Zanedbané PC - hlásil trojana

Zpráva

banaho · #1 Příspěvek od **banaho** » 04 zář 2010 14:35

Dobrý den,
nastoupil jsem jako pracovník do infocentra a PC zde byl neaktualizovaný a často se vyskytovaly hlášky s trojanem. PC jsem projel NODem, Spyware terminatorem a Ccleanerem a nainstaloval jsem SP3 (byl pouze SP1). Při práci nyní PC vypadá Ok, již žádné hlášky o trojanech, přesto prosím o kontrolu logu (log je dlouhý, proto vkládám do přílohy).

Předem díky.

#2 Příspěvek od **motji** » 04 zář 2010 17:44

Dobrý večer

Můžete mi sem ten log vložit, rozdělit na více příspěvků?
Vytam žádného IT technika, který by se Vám na to podíval,nemáte?

banaho · #3 Příspěvek od **banaho** » 04 zář 2010 23:31

Samozřejmě, že mohu. Log je níže.

Žádný technik není, jsem jediným pracovníkem, vlastně jenom záskok za jednu paní, která to má jako OSVČ.

Díky za shlédnutí logu.

Logfile of random's system information tool 1.08 (written by random/random)
Run by TISA at 2010-09-03 14:16:49
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 21 GB (54%) free of 38 GB
Total RAM: 479 MB (38% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:17:54, on 3.9.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\Card Reader\shwicon.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Documents and Settings\TISA\Plocha\RSIT.exe
C:\Program Files\trend micro\TISA.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: CHelper Class - {0F469452-B579-4F29-94A2-AE86C86067A6} - C:\Program Files\Microton 2006\Eurotran\etran_i.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: CrowdStar Gamebar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [CM-SmWizard] C:\WINDOWS\System\SmWizard.exe
O4 - HKLM\..\Run: [ShowIcon_The Company_USB Storage Device Ver. 1.3] "C:\Program Files\Card Reader\shwicon.exe" -t"The Company\USB Storage Device Ver. 1.3"
O4 - HKLM\..\Run: [mouseElf] C:\PROGRA~1\GENIUS~1\GNETMOUS.EXE
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\TISA\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: Download All by FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: Download using FlashGet - C:\Program Files\FlashGet\jc_link.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_01\bin\npjpi142_01.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_01\bin\npjpi142_01.dll
O9 - Extra button: Eurotran 2006 - {66566BD7-FF3C-46a8-97AB-A60ECC45BDD2} - C:\Program Files\Microton 2006\Eurotran\etran_i.dll
O9 - Extra button: (no name) - {6740485C-7614-4d47-B8FC-AF7E5E99A2BD} - C:\Program Files\Microton 2006\Eurotran\etran_i.dll
O9 - Extra 'Tools' menuitem: Eurotran 2006 - {6740485C-7614-4d47-B8FC-AF7E5E99A2BD} - C:\Program Files\Microton 2006\Eurotran\etran_i.dll
O9 - Extra button: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files\ICQ7.1\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files\ICQ7.1\ICQ.exe
O9 - Extra button: Lexie 2006 - {9EE61AF4-AC5B-42dd-9EBF-9DC30124C338} - C:\Program Files\Microton 2006\Lexie\lexie.dll
O9 - Extra 'Tools' menuitem: Lexie 2006 - {9EE61AF4-AC5B-42dd-9EBF-9DC30124C338} - C:\Program Files\Microton 2006\Lexie\lexie.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe (file missing)
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 3499326156
O16 - DPF: {A3ED5288-F558-4F6E-8D5C-740CB6F89029} - http://scan.power-antivirus-2009.com/setup/setup.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game09.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextus.oberon-media.com/Game ... meHost.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{FE7C524A-783C-457D-BD53-29F2FFBE1E94}: NameServer = 10.114.17.1,217.117.216.7
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Služba inteligentního přenosu na pozadí (BITS) (BITS) - Unknown owner - C:\WINDOWS\
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Automatické aktualizace (wuauserv) - Unknown owner - C:\WINDOWS\

--
End of file - 8622 bytes

banaho · #4 Příspěvek od **banaho** » 04 zář 2010 23:33

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-343818398-1972579041-725345543-1004Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-343818398-1972579041-725345543-1004UA.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2004-12-14 63136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F469452-B579-4F29-94A2-AE86C86067A6}]
CHelper Class - C:\Program Files\Microton 2006\Eurotran\etran_i.dll [2008-07-08 114688]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
CrowdStar Gamebar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2010-06-30 1390984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetIM Toolbar Helper - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2010-06-13 1438520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2010-01-03 1019128]
{E0E899AB-F487-11D5-8D29-0050BA6940E3}
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2010-06-13 1438520]
{D4027C7F-154A-4066-A1AD-4243D8127440} - CrowdStar Gamebar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2010-06-30 1390984]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Cmaudio"=RunDll32 cmicnfg.cpl,CMICtrlWnd []
"CM-SmWizard"=C:\WINDOWS\System\SmWizard.exe [2003-08-01 1355776]
"ShowIcon_The Company_USB Storage Device Ver. 1.3"=C:\Program Files\Card Reader\shwicon.exe [2002-11-06 69632]
"mouseElf"=C:\PROGRA~1\GENIUS~1\GNETMOUS.EXE [2003-05-13 163840]
"nod32kui"=C:\Program Files\Eset\nod32kui.exe [2008-04-01 949376]
"SweetIM"=C:\Program Files\SweetIM\Messenger\SweetIM.exe [2010-06-07 111928]
"SpywareTerminator"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2010-09-03 2176512]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"SpywareTerminatorUpdate"=C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2010-09-03 3037696]
"Google Update"=C:\Documents and Settings\TISA\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2010-09-03 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\MSMSGS.EXE [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Power-Antivirus-2009]
C:\Documents and Settings\TISA\Plocha\in\Power-Antivirus-2009.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2008-04-06 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2003-12-13 33792]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=
scecli
scecli

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"="C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Crawler Spyware Terminator"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======File associations======

.js - open - NOTEPAD.EXE %1
.reg - open - NOTEPAD.EXE %1
.scr - open - NOTEPAD.EXE %1
.vbs - open - NOTEPAD.EXE %1

======List of files/folders created in the last 1 months======

2010-09-03 14:16:51 ----D---- C:\Program Files\trend micro
2010-09-03 14:16:49 ----D---- C:\rsit
2010-09-03 14:12:15 ----D---- C:\WINDOWS\WBEM
2010-09-03 14:09:42 ----HDC---- C:\WINDOWS\ie8
2010-09-03 14:04:20 ----A---- C:\WINDOWS\OEWABLog.txt
2010-09-03 14:03:10 ----D---- C:\WINDOWS\Prefetch
2010-09-03 13:55:45 ----A---- C:\WINDOWS\setuplog.txt
2010-09-03 13:54:30 ----N---- C:\WINDOWS\system32\msxml6r.dll
2010-09-03 13:54:30 ----N---- C:\WINDOWS\system32\msxml6.dll
2010-09-03 13:54:01 ----N---- C:\WINDOWS\system32\drivers\irbus.sys
2010-09-03 13:54:01 ----N---- C:\WINDOWS\system32\comsdupd.exe
2010-09-03 13:53:54 ----N---- C:\WINDOWS\system32\auditusr.exe
2010-09-03 13:53:54 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2010-09-03 13:53:54 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2010-09-03 13:53:54 ----N---- C:\WINDOWS\system32\ati3duag.dll
2010-09-03 13:53:54 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2010-09-03 13:53:54 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2010-09-03 13:53:54 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2010-09-03 13:53:54 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2010-09-03 13:53:54 ----N---- C:\WINDOWS\system32\aaclient.dll
2010-09-03 13:53:53 ----N---- C:\WINDOWS\system32\credssp.dll
2010-09-03 13:53:53 ----N---- C:\WINDOWS\system32\cmsetacl.dll
2010-09-03 13:53:53 ----N---- C:\WINDOWS\system32\btpanui.dll
2010-09-03 13:53:53 ----N---- C:\WINDOWS\system32\bthserv.dll
2010-09-03 13:53:53 ----N---- C:\WINDOWS\system32\bthci.dll
2010-09-03 13:53:53 ----N---- C:\WINDOWS\system32\blastcln.exe
2010-09-03 13:53:53 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2010-09-03 13:53:53 ----N---- C:\WINDOWS\system32\azroles.dll
2010-09-03 13:53:52 ----N---- C:\WINDOWS\system32\eapphost.dll
2010-09-03 13:53:52 ----N---- C:\WINDOWS\system32\eappgnui.dll
2010-09-03 13:53:52 ----N---- C:\WINDOWS\system32\eappcfg.dll
2010-09-03 13:53:52 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2010-09-03 13:53:52 ----N---- C:\WINDOWS\system32\eapolqec.dll
2010-09-03 13:53:52 ----N---- C:\WINDOWS\system32\dot3ui.dll
2010-09-03 13:53:52 ----N---- C:\WINDOWS\system32\dot3svc.dll
2010-09-03 13:53:52 ----N---- C:\WINDOWS\system32\dot3msm.dll
2010-09-03 13:53:52 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2010-09-03 13:53:52 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2010-09-03 13:53:52 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2010-09-03 13:53:52 ----N---- C:\WINDOWS\system32\dot3api.dll
2010-09-03 13:53:52 ----N---- C:\WINDOWS\system32\dimsroam.dll
2010-09-03 13:53:52 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2010-09-03 13:53:52 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2010-09-03 13:53:51 ----N---- C:\WINDOWS\system32\fwcfg.dll
2010-09-03 13:53:51 ----N---- C:\WINDOWS\system32\fsquirt.exe
2010-09-03 13:53:51 ----N---- C:\WINDOWS\system32\fltmc.exe
2010-09-03 13:53:51 ----N---- C:\WINDOWS\system32\fltlib.dll
2010-09-03 13:53:51 ----N---- C:\WINDOWS\system32\extmgr.dll
2010-09-03 13:53:51 ----N---- C:\WINDOWS\system32\eapsvc.dll
2010-09-03 13:53:51 ----N---- C:\WINDOWS\system32\eapqec.dll
2010-09-03 13:53:51 ----N---- C:\WINDOWS\system32\eappprxy.dll
2010-09-03 13:53:50 ----N---- C:\WINDOWS\system32\ir50_qcx.dll
2010-09-03 13:53:50 ----N---- C:\WINDOWS\system32\ir50_qc.dll
2010-09-03 13:53:50 ----N---- C:\WINDOWS\system32\ir50_32.dll
2010-09-03 13:53:50 ----N---- C:\WINDOWS\system32\httpapi.dll
2010-09-03 13:53:50 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2010-09-03 13:53:49 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2010-09-03 13:53:49 ----N---- C:\WINDOWS\system32\kmsvc.dll
2010-09-03 13:53:49 ----N---- C:\WINDOWS\system32\kbdukx.dll
2010-09-03 13:53:49 ----N---- C:\WINDOWS\system32\kbdsmsno.dll
2010-09-03 13:53:49 ----N---- C:\WINDOWS\system32\kbdsmsfi.dll
2010-09-03 13:53:49 ----N---- C:\WINDOWS\system32\kbdpash.dll
2010-09-03 13:53:49 ----N---- C:\WINDOWS\system32\kbdno1.dll
2010-09-03 13:53:49 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2010-09-03 13:53:49 ----N---- C:\WINDOWS\system32\kbdmlt48.dll
2010-09-03 13:53:49 ----N---- C:\WINDOWS\system32\kbdmlt47.dll
2010-09-03 13:53:49 ----N---- C:\WINDOWS\system32\kbdmaori.dll
2010-09-03 13:53:49 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2010-09-03 13:53:49 ----N---- C:\WINDOWS\system32\kbdinmal.dll
2010-09-03 13:53:49 ----N---- C:\WINDOWS\system32\kbdinben.dll
2010-09-03 13:53:49 ----N---- C:\WINDOWS\system32\kbdinbe1.dll
2010-09-03 13:53:49 ----N---- C:\WINDOWS\system32\kbdfi1.dll
2010-09-03 13:53:49 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2010-09-03 13:53:48 ----N---- C:\WINDOWS\system32\msdadiag.dll
2010-09-03 13:53:48 ----N---- C:\WINDOWS\system32\mmcperf.exe
2010-09-03 13:53:48 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2010-09-03 13:53:48 ----N---- C:\WINDOWS\system32\mmcex.dll
2010-09-03 13:53:48 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2010-09-03 13:53:48 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2010-09-03 13:53:47 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2010-09-03 13:53:47 ----N---- C:\WINDOWS\system32\napstat.exe
2010-09-03 13:53:47 ----N---- C:\WINDOWS\system32\napmontr.dll
2010-09-03 13:53:47 ----N---- C:\WINDOWS\system32\napipsec.dll
2010-09-03 13:53:47 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2010-09-03 13:53:47 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2010-09-03 13:53:47 ----N---- C:\WINDOWS\system32\mssha.dll
2010-09-03 13:53:46 ----N---- C:\WINDOWS\system32\sdhcinst.dll
2010-09-03 13:53:46 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2010-09-03 13:53:46 ----N---- C:\WINDOWS\system32\rasqec.dll
2010-09-03 13:53:46 ----N---- C:\WINDOWS\system32\qutil.dll
2010-09-03 13:53:46 ----N---- C:\WINDOWS\system32\qcliprov.dll
2010-09-03 13:53:46 ----N---- C:\WINDOWS\system32\qagentrt.dll
2010-09-03 13:53:46 ----N---- C:\WINDOWS\system32\qagent.dll
2010-09-03 13:53:46 ----N---- C:\WINDOWS\system32\powercfg.exe
2010-09-03 13:53:46 ----N---- C:\WINDOWS\system32\pnrpnsp.dll
2010-09-03 13:53:46 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2010-09-03 13:53:46 ----N---- C:\WINDOWS\system32\p2psvc.dll
2010-09-03 13:53:46 ----N---- C:\WINDOWS\system32\p2pnetsh.dll
2010-09-03 13:53:46 ----N---- C:\WINDOWS\system32\p2pgraph.dll
2010-09-03 13:53:46 ----N---- C:\WINDOWS\system32\p2pgasvc.dll
2010-09-03 13:53:46 ----N---- C:\WINDOWS\system32\p2p.dll
2010-09-03 13:53:46 ----N---- C:\WINDOWS\system32\onex.dll
2010-09-03 13:53:45 ----N---- C:\WINDOWS\system32\smbinst.exe
2010-09-03 13:53:45 ----N---- C:\WINDOWS\system32\slserv.exe
2010-09-03 13:53:45 ----N---- C:\WINDOWS\system32\slrundll.exe
2010-09-03 13:53:45 ----N---- C:\WINDOWS\system32\slgen.dll
2010-09-03 13:53:45 ----N---- C:\WINDOWS\system32\slextspk.dll
2010-09-03 13:53:45 ----N---- C:\WINDOWS\system32\slcoinst.dll
2010-09-03 13:53:45 ----N---- C:\WINDOWS\system32\setupn.exe
2010-09-03 13:53:44 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2010-09-03 13:53:44 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2010-09-03 13:53:44 ----N---- C:\WINDOWS\system32\w3ssl.dll
2010-09-03 13:53:44 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-09-03 13:53:44 ----N---- C:\WINDOWS\system32\twext.dll
2010-09-03 13:53:44 ----N---- C:\WINDOWS\system32\tspkg.dll
2010-09-03 13:53:44 ----N---- C:\WINDOWS\system32\tsgqec.dll
2010-09-03 13:53:44 ----N---- C:\WINDOWS\system32\strmfilt.dll
2010-09-03 13:53:43 ----N---- C:\WINDOWS\system32\wshbth.dll
2010-09-03 13:53:43 ----N---- C:\WINDOWS\system32\wscsvc.dll
2010-09-03 13:53:43 ----N---- C:\WINDOWS\system32\wscntfy.exe
2010-09-03 13:53:43 ----N---- C:\WINDOWS\system32\wmphoto.dll
2010-09-03 13:53:43 ----N---- C:\WINDOWS\system32\wlanapi.dll
2010-09-03 13:53:43 ----N---- C:\WINDOWS\system32\winshfhc.dll
2010-09-03 13:53:42 ----N---- C:\WINDOWS\system32\xmlprovi.dll
2010-09-03 13:53:42 ----N---- C:\WINDOWS\system32\xmlprov.dll
2010-09-03 13:53:42 ----N---- C:\WINDOWS\slrundll.exe
2010-09-03 13:53:42 ----A---- C:\WINDOWS\system32\xmllite.dll
2010-09-03 13:49:20 ----D---- C:\WINDOWS\ServicePackFiles
2010-09-03 13:45:19 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2010-09-03 13:45:19 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2010-09-03 13:45:19 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2010-09-03 13:45:19 ----N---- C:\WINDOWS\system32\drivers\agp440.sys
2010-09-03 13:45:19 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2010-09-03 13:45:19 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2010-09-03 13:45:19 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2010-09-03 13:45:19 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2010-09-03 13:45:19 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2010-09-03 13:45:19 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2010-09-03 13:45:19 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2010-09-03 13:45:18 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2010-09-03 13:45:18 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2010-09-03 13:45:18 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2010-09-03 13:45:18 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2010-09-03 13:45:18 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2010-09-03 13:45:18 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2010-09-03 13:45:18 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2010-09-03 13:45:18 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2010-09-03 13:45:18 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2010-09-03 13:45:18 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2010-09-03 13:45:18 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2010-09-03 13:45:17 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2010-09-03 13:45:17 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2010-09-03 13:45:17 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2010-09-03 13:45:17 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2010-09-03 13:45:17 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2010-09-03 13:45:17 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2010-09-03 13:45:17 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2010-09-03 13:45:17 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2010-09-03 13:45:17 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2010-09-03 13:45:17 ----N---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2010-09-03 13:45:16 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2010-09-03 13:45:16 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2010-09-03 13:45:16 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2010-09-03 13:45:16 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2010-09-03 13:45:16 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2010-09-03 13:45:16 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2010-09-03 13:45:16 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2010-09-03 13:45:16 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2010-09-03 13:45:16 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2010-09-03 13:45:16 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2010-09-03 13:45:16 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2010-09-03 13:45:16 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2010-09-03 13:45:16 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2010-09-03 13:45:15 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2010-09-03 13:45:15 ----N---- C:\WINDOWS\system32\drivers\ip6fw.sys
