VIRY.CZ

Zdravím prosím o kontrolu cpt mě začalo lehce zlobit při větší zátěži se vypne a po restaru se nenastartuje systém a vypne se

zde log :


Logfile of random's system information tool 1.06 (written by random/random)
Run by Tomik at 2010-11-02 18:17:52
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 4 GB (8%) free of 50 GB
Total RAM: 1022 MB (19% free)


======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\MP Scheduled Scan.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\WINDOWS\WebIE.dll [2008-06-30 491520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88618A96-6D8A-42E7-B932-9073D5B2080F}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-07-02 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-07-02 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\WINDOWS\WebIE.dll [2008-06-30 491520]
{10CECF4F-A96E-4803-8AC2-F565FB29FF47}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2010-01-11 13666408]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2010-07-02 2202704]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"WEBTRAN"= []
"OEXPRESS"= []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\36X Raid Configurer]
C:\WINDOWS\system32\xRaidSetup.exe [2007-11-19 1970176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
C:\WINDOWS\ALCMTR.EXE [2010-01-19 64032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
C:\Program Files\DAEMON Tools\daemon.exe -lang 1033 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JMB36X IDE Setup]
C:\WINDOWS\RaidTool\xInsIDE.exe [2007-03-20 36864]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Utility]
C:\WINDOWS\Logi_MwX.Exe [2004-03-03 19968]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NSLauncher]
C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe [2007-11-06 3096576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2010-01-11 13666408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\WINDOWS\system32\NvMcTray.dll [2010-01-11 110696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2009-03-20 1312256]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
C:\WINDOWS\RTHDCPL.EXE [2010-01-19 18790432]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]
C:\WINDOWS\SkyTel.EXE [2010-01-19 1833504]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2007-06-13 528384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SystemKey]
C:\Documents and Settings\All Users\Data aplikací\SystemKey\SystemKey.dll [2006-04-07 339968]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinFast Schedule]
C:\Program Files\WinFast\WFTVFM\WFWIZ.exe [2006-03-20 327680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\zBrowser Launcher]
C:\Program Files\Logitech\iTouch\iTouch.exe [2004-03-18 892928]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^HP Digital Imaging Monitor.lnk]
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2006-02-19 288472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Tomik^Nabídka Start^Programy^Po spuštění^Adobe Gamma.lnk]
C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-03-16 113664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LMIinit]
C:\WINDOWS\system32\LMIinit.dll [2008-10-16 87352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\QIP Infium JadrisPack\infium.exe"="C:\QIP Infium JadrisPack\infium.exe:*:Enabled:infium"
"D:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe"="D:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe:*:Enabled:Mass Effect 2 Game"
"D:\Program Files\Mass Effect 2\MassEffect2Launcher.exe"="D:\Program Files\Mass Effect 2\MassEffect2Launcher.exe:*:Enabled:Mass Effect 2 Launcher"
"D:\Command & Conquer 3 Kane's Wrath\RetailExe\1.0\cnc3ep1.dat"="D:\Command & Conquer 3 Kane's Wrath\RetailExe\1.0\cnc3ep1.dat:*:Enabled:Command & Conquer(tm) 3: Kane's Wrath"
"D:\Command & Conquer 3 Kane's Wrath\RetailExe\1.2\cnc3ep1.dat"="D:\Command & Conquer 3 Kane's Wrath\RetailExe\1.2\cnc3ep1.dat:*:Enabled:Command & Conquer(tm) 3: Kane's Wrath"
"C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe"="C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process "
"C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe"="C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater"
"C:\Program Files\BitSpirit\BitSpirit.exe"="C:\Program Files\BitSpirit\BitSpirit.exe:*:Enabled:BitSpirit"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"D:\COMMAND.AND.CONQUER.3.TW.V1.04.ALL.HATRED.NOCD\C&C3\RetailExe\1.4\cnc3game.dat"="D:\COMMAND.AND.CONQUER.3.TW.V1.04.ALL.HATRED.NOCD\C&C3\RetailExe\1.4\cnc3game.dat:*:Enabled:Command & Conquer 3 Tiberium Wars"
"H:\Bionika\Prince of Persia Zapomenuté písky\Prince of Persia.exe"="H:\Bionika\Prince of Persia Zapomenuté písky\Prince of Persia.exe:*:Enabled:Prince of Persia Zapomenuté písky"
"H:\Bionika\Prince of Persia Zapomenuté písky\GameSettings.exe"="H:\Bionika\Prince of Persia Zapomenuté písky\GameSettings.exe:*:Enabled:Prince of Persia Zapomenuté písky Settings"
"H:\Bionika\Prince of Persia Zapomenuté písky\gu.exe"="H:\Bionika\Prince of Persia Zapomenuté písky\gu.exe:*:Enabled:Prince of Persia Zapomenuté písky Update"
"H:\Bionika\Prince of Persia Zapomenuté písky\UPlayBrowser.exe"="H:\Bionika\Prince of Persia Zapomenuté písky\UPlayBrowser.exe:*:Enabled:Prince of Persia Zapomenuté písky UPlay"
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe"="C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher"
"D:\Program Files\StarCraft II\StarCraft II.exe"="D:\Program Files\StarCraft II\StarCraft II.exe:*:Enabled:Blizzard Launcher"
"D:\Program Files\StarCraft II\Versions\Base15405\SC2.exe"="D:\Program Files\StarCraft II\Versions\Base15405\SC2.exe:*:Enabled:StarCraft II"
"D:\Program Files\C&C4\Data\CNC4.game"="D:\Program Files\C&C4\Data\CNC4.game:*:Enabled:Command & Conquer™ 4"
"D:\Program Files\C&C4\Data\WorldBuilder.exe"="D:\Program Files\C&C4\Data\WorldBuilder.exe:*:Enabled:Command & Conquer™ 4 World Builder"
"D:\Program Files\C&C4\Data\CNC4.exe"="D:\Program Files\C&C4\Data\CNC4.exe:*:Enabled:Command & Conquer™ 4"
"D:\Program Files\Mass Effect\Binaries\MassEffect.exe"="D:\Program Files\Mass Effect\Binaries\MassEffect.exe:*:Enabled:Mass Effect Game"
"D:\Program Files\Mass Effect\MassEffectLauncher.exe"="D:\Program Files\Mass Effect\MassEffectLauncher.exe:*:Enabled:Mass Effect Launcher"
"C:\Program Files\Icecast2 Win32\Icecast2.exe"="C:\Program Files\Icecast2 Win32\Icecast2.exe:*:Enabled:Icecast2win"
"D:\Program Files\Battlefield Bad Company 2\BFBC2Updater.exe"="D:\Program Files\Battlefield Bad Company 2\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2"
"D:\Warhammer Dawn of War 2\DOW2.exe"="D:\Warhammer Dawn of War 2\DOW2.exe:*:Enabled:DOW2"
"C:\Documents and Settings\Tomik\Plocha\Mobiola.Web.Camera.for.S60.v3.0.19\webcam.exe"="C:\Documents and Settings\Tomik\Plocha\Mobiola.Web.Camera.for.S60.v3.0.19\webcam.exe:*:Enabled:Mobiola Web Camera"
"C:\Program Files\DsNET Corp\aTube Catcher 2.0\yct.exe"="C:\Program Files\DsNET Corp\aTube Catcher 2.0\yct.exe:*:Enabled:aTube Catcher to download and convert videos."
"D:\Program Files\Warhammer 40000 Dawn of War II - Chaos Rising\DOW2.exe"="D:\Program Files\Warhammer 40000 Dawn of War II - Chaos Rising\DOW2.exe:*:Enabled:Dawn of War II"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======File associations======

