 . 2011-08-25 18:11 -------- d-----r- c:\documents and settings\LocalService\Oblíbené položky
2011-08-22 20:56 . 2011-08-30 16:51 -------- d-----w- c:\program files\Spybot - Search & Destroy
2011-08-22 20:56 . 2011-08-30 16:51 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Spybot - Search & Destroy
2011-08-22 17:08 . 2011-08-22 17:08 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
2011-08-22 17:03 . 2011-08-22 17:03 -------- d-sh--w- c:\documents and settings\Michal\IETldCache
2011-08-22 16:48 . 2011-06-23 18:31 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2011-08-22 16:48 . 2011-06-23 18:31 602112 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2011-08-22 16:48 . 2011-06-23 18:31 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2011-08-22 16:48 . 2011-06-23 18:31 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2011-08-22 16:48 . 2011-06-23 18:31 1991680 -c----w- c:\windows\system32\dllcache\iertutil.dll
2011-08-22 16:48 . 2011-06-23 18:31 11081728 -c----w- c:\windows\system32\dllcache\ieframe.dll
2011-08-22 16:48 . 2011-06-23 18:31 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2011-08-22 16:47 . 2011-08-25 23:13 -------- d-----w- c:\windows\system32\cs-CZ
2011-08-22 16:47 . 2011-08-22 16:48 -------- dc-h--w- c:\windows\ie8
2011-08-22 12:15 . 2011-07-04 11:36 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-08-22 12:14 . 2011-07-04 11:43 40112 ----a-w- c:\windows\avastSS.scr
2011-08-22 10:15 . 2011-08-22 10:15 -------- d-----w- c:\documents and settings\LocalService\Nabídka Start
2011-08-07 18:47 . 2011-08-07 18:47 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-08-30 18:12 . 2010-10-08 18:38 98304 ----a-w- c:\windows\DUMP9059.tmp
2011-07-04 11:43 . 2010-04-17 18:21 199304 ----a-w- c:\windows\system32\aswBoot.exe
2011-07-04 11:36 . 2010-04-17 18:21 309848 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-07-04 11:35 . 2010-04-17 18:21 43608 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-07-04 11:35 . 2010-04-17 18:21 102616 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-07-04 11:35 . 2010-04-17 18:21 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-07-04 11:32 . 2010-04-17 18:21 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-07-04 11:32 . 2010-04-17 18:21 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-07-04 11:32 . 2010-04-17 18:21 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-06-23 18:31 . 2004-08-18 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-06-23 18:31 . 2004-08-18 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-06-23 18:31 . 2004-08-18 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-06-23 12:05 . 2004-08-18 12:00 385024 ----a-w- c:\windows\system32\html.iec
2011-06-20 17:44 . 2004-08-18 12:00 293376 ------w- c:\windows\system32\winsrv.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-07-21 61440]
"High Definition Audio Property Page Shortcut"="HDAudPropShortcut.exe" [2004-03-17 61952]
"Lexmark 1200 Series"="c:\program files\Lexmark 1200 Series\lxczbmgr.exe" [2006-07-13 57344]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-18 15360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableSecureUIAPaths"= 0 (0x0)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2011-05-04 17:54 551296 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
.
R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NIS\1206000.01D\symds.sys [10.5.2011 18:22 340088]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NIS\1206000.01D\symefa.sys [10.5.2011 18:22 744568]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [22.7.2011 18:27 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [12.7.2011 23:55 67664]
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCore.exe [12.8.2011 1:38 116608]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [7.8.2011 17:05 105592]
S1 BHDrvx86;BHDrvx86;\??\c:\documents and settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\BASHDefs\20110415.001\BHDrvx86.sys --> c:\documents and settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\BASHDefs\20110415.001\BHDrvx86.sys [?]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NIS\1206000.01D\ironx86.sys [10.5.2011 18:22 136312]
S3 EverestDriver;Lavalys EVEREST Kernel Driver;c:\program files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt [17.4.2010 18:36 27760]
S3 IDSxpx86;IDSxpx86;\??\c:\documents and settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\IPSDefs\20110419.001\IDSxpx86.sys --> c:\documents and settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\IPSDefs\20110419.001\IDSxpx86.sys [?]
.
.
------- Doplňkový sken -------
.
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\documents and settings\Michal\Data aplikací\Mozilla\Firefox\Profiles\xjo9vkqc.default\
FF - prefs.js: browser.startup.homepage - www.seznam.cz
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-08-31 19:24
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet006\Services\EverestDriver]
"ImagePath"="\??\c:\program files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(672)
c:\program files\SUPERAntiSpyware\SASWINLO.DLL
c:\windows\system32\Ati2evxx.dll
.
- - - - - - - > 'explorer.exe'(3548)
c:\windows\system32\msi.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\LEXBCES.EXE
c:\windows\system32\LEXPPS.EXE
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\Lexmark 1200 Series\lxczbmon.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Celkový čas: 2011-08-31 19:27:38 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-08-31 17:27
ComboFix2.txt 2011-08-31 13:47
ComboFix3.txt 2011-08-30 17:59
ComboFix4.txt 2011-08-30 17:36
.
Před spuštěním: Volných bajtů: 233 652 150 272
Po spuštění: Volných bajtů: 233 642 917 888
.
- - End Of File - - 0F1CBF5F5BA8C4F35A028A08B284C4A8

Re: Vir pravděpodobně z FB ale je jich tu víc.

Napsal: 31 srp 2011 18:37
od vyosek
:arrow: Pokusim se vysvetlit
microsoft windows recovery console konzola pro zotaveni - OK - slouzi pro opravu windows
microsoft win. XP home edition Soucastna verze co opravuje
microsoft win. XP professional intalace zrejme nejaka nedokoncena instalace
:arrow: Stahnete OTM (viz muj podpis)
  • Pokud pouzivate Win Vista ci W7, kliknete na OTM pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do leveho okna Paste Instructions for Items to be Moved (pod zlutou caru) vlozte obsah, ktery mate nize

  • Kód: Vybrat vše

    :files
type c:\boot.ini >> c:\test.txt /c
start notepad "c:\test.txt"
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]
  • Kliknete na cervene tlacitko MoveIt!
  • Budete vyzvani na restart, dejte Yes, log pote najdete C:\_OTM\MovedFiles, obsah sem vlozte
:arrow: Taktez by se mel otevrit pozn. blok test.txt - obsah sem tez vlozte - pokud se neotevre, tak by mel byt umisten v c:\test.txt

Re: Vir pravděpodobně z FB ale je jich tu víc.