2010-09-03 13:45:15 ----N---- C:\WINDOWS\system32\drivers\intelppm.sys
2010-09-03 13:45:15 ----N---- C:\WINDOWS\system32\drivers\http.sys
2010-09-03 13:45:15 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2010-09-03 13:45:15 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2010-09-03 13:45:15 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2010-09-03 13:45:15 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2010-09-03 13:45:15 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2010-09-03 13:45:15 ----N---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2010-09-03 13:45:15 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2010-09-03 13:45:15 ----N---- C:\WINDOWS\system32\drivers\fltmgr.sys
2010-09-03 13:45:14 ----N---- C:\WINDOWS\system32\drivers\sdbus.sys
2010-09-03 13:45:14 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2010-09-03 13:45:14 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2010-09-03 13:45:14 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2010-09-03 13:45:14 ----N---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2010-09-03 13:45:14 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2010-09-03 13:45:14 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2010-09-03 13:45:14 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2010-09-03 13:45:14 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2010-09-03 13:45:14 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2010-09-03 13:45:14 ----N---- C:\WINDOWS\system32\drivers\mssmbios.sys
2010-09-03 13:45:13 ----N---- C:\WINDOWS\system32\drivers\uagp35.sys
2010-09-03 13:45:13 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2010-09-03 13:45:13 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2010-09-03 13:45:13 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2010-09-03 13:45:13 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2010-09-03 13:45:13 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2010-09-03 13:45:13 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2010-09-03 13:45:13 ----N---- C:\WINDOWS\system32\drivers\siint5.dll
2010-09-03 13:45:13 ----N---- C:\WINDOWS\system32\drivers\sffp_sd.sys
2010-09-03 13:45:13 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2010-09-03 13:45:13 ----N---- C:\WINDOWS\system32\drivers\sffdisk.sys
2010-09-03 13:45:12 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2010-09-03 13:45:12 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2010-09-03 13:45:12 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2010-09-03 13:45:12 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2010-09-03 13:45:12 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2010-09-03 13:45:12 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2010-09-03 13:45:12 ----N---- C:\WINDOWS\system32\drivers\usbvideo.sys
2010-09-03 13:45:12 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2010-09-03 13:45:11 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2010-09-03 13:45:11 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2010-09-03 13:42:26 ----A---- C:\WINDOWS\002960_.tmp
2010-09-03 13:38:06 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-09-03 13:28:59 ----D---- C:\WINDOWS\system32\NtmsData
2010-09-03 13:13:47 ----D---- C:\Program Files\Windows Resource Kits
2010-09-03 12:57:40 ----D---- C:\WINDOWS\system32\cs-cz
2010-09-03 12:57:38 ----D---- C:\WINDOWS\provisioning
2010-09-03 12:57:37 ----D---- C:\WINDOWS\l2schemas
2010-09-03 12:57:36 ----D---- C:\WINDOWS\system32\cs
2010-09-03 12:57:35 ----D---- C:\WINDOWS\peernet
2010-09-03 12:52:08 ----A---- C:\WINDOWS\system32\SET2197.tmp
2010-09-03 12:52:06 ----A---- C:\WINDOWS\system32\SET2191.tmp
2010-09-03 12:50:09 ----A---- C:\WINDOWS\fonts\SET1F84.tmp
2010-09-03 12:50:08 ----A---- C:\WINDOWS\fonts\SET1F83.tmp
2010-09-03 12:50:08 ----A---- C:\WINDOWS\fonts\SET1F82.tmp
2010-09-03 12:50:08 ----A---- C:\WINDOWS\fonts\SET1F81.tmp
2010-09-03 12:50:07 ----A---- C:\WINDOWS\fonts\SET1F80.tmp
2010-09-03 12:50:07 ----A---- C:\WINDOWS\fonts\SET1F7E.tmp
2010-09-03 12:50:07 ----A---- C:\WINDOWS\fonts\SET1F7B.tmp
2010-09-03 12:50:06 ----A---- C:\WINDOWS\fonts\SET1F7A.tmp
2010-09-03 12:50:06 ----A---- C:\WINDOWS\fonts\SET1F79.tmp
2010-09-03 12:50:06 ----A---- C:\WINDOWS\fonts\SET1F78.tmp
2010-09-03 12:50:06 ----A---- C:\WINDOWS\fonts\SET1F77.tmp
2010-09-03 12:50:02 ----A---- C:\WINDOWS\SET1F69.tmp
2010-09-03 12:49:45 ----A---- C:\WINDOWS\system32\SET1F34.tmp
2010-09-03 12:49:44 ----A---- C:\WINDOWS\system32\SET1F32.tmp
2010-09-03 12:49:44 ----A---- C:\WINDOWS\system32\SET1F2F.tmp
2010-09-03 12:49:43 ----A---- C:\WINDOWS\system32\SET1F2C.tmp
2010-09-03 12:49:42 ----A---- C:\WINDOWS\system32\SET1F27.tmp
2010-09-03 12:49:41 ----A---- C:\WINDOWS\system32\SET1F21.tmp
2010-09-03 12:49:41 ----A---- C:\WINDOWS\system32\SET1F1F.tmp
2010-09-03 12:49:40 ----A---- C:\WINDOWS\system32\SET1F1C.tmp
2010-09-03 12:49:40 ----A---- C:\WINDOWS\system32\SET1F1B.tmp
2010-09-03 12:49:39 ----A---- C:\WINDOWS\system32\SET1F17.tmp
2010-09-03 12:49:39 ----A---- C:\WINDOWS\system32\SET1F16.tmp
2010-09-03 12:49:38 ----A---- C:\WINDOWS\system32\SET1F11.tmp
2010-09-03 12:49:38 ----A---- C:\WINDOWS\system32\SET1F10.tmp
2010-09-03 12:49:37 ----A---- C:\WINDOWS\system32\SET1F0F.tmp
2010-09-03 12:49:36 ----A---- C:\WINDOWS\system32\SET1F09.tmp
2010-09-03 12:49:35 ----A---- C:\WINDOWS\system32\SET1F07.tmp
2010-09-03 12:49:34 ----A---- C:\WINDOWS\system32\SET1F04.tmp
2010-09-03 12:49:33 ----A---- C:\WINDOWS\system32\SET1F00.tmp
2010-09-03 12:49:32 ----A---- C:\WINDOWS\system32\SET1EFB.tmp
2010-09-03 12:49:31 ----A---- C:\WINDOWS\system32\SET1EF4.tmp
2010-09-03 12:49:29 ----A---- C:\WINDOWS\system32\SET1EEC.tmp
2010-09-03 12:49:29 ----A---- C:\WINDOWS\system32\SET1EEB.tmp
2010-09-03 12:49:28 ----A---- C:\WINDOWS\system32\SET1EE6.tmp
2010-09-03 12:49:27 ----A---- C:\WINDOWS\system32\SET1EE4.tmp
2010-09-03 12:49:26 ----A---- C:\WINDOWS\system32\SET1EE1.tmp
2010-09-03 12:49:26 ----A---- C:\WINDOWS\system32\SET1EE0.tmp
2010-09-03 12:49:25 ----A---- C:\WINDOWS\system32\SET1EDF.tmp
2010-09-03 12:49:25 ----A---- C:\WINDOWS\system32\SET1EDE.tmp
2010-09-03 12:49:24 ----A---- C:\WINDOWS\system32\SET1EDC.tmp
2010-09-03 12:49:24 ----A---- C:\WINDOWS\system32\SET1EDA.tmp
2010-09-03 12:49:23 ----A---- C:\WINDOWS\system32\SET1ED9.tmp
2010-09-03 12:49:22 ----A---- C:\WINDOWS\system32\SET1ED8.tmp
2010-09-03 12:49:21 ----A---- C:\WINDOWS\system32\SET1ED7.tmp
2010-09-03 12:49:19 ----A---- C:\WINDOWS\system32\SET1ED5.tmp
2010-09-03 12:49:19 ----A---- C:\WINDOWS\system32\SET1ED4.tmp
2010-09-03 12:49:17 ----A---- C:\WINDOWS\system32\SET1ED3.tmp
2010-09-03 12:49:13 ----A---- C:\WINDOWS\system32\SET1ECC.tmp
2010-09-03 12:49:10 ----A---- C:\WINDOWS\system32\SET1EC5.tmp
2010-09-03 12:49:08 ----A---- C:\WINDOWS\system32\SET1EC2.tmp
2010-09-03 12:48:56 ----A---- C:\WINDOWS\system32\SET1EA5.tmp
2010-09-03 12:48:55 ----A---- C:\WINDOWS\system32\SET1EA0.tmp
2010-09-03 12:48:54 ----A---- C:\WINDOWS\system32\SET1E9F.tmp
2010-09-03 12:48:46 ----A---- C:\WINDOWS\system32\SET1E8B.tmp
2010-09-03 12:48:42 ----A---- C:\WINDOWS\system32\SET1E7F.tmp
2010-09-03 12:48:40 ----A---- C:\WINDOWS\system32\SET1E79.tmp
2010-09-03 12:48:37 ----A---- C:\WINDOWS\system32\SET1E6F.tmp
2010-09-03 12:48:37 ----A---- C:\WINDOWS\system32\SET1E6E.tmp
2010-09-03 12:48:36 ----A---- C:\WINDOWS\system32\SET1E6D.tmp
2010-09-03 12:48:36 ----A---- C:\WINDOWS\system32\SET1E6B.tmp
2010-09-03 12:48:34 ----A---- C:\WINDOWS\system32\SET1E66.tmp
2010-09-03 12:48:33 ----A---- C:\WINDOWS\system32\SET1E5D.tmp
2010-09-03 12:48:32 ----A---- C:\WINDOWS\system32\SET1E59.tmp
2010-09-03 12:48:30 ----A---- C:\WINDOWS\system32\SET1E53.tmp
2010-09-03 12:48:30 ----A---- C:\WINDOWS\system32\SET1E52.tmp
2010-09-03 12:48:29 ----A---- C:\WINDOWS\system32\SET1E50.tmp
2010-09-03 12:48:27 ----A---- C:\WINDOWS\system32\SET1E4A.tmp
2010-09-03 12:48:27 ----A---- C:\WINDOWS\system32\SET1E48.tmp
2010-09-03 12:48:27 ----A---- C:\WINDOWS\system32\SET1E47.tmp
2010-09-03 12:48:24 ----A---- C:\WINDOWS\system32\SET1E35.tmp
2010-09-03 12:48:23 ----A---- C:\WINDOWS\system32\SET1E34.tmp
2010-09-03 12:48:22 ----A---- C:\WINDOWS\system32\SET1E2F.tmp
2010-09-03 12:48:20 ----A---- C:\WINDOWS\system32\SET1E27.tmp
2010-09-03 12:48:19 ----A---- C:\WINDOWS\system32\SET1E25.tmp
2010-09-03 12:48:18 ----A---- C:\WINDOWS\system32\SET1E1F.tmp
2010-09-03 12:48:14 ----A---- C:\WINDOWS\system32\SET1E0F.tmp
2010-09-03 12:48:13 ----A---- C:\WINDOWS\system32\SET1E0B.tmp
2010-09-03 12:48:13 ----A---- C:\WINDOWS\system32\SET1E09.tmp
2010-09-03 12:48:10 ----A---- C:\WINDOWS\system32\SET1DFD.tmp
2010-09-03 12:48:10 ----A---- C:\WINDOWS\system32\SET1DFB.tmp
2010-09-03 12:48:08 ----A---- C:\WINDOWS\system32\SET1DF3.tmp
2010-09-03 12:48:06 ----A---- C:\WINDOWS\system32\SET1DEB.tmp
2010-09-03 12:48:05 ----A---- C:\WINDOWS\system32\SET1DE7.tmp
2010-09-03 12:48:05 ----A---- C:\WINDOWS\system32\SET1DE6.tmp
2010-09-03 12:48:04 ----A---- C:\WINDOWS\system32\SET1DE5.tmp
2010-09-03 12:48:04 ----A---- C:\WINDOWS\system32\SET1DE2.tmp
2010-09-03 12:47:59 ----A---- C:\WINDOWS\system32\SET1DD6.tmp
2010-09-03 12:47:58 ----A---- C:\WINDOWS\system32\SET1DCF.tmp
2010-09-03 12:47:57 ----A---- C:\WINDOWS\system32\SET1DCE.tmp
2010-09-03 12:47:57 ----A---- C:\WINDOWS\system32\SET1DCC.tmp
2010-09-03 12:47:56 ----A---- C:\WINDOWS\system32\SET1DC7.tmp
2010-09-03 12:47:55 ----A---- C:\WINDOWS\system32\SET1DC5.tmp
2010-09-03 12:47:55 ----A---- C:\WINDOWS\system32\SET1DC3.tmp
2010-09-03 12:47:55 ----A---- C:\WINDOWS\system32\SET1DC2.tmp
2010-09-03 12:47:55 ----A---- C:\WINDOWS\system32\SET1DC1.tmp
2010-09-03 12:47:54 ----A---- C:\WINDOWS\system32\SET1DBF.tmp
2010-09-03 12:47:50 ----A---- C:\WINDOWS\system32\SET1DB2.tmp
2010-09-03 12:47:48 ----A---- C:\WINDOWS\system32\SET1DAE.tmp
2010-09-03 12:47:48 ----A---- C:\WINDOWS\system32\SET1DAD.tmp
2010-09-03 12:47:47 ----A---- C:\WINDOWS\system32\SET1DAA.tmp
2010-09-03 12:47:45 ----A---- C:\WINDOWS\system32\SET1DA8.tmp
2010-09-03 12:47:44 ----A---- C:\WINDOWS\system32\SET1DA1.tmp
2010-09-03 12:47:43 ----A---- C:\WINDOWS\system32\SET1D9D.tmp
2010-09-03 12:47:43 ----A---- C:\WINDOWS\system32\SET1D9C.tmp
2010-09-03 12:47:42 ----A---- C:\WINDOWS\system32\SET1D9A.tmp
2010-09-03 12:47:42 ----A---- C:\WINDOWS\system32\SET1D96.tmp
2010-09-03 12:47:35 ----A---- C:\WINDOWS\system32\SET1D07.tmp
2010-09-03 12:47:34 ----A---- C:\WINDOWS\system32\SET1D06.tmp
2010-09-03 12:47:33 ----A---- C:\WINDOWS\system32\SET1D01.tmp
2010-09-03 12:47:30 ----A---- C:\WINDOWS\system32\SET1CF4.tmp
2010-09-03 12:47:30 ----A---- C:\WINDOWS\system32\SET1CF3.tmp
2010-09-03 12:47:29 ----A---- C:\WINDOWS\system32\SET1CF0.tmp
2010-09-03 12:47:29 ----A---- C:\WINDOWS\system32\SET1CEF.tmp
2010-09-03 12:47:27 ----A---- C:\WINDOWS\system32\SET1CE7.tmp
2010-09-03 12:47:25 ----A---- C:\WINDOWS\system32\SET1CE1.tmp
2010-09-03 12:47:24 ----A---- C:\WINDOWS\system32\SET1CDF.tmp
2010-09-03 12:47:22 ----A---- C:\WINDOWS\system32\SET1CD5.tmp
2010-09-03 12:47:22 ----A---- C:\WINDOWS\system32\SET1CD2.tmp
2010-09-03 12:47:21 ----A---- C:\WINDOWS\system32\SET1CCE.tmp
2010-09-03 12:47:20 ----A---- C:\WINDOWS\system32\SET1CCB.tmp
2010-09-03 12:47:20 ----A---- C:\WINDOWS\system32\SET1CCA.tmp
2010-09-03 12:47:18 ----A---- C:\WINDOWS\system32\SET1CBA.tmp
2010-09-03 12:47:17 ----A---- C:\WINDOWS\system32\SET1CB0.tmp
2010-09-03 12:47:16 ----A---- C:\WINDOWS\system32\SET1CAE.tmp
2010-09-03 12:47:14 ----A---- C:\WINDOWS\system32\SET1C8A.tmp
2010-09-03 12:47:14 ----A---- C:\WINDOWS\system32\SET1C88.tmp
2010-09-03 12:47:13 ----A---- C:\WINDOWS\system32\SET1C87.tmp
2010-09-03 12:47:13 ----A---- C:\WINDOWS\system32\SET1C86.tmp
2010-09-03 12:47:11 ----A---- C:\WINDOWS\system32\SET1C81.tmp
2010-09-03 12:47:10 ----A---- C:\WINDOWS\system32\SET1C7B.tmp
2010-09-03 12:47:10 ----A---- C:\WINDOWS\system32\SET1C7A.tmp
2010-09-03 12:47:09 ----A---- C:\WINDOWS\system32\SET1C75.tmp
2010-09-03 12:47:08 ----A---- C:\WINDOWS\system32\SET1C72.tmp
2010-09-03 12:47:07 ----A---- C:\WINDOWS\system32\SET1C6F.tmp
2010-09-03 12:47:07 ----A---- C:\WINDOWS\system32\SET1C6E.tmp
2010-09-03 12:47:07 ----A---- C:\WINDOWS\system32\SET1C6D.tmp
2010-09-03 12:47:07 ----A---- C:\WINDOWS\system32\SET1C6B.tmp
2010-09-03 12:47:06 ----A---- C:\WINDOWS\system32\SET1C6A.tmp
2010-09-03 12:47:06 ----A---- C:\WINDOWS\system32\SET1C69.tmp
2010-09-03 12:47:06 ----A---- C:\WINDOWS\system32\SET1C67.tmp
2010-09-03 12:47:06 ----A---- C:\WINDOWS\system32\SET1C66.tmp
2010-09-03 12:47:05 ----A---- C:\WINDOWS\system32\SET1C65.tmp
2010-09-03 12:47:05 ----A---- C:\WINDOWS\system32\SET1C64.tmp
2010-09-03 12:47:05 ----A---- C:\WINDOWS\system32\SET1C63.tmp
2010-09-03 12:47:05 ----A---- C:\WINDOWS\system32\SET1C60.tmp
2010-09-03 12:47:04 ----A---- C:\WINDOWS\system32\SET1C5F.tmp
2010-09-03 12:47:03 ----A---- C:\WINDOWS\system32\SET1C58.tmp
2010-09-03 12:47:02 ----A---- C:\WINDOWS\system32\SET1C53.tmp
2010-09-03 12:47:01 ----A---- C:\WINDOWS\system32\SET1C50.tmp
2010-09-03 12:46:58 ----A---- C:\WINDOWS\system32\SET1C3F.tmp
2010-09-03 12:46:57 ----A---- C:\WINDOWS\system32\SET1C3B.tmp
2010-09-03 12:46:56 ----A---- C:\WINDOWS\system32\SET1C39.tmp
2010-09-03 12:46:54 ----A---- C:\WINDOWS\system32\SET1C34.tmp
2010-09-03 12:46:54 ----A---- C:\WINDOWS\system32\SET1C33.tmp
2010-09-03 12:46:53 ----A---- C:\WINDOWS\system32\SET1C2F.tmp
2010-09-03 12:46:50 ----A---- C:\WINDOWS\system32\SET1C23.tmp
2010-09-03 12:46:50 ----A---- C:\WINDOWS\system32\SET1C22.tmp
2010-09-03 12:46:50 ----A---- C:\WINDOWS\system32\SET1C21.tmp
2010-09-03 12:46:49 ----A---- C:\WINDOWS\system32\SET1C1F.tmp
2010-09-03 12:46:49 ----A---- C:\WINDOWS\system32\SET1C1D.tmp
2010-09-03 12:46:45 ----A---- C:\WINDOWS\system32\SET1C10.tmp
2010-09-03 12:46:44 ----A---- C:\WINDOWS\system32\SET1C0A.tmp
2010-09-03 12:46:43 ----A---- C:\WINDOWS\system32\SET1C08.tmp
2010-09-03 12:46:43 ----A---- C:\WINDOWS\system32\SET1C07.tmp
2010-09-03 12:46:42 ----A---- C:\WINDOWS\system32\SET1C06.tmp
2010-09-03 12:46:42 ----A---- C:\WINDOWS\system32\SET1C05.tmp
2010-09-03 12:46:41 ----A---- C:\WINDOWS\system32\SET1BFF.tmp
2010-09-03 12:46:41 ----A---- C:\WINDOWS\system32\SET1BFE.tmp
2010-09-03 12:46:39 ----A---- C:\WINDOWS\system32\SET1BF7.tmp
2010-09-03 12:46:39 ----A---- C:\WINDOWS\system32\SET1BF6.tmp
2010-09-03 12:46:39 ----A---- C:\WINDOWS\system32\SET1BF5.tmp
2010-09-03 12:46:37 ----A---- C:\WINDOWS\system32\SET1BEF.tmp
2010-09-03 12:46:37 ----A---- C:\WINDOWS\system32\SET1BEE.tmp
2010-09-03 12:46:37 ----A---- C:\WINDOWS\system32\SET1BED.tmp
2010-09-03 12:46:36 ----A---- C:\WINDOWS\system32\SET1BEA.tmp
2010-09-03 12:46:36 ----A---- C:\WINDOWS\system32\SET1BE9.tmp
2010-09-03 12:46:33 ----A---- C:\WINDOWS\system32\SET1BDF.tmp
2010-09-03 12:46:31 ----A---- C:\WINDOWS\system32\SET1BDC.tmp
2010-09-03 12:46:26 ----A---- C:\WINDOWS\system32\SET1BD9.tmp
2010-09-03 12:46:26 ----A---- C:\WINDOWS\system32\SET1BD8.tmp
2010-09-03 12:46:23 ----A---- C:\WINDOWS\system32\SET1BD7.tmp
2010-09-03 12:46:23 ----A---- C:\WINDOWS\system32\SET1BD6.tmp
2010-09-03 12:46:22 ----A---- C:\WINDOWS\system32\SET1BD4.tmp
2010-09-03 12:46:22 ----A---- C:\WINDOWS\system32\SET1BD2.tmp
2010-09-03 12:46:19 ----A---- C:\WINDOWS\system32\SET1BCD.tmp
2010-09-03 12:46:12 ----A---- C:\WINDOWS\system32\SET1BC0.tmp
2010-09-03 12:46:11 ----A---- C:\WINDOWS\system32\SET1BBC.tmp
2010-09-03 12:46:11 ----A---- C:\WINDOWS\system32\SET1BBB.tmp
2010-09-03 12:46:11 ----A---- C:\WINDOWS\system32\SET1BBA.tmp
2010-09-03 12:46:10 ----A---- C:\WINDOWS\system32\SET1BB9.tmp
2010-09-03 12:46:10 ----A---- C:\WINDOWS\system32\SET1BB8.tmp
2010-09-03 12:46:09 ----A---- C:\WINDOWS\system32\SET1BB5.tmp
2010-09-03 12:46:08 ----A---- C:\WINDOWS\system32\SET1BB2.tmp
2010-09-03 12:46:08 ----A---- C:\WINDOWS\system32\SET1BB1.tmp
2010-09-03 12:46:01 ----A---- C:\WINDOWS\system32\SET1BA7.tmp
2010-09-03 12:45:59 ----A---- C:\WINDOWS\system32\SET1BA4.tmp
2010-09-03 12:45:59 ----A---- C:\WINDOWS\system32\SET1BA1.tmp
2010-09-03 12:45:58 ----A---- C:\WINDOWS\system32\SET1BA0.tmp
2010-09-03 12:45:56 ----A---- C:\WINDOWS\system32\SET1B95.tmp
2010-09-03 12:45:54 ----A---- C:\WINDOWS\system32\SET1B8B.tmp
2010-09-03 12:45:52 ----A---- C:\WINDOWS\system32\SET1B8A.tmp
2010-09-03 12:45:51 ----A---- C:\WINDOWS\system32\SET1B88.tmp
2010-09-03 12:45:51 ----A---- C:\WINDOWS\system32\SET1B87.tmp
2010-09-03 12:45:49 ----A---- C:\WINDOWS\system32\SET1B82.tmp
2010-09-03 12:45:48 ----A---- C:\WINDOWS\system32\SET1B81.tmp
2010-09-03 12:45:47 ----A---- C:\WINDOWS\system32\SET1B7C.tmp
2010-09-03 12:45:45 ----A---- C:\WINDOWS\system32\SET1B76.tmp
2010-09-03 12:45:45 ----A---- C:\WINDOWS\system32\SET1B75.tmp
2010-09-03 12:45:45 ----A---- C:\WINDOWS\system32\SET1B74.tmp
2010-09-03 12:45:44 ----A---- C:\WINDOWS\system32\SET1B73.tmp
2010-09-03 12:45:44 ----A---- C:\WINDOWS\system32\SET1B72.tmp