.js - edit -

======List of files/folders created in the last 1 months======

2010-11-02 18:17:52 ----D---- C:\rsit
2010-11-02 16:53:21 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2010-11-02 16:31:47 ----D---- C:\WINDOWS\LastGood
2010-10-29 19:58:06 ----D---- C:\Program Files\Mobiola Web Camera for S60
2010-10-27 19:53:54 ----A---- C:\WINDOWS\system32\LMRTREND.dll
2010-10-27 19:53:52 ----A---- C:\WINDOWS\system32\dxtmsft3.dll
2010-10-27 19:53:46 ----A---- C:\WINDOWS\system32\unam4ie.exe
2010-10-27 19:53:40 ----A---- C:\WINDOWS\system32\vidx16.dll
2010-10-27 19:53:39 ----A---- C:\WINDOWS\system32\qcut.dll
2010-10-27 19:53:37 ----A---- C:\WINDOWS\system32\w95inf32.dll
2010-10-27 19:53:37 ----A---- C:\WINDOWS\system32\w95inf16.dll
2010-10-17 20:15:31 ----D---- C:\Documents and Settings\Tomik\Data aplikací\OpenCandy
2010-10-17 20:15:09 ----D---- C:\Documents and Settings\Tomik\Data aplikací\AnvSoft
2010-10-17 20:14:14 ----D---- C:\Program Files\AnvSoft
2010-10-14 13:23:19 ----D---- C:\Program Files\Microsoft Games for Windows - LIVE
2010-10-13 23:23:19 ----D---- C:\Documents and Settings\Tomik\Data aplikací\Roaming
2010-10-13 23:22:18 ----D---- C:\Documents and Settings\Tomik\Data aplikací\Quest3D
2010-10-11 22:50:35 ----D---- C:\Program Files\PCNetSoftware
2010-10-10 23:20:41 ----D---- C:\Program Files\PopCap Games

======List of files/folders modified in the last 1 months======

2010-11-02 18:18:00 ----D---- C:\WINDOWS\temp
2010-11-02 18:17:57 ----D---- C:\WINDOWS\Prefetch
2010-11-02 18:11:57 ----SD---- C:\WINDOWS\Tasks
2010-11-02 18:07:22 ----HD---- C:\WINDOWS\inf
2010-11-02 18:07:22 ----D---- C:\WINDOWS\system32\drivers
2010-11-02 17:04:22 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-11-02 17:04:14 ----A---- C:\WINDOWS\Wincmd.ini
2010-11-02 17:04:06 ----SHD---- C:\WINDOWS\Installer
2010-11-02 17:04:06 ----D---- C:\Config.Msi
2010-11-02 16:54:34 ----D---- C:\WINDOWS\system32\CatRoot2
2010-11-02 16:31:47 ----D---- C:\WINDOWS
2010-11-02 16:30:16 ----HDC---- C:\Documents and Settings\All Users\Data aplikací\{24E3A4D8-9E57-4B19-9715-6E61513095D7}
2010-11-01 12:36:00 ----D---- C:\WINDOWS\system32\DirectX
2010-11-01 12:33:59 ----RSD---- C:\WINDOWS\assembly
2010-11-01 12:31:13 ----D---- C:\Program Files
2010-11-01 12:26:16 ----D---- C:\Program Files\Common Files\Nokia
2010-11-01 12:24:43 ----D---- C:\Program Files\Common Files\Native Instruments
2010-11-01 12:24:42 ----D---- C:\Program Files\Native Instruments
2010-11-01 12:18:28 ----D---- C:\Program Files\CCleaner
2010-11-01 01:17:06 ----D---- C:\Program Files\SlySoft
2010-11-01 01:12:39 ----D---- C:\Program Files\Image-Line
2010-11-01 00:57:20 ----D---- C:\Documents and Settings\Tomik\Data aplikací\Adobe
2010-11-01 00:56:08 ----D---- C:\Program Files\DivX
2010-11-01 00:54:11 ----D---- C:\Program Files\Codec Pack - All In 1
2010-11-01 00:22:39 ----D---- C:\WINDOWS\Minidump
2010-10-31 21:31:56 ----A---- C:\WINDOWS\TRNCOM.INI
2010-10-31 17:28:06 ----A---- C:\WINDOWS\Wdict32.INI
2010-10-31 11:00:33 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-10-29 13:03:31 ----D---- C:\Documents and Settings\Tomik\Data aplikací\foobar2000
2010-10-27 19:53:53 ----D---- C:\Program Files\Windows Media Player
2010-10-27 19:53:46 ----D---- C:\WINDOWS\Help
2010-10-24 09:53:57 ----D---- C:\WINDOWS\system32\CatRoot
2010-10-21 12:57:39 ----A---- C:\WINDOWS\win.ini
2010-10-19 10:41:44 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2010-10-14 13:23:20 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-10-14 13:04:16 ----D---- C:\WINDOWS\Debug
2010-10-14 11:12:31 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-10-14 11:12:22 ----HD---- C:\WINDOWS\$hf_mig$
2010-10-14 11:11:29 ----D---- C:\WINDOWS\WinSxS
2010-10-14 11:10:58 ----D---- C:\WINDOWS\system32\cs-cz
2010-10-14 11:10:58 ----D---- C:\Program Files\Internet Explorer
2010-10-14 11:03:02 ----A---- C:\WINDOWS\system32\MRT.exe
2010-10-13 23:18:59 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-10-12 15:05:27 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-10-12 13:02:33 ----HD---- C:\Program Files\InstallShield Installation Information
2010-10-12 11:29:32 ----D---- C:\Program Files\Nokia
2010-10-12 11:28:08 ----D---- C:\Program Files\CDex_170b2
2010-10-11 23:29:19 ----D---- C:\Program Files\VSO
2010-10-11 23:22:39 ----SHD---- C:\System Volume Information
2010-10-11 23:21:39 ----D---- C:\Temp
2010-10-11 23:21:39 ----D---- C:\Program Files\Notepad++
2010-10-11 23:21:39 ----D---- C:\Program Files\Game-Cloner
2010-10-04 08:06:40 ----D---- C:\WINDOWS\Microsoft.NET

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 78501051;78501051; C:\WINDOWS\system32\DRIVERS\78501051.sys [2009-09-25 128016]
R1 78516071;78516071; C:\WINDOWS\system32\DRIVERS\78516071.sys [2009-09-25 128016]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2010-04-28 114984]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2010-07-02 95896]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2010-04-12 59388]
R1 setup_9.0.0.722_09.04.2010_23-08drv;setup_9.0.0.722_09.04.2010_23-08drv; C:\WINDOWS\system32\DRIVERS\7850105.sys [2009-10-09 315408]
R1 setup_9.0.0.722_17.05.2010_11-24drv;setup_9.0.0.722_17.05.2010_11-24drv; C:\WINDOWS\system32\DRIVERS\7851607.sys [2009-10-09 315408]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-07-15 271360]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2010-07-02 140752]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-07-15 18048]
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\WINDOWS\system32\drivers\LMIRfsDriver.sys []
R2 npf;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2009-11-16 50704]
R3 Avgfwdx;Avgfwdx; C:\WINDOWS\system32\DRIVERS\avgfwdx.sys [2010-04-09 30104]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2010-01-19 5818400]
R3 itchfltr;iTouch Keyboard Filter; C:\WINDOWS\system32\DRIVERS\itchfltr.sys [2004-03-10 12953]
R3 lmimirr;lmimirr; C:\WINDOWS\system32\DRIVERS\lmimirr.sys [2008-07-24 10144]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-01-12 10276768]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2005-11-02 10368]
R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2006-02-26 81408]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S1 SASDIFSV;SASDIFSV; \??\C:\DOCUME~1\Tomik\LOCALS~1\Temp\SAS_SelfExtract\SASDIFSV.SYS []
S1 SASKUTIL;SASKUTIL; \??\C:\DOCUME~1\Tomik\LOCALS~1\Temp\SAS_SelfExtract\SASKUTIL.SYS []
S2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys []
S2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program Files\LogMeIn\x86\RaInfo.sys []
S2 TBPanel;TBPanel; C:\WINDOWS\system32\drivers\TBPanel.sys []
S3 AEXPAM;Philips SmartManage Service; C:\WINDOWS\System32\Drivers\aexpamdrv.sys [2005-12-20 27008]
S3 alv8j98a;alv8j98a; C:\WINDOWS\system32\drivers\alv8j98a.sys []
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 AsAudioDevice_351;AsAudioDevice_351; C:\WINDOWS\system32\drivers\AsAudioDevice_351.sys [2009-01-08 16640]
S3 Avgfwfd;AVG network filter service; C:\WINDOWS\system32\DRIVERS\avgfwdx.sys [2010-04-09 30104]
S3 AVGIDSDriverxpx;AVG9IDSDriver; \??\C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSDriver.sys []
S3 AVGIDSFilterxpx;AVG9IDSFilter; \??\C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSFilter.sys []
S3 AVGIDSShimxpx;AVG9IDSShim; \??\C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSShim.sys []
S3 Cardex;Cardex; \??\C:\WINDOWS\system32\drivers\TBPANEL.SYS []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-04-22 25280]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-04-12 49664]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-04-12 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2006-04-12 21568]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:\WINDOWS\system32\DRIVERS\k750bus.sys [2006-03-13 55216]
S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\k750mdfl.sys [2006-03-13 6576]
S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:\WINDOWS\system32\DRIVERS\k750mdm.sys [2006-03-13 89872]
S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:\WINDOWS\system32\DRIVERS\k750mgmt.sys [2006-03-13 81728]
S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; C:\WINDOWS\system32\DRIVERS\k750obex.sys [2006-03-13 79488]
S3 L8042PR2;Logitech PS/2 Mouse Filter Driver; C:\WINDOWS\System32\Drivers\l8042pr2.sys [2004-03-03 51729]
S3 LMouFlt2;Logitech Mouse Class Filter Driver; C:\WINDOWS\System32\Drivers\LMouFlt2.sys [2004-03-03 70801]
S3 M1000Srv;M5603C USB2.0 Camera Driver; C:\WINDOWS\System32\Drivers\M1000KNT.sys []
S3 Maplom;Maplom; C:\WINDOWS\system32\drivers\Maplom.sys []
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 MSICPL;MSICPL; \??\E:\install4\MSICPL.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-14 5810]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2010-02-26 18176]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2010-02-26 22528]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\WINDOWS\system32\drivers\nmwcdnsu.sys [2010-02-26 137344]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\WINDOWS\system32\drivers\nmwcdnsuc.sys [2010-02-26 8320]
S3 NTACCESS;NTACCESS; \??\E:\NTACCESS.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2010-07-14 47360]
S3 s115bus;Sony Ericsson Device 115 driver (WDM); C:\WINDOWS\system32\DRIVERS\s115bus.sys [2007-04-23 83208]
S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s115mdfl.sys [2007-04-23 15112]
S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s115mdm.sys [2007-04-23 108680]
S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s115mgmt.sys [2007-04-23 100488]
S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s115obex.sys [2007-04-23 98568]
S3 s816bus;Sony Ericsson Device 816 driver (WDM); C:\WINDOWS\system32\DRIVERS\s816bus.sys [2007-06-19 81832]
S3 s816mdfl;Sony Ericsson Device 816 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s816mdfl.sys [2007-06-19 13864]
S3 s816mdm;Sony Ericsson Device 816 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s816mdm.sys [2007-06-19 107304]
S3 s816mgmt;Sony Ericsson Device 816 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s816mgmt.sys [2007-06-19 99112]
S3 s816nd5;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (NDIS); C:\WINDOWS\system32\DRIVERS\s816nd5.sys [2007-06-19 21928]
S3 s816obex;Sony Ericsson Device 816 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s816obex.sys [2007-06-19 97320]
S3 s816unic;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (WDM); C:\WINDOWS\system32\DRIVERS\s816unic.sys [2007-06-19 97704]
S3 SetupNTGLM7X;SetupNTGLM7X; \??\E:\NTGLM7X.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2010-02-26 8192]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2010-02-26 8192]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2009-07-14 444136]
S3 WFIOCTL;WFIOCTL; \??\C:\Program Files\WinFast\WFTVFM\WFIOCTL.SYS []
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-01-18 83328]
S3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2005-05-06 232064]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 LMIRfsClientNP;LMIRfsClientNP; C:\WINDOWS\system32\drivers\LMIRfsClientNP.sys []
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2010-07-02 810144]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-07-02 153376]
R2 NVSvc;WinFast(R) Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-01-11 154216]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2006-03-03 69632]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 avg9wd;AVG WatchDog; C:\Program Files\AVG\AVG9\avgwdsvc.exe []
S2 avgfws9;AVG Firewall; C:\Program Files\AVG\AVG9\avgfws9.exe []
S2 AVGIDSAgent;AVG9IDSAgent; C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe AVGIDSAgent []
S2 GJService;Game Jackal Server; C:\Program Files\SlySoft\Game Jackal v4\Server.exe []
S2 gupdate1c9a8c3a9513872;Služba Google Update (gupdate1c9a8c3a9513872); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-03-19 133104]
S2 NIHardwareService;NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe []
S2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe []
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2007-07-06 72704]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service; C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe []
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2010-07-02 33584]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-11-05 655624]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 getPlusHelper;getPlus(R) Helper; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe []
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-02-26 652800]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------



Dííííky doufám že to nebude chyba HW

1. Zkontrolujte, zda se točí všechny větráky a zda chladiče nejsou zaneseny prachem.
2. Dejte log z ComboFix.

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware

Dobrý večer, všechny větráky běží a celý jsem ho vyčistil i kolem procesoru díval jsem se na teploty a při větší zátěži mi rapidně stoupala teplota na procesoru a pak se vypnul

Zde je log z combo fixu akorát při prvním zapnutí po tom co začal fázi jedna se mi cpt vypnul tak jsem jej musel pustit znovu

Log:


ComboFix 10-11-02.06 - Tomik 03.11.2010 21:44:36.6.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1022.560 [GMT 1:00]
Spuštěný z: C:\Documents and Settings\Tomik\Plocha\ComboFix.exe
AV: ESET NOD32 Antivirus 4.2 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\WINDOWS\system32\_000011_.tmp.dll
C:\WINDOWS\system32\vbzlib1.dll

Nakažená kopie C:\WINDOWS\system32\userinit.exe byla nalezena a vyléčena.
Obnovena kopie z - C:\WINDOWS\ServicePackFiles\i386\userinit.exe

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-10-03 do 2010-11-03 )))))))))))))))))))))))))))))))
.