Napsal: 31 srp 2011 18:43
od cibetka9
to je ten první
All processes killed
========== FILES ==========
< type c:\boot.ini >> c:\test.txt /c >
[Boot Loader]
Timeout=5
Default=C:\$WIN_NT$.~BT\BOOTSECT.DAT
[Operating Systems]
C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=AlwaysOff /fastdetect
C:\$WIN_NT$.~BT\BOOTSECT.DAT="Microsoft Windows XP Professional - instalace"
C:\Documents and Settings\Michal\Plocha\cmd.bat deleted successfully.
C:\Documents and Settings\Michal\Plocha\cmd.txt deleted successfully.
File/Folder start notepad "c:\test.txt" not found.
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
C:\WINDOWS\system32\SET2E1.tmp moved successfully.
C:\WINDOWS\system32\SET2E3.tmp moved successfully.
C:\WINDOWS\system32\SET2E5.tmp moved successfully.
C:\WINDOWS\system32\SET2E9.tmp moved successfully.
C:\WINDOWS\system32\SET2EC.tmp moved successfully.
C:\WINDOWS\system32\SET2ED.tmp moved successfully.
C:\WINDOWS\system32\SET2F4.tmp moved successfully.
C:\WINDOWS\system32\SET2F6.tmp moved successfully.
C:\WINDOWS\system32\SET2FA.tmp moved successfully.
C:\WINDOWS\system32\SET2FB.tmp moved successfully.
C:\WINDOWS\system32\SET301.tmp moved successfully.
C:\WINDOWS\system32\SET302.tmp moved successfully.
C:\WINDOWS\system32\SET303.tmp moved successfully.
C:\WINDOWS\system32\SET309.tmp moved successfully.
C:\WINDOWS\system32\SET30D.tmp moved successfully.
C:\WINDOWS\system32\SET30F.tmp moved successfully.
C:\WINDOWS\system32\SET312.tmp moved successfully.
C:\WINDOWS\system32\SET315.tmp moved successfully.
C:\WINDOWS\system32\SET31A.tmp moved successfully.
C:\WINDOWS\system32\SET320.tmp moved successfully.
C:\WINDOWS\system32\SET329.tmp moved successfully.
C:\WINDOWS\system32\SET32A.tmp moved successfully.
C:\WINDOWS\system32\SET32F.tmp moved successfully.
C:\WINDOWS\system32\SET331.tmp moved successfully.
C:\WINDOWS\system32\SET334.tmp moved successfully.
C:\WINDOWS\system32\SET335.tmp moved successfully.
C:\WINDOWS\system32\SET336.tmp moved successfully.
C:\WINDOWS\system32\SET338.tmp moved successfully.
C:\WINDOWS\system32\SET33B.tmp moved successfully.
C:\WINDOWS\system32\SET33C.tmp moved successfully.
C:\WINDOWS\system32\SET33D.tmp moved successfully.
C:\WINDOWS\system32\SET33F.tmp moved successfully.
C:\WINDOWS\system32\SET340.tmp moved successfully.
C:\WINDOWS\system32\SET349.tmp moved successfully.
C:\WINDOWS\system32\SET34B.tmp moved successfully.
C:\WINDOWS\system32\SET375.tmp moved successfully.
C:\WINDOWS\system32\SET376.tmp moved successfully.
C:\WINDOWS\system32\SET389.tmp moved successfully.
C:\WINDOWS\system32\SET38F.tmp moved successfully.
C:\WINDOWS\system32\SET395.tmp moved successfully.
C:\WINDOWS\system32\SET399.tmp moved successfully.
C:\WINDOWS\system32\SET3A4.tmp moved successfully.
C:\WINDOWS\system32\SET3A5.tmp moved successfully.
C:\WINDOWS\system32\SET3A6.tmp moved successfully.
C:\WINDOWS\system32\SET3A8.tmp moved successfully.
C:\WINDOWS\system32\SET3BC.tmp moved successfully.
C:\WINDOWS\system32\SET3C0.tmp moved successfully.
C:\WINDOWS\system32\SET3C7.tmp moved successfully.
C:\WINDOWS\system32\SET3C8.tmp moved successfully.
C:\WINDOWS\system32\SET3C9.tmp moved successfully.
C:\WINDOWS\system32\SET3CB.tmp moved successfully.
C:\WINDOWS\system32\SET3D3.tmp moved successfully.
C:\WINDOWS\system32\SET3E1.tmp moved successfully.
C:\WINDOWS\system32\SET3E5.tmp moved successfully.
C:\WINDOWS\system32\SET3EB.tmp moved successfully.
C:\WINDOWS\system32\SET3ED.tmp moved successfully.
C:\WINDOWS\system32\SET3EF.tmp moved successfully.
C:\WINDOWS\system32\SET3F3.tmp moved successfully.
C:\WINDOWS\system32\SET418.tmp moved successfully.
C:\WINDOWS\system32\SET41A.tmp moved successfully.
C:\WINDOWS\system32\SET41F.tmp moved successfully.
C:\WINDOWS\system32\SET421.tmp moved successfully.
C:\WINDOWS\system32\SET429.tmp moved successfully.
C:\WINDOWS\system32\SET431.tmp moved successfully.
C:\WINDOWS\system32\SET434.tmp moved successfully.
C:\WINDOWS\system32\SET435.tmp moved successfully.
C:\WINDOWS\system32\SET436.tmp moved successfully.
C:\WINDOWS\system32\SET437.tmp moved successfully.
C:\WINDOWS\system32\SET43A.tmp moved successfully.
C:\WINDOWS\system32\SET445.tmp moved successfully.
C:\WINDOWS\system32\SET44C.tmp moved successfully.
C:\WINDOWS\system32\SET44D.tmp moved successfully.
C:\WINDOWS\system32\SET44F.tmp moved successfully.
C:\WINDOWS\system32\SET454.tmp moved successfully.
C:\WINDOWS\system32\SET455.tmp moved successfully.
C:\WINDOWS\system32\SET457.tmp moved successfully.
C:\WINDOWS\system32\SET458.tmp moved successfully.
C:\WINDOWS\system32\SET459.tmp moved successfully.
C:\WINDOWS\system32\SET45A.tmp moved successfully.
C:\WINDOWS\system32\SET45D.tmp moved successfully.
C:\WINDOWS\system32\SET462.tmp moved successfully.
C:\WINDOWS\system32\SET464.tmp moved successfully.
C:\WINDOWS\system32\SET46A.tmp moved successfully.
C:\WINDOWS\system32\SET46D.tmp moved successfully.
C:\WINDOWS\system32\SET46F.tmp moved successfully.
C:\WINDOWS\system32\SET471.tmp moved successfully.
C:\WINDOWS\system32\SET472.tmp moved successfully.
C:\WINDOWS\system32\SET473.tmp moved successfully.
C:\WINDOWS\system32\SET474.tmp moved successfully.
C:\WINDOWS\system32\SET476.tmp moved successfully.
C:\WINDOWS\system32\SET481.tmp moved successfully.
C:\WINDOWS\system32\SET482.tmp moved successfully.
C:\WINDOWS\system32\SET486.tmp moved successfully.
C:\WINDOWS\system32\SET491.tmp moved successfully.
C:\WINDOWS\system32\SET494.tmp moved successfully.
C:\WINDOWS\system32\SET497.tmp moved successfully.
C:\WINDOWS\system32\SET498.tmp moved successfully.
C:\WINDOWS\system32\SET49A.tmp moved successfully.
C:\WINDOWS\system32\SET49F.tmp moved successfully.
C:\WINDOWS\system32\SET4A6.tmp moved successfully.
C:\WINDOWS\system32\SET4AB.tmp moved successfully.
C:\WINDOWS\system32\SET4AD.tmp moved successfully.
C:\WINDOWS\system32\SET4AE.tmp moved successfully.
C:\WINDOWS\system32\SET4B1.tmp moved successfully.
C:\WINDOWS\system32\SET4B4.tmp moved successfully.
C:\WINDOWS\system32\SET4B5.tmp moved successfully.
C:\WINDOWS\system32\SET4B8.tmp moved successfully.
C:\WINDOWS\system32\SET4B9.tmp moved successfully.
C:\WINDOWS\system32\SET4BB.tmp moved successfully.
C:\WINDOWS\system32\SET4BF.tmp moved successfully.
C:\WINDOWS\system32\SET4C1.tmp moved successfully.
C:\WINDOWS\system32\SET4C2.tmp moved successfully.
C:\WINDOWS\system32\SET4C3.tmp moved successfully.
C:\WINDOWS\system32\SET4C8.tmp moved successfully.
C:\WINDOWS\system32\SET4C9.tmp moved successfully.
C:\WINDOWS\system32\SET4CA.tmp moved successfully.
C:\WINDOWS\system32\SET4CF.tmp moved successfully.