banaho · #5 Příspěvek od **banaho** » 04 zář 2010 23:33

2010-09-03 12:45:42 ----A---- C:\WINDOWS\system32\SET1B6A.tmp
2010-09-03 12:45:42 ----A---- C:\WINDOWS\system32\SET1B69.tmp
2010-09-03 12:45:41 ----A---- C:\WINDOWS\system32\SET1B68.tmp
2010-09-03 12:45:40 ----A---- C:\WINDOWS\system32\SET1B53.tmp
2010-09-03 12:45:39 ----A---- C:\WINDOWS\system32\SET1B40.tmp
2010-09-03 12:45:38 ----A---- C:\WINDOWS\system32\SET1B3F.tmp
2010-09-03 12:45:36 ----A---- C:\WINDOWS\system32\SET1B20.tmp
2010-09-03 12:45:34 ----A---- C:\WINDOWS\system32\SET1AFA.tmp
2010-09-03 12:45:33 ----A---- C:\WINDOWS\system32\SET1AF8.tmp
2010-09-03 12:45:32 ----A---- C:\WINDOWS\system32\SET1AF6.tmp
2010-09-03 12:45:32 ----A---- C:\WINDOWS\system32\SET1AF3.tmp
2010-09-03 12:45:31 ----A---- C:\WINDOWS\system32\SET1AF2.tmp
2010-09-03 12:45:31 ----A---- C:\WINDOWS\system32\SET1AF1.tmp
2010-09-03 12:45:31 ----A---- C:\WINDOWS\system32\SET1AF0.tmp
2010-09-03 12:45:29 ----A---- C:\WINDOWS\system32\SET1AE8.tmp
2010-09-03 12:45:28 ----A---- C:\WINDOWS\system32\SET1AE5.tmp
2010-09-03 12:45:28 ----A---- C:\WINDOWS\system32\SET1AE4.tmp
2010-09-03 12:45:27 ----A---- C:\WINDOWS\system32\SET1AE3.tmp
2010-09-03 12:45:26 ----A---- C:\WINDOWS\system32\SET1AD8.tmp
2010-09-03 12:45:25 ----A---- C:\WINDOWS\system32\SET1AD3.tmp
2010-09-03 12:45:24 ----A---- C:\WINDOWS\system32\SET1AD2.tmp
2010-09-03 12:45:23 ----A---- C:\WINDOWS\system32\SET1ACD.tmp
2010-09-03 12:45:22 ----A---- C:\WINDOWS\system32\SET1AC8.tmp
2010-09-03 12:45:21 ----A---- C:\WINDOWS\system32\SET1AC7.tmp
2010-09-03 12:45:20 ----A---- C:\WINDOWS\system32\SET1AB4.tmp
2010-09-03 12:45:19 ----A---- C:\WINDOWS\system32\SET1AA1.tmp
2010-09-03 12:45:17 ----A---- C:\WINDOWS\system32\SET1A93.tmp
2010-09-03 12:45:13 ----A---- C:\WINDOWS\system32\SET1A74.tmp
2010-09-03 12:45:12 ----A---- C:\WINDOWS\system32\SET1A71.tmp
2010-09-03 12:45:12 ----A---- C:\WINDOWS\system32\SET1A70.tmp
2010-09-03 12:45:10 ----A---- C:\WINDOWS\system32\SET1A69.tmp
2010-09-03 12:45:10 ----A---- C:\WINDOWS\system32\SET1A68.tmp
2010-09-03 12:45:10 ----A---- C:\WINDOWS\system32\SET1A67.tmp
2010-09-03 12:45:10 ----A---- C:\WINDOWS\system32\SET1A65.tmp
2010-09-03 12:45:09 ----A---- C:\WINDOWS\system32\SET1A62.tmp
2010-09-03 12:45:08 ----A---- C:\WINDOWS\system32\SET1A5D.tmp
2010-09-03 12:45:05 ----D---- C:\WINDOWS\network diagnostic
2010-09-03 12:41:28 ----A---- C:\WINDOWS\002954_.tmp
2010-09-03 12:41:24 ----A---- C:\WINDOWS\imsins.BAK
2010-09-03 12:38:28 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys
2010-09-03 12:38:28 ----A---- C:\WINDOWS\system32\drivers\amdk7.sys
2010-09-03 12:38:27 ----A---- C:\WINDOWS\system32\drivers\viaagp.sys
2010-09-03 12:38:20 ----A---- C:\WINDOWS\system32\drivers\tunmp.sys
2010-09-03 12:38:17 ----A---- C:\WINDOWS\system32\qmgr.dll
2010-09-03 12:38:08 ----A---- C:\WINDOWS\system32\mqutil.dll
2010-09-03 12:38:08 ----A---- C:\WINDOWS\system32\mqsec.dll
2010-09-03 12:36:57 ----A---- C:\WINDOWS\explorer.exe
2010-09-03 12:36:47 ----A---- C:\WINDOWS\system32\adsldpc.dll
2010-09-03 12:36:47 ----A---- C:\WINDOWS\system32\actxprxy.dll
2010-09-03 12:36:47 ----A---- C:\WINDOWS\system32\activeds.dll
2010-09-03 12:36:46 ----A---- C:\WINDOWS\system32\advpack.dll
2010-09-03 12:36:44 ----A---- C:\WINDOWS\system32\apphelp.dll
2010-09-03 12:36:43 ----A---- C:\WINDOWS\system32\basesrv.dll
2010-09-03 12:36:43 ----A---- C:\WINDOWS\system32\authz.dll
2010-09-03 12:36:43 ----A---- C:\WINDOWS\system32\audiosrv.dll
2010-09-03 12:36:43 ----A---- C:\WINDOWS\system32\atmfd.dll
2010-09-03 12:36:43 ----A---- C:\WINDOWS\system32\atl.dll
2010-09-03 12:36:42 ----A---- C:\WINDOWS\system32\cabinet.dll
2010-09-03 12:36:42 ----A---- C:\WINDOWS\system32\browseui.dll
2010-09-03 12:36:42 ----A---- C:\WINDOWS\system32\browser.dll
2010-09-03 12:36:42 ----A---- C:\WINDOWS\system32\browselc.dll
2010-09-03 12:36:42 ----A---- C:\WINDOWS\system32\batmeter.dll
2010-09-03 12:36:41 ----A---- C:\WINDOWS\system32\certcli.dll
2010-09-03 12:36:41 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-09-03 12:36:41 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-09-03 12:36:40 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-09-03 12:36:40 ----A---- C:\WINDOWS\system32\cfgmgr32.dll
2010-09-03 12:36:39 ----A---- C:\WINDOWS\system32\clusapi.dll
2010-09-03 12:36:38 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-09-03 12:36:38 ----A---- C:\WINDOWS\system32\comres.dll
2010-09-03 12:36:38 ----A---- C:\WINDOWS\system32\colbact.dll
2010-09-03 12:36:38 ----A---- C:\WINDOWS\system32\cnbjmon.dll
2010-09-03 12:36:37 ----A---- C:\WINDOWS\system32\cryptnet.dll
2010-09-03 12:36:37 ----A---- C:\WINDOWS\system32\cryptdll.dll
2010-09-03 12:36:37 ----A---- C:\WINDOWS\system32\crypt32.dll
2010-09-03 12:36:37 ----A---- C:\WINDOWS\system32\credui.dll
2010-09-03 12:36:37 ----A---- C:\WINDOWS\system32\corpol.dll
2010-09-03 12:36:37 ----A---- C:\WINDOWS\system32\conime.exe
2010-09-03 12:36:36 ----A---- C:\WINDOWS\system32\ctfmon.exe
2010-09-03 12:36:36 ----A---- C:\WINDOWS\system32\csrss.exe
2010-09-03 12:36:36 ----A---- C:\WINDOWS\system32\cscui.dll
2010-09-03 12:36:36 ----A---- C:\WINDOWS\system32\cscdll.dll
2010-09-03 12:36:36 ----A---- C:\WINDOWS\system32\cryptui.dll
2010-09-03 12:36:36 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2010-09-03 12:36:35 ----A---- C:\WINDOWS\system32\davclnt.dll
2010-09-03 12:36:34 ----A---- C:\WINDOWS\system32\ddraw.dll
2010-09-03 12:36:34 ----A---- C:\WINDOWS\system32\dciman32.dll
2010-09-03 12:36:34 ----A---- C:\WINDOWS\system32\dbghelp.dll
2010-09-03 12:36:29 ----A---- C:\WINDOWS\system32\dmserver.dll
2010-09-03 12:36:28 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2010-09-03 12:36:28 ----A---- C:\WINDOWS\system32\dnsapi.dll
2010-09-03 12:36:23 ----A---- C:\WINDOWS\system32\drprov.dll
2010-09-03 12:36:19 ----A---- C:\WINDOWS\system32\duser.dll
2010-09-03 12:36:19 ----A---- C:\WINDOWS\system32\dssenh.dll
2010-09-03 12:36:15 ----A---- C:\WINDOWS\system32\ersvc.dll
2010-09-03 12:36:14 ----A---- C:\WINDOWS\system32\esent.dll
2010-09-03 12:36:14 ----A---- C:\WINDOWS\system32\es.dll
2010-09-03 12:36:13 ----A---- C:\WINDOWS\system32\eventlog.dll
2010-09-03 12:36:12 ----A---- C:\WINDOWS\system32\feclient.dll
2010-09-03 12:36:11 ----A---- C:\WINDOWS\system32\gdi32.dll
2010-09-03 12:36:07 ----A---- C:\WINDOWS\system32\hid.dll
2010-09-03 12:36:06 ----A---- C:\WINDOWS\system32\hnetcfg.dll
2010-09-03 12:36:04 ----A---- C:\WINDOWS\system32\icmp.dll
2010-09-03 12:36:04 ----A---- C:\WINDOWS\system32\icm32.dll
2010-09-03 12:36:04 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-09-03 12:36:00 ----A---- C:\WINDOWS\system32\imm32.dll
2010-09-03 12:36:00 ----A---- C:\WINDOWS\system32\imgutil.dll
2010-09-03 12:35:59 ----A---- C:\WINDOWS\system32\inetpp.dll
2010-09-03 12:35:57 ----A---- C:\WINDOWS\system32\iphlpapi.dll
2010-09-03 12:35:55 ----A---- C:\WINDOWS\system32\ipsecsvc.dll
2010-09-03 12:35:51 ----A---- C:\WINDOWS\system32\jscript.dll
2010-09-03 12:35:50 ----A---- C:\WINDOWS\system32\kerberos.dll
2010-09-03 12:35:43 ----A---- C:\WINDOWS\system32\loadperf.dll
2010-09-03 12:35:43 ----A---- C:\WINDOWS\system32\linkinfo.dll
2010-09-03 12:35:39 ----A---- C:\WINDOWS\system32\lsass.exe
2010-09-03 12:35:38 ----A---- C:\WINDOWS\system32\mdminst.dll
2010-09-03 12:35:36 ----A---- C:\WINDOWS\system32\midimap.dll
2010-09-03 12:35:36 ----A---- C:\WINDOWS\system32\mfcsubs.dll
2010-09-03 12:35:36 ----A---- C:\WINDOWS\system32\mfc42u.dll
2010-09-03 12:35:35 ----A---- C:\WINDOWS\system32\mlang.dll
2010-09-03 12:35:32 ----A---- C:\WINDOWS\system32\modemui.dll
2010-09-03 12:35:30 ----A---- C:\WINDOWS\system32\mpr.dll
2010-09-03 12:35:29 ----A---- C:\WINDOWS\system32\msacm32.dll
2010-09-03 12:35:29 ----A---- C:\WINDOWS\system32\mprapi.dll
2010-09-03 12:35:28 ----A---- C:\WINDOWS\system32\mscpxl32.dll
2010-09-03 12:35:28 ----A---- C:\WINDOWS\system32\mscpx32r.dll
2010-09-03 12:35:28 ----A---- C:\WINDOWS\system32\mscms.dll
2010-09-03 12:35:28 ----A---- C:\WINDOWS\system32\msasn1.dll
2010-09-03 12:35:27 ----A---- C:\WINDOWS\system32\msdart.dll
2010-09-03 12:35:27 ----A---- C:\WINDOWS\system32\msctf.dll
2010-09-03 12:35:25 ----A---- C:\WINDOWS\system32\msgina.dll
2010-09-03 12:35:24 ----A---- C:\WINDOWS\system32\mshtml.dll
2010-09-03 12:35:23 ----A---- C:\WINDOWS\system32\msi.dll
2010-09-03 12:35:22 ----A---- C:\WINDOWS\system32\msisip.dll
2010-09-03 12:35:22 ----A---- C:\WINDOWS\system32\msimsg.dll
2010-09-03 12:35:22 ----A---- C:\WINDOWS\system32\msimg32.dll
2010-09-03 12:35:22 ----A---- C:\WINDOWS\system32\msihnd.dll
2010-09-03 12:35:22 ----A---- C:\WINDOWS\system32\msiexec.exe
2010-09-03 12:35:22 ----A---- C:\WINDOWS\system32\msidle.dll
2010-09-03 12:35:21 ----A---- C:\WINDOWS\system32\msorc32r.dll
2010-09-03 12:35:20 ----A---- C:\WINDOWS\system32\msprivs.dll
2010-09-03 12:35:20 ----A---- C:\WINDOWS\system32\msorcl32.dll
2010-09-03 12:35:18 ----A---- C:\WINDOWS\system32\msvcrt.dll
2010-09-03 12:35:18 ----A---- C:\WINDOWS\system32\msvcp60.dll
2010-09-03 12:35:18 ----A---- C:\WINDOWS\system32\msutb.dll
2010-09-03 12:35:18 ----A---- C:\WINDOWS\system32\mstlsapi.dll
2010-09-03 12:35:17 ----A---- C:\WINDOWS\system32\mswsock.dll
2010-09-03 12:35:16 ----A---- C:\WINDOWS\system32\mtxclu.dll
2010-09-03 12:35:16 ----A---- C:\WINDOWS\system32\msxml3.dll
2010-09-03 12:35:15 ----A---- C:\WINDOWS\system32\netapi32.dll
2010-09-03 12:35:15 ----A---- C:\WINDOWS\system32\nddeapi.dll
2010-09-03 12:35:15 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2010-09-03 12:35:14 ----A---- C:\WINDOWS\system32\netrap.dll
2010-09-03 12:35:14 ----A---- C:\WINDOWS\system32\netman.dll
2010-09-03 12:35:14 ----A---- C:\WINDOWS\system32\netlogon.dll
2010-09-03 12:35:14 ----A---- C:\WINDOWS\system32\netcfgx.dll
2010-09-03 12:35:12 ----A---- C:\WINDOWS\system32\newdev.dll
2010-09-03 12:35:12 ----A---- C:\WINDOWS\system32\netui1.dll
2010-09-03 12:35:12 ----A---- C:\WINDOWS\system32\netui0.dll
2010-09-03 12:35:12 ----A---- C:\WINDOWS\system32\netshell.dll
2010-09-03 12:35:11 ----A---- C:\WINDOWS\system32\ntmarta.dll
2010-09-03 12:35:11 ----A---- C:\WINDOWS\system32\ntlanman.dll
2010-09-03 12:35:11 ----A---- C:\WINDOWS\system32\ntdsapi.dll
2010-09-03 12:35:10 ----A---- C:\WINDOWS\system32\odbc32gt.dll
2010-09-03 12:35:10 ----A---- C:\WINDOWS\system32\odbc32.dll
2010-09-03 12:35:10 ----A---- C:\WINDOWS\system32\ocmanage.dll
2010-09-03 12:35:10 ----A---- C:\WINDOWS\system32\oakley.dll
2010-09-03 12:35:10 ----A---- C:\WINDOWS\system32\ntshrui.dll
2010-09-03 12:35:09 ----A---- C:\WINDOWS\system32\odbcint.dll
2010-09-03 12:35:09 ----A---- C:\WINDOWS\system32\odbccu32.dll
2010-09-03 12:35:09 ----A---- C:\WINDOWS\system32\odbccr32.dll
2010-09-03 12:35:09 ----A---- C:\WINDOWS\system32\odbccp32.dll
2010-09-03 12:35:09 ----A---- C:\WINDOWS\system32\odbcconf.exe
2010-09-03 12:35:09 ----A---- C:\WINDOWS\system32\odbcconf.dll
2010-09-03 12:35:09 ----A---- C:\WINDOWS\system32\odbcbcp.dll
2010-09-03 12:35:08 ----A---- C:\WINDOWS\system32\ole32.dll
2010-09-03 12:35:08 ----A---- C:\WINDOWS\system32\odbctrac.dll
2010-09-03 12:35:08 ----A---- C:\WINDOWS\system32\odbcp32r.dll
2010-09-03 12:35:07 ----A---- C:\WINDOWS\system32\olepro32.dll
2010-09-03 12:35:07 ----A---- C:\WINDOWS\system32\olecli32.dll
2010-09-03 12:35:06 ----A---- C:\WINDOWS\system32\pjlmon.dll
2010-09-03 12:35:05 ----A---- C:\WINDOWS\system32\psbase.dll
2010-09-03 12:35:05 ----A---- C:\WINDOWS\system32\psapi.dll
2010-09-03 12:35:05 ----A---- C:\WINDOWS\system32\profmap.dll
2010-09-03 12:35:05 ----A---- C:\WINDOWS\system32\powrprof.dll
2010-09-03 12:35:04 ----A---- C:\WINDOWS\system32\pstorsvc.dll
2010-09-03 12:35:03 ----A---- C:\WINDOWS\system32\raschap.dll
2010-09-03 12:35:03 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2010-09-03 12:35:02 ----A---- C:\WINDOWS\system32\rastls.dll
2010-09-03 12:35:02 ----A---- C:\WINDOWS\system32\rasppp.dll
2010-09-03 12:35:02 ----A---- C:\WINDOWS\system32\rasmans.dll
2010-09-03 12:35:01 ----A---- C:\WINDOWS\system32\regapi.dll
2010-09-03 12:35:00 ----A---- C:\WINDOWS\system32\rsaenh.dll
2010-09-03 12:35:00 ----A---- C:\WINDOWS\system32\rpcss.dll
2010-09-03 12:35:00 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2010-09-03 12:35:00 ----A---- C:\WINDOWS\system32\riched20.dll
2010-09-03 12:35:00 ----A---- C:\WINDOWS\system32\resutils.dll
2010-09-03 12:34:59 ----A---- C:\WINDOWS\system32\rundll32.exe
2010-09-03 12:34:59 ----A---- C:\WINDOWS\system32\rtutils.dll
2010-09-03 12:34:58 ----A---- C:\WINDOWS\system32\schedsvc.dll
2010-09-03 12:34:58 ----A---- C:\WINDOWS\system32\scesrv.dll
2010-09-03 12:34:58 ----A---- C:\WINDOWS\system32\scecli.dll
2010-09-03 12:34:57 ----A---- C:\WINDOWS\system32\sensapi.dll
2010-09-03 12:34:57 ----A---- C:\WINDOWS\system32\sens.dll
2010-09-03 12:34:57 ----A---- C:\WINDOWS\system32\security.dll
2010-09-03 12:34:57 ----A---- C:\WINDOWS\system32\secur32.dll
2010-09-03 12:34:57 ----A---- C:\WINDOWS\system32\seclogon.dll
2010-09-03 12:34:56 ----A---- C:\WINDOWS\system32\sfc_os.dll
2010-09-03 12:34:56 ----A---- C:\WINDOWS\system32\sfc.dll
2010-09-03 12:34:55 ----A---- C:\WINDOWS\system32\shfolder.dll
2010-09-03 12:34:55 ----A---- C:\WINDOWS\system32\shell32.dll
2010-09-03 12:34:55 ----A---- C:\WINDOWS\system32\shdocvw.dll
2010-09-03 12:34:55 ----A---- C:\WINDOWS\system32\shdoclc.dll
2010-09-03 12:34:54 ----A---- C:\WINDOWS\system32\shsvcs.dll
2010-09-03 12:34:54 ----A---- C:\WINDOWS\system32\shlwapi.dll
2010-09-03 12:34:54 ----A---- C:\WINDOWS\system32\shimeng.dll
2010-09-03 12:34:53 ----A---- C:\WINDOWS\system32\snmpapi.dll
2010-09-03 12:34:52 ----A---- C:\WINDOWS\system32\sqlsrv32.dll
2010-09-03 12:34:52 ----A---- C:\WINDOWS\system32\spoolsv.exe
2010-09-03 12:34:52 ----A---- C:\WINDOWS\system32\spoolss.dll
2010-09-03 12:34:51 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2010-09-03 12:34:51 ----A---- C:\WINDOWS\system32\ssdpapi.dll
2010-09-03 12:34:51 ----A---- C:\WINDOWS\system32\srsvc.dll
2010-09-03 12:34:51 ----A---- C:\WINDOWS\system32\sqlunirl.dll
2010-09-03 12:34:49 ----A---- C:\WINDOWS\system32\sxs.dll
2010-09-03 12:34:49 ----A---- C:\WINDOWS\system32\svchost.exe
2010-09-03 12:34:49 ----A---- C:\WINDOWS\system32\stobject.dll
2010-09-03 12:34:49 ----A---- C:\WINDOWS\system32\sti.dll
2010-09-03 12:34:48 ----A---- C:\WINDOWS\system32\tapisrv.dll
2010-09-03 12:34:48 ----A---- C:\WINDOWS\system32\tapi32.dll
2010-09-03 12:34:48 ----A---- C:\WINDOWS\system32\t2embed.dll
2010-09-03 12:34:47 ----A---- C:\WINDOWS\system32\themeui.dll
2010-09-03 12:34:47 ----A---- C:\WINDOWS\system32\termsrv.dll
2010-09-03 12:34:47 ----A---- C:\WINDOWS\system32\tcpmon.dll
2010-09-03 12:34:47 ----A---- C:\WINDOWS\system32\tcpmib.dll
2010-09-03 12:34:46 ----A---- C:\WINDOWS\system32\trkwks.dll
2010-09-03 12:34:45 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2010-09-03 12:34:44 ----A---- C:\WINDOWS\system32\url.dll
2010-09-03 12:34:44 ----A---- C:\WINDOWS\system32\upnp.dll
2010-09-03 12:34:44 ----A---- C:\WINDOWS\system32\uniplat.dll
2010-09-03 12:34:44 ----A---- C:\WINDOWS\system32\unimdmat.dll
2010-09-03 12:34:43 ----A---- C:\WINDOWS\system32\uxtheme.dll
2010-09-03 12:34:43 ----A---- C:\WINDOWS\system32\usp10.dll
2010-09-03 12:34:43 ----A---- C:\WINDOWS\system32\userenv.dll
2010-09-03 12:34:43 ----A---- C:\WINDOWS\system32\user32.dll
2010-09-03 12:34:43 ----A---- C:\WINDOWS\system32\usbmon.dll
2010-09-03 12:34:43 ----A---- C:\WINDOWS\system32\urlmon.dll
2010-09-03 12:34:42 ----A---- C:\WINDOWS\system32\vssapi.dll
2010-09-03 12:34:42 ----A---- C:\WINDOWS\system32\version.dll
2010-09-03 12:34:41 ----A---- C:\WINDOWS\system32\wdigest.dll
2010-09-03 12:34:41 ----A---- C:\WINDOWS\system32\w32time.dll
2010-09-03 12:34:40 ----A---- C:\WINDOWS\system32\webcheck.dll
2010-09-03 12:34:40 ----A---- C:\WINDOWS\system32\webclnt.dll
2010-09-03 12:34:39 ----A---- C:\WINDOWS\system32\winipsec.dll
2010-09-03 12:34:39 ----A---- C:\WINDOWS\system32\wininet.dll
2010-09-03 12:34:39 ----A---- C:\WINDOWS\system32\wiaservc.dll
2010-09-03 12:34:38 ----A---- C:\WINDOWS\system32\wintrust.dll
2010-09-03 12:34:38 ----A---- C:\WINDOWS\system32\winsta.dll
2010-09-03 12:34:38 ----A---- C:\WINDOWS\system32\winsrv.dll
2010-09-03 12:34:38 ----A---- C:\WINDOWS\system32\winscard.dll
2010-09-03 12:34:38 ----A---- C:\WINDOWS\system32\winrnr.dll
2010-09-03 12:34:38 ----A---- C:\WINDOWS\system32\winmm.dll
2010-09-03 12:34:38 ----A---- C:\WINDOWS\system32\winlogon.exe
2010-09-03 12:34:37 ----A---- C:\WINDOWS\system32\wlnotify.dll
2010-09-03 12:34:37 ----A---- C:\WINDOWS\system32\wldap32.dll
2010-09-03 12:34:36 ----A---- C:\WINDOWS\system32\wmi.dll
2010-09-03 12:34:34 ----A---- C:\WINDOWS\system32\wow32.dll
2010-09-03 12:34:33 ----A---- C:\WINDOWS\system32\ws2help.dll
2010-09-03 12:34:33 ----A---- C:\WINDOWS\system32\ws2_32.dll
2010-09-03 12:34:32 ----A---- C:\WINDOWS\system32\wzcsvc.dll
2010-09-03 12:34:32 ----A---- C:\WINDOWS\system32\wtsapi32.dll
2010-09-03 12:34:32 ----A---- C:\WINDOWS\system32\wsock32.dll
2010-09-03 12:34:32 ----A---- C:\WINDOWS\system32\wsnmp32.dll
2010-09-03 12:34:32 ----A---- C:\WINDOWS\system32\wshtcpip.dll
2010-09-03 12:34:31 ----A---- C:\WINDOWS\system32\zipfldr.dll
2010-09-03 12:34:29 ----A---- C:\WINDOWS\system32\autochk.exe
2010-09-03 12:34:29 ----A---- C:\WINDOWS\system32\advapi32.dll
2010-09-03 12:34:28 ----A---- C:\WINDOWS\system32\csrsrv.dll
2010-09-03 12:34:28 ----A---- C:\WINDOWS\system32\comdlg32.dll
2010-09-03 12:34:28 ----A---- C:\WINDOWS\system32\comctl32.dll
2010-09-03 12:34:28 ----A---- C:\WINDOWS\system32\cmd.exe
2010-09-03 12:34:28 ----A---- C:\WINDOWS\system32\cacls.exe
2010-09-03 12:34:28 ----A---- C:\WINDOWS\system32\autoconv.exe
2010-09-03 12:34:27 ----A---- C:\WINDOWS\system32\lmhsvc.dll
2010-09-03 12:34:27 ----A---- C:\WINDOWS\system32\kernel32.dll
2010-09-03 12:34:27 ----A---- C:\WINDOWS\system32\imagehlp.dll
2010-09-03 12:34:27 ----A---- C:\WINDOWS\system32\ftp.exe
2010-09-03 12:34:27 ----A---- C:\WINDOWS\system32\format.com
2010-09-03 12:34:27 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2010-09-03 12:34:26 ----A---- C:\WINDOWS\system32\ntdll.dll
2010-09-03 12:34:26 ----A---- C:\WINDOWS\system32\nslookup.exe
2010-09-03 12:34:26 ----A---- C:\WINDOWS\system32\msv1_0.dll
2010-09-03 12:34:26 ----A---- C:\WINDOWS\system32\msgsvc.dll
2010-09-03 12:34:26 ----A---- C:\WINDOWS\system32\mgmtapi.dll
2010-09-03 12:34:26 ----A---- C:\WINDOWS\system32\lsasrv.dll
2010-09-03 12:34:26 ----A---- C:\WINDOWS\system32\locator.exe
2010-09-03 12:34:26 ----A---- C:\WINDOWS\system32\localspl.dll
2010-09-03 12:34:25 ----A---- C:\WINDOWS\system32\printui.dll
2010-09-03 12:34:25 ----A---- C:\WINDOWS\system32\perfctrs.dll
2010-09-03 12:34:25 ----A---- C:\WINDOWS\system32\olecnv32.dll
2010-09-03 12:34:25 ----A---- C:\WINDOWS\system32\oleaut32.dll
2010-09-03 12:34:25 ----A---- C:\WINDOWS\system32\nwprovau.dll
2010-09-03 12:34:25 ----A---- C:\WINDOWS\system32\ntvdm.exe
2010-09-03 12:34:25 ----A---- C:\WINDOWS\system32\ntprint.dll
2010-09-03 12:34:25 ----A---- C:\WINDOWS\system32\ntlsapi.dll
2010-09-03 12:34:24 ----A---- C:\WINDOWS\system32\samsrv.dll
2010-09-03 12:34:24 ----A---- C:\WINDOWS\system32\samlib.dll
2010-09-03 12:34:24 ----A---- C:\WINDOWS\system32\rshx32.dll
2010-09-03 12:34:24 ----A---- C:\WINDOWS\system32\rastapi.dll
2010-09-03 12:34:24 ----A---- C:\WINDOWS\system32\rasman.dll
2010-09-03 12:34:24 ----A---- C:\WINDOWS\system32\rasdlg.dll
2010-09-03 12:34:24 ----A---- C:\WINDOWS\system32\rasauto.dll
2010-09-03 12:34:24 ----A---- C:\WINDOWS\system32\rasapi32.dll
2010-09-03 12:34:23 ----A---- C:\WINDOWS\system32\srvsvc.dll
2010-09-03 12:34:23 ----A---- C:\WINDOWS\system32\smss.exe
2010-09-03 12:34:23 ----A---- C:\WINDOWS\system32\schannel.dll
2010-09-03 12:34:23 ----A---- C:\WINDOWS\system32\setupapi.dll
2010-09-03 12:34:23 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-09-03 12:34:23 ----A---- C:\WINDOWS\system32\services.exe
2010-09-03 12:34:23 ----A---- C:\WINDOWS\system32\scardsvr.exe
2010-09-03 12:34:23 ----A---- C:\WINDOWS\system32\savedump.exe
2010-09-03 12:34:22 ----A---- C:\WINDOWS\system32\userinit.exe
2010-09-03 12:34:22 ----A---- C:\WINDOWS\system32\untfs.dll
2010-09-03 12:34:22 ----A---- C:\WINDOWS\system32\ulib.dll
2010-09-03 12:34:22 ----A---- C:\WINDOWS\system32\tcpmonui.dll
2010-09-03 12:34:22 ----A---- C:\WINDOWS\system32\syssetup.dll
2010-09-03 12:34:21 ----A---- C:\WINDOWS\system32\wkssvc.dll
2010-09-03 12:34:21 ----A---- C:\WINDOWS\system32\win32spl.dll
2010-09-03 12:34:21 ----A---- C:\WINDOWS\system32\win32k.sys
2010-09-03 12:34:21 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2010-09-03 12:34:20 ----A---- C:\WINDOWS\system32\drivers\atapi.sys
2010-09-03 12:34:20 ----A---- C:\WINDOWS\system32\drivers\asyncmac.sys
2010-09-03 12:34:20 ----A---- C:\WINDOWS\system32\drivers\arp1394.sys
2010-09-03 12:34:20 ----A---- C:\WINDOWS\system32\drivers\amdk6.sys
2010-09-03 12:34:20 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2010-09-03 12:34:20 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2010-09-03 12:34:19 ----A---- C:\WINDOWS\system32\drivers\classpnp.sys
2010-09-03 12:34:19 ----A---- C:\WINDOWS\system32\drivers\cdrom.sys
2010-09-03 12:34:19 ----A---- C:\WINDOWS\system32\drivers\cdfs.sys
2010-09-03 12:34:19 ----A---- C:\WINDOWS\system32\drivers\ccdecode.sys
2010-09-03 12:34:19 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2010-09-03 12:34:19 ----A---- C:\WINDOWS\system32\drivers\bdasup.sys
2010-09-03 12:34:19 ----A---- C:\WINDOWS\system32\drivers\atmlane.sys
2010-09-03 12:34:19 ----A---- C:\WINDOWS\system32\drivers\atmarpc.sys
2010-09-03 12:34:18 ----A---- C:\WINDOWS\system32\drivers\dmboot.sys
2010-09-03 12:34:18 ----A---- C:\WINDOWS\system32\drivers\diskdump.sys
2010-09-03 12:34:18 ----A---- C:\WINDOWS\system32\drivers\disk.sys
2010-09-03 12:34:18 ----A---- C:\WINDOWS\system32\drivers\crusoe.sys
2010-09-03 12:34:17 ----A---- C:\WINDOWS\system32\drivers\dxg.sys
2010-09-03 12:34:17 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2010-09-03 12:34:17 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2010-09-03 12:34:17 ----A---- C:\WINDOWS\system32\drivers\dot4.sys
2010-09-03 12:34:17 ----A---- C:\WINDOWS\system32\drivers\dmusic.sys
2010-09-03 12:34:17 ----A---- C:\WINDOWS\system32\drivers\dmio.sys
2010-09-03 12:34:16 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2010-09-03 12:34:16 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2010-09-03 12:34:16 ----A---- C:\WINDOWS\system32\drivers\gameenum.sys
2010-09-03 12:34:16 ----A---- C:\WINDOWS\system32\drivers\flpydisk.sys
2010-09-03 12:34:16 ----A---- C:\WINDOWS\system32\drivers\fips.sys
2010-09-03 12:34:16 ----A---- C:\WINDOWS\system32\drivers\fdc.sys
2010-09-03 12:34:16 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2010-09-03 12:34:15 ----A---- C:\WINDOWS\system32\drivers\ipnat.sys
2010-09-03 12:34:15 ----A---- C:\WINDOWS\system32\drivers\ipinip.sys
2010-09-03 12:34:15 ----A---- C:\WINDOWS\system32\drivers\imapi.sys
2010-09-03 12:34:15 ----A---- C:\WINDOWS\system32\drivers\i8042prt.sys
2010-09-03 12:34:15 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2010-09-03 12:34:14 ----A---- C:\WINDOWS\system32\drivers\kbdhid.sys
2010-09-03 12:34:14 ----A---- C:\WINDOWS\system32\drivers\kbdclass.sys
2010-09-03 12:34:14 ----A---- C:\WINDOWS\system32\drivers\isapnp.sys
2010-09-03 12:34:14 ----A---- C:\WINDOWS\system32\drivers\irenum.sys
2010-09-03 12:34:14 ----A---- C:\WINDOWS\system32\drivers\ipsec.sys
2010-09-03 12:34:13 ----A---- C:\WINDOWS\system32\drivers\mpe.sys
2010-09-03 12:34:13 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2010-09-03 12:34:13 ----A---- C:\WINDOWS\system32\drivers\mouclass.sys
2010-09-03 12:34:13 ----A---- C:\WINDOWS\system32\drivers\modem.sys
2010-09-03 12:34:13 ----A---- C:\WINDOWS\system32\drivers\mf.sys
2010-09-03 12:34:13 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2010-09-03 12:34:13 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2010-09-03 12:34:13 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2010-09-03 12:34:12 ----A---- C:\WINDOWS\system32\drivers\msdv.sys
2010-09-03 12:34:12 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2010-09-03 12:34:12 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2010-09-03 12:34:11 ----A---- C:\WINDOWS\system32\drivers\mstee.sys
2010-09-03 12:34:11 ----A---- C:\WINDOWS\system32\drivers\mspqm.sys
2010-09-03 12:34:11 ----A---- C:\WINDOWS\system32\drivers\mspclock.sys
2010-09-03 12:34:11 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2010-09-03 12:34:11 ----A---- C:\WINDOWS\system32\drivers\msgpc.sys
2010-09-03 12:34:11 ----A---- C:\WINDOWS\system32\drivers\msfs.sys
2010-09-03 12:34:10 ----A---- C:\WINDOWS\system32\drivers\ndistapi.sys
2010-09-03 12:34:10 ----A---- C:\WINDOWS\system32\drivers\ndisip.sys
2010-09-03 12:34:10 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2010-09-03 12:34:10 ----A---- C:\WINDOWS\system32\drivers\nabtsfec.sys
2010-09-03 12:34:10 ----A---- C:\WINDOWS\system32\drivers\mup.sys
2010-09-03 12:34:09 ----A---- C:\WINDOWS\system32\drivers\nic1394.sys
2010-09-03 12:34:09 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2010-09-03 12:34:09 ----A---- C:\WINDOWS\system32\drivers\netbios.sys
2010-09-03 12:34:09 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2010-09-03 12:34:09 ----A---- C:\WINDOWS\system32\drivers\ndiswan.sys
2010-09-03 12:34:09 ----A---- C:\WINDOWS\system32\drivers\ndisuio.sys
2010-09-03 12:34:08 ----A---- C:\WINDOWS\system32\drivers\nwlnkipx.sys
2010-09-03 12:34:08 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2010-09-03 12:34:08 ----A---- C:\WINDOWS\system32\drivers\npfs.sys
2010-09-03 12:34:08 ----A---- C:\WINDOWS\system32\drivers\nmnt.sys
2010-09-03 12:34:07 ----A---- C:\WINDOWS\system32\drivers\pciidex.sys
2010-09-03 12:34:07 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2010-09-03 12:34:07 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2010-09-03 12:34:07 ----A---- C:\WINDOWS\system32\drivers\parport.sys
2010-09-03 12:34:07 ----A---- C:\WINDOWS\system32\drivers\p3.sys
2010-09-03 12:34:06 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2010-09-03 12:34:06 ----A---- C:\WINDOWS\system32\drivers\psched.sys
2010-09-03 12:34:06 ----A---- C:\WINDOWS\system32\drivers\processr.sys
2010-09-03 12:34:06 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2010-09-03 12:34:06 ----A---- C:\WINDOWS\system32\drivers\pcmcia.sys
2010-09-03 12:34:05 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2010-09-03 12:34:05 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2010-09-03 12:34:05 ----A---- C:\WINDOWS\system32\drivers\raspptp.sys
2010-09-03 12:34:05 ----A---- C:\WINDOWS\system32\drivers\raspppoe.sys
2010-09-03 12:34:04 ----A---- C:\WINDOWS\system32\drivers\rndismp.sys
2010-09-03 12:34:04 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2010-09-03 12:34:04 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2010-09-03 12:34:04 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2010-09-03 12:34:03 ----A---- C:\WINDOWS\system32\drivers\serial.sys
2010-09-03 12:34:03 ----A---- C:\WINDOWS\system32\drivers\serenum.sys
2010-09-03 12:34:03 ----A---- C:\WINDOWS\system32\drivers\secdrv.sys
2010-09-03 12:34:03 ----A---- C:\WINDOWS\system32\drivers\scsiport.sys
2010-09-03 12:34:02 ----A---- C:\WINDOWS\system32\drivers\sr.sys
2010-09-03 12:34:02 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2010-09-03 12:34:02 ----A---- C:\WINDOWS\system32\drivers\sonydcam.sys
2010-09-03 12:34:02 ----A---- C:\WINDOWS\system32\drivers\slip.sys
2010-09-03 12:34:02 ----A---- C:\WINDOWS\system32\drivers\sfloppy.sys
2010-09-03 12:34:01 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2010-09-03 12:34:01 ----A---- C:\WINDOWS\system32\drivers\swenum.sys
2010-09-03 12:34:01 ----A---- C:\WINDOWS\system32\drivers\streamip.sys
2010-09-03 12:34:01 ----A---- C:\WINDOWS\system32\drivers\stream.sys
2010-09-03 12:34:01 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2010-09-03 12:34:00 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2010-09-03 12:34:00 ----A---- C:\WINDOWS\system32\drivers\tape.sys
2010-09-03 12:34:00 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2010-09-03 12:33:59 ----A---- C:\WINDOWS\system32\drivers\termdd.sys
2010-09-03 12:33:59 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys
2010-09-03 12:33:59 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys
2010-09-03 12:33:59 ----A---- C:\WINDOWS\system32\drivers\tdi.sys
2010-09-03 12:33:59 ----A---- C:\WINDOWS\system32\drivers\tcpip6.sys
2010-09-03 12:33:58 ----A---- C:\WINDOWS\system32\drivers\usbcamd.sys
2010-09-03 12:33:58 ----A---- C:\WINDOWS\system32\drivers\usbaudio.sys
2010-09-03 12:33:58 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys
2010-09-03 12:33:58 ----A---- C:\WINDOWS\system32\drivers\update.sys
2010-09-03 12:33:58 ----A---- C:\WINDOWS\system32\drivers\udfs.sys
2010-09-03 12:33:57 ----A---- C:\WINDOWS\system32\drivers\usbport.sys
2010-09-03 12:33:57 ----A---- C:\WINDOWS\system32\drivers\usbintel.sys
2010-09-03 12:33:57 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2010-09-03 12:33:57 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2010-09-03 12:33:57 ----A---- C:\WINDOWS\system32\drivers\usbcamd2.sys
2010-09-03 12:33:56 ----A---- C:\WINDOWS\system32\drivers\usbstor.sys
2010-09-03 12:33:56 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2010-09-03 12:33:56 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys
2010-09-03 12:33:55 ----A---- C:\WINDOWS\system32\drivers\viaide.sys
2010-09-03 12:33:55 ----A---- C:\WINDOWS\system32\drivers\vga.sys
2010-09-03 12:33:55 ----A---- C:\WINDOWS\system32\drivers\usbuhci.sys
2010-09-03 12:33:54 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2010-09-03 12:33:54 ----A---- C:\WINDOWS\system32\drivers\videoprt.sys
2010-09-03 12:33:53 ----A---- C:\WINDOWS\system32\drivers\wstcodec.sys
2010-09-03 12:33:53 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2010-09-03 12:33:53 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2010-09-03 12:33:52 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2010-09-03 12:33:52 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe
2010-09-03 12:33:52 ----A---- C:\WINDOWS\system32\HAL.DLL
2010-09-03 12:33:24 ----D---- C:\WINDOWS\EHome
2010-09-03 10:00:19 ----A---- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
2010-09-03 10:00:14 ----D---- C:\Documents and Settings\TISA\Data aplikací\Spyware Terminator
2010-09-03 09:59:52 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2010-09-03 09:59:42 ----D---- C:\Program Files\Spyware Terminator
2010-09-03 09:52:54 ----D---- C:\Program Files\CCleaner
2010-09-03 09:15:16 ----D---- C:\WINDOWS\pss

