Prosím o pomoc,kontrola logu,prosím

[Caroprd111]

Musíte ho uložit, je to popsané v návodu.

[golfik69]

OK

Dobrý večer.Tak ten první log z toho Gameru mi nic nevyjel a momentálně provádím druhý log.

Tak druhý log se rozjede a asi po minutě se zastaví nahlásí že program GMER.EXE přestal pracovat,zkoušel jsem to asi čtyřikrát ale vždy ta samá chyba tak nevím kde je problém((

[Caroprd111]

Zkuste Gmer přejmenovat (cokoliv.com) a spustit v nouzovém režimu.

[golfik69]

OK

Dobrý večer.Tak ten první log z toho Gameru mi nic nevyjel a momentálně provádím druhý log.

Tak druhý log mi hlásí-GMER Hasn t found any system modification

[golfik69]

OK

Dobrý večer.Tak ten první log z toho Gameru mi nic nevyjel a momentálně provádím druhý log.

Tak druhý log mi hlásí-GMER Hasn t found any system modification

Jelo to asi půl hodiny a nic jiného se v okne neukázalo jen vyskočilo jiné okno kde bylo napsano toto((asi není něco v pořádku že?

[Caroprd111]

Jak to vypadá s PC

[golfik69]

Jak to vypadá s PC

Pořát se PC kouše(

[Caroprd111]

Stahněte MBAM http://www.viry.cz/forum/viewtopic.php?f=29&t=67229

• Podle návodu v odkazu nainstalujte, poté dejte úplný sken.
• Nic nemažte MBAM má občas falešné detekce a mohl by smazat např. systémové soubory.
• Log vložte sem.

[golfik69]

Stahněte MBAM http://www.viry.cz/forum/viewtopic.php?f=29&t=67229

• Podle návodu v odkazu nainstalujte, poté dejte úplný sken.
• Nic nemažte MBAM má občas falešné detekce a mohl by smazat např. systémové soubory.
• Log vložte sem.

Dobrý večer.Omlouvám se za delší nepřitomnost,provedl jsem sken na MBAM a nic nenašel,tak už nevím kde může být příčina potíží.Děkuji

[Caroprd111]

Pokračujte podle návodu AVPTool http://www.viry.cz/forum/viewtopic.php?f=29&t=58179

[golfik69]

Pokračujte podle návodu AVPTool http://www.viry.cz/forum/viewtopic.php?f=29&t=58179

Dobrý de.Tak tady je to log(Děkuji

Autoscan: completed 10 minutes ago (events: 2, objects: 4812, time: 00:03:58)
Autoscan: completed 3 minutes ago (events: 2, objects: 4785, time: 00:02:39)
12.3.2010 15:16:59 Task started
12.3.2010 15:19:38 Task completed

[Caroprd111]

Nastává problém i v nouzovém režimu


Který proces nejvíce zatěžuje CPU

[golfik69]

Nastává problém i v nouzovém režimu


Který proces nejvíce zatěžuje CPU

Tak po tom testu AVPTool je zatím vše v pořádku,nic se zatím nekouše a neseká.Nejvíce je procesor zatížen při spuštění antivirové kontroly,to se i kolikrát přehřátím vypne,jinak výrazný rozdíl v určitých spuštěných programech a zatížení procesoru nevidím)

[Caroprd111]

Dejte nový log z RSIT.

[golfik69]

Dejte nový log z RSIT.

Run by BUBLINKA at 2010-03-12 21:51:29
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 60 GB (62%) free of 96 GB
Total RAM: 1917 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:52:16, on 12.3.2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v7.00 (7.00.6002.18005)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\strs.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Microsoft Security Essentials\msseces.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\ICQ6.5\ICQ.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\ArcSoft\TotalMedia 3.5\TMMonitor.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\BUBLINKA\Downloads\RSIT.exe
C:\Program Files\trend micro\BUBLINKA.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: ::1 localhost
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [StrSystem] C:\Windows\strs.exe
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MSSE] "C:\Program Files\Microsoft Security Essentials\msseces.exe" -hide
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ6.5\ICQ.exe" silent
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Speedmanager plus.lnk = C:\Program Files\T-Mobile\Speedmanager plus\Spawner.exe
O4 - Global Startup: TMMonitor.lnk = C:\Program Files\ArcSoft\TotalMedia 3.5\TMMonitor.exe
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O13 - Gopher Prefix:
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe

--
End of file - 5727 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"StrSystem"=C:\Windows\strs.exe [2009-10-12 2352640]
"SpywareTerminator"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2009-10-30 2172416]
"Skytel"=C:\Windows\Skytel.exe [2007-11-20 1826816]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-06-13 6183456]
"NeroFilterCheck"=C:\Windows\system32\NeroCheck.exe [2001-07-09 155648]
"MSSE"=C:\Program Files\Microsoft Security Essentials\msseces.exe [2009-09-13 1048392]
"LogitechQuickCamRibbon"=C:\Program Files\Logitech\QuickCam\Quickcam.exe [2007-10-25 2178832]
"LogitechCommunicationsManager"=C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe [2007-10-25 563984]
"ArcSoft Connection Service"=C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2009-10-10 203264]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2010-03-09 2140880]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SpywareTerminatorUpdate"=C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2009-10-30 3055616]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
"ICQ"=C:\Program Files\ICQ6.5\ICQ.exe [2009-11-16 172792]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2009-10-09 25623336]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Speedmanager plus.lnk - C:\Program Files\T-Mobile\Speedmanager plus\Spawner.exe
TMMonitor.lnk - C:\Program Files\ArcSoft\TotalMedia 3.5\TMMonitor.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\G]
shell\AutoRun\command - G:\Autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{11ad7373-c53a-11de-859e-001f160cc13a}]
shell\AutoRun\command - G:\Autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{11ad73a8-c53a-11de-859e-001f160cc13a}]
shell\AutoRun\command - G:\Autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{36781142-c57f-11de-8c8c-001f160cc13a}]
shell\AutoRun\command - G:\Autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{61a0347f-cbef-11de-b701-001f160cc13a}]
shell\AutoRun\command - G:\Autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{776fc178-c4c4-11de-96b6-806e6f6e6963}]
shell\AutoRun\command - F:\setup.exe
shell\LVIPCAP\command - F:\techsupt\CaptureTest\Amcap8.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{830f3de6-c570-11de-8e41-001f160cc13a}]
shell\AutoRun\command - G:\Autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{830f3e36-c570-11de-8e41-001f160cc13a}]
shell\AutoRun\command - G:\Autorun.exe