C:\WINDOWS\system32\SET4D2.tmp moved successfully.
C:\WINDOWS\system32\SET4D4.tmp moved successfully.
C:\WINDOWS\system32\SET4D5.tmp moved successfully.
C:\WINDOWS\system32\SET4D6.tmp moved successfully.
C:\WINDOWS\system32\SET4D8.tmp moved successfully.
C:\WINDOWS\system32\SET4D9.tmp moved successfully.
C:\WINDOWS\system32\SET4DA.tmp moved successfully.
C:\WINDOWS\system32\SET4DC.tmp moved successfully.
C:\WINDOWS\system32\SET4DD.tmp moved successfully.
C:\WINDOWS\system32\SET4DE.tmp moved successfully.
C:\WINDOWS\system32\SET4DF.tmp moved successfully.
C:\WINDOWS\system32\SET4E0.tmp moved successfully.
C:\WINDOWS\system32\SET4E3.tmp moved successfully.
C:\WINDOWS\system32\SET4E4.tmp moved successfully.
C:\WINDOWS\system32\SET4EB.tmp moved successfully.
C:\WINDOWS\system32\SET4EC.tmp moved successfully.
C:\WINDOWS\system32\SET4EF.tmp moved successfully.
C:\WINDOWS\system32\SET4FA.tmp moved successfully.
C:\WINDOWS\system32\SET4FB.tmp moved successfully.
C:\WINDOWS\system32\SET4FD.tmp moved successfully.
C:\WINDOWS\system32\SET4FE.tmp moved successfully.
C:\WINDOWS\system32\SET505.tmp moved successfully.
C:\WINDOWS\system32\SET50A.tmp moved successfully.
C:\WINDOWS\system32\SET50C.tmp moved successfully.
C:\WINDOWS\system32\SET510.tmp moved successfully.
C:\WINDOWS\system32\SET511.tmp moved successfully.
C:\WINDOWS\system32\SET513.tmp moved successfully.
C:\WINDOWS\system32\SET51C.tmp moved successfully.
C:\WINDOWS\system32\SET51E.tmp moved successfully.
C:\WINDOWS\system32\SET51F.tmp moved successfully.
C:\WINDOWS\system32\SET520.tmp moved successfully.
C:\WINDOWS\system32\SET522.tmp moved successfully.
C:\WINDOWS\system32\SET524.tmp moved successfully.
C:\WINDOWS\system32\SET53.tmp moved successfully.
C:\WINDOWS\system32\SET530.tmp moved successfully.
C:\WINDOWS\system32\SET536.tmp moved successfully.
C:\WINDOWS\system32\SET538.tmp moved successfully.
C:\WINDOWS\system32\SET539.tmp moved successfully.
C:\WINDOWS\system32\SET53A.tmp moved successfully.
C:\WINDOWS\system32\SET53B.tmp moved successfully.
C:\WINDOWS\system32\SET541.tmp moved successfully.
C:\WINDOWS\system32\SET542.tmp moved successfully.
C:\WINDOWS\system32\SET54B.tmp moved successfully.
C:\WINDOWS\system32\SET54C.tmp moved successfully.
C:\WINDOWS\system32\SET54D.tmp moved successfully.
C:\WINDOWS\system32\SET554.tmp moved successfully.
C:\WINDOWS\system32\SET555.tmp moved successfully.
C:\WINDOWS\system32\SET559.tmp moved successfully.
C:\WINDOWS\system32\SET55E.tmp moved successfully.
C:\WINDOWS\system32\SET55F.tmp moved successfully.
C:\WINDOWS\system32\SET562.tmp moved successfully.
C:\WINDOWS\system32\SET563.tmp moved successfully.
C:\WINDOWS\system32\SET564.tmp moved successfully.
C:\WINDOWS\system32\SET566.tmp moved successfully.
C:\WINDOWS\system32\SET568.tmp moved successfully.
C:\WINDOWS\system32\SET56D.tmp moved successfully.
C:\WINDOWS\system32\SET57F.tmp moved successfully.
C:\WINDOWS\system32\SET58.tmp moved successfully.
C:\WINDOWS\system32\SET580.tmp moved successfully.
C:\WINDOWS\system32\SET581.tmp moved successfully.
C:\WINDOWS\system32\SET582.tmp moved successfully.
C:\WINDOWS\system32\SET585.tmp moved successfully.
C:\WINDOWS\system32\SET588.tmp moved successfully.
C:\WINDOWS\system32\SET589.tmp moved successfully.
C:\WINDOWS\system32\SET593.tmp moved successfully.
C:\WINDOWS\system32\SET596.tmp moved successfully.
C:\WINDOWS\system32\SET599.tmp moved successfully.
C:\WINDOWS\system32\SET59A.tmp moved successfully.
C:\WINDOWS\system32\SET59F.tmp moved successfully.
C:\WINDOWS\system32\SET5A1.tmp moved successfully.
C:\WINDOWS\system32\SET5A2.tmp moved successfully.
C:\WINDOWS\system32\SET5A5.tmp moved successfully.
C:\WINDOWS\system32\SET5A8.tmp moved successfully.
C:\WINDOWS\system32\SET5A9.tmp moved successfully.
C:\WINDOWS\system32\SET5AE.tmp moved successfully.
C:\WINDOWS\system32\SET5B5.tmp moved successfully.
C:\WINDOWS\system32\SET5B6.tmp moved successfully.
C:\WINDOWS\system32\SET5B7.tmp moved successfully.
C:\WINDOWS\system32\SET5B8.tmp moved successfully.
C:\WINDOWS\system32\SET5B9.tmp moved successfully.
C:\WINDOWS\system32\SET5BE.tmp moved successfully.
C:\WINDOWS\system32\SET5C0.tmp moved successfully.
C:\WINDOWS\system32\SET5C1.tmp moved successfully.
C:\WINDOWS\system32\SET5C2.tmp moved successfully.
C:\WINDOWS\system32\SET5C4.tmp moved successfully.
C:\WINDOWS\system32\SET5CA.tmp moved successfully.
C:\WINDOWS\system32\SET5CB.tmp moved successfully.
C:\WINDOWS\system32\SET5CD.tmp moved successfully.
C:\WINDOWS\system32\SET5D1.tmp moved successfully.
C:\WINDOWS\system32\SET5D2.tmp moved successfully.
C:\WINDOWS\system32\SET5D3.tmp moved successfully.
C:\WINDOWS\system32\SET5DA.tmp moved successfully.
C:\WINDOWS\system32\SET5E0.tmp moved successfully.
C:\WINDOWS\system32\SET5E1.tmp moved successfully.
C:\WINDOWS\system32\SET5E2.tmp moved successfully.
C:\WINDOWS\system32\SET5E3.tmp moved successfully.
C:\WINDOWS\system32\SET5E5.tmp moved successfully.
C:\WINDOWS\system32\SET5E6.tmp moved successfully.
C:\WINDOWS\system32\SET5E8.tmp moved successfully.
C:\WINDOWS\system32\SET5E9.tmp moved successfully.
C:\WINDOWS\system32\SET5EA.tmp moved successfully.
C:\WINDOWS\system32\SET5EC.tmp moved successfully.
C:\WINDOWS\system32\SET5ED.tmp moved successfully.
C:\WINDOWS\system32\SET5EE.tmp moved successfully.
C:\WINDOWS\system32\SET5F8.tmp moved successfully.
C:\WINDOWS\system32\SET5FB.tmp moved successfully.
C:\WINDOWS\system32\SET5FC.tmp moved successfully.
C:\WINDOWS\system32\SET5FF.tmp moved successfully.
C:\WINDOWS\system32\SET607.tmp moved successfully.
C:\WINDOWS\system32\SET609.tmp moved successfully.
C:\WINDOWS\system32\SET60B.tmp moved successfully.
C:\WINDOWS\system32\SET60E.tmp moved successfully.
C:\WINDOWS\system32\SET610.tmp moved successfully.
C:\WINDOWS\system32\SET611.tmp moved successfully.
C:\WINDOWS\system32\SET619.tmp moved successfully.
C:\WINDOWS\system32\SET61A.tmp moved successfully.
C:\WINDOWS\system32\dllcache\SET72D.tmp moved successfully.
C:\WINDOWS\002708_.tmp moved successfully.
C:\WINDOWS\DUMP2b07.tmp moved successfully.
C:\WINDOWS\DUMP322b.tmp moved successfully.
C:\WINDOWS\DUMP3894.tmp moved successfully.
C:\WINDOWS\DUMP39ec.tmp moved successfully.
C:\WINDOWS\DUMP43a0.tmp moved successfully.
C:\WINDOWS\DUMP8d4b.tmp moved successfully.
C:\WINDOWS\DUMP9059.tmp moved successfully.
C:\WINDOWS\SET237.tmp moved successfully.
C:\WINDOWS\SET3.tmp moved successfully.
C:\WINDOWS\SET4.tmp moved successfully.
C:\WINDOWS\SET8.tmp moved successfully.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 41620 bytes

