Dobrý den,
mám problém s pomalým načítáním stránek, některé stránky nejdou načíst vůbec. Připojením to není, přes notebook internet funguje normálně. Zde je log:
Logfile of random's system information tool 1.06 (written by random/random)
Run by user at 2010-04-25 13:33:42
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 61 GB (61%) free of 100 GB
Total RAM: 2047 MB (73% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:33:18, on 25.4.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Program Files\DNA\btdna.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [services] C:\WINDOWS\services.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [Samsung PanelMgr] C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe /autorun
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: SmarThru4 Web Capture - {5941A0E4-56C1-4a49-9B18-05762CAC5F9B} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Web Capture - {5941A0E4-56C1-4a49-9B18-05762CAC5F9B} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra button: SmarThru4 Capture Selection - {A07BFEF7-DD11-4937-B23B-E70C11D2EDF4} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Capture Selection - {A07BFEF7-DD11-4937-B23B-E70C11D2EDF4} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra button: SmarThru4 Save as HTML - {E753A93F-2367-4978-BFA0-83048C1E61CB} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Save as HTML - {E753A93F-2367-4978-BFA0-83048C1E61CB} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra button: SmarThru4 Save Selected Text - {F1F53366-3E11-47ab-BF84-580C94F9C9AD} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Save Selected Text - {F1F53366-3E11-47ab-BF84-580C94F9C9AD} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net ... plugin.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
--
End of file - 8580 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1659004503-725345543-1004Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1659004503-725345543-1004UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2004-08-26 405504]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2005-08-04 343112]
Locked
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2006-12-18 868352]
"services"=C:\WINDOWS\services.exe []
"NeroFilterCheck"=C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [2007-03-01 153136]
"NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2007-08-08 1828136]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-01-05 413696]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2009-09-20 198160]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"Samsung PanelMgr"=C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe [2009-08-27 614400]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-04-14 2790472]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2009-11-13 323392]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe []
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"Google Update"=C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2010-04-23 136176]
C:\Documents and Settings\user\Nabídka Start\Programy\Po spuštění
OpenOffice.org 3.0.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2007-12-18 122880]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe"="C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c98ee342-9b95-11dd-a095-806d6172696f}]
shell\AutoRun\command - D:\Setup.exe
======List of files/folders created in the last 1 months======
2010-04-25 13:31:22 ----D---- C:\rsit
2010-04-25 13:17:26 ----D---- C:\Program Files\Trend Micro
2010-04-24 13:27:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
2010-04-24 11:38:52 ----D---- C:\Program Files\NortonInstaller
2010-04-24 11:38:52 ----D---- C:\Documents and Settings\All Users\Data aplikací\NortonInstaller
2010-04-23 16:17:27 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-04-22 12:21:05 ----D---- C:\Program Files\Spybot - Search & Destroy
2010-04-22 12:21:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2010-04-22 12:18:19 ----D---- C:\Program Files\SDHelper (Spybot - Search & Destroy)
2010-04-22 12:18:19 ----D---- C:\Program Files\File Scanner Library (Spybot - Search & Destroy)
2010-04-20 14:51:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-04-14 21:32:17 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2010-04-14 21:32:12 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-04-14 21:32:08 ----HDC---- C:\WINDOWS\$NtUninstallKB979402_WM9$
2010-04-14 21:31:11 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-04-14 21:31:07 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-04-14 21:31:03 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-04-14 21:30:51 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-04-07 16:09:11 ----D---- C:\Documents and Settings\user\Data aplikací\SmarThru4
2010-04-07 16:08:49 ----N---- C:\WINDOWS\system32\SecSNMP.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lttwn13n.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\LTRPR13n.DLL
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\LTRIO13N.DLL
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\LTR13N.DLL
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lftif13s.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lfpsd13s.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\LFPNM13s.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\Lfpng13s.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lfpcx13s.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lfpcd13s.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lfmsp13s.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lfjbg13s.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\LFJ2K13s.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lfitg13s.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lfitg13n.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lfimg13s.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lfimg13n.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lfiff13s.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lfiff13n.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lffax13s.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lffax13n.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lfeps13s.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\LFCMP13s.DLL
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lfclp13s.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lfbmp13s.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lfavi13s.dll
2010-04-07 16:08:48 ----A---- C:\WINDOWS\system32\lfani13s.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\PCDLIB32.DLL
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\Ltwvc13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\lttmb13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\LTTLB13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\Ltpnt13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\ltpdg13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\LTOCR13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\ltlst13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\ltkrn13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\ltimg13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\ltfil13n.DLL
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\ltefx13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\ltdlg13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\LTDIS13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\LTCLR13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\ltbar13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\lftif13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\lfpsd13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\LFPNM13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\Lfpng13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\lfpcx13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\lfpcd13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\lfmsp13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\lfjbg13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\LFJ2K13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\lfeps13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\LFCMP13n.DLL
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\lfclp13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\lfbmp13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\lfavi13n.dll
2010-04-07 16:08:47 ----A---- C:\WINDOWS\system32\lfani13n.dll
2010-04-07 16:08:46 ----D---- C:\Program Files\Common Files\SRC Shared
2010-04-07 16:08:46 ----A---- C:\WINDOWS\system32\Mfcoleui.dll
2010-04-07 16:08:45 ----A---- C:\WINDOWS\Readiris.ini
2010-04-07 16:08:42 ----A---- C:\WINDOWS\system32\irisco32.dll
2010-04-07 16:08:09 ----D---- C:\Program Files\Readiris10
2010-04-07 16:07:58 ----D---- C:\Program Files\SmarThru 4
2010-04-07 16:07:48 ----A---- C:\WINDOWS\ssndii.exe
2010-04-07 16:07:47 ----D---- C:\Program Files\SamsungPrinterLiveUpdate
2010-04-07 16:07:47 ----A---- C:\WINDOWS\system32\msxml4a.dll
2010-04-07 16:07:47 ----A---- C:\WINDOWS\system32\msxml2a.dll
2010-04-07 16:07:46 ----D---- C:\WINDOWS\Samsung
2010-04-07 16:07:23 ----A---- C:\WINDOWS\system32\sse1ml3.dll
2010-04-07 16:07:23 ----A---- C:\WINDOWS\system32\sse1mci.exe
2010-04-07 16:07:23 ----A---- C:\WINDOWS\system32\sse1mci.dll
2010-04-07 16:06:44 ----RA---- C:\WINDOWS\WiaInst.exe
2010-04-07 16:06:43 ----RA---- C:\WINDOWS\system32\Ssusbpn.dll
2010-04-07 16:06:43 ----RA---- C:\WINDOWS\system32\SaXPWIA.dll
2010-04-07 16:06:43 ----RA---- C:\WINDOWS\system32\SaXPUIEx.dll
2010-04-07 16:06:43 ----RA---- C:\WINDOWS\system32\SaXPSTI.dll
2010-04-07 16:06:43 ----RA---- C:\WINDOWS\system32\SaXPIPH.dll
2010-04-07 16:06:43 ----RA---- C:\WINDOWS\system32\SaXPEH.dll
2010-04-07 16:06:43 ----A---- C:\WINDOWS\system32\ssdevm.dll
2010-04-07 16:06:20 ----D---- C:\Program Files\Samsung
======List of files/folders modified in the last 1 months======
2010-04-25 13:31:15 ----D---- C:\WINDOWS\Prefetch
2010-04-25 13:26:53 ----D---- C:\Documents and Settings\user\Data aplikací\DNA
2010-04-25 13:17:29 ----SHD---- C:\WINDOWS\Installer
2010-04-25 13:17:26 ----RD---- C:\Program Files
2010-04-25 13:17:01 ----D---- C:\WINDOWS\Temp
2010-04-25 13:16:59 ----D---- C:\WINDOWS\system32\CatRoot2
2010-04-25 13:16:52 ----D---- C:\Program Files\DNA
2010-04-25 13:04:54 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-04-24 13:29:09 ----D---- C:\Program Files\Alwil Software
2010-04-24 13:27:51 ----D---- C:\WINDOWS\WinSxS
2010-04-24 13:27:46 ----D---- C:\WINDOWS\system32
2010-04-24 11:39:24 ----A---- C:\WINDOWS\wincmd.ini
2010-04-24 11:21:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-04-24 11:15:08 ----D---- C:\WINDOWS
2010-04-23 16:42:56 ----SD---- C:\Documents and Settings\user\Data aplikací\Microsoft
2010-04-23 16:23:04 ----SD---- C:\WINDOWS\Tasks
2010-04-23 16:17:34 ----HD---- C:\WINDOWS\inf
2010-04-22 15:08:25 ----D---- C:\WINDOWS\Help
2010-04-21 15:10:58 ----A---- C:\WINDOWS\NeroDigital.ini
2010-04-20 14:51:39 ----D---- C:\Program Files\Common Files\Adobe
2010-04-20 14:51:22 ----D---- C:\Program Files\Adobe
2010-04-18 12:57:53 ----D---- C:\Program Files\Czech Soccer Manager 2002 FE
2010-04-14 21:32:20 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-04-14 21:32:16 ----HD---- C:\WINDOWS\$hf_mig$
2010-04-14 21:32:14 ----D---- C:\WINDOWS\system32\drivers
2010-04-14 21:32:14 ----A---- C:\WINDOWS\imsins.BAK
2010-04-14 21:30:59 ----D---- C:\WINDOWS\ie8updates
2010-04-14 18:47:03 ----A---- C:\WINDOWS\system32\aswBoot.exe
2010-04-07 16:08:46 ----D---- C:\Program Files\Common Files
2010-04-07 16:08:11 ----HD---- C:\Program Files\InstallShield Installation Information
2010-04-07 16:06:40 ----D---- C:\WINDOWS\twain_32
2010-04-06 19:52:54 ----A---- C:\WINDOWS\system32\MRT.exe
2010-03-31 21:03:25 ----D---- C:\Program Files\Internet Explorer
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-04-14 28880]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-18 43008]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-04-14 162768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-04-14 46672]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-04-14 19024]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-04-14 100432]
R2 DgiVecp;DgiVecp; \??\C:\WINDOWS\system32\Drivers\DgiVecp.sys []
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2007-01-16 293888]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2006-08-07 93952]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-04-14 23376]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2007-12-18 2849280]
R3 HdAudAddService;ATI Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\AtiHdAud.sys [2006-12-28 84992]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-07-11 57856]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-07-11 20480]
R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2006-03-17 392960]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S2 SSPORT;SSPORT; \??\C:\WINDOWS\system32\Drivers\SSPORT.sys []
S3 a74rw7ld;a74rw7ld; C:\WINDOWS\system32\drivers\a74rw7ld.sys []
S3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\WINDOWS\system32\DRIVERS\mcdbus.sys []
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2007-12-18 512000]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-04-14 40384]
R2 ForcewareWebInterface;Forceware Web Interface; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe [2006-04-03 20543]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-08-08 836904]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe [2006-07-13 131131]
R2 nSvcLog;ForceWare user log service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe [2006-07-13 65599]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-04-14 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-04-14 40384]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2007-08-03 382248]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Problémy s internetem, pomalé načitání
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
stell
- VIP in memoriam
- Příspěvky: 5175
- Registrován: 09 pro 2007 09:27
- Bydliště: SK-REVUCA
- Kontaktovat uživatele:
Re: Problémy s internetem, pomalé načitání
zdravim
no mas to zavirene
1:
no mas to zavirene
1:
2:Stáhni, nainstaluj program CCleaner - http://www.ccleaner.com/download/downloadpage.aspx?f=2
- PravyKlik na kos-spustit ccleaner ->>>Cakas>>na cistenie,,
PravyKlik na kos-otvorit ccleaner-záložka Windows a stiskni Analyzovat a poté Spustit Cleaner
- Klikni na záložku Aplikace a stiskni Analyzovat a poté Spustit Cleaner
- Klikni na Registry, stiskni Hledej problémy, po dokončení skenování klikni na Opravit vybrané problémy,
-zvol Ano pro vytvoření zálohy, ulož nabídnutý soubor a klikni na Opravit všechny problémy,
Start-spustit-napis cleanmgr klik>> ok>>pockas>>dalsie moznosti-obnova systemu-vycistit,,ok,,ok
http://download.bleepingcomputer.com/ma ... -setup.exe
Stiahnes>>Malwarebytes' Anti-Malware stiahnut-nainstalovat -aktualizovat-
sprav komplet skan,co najde zmazat-,log vloz sem,
Dôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Re: Problémy s internetem, pomalé načitání
První část byla bez problémů. Problém je, že když spustím Malwarebytes, tak se celý program za pár sekund automaticky vypne.