======File associations======

.js - open - %SystemRoot%\System32\CScript.exe "%1" %*
.vbs - open - %SystemRoot%\System32\CScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-03-12 18:06:11 ----A---- C:\Windows\ntbtlog.txt
2010-03-12 15:08:17 ----D---- C:\ProgramData\Kaspersky Lab
2010-03-11 21:28:35 ----D---- C:\ProgramData\ESET
2010-03-11 21:28:35 ----D---- C:\Program Files\ESET
2010-03-10 22:39:58 ----A---- C:\Windows\system32\nshhttp.dll
2010-03-10 22:39:47 ----A---- C:\Windows\system32\httpapi.dll
2010-03-07 20:33:30 ----D---- C:\Windows\Minidump
2010-03-06 21:58:38 ----A---- C:\Windows\gmer.ini
2010-03-06 21:58:35 ----A---- C:\Windows\gmer_uninstall.cmd
2010-03-06 21:58:34 ----A---- C:\Windows\gmer.dll
2010-03-06 21:58:23 ----A---- C:\Windows\gmer.exe
2010-03-06 20:25:46 ----D---- C:\Windows\temp
2010-03-06 20:25:43 ----A---- C:\ComboFix.txt
2010-03-06 19:58:49 ----D---- C:\ComboFix
2010-03-06 19:55:42 ----D---- C:\Qoobox
2010-03-06 19:30:54 ----D---- C:\Program Files\trend micro
2010-03-06 19:30:52 ----D---- C:\rsit
2010-02-28 18:40:22 ----D---- C:\Windows\pss
2010-02-26 23:27:03 ----D---- C:\Users\BUBLINKA\AppData\Roaming\Facebook
2010-02-26 20:11:15 ----ASH---- C:\Windows\ShellExecuteHook.dll
2010-02-26 20:11:14 ----ASH---- C:\Windows\MmWatch.dll
2010-02-26 20:11:14 ----ASH---- C:\Windows\HkMgrMM.dll
2010-02-26 20:11:08 ----ASH---- C:\Windows\Strsysk.dll
2010-02-26 20:11:08 ----ASH---- C:\Windows\Strsys.dll
2010-02-26 20:11:08 ----ASH---- C:\Windows\HMFAxstr.dll
2010-02-26 20:10:58 ----ASH---- C:\Windows\strs.exe
2010-02-26 20:10:57 ----SHD---- C:\ProgramData\Strazca systemu
2010-02-26 20:10:57 ----A---- C:\Windows\unins000.exe
2010-02-24 11:19:07 ----A---- C:\Windows\system32\tzres.dll
2010-02-24 11:17:24 ----A---- C:\Windows\system32\secproc_isv.dll
2010-02-24 11:17:21 ----A---- C:\Windows\system32\secproc.dll
2010-02-24 11:16:43 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-02-24 11:16:38 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-02-24 11:16:37 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-02-24 11:16:36 ----A---- C:\Windows\system32\RMActivate.exe
2010-02-24 11:16:30 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-02-24 11:16:30 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-02-24 11:16:29 ----A---- C:\Windows\system32\msdrm.dll
2010-02-24 11:16:20 ----A---- C:\Windows\system32\gameux.dll
2010-02-24 11:16:14 ----A---- C:\Windows\system32\Apphlpdm.dll
2010-02-24 11:16:13 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2010-02-23 13:48:01 ----D---- C:\Program Files\WebWasher
2010-02-21 20:42:23 ----AD---- C:\ProgramData\TEMP
2010-02-21 20:40:18 ----D---- C:\Program Files\Registry Mechanic
2010-02-17 20:14:34 ----D---- C:\Program Files\MyFreeCams V2
2010-02-17 20:11:22 ----D---- C:\Users\BUBLINKA\AppData\Roaming\TeamViewer
2010-02-17 20:10:50 ----D---- C:\Program Files\TeamViewer
2010-02-15 14:32:46 ----A---- C:\Windows\system32\LVUI2.dll
2010-02-15 14:32:46 ----A---- C:\Windows\system32\lvcoinst.ini
2010-02-15 14:32:45 ----A---- C:\Windows\system32\LVUI2RC.dll
2010-02-15 14:32:45 ----A---- C:\Windows\system32\lvcodec2.dll
2010-02-15 14:32:45 ----A---- C:\Windows\system32\lvci1150.dll
2010-02-15 14:29:01 ----D---- C:\ProgramData\Logishrd
2010-02-15 14:28:53 ----D---- C:\Program Files\Common Files\LogiShrd
2010-02-15 14:28:31 ----D---- C:\ProgramData\Logitech
2010-02-15 14:28:30 ----D---- C:\Program Files\Logitech