User: Administrator.MICHAL-0CDD5024
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 41620 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 41620 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 1523779 bytes

User: Michal
->Temp folder emptied: 40960 bytes
->Temporary Internet Files folder emptied: 32902 bytes
->Java cache emptied: 4861927 bytes
->FireFox cache emptied: 110879958 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 43260 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 2504 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 112,00 mb


OTM by OldTimer - Version 3.1.18.0 log created on 08312011_194033

Files moved on Reboot...

Registry entries deleted on Reboot...

Re: Vir pravděpodobně z FB ale je jich tu víc.

Napsal: 31 srp 2011 18:44
od cibetka9
a to ten co se otevrel automaticky
All processes killed
========== FILES ==========
< type c:\boot.ini >> c:\test.txt /c >
[Boot Loader]
Timeout=5
Default=C:\$WIN_NT$.~BT\BOOTSECT.DAT
[Operating Systems]
C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=AlwaysOff /fastdetect
C:\$WIN_NT$.~BT\BOOTSECT.DAT="Microsoft Windows XP Professional - instalace"
C:\Documents and Settings\Michal\Plocha\cmd.bat deleted successfully.
C:\Documents and Settings\Michal\Plocha\cmd.txt deleted successfully.
File/Folder start notepad "c:\test.txt" not found.
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
C:\WINDOWS\system32\SET2E1.tmp moved successfully.
C:\WINDOWS\system32\SET2E3.tmp moved successfully.
C:\WINDOWS\system32\SET2E5.tmp moved successfully.
C:\WINDOWS\system32\SET2E9.tmp moved successfully.
C:\WINDOWS\system32\SET2EC.tmp moved successfully.
C:\WINDOWS\system32\SET2ED.tmp moved successfully.
C:\WINDOWS\system32\SET2F4.tmp moved successfully.
C:\WINDOWS\system32\SET2F6.tmp moved successfully.
C:\WINDOWS\system32\SET2FA.tmp moved successfully.
C:\WINDOWS\system32\SET2FB.tmp moved successfully.
C:\WINDOWS\system32\SET301.tmp moved successfully.
C:\WINDOWS\system32\SET302.tmp moved successfully.
C:\WINDOWS\system32\SET303.tmp moved successfully.
C:\WINDOWS\system32\SET309.tmp moved successfully.
C:\WINDOWS\system32\SET30D.tmp moved successfully.
C:\WINDOWS\system32\SET30F.tmp moved successfully.
C:\WINDOWS\system32\SET312.tmp moved successfully.
C:\WINDOWS\system32\SET315.tmp moved successfully.
C:\WINDOWS\system32\SET31A.tmp moved successfully.
C:\WINDOWS\system32\SET320.tmp moved successfully.
C:\WINDOWS\system32\SET329.tmp moved successfully.
C:\WINDOWS\system32\SET32A.tmp moved successfully.
C:\WINDOWS\system32\SET32F.tmp moved successfully.
C:\WINDOWS\system32\SET331.tmp moved successfully.
C:\WINDOWS\system32\SET334.tmp moved successfully.
C:\WINDOWS\system32\SET335.tmp moved successfully.
C:\WINDOWS\system32\SET336.tmp moved successfully.
C:\WINDOWS\system32\SET338.tmp moved successfully.
C:\WINDOWS\system32\SET33B.tmp moved successfully.
C:\WINDOWS\system32\SET33C.tmp moved successfully.
C:\WINDOWS\system32\SET33D.tmp moved successfully.
C:\WINDOWS\system32\SET33F.tmp moved successfully.
C:\WINDOWS\system32\SET340.tmp moved successfully.
C:\WINDOWS\system32\SET349.tmp moved successfully.
C:\WINDOWS\system32\SET34B.tmp moved successfully.
C:\WINDOWS\system32\SET375.tmp moved successfully.
C:\WINDOWS\system32\SET376.tmp moved successfully.
C:\WINDOWS\system32\SET389.tmp moved successfully.
C:\WINDOWS\system32\SET38F.tmp moved successfully.
C:\WINDOWS\system32\SET395.tmp moved successfully.
C:\WINDOWS\system32\SET399.tmp moved successfully.
C:\WINDOWS\system32\SET3A4.tmp moved successfully.
C:\WINDOWS\system32\SET3A5.tmp moved successfully.
C:\WINDOWS\system32\SET3A6.tmp moved successfully.
C:\WINDOWS\system32\SET3A8.tmp moved successfully.
C:\WINDOWS\system32\SET3BC.tmp moved successfully.
C:\WINDOWS\system32\SET3C0.tmp moved successfully.
C:\WINDOWS\system32\SET3C7.tmp moved successfully.
C:\WINDOWS\system32\SET3C8.tmp moved successfully.
C:\WINDOWS\system32\SET3C9.tmp moved successfully.
C:\WINDOWS\system32\SET3CB.tmp moved successfully.
C:\WINDOWS\system32\SET3D3.tmp moved successfully.
C:\WINDOWS\system32\SET3E1.tmp moved successfully.
C:\WINDOWS\system32\SET3E5.tmp moved successfully.
C:\WINDOWS\system32\SET3EB.tmp moved successfully.
C:\WINDOWS\system32\SET3ED.tmp moved successfully.
C:\WINDOWS\system32\SET3EF.tmp moved successfully.
C:\WINDOWS\system32\SET3F3.tmp moved successfully.
C:\WINDOWS\system32\SET418.tmp moved successfully.
C:\WINDOWS\system32\SET41A.tmp moved successfully.
C:\WINDOWS\system32\SET41F.tmp moved successfully.
C:\WINDOWS\system32\SET421.tmp moved successfully.
C:\WINDOWS\system32\SET429.tmp moved successfully.
C:\WINDOWS\system32\SET431.tmp moved successfully.
C:\WINDOWS\system32\SET434.tmp moved successfully.
C:\WINDOWS\system32\SET435.tmp moved successfully.
C:\WINDOWS\system32\SET436.tmp moved successfully.
C:\WINDOWS\system32\SET437.tmp moved successfully.
C:\WINDOWS\system32\SET43A.tmp moved successfully.
C:\WINDOWS\system32\SET445.tmp moved successfully.
C:\WINDOWS\system32\SET44C.tmp moved successfully.
C:\WINDOWS\system32\SET44D.tmp moved successfully.
C:\WINDOWS\system32\SET44F.tmp moved successfully.
C:\WINDOWS\system32\SET454.tmp moved successfully.
C:\WINDOWS\system32\SET455.tmp moved successfully.
C:\WINDOWS\system32\SET457.tmp moved successfully.
C:\WINDOWS\system32\SET458.tmp moved successfully.
C:\WINDOWS\system32\SET459.tmp moved successfully.
C:\WINDOWS\system32\SET45A.tmp moved successfully.
C:\WINDOWS\system32\SET45D.tmp moved successfully.
C:\WINDOWS\system32\SET462.tmp moved successfully.
C:\WINDOWS\system32\SET464.tmp moved successfully.
C:\WINDOWS\system32\SET46A.tmp moved successfully.
C:\WINDOWS\system32\SET46D.tmp moved successfully.
C:\WINDOWS\system32\SET46F.tmp moved successfully.
C:\WINDOWS\system32\SET471.tmp moved successfully.
C:\WINDOWS\system32\SET472.tmp moved successfully.
C:\WINDOWS\system32\SET473.tmp moved successfully.
C:\WINDOWS\system32\SET474.tmp moved successfully.
C:\WINDOWS\system32\SET476.tmp moved successfully.
C:\WINDOWS\system32\SET481.tmp moved successfully.
C:\WINDOWS\system32\SET482.tmp moved successfully.
C:\WINDOWS\system32\SET486.tmp moved successfully.
C:\WINDOWS\system32\SET491.tmp moved successfully.
C:\WINDOWS\system32\SET494.tmp moved successfully.
C:\WINDOWS\system32\SET497.tmp moved successfully.
C:\WINDOWS\system32\SET498.tmp moved successfully.
C:\WINDOWS\system32\SET49A.tmp moved successfully.
C:\WINDOWS\system32\SET49F.tmp moved successfully.
C:\WINDOWS\system32\SET4A6.tmp moved successfully.
C:\WINDOWS\system32\SET4AB.tmp moved successfully.
C:\WINDOWS\system32\SET4AD.tmp moved successfully.
C:\WINDOWS\system32\SET4AE.tmp moved successfully.
C:\WINDOWS\system32\SET4B1.tmp moved successfully.
C:\WINDOWS\system32\SET4B4.tmp moved successfully.
C:\WINDOWS\system32\SET4B5.tmp moved successfully.
C:\WINDOWS\system32\SET4B8.tmp moved successfully.
C:\WINDOWS\system32\SET4B9.tmp moved successfully.
C:\WINDOWS\system32\SET4BB.tmp moved successfully.
