Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Skype rozosiela odkazy a prezvana

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
ujoslav
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 30 zář 2010 21:51

Skype rozosiela odkazy a prezvana

#1 Příspěvek od ujoslav »

Dobrý deň,
vlastnou nepozornosťou som sa dostal do šlamastiky okolo preposielania odkazu cez Skype. Vopred ďakujem za radu.
Môj log z RSIT:

Kód: Vybrat vše

Logfile of random's system information tool 1.08 (written by random/random)
Run by Mato at 2010-09-30 22:45:13
Microsoft Windows 7 Ultimate  
System drive C: has 13 GB (42%) free of 31 GB
Total RAM: 4095 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:45:29, on 30. 9. 2010
Platform: Windows 7  (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.7930.16406)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\pdfconverter.com\FreePDF Creator\itFPCPrnDisp.exe
C:\Users\Mato\AppData\Local\Google\Update\1.2.183.29\GoogleCrashHandler.exe
C:\Program Files (x86)\ICQ7.1\ICQ.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\totalcmd\TOTALCMD.EXE
C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Mato.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.104.67.250:8080
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: LastPass Browser Helper Object - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPBar.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPBar.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [Google Update] "C:\Users\Mato\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [ICQ] "C:\Program Files (x86)\ICQ7.1\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: LastPass - file://C:\Program Files (x86)\LastPass\context.html?cmd=lastpass
O8 - Extra context menu item: LastPass Fill Forms - file://C:\Program Files (x86)\LastPass\context.html?cmd=fillforms
O9 - Extra button: LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\LastPass\LPBar.dll
O9 - Extra button: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files (x86)\ICQ7.1\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files (x86)\ICQ7.1\ICQ.exe
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Process Monitor (LVPrcS64) - Logitech Inc. - C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMSAccess - Unknown owner - C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: O2Micro Flash Memory Card Service (o2flash) - O2Micro International - C:\Program Files (x86)\O2Micro Oz128 Driver\o2flash.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10867 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe"
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\System32\rundll32.exe" sbavmon.dll,SBAVMonitor
"C:\Program Files (x86)\pdfconverter.com\FreePDF Creator\itFPCPrnDisp.exe" 
"C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe"
"C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe"
"C:\Program Files (x86)\O2Micro Oz128 Driver\o2flash.exe"
"C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Common Files\Logishrd\LVMVFM\LVPrS64H.exe" -Embedding
"C:\Program Files\Logitech\SetPointP\SetPoint.exe" /launchGaming
"C:\Users\Mato\AppData\Local\Google\Update\1.2.183.29\GoogleCrashHandler.exe" /crashhandler
"C:\Program Files (x86)\ICQ7.1\ICQ.exe" silent loginmode=4
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 
"C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" 
"C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe" -hide
"C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe"
C:\Windows\system32\svchost.exe -k bthaudiosvc
KHALMNPR.EXE /API
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Windows Mail\WinMail.exe" -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe" 
"C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe" --type=extension --lang=sk --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/npn_with_spdy/ --channel=2216.010A3780.1203435340 /prefetch:3 --ignored=" --type=renderer "
"C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe" --type=extension --lang=sk --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/npn_with_spdy/ --channel=2216.010A3180.65026666 /prefetch:3 --ignored=" --type=renderer "
"C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe" --type=extension --lang=sk --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/npn_with_spdy/ --channel=2216.010A3000.361460046 /prefetch:3 --ignored=" --type=renderer "
"C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe" --type=extension --lang=sk --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/npn_with_spdy/ --channel=2216.010A3D80.1177126326 /prefetch:3 --ignored=" --type=renderer "
"C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe" --type=extension --lang=sk --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/npn_with_spdy/ --channel=2216.038D2D80.1559382108 /prefetch:3 --ignored=" --type=renderer "
"C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe" --type=extension --lang=sk --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/npn_with_spdy/ --channel=2216.038D2C00.1819732740 /prefetch:3 --ignored=" --type=renderer "
"C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe" --type=extension --lang=sk --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/npn_with_spdy/ --channel=2216.038D2A80.1607309567 /prefetch:3 --ignored=" --type=renderer "
"C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe" --type=extension --lang=sk --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/npn_with_spdy/ --channel=2216.038D2900.1408782264 /prefetch:3 --ignored=" --type=renderer "
"C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path=default_plugin --lang=sk --plugin-data-dir="C:\Users\Mato\AppData\Local\Google\Chrome\User Data\Default" --channel=2216.04BB5E4C.1836523110 /prefetch:4
"C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel=2216.05B0F16C.292373437 /prefetch:12
"C:\Program Files (x86)\totalcmd\TOTALCMD.EXE" 
"C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtest=CacheSize/CacheSizeGroup_3/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/npn_with_spdy/ --channel=2216.05B2F180.983462894 /prefetch:3
"C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtest=CacheSize/CacheSizeGroup_3/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/npn_with_spdy/ --channel=2216.09B56300.1315681572 /prefetch:3
C:\Windows\ehome\ehRecvr.exe
C:\Windows\ehome\mcGlidHost.exe -Embedding
"C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtest=CacheSize/CacheSizeGroup_3/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/npn_with_spdy/ --channel=2216.05CA4300.632674110 /prefetch:3
"C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtest=CacheSize/CacheSizeGroup_3/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/npn_with_spdy/ --channel=2216.04BFC000.1201486937 /prefetch:3
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe"
"C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\Mato\AppData\Local\Google\Chrome\Application\7.0.517.24\gcswf32.dll" --lang=sk --plugin-data-dir="C:\Users\Mato\AppData\Local\Google\Chrome\User Data\Default" --channel=2216.056A044C.1264559907 /prefetch:4
"C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtest=CacheSize/CacheSizeGroup_3/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/npn_with_spdy/ --channel=2216.05794300.96496309 /prefetch:3
"E:\Downloads\RSITx64.exe" 
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1216007188-59351815-3529696467-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1216007188-59351815-3529696467-1000UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95D9ECF5-2A4D-4550-BE49-70D42F71296E}]
LastPass Browser Helper Object - C:\Program Files (x86)\LastPass\LPBar64.dll [2010-08-21 6493896]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95D9ECF5-2A4D-4550-BE49-70D42F71296E}]
LastPass Browser Helper Object - C:\Program Files (x86)\LastPass\LPBar.dll [2010-09-29 1214664]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-08-19 1294336]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-07-17 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - LastPass Toolbar - C:\Program Files (x86)\LastPass\LPBar64.dll [2010-08-21 6493896]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - LastPass Toolbar - C:\Program Files (x86)\LastPass\LPBar.dll [2010-09-29 1214664]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-05-16 10144288]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2010-04-22 14830696]
"Creative SB Monitoring Utility"=RunDll32 sbavmon.dll,SBAVMonitor []
"Free PDF Print Dispatcher"=C:\Program Files (x86)\pdfconverter.com\FreePDF Creator\itFPCPrnDisp.exe [2010-01-15 25600]
"EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2010-06-26 1609296]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Mato\AppData\Local\Google\Update\GoogleUpdate.exe [2010-05-16 136176]
"ICQ"=C:\Program Files (x86)\ICQ7.1\ICQ.exe [2010-05-17 133368]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Mato^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Registrácia výrobku.lnk]
C:\PROGRA~2\COMMON~1\LogiShrd\eReg\SetPoint\eReg.exe [2009-11-16 517384]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-03 284696]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2010-09-07 2838912]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"LWS"=C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [2010-05-07 165208]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"=C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [2010-04-29 437584]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2010-05-06 66640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-09-30 22:45:14 ----D---- C:\Program Files\trend micro
2010-09-30 22:45:13 ----D---- C:\rsit
2010-09-30 22:22:37 ----D---- C:\Users\Mato\AppData\Roaming\Malwarebytes
2010-09-30 22:22:30 ----A---- C:\Windows\SYSWOW64\drivers\mbamswissarmy.sys
2010-09-30 22:22:28 ----D---- C:\ProgramData\Malwarebytes
2010-09-30 22:22:28 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2010-09-30 22:22:28 ----A---- C:\Windows\system32\drivers\mbam.sys
2010-09-29 18:05:59 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2010-09-29 18:05:59 ----A---- C:\Windows\system32\drivers\ks.sys
2010-09-29 18:05:43 ----A---- C:\Windows\SYSWOW64\tzres.dll
2010-09-29 18:05:43 ----A---- C:\Windows\system32\tzres.dll
2010-09-26 08:42:22 ----D---- C:\Windows\SYSWOW64\logishrd
2010-09-26 08:42:22 ----D---- C:\Windows\system32\logishrd
2010-09-26 08:42:13 ----D---- C:\Program Files (x86)\Logitech
2010-09-18 12:41:23 ----D---- C:\Program Files (x86)\DVD Audio Extractor
2010-09-18 12:00:26 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2010-09-18 12:00:26 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2010-09-18 12:00:26 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2010-09-18 12:00:26 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2010-09-18 12:00:26 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2010-09-18 12:00:26 ----A---- C:\Windows\system32\XAudio2_7.dll
2010-09-18 12:00:26 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2010-09-18 12:00:26 ----A---- C:\Windows\system32\xactengine3_7.dll
2010-09-18 12:00:26 ----A---- C:\Windows\system32\d3dcsx_43.dll
2010-09-18 12:00:26 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2010-09-18 12:00:25 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2010-09-18 12:00:25 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2010-09-18 12:00:25 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2010-09-18 12:00:25 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2010-09-18 12:00:25 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2010-09-18 12:00:25 ----A---- C:\Windows\system32\XAudio2_6.dll
2010-09-18 12:00:25 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2010-09-18 12:00:25 ----A---- C:\Windows\system32\D3DX9_43.dll
2010-09-18 12:00:25 ----A---- C:\Windows\system32\d3dx11_43.dll
2010-09-18 12:00:25 ----A---- C:\Windows\system32\d3dx10_43.dll
2010-09-18 12:00:24 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2010-09-18 12:00:24 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2010-09-18 12:00:24 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2010-09-18 12:00:24 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2010-09-18 12:00:24 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2010-09-18 12:00:24 ----A---- C:\Windows\system32\XAudio2_5.dll
2010-09-18 12:00:24 ----A---- C:\Windows\system32\xactengine3_6.dll
2010-09-18 12:00:24 ----A---- C:\Windows\system32\xactengine3_5.dll
2010-09-18 12:00:24 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2010-09-18 12:00:24 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2010-09-18 12:00:22 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2010-09-18 12:00:22 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2010-09-18 12:00:22 ----A---- C:\Windows\system32\d3dx11_42.dll
2010-09-18 12:00:22 ----A---- C:\Windows\system32\d3dcsx_42.dll
2010-09-18 12:00:21 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2010-09-18 12:00:21 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2010-09-18 12:00:21 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2010-09-18 12:00:21 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2010-09-18 12:00:21 ----A---- C:\Windows\system32\D3DX9_42.dll
2010-09-18 12:00:21 ----A---- C:\Windows\system32\d3dx10_42.dll
2010-09-18 12:00:21 ----A---- C:\Windows\system32\d3dx10_41.dll
2010-09-18 12:00:21 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2010-09-18 12:00:20 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2010-09-18 12:00:20 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2010-09-18 12:00:20 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2010-09-18 12:00:20 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2010-09-18 12:00:20 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2010-09-18 12:00:20 ----A---- C:\Windows\system32\XAudio2_4.dll
2010-09-18 12:00:20 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2010-09-18 12:00:20 ----A---- C:\Windows\system32\xactengine3_4.dll
2010-09-18 12:00:20 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2010-09-18 12:00:20 ----A---- C:\Windows\system32\D3DX9_41.dll
2010-09-18 12:00:19 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2010-09-18 12:00:19 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2010-09-18 12:00:19 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2010-09-18 12:00:19 ----A---- C:\Windows\system32\D3DX9_40.dll
2010-09-18 12:00:19 ----A---- C:\Windows\system32\d3dx10_40.dll
2010-09-18 12:00:19 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2010-09-18 12:00:18 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2010-09-18 12:00:18 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2010-09-18 12:00:18 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2010-09-18 12:00:18 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2010-09-18 12:00:18 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2010-09-18 12:00:18 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2010-09-18 12:00:18 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2010-09-18 12:00:18 ----A---- C:\Windows\system32\XAudio2_3.dll
2010-09-18 12:00:18 ----A---- C:\Windows\system32\XAudio2_2.dll
2010-09-18 12:00:18 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2010-09-18 12:00:18 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2010-09-18 12:00:18 ----A---- C:\Windows\system32\xactengine3_3.dll
2010-09-18 12:00:18 ----A---- C:\Windows\system32\xactengine3_2.dll
2010-09-18 12:00:18 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2010-09-18 12:00:17 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2010-09-18 12:00:17 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2010-09-18 12:00:17 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2010-09-18 12:00:17 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2010-09-18 12:00:17 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2010-09-18 12:00:17 ----A---- C:\Windows\system32\XAudio2_1.dll