======List of files/folders modified in the last 1 months======

2010-03-12 21:48:00 ----D---- C:\Users\BUBLINKA\AppData\Roaming\Skype
2010-03-12 21:43:16 ----D---- C:\Program Files\Mozilla Firefox
2010-03-12 21:41:40 ----D---- C:\Windows\winsxs
2010-03-12 18:48:56 ----D---- C:\Users\BUBLINKA\AppData\Roaming\skypePM
2010-03-12 18:48:25 ----D---- C:\Users\BUBLINKA\AppData\Roaming\ICQ
2010-03-12 18:26:33 ----D---- C:\ProgramData\Spyware Terminator
2010-03-12 18:26:33 ----D---- C:\Program Files\Spyware Terminator
2010-03-12 18:23:36 ----D---- C:\Users\BUBLINKA\AppData\Roaming\Spyware Terminator
2010-03-12 18:06:11 ----D---- C:\Windows
2010-03-12 18:00:04 ----RD---- C:\Program Files
2010-03-12 17:50:10 ----SHD---- C:\System Volume Information
2010-03-12 16:21:40 ----D---- C:\Windows\System32
2010-03-12 16:21:39 ----D---- C:\Windows\inf
2010-03-12 16:21:39 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-03-12 15:36:18 ----D---- C:\Windows\system32\drivers
2010-03-12 15:08:17 ----HD---- C:\ProgramData
2010-03-12 14:36:08 ----D---- C:\Windows\Debug
2010-03-12 14:34:36 ----D---- C:\Program Files\CCleaner
2010-03-12 13:39:17 ----D---- C:\Windows\Prefetch
2010-03-11 21:30:54 ----SHD---- C:\Windows\Installer
2010-03-11 19:26:17 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-03-11 13:51:44 ----D---- C:\Windows\system32\catroot
2010-03-11 13:51:25 ----D---- C:\Windows\system32\catroot2
2010-03-11 13:48:46 ----D---- C:\Program Files\Windows Mail
2010-03-11 13:48:46 ----D---- C:\Program Files\Movie Maker
2010-03-08 16:04:29 ----D---- C:\Windows\system32\WDI
2010-03-06 21:02:58 ----D---- C:\Windows\system32\wbem
2010-03-06 20:55:31 ----D---- C:\Windows\system32\config
2010-03-06 20:55:23 ----D---- C:\Windows\Tasks
2010-03-06 20:55:23 ----D---- C:\Windows\system32\spool
2010-03-06 20:55:23 ----D---- C:\Windows\system32\Msdtc
2010-03-06 20:55:23 ----D---- C:\Windows\system32\cs-CZ
2010-03-06 20:55:22 ----SHD---- C:\$Recycle.Bin
2010-03-06 20:55:22 ----D---- C:\Windows\registration
2010-03-06 20:10:02 ----D---- C:\Windows\AppPatch
2010-03-06 20:09:59 ----D---- C:\Program Files\Common Files
2010-03-02 06:30:12 ----A---- C:\Windows\system32\mrt.exe
2010-02-25 20:29:12 ----D---- C:\ProgramData\NOS
2010-02-25 14:44:46 ----D---- C:\Windows\rescache
2010-02-25 12:38:52 ----RSD---- C:\Windows\Fonts
2010-02-24 09:16:06 ----N---- C:\Windows\system32\MpSigStub.exe
2010-02-18 17:28:54 ----D---- C:\Windows\system32\Tasks
2010-02-15 14:36:49 ----D---- C:\Windows\twain_32
2010-02-15 14:33:21 ----HD---- C:\Program Files\InstallShield Installation Information

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-03-09 114984]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2009-06-18 142832]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\Windows\system32\drivers\sp_rsdrv2.sys [2009-10-30 142592]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-03-09 133512]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2010-03-09 96896]
R3 Afc;PPdus ASPI Shell; C:\Windows\system32\drivers\Afc.sys [2006-11-10 18688]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2007-02-01 690176]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2008-06-03 3695104]
R3 CmBatt;Ovladač baterie Microsoft ACPI Control Method Battery; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-19 14208]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-06-13 2152344]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2008-04-11 84240]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\Windows\system32\DRIVERS\LVPr2Mon.sys [2007-10-11 25624]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBSta.sys [2007-10-12 41752]
R3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2009-06-18 42480]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2008-02-14 118784]
R3 teamviewervpn;TeamViewer VPN Adapter; C:\Windows\system32\DRIVERS\teamviewervpn.sys [2009-11-09 25088]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-19 11264]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 gmer;gmer; C:\Windows\System32\DRIVERS\gmer.sys [2010-03-06 85969]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2008-07-30 101120]
S3 LVcKap;Logitech AEC Driver; C:\Windows\system32\DRIVERS\LVcKap.sys [2007-10-19 2109976]
S3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\Windows\system32\DRIVERS\LVMVDrv.sys [2007-10-11 2142488]
S3 lvpopflt;Logitech POP Suppression Filter; C:\Windows\system32\DRIVERS\lvpopflt.sys [2007-10-12 1920920]
S3 LVUVC;Logitech QuickCam Pro 9000(UVC); C:\Windows\system32\DRIVERS\lvuvc.sys [2007-10-12 3647384]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2006-11-02 82432]
S3 usbaudio;Ovladač zvuků USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2009-04-11 73216]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S4 JRAID;JRAID; C:\Windows\system32\drivers\jraid.sys [2007-06-13 48256]
S4 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2009-09-28 109056]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2008-06-03 692224]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2010-03-09 810120]
R2 LVCOMSer;LVCOMSer; C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe [2007-10-19 186904]
R2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2007-10-19 141848]
R2 MsMpSvc;@C:\Program Files\Microsoft Security Essentials\MpAsDesc.dll,-241; C:\Program Files\Microsoft Security Essentials\MsMpEng.exe [2009-07-02 17904]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-09-23 935208]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2009-10-30 487936]
R2 TeamViewer5;TeamViewer 5; C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe [2010-02-11 172328]
S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [2007-10-19 141848]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2010-03-09 33560]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]

-----------------EOF-----------------