C:\WINDOWS\system32\SET4BF.tmp moved successfully.
C:\WINDOWS\system32\SET4C1.tmp moved successfully.
C:\WINDOWS\system32\SET4C2.tmp moved successfully.
C:\WINDOWS\system32\SET4C3.tmp moved successfully.
C:\WINDOWS\system32\SET4C8.tmp moved successfully.
C:\WINDOWS\system32\SET4C9.tmp moved successfully.
C:\WINDOWS\system32\SET4CA.tmp moved successfully.
C:\WINDOWS\system32\SET4CF.tmp moved successfully.
C:\WINDOWS\system32\SET4D2.tmp moved successfully.
C:\WINDOWS\system32\SET4D4.tmp moved successfully.
C:\WINDOWS\system32\SET4D5.tmp moved successfully.
C:\WINDOWS\system32\SET4D6.tmp moved successfully.
C:\WINDOWS\system32\SET4D8.tmp moved successfully.
C:\WINDOWS\system32\SET4D9.tmp moved successfully.
C:\WINDOWS\system32\SET4DA.tmp moved successfully.
C:\WINDOWS\system32\SET4DC.tmp moved successfully.
C:\WINDOWS\system32\SET4DD.tmp moved successfully.
C:\WINDOWS\system32\SET4DE.tmp moved successfully.
C:\WINDOWS\system32\SET4DF.tmp moved successfully.
C:\WINDOWS\system32\SET4E0.tmp moved successfully.
C:\WINDOWS\system32\SET4E3.tmp moved successfully.
C:\WINDOWS\system32\SET4E4.tmp moved successfully.
C:\WINDOWS\system32\SET4EB.tmp moved successfully.
C:\WINDOWS\system32\SET4EC.tmp moved successfully.
C:\WINDOWS\system32\SET4EF.tmp moved successfully.
C:\WINDOWS\system32\SET4FA.tmp moved successfully.
C:\WINDOWS\system32\SET4FB.tmp moved successfully.
C:\WINDOWS\system32\SET4FD.tmp moved successfully.
C:\WINDOWS\system32\SET4FE.tmp moved successfully.
C:\WINDOWS\system32\SET505.tmp moved successfully.
C:\WINDOWS\system32\SET50A.tmp moved successfully.
C:\WINDOWS\system32\SET50C.tmp moved successfully.
C:\WINDOWS\system32\SET510.tmp moved successfully.
C:\WINDOWS\system32\SET511.tmp moved successfully.
C:\WINDOWS\system32\SET513.tmp moved successfully.
C:\WINDOWS\system32\SET51C.tmp moved successfully.
C:\WINDOWS\system32\SET51E.tmp moved successfully.
C:\WINDOWS\system32\SET51F.tmp moved successfully.
C:\WINDOWS\system32\SET520.tmp moved successfully.
C:\WINDOWS\system32\SET522.tmp moved successfully.
C:\WINDOWS\system32\SET524.tmp moved successfully.
C:\WINDOWS\system32\SET53.tmp moved successfully.
C:\WINDOWS\system32\SET530.tmp moved successfully.
C:\WINDOWS\system32\SET536.tmp moved successfully.
C:\WINDOWS\system32\SET538.tmp moved successfully.
C:\WINDOWS\system32\SET539.tmp moved successfully.
C:\WINDOWS\system32\SET53A.tmp moved successfully.
C:\WINDOWS\system32\SET53B.tmp moved successfully.
C:\WINDOWS\system32\SET541.tmp moved successfully.
C:\WINDOWS\system32\SET542.tmp moved successfully.
C:\WINDOWS\system32\SET54B.tmp moved successfully.
C:\WINDOWS\system32\SET54C.tmp moved successfully.
C:\WINDOWS\system32\SET54D.tmp moved successfully.
C:\WINDOWS\system32\SET554.tmp moved successfully.
C:\WINDOWS\system32\SET555.tmp moved successfully.
C:\WINDOWS\system32\SET559.tmp moved successfully.
C:\WINDOWS\system32\SET55E.tmp moved successfully.
C:\WINDOWS\system32\SET55F.tmp moved successfully.
C:\WINDOWS\system32\SET562.tmp moved successfully.
C:\WINDOWS\system32\SET563.tmp moved successfully.
C:\WINDOWS\system32\SET564.tmp moved successfully.
C:\WINDOWS\system32\SET566.tmp moved successfully.
C:\WINDOWS\system32\SET568.tmp moved successfully.
C:\WINDOWS\system32\SET56D.tmp moved successfully.
C:\WINDOWS\system32\SET57F.tmp moved successfully.
C:\WINDOWS\system32\SET58.tmp moved successfully.
C:\WINDOWS\system32\SET580.tmp moved successfully.
C:\WINDOWS\system32\SET581.tmp moved successfully.
C:\WINDOWS\system32\SET582.tmp moved successfully.
C:\WINDOWS\system32\SET585.tmp moved successfully.
C:\WINDOWS\system32\SET588.tmp moved successfully.
C:\WINDOWS\system32\SET589.tmp moved successfully.
C:\WINDOWS\system32\SET593.tmp moved successfully.
C:\WINDOWS\system32\SET596.tmp moved successfully.
C:\WINDOWS\system32\SET599.tmp moved successfully.
C:\WINDOWS\system32\SET59A.tmp moved successfully.
C:\WINDOWS\system32\SET59F.tmp moved successfully.
C:\WINDOWS\system32\SET5A1.tmp moved successfully.
C:\WINDOWS\system32\SET5A2.tmp moved successfully.
C:\WINDOWS\system32\SET5A5.tmp moved successfully.
C:\WINDOWS\system32\SET5A8.tmp moved successfully.
C:\WINDOWS\system32\SET5A9.tmp moved successfully.
C:\WINDOWS\system32\SET5AE.tmp moved successfully.
C:\WINDOWS\system32\SET5B5.tmp moved successfully.
C:\WINDOWS\system32\SET5B6.tmp moved successfully.
C:\WINDOWS\system32\SET5B7.tmp moved successfully.
C:\WINDOWS\system32\SET5B8.tmp moved successfully.
C:\WINDOWS\system32\SET5B9.tmp moved successfully.
C:\WINDOWS\system32\SET5BE.tmp moved successfully.
C:\WINDOWS\system32\SET5C0.tmp moved successfully.
C:\WINDOWS\system32\SET5C1.tmp moved successfully.
C:\WINDOWS\system32\SET5C2.tmp moved successfully.
C:\WINDOWS\system32\SET5C4.tmp moved successfully.
C:\WINDOWS\system32\SET5CA.tmp moved successfully.
C:\WINDOWS\system32\SET5CB.tmp moved successfully.
C:\WINDOWS\system32\SET5CD.tmp moved successfully.
C:\WINDOWS\system32\SET5D1.tmp moved successfully.
C:\WINDOWS\system32\SET5D2.tmp moved successfully.
C:\WINDOWS\system32\SET5D3.tmp moved successfully.
C:\WINDOWS\system32\SET5DA.tmp moved successfully.
C:\WINDOWS\system32\SET5E0.tmp moved successfully.
C:\WINDOWS\system32\SET5E1.tmp moved successfully.
C:\WINDOWS\system32\SET5E2.tmp moved successfully.
C:\WINDOWS\system32\SET5E3.tmp moved successfully.
C:\WINDOWS\system32\SET5E5.tmp moved successfully.
C:\WINDOWS\system32\SET5E6.tmp moved successfully.
C:\WINDOWS\system32\SET5E8.tmp moved successfully.
C:\WINDOWS\system32\SET5E9.tmp moved successfully.
C:\WINDOWS\system32\SET5EA.tmp moved successfully.
C:\WINDOWS\system32\SET5EC.tmp moved successfully.
C:\WINDOWS\system32\SET5ED.tmp moved successfully.
C:\WINDOWS\system32\SET5EE.tmp moved successfully.
C:\WINDOWS\system32\SET5F8.tmp moved successfully.
C:\WINDOWS\system32\SET5FB.tmp moved successfully.
C:\WINDOWS\system32\SET5FC.tmp moved successfully.
C:\WINDOWS\system32\SET5FF.tmp moved successfully.
C:\WINDOWS\system32\SET607.tmp moved successfully.
C:\WINDOWS\system32\SET609.tmp moved successfully.
C:\WINDOWS\system32\SET60B.tmp moved successfully.
C:\WINDOWS\system32\SET60E.tmp moved successfully.
C:\WINDOWS\system32\SET610.tmp moved successfully.
C:\WINDOWS\system32\SET611.tmp moved successfully.
C:\WINDOWS\system32\SET619.tmp moved successfully.
C:\WINDOWS\system32\SET61A.tmp moved successfully.
C:\WINDOWS\system32\dllcache\SET72D.tmp moved successfully.
C:\WINDOWS\002708_.tmp moved successfully.
C:\WINDOWS\DUMP2b07.tmp moved successfully.
C:\WINDOWS\DUMP322b.tmp moved successfully.
C:\WINDOWS\DUMP3894.tmp moved successfully.
C:\WINDOWS\DUMP39ec.tmp moved successfully.
C:\WINDOWS\DUMP43a0.tmp moved successfully.
C:\WINDOWS\DUMP8d4b.tmp moved successfully.
C:\WINDOWS\DUMP9059.tmp moved successfully.
C:\WINDOWS\SET237.tmp moved successfully.
C:\WINDOWS\SET3.tmp moved successfully.
C:\WINDOWS\SET4.tmp moved successfully.
C:\WINDOWS\SET8.tmp moved successfully.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 41620 bytes