======List of files/folders modified in the last 1 months======

2010-09-03 14:16:51 ----RD---- C:\Program Files
2010-09-03 14:15:52 ----D---- C:\WINDOWS\system32
2010-09-03 14:15:49 ----D---- C:\WINDOWS
2010-09-03 14:15:27 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-09-03 14:15:27 ----HD---- C:\WINDOWS\inf
2010-09-03 14:15:27 ----D---- C:\WINDOWS\Help
2010-09-03 14:15:27 ----D---- C:\Program Files\Internet Explorer
2010-09-03 14:14:45 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-09-03 14:14:22 ----D---- C:\WINDOWS\Temp
2010-09-03 14:12:07 ----RD---- C:\WINDOWS\Offline Web Pages
2010-09-03 14:12:07 ----D---- C:\WINDOWS\Media
2010-09-03 14:08:35 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-09-03 14:08:17 ----D---- C:\WINDOWS\Debug
2010-09-03 14:05:03 ----SD---- C:\WINDOWS\Tasks
2010-09-03 14:04:29 ----SHD---- C:\WINDOWS\Installer
2010-09-03 14:04:29 ----SHD---- C:\Config.Msi
2010-09-03 14:04:19 ----D---- C:\WINDOWS\system32\inetsrv
2010-09-03 14:03:52 ----D---- C:\WINDOWS\system32\CatRoot2
2010-09-03 14:03:40 ----D---- C:\WINDOWS\system32\wbem
2010-09-03 14:02:43 ----SHD---- C:\System Volume Information
2010-09-03 14:02:39 ----D---- C:\WINDOWS\system32\Setup
2010-09-03 14:02:39 ----D---- C:\WINDOWS\AppPatch
2010-09-03 14:02:37 ----RSD---- C:\WINDOWS\Fonts
2010-09-03 14:02:31 ----D---- C:\WINDOWS\system32\drivers
2010-09-03 14:01:01 ----SD---- C:\Documents and Settings\TISA\Data aplikací\Microsoft
2010-09-03 14:00:08 ----D---- C:\WINDOWS\security
2010-09-03 13:59:34 ----D---- C:\WINDOWS\system32\CatRoot
2010-09-03 13:58:32 ----RASH---- C:\boot.ini
2010-09-03 13:54:50 ----D---- C:\WINDOWS\WinSxS
2010-09-03 13:54:44 ----D---- C:\Program Files\Messenger
2010-09-03 13:54:29 ----D---- C:\Program Files\Windows Media Player
2010-09-03 13:54:00 ----D---- C:\WINDOWS\ime
2010-09-03 13:53:42 ----D---- C:\WINDOWS\system32\usmt
2010-09-03 13:53:42 ----D---- C:\WINDOWS\system32\oobe
2010-09-03 13:53:39 ----D---- C:\WINDOWS\system32\bits
2010-09-03 13:53:38 ----D---- C:\Program Files\Movie Maker
2010-09-03 13:48:42 ----D---- C:\WINDOWS\system32\Restore
2010-09-03 13:48:41 ----D---- C:\WINDOWS\system32\npp
2010-09-03 13:48:40 ----D---- C:\WINDOWS\msagent
2010-09-03 13:48:37 ----D---- C:\WINDOWS\srchasst
2010-09-03 13:48:35 ----D---- C:\Program Files\NetMeeting
2010-09-03 13:48:33 ----D---- C:\WINDOWS\system32\Com
2010-09-03 13:48:27 ----D---- C:\Program Files\Windows NT
2010-09-03 13:48:27 ----D---- C:\Program Files\Outlook Express
2010-09-03 13:48:21 ----D---- C:\Program Files\Common Files\System
2010-09-03 13:47:35 ----D---- C:\WINDOWS\system
2010-09-03 13:45:19 ----RD---- C:\WINDOWS\Web
2010-09-03 13:44:41 ----RASH---- C:\NTDETECT.COM
2010-09-03 13:14:48 ----D---- C:\Program Files\Mozilla Firefox
2010-09-03 12:41:12 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-09-03 11:08:02 ----D---- C:\Program Files\Genius NetScroll+ Mini Traveler Mouse
2010-09-03 10:16:14 ----D---- C:\WINDOWS\Minidump
2010-09-03 09:47:12 ----A---- C:\WINDOWS\win.ini
2010-09-03 09:47:12 ----A---- C:\WINDOWS\system.ini
2010-09-03 09:35:45 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-09-03 09:35:45 ----D---- C:\WINDOWS\SoftwareDistribution
2010-08-30 14:32:28 ----D---- C:\Documents and Settings\TISA\Data aplikací\Skype
2010-08-30 13:14:22 ----D---- C:\Documents and Settings\TISA\Data aplikací\skypePM
2010-08-30 09:10:37 ----D---- C:\Documents and Settings\TISA\Data aplikací\ICQ
2010-08-24 12:23:57 ----D---- C:\Program Files\ICQ7.1
2010-08-22 13:48:59 ----A---- C:\WINDOWS\winamp.ini
2010-08-13 13:21:00 ----D---- C:\Documents and Settings\TISA\Data aplikací\MxBoost

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\DRIVERS\PxHelp20.sys [2003-10-28 20016]
R0 viaagp;Filtr VIA sběrnice AGP ; C:\WINDOWS\System32\DRIVERS\viaagp.sys [2008-04-14 42240]
R0 viaagp1;VIA AGP Filter; C:\WINDOWS\System32\DRIVERS\viaagp1.sys [2003-07-02 27904]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\System32\DRIVERS\amdk7.sys [2008-04-14 41600]
R1 nod32drv;nod32drv; C:\WINDOWS\system32\drivers\nod32drv.sys [2008-04-01 15424]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\System32\drivers\sp_rsdrv2.sys []
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2003-04-16 12032]
R2 AMON;AMON; C:\WINDOWS\system32\drivers\amon.sys [2008-04-01 512096]
R2 SetupNT;SetupNT; C:\WINDOWS\system32\SetupNT.sys [2000-10-25 3000]
R3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2003-08-15 757248]
R3 Dot4;Ovladač MS IEEE-1284.4; C:\WINDOWS\System32\DRIVERS\Dot4.sys [2008-04-14 206976]
R3 Dot4Print;Ovladač třídy tiskárny standardu IEEE-1284.4; C:\WINDOWS\System32\DRIVERS\Dot4Prt.sys [2001-08-17 12928]
R3 Dot4Scan;Ovladač třídy skeneru standardu IEEE-1284.4; C:\WINDOWS\System32\DRIVERS\Dot4Scan.sys [2001-08-17 8704]
R3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\System32\DRIVERS\fetnd5a.sys [2001-10-22 29696]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-18 2944]
R3 S3Psddr;S3Psddr; C:\WINDOWS\System32\DRIVERS\s3gnbm.sys [2002-12-13 159744]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S1 5ff79efd;5ff79efd; C:\WINDOWS\System32\drivers\5ff79efd.sys []
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:\WINDOWS\System32\DRIVERS\k750bus.sys [2005-02-11 55216]
S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:\WINDOWS\System32\DRIVERS\k750mdfl.sys [2005-02-11 6576]
S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:\WINDOWS\System32\DRIVERS\k750mdm.sys [2005-02-11 89872]
S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:\WINDOWS\System32\DRIVERS\k750mgmt.sys [2005-02-11 81728]
S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; C:\WINDOWS\System32\DRIVERS\k750obex.sys [2005-02-11 79488]
S3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\System32\DRIVERS\LVUSBSta.sys [2007-07-19 41752]
S3 M1000Srv;M5603C USB2.0 Camera Driver; C:\WINDOWS\System32\Drivers\M1000KNT.sys [2005-07-01 276930]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2008-05-02 17536]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2008-05-02 20864]
S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\WINDOWS\System32\DRIVERS\LV302V32.SYS [2007-07-19 1278104]
S3 sermouse;Ovladač sériové myši; C:\WINDOWS\System32\DRIVERS\sermouse.sys [2001-10-24 17664]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\System32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\WINDOWS\System32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 streamip;BDA IPSink; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 upperdev;upperdev; C:\WINDOWS\System32\DRIVERS\usbser_lowerflt.sys [2008-05-02 8064]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\System32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-14 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\System32\DRIVERS\usbser_lowerfltj.sys [2008-05-02 8064]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Wdf01000; C:\WINDOWS\System32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2010-01-03 246520]
R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2008-04-01 552064]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2010-09-03 488960]

-----------------EOF-----------------

#6 Příspěvek od **motji** » 05 zář 2010 07:33

no myslím že tam máte nějaká zvířátka, včetně rootkitka

.
Máte v pc něco důležitého? Chtěla bych použít combofix, ale nevím, nakolik je Váš systém stabilní, je možné, že by se po combofixu rozsypal

Z mého podpisu stahněte Ccleaner
- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru

Obrázek

záložka čistič
-nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
-po analýze klikněte na Spustit Ccleaner

Obrázek

záložka Registry
- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy

ok

zavřít

Záložka Nástroje
- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.

Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.

Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT

-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

banaho · #7 Příspěvek od **banaho** » 05 zář 2010 09:38

Ccleaner jsem použil, po analýze hlásil cca 3GB k vymazání, odstranil však jenom 240MB.

Řekl bych, že v PC není nic důležitého. Jde však o to, že pro případ reinstalace nemám k dispozici ovladače k hardwaru ani licenční čísla k softwaru (licence jsou na Správu CHKO). Nerad bych si přidělával zbytečné problémy, když se mě to v podstatě netýká (budu zde již pouze týden). Hrozí až takhle velký pád PC?

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Verze databáze: 4547

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

5.9.2010 10:29:43
mbam-log-2010-09-05 (10-29-43).txt

Typ skenu: Úplný sken (C:\|)
Skenované objekty: 184402
Uplynulý čas: 1 hodina(y), 6 minuta(y), 36 sekunda(y)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 5
Infikované hodnoty registru: 1
Infikované datové položky registru: 4
Infikované složky: 0
Infikované soubory: 2

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče registru:
HKEY_CLASSES_ROOT\CLSID\{a3ed5288-f558-4f6e-8d5c-740cb6f89029} (Rogue.Multiple) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/setup.dll (Rogue.Multiple) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{a3ed5288-f558-4f6e-8d5c-740cb6f89029} (Rogue.Multiple) -> No action taken.
HKEY_CURRENT_USER\{5617ECA9-488D-4BA2-8562-9710B9AB78D2} (Adware.DoubleD) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Power-AntiVirus-2009 (Rogue.PowerAntiVirus) -> No action taken.

Infikované hodnoty registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\WINDOWS\Downloaded Program Files\setup.dll (Rogue.Multiple) -> No action taken.

Infikované datové položky registru:
HKEY_CLASSES_ROOT\scrfile\shell\open\command\(default) (Broken.OpenCommand) -> Bad: (NOTEPAD.EXE %1) Good: ("%1" /S) -> No action taken.
HKEY_CLASSES_ROOT\regfile\shell\open\command\(default) (Broken.OpenCommand) -> Bad: (NOTEPAD.EXE %1) Good: (regedit.exe "%1") -> No action taken.
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\BITS\ImagePath (Hijack.WindowsUpdates) -> Bad: (%fystemRoot%\System32\svchost.exe -k netsvcs) Good: (%SystemRoot%\System32\svchost.exe -k netsvcs) -> No action taken.
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\wuauserv\ImagePath (Hijack.WindowsUpdates) -> Bad: (%fystemroot%\system32\svchost.exe -k netsvcs) Good: (%SystemRoot%\System32\svchost.exe -k netsvcs) -> No action taken.

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
C:\WINDOWS\Downloaded Program Files\setup.dll (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\TISA\Data aplikací\wiaserva.log (Malware.Trace) -> No action taken.

#8 Příspěvek od **motji** » 05 zář 2010 21:28

Co našel mbam, smažte.

Já se ptala spíše pro jistotu, stát se to může...ale stává se to málokdy

.
takže pokud nemáte nic proti combofixu, jdeme na to, v opačném případě mi napište a uděláme sken něčím jiným

.

Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix

banaho · #9 Příspěvek od **banaho** » 06 zář 2010 09:13

Log z ComboFixu:

ComboFix 10-09-04.06 - TISA 06.09.2010 9:55.1.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.479.237 [GMT 2:00]
Spuštěný z: c:\documents and settings\TISA\Plocha\ComboFix.exe
AV: Eset NOD32 Antivirus 2.70 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
* Vytvořen nový Bod Obnovení
* Rezidentní štít AV je zapnutý

.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\All Users\Data aplikací\Microsoft\Network\Downloader\qmgr0.dat
c:\documents and settings\All Users\Data aplikací\Microsoft\Network\Downloader\qmgr1.dat
c:\documents and settings\TISA\Plocha\Internet Explorer.lnk
c:\windows\system32\_004374_.tmp.dll
c:\windows\system32\_004550_.tmp.dll
c:\windows\system32\_004551_.tmp.dll
c:\windows\system32\_004552_.tmp.dll
c:\windows\system32\_004553_.tmp.dll
c:\windows\system32\_004560_.tmp.dll
c:\windows\system32\_004561_.tmp.dll
c:\windows\system32\_004562_.tmp.dll
c:\windows\system32\_004563_.tmp.dll
c:\windows\system32\_004565_.tmp.dll
c:\windows\system32\_004566_.tmp.dll
c:\windows\system32\_004569_.tmp.dll
c:\windows\system32\_004570_.tmp.dll
c:\windows\system32\_004572_.tmp.dll
c:\windows\system32\_004573_.tmp.dll
c:\windows\system32\_004574_.tmp.dll
c:\windows\system32\_004576_.tmp.dll
c:\windows\system32\_004577_.tmp.dll
c:\windows\system32\_004579_.tmp.dll
c:\windows\system32\_004580_.tmp.dll
c:\windows\system32\_004584_.tmp.dll
c:\windows\system32\_004585_.tmp.dll
c:\windows\system32\_004587_.tmp.dll
c:\windows\system32\_004589_.tmp.dll
c:\windows\system32\_004590_.tmp.dll
c:\windows\system32\_004592_.tmp.dll
c:\windows\system32\_004593_.tmp.dll
c:\windows\system32\_004594_.tmp.dll
c:\windows\system32\_004595_.tmp.dll
c:\windows\system32\_004596_.tmp.dll
c:\windows\system32\_004599_.tmp.dll
c:\windows\system32\_004600_.tmp.dll
c:\windows\system32\_004601_.tmp.dll
c:\windows\system32\_004602_.tmp.dll
c:\windows\system32\_004603_.tmp.dll
c:\windows\system32\_004608_.tmp.dll
c:\windows\system32\drivers\gtlv.sys

----- BITS: Možné infikované stránky -----

hxxp://banksguard.com
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_waol

((((((((((((((((((((((((( Soubory vytvořené od 2010-08-06 do 2010-09-06 )))))))))))))))))))))))))))))))
.