-
stell
- VIP in memoriam
- Příspěvky: 5175
- Registrován: 09 pro 2007 09:27
- Bydliště: SK-REVUCA
- Kontaktovat uživatele:
Re: Problémy s internetem, pomalé načitání
ok,
restart do nudzoveho rezimu s pracou v sieti
restart do nudzoveho rezimu s pracou v sieti
log vloz semStiahnite si prosím Rkill z jedného z týchto štyroch odkazov:
Rkill EXE:
http://download.bleepingcomputer.com/grinler/rkill.exe
Rkill COM:
http://download.bleepingcomputer.com/grinler/rkill.com
Rkill SCR:
http://download.bleepingcomputer.com/grinler/rkill.scr
Rkill PIF:
http://download.bleepingcomputer.com/grinler/rkill.pif
Uložiť jeden z tých 4 na plochu a spustite ho. Ak infekcia blokuje, potom skúste použiť niektorý z ďalších. Po spustení prosím, skúste spustiť Malwarebytes 'Anti-Malware, spustite aktualizáciu, spustite Quick Scan a odstrániť všetko, čo nájde. [Dolezite po spusteni RKILL-nesmies restartovat pocitac ale ihned pouzi malwarebytes]
Dôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Re: Problémy s internetem, pomalé načitání
První tři programy jsou blokovány, u čtvrtého je uveden chybný link.
-
stell
- VIP in memoriam
- Příspěvky: 5175
- Registrován: 09 pro 2007 09:27
- Bydliště: SK-REVUCA
- Kontaktovat uživatele:
Re: Problémy s internetem, pomalé načitání
ok,nefunguje,,spust v nudzovom rezime OTL
Stahni OTListIt2>> OTL
Označ položku Pro všechny uživatele.
Označ položky Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do okna vlastni skenovani/opravy,zkopiruj zeleny tezt.
Klikn na tlačítko Prohledat
Po dokončení, sem vlož logy OTL.Txt
Stahni OTListIt2>> OTL
Označ položku Pro všechny uživatele.
Označ položky Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do okna vlastni skenovani/opravy,zkopiruj zeleny tezt.
Klikn na tlačítko Prohledat
Po dokončení, sem vlož logy OTL.Txt
Kód: Vybrat vše
netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
CREATERESTOREPOINTDôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Re: Problémy s internetem, pomalé načitání
OTL logfile created on: 25.4.2010 16:15:40 - Run 1
OTL by OldTimer - Version 3.2.2.0 Folder = G:\
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 74,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 90,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 63,52 Gb Free Space | 65,05% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 74,52 Gb Total Space | 18,75 Gb Free Space | 25,16% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
Drive G: | 3,76 Gb Total Space | 3,63 Gb Free Space | 96,50% Space Free | Partition Type: FAT32
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: USER-608A6EAA30
Current User Name: user
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.04.25 16:11:00 | 000,562,688 | ---- | M] (OldTimer Tools) -- G:\OTL.exe
PRC - [2010.04.14 18:47:08 | 002,790,472 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010.04.14 18:47:05 | 000,040,384 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2009.11.13 15:34:46 | 000,323,392 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\DNA\btdna.exe
PRC - [2009.09.20 11:27:17 | 000,198,160 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2009.03.05 16:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2008.10.05 15:01:26 | 007,430,144 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2008.10.05 15:01:24 | 007,434,240 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006.12.18 15:34:36 | 000,868,352 | R--- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe
PRC - [2006.07.13 16:59:48 | 000,131,131 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
PRC - [2006.07.13 16:59:32 | 000,065,599 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
PRC - [2006.04.03 18:04:02 | 000,020,543 | ---- | M] (Apache Software Foundation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe
========== Modules (SafeList) ==========
MOD - [2010.04.25 16:11:00 | 000,562,688 | ---- | M] (OldTimer Tools) -- G:\OTL.exe
========== Win32 Services (SafeList) ==========
SRV - [2010.04.14 18:47:05 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010.04.14 18:47:05 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010.04.14 18:47:05 | 000,040,384 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2008.07.29 19:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2006.07.13 16:59:48 | 000,131,131 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe -- (nSvcIp)
SRV - [2006.07.13 16:59:32 | 000,065,599 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe -- (nSvcLog)
SRV - [2006.04.03 18:04:02 | 000,020,543 | ---- | M] (Apache Software Foundation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe -- (ForcewareWebInterface)
========== Driver Services (SafeList) ==========
DRV - [2010.04.14 18:35:47 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010.04.14 18:35:25 | 000,162,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
DRV - [2010.04.14 18:31:39 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010.04.14 18:31:12 | 000,100,432 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2010.04.14 18:31:01 | 000,019,024 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010.04.14 18:30:45 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2010.03.30 00:46:30 | 000,038,224 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2009.02.04 14:20:10 | 000,038,400 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\DgivEcp.sys -- (DgiVecp)
DRV - [2008.12.03 22:33:13 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008.04.13 18:36:05 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007.12.18 04:46:24 | 002,849,280 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007.01.16 03:09:06 | 000,293,888 | R--- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV - [2006.12.28 05:44:44 | 000,084,992 | R--- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdAud.sys -- (HdAudAddService)
DRV - [2006.08.14 08:51:28 | 000,105,344 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata)
DRV - [2006.07.11 15:38:30 | 000,020,480 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2006.07.11 15:38:28 | 000,057,856 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2006.06.18 23:59:28 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006.03.17 11:18:58 | 000,392,960 | R--- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService)
DRV - [2004.08.13 04:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-606747145-1659004503-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-606747145-1659004503-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.5
FF - prefs.js..network.proxy.type: 4
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.1\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2009.09.20 11:27:32 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.1\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2010.04.22 17:55:11 | 000,000,000 | ---D | M]
[2009.07.08 11:03:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Mozilla\Extensions
[2010.04.23 15:13:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\o5lmi18u.default\extensions
[2009.11.13 15:54:43 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\o5lmi18u.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009.07.08 12:41:00 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\o5lmi18u.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
O1 HOSTS File: ([2010.04.22 12:36:34 | 000,000,737 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-606747145-1659004503-725345543-1004\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [Samsung PanelMgr] C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe ()
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKU\S-1-5-21-606747145-1659004503-725345543-1004..\Run: [BitTorrent DNA] C:\Program Files\DNA\btdna.exe (BitTorrent, Inc.)
O4 - HKU\S-1-5-21-606747145-1659004503-725345543-1004..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - Startup: C:\Documents and Settings\user\Nabídka Start\Programy\Po spuštění\OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-606747145-1659004503-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.microsoft.com/templates/ieawsdc.cab (Microsoft Office Template and Media Control)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.apple.com.edgesuite.net ... plugin.cab (QuickTime Object)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.10.16 15:42:28 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2004.12.08 22:06:23 | 000,000,000 | ---- | M] () - E:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{c98ee342-9b95-11dd-a095-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{c98ee342-9b95-11dd-a095-806d6172696f}\Shell\AutoRun\command - "" = D:\Setup.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2008.10.16 17:14:20 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: Wmi - C:\WINDOWS\system32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.ffds - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: VIDC.FPS1 - C:\WINDOWS\System32\frapsvid.dll (Beepa P/L)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (74885954556395520)
========== Files/Folders - Created Within 30 Days ==========
[2010.04.25 15:32:49 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.04.25 15:32:48 | 000,020,824 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.04.25 15:22:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Data aplikací\Malwarebytes
[2010.04.25 15:22:43 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010.04.25 15:22:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2010.04.25 15:12:54 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\user\Recent
[2010.04.25 15:06:31 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010.04.25 15:03:23 | 000,000,000 | ---D | C] -- C:\Program Files\ReviverSoft
[2010.04.25 15:03:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ReviverSoft
[2010.04.25 13:31:22 | 000,000,000 | ---D | C] -- C:\rsit
[2010.04.25 13:17:26 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2010.04.24 13:27:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2010.04.24 11:38:52 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller
[2010.04.24 11:38:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\NortonInstaller
[2010.04.23 16:23:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Local Settings\Data aplikací\Temp
[2010.04.23 16:23:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Local Settings\Data aplikací\Google
[2010.04.23 16:22:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Local Settings\Data aplikací\Deployment
[2010.04.23 16:17:27 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2010.04.22 12:21:05 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2010.04.22 12:21:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
[2010.04.22 12:18:19 | 000,000,000 | ---D | C] -- C:\Program Files\SDHelper (Spybot - Search & Destroy)
[2010.04.22 12:18:19 | 000,000,000 | ---D | C] -- C:\Program Files\File Scanner Library (Spybot - Search & Destroy)
[2010.04.20 14:51:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Adobe
[2010.04.07 16:09:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Data aplikací\SmarThru4
[2010.04.07 16:09:00 | 000,038,400 | ---- | C] (Samsung Electronics Co., Ltd.) -- C:\WINDOWS\System32\drivers\DgivEcp.sys
[2010.04.07 16:08:48 | 000,931,840 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTR13N.DLL
[2010.04.07 16:08:48 | 000,760,320 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltocx13n.ocx
[2010.04.07 16:08:48 | 000,533,504 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTRVW13N.OCX
[2010.04.07 16:08:48 | 000,465,920 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTRPR13n.DLL
[2010.04.07 16:08:48 | 000,406,016 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFCMP13s.DLL
[2010.04.07 16:08:48 | 000,326,144 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTRIO13N.DLL
[2010.04.07 16:08:48 | 000,249,856 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFJ2K13s.dll
[2010.04.07 16:08:48 | 000,187,392 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Lfpng13s.dll
[2010.04.07 16:08:48 | 000,152,064 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lftif13s.dll
[2010.04.07 16:08:48 | 000,099,840 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfjbg13s.dll
[2010.04.07 16:08:48 | 000,087,552 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfpsd13s.dll
[2010.04.07 16:08:48 | 000,086,528 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lffax13s.dll
[2010.04.07 16:08:48 | 000,073,728 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lffax13n.dll
[2010.04.07 16:08:48 | 000,057,856 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfeps13s.dll
[2010.04.07 16:08:48 | 000,044,032 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lttwn13n.dll
[2010.04.07 16:08:48 | 000,043,008 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFPNM13s.dll
[2010.04.07 16:08:48 | 000,043,008 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfbmp13s.dll
[2010.04.07 16:08:48 | 000,040,448 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfiff13s.dll
[2010.04.07 16:08:48 | 000,037,888 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfpcx13s.dll
[2010.04.07 16:08:48 | 000,037,376 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfclp13s.dll
[2010.04.07 16:08:48 | 000,036,864 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfani13s.dll
[2010.04.07 16:08:48 | 000,032,768 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfitg13s.dll
[2010.04.07 16:08:48 | 000,032,768 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfimg13s.dll
[2010.04.07 16:08:48 | 000,032,256 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfpcd13s.dll
[2010.04.07 16:08:48 | 000,031,744 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfmsp13s.dll
[2010.04.07 16:08:48 | 000,031,744 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfavi13s.dll
[2010.04.07 16:08:48 | 000,027,648 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfiff13n.dll
[2010.04.07 16:08:48 | 000,020,992 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfimg13n.dll
[2010.04.07 16:08:48 | 000,019,968 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfitg13n.dll
[2010.04.07 16:08:47 | 001,693,696 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTCLR13n.dll
[2010.04.07 16:08:47 | 001,402,368 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltdlg13n.dll
[2010.04.07 16:08:47 | 001,009,664 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Ltwvc13n.dll
[2010.04.07 16:08:47 | 000,453,120 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltkrn13n.dll
[2010.04.07 16:08:47 | 000,445,440 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltimg13n.dll
[2010.04.07 16:08:47 | 000,389,120 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFCMP13n.DLL
[2010.04.07 16:08:47 | 000,265,216 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTDIS13n.dll
[2010.04.07 16:08:47 | 000,246,272 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFJ2K13n.dll
[2010.04.07 16:08:47 | 000,212,480 | ---- | C] (Eastman Kodak) -- C:\WINDOWS\System32\PCDLIB32.DLL
[2010.04.07 16:08:47 | 000,206,848 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltefx13n.dll
[2010.04.07 16:08:47 | 000,182,784 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Lfpng13n.dll
[2010.04.07 16:08:47 | 000,158,720 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Ltpnt13n.dll
[2010.04.07 16:08:47 | 000,154,112 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltfil13n.DLL
[2010.04.07 16:08:47 | 000,142,848 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lftif13n.dll
[2010.04.07 16:08:47 | 000,114,176 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTOCR13n.dll
[2010.04.07 16:08:47 | 000,090,112 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfjbg13n.dll
[2010.04.07 16:08:47 | 000,077,312 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTTLB13n.dll
[2010.04.07 16:08:47 | 000,069,632 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltbar13n.dll
[2010.04.07 16:08:47 | 000,067,072 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltpdg13n.dll
[2010.04.07 16:08:47 | 000,057,344 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfpsd13n.dll
[2010.04.07 16:08:47 | 000,051,712 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltlst13n.dll
[2010.04.07 16:08:47 | 000,047,616 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfeps13n.dll
[2010.04.07 16:08:47 | 000,032,256 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lttmb13n.dll
[2010.04.07 16:08:47 | 000,031,744 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfclp13n.dll
[2010.04.07 16:08:47 | 000,031,232 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFPNM13n.dll
[2010.04.07 16:08:47 | 000,030,208 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfbmp13n.dll
[2010.04.07 16:08:47 | 000,026,624 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfpcx13n.dll
[2010.04.07 16:08:47 | 000,025,600 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfani13n.dll
[2010.04.07 16:08:47 | 000,019,968 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfpcd13n.dll
[2010.04.07 16:08:47 | 000,019,968 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfavi13n.dll
[2010.04.07 16:08:47 | 000,018,944 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfmsp13n.dll
[2010.04.07 16:08:46 | 000,146,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Mfcoleui.dll
[2010.04.07 16:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SRC Shared
[2010.04.07 16:08:09 | 000,000,000 | ---D | C] -- C:\Program Files\Readiris10
[2010.04.07 16:07:58 | 000,000,000 | ---D | C] -- C:\Program Files\SmarThru 4
[2010.04.07 16:07:47 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml4a.dll
[2010.04.07 16:07:47 | 000,021,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml2a.dll
[2010.04.07 16:07:47 | 000,000,000 | ---D | C] -- C:\Program Files\SamsungPrinterLiveUpdate
[2010.04.07 16:07:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Samsung
[2010.04.07 16:07:23 | 000,151,552 | ---- | C] (SS) -- C:\WINDOWS\System32\sse1mci.exe
[2010.04.07 16:07:23 | 000,065,536 | ---- | C] (SS) -- C:\WINDOWS\System32\sse1mci.dll
[2010.04.07 16:06:43 | 000,081,920 | ---- | C] (Samsung Electronics) -- C:\WINDOWS\System32\ssdevm.dll
[2010.04.07 16:06:43 | 000,049,152 | R--- | C] (Samsung Electronics) -- C:\WINDOWS\System32\Ssusbpn.dll
[2010.04.07 16:06:34 | 000,019,968 | ---- | C] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvpc.dll
[2010.04.07 16:06:33 | 000,410,112 | ---- | C] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvdu.dll
[2010.04.07 16:06:33 | 000,204,800 | ---- | C] (SEC) -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvcm.dll
[2010.04.07 16:06:32 | 001,011,712 | ---- | C] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrv.dll
[2010.04.07 16:06:32 | 000,151,552 | ---- | C] (SS) -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\coinst.exe
[2010.04.07 16:06:32 | 000,065,536 | ---- | C] (SS) -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\coinst.dll
[2010.04.07 16:06:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series
[2010.04.07 16:06:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\Samsung
[2010.04.07 16:06:20 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.04.25 15:56:17 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.04.25 15:56:15 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.04.25 15:54:38 | 004,456,448 | -H-- | M] () -- C:\Documents and Settings\user\NTUSER.DAT
[2010.04.25 15:54:38 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\user\ntuser.ini
[2010.04.25 15:38:09 | 000,003,468 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2010.04.25 15:32:52 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.04.25 15:28:05 | 000,001,022 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1659004503-725345543-1004UA.job
[2010.04.25 15:13:45 | 000,382,080 | ---- | M] () -- C:\Documents and Settings\user\Plocha\cc_20100425_151329.reg
[2010.04.25 15:06:32 | 000,001,548 | ---- | M] () -- C:\Documents and Settings\user\Plocha\CCleaner.lnk
[2010.04.25 13:33:16 | 000,002,439 | ---- | M] () -- C:\Documents and Settings\user\Plocha\HiJackThis.lnk
[2010.04.24 16:28:00 | 000,000,970 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1659004503-725345543-1004Core.job
[2010.04.24 13:27:53 | 000,002,553 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010.04.24 13:27:53 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2010.04.24 11:21:53 | 001,020,324 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.04.24 11:21:53 | 000,432,492 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.04.24 11:21:53 | 000,429,024 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.04.24 11:21:53 | 000,078,052 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.04.24 11:21:53 | 000,067,448 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.04.23 21:55:56 | 002,638,868 | -H-- | M] () -- C:\Documents and Settings\user\Local Settings\Data aplikací\IconCache.db
[2010.04.23 16:17:07 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.04.22 12:36:34 | 000,000,737 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010.04.21 15:10:58 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.04.20 14:51:40 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.04.14 18:47:23 | 000,038,848 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\avastSS.scr
[2010.04.14 18:47:03 | 000,153,184 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010.04.14 18:35:47 | 000,046,672 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010.04.14 18:35:25 | 000,162,768 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010.04.14 18:31:39 | 000,023,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010.04.14 18:31:12 | 000,100,432 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010.04.14 18:31:09 | 000,094,800 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010.04.14 18:31:01 | 000,019,024 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010.04.14 18:30:45 | 000,028,880 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010.04.13 19:10:54 | 000,409,600 | ---- | M] () -- C:\Documents and Settings\user\Plocha\UNKNOWN_PARAMETER_VALUE.ppt
[2010.04.11 15:33:06 | 000,013,312 | ---- | M] () -- C:\Documents and Settings\user\Plocha\Biologie.doc
[2010.04.10 15:13:48 | 000,011,776 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\SmarThruOptions.xml
[2010.04.07 16:08:45 | 000,000,124 | ---- | M] () -- C:\WINDOWS\Readiris.ini
[2010.04.07 16:08:00 | 000,000,539 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\SmarThru 4.lnk
[2010.04.05 15:01:28 | 001,592,320 | ---- | M] () -- C:\Documents and Settings\user\Plocha\Zrani.ppt
[2010.03.30 20:54:17 | 002,428,928 | ---- | M] () -- C:\Documents and Settings\user\Plocha\petercottontail.mp3
[2010.03.30 00:46:30 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.03.30 00:45:52 | 000,020,824 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.04.25 15:32:52 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.04.25 15:13:36 | 000,382,080 | ---- | C] () -- C:\Documents and Settings\user\Plocha\cc_20100425_151329.reg
[2010.04.25 15:06:32 | 000,001,548 | ---- | C] () -- C:\Documents and Settings\user\Plocha\CCleaner.lnk
[2010.04.25 13:17:26 | 000,002,439 | ---- | C] () -- C:\Documents and Settings\user\Plocha\HiJackThis.lnk
[2010.04.24 13:27:53 | 000,001,700 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2010.04.23 16:23:04 | 000,001,022 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1659004503-725345543-1004UA.job
[2010.04.23 16:23:04 | 000,000,970 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1659004503-725345543-1004Core.job
[2010.04.20 14:51:40 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.04.13 19:10:54 | 000,409,600 | ---- | C] () -- C:\Documents and Settings\user\Plocha\UNKNOWN_PARAMETER_VALUE.ppt
[2010.04.11 15:33:05 | 000,013,312 | ---- | C] () -- C:\Documents and Settings\user\Plocha\Biologie.doc
[2010.04.07 16:09:10 | 000,011,776 | ---- | C] () -- C:\Documents and Settings\user\Data aplikací\SmarThruOptions.xml
[2010.04.07 16:08:49 | 000,172,032 | ---- | C] () -- C:\WINDOWS\System32\SecSNMP.dll
[2010.04.07 16:08:48 | 000,000,422 | ---- | C] () -- C:\WINDOWS\System32\ltocx13.lic
[2010.04.07 16:08:45 | 000,000,124 | ---- | C] () -- C:\WINDOWS\Readiris.ini
[2010.04.07 16:08:42 | 000,023,040 | ---- | C] () -- C:\WINDOWS\System32\irisco32.dll
[2010.04.07 16:08:00 | 000,000,539 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\SmarThru 4.lnk
[2010.04.07 16:07:48 | 000,482,408 | ---- | C] () -- C:\WINDOWS\ssndii.exe
[2010.04.07 16:07:23 | 000,022,723 | ---- | C] () -- C:\WINDOWS\System32\sse1ml3.dll
[2010.04.07 16:07:23 | 000,000,556 | ---- | C] () -- C:\WINDOWS\System32\sse1ml3.smt
[2010.04.07 16:07:04 | 000,011,502 | ---- | C] () -- C:\WINDOWS\Dr. Printer Icon.ico
[2010.04.07 16:06:44 | 000,113,768 | R--- | C] () -- C:\WINDOWS\WiaInst.exe
[2010.04.07 16:06:43 | 000,192,512 | R--- | C] () -- C:\WINDOWS\System32\SaXPWIA.dll
[2010.04.07 16:06:43 | 000,140,288 | R--- | C] () -- C:\WINDOWS\System32\SaXPEH.dll
[2010.04.07 16:06:43 | 000,138,240 | R--- | C] () -- C:\WINDOWS\System32\SaXPUIEx.dll
[2010.04.07 16:06:43 | 000,117,248 | R--- | C] () -- C:\WINDOWS\System32\SaXPIPH.dll
[2010.04.07 16:06:43 | 000,087,552 | R--- | C] () -- C:\WINDOWS\System32\SaXPSTI.dll
[2010.04.07 16:06:43 | 000,007,409 | R--- | C] () -- C:\WINDOWS\System32\WIAUISTR.loc
[2010.04.07 16:06:35 | 001,032,192 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvum.dll
[2010.04.07 16:06:35 | 000,835,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvu2.dll
[2010.04.07 16:06:35 | 000,626,874 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvua.bmp
[2010.04.07 16:06:35 | 000,206,278 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvub.bmp
[2010.04.07 16:06:35 | 000,051,536 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\sse1mu.bmp
[2010.04.07 16:06:35 | 000,036,323 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\sse1m.cat
[2010.04.07 16:06:35 | 000,024,250 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvum.xml
[2010.04.07 16:06:35 | 000,022,723 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\sse1ml3.dll
[2010.04.07 16:06:35 | 000,008,465 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\sse1m.inf
[2010.04.07 16:06:35 | 000,005,020 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\sse1mu.ini
[2010.04.07 16:06:35 | 000,004,072 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvul.bmp
[2010.04.07 16:06:35 | 000,000,556 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\sse1ml3.SMT
[2010.04.07 16:06:35 | 000,000,527 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\sse1mpp.ver
[2010.04.07 16:06:34 | 000,929,792 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvu.dll
[2010.04.07 16:06:34 | 000,217,088 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvo.dll
[2010.04.07 16:06:34 | 000,083,730 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvgr.dat
[2010.04.07 16:06:34 | 000,082,987 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvsp.dat
[2010.04.07 16:06:34 | 000,082,974 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvpt.dat
[2010.04.07 16:06:34 | 000,082,040 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvit.dat
[2010.04.07 16:06:34 | 000,080,802 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvhu.dat
OTL by OldTimer - Version 3.2.2.0 Folder = G:\
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 74,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 90,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 63,52 Gb Free Space | 65,05% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 74,52 Gb Total Space | 18,75 Gb Free Space | 25,16% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
Drive G: | 3,76 Gb Total Space | 3,63 Gb Free Space | 96,50% Space Free | Partition Type: FAT32
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: USER-608A6EAA30
Current User Name: user
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.04.25 16:11:00 | 000,562,688 | ---- | M] (OldTimer Tools) -- G:\OTL.exe
PRC - [2010.04.14 18:47:08 | 002,790,472 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010.04.14 18:47:05 | 000,040,384 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2009.11.13 15:34:46 | 000,323,392 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\DNA\btdna.exe
PRC - [2009.09.20 11:27:17 | 000,198,160 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2009.03.05 16:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2008.10.05 15:01:26 | 007,430,144 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2008.10.05 15:01:24 | 007,434,240 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006.12.18 15:34:36 | 000,868,352 | R--- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe
PRC - [2006.07.13 16:59:48 | 000,131,131 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
PRC - [2006.07.13 16:59:32 | 000,065,599 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
PRC - [2006.04.03 18:04:02 | 000,020,543 | ---- | M] (Apache Software Foundation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe
========== Modules (SafeList) ==========
MOD - [2010.04.25 16:11:00 | 000,562,688 | ---- | M] (OldTimer Tools) -- G:\OTL.exe
========== Win32 Services (SafeList) ==========
SRV - [2010.04.14 18:47:05 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010.04.14 18:47:05 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010.04.14 18:47:05 | 000,040,384 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2008.07.29 19:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2006.07.13 16:59:48 | 000,131,131 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe -- (nSvcIp)
SRV - [2006.07.13 16:59:32 | 000,065,599 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe -- (nSvcLog)
SRV - [2006.04.03 18:04:02 | 000,020,543 | ---- | M] (Apache Software Foundation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe -- (ForcewareWebInterface)
========== Driver Services (SafeList) ==========
DRV - [2010.04.14 18:35:47 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010.04.14 18:35:25 | 000,162,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
DRV - [2010.04.14 18:31:39 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010.04.14 18:31:12 | 000,100,432 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2010.04.14 18:31:01 | 000,019,024 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010.04.14 18:30:45 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2010.03.30 00:46:30 | 000,038,224 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2009.02.04 14:20:10 | 000,038,400 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\DgivEcp.sys -- (DgiVecp)
DRV - [2008.12.03 22:33:13 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008.04.13 18:36:05 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007.12.18 04:46:24 | 002,849,280 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007.01.16 03:09:06 | 000,293,888 | R--- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV - [2006.12.28 05:44:44 | 000,084,992 | R--- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdAud.sys -- (HdAudAddService)
DRV - [2006.08.14 08:51:28 | 000,105,344 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata)
DRV - [2006.07.11 15:38:30 | 000,020,480 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2006.07.11 15:38:28 | 000,057,856 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2006.06.18 23:59:28 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006.03.17 11:18:58 | 000,392,960 | R--- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService)
DRV - [2004.08.13 04:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-606747145-1659004503-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-606747145-1659004503-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.5
FF - prefs.js..network.proxy.type: 4
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.1\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2009.09.20 11:27:32 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.1\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2010.04.22 17:55:11 | 000,000,000 | ---D | M]
[2009.07.08 11:03:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Mozilla\Extensions
[2010.04.23 15:13:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\o5lmi18u.default\extensions
[2009.11.13 15:54:43 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\o5lmi18u.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009.07.08 12:41:00 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\o5lmi18u.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
O1 HOSTS File: ([2010.04.22 12:36:34 | 000,000,737 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-606747145-1659004503-725345543-1004\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [Samsung PanelMgr] C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe ()
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKU\S-1-5-21-606747145-1659004503-725345543-1004..\Run: [BitTorrent DNA] C:\Program Files\DNA\btdna.exe (BitTorrent, Inc.)
O4 - HKU\S-1-5-21-606747145-1659004503-725345543-1004..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - Startup: C:\Documents and Settings\user\Nabídka Start\Programy\Po spuštění\OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-606747145-1659004503-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.microsoft.com/templates/ieawsdc.cab (Microsoft Office Template and Media Control)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.apple.com.edgesuite.net ... plugin.cab (QuickTime Object)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.10.16 15:42:28 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2004.12.08 22:06:23 | 000,000,000 | ---- | M] () - E:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{c98ee342-9b95-11dd-a095-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{c98ee342-9b95-11dd-a095-806d6172696f}\Shell\AutoRun\command - "" = D:\Setup.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2008.10.16 17:14:20 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: Wmi - C:\WINDOWS\system32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.ffds - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: VIDC.FPS1 - C:\WINDOWS\System32\frapsvid.dll (Beepa P/L)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (74885954556395520)
========== Files/Folders - Created Within 30 Days ==========
[2010.04.25 15:32:49 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.04.25 15:32:48 | 000,020,824 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.04.25 15:22:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Data aplikací\Malwarebytes
[2010.04.25 15:22:43 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010.04.25 15:22:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2010.04.25 15:12:54 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\user\Recent
[2010.04.25 15:06:31 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010.04.25 15:03:23 | 000,000,000 | ---D | C] -- C:\Program Files\ReviverSoft
[2010.04.25 15:03:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ReviverSoft
[2010.04.25 13:31:22 | 000,000,000 | ---D | C] -- C:\rsit
[2010.04.25 13:17:26 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2010.04.24 13:27:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2010.04.24 11:38:52 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller
[2010.04.24 11:38:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\NortonInstaller
[2010.04.23 16:23:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Local Settings\Data aplikací\Temp
[2010.04.23 16:23:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Local Settings\Data aplikací\Google
[2010.04.23 16:22:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Local Settings\Data aplikací\Deployment
[2010.04.23 16:17:27 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2010.04.22 12:21:05 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2010.04.22 12:21:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
[2010.04.22 12:18:19 | 000,000,000 | ---D | C] -- C:\Program Files\SDHelper (Spybot - Search & Destroy)
[2010.04.22 12:18:19 | 000,000,000 | ---D | C] -- C:\Program Files\File Scanner Library (Spybot - Search & Destroy)
[2010.04.20 14:51:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Adobe
[2010.04.07 16:09:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Data aplikací\SmarThru4
[2010.04.07 16:09:00 | 000,038,400 | ---- | C] (Samsung Electronics Co., Ltd.) -- C:\WINDOWS\System32\drivers\DgivEcp.sys
[2010.04.07 16:08:48 | 000,931,840 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTR13N.DLL
[2010.04.07 16:08:48 | 000,760,320 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltocx13n.ocx
[2010.04.07 16:08:48 | 000,533,504 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTRVW13N.OCX
[2010.04.07 16:08:48 | 000,465,920 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTRPR13n.DLL
[2010.04.07 16:08:48 | 000,406,016 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFCMP13s.DLL
[2010.04.07 16:08:48 | 000,326,144 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTRIO13N.DLL
[2010.04.07 16:08:48 | 000,249,856 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFJ2K13s.dll
[2010.04.07 16:08:48 | 000,187,392 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Lfpng13s.dll
[2010.04.07 16:08:48 | 000,152,064 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lftif13s.dll
[2010.04.07 16:08:48 | 000,099,840 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfjbg13s.dll
[2010.04.07 16:08:48 | 000,087,552 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfpsd13s.dll
[2010.04.07 16:08:48 | 000,086,528 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lffax13s.dll
[2010.04.07 16:08:48 | 000,073,728 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lffax13n.dll
[2010.04.07 16:08:48 | 000,057,856 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfeps13s.dll
[2010.04.07 16:08:48 | 000,044,032 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lttwn13n.dll
[2010.04.07 16:08:48 | 000,043,008 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFPNM13s.dll
[2010.04.07 16:08:48 | 000,043,008 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfbmp13s.dll
[2010.04.07 16:08:48 | 000,040,448 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfiff13s.dll
[2010.04.07 16:08:48 | 000,037,888 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfpcx13s.dll
[2010.04.07 16:08:48 | 000,037,376 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfclp13s.dll
[2010.04.07 16:08:48 | 000,036,864 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfani13s.dll
[2010.04.07 16:08:48 | 000,032,768 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfitg13s.dll
[2010.04.07 16:08:48 | 000,032,768 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfimg13s.dll
[2010.04.07 16:08:48 | 000,032,256 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfpcd13s.dll
[2010.04.07 16:08:48 | 000,031,744 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfmsp13s.dll
[2010.04.07 16:08:48 | 000,031,744 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfavi13s.dll
[2010.04.07 16:08:48 | 000,027,648 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfiff13n.dll
[2010.04.07 16:08:48 | 000,020,992 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfimg13n.dll
[2010.04.07 16:08:48 | 000,019,968 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfitg13n.dll
[2010.04.07 16:08:47 | 001,693,696 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTCLR13n.dll
[2010.04.07 16:08:47 | 001,402,368 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltdlg13n.dll
[2010.04.07 16:08:47 | 001,009,664 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Ltwvc13n.dll
[2010.04.07 16:08:47 | 000,453,120 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltkrn13n.dll
[2010.04.07 16:08:47 | 000,445,440 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltimg13n.dll
[2010.04.07 16:08:47 | 000,389,120 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFCMP13n.DLL
[2010.04.07 16:08:47 | 000,265,216 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTDIS13n.dll
[2010.04.07 16:08:47 | 000,246,272 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFJ2K13n.dll
[2010.04.07 16:08:47 | 000,212,480 | ---- | C] (Eastman Kodak) -- C:\WINDOWS\System32\PCDLIB32.DLL
[2010.04.07 16:08:47 | 000,206,848 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltefx13n.dll
[2010.04.07 16:08:47 | 000,182,784 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Lfpng13n.dll
[2010.04.07 16:08:47 | 000,158,720 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Ltpnt13n.dll
[2010.04.07 16:08:47 | 000,154,112 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltfil13n.DLL
[2010.04.07 16:08:47 | 000,142,848 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lftif13n.dll
[2010.04.07 16:08:47 | 000,114,176 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTOCR13n.dll
[2010.04.07 16:08:47 | 000,090,112 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfjbg13n.dll
[2010.04.07 16:08:47 | 000,077,312 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTTLB13n.dll
[2010.04.07 16:08:47 | 000,069,632 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltbar13n.dll
[2010.04.07 16:08:47 | 000,067,072 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltpdg13n.dll
[2010.04.07 16:08:47 | 000,057,344 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfpsd13n.dll
[2010.04.07 16:08:47 | 000,051,712 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltlst13n.dll
[2010.04.07 16:08:47 | 000,047,616 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfeps13n.dll
[2010.04.07 16:08:47 | 000,032,256 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lttmb13n.dll
[2010.04.07 16:08:47 | 000,031,744 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfclp13n.dll
[2010.04.07 16:08:47 | 000,031,232 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFPNM13n.dll
[2010.04.07 16:08:47 | 000,030,208 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfbmp13n.dll
[2010.04.07 16:08:47 | 000,026,624 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfpcx13n.dll
[2010.04.07 16:08:47 | 000,025,600 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfani13n.dll
[2010.04.07 16:08:47 | 000,019,968 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfpcd13n.dll
[2010.04.07 16:08:47 | 000,019,968 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfavi13n.dll
[2010.04.07 16:08:47 | 000,018,944 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfmsp13n.dll
[2010.04.07 16:08:46 | 000,146,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Mfcoleui.dll
[2010.04.07 16:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SRC Shared
[2010.04.07 16:08:09 | 000,000,000 | ---D | C] -- C:\Program Files\Readiris10
[2010.04.07 16:07:58 | 000,000,000 | ---D | C] -- C:\Program Files\SmarThru 4
[2010.04.07 16:07:47 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml4a.dll
[2010.04.07 16:07:47 | 000,021,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml2a.dll
[2010.04.07 16:07:47 | 000,000,000 | ---D | C] -- C:\Program Files\SamsungPrinterLiveUpdate
[2010.04.07 16:07:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Samsung
[2010.04.07 16:07:23 | 000,151,552 | ---- | C] (SS) -- C:\WINDOWS\System32\sse1mci.exe
[2010.04.07 16:07:23 | 000,065,536 | ---- | C] (SS) -- C:\WINDOWS\System32\sse1mci.dll
[2010.04.07 16:06:43 | 000,081,920 | ---- | C] (Samsung Electronics) -- C:\WINDOWS\System32\ssdevm.dll
[2010.04.07 16:06:43 | 000,049,152 | R--- | C] (Samsung Electronics) -- C:\WINDOWS\System32\Ssusbpn.dll
[2010.04.07 16:06:34 | 000,019,968 | ---- | C] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvpc.dll
[2010.04.07 16:06:33 | 000,410,112 | ---- | C] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvdu.dll
[2010.04.07 16:06:33 | 000,204,800 | ---- | C] (SEC) -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvcm.dll
[2010.04.07 16:06:32 | 001,011,712 | ---- | C] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrv.dll
[2010.04.07 16:06:32 | 000,151,552 | ---- | C] (SS) -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\coinst.exe
[2010.04.07 16:06:32 | 000,065,536 | ---- | C] (SS) -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\coinst.dll
[2010.04.07 16:06:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series
[2010.04.07 16:06:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\Samsung
[2010.04.07 16:06:20 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.04.25 15:56:17 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.04.25 15:56:15 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.04.25 15:54:38 | 004,456,448 | -H-- | M] () -- C:\Documents and Settings\user\NTUSER.DAT
[2010.04.25 15:54:38 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\user\ntuser.ini
[2010.04.25 15:38:09 | 000,003,468 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2010.04.25 15:32:52 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.04.25 15:28:05 | 000,001,022 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1659004503-725345543-1004UA.job
[2010.04.25 15:13:45 | 000,382,080 | ---- | M] () -- C:\Documents and Settings\user\Plocha\cc_20100425_151329.reg
[2010.04.25 15:06:32 | 000,001,548 | ---- | M] () -- C:\Documents and Settings\user\Plocha\CCleaner.lnk
[2010.04.25 13:33:16 | 000,002,439 | ---- | M] () -- C:\Documents and Settings\user\Plocha\HiJackThis.lnk
[2010.04.24 16:28:00 | 000,000,970 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1659004503-725345543-1004Core.job
[2010.04.24 13:27:53 | 000,002,553 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010.04.24 13:27:53 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2010.04.24 11:21:53 | 001,020,324 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.04.24 11:21:53 | 000,432,492 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.04.24 11:21:53 | 000,429,024 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.04.24 11:21:53 | 000,078,052 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.04.24 11:21:53 | 000,067,448 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.04.23 21:55:56 | 002,638,868 | -H-- | M] () -- C:\Documents and Settings\user\Local Settings\Data aplikací\IconCache.db
[2010.04.23 16:17:07 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.04.22 12:36:34 | 000,000,737 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010.04.21 15:10:58 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.04.20 14:51:40 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.04.14 18:47:23 | 000,038,848 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\avastSS.scr
[2010.04.14 18:47:03 | 000,153,184 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010.04.14 18:35:47 | 000,046,672 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010.04.14 18:35:25 | 000,162,768 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010.04.14 18:31:39 | 000,023,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010.04.14 18:31:12 | 000,100,432 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010.04.14 18:31:09 | 000,094,800 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010.04.14 18:31:01 | 000,019,024 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010.04.14 18:30:45 | 000,028,880 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010.04.13 19:10:54 | 000,409,600 | ---- | M] () -- C:\Documents and Settings\user\Plocha\UNKNOWN_PARAMETER_VALUE.ppt
[2010.04.11 15:33:06 | 000,013,312 | ---- | M] () -- C:\Documents and Settings\user\Plocha\Biologie.doc
[2010.04.10 15:13:48 | 000,011,776 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\SmarThruOptions.xml
[2010.04.07 16:08:45 | 000,000,124 | ---- | M] () -- C:\WINDOWS\Readiris.ini
[2010.04.07 16:08:00 | 000,000,539 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\SmarThru 4.lnk
[2010.04.05 15:01:28 | 001,592,320 | ---- | M] () -- C:\Documents and Settings\user\Plocha\Zrani.ppt
[2010.03.30 20:54:17 | 002,428,928 | ---- | M] () -- C:\Documents and Settings\user\Plocha\petercottontail.mp3
[2010.03.30 00:46:30 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.03.30 00:45:52 | 000,020,824 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.04.25 15:32:52 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.04.25 15:13:36 | 000,382,080 | ---- | C] () -- C:\Documents and Settings\user\Plocha\cc_20100425_151329.reg
[2010.04.25 15:06:32 | 000,001,548 | ---- | C] () -- C:\Documents and Settings\user\Plocha\CCleaner.lnk
[2010.04.25 13:17:26 | 000,002,439 | ---- | C] () -- C:\Documents and Settings\user\Plocha\HiJackThis.lnk
[2010.04.24 13:27:53 | 000,001,700 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2010.04.23 16:23:04 | 000,001,022 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1659004503-725345543-1004UA.job
[2010.04.23 16:23:04 | 000,000,970 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1659004503-725345543-1004Core.job
[2010.04.20 14:51:40 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.04.13 19:10:54 | 000,409,600 | ---- | C] () -- C:\Documents and Settings\user\Plocha\UNKNOWN_PARAMETER_VALUE.ppt
[2010.04.11 15:33:05 | 000,013,312 | ---- | C] () -- C:\Documents and Settings\user\Plocha\Biologie.doc
[2010.04.07 16:09:10 | 000,011,776 | ---- | C] () -- C:\Documents and Settings\user\Data aplikací\SmarThruOptions.xml
[2010.04.07 16:08:49 | 000,172,032 | ---- | C] () -- C:\WINDOWS\System32\SecSNMP.dll
[2010.04.07 16:08:48 | 000,000,422 | ---- | C] () -- C:\WINDOWS\System32\ltocx13.lic
[2010.04.07 16:08:45 | 000,000,124 | ---- | C] () -- C:\WINDOWS\Readiris.ini
[2010.04.07 16:08:42 | 000,023,040 | ---- | C] () -- C:\WINDOWS\System32\irisco32.dll
[2010.04.07 16:08:00 | 000,000,539 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\SmarThru 4.lnk
[2010.04.07 16:07:48 | 000,482,408 | ---- | C] () -- C:\WINDOWS\ssndii.exe
[2010.04.07 16:07:23 | 000,022,723 | ---- | C] () -- C:\WINDOWS\System32\sse1ml3.dll
[2010.04.07 16:07:23 | 000,000,556 | ---- | C] () -- C:\WINDOWS\System32\sse1ml3.smt
[2010.04.07 16:07:04 | 000,011,502 | ---- | C] () -- C:\WINDOWS\Dr. Printer Icon.ico
[2010.04.07 16:06:44 | 000,113,768 | R--- | C] () -- C:\WINDOWS\WiaInst.exe
[2010.04.07 16:06:43 | 000,192,512 | R--- | C] () -- C:\WINDOWS\System32\SaXPWIA.dll
[2010.04.07 16:06:43 | 000,140,288 | R--- | C] () -- C:\WINDOWS\System32\SaXPEH.dll
[2010.04.07 16:06:43 | 000,138,240 | R--- | C] () -- C:\WINDOWS\System32\SaXPUIEx.dll
[2010.04.07 16:06:43 | 000,117,248 | R--- | C] () -- C:\WINDOWS\System32\SaXPIPH.dll
[2010.04.07 16:06:43 | 000,087,552 | R--- | C] () -- C:\WINDOWS\System32\SaXPSTI.dll
[2010.04.07 16:06:43 | 000,007,409 | R--- | C] () -- C:\WINDOWS\System32\WIAUISTR.loc
[2010.04.07 16:06:35 | 001,032,192 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvum.dll
[2010.04.07 16:06:35 | 000,835,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvu2.dll
[2010.04.07 16:06:35 | 000,626,874 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvua.bmp
[2010.04.07 16:06:35 | 000,206,278 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvub.bmp
[2010.04.07 16:06:35 | 000,051,536 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\sse1mu.bmp
[2010.04.07 16:06:35 | 000,036,323 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\sse1m.cat
[2010.04.07 16:06:35 | 000,024,250 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvum.xml
[2010.04.07 16:06:35 | 000,022,723 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\sse1ml3.dll
[2010.04.07 16:06:35 | 000,008,465 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\sse1m.inf
[2010.04.07 16:06:35 | 000,005,020 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\sse1mu.ini
[2010.04.07 16:06:35 | 000,004,072 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvul.bmp
[2010.04.07 16:06:35 | 000,000,556 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\sse1ml3.SMT
[2010.04.07 16:06:35 | 000,000,527 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\sse1mpp.ver
[2010.04.07 16:06:34 | 000,929,792 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvu.dll
[2010.04.07 16:06:34 | 000,217,088 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvo.dll
[2010.04.07 16:06:34 | 000,083,730 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvgr.dat
[2010.04.07 16:06:34 | 000,082,987 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvsp.dat
[2010.04.07 16:06:34 | 000,082,974 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvpt.dat
[2010.04.07 16:06:34 | 000,082,040 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvit.dat
[2010.04.07 16:06:34 | 000,080,802 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvhu.dat
Re: Problémy s internetem, pomalé načitání
[2010.04.07 16:06:34 | 000,080,441 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvru.dat
[2010.04.07 16:06:34 | 000,079,600 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvpo.dat
[2010.04.07 16:06:34 | 000,077,604 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvtk.dat
[2010.04.07 16:06:34 | 000,076,959 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvsw.dat
[2010.04.07 16:06:34 | 000,076,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvnr.dat
[2010.04.07 16:06:34 | 000,071,490 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvkr.dat
[2010.04.07 16:06:34 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvlf.dll
[2010.04.07 16:06:34 | 000,034,205 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvhu.chm
[2010.04.07 16:06:34 | 000,034,075 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvpo.chm
[2010.04.07 16:06:34 | 000,033,815 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvgr.chm
[2010.04.07 16:06:34 | 000,033,649 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvru.chm
[2010.04.07 16:06:34 | 000,033,187 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvkr.chm
[2010.04.07 16:06:34 | 000,033,089 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvpt.chm
[2010.04.07 16:06:34 | 000,033,047 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvsp.chm
[2010.04.07 16:06:34 | 000,032,741 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvit.chm
[2010.04.07 16:06:34 | 000,032,345 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvtk.chm
[2010.04.07 16:06:34 | 000,032,243 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvsw.chm
[2010.04.07 16:06:34 | 000,031,821 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvnr.chm
[2010.04.07 16:06:34 | 000,015,318 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvpp.dll
[2010.04.07 16:06:33 | 000,087,134 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvfn.dat
[2010.04.07 16:06:33 | 000,084,076 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvel.dat
[2010.04.07 16:06:33 | 000,081,898 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvbp.dat
[2010.04.07 16:06:33 | 000,081,018 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvdt.dat
[2010.04.07 16:06:33 | 000,078,768 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvfi.dat
[2010.04.07 16:06:33 | 000,077,879 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvdn.dat
[2010.04.07 16:06:33 | 000,077,734 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvcz.dat
[2010.04.07 16:06:33 | 000,074,785 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrven.dat
[2010.04.07 16:06:33 | 000,064,494 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvcp.dat
[2010.04.07 16:06:33 | 000,064,315 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvct.dat
[2010.04.07 16:06:33 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvIO.DLL
[2010.04.07 16:06:33 | 000,038,192 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvcm.ctd
[2010.04.07 16:06:33 | 000,034,625 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvel.chm
[2010.04.07 16:06:33 | 000,033,451 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvcz.chm
[2010.04.07 16:06:33 | 000,033,417 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvfn.chm
[2010.04.07 16:06:33 | 000,033,107 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvdt.chm
[2010.04.07 16:06:33 | 000,032,749 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvct.chm
[2010.04.07 16:06:33 | 000,032,719 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvcp.chm
[2010.04.07 16:06:33 | 000,032,467 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvbp.chm
[2010.04.07 16:06:33 | 000,032,409 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvdn.chm
[2010.04.07 16:06:33 | 000,032,299 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvfi.chm
[2010.04.07 16:06:33 | 000,031,467 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrven.chm
[2010.04.05 15:01:26 | 001,592,320 | ---- | C] () -- C:\Documents and Settings\user\Plocha\Zrani.ppt
[2010.03.30 20:54:16 | 002,428,928 | ---- | C] () -- C:\Documents and Settings\user\Plocha\petercottontail.mp3
[2009.11.06 11:58:04 | 000,178,975 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2008.12.26 21:21:57 | 000,000,025 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2008.12.19 20:52:58 | 000,331,264 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2008.12.19 20:52:58 | 000,104,960 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2008.12.19 17:25:41 | 000,000,107 | ---- | C] () -- C:\WINDOWS\gfscore.ini
[2008.12.03 22:33:13 | 000,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2008.10.25 17:21:21 | 000,000,088 | ---- | C] () -- C:\WINDOWS\dictor.ini
[2008.10.24 20:31:42 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008.10.23 17:45:43 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\CNMVS7K.DLL
[2008.10.22 19:26:53 | 000,157,184 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2008.10.21 19:29:39 | 000,003,468 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2008.10.21 18:44:08 | 000,014,288 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2008.10.21 16:51:18 | 000,000,765 | ---- | C] () -- C:\WINDOWS\602Photo.INI
[2008.10.20 12:02:06 | 000,000,804 | R--- | C] () -- C:\WINDOWS\System32\AsusSetup.ini
[2008.10.20 12:02:06 | 000,000,276 | R--- | C] () -- C:\WINDOWS\System32\raidmgmt.ini
[2008.10.20 12:01:35 | 000,014,129 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2008.10.20 12:00:53 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2008.10.20 12:00:34 | 000,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2008.03.28 18:41:32 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2007.07.10 17:10:12 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
========== LOP Check ==========
[2010.04.24 13:27:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2008.10.23 20:28:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ashampoo
[2008.10.23 17:45:48 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonBJ
[2008.12.11 16:13:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\NFS Underground
[2010.04.25 15:03:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ReviverSoft
[2009.12.25 21:11:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2008.10.23 20:28:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Ashampoo
[2010.02.27 22:52:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\BitTorrent
[2010.02.23 15:35:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Canon
[2008.12.03 22:33:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\DAEMON Tools
[2010.04.25 16:16:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\DNA
[2009.03.11 19:57:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ICQ
[2008.10.23 17:08:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\IEPro
[2010.01.27 15:44:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Leadertech
[2008.10.21 18:07:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\OpenOffice.org
[2010.04.07 16:09:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\SmarThru4
[2009.04.23 20:00:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Software602
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 05:22:17 | 000,015,360 | ---- | M] (Microsoft Corporation)
"BitTorrent DNA" = "C:\Program Files\DNA\btdna.exe" -- [2009.11.13 15:34:46 | 000,323,392 | ---- | M] (BitTorrent, Inc.)
"MSMSGS" = "C:\Program Files\Messenger\msmsgs.exe" /background -- [2008.04.14 05:22:36 | 001,695,232 | ---- | M] (Microsoft Corporation)
"SpybotSD TeaTimer" = C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe -- [2009.03.05 16:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.)
"Google Update" = "C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c -- [2010.04.23 16:23:03 | 000,136,176 | ---- | M] (Google Inc.)
< c:\windows\*.* /U >
[4 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2008.10.21 16:49:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Adobe
[2008.10.21 19:46:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\AdobeUM
[2008.10.29 12:03:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Ahead
[2009.06.03 15:10:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Apple Computer
[2008.11.30 16:34:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ArcSoft
[2008.10.23 20:28:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Ashampoo
[2008.10.20 13:52:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ATI
[2010.02.27 22:52:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\BitTorrent
[2010.02.23 15:35:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Canon
[2008.12.03 22:33:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\DAEMON Tools
[2010.04.25 16:16:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\DNA
[2010.02.10 20:05:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\dvdcss
[2008.12.10 19:13:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Help
[2009.03.11 19:57:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ICQ
[2008.10.16 16:18:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Identities
[2008.10.23 17:08:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\IEPro
[2010.01.27 15:44:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Leadertech
[2009.08.23 12:48:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Macromedia
[2010.04.25 15:22:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Malwarebytes
[2008.10.24 15:59:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Media Player Classic
[2010.04.23 16:42:56 | 000,000,000 | --SD | M] -- C:\Documents and Settings\user\Data aplikací\Microsoft
[2009.07.08 11:03:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Mozilla
[2008.12.04 15:51:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Nero
[2008.10.21 18:07:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\OpenOffice.org
[2009.09.20 11:27:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Real
[2010.04.07 16:09:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\SmarThru4
[2009.04.23 20:00:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Software602
[2010.02.04 21:28:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\vlc
< %APPDATA%\*.exe /s >
[2010.04.25 13:17:27 | 000,388,096 | R--- | M] (Trend Micro Inc.) -- C:\Documents and Settings\user\Data aplikací\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
[2008.10.20 13:41:20 | 000,009,158 | R--- | M] () -- C:\Documents and Settings\user\Data aplikací\Microsoft\Installer\{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}\ARPPRODUCTICON.exe
[2008.10.23 14:45:26 | 000,029,310 | R--- | M] () -- C:\Documents and Settings\user\Data aplikací\Microsoft\Installer\{BFBF0452-83DE-4678-9F1D-E58AA41265F0}\_461d43f4.exe
[2008.10.23 14:45:26 | 000,029,310 | R--- | M] () -- C:\Documents and Settings\user\Data aplikací\Microsoft\Installer\{BFBF0452-83DE-4678-9F1D-E58AA41265F0}\_68b21da6.exe
[2010.04.12 19:41:21 | 000,439,816 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\user\Data aplikací\Real\Update\setup3.10\setup.exe
< MD5 for: AGP440.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.10.23 17:29:11 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.10.23 17:29:11 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
< MD5 for: ATAPI.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.10.23 17:29:11 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.10.23 17:29:11 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.18 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004.08.18 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386\atapi.sys
< MD5 for: CRYPTSVC.DLL >
[2004.08.18 14:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2004.08.18 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004.08.18 14:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
< MD5 for: HAL.DLL >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.10.23 17:29:11 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.10.23 17:29:11 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 20:31:28 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2004.08.18 14:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll
< MD5 for: CHANGER.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.10.23 17:29:11 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008.10.23 17:29:11 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
< MD5 for: LSASS.EXE >
[2004.08.18 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004.08.18 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
< MD5 for: NETLOGON.DLL >
[2004.08.18 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: NVATA.SYS >
[2006.08.14 08:51:28 | 000,105,344 | R--- | M] (NVIDIA Corporation) MD5=947C4A0E7B25BCECC3B40F0F1070378B -- C:\WINDOWS\system32\drivers\nvata.sys
< MD5 for: SCECLI.DLL >
[2004.08.18 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2004.08.18 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.18 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.06.20 12:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 12:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2004.08.18 14:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.18 14:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
< MD5 for: WINLOGON.EXE >
[2004.08.18 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2004.08.18 14:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2007.12.18 03:54:44 | 000,368,640 | R--- | M] (Advanced Micro Devices, Inc.) Unable to obtain MD5 -- C:\WINDOWS\system32\ATIDEMGX.dll
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2008.12.03 22:33:13 | 000,717,296 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2008.10.16 17:18:42 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2008.10.16 17:18:42 | 000,638,976 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2008.10.16 17:18:42 | 000,462,848 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[2007.12.18 03:54:44 | 000,368,640 | R--- | M] (Advanced Micro Devices, Inc.) Unable to obtain MD5 -- C:\WINDOWS\system32\ATIDEMGX.dll
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
========== Alternate Data Streams ==========
@Alternate Data Stream - 500 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:05EE1EEF
< End of report >
[2010.04.07 16:06:34 | 000,079,600 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvpo.dat
[2010.04.07 16:06:34 | 000,077,604 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvtk.dat
[2010.04.07 16:06:34 | 000,076,959 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvsw.dat
[2010.04.07 16:06:34 | 000,076,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvnr.dat
[2010.04.07 16:06:34 | 000,071,490 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvkr.dat
[2010.04.07 16:06:34 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvlf.dll
[2010.04.07 16:06:34 | 000,034,205 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvhu.chm
[2010.04.07 16:06:34 | 000,034,075 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvpo.chm
[2010.04.07 16:06:34 | 000,033,815 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvgr.chm
[2010.04.07 16:06:34 | 000,033,649 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvru.chm
[2010.04.07 16:06:34 | 000,033,187 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvkr.chm
[2010.04.07 16:06:34 | 000,033,089 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvpt.chm
[2010.04.07 16:06:34 | 000,033,047 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvsp.chm
[2010.04.07 16:06:34 | 000,032,741 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvit.chm
[2010.04.07 16:06:34 | 000,032,345 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvtk.chm
[2010.04.07 16:06:34 | 000,032,243 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvsw.chm
[2010.04.07 16:06:34 | 000,031,821 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvnr.chm
[2010.04.07 16:06:34 | 000,015,318 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvpp.dll
[2010.04.07 16:06:33 | 000,087,134 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvfn.dat
[2010.04.07 16:06:33 | 000,084,076 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvel.dat
[2010.04.07 16:06:33 | 000,081,898 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvbp.dat
[2010.04.07 16:06:33 | 000,081,018 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvdt.dat
[2010.04.07 16:06:33 | 000,078,768 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvfi.dat
[2010.04.07 16:06:33 | 000,077,879 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvdn.dat
[2010.04.07 16:06:33 | 000,077,734 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvcz.dat
[2010.04.07 16:06:33 | 000,074,785 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrven.dat
[2010.04.07 16:06:33 | 000,064,494 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvcp.dat
[2010.04.07 16:06:33 | 000,064,315 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvct.dat
[2010.04.07 16:06:33 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvIO.DLL
[2010.04.07 16:06:33 | 000,038,192 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvcm.ctd
[2010.04.07 16:06:33 | 000,034,625 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvel.chm
[2010.04.07 16:06:33 | 000,033,451 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvcz.chm
[2010.04.07 16:06:33 | 000,033,417 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvfn.chm
[2010.04.07 16:06:33 | 000,033,107 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvdt.chm
[2010.04.07 16:06:33 | 000,032,749 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvct.chm
[2010.04.07 16:06:33 | 000,032,719 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvcp.chm
[2010.04.07 16:06:33 | 000,032,467 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvbp.chm
[2010.04.07 16:06:33 | 000,032,409 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvdn.chm
[2010.04.07 16:06:33 | 000,032,299 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrvfi.chm
[2010.04.07 16:06:33 | 000,031,467 | ---- | C] () -- C:\WINDOWS\System32\drivers\Samsung\Samsung SCX-4300 Series\itdrven.chm
[2010.04.05 15:01:26 | 001,592,320 | ---- | C] () -- C:\Documents and Settings\user\Plocha\Zrani.ppt
[2010.03.30 20:54:16 | 002,428,928 | ---- | C] () -- C:\Documents and Settings\user\Plocha\petercottontail.mp3
[2009.11.06 11:58:04 | 000,178,975 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2008.12.26 21:21:57 | 000,000,025 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2008.12.19 20:52:58 | 000,331,264 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2008.12.19 20:52:58 | 000,104,960 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2008.12.19 17:25:41 | 000,000,107 | ---- | C] () -- C:\WINDOWS\gfscore.ini
[2008.12.03 22:33:13 | 000,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2008.10.25 17:21:21 | 000,000,088 | ---- | C] () -- C:\WINDOWS\dictor.ini
[2008.10.24 20:31:42 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008.10.23 17:45:43 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\CNMVS7K.DLL
[2008.10.22 19:26:53 | 000,157,184 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2008.10.21 19:29:39 | 000,003,468 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2008.10.21 18:44:08 | 000,014,288 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2008.10.21 16:51:18 | 000,000,765 | ---- | C] () -- C:\WINDOWS\602Photo.INI
[2008.10.20 12:02:06 | 000,000,804 | R--- | C] () -- C:\WINDOWS\System32\AsusSetup.ini
[2008.10.20 12:02:06 | 000,000,276 | R--- | C] () -- C:\WINDOWS\System32\raidmgmt.ini
[2008.10.20 12:01:35 | 000,014,129 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2008.10.20 12:00:53 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2008.10.20 12:00:34 | 000,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2008.03.28 18:41:32 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2007.07.10 17:10:12 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
========== LOP Check ==========
[2010.04.24 13:27:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2008.10.23 20:28:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ashampoo
[2008.10.23 17:45:48 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonBJ
[2008.12.11 16:13:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\NFS Underground
[2010.04.25 15:03:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ReviverSoft
[2009.12.25 21:11:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2008.10.23 20:28:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Ashampoo
[2010.02.27 22:52:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\BitTorrent
[2010.02.23 15:35:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Canon
[2008.12.03 22:33:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\DAEMON Tools
[2010.04.25 16:16:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\DNA
[2009.03.11 19:57:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ICQ
[2008.10.23 17:08:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\IEPro
[2010.01.27 15:44:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Leadertech
[2008.10.21 18:07:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\OpenOffice.org
[2010.04.07 16:09:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\SmarThru4
[2009.04.23 20:00:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Software602
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 05:22:17 | 000,015,360 | ---- | M] (Microsoft Corporation)
"BitTorrent DNA" = "C:\Program Files\DNA\btdna.exe" -- [2009.11.13 15:34:46 | 000,323,392 | ---- | M] (BitTorrent, Inc.)
"MSMSGS" = "C:\Program Files\Messenger\msmsgs.exe" /background -- [2008.04.14 05:22:36 | 001,695,232 | ---- | M] (Microsoft Corporation)
"SpybotSD TeaTimer" = C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe -- [2009.03.05 16:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.)
"Google Update" = "C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c -- [2010.04.23 16:23:03 | 000,136,176 | ---- | M] (Google Inc.)
< c:\windows\*.* /U >
[4 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2008.10.21 16:49:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Adobe
[2008.10.21 19:46:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\AdobeUM
[2008.10.29 12:03:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Ahead
[2009.06.03 15:10:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Apple Computer
[2008.11.30 16:34:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ArcSoft
[2008.10.23 20:28:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Ashampoo
[2008.10.20 13:52:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ATI
[2010.02.27 22:52:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\BitTorrent
[2010.02.23 15:35:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Canon
[2008.12.03 22:33:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\DAEMON Tools
[2010.04.25 16:16:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\DNA
[2010.02.10 20:05:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\dvdcss
[2008.12.10 19:13:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Help
[2009.03.11 19:57:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ICQ
[2008.10.16 16:18:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Identities
[2008.10.23 17:08:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\IEPro
[2010.01.27 15:44:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Leadertech
[2009.08.23 12:48:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Macromedia
[2010.04.25 15:22:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Malwarebytes
[2008.10.24 15:59:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Media Player Classic
[2010.04.23 16:42:56 | 000,000,000 | --SD | M] -- C:\Documents and Settings\user\Data aplikací\Microsoft
[2009.07.08 11:03:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Mozilla
[2008.12.04 15:51:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Nero
[2008.10.21 18:07:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\OpenOffice.org
[2009.09.20 11:27:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Real
[2010.04.07 16:09:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\SmarThru4
[2009.04.23 20:00:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Software602
[2010.02.04 21:28:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\vlc
< %APPDATA%\*.exe /s >
[2010.04.25 13:17:27 | 000,388,096 | R--- | M] (Trend Micro Inc.) -- C:\Documents and Settings\user\Data aplikací\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
[2008.10.20 13:41:20 | 000,009,158 | R--- | M] () -- C:\Documents and Settings\user\Data aplikací\Microsoft\Installer\{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}\ARPPRODUCTICON.exe
[2008.10.23 14:45:26 | 000,029,310 | R--- | M] () -- C:\Documents and Settings\user\Data aplikací\Microsoft\Installer\{BFBF0452-83DE-4678-9F1D-E58AA41265F0}\_461d43f4.exe
[2008.10.23 14:45:26 | 000,029,310 | R--- | M] () -- C:\Documents and Settings\user\Data aplikací\Microsoft\Installer\{BFBF0452-83DE-4678-9F1D-E58AA41265F0}\_68b21da6.exe
[2010.04.12 19:41:21 | 000,439,816 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\user\Data aplikací\Real\Update\setup3.10\setup.exe
< MD5 for: AGP440.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.10.23 17:29:11 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.10.23 17:29:11 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
< MD5 for: ATAPI.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.10.23 17:29:11 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.10.23 17:29:11 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.18 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004.08.18 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386\atapi.sys
< MD5 for: CRYPTSVC.DLL >
[2004.08.18 14:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2004.08.18 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004.08.18 14:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
< MD5 for: HAL.DLL >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.10.23 17:29:11 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.10.23 17:29:11 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 20:31:28 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2004.08.18 14:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll
< MD5 for: CHANGER.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.10.23 17:29:11 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008.10.23 17:29:11 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
< MD5 for: LSASS.EXE >
[2004.08.18 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004.08.18 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
< MD5 for: NETLOGON.DLL >
[2004.08.18 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: NVATA.SYS >
[2006.08.14 08:51:28 | 000,105,344 | R--- | M] (NVIDIA Corporation) MD5=947C4A0E7B25BCECC3B40F0F1070378B -- C:\WINDOWS\system32\drivers\nvata.sys
< MD5 for: SCECLI.DLL >
[2004.08.18 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2004.08.18 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.18 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.06.20 12:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 12:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2004.08.18 14:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.18 14:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
< MD5 for: WINLOGON.EXE >
[2004.08.18 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2004.08.18 14:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2007.12.18 03:54:44 | 000,368,640 | R--- | M] (Advanced Micro Devices, Inc.) Unable to obtain MD5 -- C:\WINDOWS\system32\ATIDEMGX.dll
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2008.12.03 22:33:13 | 000,717,296 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2008.10.16 17:18:42 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2008.10.16 17:18:42 | 000,638,976 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2008.10.16 17:18:42 | 000,462,848 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[2007.12.18 03:54:44 | 000,368,640 | R--- | M] (Advanced Micro Devices, Inc.) Unable to obtain MD5 -- C:\WINDOWS\system32\ATIDEMGX.dll
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
========== Alternate Data Streams ==========
@Alternate Data Stream - 500 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:05EE1EEF
< End of report >
-
stell
- VIP in memoriam
- Příspěvky: 5175
- Registrován: 09 pro 2007 09:27
- Bydliště: SK-REVUCA
- Kontaktovat uživatele:
Re: Problémy s internetem, pomalé načitání
spust OTL
do okna vloz zeleny text a klik-RunFix-log po restarte vloz sem
do okna vloz zeleny text a klik-RunFix-log po restarte vloz sem
Kód: Vybrat vše
:OTL
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
@Alternate Data Stream - 500 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:05EE1EEF
:commands
[emptytemp]
[emptyflash]
[resethosts]
[start explorer]PROSIM CITAJTE POZORNE NAVODY!!!,
Stáhněte na plochu, ukončete všechna aktivní okna a spusťte>>
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Suhlasit instalacio Konzoly pre zotavenie (Recovery console)
- ComboFix je třeba spustit pod účtem s právy administrátora.
- Po spuštění se zobrazí podmínky užití, potvrďte je stiskem tlačítka Ano;
A este raz >ANO<
- Dále postupujte dle pokynů, během aplikování ComboFixu neklikejte do zobrazujícího modreho okna
- Po dokončení skenování, trvajícího maximálně 10-15 minut, by měl program vytvořit log - C:\ComboFix.txt, zkopírujte celý jeho obsah do svého threadu na forum
- Před použitím ComboFixu je treba vypnout všechny rezidentní bezpečnostní programy - antiviry, firewally, antispywary. NAVOD: http://www.bleepingcomputer.com/forums/topic114351.html
Mohou zasahovat do činnosti ComboFixu, což může způsobit, že nebude fungovat korektně.
V případě detekce antiviru u ComboFixu se jedná o falešný poplach.
Dôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Re: Problémy s internetem, pomalé načitání
All processes killed
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:05EE1EEF deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Anglictina
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: LocalService
->Temp folder emptied: 65984 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: user
->Temp folder emptied: 2369290 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->FireFox cache emptied: 29254189 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 4505 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 1230262 bytes
%systemroot%\System32 .tmp files removed: 2504 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 23951920 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 54,00 mb
[EMPTYFLASH]
User: All Users
User: Anglictina
User: Default User
User: LocalService
User: NetworkService
User: user
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
OTL by OldTimer - Version 3.2.2.0 log created on 04252010_164625
Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.
Registry entries deleted on Reboot...
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:05EE1EEF deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Anglictina
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: LocalService
->Temp folder emptied: 65984 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: user
->Temp folder emptied: 2369290 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->FireFox cache emptied: 29254189 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 4505 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 1230262 bytes
%systemroot%\System32 .tmp files removed: 2504 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 23951920 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 54,00 mb
[EMPTYFLASH]
User: All Users
User: Anglictina
User: Default User
User: LocalService
User: NetworkService
User: user
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
OTL by OldTimer - Version 3.2.2.0 log created on 04252010_164625
Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Re: Problémy s internetem, pomalé načitání
ComboFix 10-04-21.01 - user 25.04.2010 17:01:49.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1665 [GMT 2:00]
Spuštěný z: c:\documents and settings\user\Plocha\ComboFix.exe
AV: avast! Antivirus *On-access scanning disabled* (Outdated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: ActiveArmor Firewall *disabled* {EDC10449-64D1-46c7-A59A-EC20D662F26D}
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-03-25 do 2010-04-25 )))))))))))))))))))))))))))))))
.
2010-04-25 13:32 . 2010-03-29 22:46 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-25 13:32 . 2010-03-29 22:45 20824 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-25 13:22 . 2010-04-25 13:32 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-04-25 13:06 . 2010-04-25 13:06 -------- d-----w- c:\program files\CCleaner
2010-04-25 13:03 . 2010-04-25 13:03 -------- d-----w- c:\program files\ReviverSoft
2010-04-25 11:31 . 2010-04-25 11:31 -------- d-----w- C:\rsit
2010-04-25 11:17 . 2010-04-25 11:17 -------- d-----w- c:\program files\Trend Micro
2010-04-24 09:38 . 2010-04-24 09:38 -------- d-----w- c:\program files\NortonInstaller
2010-04-23 14:17 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2010-04-22 10:21 . 2010-04-22 10:22 -------- d-----w- c:\program files\Spybot - Search & Destroy
2010-04-22 10:18 . 2010-04-22 10:18 -------- d-----w- c:\program files\SDHelper (Spybot - Search & Destroy)
2010-04-22 10:18 . 2010-04-22 10:18 -------- d-----w- c:\program files\File Scanner Library (Spybot - Search & Destroy)
2010-04-07 14:09 . 2009-02-04 12:20 38400 ----a-w- c:\windows\system32\drivers\DgivEcp.sys
2010-04-07 14:07 . 2010-04-07 14:09 -------- d-----w- c:\program files\SmarThru 4
2010-04-07 14:07 . 2009-09-07 11:48 482408 ----a-w- c:\windows\ssndii.exe
2010-04-07 14:07 . 2010-04-14 12:25 -------- d-----w- c:\program files\SamsungPrinterLiveUpdate
2010-04-07 14:07 . 2009-07-30 12:00 44544 ----a-w- c:\windows\system32\msxml4a.dll
2010-04-07 14:07 . 2009-07-30 12:00 21776 ----a-w- c:\windows\system32\msxml2a.dll
2010-04-07 14:07 . 2010-04-07 14:07 -------- d-----w- c:\windows\Samsung
2010-04-07 14:07 . 2008-02-05 07:53 22723 ----a-w- c:\windows\system32\sse1ml3.dll
2010-04-07 14:07 . 2008-01-04 06:57 19968 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\sse1mpc.dll
2010-04-07 14:07 . 2008-01-04 06:54 151552 ----a-w- c:\windows\system32\sse1mci.exe
2010-04-07 14:07 . 2008-01-04 06:54 65536 ----a-w- c:\windows\system32\sse1mci.dll
2010-04-07 14:06 . 2009-09-07 11:48 113768 ----a-r- c:\windows\WiaInst.exe
2010-04-07 14:06 . 2009-07-31 07:34 192512 ----a-r- c:\windows\system32\SaXPWIA.dll
2010-04-07 14:06 . 2009-07-31 07:34 138240 ----a-r- c:\windows\system32\SaXPUIEx.dll
2010-04-07 14:06 . 2009-07-31 07:34 87552 ----a-r- c:\windows\system32\SaXPSTI.dll
2010-04-07 14:06 . 2009-07-31 07:34 117248 ----a-r- c:\windows\system32\SaXPIPH.dll
2010-04-07 14:06 . 2009-07-31 07:34 140288 ----a-r- c:\windows\system32\SaXPEH.dll
2010-04-07 14:06 . 2009-07-30 12:00 81920 ----a-w- c:\windows\system32\ssdevm.dll
2010-04-07 14:06 . 2008-01-03 04:23 49152 ----a-r- c:\windows\system32\Ssusbpn.dll
2010-04-07 14:06 . 2010-04-07 14:06 -------- d-----w- c:\windows\system32\drivers\Samsung
2010-04-07 14:06 . 2010-04-07 14:06 -------- d-----w- c:\program files\Samsung
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-25 14:47 . 2008-10-24 16:06 -------- d-----w- c:\program files\DNA
2010-04-24 11:29 . 2008-10-20 09:14 -------- d-----w- c:\program files\Alwil Software
2010-04-24 09:21 . 2004-08-18 12:00 78052 ----a-w- c:\windows\system32\perfc005.dat
2010-04-24 09:21 . 2004-08-18 12:00 429024 ----a-w- c:\windows\system32\perfh005.dat
2010-04-20 12:51 . 2008-10-21 14:49 -------- d-----w- c:\program files\Common Files\Adobe
2010-04-18 10:57 . 2008-12-02 13:27 -------- d-----w- c:\program files\Czech Soccer Manager 2002 FE
2010-04-14 16:47 . 2008-10-20 09:14 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-04-14 16:47 . 2008-10-20 09:14 153184 ----a-w- c:\windows\system32\aswBoot.exe
2010-04-14 16:35 . 2008-10-20 09:14 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-04-14 16:35 . 2008-10-20 09:14 162768 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-04-14 16:31 . 2008-10-20 09:14 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-04-14 16:31 . 2008-10-20 09:14 100432 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-04-14 16:31 . 2008-10-20 09:14 94800 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-04-14 16:31 . 2008-10-20 09:14 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-04-14 16:30 . 2008-10-20 09:14 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-04-07 14:08 . 2010-04-07 14:08 -------- d-----w- c:\program files\Common Files\SRC Shared
2010-04-07 14:08 . 2010-04-07 14:08 -------- d-----w- c:\program files\Readiris10
2010-04-07 14:08 . 2008-10-20 10:03 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-03-16 13:39 . 2010-03-16 13:37 -------- d-----w- c:\program files\Simutrans
2010-03-10 06:17 . 2004-08-18 12:00 420352 ----a-w- c:\windows\system32\vbscript.dll
2010-02-28 19:43 . 2010-02-28 19:43 -------- d-----w- c:\program files\Vancouver 2010
2010-02-28 12:12 . 2010-02-28 12:12 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2010-02-25 06:18 . 2004-08-18 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2010-02-24 13:11 . 2004-08-18 12:00 455680 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2010-02-16 19:08 . 2004-08-18 12:00 2148352 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-02-16 19:08 . 2004-08-17 15:45 2026496 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-02-12 04:35 . 2004-08-18 12:00 100864 ----a-w- c:\windows\system32\6to4svc.dll
2010-02-11 12:02 . 2004-08-18 12:00 226880 ----a-w- c:\windows\system32\drivers\tcpip6.sys
2010-01-27 13:45 . 2009-06-19 12:40 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2010-01-27 13:45 . 2010-01-27 13:45 3678 ----a-w- c:\windows\system32\ealregsnapshot1.reg
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BitTorrent DNA"="c:\program files\DNA\btdna.exe" [2009-11-13 323392]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
"Google Update"="c:\documents and settings\user\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" [2010-04-23 136176]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2006-12-18 868352]
"NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-08-08 1828136]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2009-01-05 413696]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-09-20 198160]
"Samsung PanelMgr"="c:\windows\Samsung\PanelMgr\SSMMgr.exe" [2009-08-27 614400]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-04-14 2790472]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\user\Nabˇdka Start\Programy\Po spuçtŘnˇ\
OpenOffice.org 3.0.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2008-10-4 393216]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\Apache Group\\Apache2\\bin\\Apache.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\DNA\\btdna.exe"=
"c:\\Program Files\\BitTorrent\\bittorrent.exe"=
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [20.10.2008 11:14 162768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [20.10.2008 11:14 19024]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [3.12.2008 22:33 717296]
S2 SSPORT;SSPORT;\??\c:\windows\system32\Drivers\SSPORT.sys --> c:\windows\system32\Drivers\SSPORT.sys [?]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [25.4.2010 15:32 38224]
.
Obsah adresáře 'Naplánované úlohy'
2009-04-13 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
FF - ProfilePath - c:\documents and settings\user\Data aplikací\Mozilla\Firefox\Profiles\o5lmi18u.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: network.proxy.type - 4
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- NASTAVENÍ FIREFOXU ----
e:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
AddRemove-Dictor Demo - c:\program files\ADM\Dictor v.1.0 Demo\DeIsL1.isu
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-04-25 17:07
Windows 5.1.2600 Service Pack 3 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'winlogon.exe'(628)
c:\windows\system32\Ati2evxx.dll
.
Celkový čas: 2010-04-25 17:08:59
ComboFix-quarantined-files.txt 2010-04-25 15:08
Před spuštěním: Volných bajtů: 68 157 038 592
Po spuštění: Volných bajtů: 68 120 637 440
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect /usepmtimer
- - End Of File - - CACB7A88476E968F61F29926905149E3
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1665 [GMT 2:00]
Spuštěný z: c:\documents and settings\user\Plocha\ComboFix.exe
AV: avast! Antivirus *On-access scanning disabled* (Outdated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: ActiveArmor Firewall *disabled* {EDC10449-64D1-46c7-A59A-EC20D662F26D}
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-03-25 do 2010-04-25 )))))))))))))))))))))))))))))))
.
2010-04-25 13:32 . 2010-03-29 22:46 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-25 13:32 . 2010-03-29 22:45 20824 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-25 13:22 . 2010-04-25 13:32 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-04-25 13:06 . 2010-04-25 13:06 -------- d-----w- c:\program files\CCleaner
2010-04-25 13:03 . 2010-04-25 13:03 -------- d-----w- c:\program files\ReviverSoft
2010-04-25 11:31 . 2010-04-25 11:31 -------- d-----w- C:\rsit
2010-04-25 11:17 . 2010-04-25 11:17 -------- d-----w- c:\program files\Trend Micro
2010-04-24 09:38 . 2010-04-24 09:38 -------- d-----w- c:\program files\NortonInstaller
2010-04-23 14:17 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2010-04-22 10:21 . 2010-04-22 10:22 -------- d-----w- c:\program files\Spybot - Search & Destroy
2010-04-22 10:18 . 2010-04-22 10:18 -------- d-----w- c:\program files\SDHelper (Spybot - Search & Destroy)
2010-04-22 10:18 . 2010-04-22 10:18 -------- d-----w- c:\program files\File Scanner Library (Spybot - Search & Destroy)
2010-04-07 14:09 . 2009-02-04 12:20 38400 ----a-w- c:\windows\system32\drivers\DgivEcp.sys
2010-04-07 14:07 . 2010-04-07 14:09 -------- d-----w- c:\program files\SmarThru 4
2010-04-07 14:07 . 2009-09-07 11:48 482408 ----a-w- c:\windows\ssndii.exe
2010-04-07 14:07 . 2010-04-14 12:25 -------- d-----w- c:\program files\SamsungPrinterLiveUpdate
2010-04-07 14:07 . 2009-07-30 12:00 44544 ----a-w- c:\windows\system32\msxml4a.dll
2010-04-07 14:07 . 2009-07-30 12:00 21776 ----a-w- c:\windows\system32\msxml2a.dll
2010-04-07 14:07 . 2010-04-07 14:07 -------- d-----w- c:\windows\Samsung
2010-04-07 14:07 . 2008-02-05 07:53 22723 ----a-w- c:\windows\system32\sse1ml3.dll
2010-04-07 14:07 . 2008-01-04 06:57 19968 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\sse1mpc.dll
2010-04-07 14:07 . 2008-01-04 06:54 151552 ----a-w- c:\windows\system32\sse1mci.exe
2010-04-07 14:07 . 2008-01-04 06:54 65536 ----a-w- c:\windows\system32\sse1mci.dll
2010-04-07 14:06 . 2009-09-07 11:48 113768 ----a-r- c:\windows\WiaInst.exe
2010-04-07 14:06 . 2009-07-31 07:34 192512 ----a-r- c:\windows\system32\SaXPWIA.dll
2010-04-07 14:06 . 2009-07-31 07:34 138240 ----a-r- c:\windows\system32\SaXPUIEx.dll
2010-04-07 14:06 . 2009-07-31 07:34 87552 ----a-r- c:\windows\system32\SaXPSTI.dll
2010-04-07 14:06 . 2009-07-31 07:34 117248 ----a-r- c:\windows\system32\SaXPIPH.dll
2010-04-07 14:06 . 2009-07-31 07:34 140288 ----a-r- c:\windows\system32\SaXPEH.dll
2010-04-07 14:06 . 2009-07-30 12:00 81920 ----a-w- c:\windows\system32\ssdevm.dll
2010-04-07 14:06 . 2008-01-03 04:23 49152 ----a-r- c:\windows\system32\Ssusbpn.dll
2010-04-07 14:06 . 2010-04-07 14:06 -------- d-----w- c:\windows\system32\drivers\Samsung
2010-04-07 14:06 . 2010-04-07 14:06 -------- d-----w- c:\program files\Samsung
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-25 14:47 . 2008-10-24 16:06 -------- d-----w- c:\program files\DNA
2010-04-24 11:29 . 2008-10-20 09:14 -------- d-----w- c:\program files\Alwil Software
2010-04-24 09:21 . 2004-08-18 12:00 78052 ----a-w- c:\windows\system32\perfc005.dat
2010-04-24 09:21 . 2004-08-18 12:00 429024 ----a-w- c:\windows\system32\perfh005.dat
2010-04-20 12:51 . 2008-10-21 14:49 -------- d-----w- c:\program files\Common Files\Adobe
2010-04-18 10:57 . 2008-12-02 13:27 -------- d-----w- c:\program files\Czech Soccer Manager 2002 FE
2010-04-14 16:47 . 2008-10-20 09:14 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-04-14 16:47 . 2008-10-20 09:14 153184 ----a-w- c:\windows\system32\aswBoot.exe
2010-04-14 16:35 . 2008-10-20 09:14 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-04-14 16:35 . 2008-10-20 09:14 162768 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-04-14 16:31 . 2008-10-20 09:14 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-04-14 16:31 . 2008-10-20 09:14 100432 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-04-14 16:31 . 2008-10-20 09:14 94800 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-04-14 16:31 . 2008-10-20 09:14 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-04-14 16:30 . 2008-10-20 09:14 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-04-07 14:08 . 2010-04-07 14:08 -------- d-----w- c:\program files\Common Files\SRC Shared
2010-04-07 14:08 . 2010-04-07 14:08 -------- d-----w- c:\program files\Readiris10
2010-04-07 14:08 . 2008-10-20 10:03 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-03-16 13:39 . 2010-03-16 13:37 -------- d-----w- c:\program files\Simutrans
2010-03-10 06:17 . 2004-08-18 12:00 420352 ----a-w- c:\windows\system32\vbscript.dll
2010-02-28 19:43 . 2010-02-28 19:43 -------- d-----w- c:\program files\Vancouver 2010
2010-02-28 12:12 . 2010-02-28 12:12 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2010-02-25 06:18 . 2004-08-18 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2010-02-24 13:11 . 2004-08-18 12:00 455680 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2010-02-16 19:08 . 2004-08-18 12:00 2148352 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-02-16 19:08 . 2004-08-17 15:45 2026496 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-02-12 04:35 . 2004-08-18 12:00 100864 ----a-w- c:\windows\system32\6to4svc.dll
2010-02-11 12:02 . 2004-08-18 12:00 226880 ----a-w- c:\windows\system32\drivers\tcpip6.sys
2010-01-27 13:45 . 2009-06-19 12:40 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2010-01-27 13:45 . 2010-01-27 13:45 3678 ----a-w- c:\windows\system32\ealregsnapshot1.reg
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BitTorrent DNA"="c:\program files\DNA\btdna.exe" [2009-11-13 323392]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
"Google Update"="c:\documents and settings\user\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" [2010-04-23 136176]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2006-12-18 868352]
"NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-08-08 1828136]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2009-01-05 413696]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-09-20 198160]
"Samsung PanelMgr"="c:\windows\Samsung\PanelMgr\SSMMgr.exe" [2009-08-27 614400]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-04-14 2790472]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\user\Nabˇdka Start\Programy\Po spuçtŘnˇ\
OpenOffice.org 3.0.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2008-10-4 393216]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\Apache Group\\Apache2\\bin\\Apache.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\DNA\\btdna.exe"=
"c:\\Program Files\\BitTorrent\\bittorrent.exe"=
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [20.10.2008 11:14 162768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [20.10.2008 11:14 19024]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [3.12.2008 22:33 717296]
S2 SSPORT;SSPORT;\??\c:\windows\system32\Drivers\SSPORT.sys --> c:\windows\system32\Drivers\SSPORT.sys [?]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [25.4.2010 15:32 38224]
.
Obsah adresáře 'Naplánované úlohy'
2009-04-13 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
FF - ProfilePath - c:\documents and settings\user\Data aplikací\Mozilla\Firefox\Profiles\o5lmi18u.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: network.proxy.type - 4
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- NASTAVENÍ FIREFOXU ----
e:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
AddRemove-Dictor Demo - c:\program files\ADM\Dictor v.1.0 Demo\DeIsL1.isu
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-04-25 17:07
Windows 5.1.2600 Service Pack 3 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'winlogon.exe'(628)
c:\windows\system32\Ati2evxx.dll
.
Celkový čas: 2010-04-25 17:08:59
ComboFix-quarantined-files.txt 2010-04-25 15:08
Před spuštěním: Volných bajtů: 68 157 038 592
Po spuštění: Volných bajtů: 68 120 637 440
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect /usepmtimer
- - End Of File - - CACB7A88476E968F61F29926905149E3
-
stell
- VIP in memoriam
- Příspěvky: 5175
- Registrován: 09 pro 2007 09:27
- Bydliště: SK-REVUCA
- Kontaktovat uživatele:
Re: Problémy s internetem, pomalé načitání
ok,ako je na tom pocitac??
Dôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Re: Problémy s internetem, pomalé načitání
Programy jdou normálně. Aktualizoval jsem Avast a ten mi vyhazuje detekci trojského koně při každém pokusu o spuštění internetu. Je to infekce Win32:Kates-AT. Avast soubor ukládá do truhly.
-
stell
- VIP in memoriam
- Příspěvky: 5175
- Registrován: 09 pro 2007 09:27
- Bydliště: SK-REVUCA
- Kontaktovat uživatele:
Re: Problémy s internetem, pomalé načitání
kde detektuje,daj nazov a cestu-k suboru.
Dôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Re: Problémy s internetem, pomalé načitání
C:\Documents and settings\user\Local settings\Temp\TTXKQEH.bak
Přispějete na provoz fóra?