User: Administrator.MICHAL-0CDD5024
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 41620 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 41620 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 1523779 bytes

User: Michal
->Temp folder emptied: 40960 bytes
->Temporary Internet Files folder emptied: 32902 bytes
->Java cache emptied: 4861927 bytes
->FireFox cache emptied: 110879958 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 43260 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 2504 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 112,00 mb


OTM by OldTimer - Version 3.1.18.0 log created on 08312011_194033

Files moved on Reboot...

Registry entries deleted on Reboot...

Re: Vir pravděpodobně z FB ale je jich tu víc.

Napsal: 01 zář 2011 05:37
od vyosek
Kdyz Vam nabehne to okno s vyberem (jak jste popisoval), tam davate jakou volbu - microsoft win. XP home edition :???:

Re: Vir pravděpodobně z FB ale je jich tu víc.

Napsal: 01 zář 2011 07:50
od cibetka9
ano ten home edition, kdyz to neprehodim, tak se spustí ta instalace ale zamrzne to na té chybě s tím si3112r.sys

Re: Vir pravděpodobně z FB ale je jich tu víc.

Napsal: 01 zář 2011 17:35
od cibetka9
navíc občas se stane že počítač se sám od sebe resetuje, což si nejsem jistý jestli není zdrojem, koukal jsem a je tu jen 250w.....

Re: Vir pravděpodobně z FB ale je jich tu víc.

Napsal: 01 zář 2011 19:20
od vyosek
:arrow: 250W je docela slaby zdroj

:arrow: Taktez zkontrolujte, ci nejsou zaneseny vetraci otvory a vetraky prachem

:arrow: Uploadnete mi prosim sem http://vyosek.ic.cz/havet/uploader.php soubor c:\boot.ini

Re: Vir pravděpodobně z FB ale je jich tu víc.

Napsal: 01 zář 2011 20:05
od cibetka9
ciste to je, to jsem vyluxoval:)
ten boot nema na c:\
po vypsani se uploadoval prazdny..

Re: Vir pravděpodobně z FB ale je jich tu víc.

Napsal: 01 zář 2011 20:09
od vyosek
Je tam nahrany v poradku...

Poprosim kolegu, at na to radne mrkne, neco se mi tam nezda...

Prosim strpeni

Re: Vir pravděpodobně z FB ale je jich tu víc.

Napsal: 01 zář 2011 21:27
od cibetka9
ja ho viděl s velikostí 0b jinak se počítač chová celkem standartně tedy aspon myslím, dostal se mi sem až včera. .

Re: Vir pravděpodobně z FB ale je jich tu víc.

Napsal: 01 zář 2011 21:31
od vyosek
:arrow: Tak mezitim nez kolega na to mrkne (asi az nekdy pozde v noci) uklidime

:arrow: Odinstalujte Combofix
  • Prejmenujte ComboFix na Uninstall
  • Spustte jej
  • Tohle smaze Combofix a jeho slozky
:arrow: T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
  • Stahnete a spustte
  • Pro potvrzeni volby mackejte A, Enter
  • Po pouziti utilitu smazte
  • Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
:arrow: OTC http://oldtimer.geekstogo.com/OTC.exe
  • Stahnete a spustte
  • Kliknete na CleanUp a potvrdte YES
  • Program uklidi a restartuje PC

:arrow: TFC http://oldtimer.geekstogo.com/TFC.exe
  • Stahnete a spustte
  • Kliknete na Start a potvrdte OK
  • Program uklidi a restartuje pc
  • Po pouziti utilitu smazte
:arrow: v nouzovem rezimu (restart PC, mackat F8, zvolit Stav nouze s praci v siti) projedte PC temito utilitami, at se zbavime zbytku antiviru co tam mate :arrow: Stahnete Ccleaner (viz muj podpis)
Panel čistič
  • Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
Panel registry
  • dejte Hledej problémy
  • nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
  • postup opakujte dokud nebude bez problemu - vetsinou cca 3x
Panel nástroje
  • Zde muzete odinstalovat nepotrebne programy
CCleaner doporucuji pouzivat cca jednou za tyden

:arrow: Nainstalujte Avast Free http://www.avast.com/cs-cz/free-antivirus-download

:arrow: Dejte novy log z RSIT

Re: Vir pravděpodobně z FB ale je jich tu víc.

Napsal: 01 zář 2011 21:44
od MiliNess
Dobrý večer, editněte boot.ini a nechte tam pouze toto:
[Boot Loader]
Timeout=5
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[Operating Systems]
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=AlwaysOff /fastdetect

Re: Vir pravděpodobně z FB ale je jich tu víc.

Napsal: 01 zář 2011 21:49
od vyosek
Dekuji kolegovi za rychlou reakci, jen doplnim ze edit se provadi spustenim boot.ini v poznamkovem bloku.
A pro jistotu doporucuji si stary boot.ini jeste pred editaci nekam zazalohovat - nejlepe na flash disk treba

Re: Vir pravděpodobně z FB ale je jich tu víc.

Napsal: 01 zář 2011 22:02
od cibetka9
Uklid hotový log z rsit:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Michal at 2011-09-01 23:00:41
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 225 GB (94%) free of 238 GB
Total RAM: 1023 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:00:55, on 1.9.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Lexmark 1200 Series\lxczbmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Michal\Plocha\RSIT.exe
C:\Program Files\trend micro\Michal.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [Lexmark 1200 Series] "C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE

--
End of file - 4766 bytes

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Michal\Data aplikací\Mozilla\Firefox\Profiles\xjo9vkqc.default

prefs.js - "browser.startup.homepage" - "www.seznam.cz"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {20a82645-c095-46ed-80e3-08825760534b}:1.1, jqs@sun.com:1.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.21"

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
components.list
compreg.dat
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsINIProcessor.js
nsIQTScriptablePlugin.xpt
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
xpti.dat

C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
npnul32.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\Michal\Data aplikací\Mozilla\Firefox\Profiles\xjo9vkqc.default\extensions\
{20a82645-c095-46ed-80e3-08825760534b}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-07-04 820864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-02-09 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-07-04 820864]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-07-21 61440]
"High Definition Audio Property Page Shortcut"=C:\WINDOWS\system32\HDAudPropShortcut.exe [2004-03-17 61952]
"Lexmark 1200 Series"=C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe [2006-07-13 57344]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-07-04 3493720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-05-04 551296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-07-21 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2011-07-19 113024]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableSecureUIAPaths"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 1 month======