2010-09-18 12:00:17 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2010-09-18 12:00:17 ----A---- C:\Windows\system32\D3DX9_39.dll
2010-09-18 12:00:17 ----A---- C:\Windows\system32\d3dx10_39.dll
2010-09-18 12:00:17 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2010-09-18 12:00:16 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2010-09-18 12:00:16 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2010-09-18 12:00:16 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2010-09-18 12:00:16 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2010-09-18 12:00:16 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2010-09-18 12:00:16 ----A---- C:\Windows\system32\xactengine3_1.dll
2010-09-18 12:00:16 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2010-09-18 12:00:16 ----A---- C:\Windows\system32\D3DX9_38.dll
2010-09-18 12:00:16 ----A---- C:\Windows\system32\d3dx10_38.dll
2010-09-18 12:00:16 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2010-09-18 12:00:15 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2010-09-18 12:00:15 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2010-09-18 12:00:15 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2010-09-18 12:00:15 ----A---- C:\Windows\system32\XAudio2_0.dll
2010-09-18 12:00:15 ----A---- C:\Windows\system32\xactengine3_0.dll
2010-09-18 12:00:15 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2010-09-18 12:00:14 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2010-09-18 12:00:14 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2010-09-18 12:00:14 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2010-09-18 12:00:14 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2010-09-18 12:00:14 ----A---- C:\Windows\system32\xactengine2_10.dll
2010-09-18 12:00:14 ----A---- C:\Windows\system32\D3DX9_37.dll
2010-09-18 12:00:14 ----A---- C:\Windows\system32\d3dx10_37.dll
2010-09-18 12:00:14 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2010-09-18 12:00:13 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2010-09-18 12:00:13 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2010-09-18 12:00:13 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2010-09-18 12:00:13 ----A---- C:\Windows\system32\d3dx9_36.dll
2010-09-18 12:00:13 ----A---- C:\Windows\system32\d3dx10_36.dll
2010-09-18 12:00:13 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2010-09-18 12:00:12 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2010-09-18 12:00:12 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2010-09-18 12:00:12 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2010-09-18 12:00:12 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2010-09-18 12:00:12 ----A---- C:\Windows\system32\xactengine2_9.dll
2010-09-18 12:00:12 ----A---- C:\Windows\system32\d3dx9_35.dll
2010-09-18 12:00:12 ----A---- C:\Windows\system32\d3dx10_35.dll
2010-09-18 12:00:12 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2010-09-18 12:00:11 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2010-09-18 12:00:11 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2010-09-18 12:00:11 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2010-09-18 12:00:11 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2010-09-18 12:00:11 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2010-09-18 12:00:11 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2010-09-18 12:00:11 ----A---- C:\Windows\system32\xinput1_3.dll
2010-09-18 12:00:11 ----A---- C:\Windows\system32\xactengine2_8.dll
2010-09-18 12:00:11 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2010-09-18 12:00:11 ----A---- C:\Windows\system32\d3dx9_34.dll
2010-09-18 12:00:11 ----A---- C:\Windows\system32\d3dx10_34.dll
2010-09-18 12:00:11 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2010-09-18 12:00:10 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2010-09-18 12:00:10 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2010-09-18 12:00:10 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2010-09-18 12:00:10 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2010-09-18 12:00:10 ----A---- C:\Windows\system32\xactengine2_7.dll
2010-09-18 12:00:10 ----A---- C:\Windows\system32\d3dx9_33.dll
2010-09-18 12:00:10 ----A---- C:\Windows\system32\d3dx10_33.dll
2010-09-18 12:00:10 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2010-09-18 12:00:09 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2010-09-18 12:00:09 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2010-09-18 12:00:09 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2010-09-18 12:00:09 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2010-09-18 12:00:09 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2010-09-18 12:00:09 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2010-09-18 12:00:09 ----A---- C:\Windows\system32\xactengine2_6.dll
2010-09-18 12:00:09 ----A---- C:\Windows\system32\xactengine2_5.dll
2010-09-18 12:00:09 ----A---- C:\Windows\system32\xactengine2_4.dll
2010-09-18 12:00:09 ----A---- C:\Windows\system32\x3daudio1_1.dll
2010-09-18 12:00:09 ----A---- C:\Windows\system32\d3dx9_32.dll
2010-09-18 12:00:09 ----A---- C:\Windows\system32\d3dx10.dll
2010-09-18 12:00:08 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2010-09-18 12:00:08 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2010-09-18 12:00:08 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2010-09-18 12:00:08 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2010-09-18 12:00:08 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2010-09-18 12:00:08 ----A---- C:\Windows\system32\xinput1_2.dll
2010-09-18 12:00:08 ----A---- C:\Windows\system32\xinput1_1.dll
2010-09-18 12:00:08 ----A---- C:\Windows\system32\xactengine2_3.dll
2010-09-18 12:00:08 ----A---- C:\Windows\system32\xactengine2_2.dll
2010-09-18 12:00:08 ----A---- C:\Windows\system32\d3dx9_31.dll
2010-09-18 12:00:07 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2010-09-18 12:00:07 ----A---- C:\Windows\system32\xactengine2_1.dll
2010-09-18 12:00:06 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2010-09-18 12:00:06 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2010-09-18 12:00:06 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2010-09-18 12:00:06 ----A---- C:\Windows\system32\xactengine2_0.dll
2010-09-18 12:00:06 ----A---- C:\Windows\system32\x3daudio1_0.dll
2010-09-18 12:00:06 ----A---- C:\Windows\system32\d3dx9_30.dll
2010-09-18 12:00:05 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2010-09-18 12:00:05 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2010-09-18 12:00:05 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2010-09-18 12:00:05 ----A---- C:\Windows\system32\d3dx9_29.dll
2010-09-18 12:00:05 ----A---- C:\Windows\system32\d3dx9_28.dll
2010-09-18 12:00:05 ----A---- C:\Windows\system32\d3dx9_27.dll
2010-09-18 12:00:04 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2010-09-18 12:00:04 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2010-09-18 12:00:04 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2010-09-18 12:00:04 ----A---- C:\Windows\system32\d3dx9_26.dll
2010-09-18 12:00:04 ----A---- C:\Windows\system32\d3dx9_25.dll
2010-09-18 12:00:04 ----A---- C:\Windows\system32\d3dx9_24.dll
2010-09-18 11:56:40 ----D---- C:\Windows\SYSWOW64\directx
2010-09-18 11:39:08 ----D---- C:\Users\Mato\AppData\Roaming\Media Player Classic
2010-09-18 11:38:28 ----D---- C:\Program Files (x86)\MPC-HC
2010-09-18 11:35:55 ----D---- C:\Windows\system32\appmgmt
2010-09-15 20:17:45 ----D---- C:\Program Files (x86)\Winamp Detect
2010-09-15 19:46:55 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2010-09-15 19:46:55 ----A---- C:\Windows\SYSWOW64\jscript.dll
2010-09-15 19:46:55 ----A---- C:\Windows\SYSWOW64\inseng.dll
2010-09-15 19:46:55 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2010-09-15 19:46:55 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2010-09-15 19:46:55 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2010-09-15 19:46:55 ----A---- C:\Windows\SYSWOW64\ieui.dll
2010-09-15 19:46:55 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2010-09-15 19:46:55 ----A---- C:\Windows\system32\jscript9.dll
2010-09-15 19:46:55 ----A---- C:\Windows\system32\jscript.dll
2010-09-15 19:46:55 ----A---- C:\Windows\system32\inseng.dll
2010-09-15 19:46:55 ----A---- C:\Windows\system32\imgutil.dll
2010-09-15 19:46:55 ----A---- C:\Windows\system32\iexpress.exe
2010-09-15 19:46:55 ----A---- C:\Windows\system32\ieUnatt.exe
2010-09-15 19:46:55 ----A---- C:\Windows\system32\ieui.dll
2010-09-15 19:46:55 ----A---- C:\Windows\system32\iesysprep.dll
2010-09-15 19:46:51 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2010-09-15 19:46:51 ----A---- C:\Windows\SYSWOW64\mshta.exe
2010-09-15 19:46:51 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2010-09-15 19:46:51 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2010-09-15 19:46:51 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2010-09-15 19:46:51 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2010-09-15 19:46:51 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2010-09-15 19:46:51 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2010-09-15 19:46:51 ----A---- C:\Windows\system32\mshtml.dll
2010-09-15 19:46:51 ----A---- C:\Windows\system32\mshta.exe
2010-09-15 19:46:51 ----A---- C:\Windows\system32\msfeedssync.exe
2010-09-15 19:46:51 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-09-15 19:46:51 ----A---- C:\Windows\system32\msfeeds.dll
2010-09-15 19:46:51 ----A---- C:\Windows\system32\licmgr10.dll
2010-09-15 19:46:51 ----A---- C:\Windows\system32\jsproxy.dll
2010-09-15 19:46:51 ----A---- C:\Windows\system32\IEAdvpack.dll
2010-09-15 19:46:51 ----A---- C:\Windows\system32\ie4uinit.exe
2010-09-15 19:46:48 ----A---- C:\Windows\SYSWOW64\ieakui.dll
2010-09-15 19:46:48 ----A---- C:\Windows\SYSWOW64\ieaksie.dll
2010-09-15 19:46:48 ----A---- C:\Windows\SYSWOW64\ieakeng.dll
2010-09-15 19:46:48 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2010-09-15 19:46:48 ----A---- C:\Windows\SYSWOW64\icardie.dll
2010-09-15 19:46:48 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2010-09-15 19:46:48 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2010-09-15 19:46:48 ----A---- C:\Windows\SYSWOW64\admparse.dll
2010-09-15 19:46:48 ----A---- C:\Windows\system32\ieakui.dll
2010-09-15 19:46:48 ----A---- C:\Windows\system32\ieaksie.dll
2010-09-15 19:46:48 ----A---- C:\Windows\system32\ieakeng.dll
2010-09-15 19:46:48 ----A---- C:\Windows\system32\icardie.dll
2010-09-15 19:46:48 ----A---- C:\Windows\system32\dxtrans.dll
2010-09-15 19:46:48 ----A---- C:\Windows\system32\dxtmsft.dll
2010-09-15 19:46:48 ----A---- C:\Windows\system32\admparse.dll
2010-09-15 19:46:45 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2010-09-15 19:46:45 ----A---- C:\Windows\system32\iepeers.dll
2010-09-15 19:46:39 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2010-09-15 19:46:39 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2010-09-15 19:46:39 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2010-09-15 19:46:39 ----A---- C:\Windows\system32\iesetup.dll
2010-09-15 19:46:39 ----A---- C:\Windows\system32\iertutil.dll
2010-09-15 19:46:39 ----A---- C:\Windows\system32\iernonce.dll
2010-09-15 19:46:36 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2010-09-15 19:46:36 ----A---- C:\Windows\system32\iedkcs32.dll
2010-09-15 19:46:36 ----A---- C:\Windows\system32\ieapfltr.dll
2010-09-15 19:46:35 ----A---- C:\Windows\SYSWOW64\wininet.dll
2010-09-15 19:46:35 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2010-09-15 19:46:35 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2010-09-15 19:46:35 ----A---- C:\Windows\SYSWOW64\url.dll
2010-09-15 19:46:35 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2010-09-15 19:46:35 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2010-09-15 19:46:35 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2010-09-15 19:46:35 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2010-09-15 19:46:35 ----A---- C:\Windows\system32\wininet.dll
2010-09-15 19:46:35 ----A---- C:\Windows\system32\vbscript.dll
2010-09-15 19:46:35 ----A---- C:\Windows\system32\urlmon.dll
2010-09-15 19:46:35 ----A---- C:\Windows\system32\url.dll
2010-09-15 19:46:35 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2010-09-15 19:46:35 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2010-09-15 19:46:35 ----A---- C:\Windows\system32\ieframe.dll
2010-09-15 19:46:34 ----A---- C:\Windows\SYSWOW64\wextract.exe
2010-09-15 19:46:34 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2010-09-15 19:46:34 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2010-09-15 19:46:34 ----A---- C:\Windows\SYSWOW64\occache.dll
2010-09-15 19:46:34 ----A---- C:\Windows\SYSWOW64\msrating.dll
2010-09-15 19:46:34 ----A---- C:\Windows\SYSWOW64\msls31.dll
2010-09-15 19:46:34 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2010-09-15 19:46:34 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2010-09-15 19:46:34 ----A---- C:\Windows\system32\wextract.exe
2010-09-15 19:46:34 ----A---- C:\Windows\system32\webcheck.dll
2010-09-15 19:46:34 ----A---- C:\Windows\system32\pngfilt.dll
2010-09-15 19:46:34 ----A---- C:\Windows\system32\occache.dll
2010-09-15 19:46:34 ----A---- C:\Windows\system32\msrating.dll
2010-09-15 19:46:34 ----A---- C:\Windows\system32\msls31.dll
2010-09-15 19:46:34 ----A---- C:\Windows\system32\mshtmler.dll
2010-09-15 19:46:34 ----A---- C:\Windows\system32\mshtmled.dll
2010-09-15 19:46:08 ----A---- C:\Windows\system32\mfreadwrite.dll
2010-09-15 19:46:08 ----A---- C:\Windows\system32\mfps.dll
2010-09-15 19:46:07 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2010-09-15 19:46:07 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2010-09-15 19:46:07 ----A---- C:\Windows\system32\WMVDECOD.DLL
2010-09-15 19:46:07 ----A---- C:\Windows\system32\mf.dll
2010-09-15 19:46:06 ----A---- C:\Windows\SYSWOW64\mf.dll
2010-09-15 19:45:42 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2010-09-15 19:45:42 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2010-09-15 19:45:42 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2010-09-15 19:45:42 ----A---- C:\Windows\system32\d2d1.dll
2010-09-15 19:45:41 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2010-09-15 19:45:41 ----A---- C:\Windows\system32\FntCache.dll
2010-09-15 19:45:41 ----A---- C:\Windows\system32\DWrite.dll
2010-09-15 19:45:41 ----A---- C:\Windows\system32\d3d10warp.dll
2010-09-15 19:45:41 ----A---- C:\Windows\system32\d3d10_1core.dll
2010-09-15 19:45:15 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2010-09-15 19:45:15 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2010-09-15 19:45:15 ----A---- C:\Windows\system32\XpsRasterService.dll
2010-09-15 19:45:15 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2010-09-15 19:44:50 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2010-09-15 19:44:50 ----A---- C:\Windows\system32\ExplorerFrame.dll
2010-09-15 16:48:20 ----D---- C:\Users\Mato\AppData\Roaming\foobar2000
2010-09-15 16:47:48 ----D---- C:\Program Files (x86)\foobar2000
2010-09-15 09:12:17 ----A---- C:\Windows\system32\drivers\NETwLv64.sys
2010-09-15 09:04:46 ----A---- C:\Windows\system32\spoolsv.exe
2010-09-13 07:06:24 ----D---- C:\Users\Mato\AppData\Roaming\Mozilla
2010-09-05 22:49:31 ----A---- C:\Windows\CDRipper.ini
2010-09-05 12:16:06 ----D---- C:\Program Files\DIFX
2010-09-05 12:15:05 ----A---- C:\Windows\system32\NETwLr64.dll
2010-09-05 12:15:05 ----A---- C:\Windows\system32\NETwLc64.dll