2010-09-05 07:17 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-09-05 07:17 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-09-05 07:17 . 2010-09-05 07:17 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-09-03 14:01 . 2010-09-03 14:01 423656 ----a-w- c:\windows\system32\deployJava1.dll
2010-09-03 12:25 . 2010-09-03 12:25 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2010-09-03 12:16 . 2010-09-03 12:17 -------- d-----w- c:\program files\trend micro
2010-09-03 12:16 . 2010-09-04 13:35 -------- d-----w- C:\rsit
2010-09-03 12:15 . 2010-09-03 12:15 -------- d-sh--w- c:\documents and settings\TISA\IETldCache
2010-09-03 12:09 . 2010-09-03 12:11 -------- dc-h--w- c:\windows\ie8
2010-09-03 12:04 . 2010-09-03 12:04 -------- d-----w- c:\documents and settings\LocalService\Nabídka Start
2010-09-03 12:03 . 2010-09-03 14:03 -------- d-----w- c:\windows\system32\wbem\AutoRecover
2010-09-03 11:53 . 2008-04-14 06:52 14336 ------w- c:\windows\system32\auditusr.exe
2010-09-03 11:49 . 2010-09-03 11:49 -------- d-----w- c:\windows\ServicePackFiles
2010-09-03 11:49 . 2008-04-14 06:51 33792 -c----w- c:\windows\system32\dllcache\custsat.dll
2010-09-03 11:28 . 2010-09-06 07:37 -------- d-----w- c:\windows\system32\NtmsData
2010-09-03 11:13 . 2010-09-03 11:13 -------- d-----w- c:\program files\Windows Resource Kits
2010-09-03 10:57 . 2010-09-03 12:15 -------- d-----w- c:\windows\system32\cs-cz
2010-09-03 10:57 . 2010-09-03 10:57 -------- d-----w- c:\windows\provisioning
2010-09-03 10:57 . 2010-09-03 11:53 -------- d-----w- c:\windows\l2schemas
2010-09-03 10:57 . 2010-09-03 11:53 -------- d-----w- c:\windows\system32\cs
2010-09-03 10:57 . 2010-09-03 11:53 -------- d-----w- c:\windows\peernet
2010-09-03 10:38 . 2008-04-14 05:38 41600 ----a-w- c:\windows\system32\drivers\amdk7.sys
2010-09-03 10:38 . 2008-04-13 22:15 30208 ----a-w- c:\windows\system32\drivers\usbehci.sys
2010-09-03 10:38 . 2008-04-13 22:06 42240 ----a-w- c:\windows\system32\drivers\viaagp.sys
2010-09-03 10:38 . 2008-04-13 22:26 12288 ----a-w- c:\windows\system32\drivers\tunmp.sys
2010-09-03 10:38 . 2008-04-14 06:51 409088 ----a-w- c:\windows\system32\qmgr.dll
2010-09-03 10:38 . 2008-04-14 06:51 95744 ----a-w- c:\windows\system32\mqsec.dll
2010-09-03 10:38 . 2008-04-14 06:51 489472 ----a-w- c:\windows\system32\mqutil.dll
2010-09-03 10:36 . 2008-04-14 06:52 1034240 ----a-w- c:\windows\explorer.exe
2010-09-03 10:35 . 2008-04-14 06:51 75264 ----a-w- c:\windows\system32\inetpp.dll
2010-09-03 10:34 . 2008-04-14 06:52 33280 ----a-w- c:\windows\system32\rundll32.exe
2010-09-03 10:33 . 2008-04-14 06:53 21896 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2010-09-03 08:00 . 2010-09-03 08:00 142592 ----a-w- c:\windows\system32\drivers\sp_rsdrv2.sys
2010-09-03 07:59 . 2010-09-04 09:09 -------- d-----w- c:\program files\Spyware Terminator
2010-09-03 07:52 . 2010-09-03 07:52 -------- d-----w- c:\program files\CCleaner

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-03 14:02 . 2006-01-03 14:41 -------- d-----w- c:\program files\Common Files\Java
2010-09-03 14:00 . 2006-01-03 14:41 -------- d-----w- c:\program files\Java
2010-09-03 12:08 . 2003-04-16 12:00 46016 ----a-w- c:\windows\system32\perfc005.dat
2010-09-03 12:08 . 2003-04-16 12:00 309716 ----a-w- c:\windows\system32\perfh005.dat
2010-09-03 11:58 . 2003-11-28 13:51 86327 ----a-w- c:\windows\PCHealth\HelpCtr\OfflineCache\index.dat
2010-09-03 11:58 . 2003-11-28 13:51 2724 ----a-w- c:\windows\PCHealth\HelpCtr\PackageStore\SkuStore.bin
2010-09-03 11:55 . 2003-11-28 13:52 8972 ----a-w- c:\windows\PCHealth\HelpCtr\Config\Cntstore.bin
2010-09-03 09:08 . 2008-02-08 09:25 -------- d-----w- c:\program files\Genius NetScroll+ Mini Traveler Mouse
2010-08-24 10:23 . 2010-05-14 10:32 -------- d-----w- c:\program files\ICQ7.1
2010-07-30 10:01 . 2010-04-30 12:56 -------- d-----w- c:\program files\Ask.com
2010-07-24 09:12 . 2009-07-13 08:14 -------- d-----w- c:\program files\SweetIM
2008-04-29 07:44 . 2008-04-29 07:44 5850904 ----a-w- c:\program files\Firefox Setup 2.0.0.14.exe
2008-04-29 07:25 . 2008-04-29 07:25 22342696 ----a-w- c:\program files\avastsetupcze.exe
2008-04-29 07:20 . 2008-04-29 07:20 430437 ----a-w- c:\program files\Avast-Professional-Edition_4.8.1169.exe
2008-04-28 13:33 . 2008-04-28 13:33 22595368 ----a-w- c:\program files\SkypeSetup.exe
2008-04-28 13:04 . 2008-04-28 13:04 6077952 ----a-w- c:\program files\icq5_1_setup2575.exe
2008-04-28 12:59 . 2008-04-28 12:59 1336031 ----a-w- c:\program files\wrar371cz.exe
2008-04-28 11:58 . 2008-04-28 11:58 14111464 ----a-w- c:\program files\install_atlas_icq6.exe
2007-10-22 01:49 . 2007-10-22 01:49 1805306 ----a-w- c:\program files\NOV2007_d3dx9_36_x64.cab
2007-10-22 01:49 . 2007-10-22 01:49 867848 ----a-w- c:\program files\NOV2007_d3dx10_36_x64.cab
2007-10-22 01:49 . 2007-10-22 01:49 807132 ----a-w- c:\program files\NOV2007_d3dx10_36_x86.cab
2007-10-22 01:49 . 2007-10-22 01:49 49392 ----a-w- c:\program files\NOV2007_X3DAudio_x64.cab
2007-10-22 01:49 . 2007-10-22 01:49 44850 ----a-w- c:\program files\dxdllreg_x86.cab
2007-10-22 01:49 . 2007-10-22 01:49 21744 ----a-w- c:\program files\NOV2007_X3DAudio_x86.cab
2007-10-22 01:49 . 2007-10-22 01:49 200010 ----a-w- c:\program files\NOV2007_XACT_x64.cab
2007-10-22 01:49 . 2007-10-22 01:49 1712608 ----a-w- c:\program files\NOV2007_d3dx9_36_x86.cab
2007-10-22 01:49 . 2007-10-22 01:49 151512 ----a-w- c:\program files\NOV2007_XACT_x86.cab
2003-09-05 15:02 . 2008-04-06 11:48 2640661 ----a-w- c:\program files\blazedvdsetup.exe
2003-09-05 14:43 . 2008-04-06 10:58 6350332 ----a-w- c:\program files\pdvd5_trial_0603.exe
2003-09-05 14:39 . 2008-04-06 10:53 13131534 ----a-w- c:\program files\directdvd.exe
2003-09-05 12:41 . 2008-04-06 10:49 5788656 ----a-w- c:\program files\divxpro51gainbundle.exe
2003-01-16 10:37 . 2008-04-05 09:46 6095438 ----a-w- c:\program files\setupcze.exe
2008-04-06 10:56 . 2008-04-06 10:56 220 --sha-w- c:\windows\dwin.sys
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{00000000-6E41-4FD3-8538-502F5495E5FC}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-06-30 1390984]
"{EEE6C35D-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll" [2010-06-13 138552]

[HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}]

[HKEY_CLASSES_ROOT\clsid\{eee6c35d-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2010-06-30 20:51 1390984 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2010-06-13 15:25 1438520 ----a-w- c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2010-06-13 1438520]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-06-30 1390984]

[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2010-06-13 1438520]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-06-30 1390984]

[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpywareTerminatorUpdate"="c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe" [2010-09-03 3037696]
"Google Update"="c:\documents and settings\TISA\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" [2010-09-03 136176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ShowIcon_The Company_USB Storage Device Ver. 1.3"="c:\program files\Card Reader\shwicon.exe -tThe Company\USB Storage Device Ver. 1.3" [X]
"CM-SmWizard"="c:\windows\System\SmWizard.exe" [2003-08-01 1355776]
"mouseElf"="c:\progra~1\GENIUS~1\GNETMOUS.EXE" [2003-05-13 163840]
"nod32kui"="c:\program files\Eset\nod32kui.exe" [2008-04-01 949376]
"SweetIM"="c:\program files\SweetIM\Messenger\SweetIM.exe" [2010-06-07 111928]
"SpywareTerminator"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2010-09-03 2176512]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0smrgdf c:\program files\iolo\System Mechanic Professional 6\\0

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 06:52 1695232 ----a-w- c:\program files\Messenger\msmsgs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2008-04-06 10:43 77824 ----a-w- c:\program files\QuickTime\qttask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
2003-12-13 00:50 33792 ----a-w- c:\program files\Winamp\winampa.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"=

R1 nod32drv;nod32drv;c:\windows\system32\drivers\nod32drv.sys [1.4.2008 7:44 15424]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [3.9.2010 10:00 142592]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [14.5.2010 12:33 246520]
S1 5ff79efd;5ff79efd;c:\windows\system32\drivers\5ff79efd.sys [7.6.2009 11:01 0]
S3 M1000Srv;M5603C USB2.0 Camera Driver;c:\windows\system32\drivers\M1000KNT.sys [1.6.2010 8:51 276930]
.
Obsah adresáře 'Naplánované úlohy'

2010-09-05 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2010-06-30 20:51]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Connection Wizard,ShellNext = iexplore
IE: &ICQ Toolbar Search - c:\program files\ICQToolbar\toolbaru.dll/SEARCH.HTML
IE: Download All by FlashGet - c:\program files\FlashGet\jc_all.htm
IE: Download using FlashGet - c:\program files\FlashGet\jc_link.htm
IE: {{71BFC818-0CED-42D6-9C87-5142918957EE} - c:\program files\ICQ7.1\ICQ.exe
IE: {{66566BD7-FF3C-46a8-97AB-A60ECC45BDD2} - {71F1BA92-1F94-40F6-B90B-1FCB61C17E8D} - c:\program files\Microton 2006\Eurotran\etran_i.dll
IE: {{6740485C-7614-4d47-B8FC-AF7E5E99A2BD} - {7F41BAC6-8446-49BF-ABAA-69820F816638} - c:\program files\Microton 2006\Eurotran\etran_i.dll
IE: {{9EE61AF4-AC5B-42dd-9EBF-9DC30124C338} - {6C7FB4BA-53BF-4e0f-8A53-1DA8770264F5} - c:\program files\Microton 2006\Lexie\lexie.dll
LSP: c:\windows\System32\imon.dll
TCP: {FE7C524A-783C-457D-BD53-29F2FFBE1E94} = 10.114.17.1,217.117.216.7
DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - hxxp://game09.zylom.com/activex/zylomgamesplayer.cab
FF - ProfilePath - c:\documents and settings\TISA\Data aplikací\Mozilla\Firefox\Profiles\xxcbgs0b.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.sweetim.com/search.asp?src=2&q=
FF - prefs.js: browser.search.selectedEngine - Ask.com
FF - prefs.js: browser.startup.homepage - google.cz
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8 ... &gfns=1&q=
FF - component: c:\program files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}\components\SkypeFfComponent.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
.
------- Asociace souborů -------
.
JSEFile=NOTEPAD.EXE %1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

HKLM-Run-Cmaudio - cmicnfg.cpl
MSConfigStartUp-Power-Antivirus-2009 - c:\documents and settings\TISA\Plocha\in\Power-Antivirus-2009.exe
AddRemove-PC Translator 2007 DEMO - c:\docume~1\TISA\LOCALS~1\Temp\UN32.EXE

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-09-06 10:04
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

c:\windows\system32\wuaueng.dll.wusetup.228984.bak 1809944 bytes executable

sken byl úspešně dokončen
skryté soubory: 1

**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'lsass.exe'(720)
c:\windows\System32\imon.dll
c:\program files\Eset\pr_imon.dll

- - - - - - - > 'explorer.exe'(3180)
c:\program files\SweetIM\Messenger\mgAdaptersProxy.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Eset\nod32krn.exe
c:\program files\Spyware Terminator\sp_rsser.exe
c:\windows\system32\RunDll32.exe
c:\program files\Card Reader\shwicon.exe
c:\windows\SoftwareDistribution\Download\7654a5f78a672bd2ba8b0cec462f5907\update\update.exe
.
**************************************************************************
.
Celkový čas: 2010-09-06 10:10:44 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-09-06 08:10

Před spuštěním: Volných bajtů: 21 153 034 240
Po spuštění: Volných bajtů: 24 300 400 640

WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /fastdetect /NoExecute=OptIn

- - End Of File - - A6E558D6FACDC2FA3BBD26A0C42F85DC

#10 Příspěvek od **motji** » 06 zář 2010 09:22

Něco smazáno, co na naši čistku počítač?

Otestujte na http://www.virustotal.com

c:\windows\system32\auditusr.exe
c:\windows\system32\wuaueng.dll.wusetup.228984.bak
C:\WINDOWS\System32\drivers\5ff79efd.sys

-Do okénka zkopírujte cestu k souboru , pokud napíše, že soubor byl už testován, dejte otestovat znovu.
-Sem vložte link s výsledky.

Ještě pak něco málo domažeme a opravíme aktualizace, pokud to mbam nezvládl..tak mi neutíkejte, bohužel tu budu pravděpodobně zase až v noci

.

banaho · #11 Příspěvek od **banaho** » 07 zář 2010 08:35

Počítač vypadá bez problému, zatím je statečný

Aktualizace jsou již funkční.

Virustotal.com nenašel nic v souborech. Jenom je problém v tom, že c:\windows\system32\wuaueng.dll.wusetup.228984.bak jsem ve složce vůbec nenašel (ani se zobrazenými skytými) a C:\WINDOWS\System32\drivers\5ff79efd.sys se v systému tváří jako soubor bez přípony s velikostí souboru 0 (po nahrání na virustotal.com se ale přípona ukázala, ale soubor nešlo otestovat). Ve složce drivers je takovýchto souborů většina, které se tváří jako bez přípony.

http://www.virustotal.com/file-scan/rep ... 1283843397

wuaueng.dll
http://www.virustotal.com/file-scan/rep ... 1283844114

wuaueng1.dll
http://www.virustotal.com/file-scan/rep ... 1283844274

wuaueng.dll.mui
http://www.virustotal.com/file-scan/rep ... 1283844367

#12 Příspěvek od **motji** » 07 zář 2010 15:45

Pokud nemáte, přesuňte Combofix na plochu
-otevřete si Poznámkový blok
-Do něj zkopírujte text z tohoto okénka

Kód: Vybrat vše

Driver::
5ff79efd

File::
C:\WINDOWS\System32\drivers\5ff79efd.sys
c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
c:\program files\Ask.com\UpdateTask.exe

Firefox::
FF - ProfilePath - c:\documents and settings\TISA\Data aplikací\Mozilla\Firefox\Profiles\xxcbgs0b.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.sweetim.com/search.asp?src=2&q=
FF - prefs.js: browser.search.selectedEngine - Ask.com

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ShowIcon_The Company_USB Storage Device Ver. 1.3"=-
"SweetIM"=-
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{00000000-6E41-4FD3-8538-502F5495E5FC}"=-
"{EEE6C35D-6118-11DC-9C72-001320C79847}"=-
[-HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}]
[-HKEY_CLASSES_ROOT\clsid\{eee6c35d-6118-11dc-9c72-001320c79847}]
[-HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]
[-HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}]
[-HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"=-
"{D4027C7F-154A-4066-A1AD-4243D8127440}"=-
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"=-
"{D4027C7F-154A-4066-A1AD-4243D8127440}"=-
[-HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[-HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[-HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[-HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]

Folder::
c:\program files\Ask.com
c:\program files\SweetIM

-uložte Vámi vytvořený TXT soubor jako CFScript.txt na plochu
-po uložení uchopte vámi vytvořený skript levým myšítkem a -přesuňte ho nad ikonu Combofixu, kde ho upustíte:

Obrázek

-po aplikaci na Vás vypadne další log,vložte ho sem

Upozornění : může se stát, že po aplikaci skriptu a restartu Windows nenaběhnou, v tom případě znovu restartujte a přitom mačkejte F8, pak zvolte Poslední známou funkční konfiguraci

banaho · #13 Příspěvek od **banaho** » 07 zář 2010 16:36

ComboFix 10-09-04.06 - TISA 07.09.2010 17:21:03.2.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.479.250 [GMT 2:00]
Spuštěný z: c:\documents and settings\TISA\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\TISA\Plocha\CFScript.txt
AV: Eset NOD32 Antivirus 2.70 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
* Rezidentní štít AV je zapnutý

FILE ::
"c:\program files\Ask.com\UpdateTask.exe"
"c:\windows\System32\drivers\5ff79efd.sys"
"c:\windows\Tasks\Scheduled Update for Ask Toolbar.job"
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\Ask.com
c:\program files\Ask.com\cb_277d.ico
c:\program files\Ask.com\cobrand.ico
c:\program files\Ask.com\config.xml
c:\program files\Ask.com\favicon.ico
c:\program files\Ask.com\fv_277a.ico
c:\program files\Ask.com\GenericAskToolbar.dll
c:\program files\Ask.com\mupcfg.xml
c:\program files\Ask.com\SaUpdate.exe
c:\program files\Ask.com\UpdateTask.exe
c:\program files\SweetIM
c:\program files\SweetIM\Messenger\default.xml
c:\program files\SweetIM\Messenger\mgAdaptersProxy.dll
c:\program files\SweetIM\Messenger\mgAIMAuto.dll
c:\program files\SweetIM\Messenger\mgAIMMessengerAdapter.dll
c:\program files\SweetIM\Messenger\mgArchive.dll
c:\program files\SweetIM\Messenger\mgcommon.dll
c:\program files\SweetIM\Messenger\mgcommunication.dll
c:\program files\SweetIM\Messenger\mgconfig.dll
c:\program files\SweetIM\Messenger\mgFlashPlayer.dll
c:\program files\SweetIM\Messenger\mghooking.dll
c:\program files\SweetIM\Messenger\mgICQAuto.dll
c:\program files\SweetIM\Messenger\mgICQMessengerAdapter.dll
c:\program files\SweetIM\Messenger\mgIEPlayer.dll
c:\program files\SweetIM\Messenger\mglogger.dll
c:\program files\SweetIM\Messenger\mgMediaPlayer.dll
c:\program files\SweetIM\Messenger\mgMsnAuto.dll
c:\program files\SweetIM\Messenger\mgMsnMessengerAdapter.dll
c:\program files\SweetIM\Messenger\mgsimcommon.dll
c:\program files\SweetIM\Messenger\mgSweetIM.dll
c:\program files\SweetIM\Messenger\mgUpdateSupport.dll
c:\program files\SweetIM\Messenger\mgxml_wrapper.dll
c:\program files\SweetIM\Messenger\mgYahooAuto.dll
c:\program files\SweetIM\Messenger\mgYahooMessengerAdapter.dll
c:\program files\SweetIM\Messenger\msvcp71.dll
c:\program files\SweetIM\Messenger\msvcr71.dll
c:\program files\SweetIM\Messenger\resources\images\AudibleButton.png
c:\program files\SweetIM\Messenger\resources\images\DisplayPicturesButton.png
c:\program files\SweetIM\Messenger\resources\images\EmoticonButton.png
c:\program files\SweetIM\Messenger\resources\images\GamesButton.png
c:\program files\SweetIM\Messenger\resources\images\KeyboardButton.png
c:\program files\SweetIM\Messenger\resources\images\NudgeButton.png
c:\program files\SweetIM\Messenger\resources\images\SoundFxButton.png
c:\program files\SweetIM\Messenger\resources\images\WinksButton.png
c:\program files\SweetIM\Messenger\SweetIM.exe
c:\program files\SweetIM\Toolbars\Internet Explorer\ClearHist.exe
c:\program files\SweetIM\Toolbars\Internet Explorer\conf\logger.xml
c:\program files\SweetIM\Toolbars\Internet Explorer\default.xml
c:\program files\SweetIM\Toolbars\Internet Explorer\mgcommon.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgconfig.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe
c:\program files\SweetIM\Toolbars\Internet Explorer\mghooking.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mglogger.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgsimcommon.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgxml_wrapper.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\Microsoft.VC90.CRT.manifest
c:\program files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcm90.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcp90.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcr90.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\about.html
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\affid.dat
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\basis.xml
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\bing.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\clear-history.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier-anim-over.gif
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier-anim.gif
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier.js
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\dating.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\dictionary.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\e_cards.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\eye_icon.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\eye_icon_over.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\find.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\free_stuff.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\games.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\glitter.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\google.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\help.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\highlight.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\locales.xml
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\logo_16x16.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\logo_21x18.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\logo_32x32.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\logo_about.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\more-search-providers.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\music.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\news.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\options.html
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\photos.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\search-current-site.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\shopping.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\SmileySmile.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\SmileyWink.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\sweetim_text.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\toolbar.xml
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\version.txt
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\video.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\web-search.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\web-toolbar.js
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\yahoo.png
c:\windows\System32\drivers\5ff79efd.sys
c:\windows\system32\drivers\wrosccn.sys
c:\windows\Tasks\Scheduled Update for Ask Toolbar.job

.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_5ff79efd
-------\Service_auyigkx

((((((((((((((((((((((((( Soubory vytvořené od 2010-08-07 do 2010-09-07 )))))))))))))))))))))))))))))))
.