2011-09-01 23:00:41 ----D---- C:\rsit
2011-09-01 22:57:56 ----D---- C:\Program Files\AVAST Software
2011-09-01 22:57:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2011-09-01 22:44:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\NortonInstaller
2011-08-31 19:40:39 ----SHD---- C:\RECYCLER
2011-08-31 19:22:16 ----D---- C:\WINDOWS\temp
2011-08-31 16:16:51 ----D---- C:\Program Files\trend micro
2011-08-31 15:51:48 ----D---- C:\WINDOWS\system32\CatRoot_bak
2011-08-31 15:28:32 ----D---- C:\$WIN_NT$.~BT
2011-08-31 15:16:33 ----D---- C:\Documents and Settings\Michal\Data aplikací\SUPERAntiSpyware.com
2011-08-31 15:16:16 ----D---- C:\Program Files\SUPERAntiSpyware
2011-08-31 15:16:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\SUPERAntiSpyware.com
2011-08-30 19:20:30 ----RASHD---- C:\cmdcons
2011-08-30 12:05:39 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2011-08-30 12:05:18 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2011-08-30 12:05:07 ----D---- C:\WINDOWS\Logs
2011-08-30 12:04:35 ----HDC---- C:\WINDOWS\$NtUninstallKB942288-v3$
2011-08-30 11:29:21 ----RASH---- C:\boot.ini
2011-08-30 11:29:21 ----ASH---- C:\WinPEpge.sys
2011-08-30 11:02:35 ----D---- C:\$WINDOWS.~BT
2011-08-30 10:13:54 ----RASH---- C:\Boot.bak
2011-08-30 10:13:43 ----A---- C:\WINDOWS\UPGRADE.TXT
2011-08-30 10:13:41 ----D---- C:\WINDOWS\setup.pss
2011-08-30 07:34:39 ----D---- C:\Documents and Settings\Michal\Data aplikací\Mozilla
2011-08-29 22:07:01 ----D---- C:\WINDOWS\pss
2011-08-29 17:36:09 ----D---- C:\Program Files\CCleaner
2011-08-27 02:07:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2570791$
2011-08-27 02:02:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2011-08-27 02:02:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2011-08-27 02:02:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2567680$
2011-08-27 02:02:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2011-08-27 02:02:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2011-08-27 02:02:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2011-08-27 02:01:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2011-08-27 02:01:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2011-08-27 02:01:43 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2011-08-27 02:01:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2011-08-27 02:01:29 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2011-08-27 02:01:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2011-08-27 02:01:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2011-08-27 02:01:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2011-08-27 02:01:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2011-08-27 02:01:00 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2011-08-27 02:00:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2011-08-27 02:00:47 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2011-08-27 02:00:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2476490$
2011-08-27 02:00:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2503665$
2011-08-27 02:00:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2011-08-27 02:00:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2011-08-27 02:00:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2011-08-27 01:59:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2524375$
2011-08-27 01:59:44 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2011-08-27 01:59:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2570222$
2011-08-27 01:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2011-08-27 01:59:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2412687$
2011-08-27 01:56:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2508272$
2011-08-27 01:56:50 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2011-08-27 01:56:44 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2011-08-27 01:56:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2507618$
2011-08-27 01:56:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2011-08-27 01:56:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2011-08-27 01:56:15 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2011-08-27 01:56:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2011-08-27 01:56:02 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2011-08-27 01:55:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893$
2011-08-27 01:55:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2011-08-27 01:55:38 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2011-08-27 01:55:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2541763$
2011-08-27 01:55:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2555917$
2011-08-27 01:55:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2011-08-27 01:55:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2011-08-27 01:54:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2011-08-27 01:54:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2562937$
2011-08-27 01:54:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2011-08-27 01:54:20 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2011-08-26 01:46:45 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2011-08-26 01:26:28 ----D---- C:\WINDOWS\Prefetch
2011-08-26 01:17:51 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2011-08-26 01:13:42 ----D---- C:\WINDOWS\system32\cs
2011-08-26 01:13:42 ----D---- C:\WINDOWS\l2schemas
2011-08-26 01:13:41 ----D---- C:\WINDOWS\system32\bits
2011-08-26 01:09:54 ----D---- C:\WINDOWS\network diagnostic
2011-08-26 01:08:20 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-08-26 01:06:26 ----N---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2011-08-26 01:06:26 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys
2011-08-26 01:06:26 ----A---- C:\WINDOWS\system32\drivers\tunmp.sys
2011-08-26 01:06:26 ----A---- C:\WINDOWS\system32\drivers\sffp_sd.sys
2011-08-26 01:06:26 ----A---- C:\WINDOWS\system32\drivers\sffdisk.sys
2011-08-26 01:06:26 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2011-08-26 01:06:26 ----A---- C:\WINDOWS\system32\drivers\mssmbios.sys
2011-08-26 01:06:26 ----A---- C:\WINDOWS\system32\drivers\intelppm.sys
2011-08-26 01:06:26 ----A---- C:\WINDOWS\system32\drivers\amdk7.sys
2011-08-26 01:06:23 ----A---- C:\WINDOWS\system32\drivers\ip6fw.sys
2011-08-26 01:06:21 ----A---- C:\WINDOWS\system32\drivers\http.sys
2011-08-26 01:06:20 ----A---- C:\WINDOWS\system32\qmgr.dll
2011-08-26 01:06:20 ----A---- C:\WINDOWS\system32\drivers\fltmgr.sys
2011-08-26 01:06:19 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2011-08-26 01:06:01 ----A---- C:\WINDOWS\fonts\SET256.tmp
2011-08-26 01:06:01 ----A---- C:\WINDOWS\fonts\SET255.tmp
2011-08-26 01:06:01 ----A---- C:\WINDOWS\fonts\SET254.tmp
2011-08-26 01:06:01 ----A---- C:\WINDOWS\fonts\SET253.tmp
2011-08-26 01:06:01 ----A---- C:\WINDOWS\fonts\SET252.tmp
2011-08-26 01:06:01 ----A---- C:\WINDOWS\fonts\SET251.tmp
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\rasapi32.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\printui.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\perfctrs.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\olecnv32.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\oleaut32.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\nwprovau.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\ntvdm.exe
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\ntprint.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\ntlsapi.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\ntdll.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\nslookup.exe
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\msv1_0.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\msgsvc.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\mgmtapi.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\lsasrv.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\locator.exe
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\localspl.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\lmhsvc.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\kernel32.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\imagehlp.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\ftp.exe
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\format.com
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\csrsrv.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\comdlg32.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\comctl32.dll
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\cmd.exe
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\cacls.exe
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\autochk.exe
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\autoconv.exe
2011-08-26 01:05:08 ----A---- C:\WINDOWS\system32\advapi32.dll
2011-08-26 01:05:07 ----A---- C:\WINDOWS\system32\samsrv.dll
2011-08-26 01:05:07 ----A---- C:\WINDOWS\system32\samlib.dll
2011-08-26 01:05:07 ----A---- C:\WINDOWS\system32\rshx32.dll
2011-08-26 01:05:07 ----A---- C:\WINDOWS\system32\rastapi.dll
2011-08-26 01:05:07 ----A---- C:\WINDOWS\system32\rasman.dll
2011-08-26 01:05:07 ----A---- C:\WINDOWS\system32\rasdlg.dll
2011-08-26 01:05:07 ----A---- C:\WINDOWS\system32\rasauto.dll
2011-08-26 01:05:06 ----A---- C:\WINDOWS\system32\schannel.dll
2011-08-26 01:05:06 ----A---- C:\WINDOWS\system32\sessmgr.exe
2011-08-26 01:05:06 ----A---- C:\WINDOWS\system32\services.exe
2011-08-26 01:05:06 ----A---- C:\WINDOWS\system32\scardsvr.exe
2011-08-26 01:05:06 ----A---- C:\WINDOWS\system32\savedump.exe
2011-08-26 01:05:05 ----A---- C:\WINDOWS\system32\srvsvc.dll
2011-08-26 01:05:05 ----A---- C:\WINDOWS\system32\smss.exe
2011-08-26 01:05:05 ----A---- C:\WINDOWS\system32\setupapi.dll
2011-08-26 01:05:04 ----A---- C:\WINDOWS\system32\untfs.dll
2011-08-26 01:05:04 ----A---- C:\WINDOWS\system32\ulib.dll
2011-08-26 01:05:04 ----A---- C:\WINDOWS\system32\tcpmonui.dll
2011-08-26 01:05:04 ----A---- C:\WINDOWS\system32\syssetup.dll
2011-08-26 01:05:03 ----N---- C:\WINDOWS\system32\drivers\portcls.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\wkssvc.dll
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\win32spl.dll
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\win32k.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\userinit.exe
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\raspptp.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\raspppoe.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\psched.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\processr.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\pcmcia.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\pciidex.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\parport.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\p3.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\ohci1394.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\nwlnkipx.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\npfs.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\nmnt.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\nic1394.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\netbios.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\ndiswan.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\ndisuio.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\ndistapi.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\mup.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\mspqm.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\mspclock.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\msgpc.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\msfs.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\mouclass.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\modem.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\mf.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\kbdhid.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\kbdclass.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\isapnp.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\irenum.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\ipsec.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\ipnat.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\ipinip.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\imapi.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\i8042prt.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\flpydisk.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\fips.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\fdc.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\dxg.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\dmusic.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\dmio.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\dmboot.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\diskdump.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\disk.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\crusoe.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\classpnp.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\cdrom.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\cdfs.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\atmlane.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\atmarpc.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\atapi.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\asyncmac.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\arp1394.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\amdk6.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2011-08-26 01:05:03 ----A---- C:\WINDOWS\system32\drivers\1394bus.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\usbintel.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\usbcamd2.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\usbcamd.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\update.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\udfs.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\termdd.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\tdi.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\tcpip6.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\tape.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\swenum.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\stream.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\sr.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\sonydcam.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\sfloppy.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\serial.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\serenum.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\secdrv.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\scsiport.sys
2011-08-26 01:05:02 ----A---- C:\WINDOWS\system32\drivers\rndismp.sys
2011-08-26 01:05:01 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2011-08-26 01:05:01 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe
2011-08-26 01:05:01 ----A---- C:\WINDOWS\system32\hal.dll
2011-08-26 01:05:01 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2011-08-26 01:05:01 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2011-08-26 01:05:01 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2011-08-26 01:05:01 ----A---- C:\WINDOWS\system32\drivers\videoprt.sys
2011-08-26 01:05:01 ----A---- C:\WINDOWS\system32\drivers\vga.sys
2011-08-26 01:05:01 ----A---- C:\WINDOWS\system32\drivers\usbstor.sys
2011-08-26 01:05:01 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys
2011-08-26 01:05:01 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys
2011-08-26 01:05:01 ----A---- C:\WINDOWS\system32\drivers\usbport.sys
2011-08-26 01:05:01 ----A---- C:\WINDOWS\system32\drivers\usbohci.sys
2011-08-26 01:04:41 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2011-08-26 01:04:38 ----D---- C:\WINDOWS\EHome
2011-08-22 22:56:15 ----D---- C:\Program Files\Spybot - Search & Destroy
2011-08-22 22:56:15 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2011-08-22 18:49:19 ----D---- C:\WINDOWS\ie8updates
2011-08-22 18:48:28 ----D---- C:\WINDOWS\WBEM
2011-08-22 18:47:19 ----HDC---- C:\WINDOWS\ie8
2011-08-22 18:47:19 ----D---- C:\WINDOWS\system32\cs-CZ
2011-08-22 14:15:05 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2011-08-22 14:14:50 ----A---- C:\WINDOWS\avastSS.scr