======List of files/folders modified in the last 1 months======

2010-09-30 22:45:14 ----RD---- C:\Program Files
2010-09-30 22:22:30 ----D---- C:\Windows\SYSWOW64\drivers
2010-09-30 22:22:28 ----RD---- C:\Program Files (x86)
2010-09-30 22:22:28 ----HD---- C:\ProgramData
2010-09-30 22:22:28 ----D---- C:\Windows\system32\drivers
2010-09-30 22:20:46 ----D---- C:\ProgramData\Spyware Terminator
2010-09-30 22:20:43 ----SHD---- C:\System Volume Information
2010-09-30 22:20:36 ----D---- C:\Program Files (x86)\Spyware Terminator
2010-09-30 22:18:45 ----D---- C:\Windows\System32
2010-09-30 22:18:45 ----D---- C:\Windows\inf
2010-09-30 22:18:45 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-09-30 22:14:32 ----D---- C:\Windows\system32\config
2010-09-30 21:57:10 ----D---- C:\Users\Mato\AppData\Roaming\Spyware Terminator
2010-09-30 21:53:18 ----D---- C:\Users\Mato\AppData\Roaming\Skype
2010-09-30 20:57:06 ----D---- C:\Windows\Temp
2010-09-30 20:38:40 ----D---- C:\Windows\Microsoft.NET
2010-09-30 20:38:24 ----RSD---- C:\Windows\assembly
2010-09-30 19:34:12 ----D---- C:\Windows\Prefetch
2010-09-30 19:32:05 ----D---- C:\Windows\winsxs
2010-09-30 19:31:34 ----D---- C:\Windows\system32\catroot
2010-09-30 19:14:10 ----D---- C:\Users\Mato\AppData\Roaming\skypePM
2010-09-30 19:04:26 ----D---- C:\Users\Mato\AppData\Roaming\ICQ
2010-09-29 21:34:58 ----D---- C:\Windows\SysWOW64
2010-09-29 19:36:49 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2010-09-29 18:07:06 ----D---- C:\Windows\SYSWOW64\sk-SK
2010-09-29 18:07:06 ----D---- C:\Windows\system32\sk-SK
2010-09-29 18:07:06 ----D---- C:\Windows\system32\DriverStore
2010-09-29 18:06:43 ----SHD---- C:\Windows\Installer
2010-09-29 18:06:04 ----D---- C:\Windows\system32\catroot2
2010-09-27 17:32:54 ----D---- C:\Windows
2010-09-26 10:02:56 ----D---- C:\Users\Mato\AppData\Roaming\uTorrent
2010-09-26 08:42:42 ----D---- C:\Program Files\Common Files\LogiShrd
2010-09-26 08:42:18 ----D---- C:\ProgramData\Logitech
2010-09-26 08:42:17 ----D---- C:\Program Files (x86)\Common Files
2010-09-23 20:23:10 ----D---- C:\Program Files\MyDefrag v4.3.1
2010-09-21 18:00:06 ----D---- C:\ProgramData\LogiShrd
2010-09-21 18:00:06 ----D---- C:\Program Files\Logitech
2010-09-18 11:56:40 ----D---- C:\Windows\Logs
2010-09-16 18:58:39 ----D---- C:\Windows\rescache
2010-09-15 20:19:53 ----D---- C:\Users\Mato\AppData\Roaming\Winamp
2010-09-15 20:17:51 ----D---- C:\Program Files (x86)\Winamp
2010-09-15 19:54:36 ----D---- C:\Windows\SYSWOW64\migration
2010-09-15 19:54:36 ----D---- C:\Windows\SYSWOW64\en-US
2010-09-15 19:54:36 ----D---- C:\Program Files\Internet Explorer
2010-09-15 19:54:35 ----D---- C:\Windows\system32\migration
2010-09-15 19:54:35 ----D---- C:\Windows\system32\en-US
2010-09-15 19:54:35 ----D---- C:\Windows\PolicyDefinitions
2010-09-15 19:54:35 ----D---- C:\Program Files (x86)\Internet Explorer
2010-09-15 19:44:27 ----D---- C:\Windows\SoftwareDistribution
2010-09-15 11:42:07 ----SD---- C:\Users\Mato\AppData\Roaming\Microsoft
2010-09-15 09:05:35 ----A---- C:\Windows\system32\MRT.exe
2010-09-10 21:17:33 ----D---- C:\Program Files (x86)\CDBurnerXP
2010-09-07 17:11:54 ----A---- C:\Windows\SYSWOW64\aswBoot.exe
2010-09-04 12:56:06 ----RD---- C:\Program Files (x86)\Skype
2010-09-04 12:55:58 ----D---- C:\Windows\system32\Tasks
2010-09-04 12:55:51 ----D---- C:\ProgramData\Skype

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-03-03 540696]
R0 O2MDRDR;O2MDRDR; C:\Windows\system32\DRIVERS\o2mdx64.sys [2007-04-03 48640]
R0 O2SDRDR;O2SDRDR; C:\Windows\system32\DRIVERS\o2sdx64.sys [2007-04-04 43264]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-09-07 28752]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-09-07 121936]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-09-07 51280]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-09-07 20048]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-09-07 61008]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
R3 AVerAF15;AVerMedia A815; C:\Windows\System32\Drivers\AVerAF15.sys [2009-12-04 312064]
R3 BthAudioHF;BthAudioHF Service; C:\Windows\system32\DRIVERS\BthAudioHF.sys [2009-12-21 52224]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 79360]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-05-16 2337440]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2010-03-18 63568]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2010-03-18 57936]
R3 LVPr2M64;Logitech LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys [2010-05-07 30304]
R3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2010-07-27 339040]
R3 LVUVC64;Logitech Webcam Pro 9000(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2010-07-27 6465632]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-04 346144]
S3 BthAvrcp;Bluetooth AVRCP Profile; C:\Windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 29184]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 551936]
S3 csr_a2dp;Bluetooth AV Profile; C:\Windows\system32\drivers\bthav.sys [2009-12-21 78848]
S3 ksaud;Creative USB Audio Driver; C:\Windows\system32\drivers\ksaud.sys [2009-12-15 1148288]
S3 LVPr2Mon;LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys [2010-05-07 30304]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
S3 NETwLv64;    Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\NETwLv64.sys [2010-08-16 7530496]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 RTCore64;RTCore64; \??\E:\Downloads\rmclock_235_bin\RTCore64.sys []
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-10-10 109056]
S3 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys [2009-11-12 5504]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [2009-02-23 307200]
R2 HFGService;Handsfree Headset Service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-03 13336]
R2 LVPrcS64;Process Monitor; C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe [2010-05-07 197976]
R2 NMSAccess;NMSAccess; C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe [2010-03-04 71096]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-04-22 159336]
R2 o2flash;O2Micro Flash Memory Card Service; C:\Program Files (x86)\O2Micro Oz128 Driver\o2flash.exe [2007-02-12 65536]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe [2010-05-22 488960]
R2 TeamViewer5;TeamViewer 5; C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe [2010-09-24 1960744]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2010-05-17 79360]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2010-05-06 357456]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Skype rozosiela odkazy a prezvana

#2 Příspěvek od motji »

Hezké odpoledne :)
Prosím nedávejte mi logy do code, díky :)


:arrow: Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT :!:
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.




:arrow: Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
isapnp.sys
cdrom.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
CREATERESTOREPOINT
- zaškrtněte okénko Pro všechny uživatele.
-označte okénka Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
-po dokončení skenu se objeví logy OTL.Txt a Extras.txt, vložte je zde :)
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
ujoslav
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 30 zář 2010 21:51

Re: Skype rozosiela odkazy a prezvana

#3 Příspěvek od ujoslav »

Ospravedlňujem sa za to "code" a ďakujem za odpoveď.

MBAM nič nenašiel:

Malwarebytes' Anti-Malware 1.46
http://www.malwarebytes.org

Verzia databázy: 4728

Windows 6.1.7600
Internet Explorer 9.0.7930.16406

1. 10. 2010 20:44:50
mbam-log-2010-10-01 (20-44-50).txt

Typ kontroly: Úplná kontrola (C:\|D:\|E:\|)
Objektov kontrolovaných: 270847
Uplynulý čas: 35 min, 8 sek

Infikované služby pamäte: 0
Infikované moduly pamäte: 0
Infikované registračné kľúče: 0
Infikované registračné hodnoty: 0
Infikované položky registračných dát: 0
Infikované priečinky: 0
Infikované súbory: 0

Infikované služby pamäte:
(Škodlivé položky neboli zistené)

Infikované moduly pamäte:
(Škodlivé položky neboli zistené)

Infikované registračné kľúče:
(Škodlivé položky neboli zistené)

Infikované registračné hodnoty:
(Škodlivé položky neboli zistené)

Infikované položky registračných dát:
(Škodlivé položky neboli zistené)

Infikované priečinky:
(Škodlivé položky neboli zistené)

Infikované súbory:
(Škodlivé položky neboli zistené)
Nahoru
ujoslav
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 30 zář 2010 21:51

Re: Skype rozosiela odkazy a prezvana

#4 Příspěvek od ujoslav »

EXTRAS.txt

OTL Extras logfile created on: 1. 10. 2010 20:46:52 - Run 1
OTL by OldTimer - Version 3.2.14.1 Folder = C:\Users\Mato\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.7930.16406)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 47,00% Memory free
4,00 Gb Paging File | 2,00 Gb Available in Paging File | 47,00% Paging File free
Paging file location(s): c:\pagefile.sys 300 300 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 30,01 Gb Total Space | 12,18 Gb Free Space | 40,58% Space Free | Partition Type: NTFS
Drive D: | 100,01 Gb Total Space | 5,95 Gb Free Space | 5,95% Space Free | Partition Type: NTFS
Drive E: | 168,08 Gb Total Space | 22,96 Gb Free Space | 13,66% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MSI_NOTEBOOK
Current User Name: Mato
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-1216007188-59351815-3529696467-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [ACDSee Pro 3.Manage] -- "C:\Program Files (x86)\ACD Systems\ACDSee Pro\3.0\ACDSeeQVPro3.exe" "%1" (ACD Systems International Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [mplayerc.enqueue] -- "C:\Program Files (x86)\MPC-HC\mpc-hc64.exe" /add "%1" (MPC-HC Team)
Directory [mplayerc.play] -- "C:\Program Files (x86)\MPC-HC\mpc-hc64.exe" "%1" (MPC-HC Team)
Directory [Winamp.Play] -- "C:\program files (x86)\winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [ACDSee Pro 3.Manage] -- "C:\Program Files (x86)\ACD Systems\ACDSee Pro\3.0\ACDSeeQVPro3.exe" "%1" (ACD Systems International Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [mplayerc.enqueue] -- "C:\Program Files (x86)\MPC-HC\mpc-hc64.exe" /add "%1" (MPC-HC Team)
Directory [mplayerc.play] -- "C:\Program Files (x86)\MPC-HC\mpc-hc64.exe" "%1" (MPC-HC Team)
Directory [Winamp.Play] -- "C:\program files (x86)\winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0AA0475E-1CC0-47F0-A1E0-28F2DBDB00D1}_is1" = FreePDF Creator
"{138A4072-9E64-46BD-B5F9-DB2BB395391F}" = LWS VideoEffects
"{3F2B4DAD-88CB-4F5B-86B2-DF3384063EFA}" = O2Micro Flash Memory Card Reader Driver Installer(x64)
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}" = PlayReady PC Runtime amd64
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"5B5B6662D4C1F520435B0055F256F8087E03FB4D" = Windows Driver Package - Intel (NETwLv64) net (06/15/2010 13.2.0.137)
"A9484A70350AF25B96D72992CB318FBFF1541A87" = Windows Driver Package - Intel (NETwNs64) net (07/14/2010 13.3.0.24)
"BatteryBar" = BatteryBar (remove only)
"FFDB0ECEE499EDB0E951BC811FF4BDDDE60BEEAE" = Windows Driver Package - Intel (NETwLv64) net (08/15/2010 13.3.0.137)
"lvdrivers_12.10" = Logitech Webcam Software Driver Package
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"MyDefrag v4.3.1_is1" = MyDefrag v4.3.1
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"SP6" = Logitech SetPoint 6.15
"WinRAR archiver" = WinRAR archivátor

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{08610298-29AE-445B-B37D-EFBE05802967}" = LWS Pictures And Video
"{15634701-BACE-4449-8B25-1567DA8C9FD3}" = CameraHelperMsi
"{1651216E-E7AD-4250-92A1-FB8ED61391C9}" = LWS Help_main
"{1B280FAF-AE10-4E31-A41A-DB3917D651DC}" = ACDSee Pro 3
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}" = LWS YouTube Plugin
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 21
"{34A350D1-64FB-36D8-9D0C-1CD8E392DBA5}" = Google Talk Plugin
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT
"{3F9FB449-93DB-4C47-BB5B-7334C4D1736E}" = SD Formatter
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{6CF08AD2-00C5-4A63-B74B-2EFFFAFEBE1A}" = Microsoft Outlook Web Access S/MIME
"{6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}" = LWS Gallery
"{71BFC818-0CED-42D6-9C87-5142918957EE}" = ICQ7.1
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C8FA3C-F4EA-46C4-8392-D3CE353738D6}" = LWS Launcher
"{8937D274-C281-42E4-8CDB-A0B2DF979189}" = LWS Webcam Software
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{9012041B-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Standard Edition 2003
"{9DAEA76B-E50F-4272-A595-0124E826553D}" = LWS WLM Plugin
"{AC76BA86-7AD7-1051-7B44-A93000000001}" = Adobe Reader 9.3.4 - Slovak
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{D40EB009-0499-459c-A8AF-C9C110766215}" = Logitech Webcam Software
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0
"{EED027B7-0DB6-404B-8F45-6DFEE34A0441}" = LWS Video Mask Maker
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FBD49A62-AD66-4994-BC13-63879468F76B}" = ACDSee RAW Image Decoder Plug-In Update 4.1
"{FF167195-9EE4-46C0-8CD7-FBA3457E88AB}" = LWS Facebook
"µTorrent CZ_is1" = µTorrent CZ 1.8.5 (build 17414)
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Ant Movie Catalog_is1" = Ant Movie Catalog
"AudioCS" = Creative Audio Control Panel
"avast5" = avast! Free Antivirus
"AVerMedia A815 USB DVB-T" = AVerMedia A815 USB DVB-T 1.0.64.63
"AviSynth" = AviSynth 2.5
"Creative Sound Blaster Properties x64 Edition" = Creative Sound Blaster Properties x64 Edition
"DVD Audio Extractor_is1" = DVD Audio Extractor 4.3.0
"DVD Shrink_is1" = DVD Shrink 3.2
"Exact Audio Copy" = Exact Audio Copy 0.99pb5
"FLAC" = FLAC 1.2.1b (remove only)
"foobar2000" = foobar2000 v1.1
"Host OpenAL" = Host OpenAL
"IrfanView" = IrfanView (remove only)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Monkey's Audio_is1" = Monkey's Audio
"Mp3tag" = Mp3tag v2.46a
"Spyware Terminator_is1" = Spyware Terminator
"Tag&Rename_is1" = Tag&Rename 3.5.5
"TeamViewer 5" = TeamViewer 5
"Totalcmd" = Total Commander (Remove or Repair)
"Winamp" = Winamp

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1216007188-59351815-3529696467-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"LastPass" = LastPass (uninstall only)
"Winamp Detect" = Winamp Detector Plug-in

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 30. 9. 2010 16:18:45 | Computer Name = MSI_Notebook | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 30. 9. 2010 17:28:31 | Computer Name = MSI_Notebook | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 30. 9. 2010 17:28:31 | Computer Name = MSI_Notebook | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 30. 9. 2010 17:53:25 | Computer Name = MSI_Notebook | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 30. 9. 2010 17:53:25 | Computer Name = MSI_Notebook | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 30. 9. 2010 23:55:39 | Computer Name = MSI_Notebook | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 30. 9. 2010 23:55:40 | Computer Name = MSI_Notebook | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 1. 10. 2010 13:24:48 | Computer Name = MSI_Notebook | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Zlyhala extrakcia zoznamu koreňových certifikátov nezávislých vydavateľov
z kabinetu automatickej aktualizácie v: <http://www.download.windowsupdate.com/m ... ootstl.cab>
s chybou: Pri overovaní s aktuálnymi systémovými hodinami alebo časovou pečiatkou
podpísaného súboru sa zistilo, že požadovaný certifikát je mimo dobu platnosti.
.

Error - 1. 10. 2010 13:25:54 | Computer Name = MSI_Notebook | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 1. 10. 2010 13:25:54 | Computer Name = MSI_Notebook | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.


========== Last 10 Event Log Errors ==========

Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

< End of report >
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Skype rozosiela odkazy a prezvana

#5 Příspěvek od motji »

Ještě poprosím o ten log z OTL :) .
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
ujoslav
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 30 zář 2010 21:51

Re: Skype rozosiela odkazy a prezvana

#6 Příspěvek od ujoslav »

LOG z OTL je príliš dlhý pre jeden príspevok, tak som ho rozdelil:


OTL logfile created on: 1. 10. 2010 20:46:52 - Run 1
OTL by OldTimer - Version 3.2.14.1 Folder = C:\Users\Mato\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.7930.16406)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 47,00% Memory free
4,00 Gb Paging File | 2,00 Gb Available in Paging File | 47,00% Paging File free
Paging file location(s): c:\pagefile.sys 300 300 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 30,01 Gb Total Space | 12,18 Gb Free Space | 40,58% Space Free | Partition Type: NTFS
Drive D: | 100,01 Gb Total Space | 5,95 Gb Free Space | 5,95% Space Free | Partition Type: NTFS
Drive E: | 168,08 Gb Total Space | 22,96 Gb Free Space | 13,66% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MSI_NOTEBOOK
Current User Name: Mato
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/10/01 20:11:04 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Mato\Desktop\OTL.exe
PRC - [2010/09/29 09:31:13 | 000,974,904 | ---- | M] (Google Inc.) -- C:\Users\Mato\AppData\Local\Google\Chrome\Application\chrome.exe
PRC - [2010/09/24 15:36:58 | 001,960,744 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
PRC - [2010/09/07 17:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010/09/07 06:01:17 | 000,134,808 | ---- | M] (Google Inc.) -- C:\Users\Mato\AppData\Local\Google\Update\1.2.183.29\GoogleCrashHandler.exe
PRC - [2010/06/17 07:55:00 | 003,680,568 | ---- | M] (Ghisler Software GmbH) -- C:\Program Files (x86)\totalcmd\TOTALCMD.EXE
PRC - [2010/05/22 21:37:16 | 000,488,960 | ---- | M] (Crawler.com) -- C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe
PRC - [2010/05/17 06:50:09 | 000,133,368 | ---- | M] (ICQ, LLC.) -- C:\Program Files (x86)\ICQ7.1\ICQ.exe
PRC - [2010/05/07 18:47:32 | 000,114,008 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
PRC - [2010/05/07 18:35:22 | 000,165,208 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
PRC - [2010/03/04 23:38:00 | 000,071,096 | ---- | M] () -- C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe
PRC - [2010/03/03 20:16:06 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2010/03/03 20:16:04 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2010/01/15 15:51:04 | 000,025,600 | ---- | M] (pdfconverter.com) -- C:\Program Files (x86)\pdfconverter.com\FreePDF Creator\itFPCPrnDisp.exe
PRC - [2009/02/23 11:43:54 | 000,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
PRC - [2007/02/12 16:43:44 | 000,065,536 | ---- | M] (O2Micro International) -- C:\Program Files (x86)\O2Micro Oz128 Driver\o2flash.exe


========== Modules (SafeList) ==========

MOD - [2010/10/01 20:11:04 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Mato\Desktop\OTL.exe
MOD - [2009/07/14 03:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2009/07/14 03:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV:64bit: - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV:64bit: - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2010/05/07 18:45:16 | 000,197,976 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe -- (LVPrcS64)
SRV:64bit: - [2010/05/06 11:30:22 | 000,357,456 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV:64bit: - [2009/12/21 10:44:06 | 000,535,552 | ---- | M] (CSR, plc) [Auto | Running] -- C:\Windows\SysNative\HFGService.dll -- (HFGService)
SRV:64bit: - [2009/07/14 03:41:56 | 000,195,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\umrdp.dll -- (UmRdpService)
SRV:64bit: - [2009/07/14 03:41:53 | 001,361,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PeerDistSvc.dll -- (PeerDistSvc)
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/14 03:40:24 | 000,689,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cscsvc.dll -- (CscService)
SRV:64bit: - [2009/07/14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2010/09/24 15:36:58 | 001,960,744 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe -- (TeamViewer5)
SRV - [2010/05/22 21:37:16 | 000,488,960 | ---- | M] (Crawler.com) [Auto | Running] -- C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe -- (sp_rssrv)
SRV - [2010/05/17 18:47:56 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2010/03/18 14:27:14 | 000,138,576 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_64)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/04 23:38:00 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe -- (NMSAccess)
SRV - [2010/03/03 20:16:06 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Intel(R)
SRV - [2009/02/23 11:43:54 | 000,307,200 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)
SRV - [2007/02/12 16:43:44 | 000,065,536 | ---- | M] (O2Micro International) [Auto | Running] -- C:\Program Files (x86)\O2Micro Oz128 Driver\o2flash.exe -- (o2flash)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2010/09/07 16:47:33 | 000,061,008 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2010/08/16 07:26:42 | 007,530,496 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NETwLv64.sys -- (NETwLv64) Intel(R)
DRV:64bit: - [2010/07/27 10:14:24 | 006,465,632 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64) Logitech Webcam Pro 9000(UVC)
DRV:64bit: - [2010/07/27 10:12:16 | 000,339,040 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64)
DRV:64bit: - [2010/05/07 18:43:30 | 000,030,304 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2Mon)
DRV:64bit: - [2010/05/07 18:43:30 | 000,030,304 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2M64)
DRV:64bit: - [2010/03/18 11:00:16 | 000,057,936 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:64bit: - [2010/03/18 11:00:00 | 000,063,568 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:64bit: - [2010/03/04 13:43:00 | 000,346,144 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010/03/03 19:51:40 | 000,540,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/12/21 10:43:36 | 000,052,224 | ---- | M] (CSR, plc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BthAudioHF.sys -- (BthAudioHF)
DRV:64bit: - [2009/12/21 10:43:00 | 000,078,848 | ---- | M] (CSR, plc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthav.sys -- (csr_a2dp)
DRV:64bit: - [2009/12/15 10:24:20 | 001,148,288 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ksaud.sys -- (ksaud)
DRV:64bit: - [2009/12/04 07:54:12 | 000,312,064 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AVerAF15.sys -- (AVerAF15)
DRV:64bit: - [2009/10/10 04:41:20 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2009/08/13 08:38:24 | 000,029,184 | ---- | M] (CSR, plc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcp.sys -- (BthAvrcp)
DRV:64bit: - [2009/07/14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/14 03:45:55 | 000,200,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmbus.sys -- (vmbus)
DRV:64bit: - [2009/07/14 03:45:55 | 000,046,672 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vmstorfl.sys -- (storflt)
DRV:64bit: - [2009/07/14 03:45:55 | 000,034,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\storvsc.sys -- (storvsc)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/14 01:42:58 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vms3cap.sys -- (s3cap)
DRV:64bit: - [2009/07/14 01:42:44 | 000,021,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VMBusHID.sys -- (VMBusHID)
DRV:64bit: - [2009/07/14 01:24:27 | 000,514,048 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\csc.sys -- (CSC)
DRV:64bit: - [2009/06/10 23:01:06 | 001,146,880 | ---- | M] (LSI Corp) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)
DRV:64bit: - [2009/06/10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 22:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64) Intel(R)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2007/04/04 16:54:50 | 000,043,264 | ---- | M] (O2Micro ) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\o2sdx64.sys -- (O2SDRDR)
DRV:64bit: - [2007/04/03 10:03:32 | 000,048,640 | ---- | M] (O2Micro ) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\o2mdx64.sys -- (O2MDRDR)
DRV - [2009/11/12 14:48:56 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Windows\SysWow64\drivers\StarOpen.sys -- (StarOpen)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1216007188-59351815-3529696467-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-1216007188-59351815-3529696467-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 5B 21 53 E6 39 F5 CA 01 [binary data]
IE - HKU\S-1-5-21-1216007188-59351815-3529696467-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1216007188-59351815-3529696467-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 192.104.67.250:8080



O1 HOSTS File: ([2010/05/17 06:51:46 | 000,000,842 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 71i.de
O2:64bit: - BHO: (LastPass Browser Helper Object) - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPBar64.dll (LastPass)
O2 - BHO: (LastPass Browser Helper Object) - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPBar.dll (LastPass)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3:64bit: - HKLM\..\Toolbar: (LastPass Toolbar) - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPBar64.dll (LastPass)
O3 - HKLM\..\Toolbar: (LastPass Toolbar) - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPBar.dll (LastPass)
O4:64bit: - HKLM..\Run: [Creative SB Monitoring Utility] C:\Windows\SysNative\SBAVMon.dll (Creative Technology Ltd.)
O4:64bit: - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [Free PDF Print Dispatcher] C:\Program Files (x86)\pdfconverter.com\FreePDF Creator\itFPCPrnDisp.exe (pdfconverter.com)
O4:64bit: - HKLM..\Run: [NvCplDaemon] C:\Windows\SysNative\NvCpl.DLL (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1216007188-59351815-3529696467-1000..\Run: [ICQ] C:\Program Files (x86)\ICQ7.1\ICQ.exe (ICQ, LLC.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = [binary data]
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = [binary data]
O7 - HKU\S-1-5-21-1216007188-59351815-3529696467-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: E&xportovať do programu Microsoft Excel - C:\Program Files (x86)\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - C:\Program Files (x86)\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O9:64bit: - Extra Button: LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\LastPass\LPBar64.dll (LastPass)
O9 - Extra Button: LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\LastPass\LPBar.dll (LastPass)
O9 - Extra Button: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files (x86)\ICQ7.1\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files (x86)\ICQ7.1\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 192.168.0.1
O18:64bit: - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\x-excid {9D6CC632-1337-4a33-9214-2DA092E776F4} - Reg Error: Key error. File not found
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\x-excid {9D6CC632-1337-4a33-9214-2DA092E776F4} - C:\Windows\Downloaded Program Files\mimectl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - Reg Error: Key error. File not found
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - Reg Error: Key error. - c:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: vidc.i420 - lvcod64.dll (Logitech Inc.)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.i420 - C:\Windows\SysWow64\lvcodec2.dll (Logitech Inc.)
Drivers32: vidc.yv12 - C:\Windows\SysWow64\yv12vfw.dll (http://www.helixcommunity.org)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point
Nahoru
ujoslav
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 30 zář 2010 21:51

Re: Skype rozosiela odkazy a prezvana

#7 Příspěvek od ujoslav »

========== Files/Folders - Created Within 30 Days ==========

[2010/10/01 20:11:01 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\Mato\Desktop\OTL.exe
[2010/09/30 22:45:14 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010/09/30 22:45:13 | 000,000,000 | ---D | C] -- C:\rsit
[2010/09/30 22:22:37 | 000,000,000 | ---D | C] -- C:\Users\Mato\AppData\Roaming\Malwarebytes
[2010/09/30 22:22:30 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010/09/30 22:22:28 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010/09/30 22:22:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010/09/30 22:22:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010/09/29 18:05:59 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ks.sys
[2010/09/26 08:42:22 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\logishrd
[2010/09/26 08:42:22 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\logishrd
[2010/09/26 08:42:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\LWS
[2010/09/26 08:42:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Logitech
[2010/09/21 18:00:34 | 000,000,000 | ---D | C] -- C:\Users\Mato\AppData\Local\Logishrd
[2010/09/18 12:41:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DVD Audio Extractor
[2010/09/18 12:00:26 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2010/09/18 12:00:26 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2010/09/18 12:00:26 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2010/09/18 12:00:26 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2010/09/18 12:00:26 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2010/09/18 12:00:26 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2010/09/18 12:00:26 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2010/09/18 12:00:26 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2010/09/18 12:00:26 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2010/09/18 12:00:26 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2010/09/18 12:00:25 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2010/09/18 12:00:25 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2010/09/18 12:00:25 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2010/09/18 12:00:25 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2010/09/18 12:00:25 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2010/09/18 12:00:25 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2010/09/18 12:00:25 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2010/09/18 12:00:25 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2010/09/18 12:00:25 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2010/09/18 12:00:25 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2010/09/18 12:00:24 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2010/09/18 12:00:24 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2010/09/18 12:00:24 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2010/09/18 12:00:24 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2010/09/18 12:00:24 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2010/09/18 12:00:24 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2010/09/18 12:00:24 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2010/09/18 12:00:24 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2010/09/18 12:00:24 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2010/09/18 12:00:24 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2010/09/18 12:00:22 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2010/09/18 12:00:22 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2010/09/18 12:00:22 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2010/09/18 12:00:22 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2010/09/18 12:00:21 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2010/09/18 12:00:21 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2010/09/18 12:00:21 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2010/09/18 12:00:21 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll
[2010/09/18 12:00:21 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll
[2010/09/18 12:00:21 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2010/09/18 12:00:21 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll
[2010/09/18 12:00:21 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll
[2010/09/18 12:00:20 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll
[2010/09/18 12:00:20 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2010/09/18 12:00:20 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2010/09/18 12:00:20 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2010/09/18 12:00:20 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2010/09/18 12:00:20 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2010/09/18 12:00:20 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2010/09/18 12:00:20 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2010/09/18 12:00:20 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2010/09/18 12:00:20 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2010/09/18 12:00:19 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2010/09/18 12:00:19 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2010/09/18 12:00:19 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2010/09/18 12:00:19 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2010/09/18 12:00:19 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2010/09/18 12:00:19 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2010/09/18 12:00:18 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2010/09/18 12:00:18 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2010/09/18 12:00:18 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2010/09/18 12:00:18 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2010/09/18 12:00:18 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2010/09/18 12:00:18 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2010/09/18 12:00:18 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2010/09/18 12:00:18 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2010/09/18 12:00:18 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2010/09/18 12:00:18 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2010/09/18 12:00:18 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2010/09/18 12:00:18 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2010/09/18 12:00:18 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2010/09/18 12:00:18 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2010/09/18 12:00:17 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2010/09/18 12:00:17 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2010/09/18 12:00:17 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2010/09/18 12:00:17 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2010/09/18 12:00:17 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2010/09/18 12:00:17 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2010/09/18 12:00:17 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2010/09/18 12:00:17 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2010/09/18 12:00:17 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2010/09/18 12:00:17 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2010/09/18 12:00:16 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2010/09/18 12:00:16 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2010/09/18 12:00:16 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2010/09/18 12:00:16 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2010/09/18 12:00:16 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2010/09/18 12:00:16 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2010/09/18 12:00:16 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2010/09/18 12:00:16 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2010/09/18 12:00:16 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2010/09/18 12:00:16 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2010/09/18 12:00:15 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2010/09/18 12:00:15 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2010/09/18 12:00:15 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2010/09/18 12:00:15 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2010/09/18 12:00:15 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2010/09/18 12:00:15 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2010/09/18 12:00:14 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2010/09/18 12:00:14 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2010/09/18 12:00:14 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2010/09/18 12:00:14 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2010/09/18 12:00:14 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2010/09/18 12:00:14 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2010/09/18 12:00:14 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2010/09/18 12:00:14 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2010/09/18 12:00:13 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2010/09/18 12:00:13 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2010/09/18 12:00:13 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2010/09/18 12:00:13 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2010/09/18 12:00:13 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2010/09/18 12:00:13 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2010/09/18 12:00:12 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2010/09/18 12:00:12 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2010/09/18 12:00:12 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll
[2010/09/18 12:00:12 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2010/09/18 12:00:12 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2010/09/18 12:00:12 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2010/09/18 12:00:12 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2010/09/18 12:00:12 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2010/09/18 12:00:11 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2010/09/18 12:00:11 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2010/09/18 12:00:11 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2010/09/18 12:00:11 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2010/09/18 12:00:11 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2010/09/18 12:00:11 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2010/09/18 12:00:11 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2010/09/18 12:00:11 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2010/09/18 12:00:11 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2010/09/18 12:00:11 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2010/09/18 12:00:11 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2010/09/18 12:00:11 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2010/09/18 12:00:10 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2010/09/18 12:00:10 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2010/09/18 12:00:10 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2010/09/18 12:00:10 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2010/09/18 12:00:10 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2010/09/18 12:00:10 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2010/09/18 12:00:10 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2010/09/18 12:00:10 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2010/09/18 12:00:09 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll
[2010/09/18 12:00:09 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll
[2010/09/18 12:00:09 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2010/09/18 12:00:09 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2010/09/18 12:00:09 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2010/09/18 12:00:09 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2010/09/18 12:00:09 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2010/09/18 12:00:09 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2010/09/18 12:00:09 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2010/09/18 12:00:09 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2010/09/18 12:00:09 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2010/09/18 12:00:09 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2010/09/18 12:00:08 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2010/09/18 12:00:08 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2010/09/18 12:00:08 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2010/09/18 12:00:08 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2010/09/18 12:00:08 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2010/09/18 12:00:08 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2010/09/18 12:00:08 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2010/09/18 12:00:08 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2010/09/18 12:00:08 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2010/09/18 12:00:08 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2010/09/18 12:00:07 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2010/09/18 12:00:07 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2010/09/18 12:00:06 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2010/09/18 12:00:06 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2010/09/18 12:00:06 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2010/09/18 12:00:06 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2010/09/18 12:00:06 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2010/09/18 12:00:06 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2010/09/18 12:00:05 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2010/09/18 12:00:05 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2010/09/18 12:00:05 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2010/09/18 12:00:05 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2010/09/18 12:00:05 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2010/09/18 12:00:05 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2010/09/18 12:00:04 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2010/09/18 12:00:04 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2010/09/18 12:00:04 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2010/09/18 12:00:04 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2010/09/18 12:00:04 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2010/09/18 12:00:04 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2010/09/18 11:56:40 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2010/09/18 11:39:08 | 000,000,000 | ---D | C] -- C:\Users\Mato\AppData\Roaming\Media Player Classic
[2010/09/18 11:38:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MPC-HC
[2010/09/18 11:35:55 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
[2010/09/15 20:17:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Winamp Detect
[2010/09/15 19:46:55 | 001,633,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2010/09/15 19:46:55 | 001,502,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2010/09/15 19:46:55 | 001,448,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2010/09/15 19:46:55 | 001,355,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9.dll
[2010/09/15 19:46:55 | 000,819,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2010/09/15 19:46:55 | 000,719,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2010/09/15 19:46:55 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2010/09/15 19:46:55 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2010/09/15 19:46:55 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2010/09/15 19:46:55 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2010/09/15 19:46:55 | 000,150,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2010/09/15 19:46:55 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2010/09/15 19:46:55 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2010/09/15 19:46:55 | 000,114,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2010/09/15 19:46:55 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2010/09/15 19:46:55 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2010/09/15 19:46:55 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2010/09/15 19:46:55 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imgutil.dll
[2010/09/15 19:46:51 | 000,690,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2010/09/15 19:46:51 | 000,596,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2010/09/15 19:46:51 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2010/09/15 19:46:51 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2010/09/15 19:46:51 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2010/09/15 19:46:51 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2010/09/15 19:46:51 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2010/09/15 19:46:51 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2010/09/15 19:46:51 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2010/09/15 19:46:51 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2010/09/15 19:46:48 | 000,532,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2010/09/15 19:46:48 | 000,353,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxtmsft.dll
[2010/09/15 19:46:48 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2010/09/15 19:46:48 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieaksie.dll
[2010/09/15 19:46:48 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
[2010/09/15 19:46:48 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxtrans.dll
[2010/09/15 19:46:48 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2010/09/15 19:46:48 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll
[2010/09/15 19:46:48 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakui.dll
[2010/09/15 19:46:48 | 000,157,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakeng.dll
[2010/09/15 19:46:48 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll
[2010/09/15 19:46:48 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2010/09/15 19:46:48 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\admparse.dll
[2010/09/15 19:46:48 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2010/09/15 19:46:48 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll
[2010/09/15 19:46:45 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2010/09/15 19:46:45 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2010/09/15 19:46:45 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2010/09/15 19:46:45 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010/09/15 19:46:39 | 002,431,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iertutil.dll
[2010/09/15 19:46:39 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2010/09/15 19:46:39 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2010/09/15 19:46:39 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2010/09/15 19:46:39 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2010/09/15 19:46:36 | 003,695,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2010/09/15 19:46:36 | 003,695,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2010/09/15 19:46:36 | 000,545,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2010/09/15 19:46:35 | 000,601,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2010/09/15 19:46:35 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2010/09/15 19:46:35 | 000,424,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vbscript.dll
[2010/09/15 19:46:35 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2010/09/15 19:46:35 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2010/09/15 19:46:35 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2010/09/15 19:46:35 | 000,090,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2010/09/15 19:46:35 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2010/09/15 19:46:35 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2010/09/15 19:46:35 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2010/09/15 19:46:35 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2010/09/15 19:46:34 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2010/09/15 19:46:34 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2010/09/15 19:46:34 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2010/09/15 19:46:34 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msls31.dll
[2010/09/15 19:46:34 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2010/09/15 19:46:34 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2010/09/15 19:46:34 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2010/09/15 19:46:34 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2010/09/15 19:46:34 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2010/09/15 19:46:34 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2010/09/15 19:46:34 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2010/09/15 19:46:34 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2010/09/15 19:46:34 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2010/09/15 19:46:34 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2010/09/15 19:46:08 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll
[2010/09/15 19:46:08 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll
[2010/09/15 19:46:07 | 004,068,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mf.dll
[2010/09/15 19:46:07 | 001,888,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2010/09/15 19:46:07 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2010/09/15 19:46:07 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll
[2010/09/15 19:46:06 | 003,181,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mf.dll
[2010/09/15 19:45:42 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10warp.dll
[2010/09/15 19:45:42 | 000,899,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2010/09/15 19:45:42 | 000,737,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d2d1.dll
[2010/09/15 19:45:42 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10_1core.dll
[2010/09/15 19:45:41 | 001,844,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2010/09/15 19:45:41 | 001,543,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2010/09/15 19:45:41 | 001,076,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DWrite.dll
[2010/09/15 19:45:41 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2010/09/15 19:45:15 | 000,466,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2010/09/15 19:45:15 | 000,279,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2010/09/15 19:45:15 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsRasterService.dll
[2010/09/15 19:45:15 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsRasterService.dll
[2010/09/15 19:44:50 | 001,863,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.dll
[2010/09/15 19:44:50 | 001,495,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExplorerFrame.dll
[2010/09/15 16:48:20 | 000,000,000 | ---D | C] -- C:\Users\Mato\AppData\Roaming\foobar2000
[2010/09/15 16:47:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\foobar2000
[2010/09/15 09:12:17 | 007,530,496 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\NETwLv64.sys
[2010/09/13 07:06:24 | 000,000,000 | ---D | C] -- C:\Users\Mato\AppData\Roaming\Mozilla
[2010/09/05 12:16:06 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2010/09/05 12:15:05 | 002,748,416 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\NETwLr64.dll
[2010/09/05 12:15:05 | 000,787,456 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\NETwLc64.dll
[2010/09/04 12:55:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype

========== Files - Modified Within 30 Days ==========

[2010/10/01 20:45:28 | 002,359,296 | -HS- | M] () -- C:\Users\Mato\NTUSER.DAT
[2010/10/01 20:11:04 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Mato\Desktop\OTL.exe
[2010/10/01 20:06:05 | 000,001,018 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1216007188-59351815-3529696467-1000UA.job
[2010/10/01 19:28:36 | 000,017,136 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/10/01 19:28:36 | 000,017,136 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/10/01 19:25:54 | 000,726,316 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/10/01 19:25:54 | 000,616,008 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/10/01 19:25:54 | 000,106,388 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/10/01 19:21:26 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/10/01 19:21:20 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/10/01 19:21:19 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\drivers\lvuvc.hs
[2010/10/01 05:58:49 | 001,382,410 | -H-- | M] () -- C:\Users\Mato\AppData\Local\IconCache.db
[2010/09/30 22:22:32 | 000,001,015 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/09/21 18:00:18 | 000,018,960 | ---- | M] (Logitech, Inc.) -- C:\Windows\SysNative\drivers\LNonPnP.sys
[2010/09/15 23:33:30 | 000,018,432 | ---- | M] () -- C:\Users\Mato\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/09/09 20:56:52 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2010/09/07 17:12:17 | 000,038,848 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2010/09/07 17:11:54 | 000,167,592 | ---- | M] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2010/09/07 16:52:29 | 000,051,280 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2010/09/07 16:52:09 | 000,121,936 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2010/09/07 16:47:49 | 000,028,752 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr.sys
[2010/09/07 16:47:33 | 000,061,008 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2010/09/07 16:47:10 | 000,020,048 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2010/09/07 06:06:00 | 000,000,966 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1216007188-59351815-3529696467-1000Core.job
[2010/09/05 22:49:31 | 000,000,483 | ---- | M] () -- C:\Windows\CDRipper.ini

========== Files Created - No Company Name ==========

[2010/09/30 22:22:32 | 000,001,015 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/09/15 19:46:55 | 000,072,533 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2010/09/15 19:46:55 | 000,072,533 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2010/09/05 22:49:31 | 000,000,483 | ---- | C] () -- C:\Windows\CDRipper.ini
[2010/07/27 10:03:20 | 010,829,656 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll
[2010/07/27 10:03:18 | 000,290,648 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll
[2010/07/26 21:51:17 | 000,008,415 | ---- | C] () -- C:\Users\Mato\AppData\Roaming\PStrip.ini
[2010/06/25 20:40:28 | 000,018,432 | ---- | C] () -- C:\Users\Mato\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/05/22 21:37:16 | 000,142,592 | ---- | C] () -- C:\Windows\SysWow64\drivers\sp_rsdrv2.sys
[2010/05/18 19:44:31 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2010/05/18 19:39:01 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2010/05/18 19:36:54 | 000,000,917 | ---- | C] () -- C:\Users\Mato\AppData\Roaming\coreavc.ini
[2010/05/18 18:48:19 | 000,007,168 | ---- | C] () -- C:\Windows\SysWow64\drivers\StarOpen.sys
[2010/05/17 18:48:52 | 000,177,664 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2010/05/17 18:48:52 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2009/07/14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/02/24 12:40:02 | 000,001,352 | ---- | C] () -- C:\ProgramData\cfSB1090.ini
[2009/02/24 12:40:02 | 000,001,352 | ---- | C] () -- C:\ProgramData\cfSB0910.ini
[2009/02/24 12:40:02 | 000,001,346 | ---- | C] () -- C:\ProgramData\cfSB1100.ini
[2009/02/24 12:40:02 | 000,001,302 | ---- | C] () -- C:\ProgramData\cfSB0300.ini
[2009/02/24 12:40:02 | 000,001,282 | ---- | C] () -- C:\ProgramData\cfSB0471.ini
[2009/02/24 12:40:02 | 000,001,208 | ---- | C] () -- C:\ProgramData\cfSB0490.ini
[2009/02/24 12:40:02 | 000,001,027 | ---- | C] () -- C:\ProgramData\cfSB0560.ini
[2009/02/24 12:40:02 | 000,001,026 | ---- | C] () -- C:\ProgramData\cfSB0271.ini
[2009/02/24 12:40:02 | 000,001,026 | ---- | C] () -- C:\ProgramData\cfSB0270.ini
[2009/02/24 12:40:02 | 000,000,590 | ---- | C] () -- C:\ProgramData\cfSB0950.ini

========== LOP Check ==========

[2010/05/22 20:57:23 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\ACD Systems
[2010/07/25 17:19:57 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\BatteryBar
[2010/05/18 18:48:22 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Canneverbe Limited
[2010/09/15 17:11:09 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\foobar2000
[2010/06/12 18:10:01 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\HandBrake
[2010/10/01 19:21:47 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\ICQ
[2010/05/18 19:34:36 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\IrfanView
[2010/05/16 22:38:54 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Leadertech
[2010/08/22 10:40:01 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Mp3tag
[2010/06/12 11:58:55 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\rockbox.org
[2010/09/30 21:57:10 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Spyware Terminator
[2010/05/22 21:29:38 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\TeamViewer
[2010/09/26 10:02:56 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\uTorrent
[2010/06/09 18:02:46 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\VitySoft
[2010/08/21 07:13:48 | 000,032,548 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========
Nahoru
ujoslav
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 30 zář 2010 21:51

Re: Skype rozosiela odkazy a prezvana

#8 Příspěvek od ujoslav »

========== Custom Scans ==========


< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Google Update" = "C:\Users\Mato\AppData\Local\Google\Update\GoogleUpdate.exe" /c -- [2010/05/16 22:56:09 | 000,136,176 | ---- | M] (Google Inc.)
"ICQ" = "C:\Program Files (x86)\ICQ7.1\ICQ.exe" silent loginmode=4 -- [2010/05/17 06:50:09 | 000,133,368 | ---- | M] (ICQ, LLC.)
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2009/07/14 03:39:41 | 001,475,072 | ---- | M] (Microsoft Corporation)

< c:\windows\*.* /U >

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2010/06/25 21:41:09 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\AccurateRip
[2010/05/22 20:57:23 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\ACD Systems
[2010/05/17 21:23:20 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Adobe
[2010/07/25 17:19:57 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\BatteryBar
[2010/05/18 18:48:22 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Canneverbe Limited
[2010/09/15 17:11:09 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\foobar2000
[2010/06/12 18:10:01 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\HandBrake
[2010/10/01 19:21:47 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\ICQ
[2010/05/16 21:02:09 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Identities
[2010/05/16 22:49:23 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\InstallShield
[2010/05/16 22:51:41 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Intel Corporation
[2010/05/18 19:34:36 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\IrfanView
[2010/05/16 22:38:54 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Leadertech
[2010/05/16 22:41:05 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Logishrd
[2010/05/16 22:42:48 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Logitech
[2010/05/16 23:04:37 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Macromedia
[2010/09/30 22:22:37 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Malwarebytes
[2009/07/14 09:54:31 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Media Center Programs
[2010/09/18 11:39:08 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Media Player Classic
[2010/09/15 11:42:07 | 000,000,000 | --SD | M] -- C:\Users\Mato\AppData\Roaming\Microsoft
[2010/09/13 07:06:24 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Mozilla
[2010/08/22 10:40:01 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Mp3tag
[2010/05/16 23:00:31 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\NVIDIA
[2010/06/12 11:58:55 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\rockbox.org
[2010/09/30 21:53:18 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Skype
[2010/09/30 19:14:10 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\skypePM
[2010/06/20 22:20:42 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Sony Corporation
[2010/09/30 21:57:10 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Spyware Terminator
[2010/05/22 21:29:38 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\TeamViewer
[2010/09/26 10:02:56 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\uTorrent
[2010/06/09 18:02:46 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\VitySoft
[2010/09/15 20:19:53 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\Winamp
[2010/05/18 19:58:02 | 000,000,000 | ---D | M] -- C:\Users\Mato\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2010/09/26 08:42:48 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Users\Mato\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
[2010/05/16 21:25:33 | 000,010,134 | R--- | M] () -- C:\Users\Mato\AppData\Roaming\Microsoft\Installer\{3F2B4DAD-88CB-4F5B-86B2-DF3384063EFA}\ARPPRODUCTICON.exe
[2010/05/08 16:05:39 | 000,697,965 | ---- | M] () -- C:\Users\Mato\AppData\Roaming\uTorrent\unins000.exe
[2010/09/18 12:39:47 | 000,393,080 | ---- | M] (BitTorrent, Inc.) -- C:\Users\Mato\AppData\Roaming\uTorrent\utorrent.exe


< MD5 for: AGP440.SYS >
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysWow64\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysWow64\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys

< MD5 for: CDROM.SYS >
[2009/07/14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysWow64\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[2009/07/14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys

< MD5 for: CNGAUDIT.DLL >
[2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009/07/14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll

< MD5 for: CRYPTSVC.DLL >
[2009/07/14 03:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_d1f48b0bb4805490\cryptsvc.dll
[2009/07/14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\SysWOW64\cryptsvc.dll
[2009/07/14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\SysWOW64\cryptsvc.dll
[2009/07/14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll

< MD5 for: EXPLORER.EXE >
[2009/07/14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2009/10/31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\SysWOW64\explorer.exe
[2009/10/31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\SysWOW64\explorer.exe
[2009/10/31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2009/08/03 08:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2009/10/31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\explorer.exe
[2009/10/31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009/08/03 07:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2009/10/31 08:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009/08/03 07:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009/07/14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009/10/31 08:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2009/08/03 08:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe

< MD5 for: HAL.DLL >
[2009/07/14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll

< MD5 for: IASTOR.SYS >
[2010/03/03 19:51:40 | 000,540,696 | ---- | M] (Intel Corporation) MD5=ABBF174CB394F5C437410A788B7E404A -- C:\Windows\SysWow64\DriverStore\FileRepository\iaahci.inf_amd64_neutral_78ebae21a80aa2b4\iaStor.sys

< MD5 for: IASTORV.SYS >
[2009/07/14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysWow64\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys
[2009/07/14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys

< MD5 for: ISAPNP.SYS >
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysWow64\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\isapnp.sys
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\isapnp.sys

< MD5 for: LSASS.EXE >
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_023e7e05767d22ad\lsass.exe
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_02bd4ae48fa2de68\lsass.exe

< MD5 for: NDIS.SYS >
[2009/07/14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys

< MD5 for: NETLOGON.DLL >
[2009/07/14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009/07/14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll

< MD5 for: NVRAID.SYS >
[2009/07/14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysWow64\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvraid.sys
[2009/07/14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2009/07/14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysWow64\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys

< MD5 for: SCECLI.DLL >
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009/07/14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll

< MD5 for: SMSS.EXE >
[2009/07/14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe

< MD5 for: SVCHOST.EXE >
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2010/06/14 08:39:16 | 001,889,152 | ---- | M] (Microsoft Corporation) MD5=542C6767C68C9D6AAACA59436B0D15C2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20733_none_0fd0b57e990e2079\tcpip.sys
[2010/06/14 08:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_0f59b7ad7fe2fcc8\tcpip.sys
[2009/07/14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys

< MD5 for: USERINIT.EXE >
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009/07/14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe

< MD5 for: WINLOGON.EXE >
[2009/07/14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009/10/28 09:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009/10/28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe

< MD5 for: WS2_32.DLL >
[2009/07/14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_4eaca269e8070c6b\ws2_32.dll
[2009/07/14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\SysWOW64\ws2_32.dll
[2009/07/14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\SysWOW64\ws2_32.dll
[2009/07/14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
< End of report >
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Skype rozosiela odkazy a prezvana

#9 Příspěvek od motji »

Já tam nic nevidím :o , jak se chová počítač?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
ujoslav
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 30 zář 2010 21:51

Re: Skype rozosiela odkazy a prezvana

#10 Příspěvek od ujoslav »

Symptomy, ktore mal PC vcera:

- Skype posiela znamy odkaz na stiahnutie zavirenych fotiek mojim kontaktom a nahodne ich prezvana.
- Blbne winamp - pustim muziku a prehravanie ostane stat na case 00:00
- Streamovane videa z webu idu cca 2 sekundy a potom vzdy zastanu.
- po par minutach vypadava zvuk, nabehne az po restarte, potom zase ticho

Vcera tesne pred spanim som to preskenoval Avastom, Spyware Terminatorom a MBAM-om.
Spyware Terminator nasiel 27 tracking cookies, ktore som ho nechal zmazat.
Avast ani MBAM nenasli nic.

Dnes winamp, zvuk aj webove videa idu v poho. Skype dnes nemam moznost otestovat.
Mozno to opravil Spyware Terminator (aj ked pochybujem) alebo len ovladac zvukovky nemal svoj den :?:

Takze v logu je vsetko OK?
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Skype rozosiela odkazy a prezvana

#11 Příspěvek od motji »

Já tam nic nevidím :o

:arrow: Stahněte z mého podpisu AVPTOOl http://www.viry.cz/forum/viewtopic.php?f=29&t=58179

-Podle návodu nainstalujte a proveďte sken
-co najde nechejte léčit, mazat
-sken může trvat několik hodin
-vložte zde log z výsledky
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
ujoslav
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 30 zář 2010 21:51

Re: Skype rozosiela odkazy a prezvana

#12 Příspěvek od ujoslav »

Vysledky:

Autoscan: completed 3 minutes ago (events: 8, objects: 418901, time: 01:09:33)
2. 10. 2010 0:02:52 Task started
2. 10. 2010 0:44:28 Detected: Trojan.Win32.Agent.dyuz D:\Install\DVDFab Platinum 5.2.2.0\DVDFab5220.exe/data0000
2. 10. 2010 0:44:36 Deleted: Trojan.Win32.Agent.dyuz D:\Install\DVDFab Platinum 5.2.2.0\DVDFab5220.exe
2. 10. 2010 0:53:44 Detected: Hoax.Win32.ArchSMS.iyq D:\Install\Rockbox\RockboxUtility\RockboxUtility.exe
2. 10. 2010 0:54:15 Deleted: Hoax.Win32.ArchSMS.iyq D:\Install\Rockbox\RockboxUtility\RockboxUtility.exe
2. 10. 2010 0:56:15 Detected: Trojan-PSW.Win32.Dybalom.op D:\Install\Windows XP\Windows.Xp.Genuine.Advantage.WGA.OGA.march.2009.(lildude).(v24).1.9.40.0\XPActivator.exe
2. 10. 2010 0:56:16 Deleted: Trojan-PSW.Win32.Dybalom.op D:\Install\Windows XP\Windows.Xp.Genuine.Advantage.WGA.OGA.march.2009.(lildude).(v24).1.9.40.0\XPActivator.exe
2. 10. 2010 1:12:25 Task completed

Zmazalo mi to jeden crack a dva nezavadne softy, ktore som tam uz mal dlho.
Asi je to PC ciste. Mozno sa to svinstvo zdrzovalo iba v cache Chromu, ktoru som vcera premazal.

Dakujem velmi pekne za pomoc.
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Skype rozosiela odkazy a prezvana

#13 Příspěvek od motji »

Avptool odinstalujte.

:arrow: Ještě znovu spustte OTL, klikněte na tlačítko vyčisti, uklidí po sobě :)

Pokud již nejsou žádné problémy, je to vše :)
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“