2010-09-07 07:58 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2010-09-07 07:58 . 2010-06-21 15:27 354304 -c----w- c:\windows\system32\dllcache\srv.sys
2010-09-07 07:57 . 2010-02-24 13:11 455680 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2010-09-07 07:56 . 2010-09-07 08:28 -------- d-----w- c:\windows\ie8updates
2010-09-07 07:56 . 2010-09-07 07:56 -------- d-----w- c:\program files\MSXML 4.0
2010-09-07 07:56 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2010-09-07 07:55 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2010-09-07 07:55 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2010-09-07 07:55 . 2009-03-06 14:23 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2010-09-07 07:55 . 2009-02-09 11:25 111104 -c----w- c:\windows\system32\dllcache\services.exe
2010-09-07 07:55 . 2009-02-09 10:56 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2010-09-07 07:55 . 2009-02-09 10:56 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2010-09-07 07:55 . 2009-02-09 10:56 684032 -c----w- c:\windows\system32\dllcache\advapi32.dll
2010-09-07 07:55 . 2009-06-25 08:27 729088 -c----w- c:\windows\system32\dllcache\lsasrv.dll
2010-09-07 07:55 . 2009-02-09 10:56 709632 -c----w- c:\windows\system32\dllcache\ntdll.dll
2010-09-07 07:55 . 2009-02-09 10:56 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2010-09-07 07:53 . 2009-06-21 21:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2010-09-07 07:53 . 2010-04-28 05:45 2148352 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2010-09-07 07:53 . 2010-04-28 18:15 2192128 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2010-09-07 07:53 . 2010-04-28 05:45 2068992 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2010-09-07 07:53 . 2010-04-28 05:45 2026496 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2010-09-07 07:51 . 2010-06-24 12:27 599040 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2010-09-07 07:51 . 2010-06-24 12:27 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2010-09-07 07:51 . 2010-06-24 12:27 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2010-09-07 07:51 . 2010-06-24 12:27 1986560 -c----w- c:\windows\system32\dllcache\iertutil.dll
2010-09-07 07:51 . 2010-06-24 12:27 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2010-09-07 07:51 . 2010-06-24 12:27 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2010-09-07 07:44 . 2009-10-15 16:32 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2010-09-07 07:44 . 2009-10-15 16:32 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2010-09-07 07:33 . 2010-09-07 07:33 -------- d-sh--w- c:\documents and settings\TISA\IECompatCache
2010-09-07 07:32 . 2010-09-07 07:32 -------- d-sh--w- c:\documents and settings\TISA\PrivacIE
2010-09-07 07:19 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2010-09-07 07:17 . 2008-05-01 14:37 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2010-09-07 07:12 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2010-09-06 08:17 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2010-09-06 08:16 . 2008-10-15 16:38 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2010-09-06 08:14 . 2008-04-21 21:15 216576 -c----w- c:\windows\system32\dllcache\wordpad.exe
2010-09-05 07:17 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-09-05 07:17 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-09-05 07:17 . 2010-09-05 07:17 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-09-03 14:01 . 2010-09-03 14:01 423656 ----a-w- c:\windows\system32\deployJava1.dll
2010-09-03 12:25 . 2010-09-03 12:25 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2010-09-03 12:16 . 2010-09-03 12:17 -------- d-----w- c:\program files\trend micro
2010-09-03 12:16 . 2010-09-04 13:35 -------- d-----w- C:\rsit
2010-09-03 12:15 . 2010-09-03 12:15 -------- d-sh--w- c:\documents and settings\TISA\IETldCache
2010-09-03 12:09 . 2010-09-03 12:11 -------- dc-h--w- c:\windows\ie8
2010-09-03 12:04 . 2010-09-03 12:04 -------- d-----w- c:\documents and settings\LocalService\Nabídka Start
2010-09-03 12:03 . 2010-09-03 14:03 -------- d-----w- c:\windows\system32\wbem\AutoRecover
2010-09-03 11:53 . 2008-04-14 06:52 14336 ------w- c:\windows\system32\auditusr.exe
2010-09-03 11:49 . 2010-09-03 11:49 -------- d-----w- c:\windows\ServicePackFiles
2010-09-03 11:49 . 2008-04-14 06:51 33792 -c----w- c:\windows\system32\dllcache\custsat.dll
2010-09-03 11:28 . 2010-09-06 07:37 -------- d-----w- c:\windows\system32\NtmsData
2010-09-03 11:13 . 2010-09-03 11:13 -------- d-----w- c:\program files\Windows Resource Kits
2010-09-03 10:57 . 2010-09-03 12:15 -------- d-----w- c:\windows\system32\cs-cz
2010-09-03 10:57 . 2010-09-03 10:57 -------- d-----w- c:\windows\provisioning
2010-09-03 10:57 . 2010-09-03 11:53 -------- d-----w- c:\windows\l2schemas
2010-09-03 10:57 . 2010-09-03 11:53 -------- d-----w- c:\windows\system32\cs
2010-09-03 10:57 . 2010-09-03 11:53 -------- d-----w- c:\windows\peernet
2010-09-03 10:38 . 2008-04-14 05:38 41600 ----a-w- c:\windows\system32\drivers\amdk7.sys
2010-09-03 10:38 . 2008-04-13 22:15 30208 ----a-w- c:\windows\system32\drivers\usbehci.sys
2010-09-03 10:38 . 2008-04-13 22:06 42240 ----a-w- c:\windows\system32\drivers\viaagp.sys
2010-09-03 10:38 . 2008-04-13 22:26 12288 ----a-w- c:\windows\system32\drivers\tunmp.sys
2010-09-03 10:38 . 2008-04-14 06:51 409088 ----a-w- c:\windows\system32\qmgr.dll
2010-09-03 10:38 . 2008-04-14 06:51 95744 ----a-w- c:\windows\system32\mqsec.dll
2010-09-03 10:38 . 2008-04-14 06:51 489472 ----a-w- c:\windows\system32\mqutil.dll
2010-09-03 10:36 . 2008-04-14 06:52 1034240 ----a-w- c:\windows\explorer.exe
2010-09-03 10:35 . 2008-04-14 06:51 75264 ----a-w- c:\windows\system32\inetpp.dll
2010-09-03 10:34 . 2008-04-14 06:52 33280 ----a-w- c:\windows\system32\rundll32.exe
2010-09-03 10:33 . 2010-02-11 12:02 226880 ----a-w- c:\windows\system32\drivers\tcpip6.sys
2010-09-03 08:00 . 2010-09-03 08:00 142592 ----a-w- c:\windows\system32\drivers\sp_rsdrv2.sys
2010-09-03 07:59 . 2010-09-04 09:09 -------- d-----w- c:\program files\Spyware Terminator
2010-09-03 07:52 . 2010-09-03 07:52 -------- d-----w- c:\program files\CCleaner

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-07 08:14 . 2003-04-16 12:00 46016 ----a-w- c:\windows\system32\perfc005.dat
2010-09-07 08:14 . 2003-04-16 12:00 309716 ----a-w- c:\windows\system32\perfh005.dat
2010-09-03 14:02 . 2006-01-03 14:41 -------- d-----w- c:\program files\Common Files\Java
2010-09-03 14:00 . 2006-01-03 14:41 -------- d-----w- c:\program files\Java
2010-09-03 11:58 . 2003-11-28 13:51 86327 ----a-w- c:\windows\PCHealth\HelpCtr\OfflineCache\index.dat
2010-09-03 11:58 . 2003-11-28 13:51 2724 ----a-w- c:\windows\PCHealth\HelpCtr\PackageStore\SkuStore.bin
2010-09-03 11:55 . 2003-11-28 13:52 8972 ----a-w- c:\windows\PCHealth\HelpCtr\Config\Cntstore.bin
2010-09-03 09:08 . 2008-02-08 09:25 -------- d-----w- c:\program files\Genius NetScroll+ Mini Traveler Mouse
2010-08-24 10:23 . 2010-05-14 10:32 -------- d-----w- c:\program files\ICQ7.1
2010-06-30 12:33 . 2010-09-03 10:34 149504 ----a-w- c:\windows\system32\schannel.dll
2010-06-24 12:27 . 2010-09-03 10:34 916480 ----a-w- c:\windows\system32\wininet.dll
2010-06-24 09:02 . 2010-09-03 10:34 1851904 ----a-w- c:\windows\system32\win32k.sys
2010-06-21 15:27 . 2010-09-03 10:34 354304 ----a-w- c:\windows\system32\drivers\srv.sys
2010-06-17 14:03 . 2003-04-16 12:00 80384 ----a-w- c:\windows\system32\iccvid.dll
2010-06-14 14:31 . 2003-11-28 13:50 744448 ----a-w- c:\windows\PCHealth\HelpCtr\Binaries\helpsvc.exe
2010-06-14 07:43 . 2010-09-03 10:35 1172480 ----a-w- c:\windows\system32\msxml3.dll
2008-04-29 07:44 . 2008-04-29 07:44 5850904 ----a-w- c:\program files\Firefox Setup 2.0.0.14.exe
2008-04-29 07:25 . 2008-04-29 07:25 22342696 ----a-w- c:\program files\avastsetupcze.exe
2008-04-29 07:20 . 2008-04-29 07:20 430437 ----a-w- c:\program files\Avast-Professional-Edition_4.8.1169.exe
2008-04-28 13:33 . 2008-04-28 13:33 22595368 ----a-w- c:\program files\SkypeSetup.exe
2008-04-28 13:04 . 2008-04-28 13:04 6077952 ----a-w- c:\program files\icq5_1_setup2575.exe
2008-04-28 12:59 . 2008-04-28 12:59 1336031 ----a-w- c:\program files\wrar371cz.exe
2008-04-28 11:58 . 2008-04-28 11:58 14111464 ----a-w- c:\program files\install_atlas_icq6.exe
2007-10-22 01:49 . 2007-10-22 01:49 1805306 ----a-w- c:\program files\NOV2007_d3dx9_36_x64.cab
2007-10-22 01:49 . 2007-10-22 01:49 867848 ----a-w- c:\program files\NOV2007_d3dx10_36_x64.cab
2007-10-22 01:49 . 2007-10-22 01:49 807132 ----a-w- c:\program files\NOV2007_d3dx10_36_x86.cab
2007-10-22 01:49 . 2007-10-22 01:49 49392 ----a-w- c:\program files\NOV2007_X3DAudio_x64.cab
2007-10-22 01:49 . 2007-10-22 01:49 44850 ----a-w- c:\program files\dxdllreg_x86.cab
2007-10-22 01:49 . 2007-10-22 01:49 21744 ----a-w- c:\program files\NOV2007_X3DAudio_x86.cab
2007-10-22 01:49 . 2007-10-22 01:49 200010 ----a-w- c:\program files\NOV2007_XACT_x64.cab
2007-10-22 01:49 . 2007-10-22 01:49 1712608 ----a-w- c:\program files\NOV2007_d3dx9_36_x86.cab
2007-10-22 01:49 . 2007-10-22 01:49 151512 ----a-w- c:\program files\NOV2007_XACT_x86.cab
2003-09-05 15:02 . 2008-04-06 11:48 2640661 ----a-w- c:\program files\blazedvdsetup.exe
2003-09-05 14:43 . 2008-04-06 10:58 6350332 ----a-w- c:\program files\pdvd5_trial_0603.exe
2003-09-05 14:39 . 2008-04-06 10:53 13131534 ----a-w- c:\program files\directdvd.exe
2003-09-05 12:41 . 2008-04-06 10:49 5788656 ----a-w- c:\program files\divxpro51gainbundle.exe
2003-01-16 10:37 . 2008-04-05 09:46 6095438 ----a-w- c:\program files\setupcze.exe
2008-04-06 10:56 . 2008-04-06 10:56 220 --sha-w- c:\windows\dwin.sys
.

((((((((((((((((((((((((((((( SnapShot@2010-09-06_08.04.46 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-09-30 14:45 . 2008-09-30 14:45 91656 c:\windows\WinSxS\x86_Microsoft.MSXML2R_6bd6b9abf345378f_4.1.1.0_x-ww_2a41bceb\msxml4r.dll
+ 2010-09-07 15:30 . 2010-09-07 15:30 16384 c:\windows\Temp\Perflib_Perfdata_200.dat
+ 2007-07-30 17:19 . 2009-08-06 17:24 44768 c:\windows\system32\wups2.dll
+ 2008-04-28 11:48 . 2009-08-06 17:24 35552 c:\windows\system32\wups.dll
+ 2003-11-28 13:48 . 2009-08-06 17:24 53472 c:\windows\system32\wuauclt.exe
- 2003-04-16 12:00 . 2008-04-14 06:52 90112 c:\windows\system32\wshext.dll
+ 2003-04-16 12:00 . 2008-05-09 10:56 90112 c:\windows\system32\wshext.dll
+ 2010-09-03 10:34 . 2009-06-25 08:27 54272 c:\windows\system32\wdigest.dll
+ 2010-09-03 11:53 . 2010-04-21 13:28 46080 c:\windows\system32\tzchange.exe
+ 2003-04-16 12:00 . 2009-06-15 10:45 81408 c:\windows\system32\tlntsess.exe
+ 2003-04-16 12:00 . 2009-06-15 10:45 78336 c:\windows\system32\telnet.exe
+ 2010-09-06 08:07 . 2009-08-06 17:24 44768 c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.4.7600.226\wups2.dll
+ 2010-09-06 08:07 . 2009-08-06 17:24 35552 c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.4.7600.226\wups.dll
+ 2010-09-03 10:34 . 2009-06-25 08:27 56832 c:\windows\system32\secur32.dll
+ 2003-04-16 12:00 . 2009-02-06 10:39 35328 c:\windows\system32\sc.exe
+ 2010-09-03 10:35 . 2009-10-12 13:40 79872 c:\windows\system32\raschap.dll
- 2010-09-03 10:35 . 2008-04-14 06:51 79872 c:\windows\system32\raschap.dll
+ 2003-04-16 12:00 . 2010-09-07 08:14 39992 c:\windows\system32\perfc009.dat
- 2003-04-16 12:00 . 2010-09-03 12:08 39992 c:\windows\system32\perfc009.dat
- 2008-04-29 07:33 . 2008-04-14 06:51 91648 c:\windows\system32\mtxoci.dll
+ 2008-04-29 07:33 . 2008-06-12 14:24 91648 c:\windows\system32\mtxoci.dll
- 2010-09-03 10:35 . 2008-04-14 06:51 66560 c:\windows\system32\mtxclu.dll
+ 2010-09-03 10:35 . 2008-06-12 14:24 66560 c:\windows\system32\mtxclu.dll
+ 2003-11-28 14:06 . 2009-11-27 17:14 17920 c:\windows\system32\msyuv.dll
+ 2003-04-16 12:00 . 2009-11-27 16:09 28672 c:\windows\system32\msvidc32.dll
+ 2003-04-16 12:00 . 2009-11-27 16:09 11264 c:\windows\system32\msrle32.dll
- 2003-04-16 12:00 . 2008-04-14 06:51 11264 c:\windows\system32\msrle32.dll
+ 2009-03-08 02:31 . 2010-06-24 12:27 55296 c:\windows\system32\msfeedsbs.dll
- 2009-03-08 02:31 . 2009-03-08 02:31 55296 c:\windows\system32\msfeedsbs.dll
+ 2003-11-28 13:48 . 2008-06-12 14:24 58880 c:\windows\system32\msdtclog.dll
- 2003-11-28 13:48 . 2008-04-14 06:51 58880 c:\windows\system32\msdtclog.dll
+ 2010-09-03 10:35 . 2008-06-24 16:44 74240 c:\windows\system32\mscms.dll
+ 2010-09-03 10:35 . 2009-09-04 21:05 58880 c:\windows\system32\msasn1.dll
- 2003-04-16 12:00 . 2009-03-08 02:33 25600 c:\windows\system32\jsproxy.dll
+ 2003-04-16 12:00 . 2010-06-24 12:27 25600 c:\windows\system32\jsproxy.dll
+ 2009-09-27 06:35 . 2009-11-27 16:09 48128 c:\windows\system32\iyuv_32.dll
+ 2003-04-16 12:00 . 2009-10-15 16:32 81920 c:\windows\system32\fontsub.dll
+ 2010-09-03 10:34 . 2009-06-24 11:18 92928 c:\windows\system32\drivers\ksecdd.sys
+ 2008-04-28 11:48 . 2009-08-06 17:24 35552 c:\windows\system32\dllcache\wups.dll
+ 2003-11-28 13:48 . 2009-08-06 17:24 53472 c:\windows\system32\dllcache\wuauclt.exe
+ 2008-05-09 10:56 . 2008-05-09 10:56 90112 c:\windows\system32\dllcache\wshext.dll
+ 2009-06-25 08:27 . 2009-06-25 08:27 54272 c:\windows\system32\dllcache\wdigest.dll
+ 2009-06-15 10:45 . 2009-06-15 10:45 81408 c:\windows\system32\dllcache\tlntsess.exe
+ 2009-06-15 10:45 . 2009-06-15 10:45 78336 c:\windows\system32\dllcache\telnet.exe
+ 2009-06-25 08:27 . 2009-06-25 08:27 56832 c:\windows\system32\dllcache\secur32.dll
+ 2003-04-16 12:00 . 2009-02-06 10:39 35328 c:\windows\system32\dllcache\sc.exe
+ 2009-10-12 13:40 . 2009-10-12 13:40 79872 c:\windows\system32\dllcache\raschap.dll
+ 2008-06-12 14:24 . 2008-06-12 14:24 91648 c:\windows\system32\dllcache\mtxoci.dll
+ 2008-06-12 14:24 . 2008-06-12 14:24 66560 c:\windows\system32\dllcache\mtxclu.dll
+ 2009-11-27 17:14 . 2009-11-27 17:14 17920 c:\windows\system32\dllcache\msyuv.dll
+ 2003-04-16 12:00 . 2009-11-27 16:09 28672 c:\windows\system32\dllcache\msvidc32.dll
+ 2009-11-27 16:09 . 2009-11-27 16:09 11264 c:\windows\system32\dllcache\msrle32.dll
+ 2008-06-12 14:24 . 2008-06-12 14:24 58880 c:\windows\system32\dllcache\msdtclog.dll
+ 2008-06-24 16:44 . 2008-06-24 16:44 74240 c:\windows\system32\dllcache\mscms.dll
+ 2009-09-04 21:05 . 2009-09-04 21:05 58880 c:\windows\system32\dllcache\msasn1.dll
+ 2009-06-24 11:18 . 2009-06-24 11:18 92928 c:\windows\system32\dllcache\ksecdd.sys
- 2009-03-08 02:33 . 2009-03-08 02:33 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2009-03-08 02:33 . 2010-06-24 12:27 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2009-11-27 16:09 . 2009-11-27 16:09 48128 c:\windows\system32\dllcache\iyuv_32.dll
+ 2009-12-14 07:10 . 2009-12-14 07:10 33280 c:\windows\system32\dllcache\csrsrv.dll
+ 2003-04-16 12:00 . 2009-08-06 17:24 96480 c:\windows\system32\dllcache\cdm.dll
+ 2010-01-13 14:02 . 2010-01-13 14:02 86016 c:\windows\system32\dllcache\cabview.dll
+ 2009-11-27 16:09 . 2009-11-27 16:09 84992 c:\windows\system32\dllcache\avifil32.dll
+ 2009-07-17 19:04 . 2009-07-17 19:04 58880 c:\windows\system32\dllcache\atl.dll
+ 2010-03-05 14:42 . 2010-03-05 14:42 65536 c:\windows\system32\dllcache\asycfilt.dll
+ 2010-09-03 10:34 . 2009-12-14 07:10 33280 c:\windows\system32\csrsrv.dll
+ 2003-04-16 12:00 . 2009-08-06 17:24 96480 c:\windows\system32\cdm.dll
+ 2003-04-16 12:00 . 2010-01-13 14:02 86016 c:\windows\system32\cabview.dll
- 2003-04-16 12:00 . 2008-04-14 06:51 84992 c:\windows\system32\avifil32.dll
+ 2003-04-16 12:00 . 2009-11-27 16:09 84992 c:\windows\system32\avifil32.dll
- 2010-09-03 10:36 . 2008-04-14 06:51 58880 c:\windows\system32\atl.dll
+ 2010-09-03 10:36 . 2009-07-17 19:04 58880 c:\windows\system32\atl.dll
+ 2003-04-16 12:00 . 2010-03-05 14:42 65536 c:\windows\system32\asycfilt.dll
+ 2010-09-07 07:56 . 2010-09-07 07:56 32768 c:\windows\Installer\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}\icon.exe
+ 2010-09-07 08:07 . 2009-03-08 02:33 12288 c:\windows\ie8updates\KB2183461-IE8\xpshims.dll
+ 2010-09-07 08:07 . 2009-03-08 02:31 55296 c:\windows\ie8updates\KB2183461-IE8\msfeedsbs.dll
+ 2010-09-07 08:07 . 2009-03-08 02:33 25600 c:\windows\ie8updates\KB2183461-IE8\jsproxy.dll
+ 2009-11-27 17:14 . 2009-11-27 17:14 17920 c:\windows\Driver Cache\i386\msyuv.dll
+ 2009-11-27 16:09 . 2009-11-27 16:09 48128 c:\windows\Driver Cache\i386\iyuv_32.dll
+ 2008-05-05 05:25 . 2008-05-05 05:25 3072 c:\windows\system32\xpsp4res.dll
+ 2009-09-27 06:35 . 2009-11-27 16:09 8704 c:\windows\system32\tsbyuv.dll
+ 2009-09-27 06:35 . 2009-11-27 16:09 8704 c:\windows\system32\dllcache\tsbyuv.dll
+ 2009-11-27 16:09 . 2009-11-27 16:09 8704 c:\windows\Driver Cache\i386\tsbyuv.dll
+ 2008-04-28 11:48 . 2009-08-06 17:24 327896 c:\windows\system32\wucltui.dll
+ 2008-04-28 11:48 . 2009-08-06 17:23 575704 c:\windows\system32\wuapi.dll
- 2003-04-16 12:00 . 2008-04-14 06:52 155648 c:\windows\system32\wscript.exe
+ 2003-04-16 12:00 . 2008-05-08 11:24 155648 c:\windows\system32\wscript.exe
- 2002-12-12 11:53 . 2008-04-14 06:52 485376 c:\windows\system32\wmspdmod.dll
+ 2002-12-12 11:53 . 2009-04-03 10:15 485376 c:\windows\system32\wmspdmod.dll
+ 2008-04-06 10:41 . 2009-07-12 10:21 233472 c:\windows\system32\wmpdxm.dll
- 2008-04-06 10:41 . 2008-04-14 06:52 233472 c:\windows\system32\wmpdxm.dll
+ 2010-09-03 10:34 . 2009-06-10 06:16 132096 c:\windows\system32\wkssvc.dll
- 2010-09-03 10:34 . 2008-04-14 06:52 132096 c:\windows\system32\wkssvc.dll
+ 2010-09-03 10:34 . 2009-12-24 07:04 177664 c:\windows\system32\wintrust.dll
+ 2008-04-28 11:53 . 2008-12-16 12:32 354304 c:\windows\system32\winhttp.dll
- 2008-04-28 11:53 . 2008-04-14 06:52 354304 c:\windows\system32\winhttp.dll
+ 2009-03-10 20:18 . 2009-03-10 20:18 969608 c:\windows\system32\WgaTray.exe
+ 2009-03-10 20:18 . 2009-03-10 20:18 265096 c:\windows\system32\WgaLogon.dll
+ 2010-09-03 10:37 . 2009-02-06 10:10 227840 c:\windows\system32\wbem\wmiprvse.exe
+ 2010-09-03 10:37 . 2009-02-09 10:56 453120 c:\windows\system32\wbem\wmiprvsd.dll
+ 2010-09-03 10:37 . 2009-02-09 10:56 473600 c:\windows\system32\wbem\fastprox.dll
+ 2003-04-16 12:00 . 2010-03-10 06:17 420352 c:\windows\system32\vbscript.dll
- 2003-04-16 12:00 . 2009-03-08 02:33 420352 c:\windows\system32\vbscript.dll
+ 2010-09-03 10:34 . 2009-10-15 16:32 119808 c:\windows\system32\t2embed.dll
+ 2003-04-16 12:00 . 2009-08-26 08:02 247326 c:\windows\system32\strmdll.dll
+ 2010-09-03 10:34 . 2009-12-08 09:25 474112 c:\windows\system32\shlwapi.dll
- 2010-09-03 10:34 . 2008-04-14 06:51 474112 c:\windows\system32\shlwapi.dll
+ 2010-09-03 10:34 . 2009-02-09 11:25 111104 c:\windows\system32\services.exe
+ 2003-04-16 12:00 . 2008-05-09 10:56 172032 c:\windows\system32\scrrun.dll
- 2003-04-16 12:00 . 2008-04-14 06:51 172032 c:\windows\system32\scrrun.dll
+ 2003-04-16 12:00 . 2008-05-09 10:56 180224 c:\windows\system32\scrobj.dll
- 2003-04-16 12:00 . 2008-04-14 06:51 180224 c:\windows\system32\scrobj.dll
+ 2010-09-03 10:35 . 2009-02-09 10:56 401408 c:\windows\system32\rpcss.dll
+ 2010-09-03 10:35 . 2009-04-15 14:54 585216 c:\windows\system32\rpcrt4.dll
+ 2010-09-03 10:35 . 2009-10-12 13:40 150016 c:\windows\system32\rastls.dll
- 2003-04-16 12:00 . 2010-09-03 12:08 311604 c:\windows\system32\perfh009.dat
+ 2003-04-16 12:00 . 2010-09-07 08:14 311604 c:\windows\system32\perfh009.dat
- 2003-04-16 12:00 . 2008-04-14 06:51 284160 c:\windows\system32\pdh.dll
+ 2003-04-16 12:00 . 2009-03-06 14:23 284160 c:\windows\system32\pdh.dll
+ 2003-04-16 12:00 . 2010-06-24 12:27 206848 c:\windows\system32\occache.dll
- 2010-09-03 10:35 . 2008-04-14 06:51 271360 c:\windows\system32\oakley.dll
+ 2010-09-03 10:35 . 2009-10-13 10:34 271360 c:\windows\system32\oakley.dll
+ 2010-09-03 10:34 . 2009-02-09 10:56 709632 c:\windows\system32\ntdll.dll
+ 2010-09-03 10:35 . 2008-10-15 16:38 337408 c:\windows\system32\netapi32.dll
- 2010-09-03 10:35 . 2008-04-14 06:51 337408 c:\windows\system32\netapi32.dll
+ 2010-09-03 10:35 . 2008-06-20 17:49 247296 c:\windows\system32\mswsock.dll
- 2010-09-03 10:35 . 2008-04-14 06:51 247296 c:\windows\system32\mswsock.dll
+ 2003-11-28 14:06 . 2009-08-05 09:01 205312 c:\windows\system32\mswebdvd.dll
+ 2010-09-03 10:34 . 2009-09-11 14:19 136192 c:\windows\system32\msv1_0.dll
+ 2003-04-16 12:00 . 2010-06-24 12:27 611840 c:\windows\system32\mstime.dll
- 2003-04-16 12:00 . 2009-03-08 02:32 611840 c:\windows\system32\mstime.dll
+ 2003-11-28 13:48 . 2009-12-17 07:42 343552 c:\windows\system32\mspaint.exe
- 2003-11-28 13:48 . 2008-04-14 06:52 343552 c:\windows\system32\mspaint.exe
+ 2009-03-08 02:32 . 2010-06-24 12:27 599040 c:\windows\system32\msfeeds.dll
- 2003-11-28 13:48 . 2008-04-14 06:51 161792 c:\windows\system32\msdtcuiu.dll
+ 2003-11-28 13:48 . 2008-06-12 14:24 161792 c:\windows\system32\msdtcuiu.dll
- 2003-11-28 13:48 . 2008-04-14 06:51 956928 c:\windows\system32\msdtctm.dll
+ 2003-11-28 13:48 . 2008-06-12 14:24 956928 c:\windows\system32\msdtctm.dll
+ 2003-11-28 13:48 . 2008-06-12 14:24 428032 c:\windows\system32\msdtcprx.dll
+ 2010-09-03 10:34 . 2009-06-25 08:27 729088 c:\windows\system32\lsasrv.dll
+ 2008-04-06 10:41 . 2008-06-10 01:11 103936 c:\windows\system32\logagent.exe
- 2008-04-06 10:41 . 2008-04-14 06:52 103936 c:\windows\system32\logagent.exe
+ 2010-09-03 10:34 . 2009-05-07 15:33 346624 c:\windows\system32\localspl.dll
- 2010-09-03 10:34 . 2008-04-14 06:51 988160 c:\windows\system32\kernel32.dll
+ 2010-09-03 10:34 . 2009-03-21 14:09 988160 c:\windows\system32\kernel32.dll
+ 2010-09-03 10:35 . 2009-06-25 08:27 301568 c:\windows\system32\kerberos.dll
+ 2010-09-03 10:35 . 2009-12-09 05:55 726528 c:\windows\system32\jscript.dll
- 2010-09-03 10:35 . 2009-03-08 02:33 726528 c:\windows\system32\jscript.dll
- 2003-11-28 13:50 . 2008-04-14 06:51 691712 c:\windows\system32\inetcomm.dll
+ 2003-11-28 13:50 . 2010-01-29 15:01 691712 c:\windows\system32\inetcomm.dll
+ 2003-04-16 12:00 . 2010-06-24 12:27 184320 c:\windows\system32\iepeers.dll
+ 2003-04-16 12:00 . 2010-06-24 12:27 387584 c:\windows\system32\iedkcs32.dll
- 2003-04-16 12:00 . 2009-03-08 02:32 173056 c:\windows\system32\ie4uinit.exe
+ 2003-04-16 12:00 . 2010-06-23 12:08 173056 c:\windows\system32\ie4uinit.exe
+ 2010-09-03 10:36 . 2008-10-23 12:42 286720 c:\windows\system32\gdi32.dll
- 2003-11-28 14:31 . 2010-09-03 12:02 117360 c:\windows\system32\FNTCACHE.DAT
+ 2003-11-28 14:31 . 2010-09-07 08:59 117360 c:\windows\system32\FNTCACHE.DAT
+ 2010-09-03 10:36 . 2008-07-07 20:29 253952 c:\windows\system32\es.dll
+ 2010-09-03 10:34 . 2008-06-20 11:51 361600 c:\windows\system32\drivers\tcpip.sys
+ 2010-09-03 10:34 . 2008-05-08 14:02 203136 c:\windows\system32\drivers\rmcast.sys
+ 2010-09-03 10:34 . 2010-02-24 13:11 455680 c:\windows\system32\drivers\mrxsmb.sys
+ 2010-09-03 11:45 . 2008-06-14 17:35 272128 c:\windows\system32\drivers\bthport.sys
+ 2010-09-03 10:34 . 2008-08-14 10:04 138496 c:\windows\system32\drivers\afd.sys
- 2010-09-03 10:36 . 2008-04-14 06:51 147968 c:\windows\system32\dnsapi.dll
+ 2010-09-03 10:36 . 2008-06-20 17:49 147968 c:\windows\system32\dnsapi.dll
+ 2008-04-28 11:48 . 2009-08-06 17:24 327896 c:\windows\system32\dllcache\wucltui.dll
+ 2008-04-28 11:48 . 2009-08-06 17:23 575704 c:\windows\system32\dllcache\wuapi.dll
+ 2008-05-08 11:24 . 2008-05-08 11:24 155648 c:\windows\system32\dllcache\wscript.exe
- 2010-09-03 11:54 . 2008-04-14 06:52 485376 c:\windows\system32\dllcache\wmspdmod.dll
+ 2010-09-03 11:54 . 2009-04-03 10:15 485376 c:\windows\system32\dllcache\wmspdmod.dll
- 2010-09-03 11:54 . 2008-04-14 06:52 233472 c:\windows\system32\dllcache\wmpdxm.dll
+ 2010-09-03 11:54 . 2009-07-12 10:21 233472 c:\windows\system32\dllcache\wmpdxm.dll
+ 2009-06-10 06:16 . 2009-06-10 06:16 132096 c:\windows\system32\dllcache\wkssvc.dll
+ 2009-12-24 07:04 . 2009-12-24 07:04 177664 c:\windows\system32\dllcache\wintrust.dll
+ 2009-03-08 02:34 . 2010-06-24 12:27 916480 c:\windows\system32\dllcache\wininet.dll
+ 2008-12-16 12:32 . 2008-12-16 12:32 354304 c:\windows\system32\dllcache\winhttp.dll
+ 2009-03-10 20:18 . 2009-03-10 20:18 969608 c:\windows\system32\dllcache\WgaTray.exe
+ 2009-03-10 20:18 . 2009-03-10 20:18 265096 c:\windows\system32\dllcache\wgaLogon.dll
+ 2009-03-08 02:33 . 2010-03-10 06:17 420352 c:\windows\system32\dllcache\vbscript.dll
- 2009-03-08 02:33 . 2009-03-08 02:33 420352 c:\windows\system32\dllcache\vbscript.dll
+ 2008-06-20 11:08 . 2010-02-11 12:02 226880 c:\windows\system32\dllcache\tcpip6.sys
+ 2008-06-20 11:51 . 2008-06-20 11:51 361600 c:\windows\system32\dllcache\tcpip.sys
+ 2003-04-16 12:00 . 2009-08-26 08:02 247326 c:\windows\system32\dllcache\strmdll.dll
+ 2010-06-30 12:33 . 2010-06-30 12:33 149504 c:\windows\system32\dllcache\schannel.dll
+ 2009-01-07 16:20 . 2009-12-08 09:25 474112 c:\windows\system32\dllcache\shlwapi.dll
- 2009-01-07 16:20 . 2009-01-07 16:20 474112 c:\windows\system32\dllcache\shlwapi.dll
+ 2008-05-09 10:56 . 2008-05-09 10:56 172032 c:\windows\system32\dllcache\scrrun.dll
+ 2008-05-09 10:56 . 2008-05-09 10:56 180224 c:\windows\system32\dllcache\scrobj.dll
+ 2009-04-15 14:54 . 2009-04-15 14:54 585216 c:\windows\system32\dllcache\rpcrt4.dll
+ 2009-10-12 13:40 . 2009-10-12 13:40 150016 c:\windows\system32\dllcache\rastls.dll
+ 2009-03-08 02:34 . 2010-06-24 12:27 206848 c:\windows\system32\dllcache\occache.dll
+ 2009-10-13 10:34 . 2009-10-13 10:34 271360 c:\windows\system32\dllcache\oakley.dll
+ 2008-06-20 17:49 . 2008-06-20 17:49 247296 c:\windows\system32\dllcache\mswsock.dll
+ 2009-08-05 09:01 . 2009-08-05 09:01 205312 c:\windows\system32\dllcache\mswebdvd.dll
+ 2009-06-25 08:27 . 2009-09-11 14:19 136192 c:\windows\system32\dllcache\msv1_0.dll
+ 2009-03-08 02:32 . 2010-06-24 12:27 611840 c:\windows\system32\dllcache\mstime.dll
- 2009-03-08 02:32 . 2009-03-08 02:32 611840 c:\windows\system32\dllcache\mstime.dll
+ 2009-12-17 07:42 . 2009-12-17 07:42 343552 c:\windows\system32\dllcache\mspaint.exe
+ 2008-06-12 14:24 . 2008-06-12 14:24 161792 c:\windows\system32\dllcache\msdtcuiu.dll
+ 2008-06-12 14:24 . 2008-06-12 14:24 956928 c:\windows\system32\dllcache\msdtctm.dll
+ 2008-06-12 14:24 . 2008-06-12 14:24 428032 c:\windows\system32\dllcache\msdtcprx.dll
- 2008-04-06 10:41 . 2008-04-14 06:52 103936 c:\windows\system32\dllcache\logagent.exe
+ 2008-04-06 10:41 . 2008-06-10 01:11 103936 c:\windows\system32\dllcache\logagent.exe
+ 2009-05-07 15:33 . 2009-05-07 15:33 346624 c:\windows\system32\dllcache\localspl.dll
+ 2009-03-21 14:09 . 2009-03-21 14:09 988160 c:\windows\system32\dllcache\kernel32.dll
+ 2009-06-25 08:27 . 2009-06-25 08:27 301568 c:\windows\system32\dllcache\kerberos.dll
- 2009-03-08 02:33 . 2009-03-08 02:33 726528 c:\windows\system32\dllcache\jscript.dll
+ 2009-03-08 02:33 . 2009-12-09 05:55 726528 c:\windows\system32\dllcache\jscript.dll
+ 2010-01-29 15:01 . 2010-01-29 15:01 691712 c:\windows\system32\dllcache\inetcomm.dll
+ 2009-03-08 02:31 . 2010-06-24 12:27 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2009-03-08 12:09 . 2010-06-24 12:27 387584 c:\windows\system32\dllcache\iedkcs32.dll
- 2009-03-08 02:32 . 2009-03-08 02:32 173056 c:\windows\system32\dllcache\ie4uinit.exe
+ 2009-03-08 02:32 . 2010-06-23 12:08 173056 c:\windows\system32\dllcache\ie4uinit.exe
+ 2008-10-23 12:42 . 2008-10-23 12:42 286720 c:\windows\system32\dllcache\gdi32.dll
+ 2008-07-07 20:29 . 2008-07-07 20:29 253952 c:\windows\system32\dllcache\es.dll
+ 2008-06-20 17:49 . 2008-06-20 17:49 147968 c:\windows\system32\dllcache\dnsapi.dll
+ 2008-05-07 09:07 . 2008-05-07 09:07 135168 c:\windows\system32\dllcache\cscript.exe
+ 2010-04-20 05:32 . 2010-04-20 05:32 285696 c:\windows\system32\dllcache\atmfd.dll
+ 2008-06-20 11:40 . 2008-08-14 10:04 138496 c:\windows\system32\dllcache\afd.sys
+ 2010-02-12 04:35 . 2010-02-12 04:35 100864 c:\windows\system32\dllcache\6to4svc.dll
+ 2003-04-16 12:00 . 2008-05-07 09:07 135168 c:\windows\system32\cscript.exe
- 2010-09-03 10:36 . 2008-04-14 06:37 285696 c:\windows\system32\atmfd.dll
+ 2010-09-03 10:36 . 2010-04-20 05:32 285696 c:\windows\system32\atmfd.dll
+ 2010-09-03 10:34 . 2009-02-09 10:56 684032 c:\windows\system32\advapi32.dll
- 2010-09-03 10:34 . 2008-04-14 06:51 684032 c:\windows\system32\advapi32.dll
+ 2008-06-13 08:16 . 2010-02-12 04:35 100864 c:\windows\system32\6to4svc.dll
+ 2003-11-28 13:50 . 2010-06-14 14:31 744448 c:\windows\PCHealth\HelpCtr\Binaries\helpsvc.exe
- 2003-11-28 13:50 . 2008-04-14 06:52 744448 c:\windows\PCHealth\HelpCtr\Binaries\helpsvc.exe
+ 2010-09-07 07:56 . 2010-09-07 07:56 432640 c:\windows\Installer\301170.msi
+ 2010-09-07 07:58 . 2009-03-08 02:33 420352 c:\windows\ie8updates\KB981332-IE8\vbscript.dll
+ 2010-09-07 07:58 . 2009-05-26 11:40 391032 c:\windows\ie8updates\KB981332-IE8\spuninst\updspapi.dll
+ 2010-09-07 07:58 . 2009-05-26 11:40 233848 c:\windows\ie8updates\KB981332-IE8\spuninst\spuninst.exe
+ 2010-09-07 08:28 . 2008-07-08 12:59 391032 c:\windows\ie8updates\KB976662-IE8\spuninst\updspapi.dll
+ 2010-09-07 08:28 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB976662-IE8\spuninst\spuninst.exe
+ 2010-09-07 08:28 . 2009-06-22 06:48 726528 c:\windows\ie8updates\KB976662-IE8\jscript.dll
+ 2010-09-07 07:56 . 2008-07-08 12:59 391032 c:\windows\ie8updates\KB971961-IE8\spuninst\updspapi.dll
+ 2010-09-07 07:56 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB971961-IE8\spuninst\spuninst.exe
+ 2010-09-07 07:56 . 2009-03-08 02:33 726528 c:\windows\ie8updates\KB971961-IE8\jscript.dll
+ 2010-09-07 08:07 . 2009-03-08 02:34 914944 c:\windows\ie8updates\KB2183461-IE8\wininet.dll
+ 2010-09-07 08:07 . 2010-02-22 14:21 391032 c:\windows\ie8updates\KB2183461-IE8\spuninst\updspapi.dll
+ 2010-09-07 08:07 . 2009-05-26 09:01 233848 c:\windows\ie8updates\KB2183461-IE8\spuninst\spuninst.exe
+ 2010-09-07 08:07 . 2009-03-08 02:34 109568 c:\windows\ie8updates\KB2183461-IE8\occache.dll
+ 2010-09-07 08:07 . 2009-03-08 02:32 611840 c:\windows\ie8updates\KB2183461-IE8\mstime.dll
+ 2010-09-07 08:07 . 2009-03-08 02:32 594432 c:\windows\ie8updates\KB2183461-IE8\msfeeds.dll
+ 2010-09-07 08:07 . 2009-03-08 02:33 246784 c:\windows\ie8updates\KB2183461-IE8\ieproxy.dll
+ 2010-09-07 08:07 . 2009-03-08 02:31 183808 c:\windows\ie8updates\KB2183461-IE8\iepeers.dll
+ 2010-09-07 08:07 . 2009-03-08 02:35 742912 c:\windows\ie8updates\KB2183461-IE8\iedvtool.dll
+ 2010-09-07 08:07 . 2009-03-08 12:09 391536 c:\windows\ie8updates\KB2183461-IE8\iedkcs32.dll
+ 2010-09-07 08:07 . 2009-03-08 02:32 173056 c:\windows\ie8updates\KB2183461-IE8\ie4uinit.exe
+ 2010-09-07 07:57 . 2010-02-24 13:11 455680 c:\windows\Driver Cache\i386\mrxsmb.sys
+ 2010-09-07 07:58 . 2008-06-14 17:35 272128 c:\windows\Driver Cache\i386\bthport.sys
+ 2003-04-16 12:00 . 2009-11-21 16:03 471552 c:\windows\AppPatch\aclayers.dll
+ 2010-09-07 07:57 . 2009-08-13 13:56 1748992 c:\windows\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6001.22319_x-ww_f0b4c2df\GdiPlus.dll
+ 2008-09-30 14:42 . 2008-09-30 14:42 1286152 c:\windows\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9870.0_x-ww_a32d74cf\msxml4.dll
+ 2003-11-28 13:48 . 2009-08-06 17:23 1929952 c:\windows\system32\wuaueng.dll
+ 2003-04-16 12:00 . 2010-04-08 12:03 2113536 c:\windows\system32\WMVCore.dll
+ 2008-04-06 10:41 . 2010-03-19 16:05 4874240 c:\windows\system32\wmp.dll
- 2008-04-06 10:41 . 2008-04-14 06:52 4874240 c:\windows\system32\wmp.dll
+ 2008-04-06 10:41 . 2008-06-10 04:11 1053696 c:\windows\system32\WMNetmgr.dll
+ 2010-09-03 10:34 . 2010-06-24 12:27 1210368 c:\windows\system32\urlmon.dll
+ 2010-09-03 10:34 . 2010-07-27 06:30 8466432 c:\windows\system32\shell32.dll
+ 2003-04-16 12:00 . 2009-07-17 16:17 1437696 c:\windows\system32\query.dll
- 2003-04-16 12:00 . 2008-04-14 06:51 1437696 c:\windows\system32\query.dll
+ 2005-08-30 07:26 . 2010-02-05 18:27 1294336 c:\windows\system32\quartz.dll
+ 2010-09-03 10:33 . 2010-04-28 18:15 2192128 c:\windows\system32\ntoskrnl.exe
+ 2010-09-03 10:33 . 2010-04-28 05:45 2068992 c:\windows\system32\ntkrnlpa.exe
+ 2010-09-03 11:54 . 2008-09-10 01:16 1307648 c:\windows\system32\msxml6.dll
+ 2008-09-30 14:43 . 2008-09-30 14:43 1286152 c:\windows\system32\msxml4.dll
+ 2003-11-28 13:48 . 2009-06-10 07:21 2066432 c:\windows\system32\mstscax.dll
+ 2010-09-03 10:35 . 2010-06-24 12:27 5951488 c:\windows\system32\mshtml.dll
+ 2009-03-10 20:18 . 2009-03-10 20:18 1482112 c:\windows\system32\LegitCheckControl.dll
+ 2009-03-08 02:32 . 2010-06-24 12:27 1986560 c:\windows\system32\iertutil.dll
+ 2003-11-28 13:48 . 2009-08-06 17:23 1929952 c:\windows\system32\dllcache\wuaueng.dll
+ 2008-04-06 10:41 . 2010-04-08 12:03 2113536 c:\windows\system32\dllcache\WMVCore.dll
+ 2010-09-03 11:54 . 2010-03-19 16:05 4874240 c:\windows\system32\dllcache\wmp.dll
- 2010-09-03 11:54 . 2008-04-14 06:52 4874240 c:\windows\system32\dllcache\wmp.dll
+ 2008-04-06 10:41 . 2008-06-10 04:11 1053696 c:\windows\system32\dllcache\WMNetmgr.dll
+ 2010-06-24 09:02 . 2010-06-24 09:02 1851904 c:\windows\system32\dllcache\win32k.sys
+ 2009-03-08 02:34 . 2010-06-24 12:27 1210368 c:\windows\system32\dllcache\urlmon.dll
+ 2010-07-27 06:30 . 2010-07-27 06:30 8466432 c:\windows\system32\dllcache\shell32.dll
+ 2009-07-17 16:17 . 2009-07-17 16:17 1437696 c:\windows\system32\dllcache\query.dll
+ 2009-11-27 17:14 . 2010-02-05 18:27 1294336 c:\windows\system32\dllcache\quartz.dll
+ 2010-09-03 11:54 . 2008-09-10 01:16 1307648 c:\windows\system32\dllcache\msxml6.dll
+ 2010-06-14 07:43 . 2010-06-14 07:43 1172480 c:\windows\system32\dllcache\msxml3.dll
+ 2003-11-28 13:48 . 2009-06-10 07:21 2066432 c:\windows\system32\dllcache\mstscax.dll
+ 2010-01-29 15:01 . 2010-01-29 15:01 1315328 c:\windows\system32\dllcache\msoe.dll
+ 2009-03-08 02:41 . 2010-06-24 12:27 5951488 c:\windows\system32\dllcache\mshtml.dll
+ 2010-09-07 08:07 . 2009-03-08 02:34 1206784 c:\windows\ie8updates\KB2183461-IE8\urlmon.dll
+ 2010-09-07 08:07 . 2009-03-08 02:41 5937152 c:\windows\ie8updates\KB2183461-IE8\mshtml.dll
+ 2010-09-07 08:07 . 2009-03-08 02:32 1985024 c:\windows\ie8updates\KB2183461-IE8\iertutil.dll
+ 2010-09-07 07:53 . 2010-04-28 18:15 2192128 c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2010-09-07 07:53 . 2010-04-28 05:45 2026496 c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2010-09-07 07:53 . 2010-04-28 05:45 2068992 c:\windows\Driver Cache\i386\ntkrnlpa.exe
+ 2010-09-07 07:53 . 2010-04-28 05:45 2148352 c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2008-07-26 12:42 . 2010-08-03 09:09 35962312 c:\windows\system32\MRT.exe
+ 2009-03-08 02:39 . 2010-06-24 15:57 11077120 c:\windows\system32\ieframe.dll
+ 2010-06-24 15:57 . 2010-06-24 15:57 11077120 c:\windows\system32\dllcache\ieframe.dll
+ 2010-09-07 08:07 . 2009-03-08 02:39 11063808 c:\windows\ie8updates\KB2183461-IE8\ieframe.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpywareTerminatorUpdate"="c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe" [2010-09-03 3037696]
"Google Update"="c:\documents and settings\TISA\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" [2010-09-03 136176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CM-SmWizard"="c:\windows\System\SmWizard.exe" [2003-08-01 1355776]
"mouseElf"="c:\progra~1\GENIUS~1\GNETMOUS.EXE" [2003-05-13 163840]
"nod32kui"="c:\program files\Eset\nod32kui.exe" [2008-04-01 949376]
"SpywareTerminator"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2010-09-03 2176512]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-04-06 77824]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0smrgdf c:\program files\iolo\System Mechanic Professional 6\\0

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BrowserChoice]
2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 06:52 1695232 ----a-w- c:\program files\Messenger\msmsgs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2008-04-06 10:43 77824 ----a-w- c:\program files\QuickTime\qttask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
2003-12-13 00:50 33792 ----a-w- c:\program files\Winamp\winampa.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"=

R1 nod32drv;nod32drv;c:\windows\system32\drivers\nod32drv.sys [1.4.2008 7:44 15424]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [3.9.2010 10:00 142592]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [14.5.2010 12:33 246520]
S3 M1000Srv;M5603C USB2.0 Camera Driver;c:\windows\system32\drivers\M1000KNT.sys [1.6.2010 8:51 276930]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Connection Wizard,ShellNext = iexplore
IE: &ICQ Toolbar Search - c:\program files\ICQToolbar\toolbaru.dll/SEARCH.HTML
IE: Download All by FlashGet - c:\program files\FlashGet\jc_all.htm
IE: Download using FlashGet - c:\program files\FlashGet\jc_link.htm
IE: {{71BFC818-0CED-42D6-9C87-5142918957EE} - c:\program files\ICQ7.1\ICQ.exe
IE: {{66566BD7-FF3C-46a8-97AB-A60ECC45BDD2} - {71F1BA92-1F94-40F6-B90B-1FCB61C17E8D} - c:\program files\Microton 2006\Eurotran\etran_i.dll
IE: {{6740485C-7614-4d47-B8FC-AF7E5E99A2BD} - {7F41BAC6-8446-49BF-ABAA-69820F816638} - c:\program files\Microton 2006\Eurotran\etran_i.dll
IE: {{9EE61AF4-AC5B-42dd-9EBF-9DC30124C338} - {6C7FB4BA-53BF-4e0f-8A53-1DA8770264F5} - c:\program files\Microton 2006\Lexie\lexie.dll
LSP: c:\windows\System32\imon.dll
TCP: {FE7C524A-783C-457D-BD53-29F2FFBE1E94} = 10.114.17.1,217.117.216.7
DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - hxxp://game09.zylom.com/activex/zylomgamesplayer.cab
FF - ProfilePath - c:\documents and settings\TISA\Data aplikací\Mozilla\Firefox\Profiles\xxcbgs0b.default\
FF - prefs.js: browser.startup.homepage - google.cz
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8 ... &gfns=1&q=
FF - component: c:\program files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}\components\SkypeFfComponent.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-09-07 17:30
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'lsass.exe'(720)
c:\windows\System32\imon.dll
c:\program files\Eset\pr_imon.dll

- - - - - - - > 'explorer.exe'(1232)
c:\windows\system32\webcheck.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Eset\nod32krn.exe
c:\program files\Spyware Terminator\sp_rsser.exe
.
**************************************************************************
.
Celkový čas: 2010-09-07 17:35:22 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-09-07 15:35
ComboFix2.txt 2010-09-06 08:10

Před spuštěním: Volných bajtů: 23 459 680 256
Po spuštění: Volných bajtů: 23 434 874 880

- - End Of File - - 9382F61FA7683E67E31B829EC7675598

#14 Příspěvek od **motji** » 07 zář 2010 20:26

Vypadá to dobře, co myslíte?