======List of files/folders modified in the last 1 month======

2011-09-01 22:58:13 ----SHD---- C:\WINDOWS\Installer
2011-09-01 22:58:07 ----D---- C:\Windows
2011-09-01 22:58:06 ----D---- C:\WINDOWS\system32
2011-09-01 22:57:56 ----RD---- C:\Program Files
2011-09-01 22:45:25 ----D---- C:\WINDOWS\system32\drivers
2011-09-01 22:41:15 ----N---- C:\WINDOWS\SchedLgU.Txt
2011-09-01 22:36:52 ----D---- C:\Program Files\Mozilla Firefox
2011-09-01 22:36:48 ----D---- C:\WINDOWS\Minidump
2011-09-01 22:35:31 ----D---- C:\WINDOWS\system32\Restore
2011-09-01 12:00:42 ----HD---- C:\WINDOWS\inf
2011-09-01 12:00:37 ----D---- C:\WINDOWS\system32\CatRoot2
2011-09-01 08:47:56 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-09-01 08:46:30 ----D---- C:\WINDOWS\system32\wbem
2011-09-01 08:46:30 ----D---- C:\WINDOWS\AppPatch
2011-08-31 22:05:58 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-08-31 22:05:57 ----D---- C:\WINDOWS\system32\CatRoot
2011-08-31 22:05:39 ----D---- C:\Program Files\Messenger
2011-08-31 22:00:43 ----D---- C:\Program Files\Outlook Express
2011-08-31 22:00:19 ----D---- C:\Program Files\Movie Maker
2011-08-31 19:40:35 ----D---- C:\WINDOWS\system32\drivers\etc
2011-08-31 19:24:26 ----A---- C:\WINDOWS\system.ini
2011-08-31 19:22:32 ----D---- C:\WINDOWS\system32\config
2011-08-31 19:21:55 ----SD---- C:\WINDOWS\Tasks
2011-08-31 19:20:32 ----D---- C:\Program Files\Common Files
2011-08-30 20:29:10 ----SD---- C:\Documents and Settings\Michal\Data aplikací\Microsoft
2011-08-30 20:11:35 ----D---- C:\WINDOWS\system32\Com
2011-08-30 20:09:52 ----D---- C:\WINDOWS\system
2011-08-30 20:09:51 ----D---- C:\WINDOWS\srchasst
2011-08-30 20:09:50 ----D---- C:\WINDOWS\PeerNet
2011-08-30 20:09:47 ----D---- C:\WINDOWS\msagent
2011-08-30 20:09:35 ----D---- C:\WINDOWS\ime
2011-08-30 20:09:34 ----D---- C:\WINDOWS\Help
2011-08-30 20:09:33 ----RSD---- C:\WINDOWS\Fonts
2011-08-30 20:09:02 ----D---- C:\Program Files\Windows NT
2011-08-30 20:09:02 ----D---- C:\Program Files\Windows Media Player
2011-08-30 20:08:54 ----D---- C:\Program Files\NetMeeting
2011-08-30 20:08:30 ----D---- C:\Program Files\Internet Explorer
2011-08-30 20:08:10 ----D---- C:\Program Files\Common Files\System
2011-08-30 20:01:34 ----SHD---- C:\System Volume Information
2011-08-30 19:32:14 ----D---- C:\WINDOWS\SoftwareDistribution
2011-08-30 12:05:40 ----D---- C:\WINDOWS\system32\DirectX
2011-08-30 12:03:48 ----D---- C:\WINDOWS\WinSxS
2011-08-29 18:06:22 ----D---- C:\Documents and Settings
2011-08-29 17:37:53 ----D---- C:\WINDOWS\Debug
2011-08-28 10:20:11 ----RSD---- C:\WINDOWS\assembly
2011-08-28 10:16:16 ----D---- C:\WINDOWS\Microsoft.NET
2011-08-27 02:02:39 ----HD---- C:\WINDOWS\$hf_mig$
2011-08-26 01:25:57 ----D---- C:\WINDOWS\system32\Setup
2011-08-26 01:16:22 ----D---- C:\WINDOWS\security
2011-08-26 01:13:43 ----D---- C:\WINDOWS\system32\usmt
2011-08-26 01:12:01 ----D---- C:\WINDOWS\ServicePackFiles
2011-08-26 01:11:57 ----D---- C:\WINDOWS\system32\npp
2011-08-26 01:11:25 ----D---- C:\WINDOWS\system32\oobe
2011-08-22 18:48:22 ----D---- C:\WINDOWS\Media
2011-08-11 07:21:36 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2004-08-18 61056]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-18 39936]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-18 14848]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS []
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-07-04 102616]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-18 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-07-21 3565056]
R3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2004-03-17 113664]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2004-03-17 135168]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2004-08-18 9600]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-18 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-18 61824]
R3 SiSGbeXP;SiS191/SiS190 Ethernet Device NDIS 5.1 Driver; C:\WINDOWS\system32\DRIVERS\SiSGbeXP.sys [2008-03-03 43392]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-18 31616]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-18 26496]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt []
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2011-08-12 116608]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-07-21 602112]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-02-02 153376]
R2 LexBceS;LexBce Server; C:\WINDOWS\system32\LEXBCES.EXE [2006-04-17 311296]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2009-07-21 593920]
S2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-07-04 42184]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
Všechny časy jsou v UTC+01:00
Stránka 2 z 3

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz