Zamrzá NB, nejde internet....

Zpráva

tora · #1 Příspěvek od **tora** » 30 črc 2010 20:40

Dobrý den,
přítelkyně má problém s NB. Zamrzá, blokuje internet, nečte pořádně USB, pomalu se zapíná i vypíná až zatuhá.
objevila se prvně hláška od AVG nalezen virus Corrupted.
Je problém do NB něco dostat a nebo něco z nej.

#2 Příspěvek od **Rudy** » 30 črc 2010 21:46

Zkuste NTB nastartovat do nouz. režimu a dát log z RSIT: http://viry.cz/forum/viewtopic.php?f=24&t=81939 .

tora · #3 Příspěvek od **tora** » 31 črc 2010 11:48

Tak při pokusu se mi vubec nepodařilo spustit daný program v NB. Nejde ho totiž dostat vůbec do pc. Prohlížeč mě nepustí na internet, přes paměť. kartu nelze vůbec nic, flešku jsem neměl s sebou - tu musím ještě vyzkoušet. Ale u ext. disku to píše, že nemám dostatečná práva pro správu. je tam Win XP. Nabízí to správce i uživatele a na oboje závěr stejný.

#4 Příspěvek od **Rudy** » 31 črc 2010 11:53

V tom případě nezbude, než se pokusit o opravu systému z instal. CD. Pokud se nezdaří ani to, reinstal systému.

tora · #5 Příspěvek od **tora** » 31 črc 2010 11:59

No myslel jsem si, že to bude jednodužší, ale hold dojde k tomu "nejhoršímu" ale díky za rady

#6 Příspěvek od **Rudy** » 31 črc 2010 16:43

Pokud do PC nedostanu žádnou testovací utilitu, nemohu vědět, co použít a odkud začít.

tora · #7 Příspěvek od **tora** » 03 srp 2010 19:07

Tak jsem systém obnovil a PC kounikuje. Pro kontrolu jsem chtěl poslat log z uvedeného programu. Vyskytl se problém, při prvním spuštění se po dobu 15min nic nedělo a zelené pole se nevyplnilo ani z 1/3. Log na C:/... byl prázdný na druhý pokus se log vypsal, ale nevím zdali je celý. zelené pole se u druhého pokusu vyplnilo pouze do 1/2 za dobu 20minut.
Zajímalo by mě, jestli je vše v logu v pořádku a PC je vyléčen. Děkuji

Logfile of random's system information tool 1.08 (written by random/random)
Run by Paja at 2010-08-03 18:50:11
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 105 GB (91%) free of 114 GB
Total RAM: 959 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:50:16, on 3.8.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\ATK0100\HControl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Wireless Console 2\wcourier.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\sm56hlpr.exe
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\DU Meter\DUMeter.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\AVG\AVG9\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\DU Meter\DUMeterSvc.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\AVG\AVG9\avgam.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVG\AVG9\avgemc.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Paja.PAJANB\Plocha\RSIT.exe
C:\Program Files\trend micro\Paja.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Wireless Console 2] C:\Program Files\Wireless Console 2\wcourier.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SMSERIAL] C:\WINDOWS\sm56hlpr.exe
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [DU Meter] C:\Program Files\DU Meter\DUMeter.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AVG E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe
O23 - Service: AVG WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: AVG9IDSAgent (AVGIDSAgent) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: DU Meter Service (DUMeterSvc) - Hagel Technologies Ltd - C:\Program Files\DU Meter\DUMeterSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 7681 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll [2010-08-03 1619296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-04-27 7561216]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2006-04-27 86016]
"HControl"=C:\WINDOWS\ATK0100\HControl.exe [2006-10-14 110592]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-05-25 786521]
"Wireless Console 2"=C:\Program Files\Wireless Console 2\wcourier.exe [2005-10-17 987136]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-10-30 16269312]
"SkyTel"=C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"SMSERIAL"=C:\WINDOWS\sm56hlpr.exe [2006-03-21 544768]
"AVG9_TRAY"=C:\PROGRA~1\AVG\AVG9\avgtray.exe [2010-08-03 2065760]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-26 161328]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"DU Meter"=C:\Program Files\DU Meter\DUMeter.exe [2009-02-08 2645528]

C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Po spuštění
Bluetooth Manager.lnk - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng1.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2010-08-03 12536]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\AVG\AVG9\avgam.exe"="C:\Program Files\AVG\AVG9\avgam.exe:*:Enabled:avgam.exe"
"C:\Program Files\AVG\AVG9\avgdiagex.exe"="C:\Program Files\AVG\AVG9\avgdiagex.exe:*:Enabled:avgdiagex.exe"
"C:\Program Files\AVG\AVG9\avgemc.exe"="C:\Program Files\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\AVG\AVG9\avgupd.exe"="C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG9\avgnsx.exe"="C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.

#8 Příspěvek od **Rudy** » 03 srp 2010 19:37

Log není kompletní. Pokud zbytek skutečně chybí, zkuste to v nouzovém režimu.

tora · #9 Příspěvek od **tora** » 03 srp 2010 19:47

Díky, tak tam se to zdařilo.

Logfile of random's system information tool 1.08 (written by random/random)
Run by Paja at 2010-08-03 20:43:31
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 105 GB (91%) free of 114 GB
Total RAM: 959 MB (83% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:43:44, on 3.8.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Safe mode

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\WINDOWS\Explorer.EXE
C:\Documents and Settings\Paja.PAJANB\Plocha\RSIT.exe
C:\Program Files\trend micro\Paja.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Wireless Console 2] C:\Program Files\Wireless Console 2\wcourier.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SMSERIAL] C:\WINDOWS\sm56hlpr.exe
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [DU Meter] C:\Program Files\DU Meter\DUMeter.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AVG E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe
O23 - Service: AVG WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: AVG9IDSAgent (AVGIDSAgent) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: DU Meter Service (DUMeterSvc) - Hagel Technologies Ltd - C:\Program Files\DU Meter\DUMeterSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 6193 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll [2010-08-03 1619296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-04-27 7561216]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2006-04-27 86016]
"HControl"=C:\WINDOWS\ATK0100\HControl.exe [2006-10-14 110592]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-05-25 786521]
"Wireless Console 2"=C:\Program Files\Wireless Console 2\wcourier.exe [2005-10-17 987136]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-10-30 16269312]
"SkyTel"=C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"SMSERIAL"=C:\WINDOWS\sm56hlpr.exe [2006-03-21 544768]
"AVG9_TRAY"=C:\PROGRA~1\AVG\AVG9\avgtray.exe [2010-08-03 2065760]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-26 161328]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"DU Meter"=C:\Program Files\DU Meter\DUMeter.exe [2009-02-08 2645528]

C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Po spuštění
Bluetooth Manager.lnk - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng1.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2010-08-03 12536]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\AVG\AVG9\avgam.exe"="C:\Program Files\AVG\AVG9\avgam.exe:*:Enabled:avgam.exe"
"C:\Program Files\AVG\AVG9\avgdiagex.exe"="C:\Program Files\AVG\AVG9\avgdiagex.exe:*:Enabled:avgdiagex.exe"
"C:\Program Files\AVG\AVG9\avgemc.exe"="C:\Program Files\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\AVG\AVG9\avgupd.exe"="C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG9\avgnsx.exe"="C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-08-03 20:42:07 ----A---- C:\WINDOWS\ntbtlog.txt
2010-08-03 19:44:09 ----D---- C:\rsit
2010-08-03 18:38:02 ----D---- C:\Program Files\trend micro
2010-08-03 18:33:21 ----HD---- C:\$AVG
2010-08-03 16:43:28 ----D---- C:\Program Files\Common Files\LightScribe
2010-08-03 16:40:41 ----D---- C:\Documents and Settings\Paja.PAJANB\Data aplikací\Ahead
2010-08-03 16:36:41 ----D---- C:\Program Files\Nero
2010-08-03 16:36:41 ----D---- C:\Program Files\Common Files\Ahead
2010-08-03 16:36:41 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Nero
2010-08-03 16:35:19 ----D---- C:\WINDOWS\RegisteredPackages
2010-08-03 16:34:35 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2010-08-03 16:34:34 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2010-08-03 15:44:21 ----A---- C:\WINDOWS\system32\msonpmon.dll
2010-08-03 15:39:57 ----D---- C:\Program Files\Microsoft Works
2010-08-03 15:39:47 ----D---- C:\Program Files\MSBuild
2010-08-03 15:39:15 ----D---- C:\Program Files\Microsoft Visual Studio
2010-08-03 15:39:14 ----D---- C:\Program Files\Common Files\DESIGNER
2010-08-03 15:35:15 ----D---- C:\WINDOWS\SHELLNEW
2010-08-03 15:34:49 ----D---- C:\Program Files\QIP Infium-Paja
2010-08-03 15:34:33 ----D---- C:\Program Files\Microsoft Office
2010-08-03 15:34:30 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Microsoft Help
2010-08-03 15:34:05 ----RHD---- C:\MSOCache
2010-08-03 15:19:57 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Hagel Technologies
2010-08-03 15:19:56 ----D---- C:\Program Files\DU Meter
2010-08-03 15:19:07 ----D---- C:\Program Files\Common Files\COWON
2010-08-03 15:19:06 ----D---- C:\Program Files\JetAudio
2010-08-03 15:16:12 ----D---- C:\Documents and Settings\Paja.PAJANB\Data aplikací\skypePM
2010-08-03 15:13:29 ----D---- C:\Documents and Settings\Paja.PAJANB\Data aplikací\Skype
2010-08-03 15:12:37 ----D---- C:\Program Files\Common Files\Skype
2010-08-03 15:12:35 ----RD---- C:\Program Files\Skype
2010-08-03 15:12:31 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Skype
2010-08-03 15:04:49 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Adobe
2010-08-03 15:04:37 ----D---- C:\Program Files\Common Files\Adobe
2010-08-03 15:04:37 ----D---- C:\Program Files\Adobe
2010-08-03 14:56:13 ----D---- C:\Documents and Settings\Paja.PAJANB\Data aplikací\Zoner
2010-08-03 14:55:47 ----D---- C:\Program Files\Zoner
2010-08-03 14:52:37 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2010-08-03 14:51:44 ----D---- C:\Documents and Settings\Paja.PAJANB\Data aplikací\vlc
2010-08-03 14:50:58 ----D---- C:\Program Files\VideoLAN
2010-08-03 14:42:18 ----D---- C:\Program Files\IrfanView
2010-08-03 14:33:17 ----D---- C:\Documents and Settings\Paja.PAJANB\Data aplikací\Macromedia
2010-08-03 14:33:16 ----D---- C:\Documents and Settings\Paja.PAJANB\Data aplikací\Adobe
2010-08-03 14:28:20 ----D---- C:\Documents and Settings\Paja.PAJANB\Data aplikací\Mozilla
2010-08-03 14:28:10 ----D---- C:\Program Files\Mozilla Firefox
2010-08-03 14:17:01 ----A---- C:\WINDOWS\system32\avgrsstx.dll
2010-08-03 13:53:31 ----A---- C:\WINDOWS\system32\drivers\avgrkx86.sys
2010-08-03 13:53:29 ----A---- C:\WINDOWS\system32\drivers\avgtdix.sys
2010-08-03 13:53:20 ----A---- C:\WINDOWS\system32\drivers\avgldx86.sys
2010-08-03 13:53:19 ----A---- C:\WINDOWS\system32\drivers\avgmfx86.sys
2010-08-03 13:53:15 ----D---- C:\WINDOWS\system32\drivers\Avg
2010-08-03 13:53:07 ----A---- C:\WINDOWS\system32\drivers\AVGIDSxx.sys
2010-08-03 13:53:03 ----D---- C:\Program Files\AVG
2010-08-03 13:53:01 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\avg9
2010-08-03 13:46:44 ----D---- C:\WINDOWS\Prefetch
2010-08-03 13:41:21 ----N---- C:\WINDOWS\system32\msxml6r.dll
2010-08-03 13:41:21 ----N---- C:\WINDOWS\system32\msxml6.dll
2010-08-03 13:41:12 ----N---- C:\WINDOWS\system32\smtpapi.dll
2010-08-03 13:41:12 ----N---- C:\WINDOWS\system32\rwnh.dll
2010-08-03 13:41:12 ----N---- C:\WINDOWS\system32\drivers\irbus.sys
2010-08-03 13:41:12 ----N---- C:\WINDOWS\system32\comsdupd.exe
2010-08-03 13:41:10 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2010-08-03 13:41:10 ----N---- C:\WINDOWS\system32\azroles.dll
2010-08-03 13:41:10 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2010-08-03 13:41:10 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2010-08-03 13:41:10 ----N---- C:\WINDOWS\system32\ati3duag.dll
2010-08-03 13:41:10 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2010-08-03 13:41:10 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2010-08-03 13:41:10 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2010-08-03 13:41:10 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2010-08-03 13:41:10 ----N---- C:\WINDOWS\system32\aaclient.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\eapsvc.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\eapqec.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\eappprxy.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\eapphost.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\eappgnui.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\eappcfg.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\eapolqec.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\dot3ui.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\dot3svc.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\dot3msm.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\dot3api.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\dimsroam.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2010-08-03 13:41:09 ----N---- C:\WINDOWS\system32\credssp.dll
2010-08-03 13:41:08 ----N---- C:\WINDOWS\system32\kbdpash.dll
2010-08-03 13:41:08 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2010-08-03 13:41:08 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2010-08-03 13:41:08 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2010-08-03 13:41:07 ----N---- C:\WINDOWS\system32\onex.dll
2010-08-03 13:41:07 ----N---- C:\WINDOWS\system32\napstat.exe
2010-08-03 13:41:07 ----N---- C:\WINDOWS\system32\napmontr.dll
2010-08-03 13:41:07 ----N---- C:\WINDOWS\system32\napipsec.dll
2010-08-03 13:41:07 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2010-08-03 13:41:07 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2010-08-03 13:41:07 ----N---- C:\WINDOWS\system32\mssha.dll
2010-08-03 13:41:07 ----N---- C:\WINDOWS\system32\mmcperf.exe
2010-08-03 13:41:07 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2010-08-03 13:41:07 ----N---- C:\WINDOWS\system32\mmcex.dll
2010-08-03 13:41:07 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2010-08-03 13:41:07 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2010-08-03 13:41:07 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2010-08-03 13:41:07 ----N---- C:\WINDOWS\system32\kmsvc.dll
2010-08-03 13:41:06 ----N---- C:\WINDOWS\system32\slserv.exe
2010-08-03 13:41:06 ----N---- C:\WINDOWS\system32\slrundll.exe
2010-08-03 13:41:06 ----N---- C:\WINDOWS\system32\slgen.dll
2010-08-03 13:41:06 ----N---- C:\WINDOWS\system32\slextspk.dll
2010-08-03 13:41:06 ----N---- C:\WINDOWS\system32\slcoinst.dll
2010-08-03 13:41:06 ----N---- C:\WINDOWS\system32\setupn.exe
2010-08-03 13:41:06 ----N---- C:\WINDOWS\system32\s3gnb.dll
2010-08-03 13:41:06 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2010-08-03 13:41:06 ----N---- C:\WINDOWS\system32\rasqec.dll
2010-08-03 13:41:06 ----N---- C:\WINDOWS\system32\qutil.dll
2010-08-03 13:41:06 ----N---- C:\WINDOWS\system32\qcliprov.dll
2010-08-03 13:41:06 ----N---- C:\WINDOWS\system32\qagentrt.dll
2010-08-03 13:41:06 ----N---- C:\WINDOWS\system32\qagent.dll
2010-08-03 13:41:06 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2010-08-03 13:41:05 ----N---- C:\WINDOWS\system32\xpsp3res.dll
2010-08-03 13:41:05 ----N---- C:\WINDOWS\system32\wmphoto.dll
2010-08-03 13:41:05 ----N---- C:\WINDOWS\system32\wlanapi.dll
2010-08-03 13:41:05 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2010-08-03 13:41:05 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2010-08-03 13:41:05 ----N---- C:\WINDOWS\system32\verclsid.exe
2010-08-03 13:41:05 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-08-03 13:41:05 ----N---- C:\WINDOWS\system32\tspkg.dll
2010-08-03 13:41:05 ----N---- C:\WINDOWS\system32\tsgqec.dll
2010-08-03 13:41:03 ----N---- C:\WINDOWS\system32\xmllite.dll
2010-08-03 13:41:03 ----N---- C:\WINDOWS\slrundll.exe
2010-08-03 13:41:03 ----D---- C:\WINDOWS\system32\cs-cz
2010-08-03 13:41:03 ----D---- C:\WINDOWS\system32\cs
2010-08-03 13:41:03 ----D---- C:\WINDOWS\l2schemas
2010-08-03 13:41:02 ----D---- C:\WINDOWS\system32\bits
2010-08-03 13:39:28 ----D---- C:\WINDOWS\ServicePackFiles
2010-08-03 13:37:22 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2010-08-03 13:37:22 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2010-08-03 13:37:22 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2010-08-03 13:37:22 ----N---- C:\WINDOWS\system32\drivers\agp440.sys
2010-08-03 13:37:22 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2010-08-03 13:37:22 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2010-08-03 13:37:22 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2010-08-03 13:37:22 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2010-08-03 13:37:22 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2010-08-03 13:37:22 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2010-08-03 13:37:22 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2010-08-03 13:37:22 ----D---- C:\WINDOWS\network diagnostic
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2010-08-03 13:37:21 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2010-08-03 13:37:20 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2010-08-03 13:37:20 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2010-08-03 13:37:20 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2010-08-03 13:37:20 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2010-08-03 13:37:20 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2010-08-03 13:37:20 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2010-08-03 13:37:20 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2010-08-03 13:37:20 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2010-08-03 13:37:20 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2010-08-03 13:37:20 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2010-08-03 13:37:20 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2010-08-03 13:37:20 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2010-08-03 13:37:20 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2010-08-03 13:37:19 ----N---- C:\WINDOWS\system32\drivers\siint5.dll
2010-08-03 13:37:19 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2010-08-03 13:37:19 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2010-08-03 13:37:19 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2010-08-03 13:37:19 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2010-08-03 13:37:19 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2010-08-03 13:37:19 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2010-08-03 13:37:19 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2010-08-03 13:37:19 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2010-08-03 13:37:19 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2010-08-03 13:37:19 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2010-08-03 13:37:19 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2010-08-03 13:37:18 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2010-08-03 13:37:18 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2010-08-03 13:37:18 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2010-08-03 13:37:18 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2010-08-03 13:37:18 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2010-08-03 13:37:18 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2010-08-03 13:37:18 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2010-08-03 13:37:18 ----N---- C:\WINDOWS\system32\drivers\viaagp.sys
2010-08-03 13:37:18 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2010-08-03 13:37:18 ----N---- C:\WINDOWS\system32\drivers\usbvideo.sys
2010-08-03 13:37:18 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2010-08-03 13:37:18 ----N---- C:\WINDOWS\system32\drivers\uagp35.sys
2010-08-03 13:37:18 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2010-08-03 13:37:18 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2010-08-03 13:37:18 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2010-08-03 13:37:18 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2010-08-03 13:37:18 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2010-08-03 13:37:18 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2010-08-03 13:36:01 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-08-03 13:35:59 ----A---- C:\WINDOWS\002711_.tmp
2010-08-03 13:33:21 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-08-03 13:28:09 ----D---- C:\WINDOWS\system32\Lang
2010-08-03 13:26:52 ----A---- C:\WINDOWS\system32\drivers\sptd.sys
2010-08-03 13:26:47 ----D---- C:\Program Files\DAEMON Tools Lite
2010-08-03 13:26:14 ----D---- C:\Documents and Settings\Paja.PAJANB\Data aplikací\DAEMON Tools Lite
2010-08-03 13:26:11 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\DAEMON Tools Lite
2010-08-03 13:26:02 ----SHD---- C:\RECYCLER
2010-08-03 13:25:11 ----D---- C:\Documents and Settings\Paja.PAJANB\Data aplikací\WinRAR
2010-08-03 13:24:59 ----D---- C:\Program Files\WinRAR
2010-08-03 13:21:42 ----RA---- C:\WINDOWS\system32\fdco1ins.dll
2010-08-03 13:21:42 ----RA---- C:\WINDOWS\system32\fdco1.dll
2010-08-03 13:21:42 ----RA---- C:\WINDOWS\system32\drivers\NVENETFD.sys
2010-08-03 13:21:40 ----RA---- C:\WINDOWS\system32\drivers\nvtcp.sys
2010-08-03 13:21:40 ----A---- C:\WINDOWS\system32\nvunrm.exe
2010-08-03 13:21:39 ----RA---- C:\WINDOWS\system32\nvconrm.dll
2010-08-03 13:21:39 ----RA---- C:\WINDOWS\system32\drivers\nvsnpu.sys
2010-08-03 13:21:39 ----RA---- C:\WINDOWS\system32\bdco1ins.dll
2010-08-03 13:21:39 ----RA---- C:\WINDOWS\system32\bdco1.dll
2010-08-03 13:21:39 ----D---- C:\WINDOWS\NV20561708.TMP
2010-08-03 13:21:38 ----RA---- C:\WINDOWS\system32\drivers\nvnrm.sys
2010-08-03 13:21:38 ----RA---- C:\WINDOWS\system32\drivers\nvnetbus.sys
2010-08-03 13:20:58 ----RA---- C:\WINDOWS\system32\drivers\nvsmu.sys
2010-08-03 13:20:01 ----A---- C:\WINDOWS\system32\drivers\MODEMCSA.sys
2010-08-03 13:19:54 ----RA---- C:\WINDOWS\system32\sm56co.dll
2010-08-03 13:19:53 ----RA---- C:\WINDOWS\system32\drivers\smserial.sys
2010-08-03 13:19:53 ----RA---- C:\WINDOWS\sm56kor.dll
2010-08-03 13:19:53 ----D---- C:\WINDOWS\Motorola
2010-08-03 13:19:52 ----RA---- C:\WINDOWS\sm56jpn.dll
2010-08-03 13:19:52 ----RA---- C:\WINDOWS\sm56ita.dll
2010-08-03 13:19:52 ----RA---- C:\WINDOWS\sm56cht.dll
2010-08-03 13:19:52 ----RA---- C:\WINDOWS\sm56chs.dll
2010-08-03 13:19:52 ----RA---- C:\WINDOWS\sm56hlpr.exe
2010-08-03 13:19:52 ----RA---- C:\WINDOWS\sm56ger.dll
2010-08-03 13:19:52 ----RA---- C:\WINDOWS\sm56fra.dll
2010-08-03 13:19:52 ----RA---- C:\WINDOWS\sm56esp.dll
2010-08-03 13:19:52 ----RA---- C:\WINDOWS\sm56eng.dll
2010-08-03 13:19:52 ----RA---- C:\WINDOWS\sm56dnk.dll
2010-08-03 13:19:52 ----RA---- C:\WINDOWS\sm56brz.dll
2010-08-03 13:18:53 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2010-08-03 13:18:52 ----HDC---- C:\WINDOWS\$NtUninstallKB888111WXPSP2$
2010-08-03 13:12:59 ----A---- C:\WINDOWS\tosOBEX.INI
2010-08-03 12:58:29 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2010-08-03 12:58:27 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2010-08-03 12:58:24 ----A---- C:\WINDOWS\system32\drivers\dmusic.sys
2010-08-03 12:58:22 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2010-08-03 12:58:21 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2010-08-03 12:58:19 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2010-08-03 12:58:17 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2010-08-03 12:58:16 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2010-08-03 12:57:55 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2010-08-03 12:57:55 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2010-08-03 12:49:57 ----D---- C:\Program Files\Toshiba
2010-08-03 12:49:05 ----D---- C:\Program Files\Atheros
2010-08-03 12:49:05 ----A---- C:\WINDOWS\system32\drivers\ar5211.sys
2010-08-03 12:49:05 ----A---- C:\WINDOWS\system32\ar5211.sys
2010-08-03 12:49:01 ----R---- C:\WINDOWS\system32\drivers\AW1012d.ini
2010-08-03 12:48:41 ----D---- C:\temp
2010-08-03 12:48:06 ----D---- C:\Program Files\Wireless Console 2
2010-08-03 12:48:06 ----A---- C:\WINDOWS\system32\wcourier.exe
2010-08-03 12:48:06 ----A---- C:\WINDOWS\system32\msvcr71.dll
2010-08-03 12:46:17 ----D---- C:\Program Files\ASUS
2010-08-03 12:43:15 ----A---- C:\WINDOWS\system32\drivers\mstee.sys
2010-08-03 12:43:11 ----A---- C:\WINDOWS\system32\drivers\ndisip.sys
2010-08-03 12:43:10 ----A---- C:\WINDOWS\system32\drivers\streamip.sys
2010-08-03 12:43:08 ----A---- C:\WINDOWS\system32\drivers\slip.sys
2010-08-03 12:43:06 ----A---- C:\WINDOWS\system32\drivers\wstcodec.sys
2010-08-03 12:43:04 ----A---- C:\WINDOWS\system32\drivers\nabtsfec.sys
2010-08-03 12:43:01 ----A---- C:\WINDOWS\system32\drivers\ccdecode.sys
2010-08-03 12:42:59 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2010-08-03 12:42:57 ----A---- C:\WINDOWS\system32\drivers\mspqm.sys
2010-08-03 12:42:55 ----A---- C:\WINDOWS\system32\drivers\mspclock.sys
2010-08-03 12:42:45 ----RA---- C:\WINDOWS\system32\SynVFW.dll
2010-08-03 12:42:45 ----RA---- C:\WINDOWS\system32\SynUSD.dll
2010-08-03 12:42:45 ----RA---- C:\WINDOWS\system32\SynSvc_.exe
2010-08-03 12:42:45 ----RA---- C:\WINDOWS\Syn112X.exe
2010-08-03 12:42:45 ----RA---- C:\WINDOWS\StkUnist.exe
2010-08-03 12:42:44 ----RA---- C:\WINDOWS\system32\drivers\SynScan.sys
2010-08-03 12:42:43 ----RA---- C:\WINDOWS\system32\drivers\SynSam.sys
2010-08-03 12:42:41 ----RA---- C:\WINDOWS\system32\drivers\SynPipe.sys
2010-08-03 12:42:41 ----RA---- C:\WINDOWS\system32\drivers\SynPin.sys
2010-08-03 12:42:40 ----RA---- C:\WINDOWS\system32\drivers\SynMini.sys
2010-08-03 12:42:40 ----RA---- C:\WINDOWS\system32\drivers\SynCamd.sys
2010-08-03 12:42:39 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2010-08-03 12:42:39 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-08-03 12:42:19 ----A---- C:\WINDOWS\system32\drivers\RTSTOR.sys
2010-08-03 12:38:57 ----A---- C:\WINDOWS\system32\SynTPFcs.dll
2010-08-03 12:38:55 ----A---- C:\WINDOWS\system32\SynTPCo2.dll
2010-08-03 12:38:55 ----A---- C:\WINDOWS\system32\SynTPAPI.dll
2010-08-03 12:38:55 ----A---- C:\WINDOWS\system32\SynCtrl.dll
2010-08-03 12:38:55 ----A---- C:\WINDOWS\system32\drivers\SynTP.sys
2010-08-03 12:38:54 ----A---- C:\WINDOWS\system32\SynCOM.dll
2010-08-03 12:38:53 ----D---- C:\Program Files\Synaptics
2010-08-03 12:36:14 ----R---- C:\WINDOWS\alcwzrd.exe
2010-08-03 12:36:14 ----R---- C:\WINDOWS\Alcmtr.exe
2010-08-03 12:36:13 ----R---- C:\WINDOWS\SoundMan.exe
2010-08-03 12:36:13 ----R---- C:\WINDOWS\SkyTel.exe
2010-08-03 12:36:13 ----R---- C:\WINDOWS\RTHDCPL.exe
2010-08-03 12:36:13 ----R---- C:\WINDOWS\MicCal.exe
2010-08-03 12:36:12 ----R---- C:\WINDOWS\system32\ChCfg.exe
2010-08-03 12:36:12 ----R---- C:\WINDOWS\system32\drivers\RtkHDAud.Sys
2010-08-03 12:36:12 ----R---- C:\WINDOWS\RtlUpd.exe
2010-08-03 12:36:12 ----R---- C:\WINDOWS\RTLCPL.exe
2010-08-03 12:36:12 ----D---- C:\WINDOWS\system32\RTCOM
2010-08-03 12:35:55 ----D---- C:\Program Files\Realtek
2010-08-03 12:35:53 ----HD---- C:\Program Files\InstallShield Installation Information
2010-08-03 12:35:49 ----R---- C:\WINDOWS\RtlExUpd.dll
2010-08-03 12:25:37 ----RA---- C:\WINDOWS\system32\drivers\ATKACPI.sys
2010-08-03 12:25:37 ----D---- C:\WINDOWS\ATK0100
2010-08-03 12:16:04 ----RA---- C:\WINDOWS\system32\drivers\AmdK8.sys
2010-08-03 12:16:04 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-08-03 12:12:03 ----RA---- C:\WINDOWS\system32\nvudisp.exe
2010-08-03 12:12:03 ----D---- C:\WINDOWS\nview
2010-08-03 12:11:28 ----RA---- C:\WINDOWS\system32\NVUNINST.EXE
2010-08-03 12:11:18 ----D---- C:\Program Files\Common Files\InstallShield
2010-08-03 12:09:51 ----RA---- C:\WINDOWS\system32\drivers\MMIOPORT.SYS
2010-08-03 10:09:26 ----A---- C:\WINDOWS\system32\h323log.txt
2010-08-03 10:08:42 ----A---- C:\WINDOWS\system32\drivers\audstub.sys
2010-08-03 10:08:12 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2010-08-03 10:07:19 ----A---- C:\WINDOWS\system32\usbui.dll
2010-08-03 10:07:07 ----A---- C:\WINDOWS\system32\drivers\compbatt.sys
2010-08-03 10:07:06 ----A---- C:\WINDOWS\system32\drivers\cmbatt.sys
2010-08-03 10:07:06 ----A---- C:\WINDOWS\system32\drivers\battc.sys
2010-08-03 10:06:05 ----A---- C:\WINDOWS\imsins.BAK
2010-08-03 10:06:02 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-08-03 10:06:01 ----A---- C:\WINDOWS\ODBCINST.INI
2010-08-03 10:05:55 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2010-08-03 10:05:55 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2010-08-03 10:05:55 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2010-08-03 10:05:53 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2010-08-03 10:05:53 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2010-08-03 10:05:53 ----RA---- C:\WINDOWS\system32\kbdur.dll
2010-08-03 10:05:53 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2010-08-03 10:05:53 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2010-08-03 10:05:53 ----RA---- C:\WINDOWS\system32\kbdru.dll
2010-08-03 10:05:53 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2010-08-03 10:05:53 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2010-08-03 10:05:53 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2010-08-03 10:05:53 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2010-08-03 10:05:52 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2010-08-03 10:05:52 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2010-08-03 10:05:50 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2010-08-03 10:05:50 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2010-08-03 10:05:50 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2010-08-03 10:05:50 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2010-08-03 10:05:50 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2010-08-03 10:05:50 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2010-08-03 10:05:50 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2010-08-03 10:05:48 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2010-08-03 10:05:48 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2010-08-03 10:05:48 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2010-08-03 10:05:48 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2010-08-03 10:05:48 ----RA---- C:\WINDOWS\system32\kbdest.dll
2010-08-03 10:05:44 ----A---- C:\WINDOWS\system32\kbdycl.dll
2010-08-03 10:05:44 ----A---- C:\WINDOWS\system32\kbdsl1.dll
2010-08-03 10:05:44 ----A---- C:\WINDOWS\system32\kbdsl.dll
2010-08-03 10:05:44 ----A---- C:\WINDOWS\system32\kbdro.dll
2010-08-03 10:05:44 ----A---- C:\WINDOWS\system32\kbdpl1.dll
2010-08-03 10:05:44 ----A---- C:\WINDOWS\system32\kbdpl.dll
2010-08-03 10:05:44 ----A---- C:\WINDOWS\system32\kbdhu1.dll
2010-08-03 10:05:44 ----A---- C:\WINDOWS\system32\kbdhu.dll
2010-08-03 10:05:44 ----A---- C:\WINDOWS\system32\kbdcr.dll
2010-08-03 10:05:44 ----A---- C:\WINDOWS\system32\KBDAL.DLL
2010-08-03 10:05:43 ----A---- C:\WINDOWS\system32\irclass.dll
2010-08-03 10:05:43 ----A---- C:\WINDOWS\system32\dgsetup.dll
2010-08-03 10:05:43 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2010-08-03 10:05:42 ----A---- C:\WINDOWS\system32\spxcoins.dll
2010-08-03 10:05:42 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2010-08-03 10:05:40 ----A---- C:\WINDOWS\TASKMAN.EXE
2010-08-03 10:05:39 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2010-08-03 10:05:39 ----A---- C:\WINDOWS\system32\drivers\irenum.sys
2010-08-03 10:05:39 ----A---- C:\WINDOWS\system32\batt.dll
2010-08-03 10:05:38 ----A---- C:\WINDOWS\notepad.exe
2010-08-03 10:05:37 ----A---- C:\WINDOWS\system32\storprop.dll
2010-08-03 10:05:27 ----ASH---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\desktop.ini
2010-08-03 10:05:24 ----RA---- C:\WINDOWS\SET8.tmp
2010-08-03 10:05:21 ----RA---- C:\WINDOWS\SET4.tmp
2010-08-03 10:05:20 ----RA---- C:\WINDOWS\SET3.tmp
2010-08-03 10:05:09 ----SD---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Microsoft
2010-08-03 10:04:47 ----A---- C:\WINDOWS\setuplog.txt
2010-08-03 09:59:17 ----D---- C:\WINDOWS\Provisioning
2010-08-03 09:59:17 ----D---- C:\WINDOWS\PeerNet
2010-08-03 09:59:17 ----D---- C:\WINDOWS\ehome
2010-08-03 09:59:17 ----ASH---- C:\pagefile.sys
2010-08-03 08:19:53 ----D---- C:\Documents and Settings\Paja.PAJANB\Data aplikací\Identities
2010-08-03 08:19:45 ----ASH---- C:\Documents and Settings\Paja.PAJANB\Data aplikací\desktop.ini
2010-08-03 08:19:44 ----SD---- C:\Documents and Settings\Paja.PAJANB\Data aplikací\Microsoft
2010-08-03 08:19:08 ----D---- C:\WINDOWS\SoftwareDistribution
2010-08-03 08:19:06 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-08-03 08:15:10 ----A---- C:\WINDOWS\control.ini
2010-08-03 08:14:49 ----A---- C:\WINDOWS\OEWABLog.txt
2010-08-03 08:14:45 ----A---- C:\WINDOWS\system32\mapi32.dll
2010-08-03 08:13:58 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-08-03 08:13:52 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-08-03 08:13:03 ----A---- C:\WINDOWS\system32\atrace.dll
2010-08-03 08:12:59 ----A---- C:\WINDOWS\system32\desktop.ini
2010-08-03 08:12:59 ----A---- C:\WINDOWS\desktop.ini
2010-08-03 08:12:52 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2010-08-03 08:12:51 ----A---- C:\WINDOWS\system32\acctres.dll
2010-08-03 08:12:50 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2010-08-03 08:12:42 ----A---- C:\WINDOWS\system32\wuweb.dll
2010-08-03 08:12:42 ----A---- C:\WINDOWS\system32\wucltui.dll
2010-08-03 08:12:42 ----A---- C:\WINDOWS\system32\wuauserv.dll
2010-08-03 08:12:42 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2010-08-03 08:12:41 ----A---- C:\WINDOWS\system32\wups.dll
2010-08-03 08:12:41 ----A---- C:\WINDOWS\system32\wuaueng.dll
2010-08-03 08:12:41 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2010-08-03 08:12:41 ----A---- C:\WINDOWS\system32\wuauclt.exe
2010-08-03 08:12:41 ----A---- C:\WINDOWS\system32\wuapi.dll
2010-08-03 08:12:41 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2010-08-03 08:12:41 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2010-08-03 08:12:40 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2010-08-03 08:12:40 ----A---- C:\WINDOWS\system32\qmgr.dll
2010-08-03 08:12:32 ----A---- C:\WINDOWS\system32\safrslv.dll
2010-08-03 08:12:32 ----A---- C:\WINDOWS\system32\safrdm.dll
2010-08-03 08:12:32 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2010-08-03 08:12:31 ----A---- C:\WINDOWS\system32\racpldlg.dll
2010-08-03 08:12:28 ----A---- C:\WINDOWS\system32\fltmc.exe
2010-08-03 08:12:28 ----A---- C:\WINDOWS\system32\fltlib.dll
2010-08-03 08:12:28 ----A---- C:\WINDOWS\system32\drivers\fltmgr.sys
2010-08-03 08:12:27 ----A---- C:\WINDOWS\system32\srsvc.dll
2010-08-03 08:12:27 ----A---- C:\WINDOWS\system32\srrstr.dll
2010-08-03 08:12:27 ----A---- C:\WINDOWS\system32\srclient.dll
2010-08-03 08:12:27 ----A---- C:\WINDOWS\system32\drivers\sr.sys
2010-08-03 08:12:26 ----A---- C:\WINDOWS\system32\mnmdd.dll
2010-08-03 08:12:26 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2010-08-03 08:12:26 ----A---- C:\WINDOWS\system32\ils.dll
2010-08-03 08:12:25 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2010-08-03 08:12:25 ----A---- C:\WINDOWS\system32\msconf.dll
2010-08-03 08:12:25 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-08-03 08:12:22 ----A---- C:\WINDOWS\system32\msoert2.dll
2010-08-03 08:12:22 ----A---- C:\WINDOWS\system32\msoeacct.dll
2010-08-03 08:12:21 ----A---- C:\WINDOWS\system32\inetres.dll
2010-08-03 08:12:20 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-08-03 08:12:18 ----A---- C:\WINDOWS\system32\schedsvc.dll
2010-08-03 08:12:18 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-08-03 08:12:18 ----A---- C:\WINDOWS\system32\mstask.dll
2010-08-03 08:12:17 ----A---- C:\WINDOWS\system32\isign32.dll
2010-08-03 08:12:17 ----A---- C:\WINDOWS\system32\inetcfg.dll
2010-08-03 08:12:17 ----A---- C:\WINDOWS\system32\icwphbk.dll
2010-08-03 08:12:17 ----A---- C:\WINDOWS\system32\icwdial.dll
2010-08-03 08:11:31 ----A---- C:\WINDOWS\vbaddin.ini
2010-08-03 08:11:31 ----A---- C:\WINDOWS\vb.ini
2010-08-03 08:11:11 ----A---- C:\WINDOWS\system32\write.exe
2010-08-03 08:11:04 ----A---- C:\WINDOWS\system32\sndvol32.exe
2010-08-03 08:11:04 ----A---- C:\WINDOWS\system32\hticons.dll
2010-08-03 08:11:04 ----A---- C:\WINDOWS\system32\avwav.dll
2010-08-03 08:11:04 ----A---- C:\WINDOWS\system32\avtapi.dll
2010-08-03 08:11:04 ----A---- C:\WINDOWS\system32\avmeter.dll
2010-08-03 08:11:03 ----A---- C:\WINDOWS\system32\winchat.exe
2010-08-03 08:10:55 ----A---- C:\WINDOWS\system32\charmap.exe
2010-08-03 08:10:55 ----A---- C:\WINDOWS\system32\getuname.dll
2010-08-03 08:10:54 ----A---- C:\WINDOWS\system32\winmine.exe
2010-08-03 08:10:54 ----A---- C:\WINDOWS\system32\sol.exe
2010-08-03 08:10:54 ----A---- C:\WINDOWS\system32\calc.exe
2010-08-03 08:10:53 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2010-08-03 08:10:53 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2010-08-03 08:10:53 ----A---- C:\WINDOWS\system32\tskill.exe
2010-08-03 08:10:53 ----A---- C:\WINDOWS\system32\reset.exe
2010-08-03 08:10:53 ----A---- C:\WINDOWS\system32\mshearts.exe
2010-08-03 08:10:53 ----A---- C:\WINDOWS\system32\freecell.exe
2010-08-03 08:10:52 ----A---- C:\WINDOWS\system32\tslabels.ini
2010-08-03 08:10:52 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2010-08-03 08:10:52 ----A---- C:\WINDOWS\system32\tscon.exe
2010-08-03 08:10:52 ----A---- C:\WINDOWS\system32\shadow.exe
2010-08-03 08:10:52 ----A---- C:\WINDOWS\system32\rwinsta.exe
2010-08-03 08:10:52 ----A---- C:\WINDOWS\system32\regini.exe
2010-08-03 08:10:52 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2010-08-03 08:10:52 ----A---- C:\WINDOWS\system32\qwinsta.exe
2010-08-03 08:10:52 ----A---- C:\WINDOWS\system32\qappsrv.exe
2010-08-03 08:10:52 ----A---- C:\WINDOWS\system32\msg.exe
2010-08-03 08:10:52 ----A---- C:\WINDOWS\system32\logoff.exe
2010-08-03 08:10:51 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2010-08-03 08:10:51 ----A---- C:\WINDOWS\system32\cdmodem.dll
2010-08-03 08:10:50 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2010-08-03 08:10:50 ----A---- C:\WINDOWS\system32\mtxex.dll
2010-08-03 08:10:50 ----A---- C:\WINDOWS\system32\mtxdm.dll
2010-08-03 08:10:50 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2010-08-03 08:10:50 ----A---- C:\WINDOWS\system32\comrepl.dll
2010-08-03 08:10:50 ----A---- C:\WINDOWS\system32\comaddin.dll
2010-08-03 08:10:49 ----A---- C:\WINDOWS\system32\stclient.dll
2010-08-03 08:10:49 ----A---- C:\WINDOWS\system32\comsnap.dll
2010-08-03 08:10:43 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2010-08-03 08:10:42 ----A---- C:\WINDOWS\system32\sndrec32.exe
2010-08-03 08:10:42 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-08-03 08:10:42 ----A---- C:\WINDOWS\system32\accwiz.exe
2010-08-03 08:10:41 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-08-03 08:10:41 ----A---- C:\WINDOWS\system32\hypertrm.dll
2010-08-03 08:10:41 ----A---- C:\WINDOWS\system32\clipbrd.exe
2010-08-03 08:10:40 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2010-08-03 08:10:40 ----A---- C:\WINDOWS\system32\spider.exe
2010-08-03 08:10:40 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys
2010-08-03 08:10:40 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys
2010-08-03 08:10:40 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2010-08-03 08:10:39 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-08-03 08:10:39 ----A---- C:\WINDOWS\system32\remotepg.dll
2010-08-03 08:10:39 ----A---- C:\WINDOWS\system32\rdshost.exe
2010-08-03 08:10:39 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2010-08-03 08:10:39 ----A---- C:\WINDOWS\system32\rdchost.dll
2010-08-03 08:10:39 ----A---- C:\WINDOWS\system32\mstscax.dll
2010-08-03 08:10:39 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-08-03 08:10:38 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2010-08-03 08:10:38 ----A---- C:\WINDOWS\system32\termsrv.dll
2010-08-03 08:10:38 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2010-08-03 08:10:38 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2010-08-03 08:10:38 ----A---- C:\WINDOWS\system32\rdpclip.exe
2010-08-03 08:10:38 ----A---- C:\WINDOWS\system32\qprocess.exe
2010-08-03 08:10:38 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-08-03 08:10:38 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2010-08-03 08:10:37 ----A---- C:\WINDOWS\system32\xolehlp.dll
2010-08-03 08:10:37 ----A---- C:\WINDOWS\system32\mtxoci.dll
2010-08-03 08:10:37 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2010-08-03 08:10:37 ----A---- C:\WINDOWS\system32\msdtctm.dll
2010-08-03 08:10:37 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2010-08-03 08:10:36 ----A---- C:\WINDOWS\system32\msdtclog.dll
2010-08-03 08:10:36 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-08-03 08:10:35 ----A---- C:\WINDOWS\system32\colbact.dll
2010-08-03 08:10:35 ----A---- C:\WINDOWS\system32\clbcatex.dll
2010-08-03 08:10:35 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-08-03 08:10:35 ----A---- C:\WINDOWS\system32\catsrvps.dll
2010-08-03 08:10:35 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-08-03 08:10:34 ----A---- C:\WINDOWS\system32\comuid.dll
2010-08-03 08:10:34 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-08-03 08:10:33 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-08-03 08:10:27 ----A---- C:\WINDOWS\system32\servdeps.dll
2010-08-03 08:10:26 ----A---- C:\WINDOWS\system32\mmfutil.dll
2010-08-03 08:10:26 ----A---- C:\WINDOWS\system32\licwmi.dll
2010-08-03 08:10:26 ----A---- C:\WINDOWS\system32\cmprops.dll
2010-08-03 08:10:21 ----A---- C:\WINDOWS\system32\drivers\termdd.sys
2010-08-03 08:10:21 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2010-08-03 02:31:53 ----D---- C:\Program Files\Common Files\ODBC
2010-08-03 02:31:50 ----D---- C:\Program Files\Common Files\SpeechEngines
2010-08-03 02:31:49 ----RD---- C:\Program Files
2010-08-03 02:31:49 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-08-03 02:31:49 ----D---- C:\Program Files\Common Files
2010-08-03 02:31:11 ----D---- C:\WINDOWS\system32\CatRoot2
2010-08-03 02:31:11 ----D---- C:\WINDOWS\system32\CatRoot
2010-08-03 02:30:46 ----D---- C:\Documents and Settings
2010-08-03 02:29:51 ----SH---- C:\boot.ini
2010-08-03 02:25:27 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-08-03 02:25:27 ----RSD---- C:\WINDOWS\Fonts
2010-08-03 02:25:27 ----RD---- C:\WINDOWS\Web
2010-08-03 02:25:27 ----HD---- C:\WINDOWS\inf
2010-08-03 02:25:27 ----D---- C:\WINDOWS\WinSxS
2010-08-03 02:25:27 ----D---- C:\WINDOWS\twain_32
2010-08-03 02:25:27 ----D---- C:\WINDOWS\Temp
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\wins
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\wbem
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\usmt
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\spool
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\ShellExt
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\Setup
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\ras
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\oobe
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\npp
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\mui
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\inetsrv
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\IME
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\icsxml
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\ias
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\export
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\drivers\etc
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\drivers\disdn
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\drivers
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\dhcp
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\config
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\3com_dmi
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\3076
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\2052
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\1054
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\1042
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\1041
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\1037
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\1033
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\1031
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\1029
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\1028
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32\1025
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system32
2010-08-03 02:25:27 ----D---- C:\WINDOWS\system
2010-08-03 02:25:27 ----D---- C:\WINDOWS\security
2010-08-03 02:25:27 ----D---- C:\WINDOWS\Resources
2010-08-03 02:25:27 ----D---- C:\WINDOWS\repair
2010-08-03 02:25:27 ----D---- C:\WINDOWS\mui
2010-08-03 02:25:27 ----D---- C:\WINDOWS\msapps
2010-08-03 02:25:27 ----D---- C:\WINDOWS\msagent
2010-08-03 02:25:27 ----D---- C:\WINDOWS\Media
2010-08-03 02:25:27 ----D---- C:\WINDOWS\java
2010-08-03 02:25:27 ----D---- C:\WINDOWS\ime
2010-08-03 02:25:27 ----D---- C:\WINDOWS\Help
2010-08-03 02:25:27 ----D---- C:\WINDOWS\Driver Cache
2010-08-03 02:25:27 ----D---- C:\WINDOWS\Debug
2010-08-03 02:25:27 ----D---- C:\WINDOWS\Cursors
2010-08-03 02:25:27 ----D---- C:\WINDOWS\Connection Wizard
2010-08-03 02:25:27 ----D---- C:\WINDOWS\Config
2010-08-03 02:25:27 ----D---- C:\WINDOWS\AppPatch
2010-08-03 02:25:27 ----D---- C:\WINDOWS\addins
2010-08-03 02:25:27 ----D---- C:\WINDOWS
2010-08-03 00:49:14 ----SD---- C:\WINDOWS\system32\Microsoft
2010-08-03 00:47:53 ----SHD---- C:\WINDOWS\Installer
2010-08-03 00:47:46 ----HD---- C:\Program Files\Uninstall Information
2010-08-03 00:46:54 ----SHD---- C:\System Volume Information
2010-08-03 00:41:20 ----D---- C:\WINDOWS\system32\xircom
2010-08-03 00:41:20 ----D---- C:\Program Files\xerox
2010-08-03 00:41:20 ----D---- C:\Program Files\microsoft frontpage
2010-08-03 00:41:06 ----RASH---- C:\MSDOS.SYS
2010-08-03 00:41:06 ----RASH---- C:\IO.SYS
2010-08-03 00:41:06 ----A---- C:\CONFIG.SYS
2010-08-03 00:41:06 ----A---- C:\AUTOEXEC.BAT
2010-08-03 00:40:15 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-08-03 00:40:15 ----RD---- C:\WINDOWS\Offline Web Pages
2010-08-03 00:39:48 ----D---- C:\WINDOWS\system32\DirectX
2010-08-03 00:39:01 ----D---- C:\Program Files\Common Files\Services
2010-08-03 00:38:56 ----SD---- C:\WINDOWS\Tasks
2010-08-03 00:38:53 ----D---- C:\Program Files\Common Files\MSSoap
2010-08-03 00:38:47 ----D---- C:\WINDOWS\srchasst
2010-08-03 00:38:46 ----D---- C:\WINDOWS\system32\Macromed
2010-08-03 00:38:44 ----D---- C:\Program Files\Movie Maker
2010-08-03 00:38:39 ----D---- C:\WINDOWS\system32\Restore
2010-08-03 00:38:39 ----D---- C:\WINDOWS\PCHealth
2010-08-03 00:38:35 ----D---- C:\Program Files\NetMeeting
2010-08-03 00:38:33 ----D---- C:\Program Files\Outlook Express
2010-08-03 00:38:25 ----D---- C:\Program Files\Common Files\System
2010-08-03 00:38:21 ----D---- C:\Program Files\Internet Explorer
2010-08-03 00:37:53 ----D---- C:\Program Files\ComPlus Applications
2010-08-03 00:37:48 ----D---- C:\WINDOWS\Registration
2010-08-03 00:37:42 ----HD---- C:\Program Files\WindowsUpdate
2010-08-03 00:37:42 ----D---- C:\Program Files\Windows Media Player
2010-08-03 00:37:42 ----D---- C:\Program Files\Online Services
2010-08-03 00:37:36 ----D---- C:\Program Files\Messenger
2010-08-03 00:37:31 ----D---- C:\Program Files\MSN Gaming Zone
2010-08-03 00:36:48 ----D---- C:\Program Files\Windows NT
2010-08-03 00:36:48 ----D---- C:\Program Files\MSN
2010-08-03 00:36:44 ----D---- C:\WINDOWS\system32\MsDtc
2010-08-03 00:36:43 ----D---- C:\WINDOWS\system32\Com

======List of files/folders modified in the last 1 months======

2010-08-03 15:47:07 ----A---- C:\WINDOWS\win.ini
2010-08-03 10:05:57 ----A---- C:\WINDOWS\system.ini
2010-08-03 08:14:36 ----ASH---- C:\WINDOWS\fonts\desktop.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSErHrxpx;AVG9IDSErHr; C:\WINDOWS\System32\Drivers\AVGIDSxx.sys [2010-08-03 25168]
R0 AvgRkx86;avgrkx86.sys; C:\WINDOWS\System32\Drivers\avgrkx86.sys [2010-08-03 52872]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ATKACPI.sys [2005-02-17 5632]
R3 nvsmu;nvsmu; C:\WINDOWS\system32\DRIVERS\nvsmu.sys [2005-11-15 10880]
R3 RTSTOR;USB Mass Stroage Device; C:\WINDOWS\system32\drivers\RTSTOR.SYS [2006-06-10 27520]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-05-25 193088]
R3 Tosrfusb;Bluetooth USB Controller; C:\WINDOWS\System32\Drivers\tosrfusb.sys [2006-05-09 40192]
S0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-08-03 691696]
S1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-18 43008]
S1 AvgLdx86;AVG AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2010-08-03 216400]
S1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2010-08-03 29584]
S1 AvgTdiX;AVG Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2010-08-03 243024]
S1 Tosrfcom;Bluetooth RFCOMM from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2005-08-01 64896]
S3 AR5211;Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2006-07-17 494080]
S3 ASNDIS5;ASNDIS5 Protocol Driver; \??\C:\WINDOWS\ATK0100\ASNDIS5.SYS []
S3 AVGIDSDriverxpx;AVG9IDSDriver; \??\C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSDriver.sys []
S3 AVGIDSFilterxpx;AVG9IDSFilter; \??\C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSFilter.sys []
S3 AVGIDSShimxpx;AVG9IDSShim; \??\C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSShim.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-11-03 4394496]
S3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-04-27 3659968]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-07-10 57856]
S3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-07-10 20480]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 smserial;smserial; C:\WINDOWS\system32\DRIVERS\smserial.sys [2006-03-21 889472]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 SynMini;USB2.0 1.3M WebCam; C:\WINDOWS\System32\Drivers\SynMini.sys [2006-08-09 1116544]
S3 SynScan;USB2.0 1.3M WebCam Still Image; C:\WINDOWS\System32\Drivers\SynScan.sys [2006-08-09 7808]
S3 toshidpt;TOSHIBA Bluetooth HID port driver; C:\WINDOWS\system32\drivers\Toshidpt.sys [2005-07-11 3712]
S3 tosporte;Bluetooth Port Driver from Toshiba; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2006-04-19 47488]
S3 Tosrfbd;Bluetooth RFBUS from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbd.sys [2006-05-18 110976]
S3 Tosrfbnp;Bluetooth RFBNEP from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2006-03-16 37632]
S3 Tosrfhid;Bluetooth RFHID from TOSHIBA; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2006-05-09 62848]
S3 tosrfnds;Bluetooth Personal Area Network from TOSHIBA; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
S3 TosRfSnd;Bluetooth Audio Device (WDM) from TOSHIBA; C:\WINDOWS\system32\drivers\TosRfSnd.sys [2006-03-15 52864]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

S2 avg9emc;AVG E-mail Scanner; C:\Program Files\AVG\AVG9\avgemc.exe [2010-08-03 921952]
S2 avg9wd;AVG WatchDog; C:\Program Files\AVG\AVG9\avgwdsvc.exe [2010-08-03 308136]
S2 AVGIDSAgent;AVG9IDSAgent; C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2010-08-03 5897808]
S2 DUMeterSvc;DU Meter Service; C:\Program Files\DU Meter\DUMeterSvc.exe [2009-02-08 1386008]
S2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-04-27 143427]
S2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-03-26 779824]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-26 267824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

-----------------EOF-----------------

#10 Příspěvek od **Rudy** » 03 srp 2010 19:52

Dejte log z ComboFix.

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware

Lze ho provést i v nouz. režimu.

tora · #11 Příspěvek od **tora** » 03 srp 2010 20:19

snad je to dobře. Provedeno v normálním režimu.

ComboFix 10-08-03.01 - Paja 03.08.2010 21:14:47.1.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.959.571 [GMT 2:00]
Spuštěný z: c:\documents and settings\Paja.PAJANB\Plocha\ComboFix.exe
AV: AVG Internet Security *On-access scanning disabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-07-03 do 2010-08-03 )))))))))))))))))))))))))))))))
.

2010-08-03 17:44 . 2010-08-03 18:43 -------- d-----w- C:\rsit
2010-08-03 16:38 . 2010-08-03 18:43 -------- d-----w- c:\program files\trend micro
2010-08-03 16:33 . 2010-08-03 16:33 -------- d-----w- C:\$AVG
2010-08-03 14:43 . 2010-08-03 14:43 -------- d-----w- c:\program files\Common Files\LightScribe
2010-08-03 14:36 . 2010-08-03 14:39 -------- d-----w- c:\program files\Common Files\Ahead
2010-08-03 14:36 . 2010-08-03 14:36 -------- d-----w- c:\program files\Nero
2010-08-03 13:44 . 2008-11-10 09:41 32656 ----a-w- c:\windows\system32\msonpmon.dll
2010-08-03 13:44 . 2006-10-26 17:56 33104 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\msonpppr.dll
2010-08-03 13:39 . 2010-08-03 13:50 -------- d-----w- c:\program files\Microsoft Works
2010-08-03 13:39 . 2010-08-03 13:39 -------- d-----w- c:\program files\MSBuild
2010-08-03 13:35 . 2010-08-03 13:39 -------- d-----w- c:\windows\SHELLNEW
2010-08-03 13:34 . 2010-08-03 13:35 -------- d-----w- c:\program files\QIP Infium-Paja
2010-08-03 13:34 . 2010-08-03 13:34 -------- d-----r- C:\MSOCache
2010-08-03 13:19 . 2010-08-03 13:19 -------- d-----w- c:\program files\DU Meter
2010-08-03 13:19 . 2010-08-03 13:19 -------- d-----w- c:\program files\Common Files\COWON
2010-08-03 13:19 . 2010-08-03 13:19 -------- d-----w- c:\program files\JetAudio
2010-08-03 13:16 . 2010-08-03 13:16 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2010-08-03 13:12 . 2010-08-03 13:12 -------- d-----w- c:\program files\Common Files\Skype
2010-08-03 13:12 . 2010-08-03 13:12 -------- d-----r- c:\program files\Skype
2010-08-03 13:04 . 2010-08-03 13:04 -------- d-----w- c:\program files\Common Files\Adobe
2010-08-03 12:55 . 2010-08-03 12:55 -------- d-----w- c:\program files\Zoner
2010-08-03 12:50 . 2010-08-03 12:50 -------- d-----w- c:\program files\VideoLAN
2010-08-03 12:42 . 2010-08-03 13:35 -------- d-----w- c:\program files\IrfanView
2010-08-03 12:28 . 2010-08-03 12:28 0 ----a-w- c:\windows\nsreg.dat
2010-08-03 12:17 . 2010-08-03 12:17 12536 ----a-w- c:\windows\system32\avgrsstx.dll
2010-08-03 11:53 . 2010-08-03 11:53 52872 ----a-w- c:\windows\system32\drivers\avgrkx86.sys
2010-08-03 11:53 . 2010-08-03 12:17 243024 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2010-08-03 11:53 . 2010-08-03 12:16 216400 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2010-08-03 11:53 . 2010-08-03 12:17 29584 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2010-08-03 11:53 . 2010-08-03 12:17 -------- d-----w- c:\windows\system32\drivers\Avg
2010-08-03 11:53 . 2010-08-03 12:16 25168 ----a-w- c:\windows\system32\drivers\AVGIDSxx.sys
2010-08-03 11:53 . 2010-08-03 11:53 -------- d-----w- c:\program files\AVG
2010-08-03 11:39 . 2010-08-03 11:39 -------- d-----w- c:\windows\ServicePackFiles
2010-08-03 11:39 . 2008-04-14 06:52 294912 -c----w- c:\windows\system32\dllcache\dlimport.exe
2010-08-03 11:28 . 2010-08-03 11:28 -------- d-----w- c:\windows\system32\Lang
2010-08-03 11:26 . 2010-08-03 11:26 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-08-03 11:26 . 2010-08-03 11:26 -------- d-----w- c:\program files\DAEMON Tools Lite
2010-08-03 11:21 . 2006-07-10 14:21 57856 ----a-r- c:\windows\system32\drivers\NVENETFD.sys
2010-08-03 11:21 . 2006-07-10 14:20 201728 ----a-r- c:\windows\system32\fdco1ins.dll
2010-08-03 11:21 . 2006-07-10 14:20 201728 ----a-r- c:\windows\system32\fdco1.dll
2010-08-03 11:21 . 2006-07-10 14:21 110592 ----a-r- c:\windows\system32\drivers\nvtcp.sys
2010-08-03 11:21 . 2006-06-29 07:40 208896 ----a-w- c:\windows\system32\nvunrm.exe
2010-08-03 11:21 . 2010-08-03 11:21 -------- d-----w- c:\windows\NV20561708.TMP
2010-08-03 11:21 . 2006-07-10 14:21 261632 ----a-r- c:\windows\system32\drivers\nvsnpu.sys
2010-08-03 11:21 . 2006-07-10 14:20 11264 ----a-r- c:\windows\system32\bdco1ins.dll
2010-08-03 11:21 . 2006-07-10 14:20 11264 ----a-r- c:\windows\system32\bdco1.dll
2010-08-03 11:21 . 2006-06-29 07:40 35840 ----a-r- c:\windows\system32\nvconrm.dll
2010-08-03 11:21 . 2006-07-10 14:22 20480 ----a-r- c:\windows\system32\drivers\nvnetbus.sys
2010-08-03 11:21 . 2006-07-10 14:21 1160576 ----a-r- c:\windows\system32\drivers\nvnrm.sys
2010-08-03 11:20 . 2005-11-14 23:51 10880 ----a-r- c:\windows\system32\drivers\nvsmu.sys
2010-08-03 11:20 . 2001-08-17 19:57 16128 -c--a-w- c:\windows\system32\dllcache\modemcsa.sys
2010-08-03 11:20 . 2001-08-17 19:57 16128 ----a-w- c:\windows\system32\drivers\MODEMCSA.sys
2010-08-03 11:18 . 2007-07-27 08:41 26488 ----a-w- c:\windows\system32\spupdsvc.exe
2010-08-03 10:58 . 2008-04-13 22:15 6272 ----a-w- c:\windows\system32\drivers\splitter.sys
2010-08-03 10:58 . 2008-04-13 22:47 83072 ----a-w- c:\windows\system32\drivers\wdmaud.sys
2010-08-03 10:58 . 2008-04-13 22:15 52864 ----a-w- c:\windows\system32\drivers\dmusic.sys
2010-08-03 10:58 . 2008-04-13 22:15 56576 ----a-w- c:\windows\system32\drivers\swmidi.sys
2010-08-03 10:58 . 2008-04-13 20:09 142592 ----a-w- c:\windows\system32\drivers\aec.sys
2010-08-03 10:58 . 2008-04-13 22:15 172416 ----a-w- c:\windows\system32\drivers\kmixer.sys
2010-08-03 10:58 . 2008-04-13 22:15 2944 ----a-w- c:\windows\system32\drivers\drmkaud.sys
2010-08-03 10:58 . 2008-04-13 22:45 60800 ----a-w- c:\windows\system32\drivers\sysaudio.sys
2010-08-03 10:57 . 2008-04-13 22:49 146048 ----a-w- c:\windows\system32\drivers\portcls.sys
2010-08-03 10:57 . 2008-04-13 22:15 60160 ----a-w- c:\windows\system32\drivers\drmk.sys
2010-08-03 10:49 . 2010-08-03 10:49 -------- d-----w- c:\program files\Toshiba
2010-08-03 10:49 . 2010-08-03 10:49 -------- d-----w- c:\program files\Atheros
2010-08-03 10:49 . 2006-07-17 05:49 494080 ----a-w- c:\windows\system32\drivers\ar5211.sys
2010-08-03 10:49 . 2006-07-17 05:49 494080 ----a-w- c:\windows\system32\ar5211.sys
2010-08-03 10:48 . 2010-08-03 14:29 -------- d-----w- C:\temp
2010-08-03 10:48 . 2010-08-03 10:48 -------- d-----w- c:\program files\Wireless Console 2
2010-08-03 10:48 . 2005-10-17 15:09 987136 ----a-w- c:\windows\system32\wcourier.exe
2010-08-03 10:48 . 2003-02-21 18:42 348160 ----a-w- c:\windows\system32\msvcr71.dll
2010-08-03 10:46 . 2010-08-03 11:17 -------- d-----w- c:\program files\ASUS
2010-08-03 10:43 . 2008-04-13 22:09 5504 ----a-w- c:\windows\system32\drivers\mstee.sys
2010-08-03 10:43 . 2008-04-13 22:16 10880 ----a-w- c:\windows\system32\drivers\ndisip.sys
2010-08-03 10:43 . 2008-04-13 22:16 15232 ----a-w- c:\windows\system32\drivers\streamip.sys
2010-08-03 10:43 . 2008-04-13 22:16 11136 ----a-w- c:\windows\system32\drivers\slip.sys
2010-08-03 10:43 . 2008-04-13 22:16 19200 ----a-w- c:\windows\system32\drivers\wstcodec.sys
2010-08-03 10:43 . 2008-04-13 22:16 85248 ----a-w- c:\windows\system32\drivers\nabtsfec.sys
2010-08-03 10:43 . 2008-04-13 22:16 17024 ----a-w- c:\windows\system32\drivers\ccdecode.sys
2010-08-03 10:38 . 2006-05-25 12:03 69721 ----a-w- c:\windows\system32\SynTPFcs.dll
2010-08-03 10:38 . 2006-05-25 12:06 81920 ----a-w- c:\windows\system32\SynTPCo2.dll
2010-08-03 10:38 . 2006-05-25 11:46 94297 ----a-w- c:\windows\system32\SynTPAPI.dll
2010-08-03 10:38 . 2006-05-25 11:45 114688 ----a-w- c:\windows\system32\SynCtrl.dll
2010-08-03 10:38 . 2006-05-25 11:40 193088 ----a-w- c:\windows\system32\drivers\SynTP.sys
2010-08-03 10:38 . 2006-05-25 11:45 82012 ----a-w- c:\windows\system32\SynCOM.dll
2010-08-03 10:38 . 2010-08-03 10:38 -------- d-----w- c:\program files\Synaptics
2010-08-03 10:36 . 2006-05-04 08:26 2808832 ------r- c:\windows\alcwzrd.exe
2010-08-03 10:36 . 2005-05-03 10:43 69632 ------r- c:\windows\Alcmtr.exe
2010-08-03 10:36 . 2006-10-30 11:49 16269312 ------r- c:\windows\RTHDCPL.exe
2010-08-03 10:36 . 2006-10-11 09:42 2157568 ------r- c:\windows\MicCal.exe
2010-08-03 10:36 . 2006-07-21 08:14 86016 ------r- c:\windows\SoundMan.exe
2010-08-03 10:36 . 2006-05-16 10:04 2879488 ------r- c:\windows\SkyTel.exe
2010-08-03 10:36 . 2010-08-03 10:36 -------- d-----w- c:\windows\system32\RTCOM
2010-08-03 10:36 . 2006-11-03 01:32 4394496 ------r- c:\windows\system32\drivers\RtkHDAud.Sys
2010-08-03 10:36 . 2006-09-28 06:00 1183744 ------r- c:\windows\RtlUpd.exe
2010-08-03 10:36 . 2006-08-01 07:02 49152 ------r- c:\windows\system32\ChCfg.exe
2010-08-03 10:36 . 2006-05-04 08:35 9709568 ------r- c:\windows\RTLCPL.exe
2010-08-03 10:35 . 2010-08-03 10:35 -------- d-----w- c:\program files\Realtek
2010-08-03 10:35 . 2010-08-03 13:19 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-08-03 10:35 . 2006-09-12 06:34 499712 ------r- c:\windows\RtlExUpd.dll
2010-08-03 10:25 . 2010-08-03 10:25 -------- d-----w- c:\windows\ATK0100
2010-08-03 10:25 . 2005-02-17 15:07 5632 ----a-r- c:\windows\system32\drivers\ATKACPI.sys
2010-08-03 10:16 . 2006-06-18 15:59 43008 ----a-r- c:\windows\system32\drivers\AmdK8.sys
2010-08-03 10:12 . 2010-08-03 10:14 -------- d-----w- c:\windows\nview
2010-08-03 10:12 . 2006-06-29 07:40 208896 ----a-r- c:\windows\system32\nvudisp.exe
2010-08-03 10:11 . 2006-06-29 07:40 208896 ----a-r- c:\windows\system32\NVUNINST.EXE
2010-08-03 10:11 . 2010-08-03 10:41 -------- d-----w- c:\program files\Common Files\InstallShield
2010-08-03 10:09 . 2000-03-02 11:16 7424 ----a-r- c:\windows\system32\drivers\MMIOPORT.SYS
2010-08-03 08:08 . 2001-08-17 21:59 3072 ----a-w- c:\windows\system32\drivers\audstub.sys
2010-08-03 08:08 . 2008-04-14 05:44 58496 ----a-w- c:\windows\system32\drivers\redbook.sys
2010-08-03 08:07 . 2008-04-14 06:52 75264 ----a-w- c:\windows\system32\usbui.dll
2010-08-03 08:07 . 2008-04-13 22:06 10240 ----a-w- c:\windows\system32\drivers\compbatt.sys
2010-08-03 08:07 . 2008-04-13 22:06 13952 ----a-w- c:\windows\system32\drivers\cmbatt.sys
2010-08-03 08:07 . 2008-04-13 22:06 14208 ----a-w- c:\windows\system32\drivers\battc.sys
2010-08-03 08:04 . 2010-08-03 11:47 -------- d--h--w- c:\documents and settings\Default User.WINDOWS
2010-08-03 08:04 . 2010-08-03 06:14 -------- d-----w- c:\documents and settings\All Users.WINDOWS
2010-08-03 07:59 . 2010-08-03 11:41 -------- d-----w- c:\windows\ehome
2010-08-03 07:59 . 2010-08-03 11:41 -------- d-----w- c:\windows\PeerNet
2010-08-03 07:59 . 2010-08-03 07:59 -------- d-----w- c:\windows\Provisioning
2010-08-03 06:18 . 2010-08-03 06:18 -------- d-----w- c:\documents and settings\NetworkService.NT AUTHORITY\Data aplikací
2010-08-03 06:18 . 2010-08-03 06:18 -------- d-sh--w- c:\documents and settings\NetworkService.NT AUTHORITY
2010-08-03 06:16 . 2001-10-25 14:00 229439 -c--a-w- c:\windows\system32\dllcache\multibox.dll
2010-08-03 06:15 . 2001-10-25 14:00 6656 -c--a-w- c:\windows\system32\dllcache\c_is2022.dll
2010-08-03 06:14 . 2010-08-03 14:35 -------- d-sh--w- c:\documents and settings\All Users.WINDOWS\DRM
2010-08-03 06:13 . 2001-10-25 14:00 11264 -c--a-w- c:\windows\system32\dllcache\atrace.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-08-03 11:48 . 2001-10-25 14:00 46394 ----a-w- c:\windows\system32\perfc005.dat
2010-08-03 11:48 . 2001-10-25 14:00 310228 ----a-w- c:\windows\system32\perfh005.dat
2010-08-03 11:44 . 2010-08-03 06:14 86327 ----a-w- c:\windows\PCHealth\HelpCtr\OfflineCache\index.dat
2010-08-03 11:44 . 2010-08-03 06:14 2740 ----a-w- c:\windows\PCHealth\HelpCtr\PackageStore\SkuStore.bin
2010-08-03 11:41 . 2010-08-03 06:14 8972 ----a-w- c:\windows\PCHealth\HelpCtr\Config\Cntstore.bin
2010-08-03 06:11 . 2010-08-03 06:11 21812 ----a-w- c:\windows\system32\emptyregdb.dat
2010-08-02 22:41 . 2010-08-02 22:41 -------- d-----w- c:\program files\microsoft frontpage
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"DU Meter"="c:\program files\DU Meter\DUMeter.exe" [2009-02-08 2645528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-04-27 7561216]
"nwiz"="nwiz.exe" [2006-04-27 1519616]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-04-27 86016]
"HControl"="c:\windows\ATK0100\HControl.exe" [2006-10-14 110592]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-05-25 786521]
"Wireless Console 2"="c:\program files\Wireless Console 2\wcourier.exe" [2005-10-17 987136]
"RTHDCPL"="RTHDCPL.EXE" [2006-10-30 16269312]
"SkyTel"="SkyTel.EXE" [2006-05-16 2879488]
"SMSERIAL"="c:\windows\sm56hlpr.exe" [2006-03-21 544768]
"AVG9_TRAY"="c:\progra~1\AVG\AVG9\avgtray.exe" [2010-08-03 2065760]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-06-20 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-06-09 976832]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-26 161328]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\All Users.WINDOWS\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng1.exe [2006-5-24 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2010-08-03 12:17 12536 ----a-w- c:\windows\system32\avgrsstx.dll

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\AVG\\AVG9\\avgam.exe"=
"c:\\Program Files\\AVG\\AVG9\\avgdiagex.exe"=
"c:\\Program Files\\AVG\\AVG9\\avgemc.exe"=
"c:\\Program Files\\AVG\\AVG9\\avgupd.exe"=
"c:\\Program Files\\AVG\\AVG9\\avgnsx.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=

R0 AVGIDSErHrxpx;AVG9IDSErHr;c:\windows\system32\drivers\AVGIDSxx.sys [3.8.2010 13:53 25168]
R0 AvgRkx86;avgrkx86.sys;c:\windows\system32\drivers\avgrkx86.sys [3.8.2010 13:53 52872]
R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [3.8.2010 13:53 216400]
R1 AvgTdiX;AVG Network Redirector;c:\windows\system32\drivers\avgtdix.sys [3.8.2010 13:53 243024]
R2 avg9emc;AVG E-mail Scanner;c:\program files\AVG\AVG9\avgemc.exe [3.8.2010 14:16 921952]
R2 avg9wd;AVG WatchDog;c:\program files\AVG\AVG9\avgwdsvc.exe [3.8.2010 14:16 308136]
R2 DUMeterSvc;DU Meter Service;c:\program files\DU Meter\DUMeterSvc.exe [3.8.2010 15:19 1386008]
R3 SynMini;USB2.0 1.3M WebCam;c:\windows\system32\drivers\SynMini.sys [3.8.2010 12:42 1116544]
R3 SynScan;USB2.0 1.3M WebCam Still Image;c:\windows\system32\drivers\SynScan.sys [3.8.2010 12:42 7808]
S3 AVGIDSAgent;AVG9IDSAgent;c:\program files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe [3.8.2010 14:16 5897808]
S3 AVGIDSDriverxpx;AVG9IDSDriver;c:\program files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSDriver.sys [3.8.2010 13:53 122448]
S3 AVGIDSFilterxpx;AVG9IDSFilter;c:\program files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSFilter.sys [3.8.2010 13:53 30288]
S3 AVGIDSShimxpx;AVG9IDSShim;c:\program files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSShim.sys [3.8.2010 13:53 26192]
S4 sptd;sptd;c:\windows\system32\drivers\sptd.sys [3.8.2010 13:26 691696]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Paja.PAJANB\Data aplikací\Mozilla\Firefox\Profiles\cf5r1zc5.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-03 21:17
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\DUMeterSvc]
"ImagePath"="c:\program files\DU Meter\DUMeterSvc.exe /startedbyscm:E1F6D4BE-40E33354-DUMeterService"
.
Celkový čas: 2010-08-03 21:18:29
ComboFix-quarantined-files.txt 2010-08-03 19:18

Před spuštěním: Volných bajtů: 109 658 726 400
Po spuštění: Volných bajtů: 109 685 436 416

WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

- - End Of File - - FF4771170B2489DBDBC2EAE5F77332EE

#12 Příspěvek od **Rudy** » 03 srp 2010 20:56

Log vypadá čistý. Máte ještě nějaký problém?

tora · #13 Příspěvek od **tora** » 03 srp 2010 21:00

Děkuji moc, snad už to tedy bude ok. Po opravení systému avg našlo zase ten samý vir, tak jsem chtěl mít jistotu, aby to nedopadlo jako předtím.
Děkuji moc za pomoc. Martin

#14 Příspěvek od **Rudy** » 03 srp 2010 21:01

Nemáte zač!

VIRY.CZ

Zamrzá NB, nejde internet....

Zamrzá NB, nejde internet....

Re: Zamrzá NB, nejde internet....

Re: Zamrzá NB, nejde internet....

Re: Zamrzá NB, nejde internet....

Re: Zamrzá NB, nejde internet....

Re: Zamrzá NB, nejde internet....

Re: Zamrzá NB, nejde internet....

Re: Zamrzá NB, nejde internet....

Re: Zamrzá NB, nejde internet....

Re: Zamrzá NB, nejde internet....

Re: Zamrzá NB, nejde internet....

Re: Zamrzá NB, nejde internet....

Re: Zamrzá NB, nejde internet....

Re: Zamrzá NB, nejde internet....