Odinstalujte combofix přes Start - Spustit
- zkopírujte do okénka:

ComboFix /Uninstall

-stiskněte Enter
-To odinstaluje ComboFix a smaže s ním související soubory a složky.

***********

Stáhněte T-Cleaner
http://sweb.cz/Marinus/T-Cleaner.exe

-Spusťte,pro potvrzení volby mačkejte klávesu A, Enter
-po použití prográmek vymažte.Pozor,antiviry ho mohou falešně označit za vir

***********

Z mého podpisu stahněte Ccleaner
- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru

Obrázek

záložka čistič
- nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
- po analýze klikněte na Spustit Ccleaner

Obrázek

záložka Registry
- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy

ok

zavřít

Záložka Nástroje
- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.

Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.

***********

Stahněte OTC a použijte
http://oldtimer.geekstogo.com/OTC.exe
-vyčistí tempy a po použitých programech

***********

Vložte nový log ze RSIT a řekněte co počítač, jak se chová, už je vše v pořádku?

*****************************

:arrow:Stáhněte OTM http://oldtimer.geekstogo.com/OTM.exe
Stáhněte na plochu Otm, 2krát klikněte na Otm,spustí se program,
Do levého okna "Paste Instructions for Items to be Moved" pod žlutou čáru zkopírujete skript

Kód: Vybrat vše

:processes
explorer.exe
 
:files
C:\WINDOWS\system32\*.tmp.dll /s
C:\WINDOWS\system32\SET*.tmp /s
C:\WINDOWS\*.tmp /s

:commands
[emptytemp]
[EMPTYFLASH]
[Reboot]

-klikněte na červené tlačítko Moveit!
-sem vložte obsah zeleného okénka
-Pokud se bude chtít restartovat pc, dejte YES,log pak najdete C:\_OTM\MovedFiles. Log vložte sem

banaho · #15 Příspěvek od **banaho** » 08 zář 2010 09:03

Vše provedeno. PC se chová normálně, práce s ním je viditelně rychlejší.

OTM:

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
DllUnregisterServer procedure not found in C:\WINDOWS\system32\drivers\_004525_.tmp.dll
C:\WINDOWS\system32\drivers\_004525_.tmp.dll moved successfully.
C:\WINDOWS\system32\SET1A5D.tmp moved successfully.
C:\WINDOWS\system32\SET1A62.tmp moved successfully.
C:\WINDOWS\system32\SET1A65.tmp moved successfully.
C:\WINDOWS\system32\SET1A67.tmp moved successfully.
C:\WINDOWS\system32\SET1A68.tmp moved successfully.
C:\WINDOWS\system32\SET1A69.tmp moved successfully.
C:\WINDOWS\system32\SET1A70.tmp moved successfully.
C:\WINDOWS\system32\SET1A71.tmp moved successfully.
C:\WINDOWS\system32\SET1A74.tmp moved successfully.
C:\WINDOWS\system32\SET1A93.tmp moved successfully.
C:\WINDOWS\system32\SET1AA1.tmp moved successfully.
C:\WINDOWS\system32\SET1AB4.tmp moved successfully.
C:\WINDOWS\system32\SET1AC7.tmp moved successfully.
C:\WINDOWS\system32\SET1AC8.tmp moved successfully.
C:\WINDOWS\system32\SET1ACD.tmp moved successfully.
C:\WINDOWS\system32\SET1AD2.tmp moved successfully.
C:\WINDOWS\system32\SET1AD3.tmp moved successfully.
C:\WINDOWS\system32\SET1AD8.tmp moved successfully.
C:\WINDOWS\system32\SET1AE3.tmp moved successfully.
C:\WINDOWS\system32\SET1AE4.tmp moved successfully.
C:\WINDOWS\system32\SET1AE5.tmp moved successfully.
C:\WINDOWS\system32\SET1AE8.tmp moved successfully.
C:\WINDOWS\system32\SET1AF0.tmp moved successfully.
C:\WINDOWS\system32\SET1AF1.tmp moved successfully.
C:\WINDOWS\system32\SET1AF2.tmp moved successfully.
C:\WINDOWS\system32\SET1AF3.tmp moved successfully.
C:\WINDOWS\system32\SET1AF6.tmp moved successfully.
C:\WINDOWS\system32\SET1AF8.tmp moved successfully.
C:\WINDOWS\system32\SET1AFA.tmp moved successfully.
C:\WINDOWS\system32\SET1B20.tmp moved successfully.
C:\WINDOWS\system32\SET1B3F.tmp moved successfully.
C:\WINDOWS\system32\SET1B40.tmp moved successfully.
C:\WINDOWS\system32\SET1B53.tmp moved successfully.
C:\WINDOWS\system32\SET1B68.tmp moved successfully.
C:\WINDOWS\system32\SET1B69.tmp moved successfully.
C:\WINDOWS\system32\SET1B6A.tmp moved successfully.
C:\WINDOWS\system32\SET1B72.tmp moved successfully.
C:\WINDOWS\system32\SET1B73.tmp moved successfully.
C:\WINDOWS\system32\SET1B74.tmp moved successfully.
C:\WINDOWS\system32\SET1B75.tmp moved successfully.
C:\WINDOWS\system32\SET1B76.tmp moved successfully.
C:\WINDOWS\system32\SET1B7C.tmp moved successfully.
C:\WINDOWS\system32\SET1B81.tmp moved successfully.
C:\WINDOWS\system32\SET1B82.tmp moved successfully.
C:\WINDOWS\system32\SET1B87.tmp moved successfully.
C:\WINDOWS\system32\SET1B88.tmp moved successfully.
C:\WINDOWS\system32\SET1B8A.tmp moved successfully.
C:\WINDOWS\system32\SET1B8B.tmp moved successfully.
C:\WINDOWS\system32\SET1B95.tmp moved successfully.
C:\WINDOWS\system32\SET1BA0.tmp moved successfully.
C:\WINDOWS\system32\SET1BA1.tmp moved successfully.
C:\WINDOWS\system32\SET1BA4.tmp moved successfully.
C:\WINDOWS\system32\SET1BA7.tmp moved successfully.
C:\WINDOWS\system32\SET1BB1.tmp moved successfully.
C:\WINDOWS\system32\SET1BB2.tmp moved successfully.
C:\WINDOWS\system32\SET1BB5.tmp moved successfully.
C:\WINDOWS\system32\SET1BB8.tmp moved successfully.
C:\WINDOWS\system32\SET1BB9.tmp moved successfully.
C:\WINDOWS\system32\SET1BBA.tmp moved successfully.
C:\WINDOWS\system32\SET1BBB.tmp moved successfully.
C:\WINDOWS\system32\SET1BBC.tmp moved successfully.
C:\WINDOWS\system32\SET1BC0.tmp moved successfully.
C:\WINDOWS\system32\SET1BCD.tmp moved successfully.
C:\WINDOWS\system32\SET1BD2.tmp moved successfully.
C:\WINDOWS\system32\SET1BD4.tmp moved successfully.
C:\WINDOWS\system32\SET1BD6.tmp moved successfully.
C:\WINDOWS\system32\SET1BD7.tmp moved successfully.
C:\WINDOWS\system32\SET1BD8.tmp moved successfully.
C:\WINDOWS\system32\SET1BD9.tmp moved successfully.
C:\WINDOWS\system32\SET1BDC.tmp moved successfully.
C:\WINDOWS\system32\SET1BDF.tmp moved successfully.
C:\WINDOWS\system32\SET1BE9.tmp moved successfully.
C:\WINDOWS\system32\SET1BEA.tmp moved successfully.
C:\WINDOWS\system32\SET1BED.tmp moved successfully.
C:\WINDOWS\system32\SET1BEE.tmp moved successfully.
C:\WINDOWS\system32\SET1BEF.tmp moved successfully.
C:\WINDOWS\system32\SET1BF5.tmp moved successfully.
C:\WINDOWS\system32\SET1BF6.tmp moved successfully.
C:\WINDOWS\system32\SET1BF7.tmp moved successfully.
C:\WINDOWS\system32\SET1BFE.tmp moved successfully.
C:\WINDOWS\system32\SET1BFF.tmp moved successfully.
C:\WINDOWS\system32\SET1C05.tmp moved successfully.
C:\WINDOWS\system32\SET1C06.tmp moved successfully.
C:\WINDOWS\system32\SET1C07.tmp moved successfully.
C:\WINDOWS\system32\SET1C08.tmp moved successfully.
C:\WINDOWS\system32\SET1C0A.tmp moved successfully.
C:\WINDOWS\system32\SET1C10.tmp moved successfully.
C:\WINDOWS\system32\SET1C1D.tmp moved successfully.
C:\WINDOWS\system32\SET1C1F.tmp moved successfully.
C:\WINDOWS\system32\SET1C21.tmp moved successfully.
C:\WINDOWS\system32\SET1C22.tmp moved successfully.
C:\WINDOWS\system32\SET1C23.tmp moved successfully.
C:\WINDOWS\system32\SET1C2F.tmp moved successfully.
C:\WINDOWS\system32\SET1C33.tmp moved successfully.
C:\WINDOWS\system32\SET1C34.tmp moved successfully.
C:\WINDOWS\system32\SET1C39.tmp moved successfully.
C:\WINDOWS\system32\SET1C3B.tmp moved successfully.
C:\WINDOWS\system32\SET1C3F.tmp moved successfully.
C:\WINDOWS\system32\SET1C50.tmp moved successfully.
C:\WINDOWS\system32\SET1C53.tmp moved successfully.
C:\WINDOWS\system32\SET1C58.tmp moved successfully.
C:\WINDOWS\system32\SET1C5F.tmp moved successfully.
C:\WINDOWS\system32\SET1C60.tmp moved successfully.
C:\WINDOWS\system32\SET1C63.tmp moved successfully.
C:\WINDOWS\system32\SET1C64.tmp moved successfully.
C:\WINDOWS\system32\SET1C65.tmp moved successfully.
C:\WINDOWS\system32\SET1C66.tmp moved successfully.
C:\WINDOWS\system32\SET1C67.tmp moved successfully.
C:\WINDOWS\system32\SET1C69.tmp moved successfully.
C:\WINDOWS\system32\SET1C6A.tmp moved successfully.
C:\WINDOWS\system32\SET1C6B.tmp moved successfully.
C:\WINDOWS\system32\SET1C6D.tmp moved successfully.
C:\WINDOWS\system32\SET1C6E.tmp moved successfully.
C:\WINDOWS\system32\SET1C6F.tmp moved successfully.
C:\WINDOWS\system32\SET1C72.tmp moved successfully.
C:\WINDOWS\system32\SET1C75.tmp moved successfully.
C:\WINDOWS\system32\SET1C7A.tmp moved successfully.
C:\WINDOWS\system32\SET1C7B.tmp moved successfully.
C:\WINDOWS\system32\SET1C81.tmp moved successfully.
C:\WINDOWS\system32\SET1C86.tmp moved successfully.
C:\WINDOWS\system32\SET1C87.tmp moved successfully.
C:\WINDOWS\system32\SET1C88.tmp moved successfully.
C:\WINDOWS\system32\SET1C8A.tmp moved successfully.
C:\WINDOWS\system32\SET1CAE.tmp moved successfully.
C:\WINDOWS\system32\SET1CB0.tmp moved successfully.
C:\WINDOWS\system32\SET1CBA.tmp moved successfully.
C:\WINDOWS\system32\SET1CCA.tmp moved successfully.
C:\WINDOWS\system32\SET1CCB.tmp moved successfully.
C:\WINDOWS\system32\SET1CCE.tmp moved successfully.
C:\WINDOWS\system32\SET1CD2.tmp moved successfully.
C:\WINDOWS\system32\SET1CD5.tmp moved successfully.
C:\WINDOWS\system32\SET1CDF.tmp moved successfully.
C:\WINDOWS\system32\SET1CE1.tmp moved successfully.
C:\WINDOWS\system32\SET1CE7.tmp moved successfully.
C:\WINDOWS\system32\SET1CEF.tmp moved successfully.
C:\WINDOWS\system32\SET1CF0.tmp moved successfully.
C:\WINDOWS\system32\SET1CF3.tmp moved successfully.
C:\WINDOWS\system32\SET1CF4.tmp moved successfully.
C:\WINDOWS\system32\SET1D01.tmp moved successfully.
C:\WINDOWS\system32\SET1D06.tmp moved successfully.
C:\WINDOWS\system32\SET1D07.tmp moved successfully.
C:\WINDOWS\system32\SET1D96.tmp moved successfully.
C:\WINDOWS\system32\SET1D9A.tmp moved successfully.
C:\WINDOWS\system32\SET1D9C.tmp moved successfully.
C:\WINDOWS\system32\SET1D9D.tmp moved successfully.
C:\WINDOWS\system32\SET1DA1.tmp moved successfully.
C:\WINDOWS\system32\SET1DA8.tmp moved successfully.
C:\WINDOWS\system32\SET1DAA.tmp moved successfully.
C:\WINDOWS\system32\SET1DAD.tmp moved successfully.
C:\WINDOWS\system32\SET1DAE.tmp moved successfully.
C:\WINDOWS\system32\SET1DB2.tmp moved successfully.
C:\WINDOWS\system32\SET1DBF.tmp moved successfully.
C:\WINDOWS\system32\SET1DC1.tmp moved successfully.
C:\WINDOWS\system32\SET1DC2.tmp moved successfully.
C:\WINDOWS\system32\SET1DC3.tmp moved successfully.
C:\WINDOWS\system32\SET1DC5.tmp moved successfully.
C:\WINDOWS\system32\SET1DC7.tmp moved successfully.
C:\WINDOWS\system32\SET1DCC.tmp moved successfully.
C:\WINDOWS\system32\SET1DCE.tmp moved successfully.
C:\WINDOWS\system32\SET1DCF.tmp moved successfully.
C:\WINDOWS\system32\SET1DD6.tmp moved successfully.
C:\WINDOWS\system32\SET1DE2.tmp moved successfully.
C:\WINDOWS\system32\SET1DE5.tmp moved successfully.
C:\WINDOWS\system32\SET1DE6.tmp moved successfully.
C:\WINDOWS\system32\SET1DE7.tmp moved successfully.
C:\WINDOWS\system32\SET1DEB.tmp moved successfully.
C:\WINDOWS\system32\SET1DF3.tmp moved successfully.
C:\WINDOWS\system32\SET1DFB.tmp moved successfully.
C:\WINDOWS\system32\SET1DFD.tmp moved successfully.
C:\WINDOWS\system32\SET1E09.tmp moved successfully.
C:\WINDOWS\system32\SET1E0B.tmp moved successfully.
C:\WINDOWS\system32\SET1E0F.tmp moved successfully.
C:\WINDOWS\system32\SET1E1F.tmp moved successfully.
C:\WINDOWS\system32\SET1E25.tmp moved successfully.
C:\WINDOWS\system32\SET1E27.tmp moved successfully.
C:\WINDOWS\system32\SET1E2F.tmp moved successfully.
C:\WINDOWS\system32\SET1E34.tmp moved successfully.
C:\WINDOWS\system32\SET1E35.tmp moved successfully.
C:\WINDOWS\system32\SET1E47.tmp moved successfully.
C:\WINDOWS\system32\SET1E48.tmp moved successfully.
C:\WINDOWS\system32\SET1E4A.tmp moved successfully.
C:\WINDOWS\system32\SET1E50.tmp moved successfully.
C:\WINDOWS\system32\SET1E52.tmp moved successfully.
C:\WINDOWS\system32\SET1E53.tmp moved successfully.
C:\WINDOWS\system32\SET1E59.tmp moved successfully.
C:\WINDOWS\system32\SET1E5D.tmp moved successfully.
C:\WINDOWS\system32\SET1E66.tmp moved successfully.
C:\WINDOWS\system32\SET1E6B.tmp moved successfully.
C:\WINDOWS\system32\SET1E6D.tmp moved successfully.
C:\WINDOWS\system32\SET1E6E.tmp moved successfully.
C:\WINDOWS\system32\SET1E6F.tmp moved successfully.
C:\WINDOWS\system32\SET1E79.tmp moved successfully.
C:\WINDOWS\system32\SET1E7F.tmp moved successfully.
C:\WINDOWS\system32\SET1E8B.tmp moved successfully.
C:\WINDOWS\system32\SET1E9F.tmp moved successfully.
C:\WINDOWS\system32\SET1EA0.tmp moved successfully.
C:\WINDOWS\system32\SET1EA5.tmp moved successfully.
C:\WINDOWS\system32\SET1EC2.tmp moved successfully.
C:\WINDOWS\system32\SET1EC5.tmp moved successfully.
C:\WINDOWS\system32\SET1ECA.tmp moved successfully.
C:\WINDOWS\system32\SET1ECC.tmp moved successfully.
C:\WINDOWS\system32\SET1ED3.tmp moved successfully.
C:\WINDOWS\system32\SET1ED4.tmp moved successfully.
C:\WINDOWS\system32\SET1ED5.tmp moved successfully.
C:\WINDOWS\system32\SET1ED7.tmp moved successfully.
C:\WINDOWS\system32\SET1ED8.tmp moved successfully.
C:\WINDOWS\system32\SET1ED9.tmp moved successfully.
C:\WINDOWS\system32\SET1EDA.tmp moved successfully.
C:\WINDOWS\system32\SET1EDC.tmp moved successfully.
C:\WINDOWS\system32\SET1EDE.tmp moved successfully.
C:\WINDOWS\system32\SET1EDF.tmp moved successfully.
C:\WINDOWS\system32\SET1EE0.tmp moved successfully.
C:\WINDOWS\system32\SET1EE1.tmp moved successfully.
C:\WINDOWS\system32\SET1EE4.tmp moved successfully.
C:\WINDOWS\system32\SET1EE6.tmp moved successfully.
C:\WINDOWS\system32\SET1EEB.tmp moved successfully.
C:\WINDOWS\system32\SET1EEC.tmp moved successfully.
C:\WINDOWS\system32\SET1EF4.tmp moved successfully.
C:\WINDOWS\system32\SET1EFB.tmp moved successfully.
C:\WINDOWS\system32\SET1F00.tmp moved successfully.
C:\WINDOWS\system32\SET1F04.tmp moved successfully.
C:\WINDOWS\system32\SET1F07.tmp moved successfully.
C:\WINDOWS\system32\SET1F09.tmp moved successfully.
C:\WINDOWS\system32\SET1F0D.tmp moved successfully.
C:\WINDOWS\system32\SET1F0F.tmp moved successfully.
C:\WINDOWS\system32\SET1F10.tmp moved successfully.
C:\WINDOWS\system32\SET1F11.tmp moved successfully.
C:\WINDOWS\system32\SET1F16.tmp moved successfully.
C:\WINDOWS\system32\SET1F17.tmp moved successfully.
C:\WINDOWS\system32\SET1F1B.tmp moved successfully.
C:\WINDOWS\system32\SET1F1C.tmp moved successfully.
C:\WINDOWS\system32\SET1F1F.tmp moved successfully.
C:\WINDOWS\system32\SET1F21.tmp moved successfully.
C:\WINDOWS\system32\SET1F27.tmp moved successfully.
C:\WINDOWS\system32\SET1F2C.tmp moved successfully.
C:\WINDOWS\system32\SET1F2F.tmp moved successfully.
C:\WINDOWS\system32\SET1F32.tmp moved successfully.
C:\WINDOWS\system32\SET1F34.tmp moved successfully.
C:\WINDOWS\system32\SET2191.tmp moved successfully.
C:\WINDOWS\system32\SET2197.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET1FA4.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET1FA5.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET1FA6.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET1FA7.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET1FA8.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET1FA9.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET1FAA.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET1FAB.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET1FAC.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET1FAD.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET1FAE.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET1FAF.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET1FB0.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET21B4.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET2E66.tmp moved successfully.
C:\WINDOWS\system32\spool\drivers\w32x86\3\SET2FBA.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET1FB1.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET1FB2.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET1FB4.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET1FB5.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET1FB6.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET1FEE.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET1FEF.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET1FF1.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET1FF3.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET1FF5.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET1FFC.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET1FFF.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2000.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2001.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2004.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2006.tmp moved successfully.
C:\WINDOWS\002954_.tmp moved successfully.
C:\WINDOWS\002960_.tmp moved successfully.
C:\WINDOWS\SET1F69.tmp moved successfully.
C:\WINDOWS\SET3.tmp moved successfully.
C:\WINDOWS\SET7.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set20b3.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set20b4.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set20b5.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set20b6.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set20b7.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set20b8.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set20b9.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set20ba.tmp moved successfully.
C:\WINDOWS\AppPatch\SET20B3.tmp moved successfully.
C:\WINDOWS\AppPatch\SET20B4.tmp moved successfully.
C:\WINDOWS\AppPatch\SET20B5.tmp moved successfully.
C:\WINDOWS\AppPatch\SET20B6.tmp moved successfully.
C:\WINDOWS\AppPatch\SET20B7.tmp moved successfully.
C:\WINDOWS\AppPatch\SET20B8.tmp moved successfully.
C:\WINDOWS\AppPatch\SET20B9.tmp moved successfully.
C:\WINDOWS\AppPatch\SET20BA.tmp moved successfully.
C:\WINDOWS\Fonts\SET1F77.tmp moved successfully.
C:\WINDOWS\Fonts\SET1F78.tmp moved successfully.
C:\WINDOWS\Fonts\SET1F79.tmp moved successfully.
C:\WINDOWS\Fonts\SET1F7A.tmp moved successfully.
C:\WINDOWS\Fonts\SET1F7B.tmp moved successfully.
C:\WINDOWS\Fonts\SET1F7E.tmp moved successfully.
C:\WINDOWS\Fonts\SET1F80.tmp moved successfully.
C:\WINDOWS\Fonts\SET1F81.tmp moved successfully.
C:\WINDOWS\Fonts\SET1F82.tmp moved successfully.
C:\WINDOWS\Fonts\SET1F83.tmp moved successfully.
C:\WINDOWS\Fonts\SET1F84.tmp moved successfully.
C:\WINDOWS\PCHealth\HelpCtr\Binaries\SET210D.tmp moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: TISA
->Temp folder emptied: 60658 bytes
->Temporary Internet Files folder emptied: 33656 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 29322947 bytes
->Google Chrome cache emptied: 8334950 bytes
->Flash cache emptied: 2631 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 483 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 1360327 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 37,00 mb

OTM by OldTimer - Version 3.1.15.0 log created on 09082010_095709

Files moved on Reboot...

Registry entries deleted on Reboot...

VIRY.CZ

Zanedbané PC - hlásil trojana

Zanedbané PC - hlásil trojana

Re: Zanedbané PC - hlásil trojana

Re: Zanedbané PC - hlásil trojana

Re: Zanedbané PC - hlásil trojana

Re: Zanedbané PC - hlásil trojana

Re: Zanedbané PC - hlásil trojana

Re: Zanedbané PC - hlásil trojana

Re: Zanedbané PC - hlásil trojana

Re: Zanedbané PC - hlásil trojana

Re: Zanedbané PC - hlásil trojana

Re: Zanedbané PC - hlásil trojana

Re: Zanedbané PC - hlásil trojana

Re: Zanedbané PC - hlásil trojana

Re: Zanedbané PC - hlásil trojana

Re: Zanedbané PC - hlásil trojana