2010-11-03 08:16:48 . 2010-11-03 10:27:51 -------- d-----w- C:\WINDOWS\system32\oodag
2010-11-02 23:58:20 . 2010-11-03 00:01:54 -------- d-----w- C:\Program Files\SpeedFan
2010-11-02 23:27:42 . 2010-11-02 23:51:25 -------- d-----w- C:\Program Files\HWiNFO32
2010-11-02 21:01:25 . 2010-10-07 23:21:31 6146896 ----a-w- C:\Documents and Settings\All Users\Data aplikací\Microsoft\Windows Defender\Definition Updates\{C0E9F3A2-67BF-4EF7-ABF4-86240A7F60C3}\mpengine.dll
2010-11-02 17:17:52 . 2010-11-02 17:18:20 -------- d-----w- C:\rsit
2010-11-02 15:54:50 . 2010-07-02 11:43:48 95896 ----a-w- C:\WINDOWS\system32\drivers\epfwtdir.sys
2010-11-02 15:54:44 . 2010-07-02 11:43:04 140752 ----a-w- C:\WINDOWS\system32\drivers\eamon.sys
2010-11-02 15:54:39 . 2010-04-28 07:17:46 114984 ----a-w- C:\WINDOWS\system32\drivers\ehdrv.sys
2010-11-02 15:53:21 . 2010-11-02 15:53:21 -------- d-----w- C:\Documents and Settings\All Users\Data aplikací\ESET
2010-10-29 18:58:06 . 2010-10-29 18:59:19 -------- d-----w- C:\Program Files\Mobiola Web Camera for S60
2010-10-27 18:53:54 . 1998-09-02 08:28:18 38160 ----a-w- C:\WINDOWS\system32\LMRTREND.dll
2010-10-27 18:53:53 . 1998-08-20 11:02:06 140800 ----a-w- C:\WINDOWS\system32\tm20dec.ax
2010-10-27 18:53:52 . 1998-08-27 04:51:44 182032 ----a-w- C:\WINDOWS\system32\dxtmsft3.dll
2010-10-27 18:53:46 . 1998-09-02 08:28:48 63488 ----a-w- C:\WINDOWS\system32\unam4ie.exe
2010-10-27 18:53:40 . 1998-08-17 09:21:56 5672 ----a-w- C:\WINDOWS\system32\quartz.vxd
2010-10-27 18:53:40 . 1998-08-17 09:21:56 10240 ----a-w- C:\WINDOWS\system32\vidx16.dll
2010-10-27 18:53:40 . 1998-08-17 09:21:54 11776 ----a-w- C:\WINDOWS\system32\mciqtz.drv
2010-10-27 18:53:39 . 1998-09-02 08:02:02 194320 ----a-w- C:\WINDOWS\system32\qcut.dll
2010-10-27 18:53:37 . 2010-10-27 18:53:36 4608 ----a-w- C:\WINDOWS\system32\w95inf32.dll
2010-10-27 18:53:37 . 2010-10-27 18:53:36 2272 ----a-w- C:\WINDOWS\system32\w95inf16.dll
2010-10-17 19:15:38 . 2010-10-17 19:17:36 -------- d-----w- C:\Documents and Settings\Tomik\Local Settings\Data aplikací\OpenCandy
2010-10-17 19:15:31 . 2010-10-17 19:15:31 -------- d-----w- C:\Documents and Settings\Tomik\Data aplikací\OpenCandy
2010-10-17 19:15:09 . 2010-10-17 19:15:09 -------- d-----w- C:\Documents and Settings\Tomik\Data aplikací\AnvSoft
2010-10-17 19:14:14 . 2010-10-17 19:14:14 -------- d-----w- C:\Program Files\AnvSoft
2010-10-14 12:23:19 . 2010-10-14 12:26:37 -------- d-----w- C:\Program Files\Microsoft Games for Windows - LIVE
2010-10-14 07:36:08 . 2010-09-18 06:53:37 953856 -c----w- C:\WINDOWS\system32\dllcache\mfc40u.dll
2010-10-14 07:36:07 . 2010-09-18 06:53:37 974848 -c----w- C:\WINDOWS\system32\dllcache\mfc42.dll
2010-10-14 07:35:46 . 2010-08-23 16:12:35 617472 -c----w- C:\WINDOWS\system32\dllcache\comctl32.dll
2010-10-13 22:23:19 . 2010-10-13 22:23:19 -------- d-----w- C:\Documents and Settings\Tomik\Data aplikací\Roaming
2010-10-13 22:22:18 . 2010-10-13 22:22:18 -------- d-----w- C:\Documents and Settings\Tomik\Data aplikací\Quest3D
2010-10-11 21:50:35 . 2010-10-11 21:50:35 -------- d-----w- C:\Program Files\PCNetSoftware
2010-10-10 22:20:41 . 2010-10-10 22:20:41 -------- d-----w- C:\Program Files\PopCap Games

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-10-19 09:41:44 . 2009-10-03 08:43:33 222080 ------w- C:\WINDOWS\system32\MpSigStub.exe
2010-10-07 23:21:31 . 2008-01-02 08:48:33 6146896 ----a-w- C:\Documents and Settings\All Users\Data aplikací\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2010-09-18 10:23:38 . 2001-10-25 12:00:00 974848 ----a-w- C:\WINDOWS\system32\mfc42u.dll
2010-09-18 06:53:37 . 2001-10-25 12:00:00 974848 ----a-w- C:\WINDOWS\system32\mfc42.dll
2010-09-18 06:53:37 . 2001-10-25 12:00:00 954368 ----a-w- C:\WINDOWS\system32\mfc40.dll
2010-09-18 06:53:37 . 2001-10-25 12:00:00 953856 ----a-w- C:\WINDOWS\system32\mfc40u.dll
2010-09-09 13:34:29 . 2001-10-25 12:00:00 832512 ----a-w- C:\WINDOWS\system32\wininet.dll
2010-09-09 13:34:28 . 2001-10-25 12:00:00 1830912 ----a-w- C:\WINDOWS\system32\inetcpl.cpl
2010-09-09 13:34:27 . 2007-06-23 18:12:56 78336 ----a-w- C:\WINDOWS\system32\ieencode.dll
2010-09-09 13:34:26 . 2001-10-25 12:00:00 17408 ------w- C:\WINDOWS\system32\corpol.dll
2010-09-08 15:57:57 . 2007-06-23 18:12:56 389120 ----a-w- C:\WINDOWS\system32\html.iec
2010-09-01 11:52:28 . 2001-10-25 12:00:00 285824 ----a-w- C:\WINDOWS\system32\atmfd.dll
2010-09-01 07:57:41 . 2001-10-25 12:00:00 1852800 ----a-w- C:\WINDOWS\system32\win32k.sys
2010-08-27 08:03:42 . 2001-10-25 12:00:00 119808 ----a-w- C:\WINDOWS\system32\t2embed.dll
2010-08-27 05:54:10 . 2001-10-25 12:00:00 99840 ----a-w- C:\WINDOWS\system32\srvsvc.dll
2010-08-27 01:43:50 . 2008-05-05 05:25:04 5632 ----a-w- C:\WINDOWS\system32\xpsp4res.dll
2010-08-26 13:39:50 . 2001-10-25 12:00:00 357248 ----a-w- C:\WINDOWS\system32\drivers\srv.sys
2010-08-23 16:12:35 . 2001-10-25 12:00:00 617472 ----a-w- C:\WINDOWS\system32\comctl32.dll
2010-08-19 09:53:11 . 2007-06-24 05:08:33 691696 ----a-w- C:\WINDOWS\system32\drivers\sptd.sys
2010-08-17 13:17:06 . 2001-10-25 12:00:00 58880 ----a-w- C:\WINDOWS\system32\spoolsv.exe
2010-08-16 08:45:05 . 2001-10-25 12:00:00 590848 ----a-w- C:\WINDOWS\system32\rpcrt4.dll
2010-08-07 12:28:38 . 2010-08-07 12:28:38 62464 ----a-w- C:\WINDOWS\system32\cygz.dll
2010-08-07 12:28:38 . 2010-08-07 12:28:38 62464 ----a-w- C:\WINDOWS\cygz.dll
2010-08-07 12:28:38 . 2010-08-07 12:28:38 1153417 ----a-w- C:\WINDOWS\system32\cygwin1.dll
2010-08-07 12:28:38 . 2010-08-07 12:28:38 1153417 ----a-w- C:\WINDOWS\cygwin1.dll
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 09:16:20 357696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 09:43:18 248040]
"egui"="C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" [2010-07-02 11:43:36 2202704]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2010-01-11 21:17:44 13666408]
"OODefragTray"="C:\Program Files\OO Software\Defrag\oodtray.exe" [2010-05-11 21:35:58 2528584]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"SpeedStartup"="C:\Program Files\Speed Startup\speedstartup.exe" [2008-01-04 18:27:04 2229248]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]
2008-10-16 19:35:38 87352 ----a-w- C:\WINDOWS\system32\LMIinit.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^HP Digital Imaging Monitor.lnk]
backup=C:\WINDOWS\pss\HP Digital Imaging Monitor.lnkCommon Startup
path=C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk

[HKLM\~\startupfolder\C:^Documents and Settings^Tomik^Nabídka Start^Programy^Po spuštění^Adobe Gamma.lnk]
backup=C:\WINDOWS\pss\Adobe Gamma.lnkStartup
path=C:\Documents and Settings\Tomik\Nabídka Start\Programy\Po spuštění\Adobe Gamma.lnk

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\36X Raid Configurer]
2007-11-19 09:01:42 1970176 ----a-w- C:\WINDOWS\system32\xRaidSetup.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
2010-01-19 17:46:12 64032 -c--a-w- C:\WINDOWS\ALCMTR.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2007-05-08 14:24:20 54840 ----a-w- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JMB36X IDE Setup]
2007-03-20 12:36:18 36864 -c--a-w- C:\WINDOWS\RaidTool\xInsIDE.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Utility]
2004-03-03 17:50:00 19968 -c----w- C:\WINDOWS\LOGI_MWX.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 03:22:36 1695232 ----a-w- C:\Program Files\Messenger\msmsgs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NSLauncher]
2007-11-06 08:16:54 3096576 -c--a-w- C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2010-01-11 21:17:44 13666408 ----a-w- C:\WINDOWS\system32\nvcpl.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
2010-01-11 21:17:44 110696 ----a-w- C:\WINDOWS\system32\nvmctray.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
2009-03-20 12:32:32 1312256 -c--a-w- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2010-01-19 17:46:30 18790432 -c--a-w- C:\WINDOWS\RTHDCPL.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]
2010-01-19 17:46:42 1833504 -c--a-w- C:\WINDOWS\SkyTel.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
2007-06-13 07:16:02 528384 ----a-r- C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SystemKey]
2006-04-07 07:58:48 339968 ----a-w- C:\Documents and Settings\All Users\Data aplikací\SystemKey\SystemKey.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinFast Schedule]
2006-03-20 12:53:38 327680 ----a-w- C:\Program Files\WinFast\WFTVFM\WFWIZ.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\zBrowser Launcher]
2004-03-18 07:33:26 892928 ----a-w- C:\Program Files\Logitech\iTouch\iTouch.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"C:\\QIP Infium JadrisPack\\infium.exe"=
"D:\\Program Files\\Mass Effect 2\\Binaries\\MassEffect2.exe"=
"D:\\Program Files\\Mass Effect 2\\MassEffect2Launcher.exe"=
"C:\\Program Files\\Common Files\\Nokia\\Service Layer\\A\\nsl_host_process.exe"=
"C:\\Program Files\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"=
"C:\\Program Files\\BitSpirit\\BitSpirit.exe"=
"C:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"=
"D:\\COMMAND.AND.CONQUER.3.TW.V1.04.ALL.HATRED.NOCD\\C&C3\\RetailExe\\1.4\\cnc3game.dat"=
"H:\\Bionika\\Prince of Persia Zapomenuté písky\\Prince of Persia.exe"=
"H:\\Bionika\\Prince of Persia Zapomenuté písky\\GameSettings.exe"=
"H:\\Bionika\\Prince of Persia Zapomenuté písky\\gu.exe"=
"H:\\Bionika\\Prince of Persia Zapomenuté písky\\UPlayBrowser.exe"=
"C:\\Program Files\\Ubisoft\\Ubisoft Game Launcher\\UbisoftGameLauncher.exe"=
"D:\\Program Files\\StarCraft II\\StarCraft II.exe"=
"D:\\Program Files\\StarCraft II\\Versions\\Base15405\\SC2.exe"=
"D:\\Program Files\\C&C4\\Data\\CNC4.game"=
"D:\\Program Files\\Mass Effect\\Binaries\\MassEffect.exe"=
"D:\\Program Files\\Mass Effect\\MassEffectLauncher.exe"=
"D:\\Warhammer Dawn of War 2\\DOW2.exe"=
"D:\\Program Files\\Warhammer 40000 Dawn of War II - Chaos Rising\\DOW2.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4

R0 78501052;78501052 Boot Guard Driver;C:\WINDOWS\system32\drivers\78501052.sys [9.4.2010 22:11:16 37392]
R0 78516072;78516072 Boot Guard Driver;C:\WINDOWS\system32\drivers\78516072.sys [17.5.2010 9:07:45 37392]
R0 sptd;sptd;C:\WINDOWS\system32\drivers\sptd.sys [24.6.2007 6:08:33 691696]
R0 tiamobus;vcdrom Bus;C:\WINDOWS\system32\drivers\tiamobus.sys [6.1.2010 20:42:32 6784]
R1 78501051;78501051;C:\WINDOWS\system32\drivers\78501051.sys [9.4.2010 22:11:15 128016]
R1 78516071;78516071;C:\WINDOWS\system32\drivers\78516071.sys [17.5.2010 9:07:44 128016]
R1 ehdrv;ehdrv;C:\WINDOWS\system32\drivers\ehdrv.sys [2.11.2010 16:54:39 114984]
R1 epfwtdir;epfwtdir;C:\WINDOWS\system32\drivers\epfwtdir.sys [2.11.2010 16:54:50 95896]
R1 HWiNFO32;HWiNFO32 Kernel Driver;C:\Program Files\HWiNFO32\HWiNFO32.SYS [3.11.2010 0:27:44 19320]
R1 setup_9.0.0.722_09.04.2010_23-08drv;setup_9.0.0.722_09.04.2010_23-08drv;C:\WINDOWS\system32\drivers\7850105.sys [9.4.2010 22:11:14 315408]
R1 setup_9.0.0.722_17.05.2010_11-24drv;setup_9.0.0.722_17.05.2010_11-24drv;C:\WINDOWS\system32\drivers\7851607.sys [17.5.2010 9:07:42 315408]
R2 ekrn;ESET Service;C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2.7.2010 12:43:40 810144]
R2 npf;NetGroup Packet Filter Driver;C:\WINDOWS\system32\drivers\npf.sys [16.11.2009 17:33:38 50704]
R2 OODefragAgent;O&O Defrag Agent;C:\Program Files\OO Software\Defrag\oodag.exe [11.5.2010 22:36:10 1619272]
R2 WinDefend;Windows Defender;C:\Program Files\Windows Defender\MsMpEng.exe [3.11.2006 19:19:58 13592]
R3 Avgfwdx;Avgfwdx;C:\WINDOWS\system32\drivers\avgfwdx.sys [9.4.2010 13:09:00 30104]
R3 itchfltr;iTouch Keyboard Filter;C:\WINDOWS\system32\drivers\itchfltr.sys [10.8.2007 15:58:39 12953]
S0 AvgRkx86;avgrkx86.sys;C:\WINDOWS\system32\Drivers\avgrkx86.sys --> C:\WINDOWS\system32\Drivers\avgrkx86.sys [?]
S0 tiamoport;cxlmo Miniport;C:\WINDOWS\system32\drivers\tiamominiport.sys [6.1.2010 20:42:32 18304]
S1 SASDIFSV;SASDIFSV;\??\C:\DOCUME~1\Tomik\LOCALS~1\Temp\SAS_SelfExtract\SASDIFSV.SYS --> C:\DOCUME~1\Tomik\LOCALS~1\Temp\SAS_SelfExtract\SASDIFSV.SYS [?]
S1 SASKUTIL;SASKUTIL;\??\C:\DOCUME~1\Tomik\LOCALS~1\Temp\SAS_SelfExtract\SASKUTIL.SYS --> C:\DOCUME~1\Tomik\LOCALS~1\Temp\SAS_SelfExtract\SASKUTIL.SYS [?]
S2 avg9wd;AVG WatchDog;"C:\Program Files\AVG\AVG9\avgwdsvc.exe" --> C:\Program Files\AVG\AVG9\avgwdsvc.exe [?]
S2 avgfws9;AVG Firewall;"C:\Program Files\AVG\AVG9\avgfws9.exe" --> C:\Program Files\AVG\AVG9\avgfws9.exe [?]
S2 AVGIDSAgent;AVG9IDSAgent;"C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe" AVGIDSAgent --> C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe [?]
S2 GJService;Game Jackal Server;C:\Program Files\SlySoft\Game Jackal v4\Server.exe --> C:\Program Files\SlySoft\Game Jackal v4\Server.exe [?]
S2 gupdate1c9a8c3a9513872;Služba Google Update (gupdate1c9a8c3a9513872);C:\Program Files\Google\Update\GoogleUpdate.exe [19.3.2009 19:51:05 133104]
S2 LMIInfo;LogMeIn Kernel Information Provider;\??\C:\Program Files\LogMeIn\x86\RaInfo.sys --> C:\Program Files\LogMeIn\x86\RaInfo.sys [?]
S2 NIHardwareService;NIHardwareService;C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe --> C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [?]
S3 AEXPAM;Philips SmartManage Service;C:\WINDOWS\system32\drivers\aexpamdrv.sys [20.12.2005 9:57:40 27008]
S3 Ambfilt;Ambfilt;C:\WINDOWS\system32\drivers\Ambfilt.sys [25.1.2010 14:59:47 1691480]
S3 AsAudioDevice_351;AsAudioDevice_351;C:\WINDOWS\system32\drivers\AsAudioDevice_351.sys [3.4.2010 12:57:53 16640]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service;C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe --> C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe [?]
S3 Avgfwfd;AVG network filter service;C:\WINDOWS\system32\drivers\avgfwdx.sys [9.4.2010 13:09:00 30104]
S3 AVGIDSDriverxpx;AVG9IDSDriver;\??\C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSDriver.sys --> C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSDriver.sys [?]
S3 AVGIDSFilterxpx;AVG9IDSFilter;\??\C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSFilter.sys --> C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSFilter.sys [?]
S3 AVGIDSShimxpx;AVG9IDSShim;\??\C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSShim.sys --> C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSShim.sys [?]
S3 M1000Srv;M5603C USB2.0 Camera Driver;C:\WINDOWS\system32\Drivers\M1000KNT.sys --> C:\WINDOWS\system32\Drivers\M1000KNT.sys [?]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;C:\WINDOWS\system32\drivers\nmwcdnsu.sys [27.4.2010 18:54:15 137344]
S3 nmwcdnsuc;Nokia USB Flashing Generic;C:\WINDOWS\system32\drivers\nmwcdnsuc.sys [27.4.2010 18:54:17 8320]
S3 s115bus;Sony Ericsson Device 115 driver (WDM);C:\WINDOWS\system32\drivers\s115bus.sys [3.3.2009 16:35:28 83208]
S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter;C:\WINDOWS\system32\drivers\s115mdfl.sys [3.3.2009 16:35:32 15112]
S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver;C:\WINDOWS\system32\drivers\s115mdm.sys [3.3.2009 16:35:32 108680]
S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\drivers\s115mgmt.sys [3.3.2009 16:35:46 100488]
S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface;C:\WINDOWS\system32\drivers\s115obex.sys [3.3.2009 16:35:42 98568]
S3 s816bus;Sony Ericsson Device 816 driver (WDM);C:\WINDOWS\system32\drivers\s816bus.sys [3.3.2009 16:25:36 81832]
S3 s816mdfl;Sony Ericsson Device 816 USB WMC Modem Filter;C:\WINDOWS\system32\drivers\s816mdfl.sys [3.3.2009 16:25:40 13864]
S3 s816mdm;Sony Ericsson Device 816 USB WMC Modem Driver;C:\WINDOWS\system32\drivers\s816mdm.sys [3.3.2009 16:25:40 107304]
S3 s816mgmt;Sony Ericsson Device 816 USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\drivers\s816mgmt.sys [3.3.2009 16:25:53 99112]
S3 s816nd5;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (NDIS);C:\WINDOWS\system32\drivers\s816nd5.sys [3.3.2009 16:26:06 21928]
S3 s816obex;Sony Ericsson Device 816 USB WMC OBEX Interface;C:\WINDOWS\system32\drivers\s816obex.sys [3.3.2009 16:25:49 97320]
S3 s816unic;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (WDM);C:\WINDOWS\system32\drivers\s816unic.sys [3.3.2009 16:25:54 97704]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\E:\NTGLM7X.sys --> E:\NTGLM7X.sys [?]
S3 WFIOCTL;WFIOCTL;C:\Program Files\WinFast\WFTVFM\WFIOCTL.sys [27.8.2007 21:57:38 9446]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
getPlusHelper REG_MULTI_SZ getPlusHelper
.
Obsah adresáře 'Naplánované úlohy'

2010-11-03 C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
- C:\Program Files\Google\Update\GoogleUpdate.exe [2009-03-19 18:51:05 . 2009-03-19 18:50:59]

2010-11-03 C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
- C:\Program Files\Google\Update\GoogleUpdate.exe [2009-03-19 18:51:05 . 2009-03-19 18:50:59]

2010-11-03 C:\WINDOWS\Tasks\MP Scheduled Scan.job
- C:\Program Files\Windows Defender\MpCmdRun.exe [2006-11-03 18:20:06 . 2006-11-03 18:20:06]
.
.
------- Doplňkový sken -------
.
uStart Page = about:blank
uInternet Connection Wizard,ShellNext = hxxp://codecs.r8.org/
uInternet Settings,ProxyOverride = local
uInternet Settings,ProxyServer = 127.0.0.1:8080
IE: &ICQ Toolbar Search - C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
IE: &Winamp Toolbar Search - C:\Documents and Settings\All Users\Data aplikací\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
IE: E&xportovat do aplikace Microsoft Office Excel - C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Stáhnout pomocí &BitSpiritu - C:\Program Files\BitSpirit\bsurl.htm
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
FF - ProfilePath - C:\Documents and Settings\Tomik\Data aplikací\Mozilla\Firefox\Profiles\hxa4y507.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - plugin: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: C:\Program Files\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
FF - plugin: C:\Program Files\Mozilla Firefox\plugins\npgcplug.dll
FF - plugin: C:\Program Files\Mozilla Firefox\plugins\npracplug.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- NASTAVENÍ FIREFOXU ----
C:\Program Files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

HKCU-Run-WEBTRAN - (no file)
HKCU-Run-OEXPRESS - (no file)
MSConfigStartUp-DAEMON Tools - C:\Program Files\DAEMON Tools\daemon.exe
AddRemove-May Day - C:\Documents and Settings\Tomik\Data aplikací\Command & Conquer 3 Kane's Wrath\Maps\Uninstal.exe

Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:

Collect::
C:\WINDOWS\system32\drivers\78501051.sys
C:\WINDOWS\system32\drivers\78516071.sys

Driver::
78501051
78516071

Uložte na plochu jako CFScript.txt. pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

Zde je poslední log z CF :


ComboFix 10-11-02.06 - Tomik 04.11.2010 21:46:03.7.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1022.509 [GMT 1:00]
Spuštěný z: c:\documents and settings\Tomik\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Tomik\Plocha\CFScript.txt
AV: ESET NOD32 Antivirus 4.2 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}

file zipped: c:\windows\system32\drivers\78501051.sys
file zipped: c:\windows\system32\drivers\78516071.sys
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\drivers\78501051.sys
c:\windows\system32\drivers\78516071.sys
.
---- Předchozí spuštění -------
.
c:\windows\system32\_000011_.tmp.dll
c:\windows\system32\vbzlib1.dll

-- Předchozí spuštění --

Nakažená kopie c:\windows\system32\userinit.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\ServicePackFiles\i386\userinit.exe

--------

.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_78501051
-------\Legacy_78516071
-------\Service_78501051
-------\Service_78516071


((((((((((((((((((((((((( Soubory vytvořené od 2010-10-04 do 2010-11-04 )))))))))))))))))))))))))))))))
.

2010-11-04 16:19 . 2010-05-11 11:00 20072 ----a-w- c:\windows\system32\drivers\cpuz133_x32.sys
2010-11-04 16:19 . 2010-11-04 16:19 -------- d-----w- c:\program files\CPUID
2010-11-03 08:16 . 2010-11-03 10:27 -------- d-----w- c:\windows\system32\oodag
2010-11-02 23:58 . 2010-11-03 00:01 -------- d-----w- c:\program files\SpeedFan
2010-11-02 23:27 . 2010-11-02 23:51 -------- d-----w- c:\program files\HWiNFO32
2010-11-02 21:01 . 2010-10-07 23:21 6146896 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Windows Defender\Definition Updates\{C0E9F3A2-67BF-4EF7-ABF4-86240A7F60C3}\mpengine.dll
2010-11-02 17:17 . 2010-11-02 17:18 -------- d-----w- C:\rsit
2010-11-02 15:54 . 2010-07-02 11:43 95896 ----a-w- c:\windows\system32\drivers\epfwtdir.sys
2010-11-02 15:54 . 2010-07-02 11:43 140752 ----a-w- c:\windows\system32\drivers\eamon.sys
2010-11-02 15:54 . 2010-04-28 07:17 114984 ----a-w- c:\windows\system32\drivers\ehdrv.sys
2010-11-02 15:53 . 2010-11-02 15:53 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ESET
2010-10-29 18:58 . 2010-10-29 18:59 -------- d-----w- c:\program files\Mobiola Web Camera for S60
2010-10-27 18:53 . 1998-09-02 08:28 38160 ----a-w- c:\windows\system32\LMRTREND.dll
2010-10-27 18:53 . 1998-08-20 11:02 140800 ----a-w- c:\windows\system32\tm20dec.ax
2010-10-27 18:53 . 1998-08-27 04:51 182032 ----a-w- c:\windows\system32\dxtmsft3.dll
2010-10-27 18:53 . 1998-09-02 08:28 63488 ----a-w- c:\windows\system32\unam4ie.exe
2010-10-27 18:53 . 1998-08-17 09:21 5672 ----a-w- c:\windows\system32\quartz.vxd
2010-10-27 18:53 . 1998-08-17 09:21 10240 ----a-w- c:\windows\system32\vidx16.dll
2010-10-27 18:53 . 1998-08-17 09:21 11776 ----a-w- c:\windows\system32\mciqtz.drv
2010-10-27 18:53 . 1998-09-02 08:02 194320 ----a-w- c:\windows\system32\qcut.dll
2010-10-27 18:53 . 2010-10-27 18:53 4608 ----a-w- c:\windows\system32\w95inf32.dll
2010-10-27 18:53 . 2010-10-27 18:53 2272 ----a-w- c:\windows\system32\w95inf16.dll
2010-10-17 19:15 . 2010-10-17 19:17 -------- d-----w- c:\documents and settings\Tomik\Local Settings\Data aplikací\OpenCandy
2010-10-17 19:15 . 2010-10-17 19:15 -------- d-----w- c:\documents and settings\Tomik\Data aplikací\OpenCandy
2010-10-17 19:15 . 2010-10-17 19:15 -------- d-----w- c:\documents and settings\Tomik\Data aplikací\AnvSoft
2010-10-17 19:14 . 2010-10-17 19:14 -------- d-----w- c:\program files\AnvSoft
2010-10-14 12:23 . 2010-10-14 12:26 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2010-10-14 07:36 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2010-10-14 07:36 . 2010-09-18 06:53 974848 -c----w- c:\windows\system32\dllcache\mfc42.dll
2010-10-14 07:35 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2010-10-13 22:23 . 2010-10-13 22:23 -------- d-----w- c:\documents and settings\Tomik\Data aplikací\Roaming
2010-10-13 22:22 . 2010-10-13 22:22 -------- d-----w- c:\documents and settings\Tomik\Data aplikací\Quest3D
2010-10-11 21:50 . 2010-10-11 21:50 -------- d-----w- c:\program files\PCNetSoftware
2010-10-10 22:20 . 2010-10-10 22:20 -------- d-----w- c:\program files\PopCap Games

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-10-19 09:41 . 2009-10-03 08:43 222080 ------w- c:\windows\system32\MpSigStub.exe
2010-10-07 23:21 . 2008-01-02 08:48 6146896 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2010-09-18 10:23 . 2001-10-25 12:00 974848 ----a-w- c:\windows\system32\mfc42u.dll
2010-09-18 06:53 . 2001-10-25 12:00 974848 ----a-w- c:\windows\system32\mfc42.dll
2010-09-18 06:53 . 2001-10-25 12:00 954368 ----a-w- c:\windows\system32\mfc40.dll
2010-09-18 06:53 . 2001-10-25 12:00 953856 ----a-w- c:\windows\system32\mfc40u.dll
2010-09-09 13:34 . 2001-10-25 12:00 832512 ----a-w- c:\windows\system32\wininet.dll
2010-09-09 13:34 . 2001-10-25 12:00 1830912 ----a-w- c:\windows\system32\inetcpl.cpl
2010-09-09 13:34 . 2007-06-23 18:12 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-09-09 13:34 . 2001-10-25 12:00 17408 ------w- c:\windows\system32\corpol.dll
2010-09-08 15:57 . 2007-06-23 18:12 389120 ----a-w- c:\windows\system32\html.iec
2010-09-01 11:52 . 2001-10-25 12:00 285824 ----a-w- c:\windows\system32\atmfd.dll
2010-09-01 07:57 . 2001-10-25 12:00 1852800 ----a-w- c:\windows\system32\win32k.sys
2010-08-27 08:03 . 2001-10-25 12:00 119808 ----a-w- c:\windows\system32\t2embed.dll
2010-08-27 05:54 . 2001-10-25 12:00 99840 ----a-w- c:\windows\system32\srvsvc.dll
2010-08-27 01:43 . 2008-05-05 05:25 5632 ----a-w- c:\windows\system32\xpsp4res.dll
2010-08-26 13:39 . 2001-10-25 12:00 357248 ----a-w- c:\windows\system32\drivers\srv.sys
2010-08-23 16:12 . 2001-10-25 12:00 617472 ----a-w- c:\windows\system32\comctl32.dll
2010-08-19 09:53 . 2007-06-24 05:08 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-08-17 13:17 . 2001-10-25 12:00 58880 ----a-w- c:\windows\system32\spoolsv.exe
2010-08-16 08:45 . 2001-10-25 12:00 590848 ----a-w- c:\windows\system32\rpcrt4.dll
2010-08-07 12:28 . 2010-08-07 12:28 62464 ----a-w- c:\windows\system32\cygz.dll
2010-08-07 12:28 . 2010-08-07 12:28 62464 ----a-w- c:\windows\cygz.dll
2010-08-07 12:28 . 2010-08-07 12:28 1153417 ----a-w- c:\windows\system32\cygwin1.dll
2010-08-07 12:28 . 2010-08-07 12:28 1153417 ----a-w- c:\windows\cygwin1.dll
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"WEBTRAN"="" [BU]
"OEXPRESS"="" [BU]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2010-07-02 2202704]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-01-11 13666408]
"OODefragTray"="c:\program files\OO Software\Defrag\oodtray.exe" [2010-05-11 2528584]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"SpeedStartup"="c:\program files\Speed Startup\speedstartup.exe" [2008-01-04 2229248]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]
2008-10-16 19:35 87352 ----a-w- c:\windows\system32\LMIinit.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^HP Digital Imaging Monitor.lnk]
backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk

[HKLM\~\startupfolder\C:^Documents and Settings^Tomik^Nabídka Start^Programy^Po spuštění^Adobe Gamma.lnk]
backup=c:\windows\pss\Adobe Gamma.lnkStartup
path=c:\documents and settings\Tomik\Nabídka Start\Programy\Po spuštění\Adobe Gamma.lnk

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\36X Raid Configurer]
2007-11-19 09:01 1970176 ----a-w- c:\windows\system32\xRaidSetup.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
2010-01-19 17:46 64032 -c--a-w- c:\windows\ALCMTR.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
c:\program files\DAEMON Tools\daemon.exe [BU]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2007-05-08 14:24 54840 ----a-w- c:\program files\HP\HP Software Update\hpwuSchd2.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JMB36X IDE Setup]
2007-03-20 12:36 36864 -c--a-w- c:\windows\RaidTool\xInsIDE.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Utility]
2004-03-03 17:50 19968 -c----w- c:\windows\LOGI_MWX.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 03:22 1695232 ----a-w- c:\program files\Messenger\msmsgs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NSLauncher]
2007-11-06 08:16 3096576 -c--a-w- c:\program files\Nokia\Nokia Software Launcher\NSLauncher.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2010-01-11 21:17 13666408 ----a-w- c:\windows\system32\nvcpl.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
2010-01-11 21:17 110696 ----a-w- c:\windows\system32\nvmctray.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
2009-03-20 12:32 1312256 -c--a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2010-01-19 17:46 18790432 -c--a-w- c:\windows\RTHDCPL.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]
2010-01-19 17:46 1833504 -c--a-w- c:\windows\SkyTel.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
2007-06-13 07:16 528384 ----a-r- c:\program files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SystemKey]
2006-04-07 07:58 339968 ----a-w- c:\documents and settings\All Users\Data aplikací\SystemKey\SystemKey.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinFast Schedule]
2006-03-20 12:53 327680 ----a-w- c:\program files\WinFast\WFTVFM\WFWIZ.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\zBrowser Launcher]
2004-03-18 07:33 892928 ----a-w- c:\program files\Logitech\iTouch\iTouch.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\QIP Infium JadrisPack\\infium.exe"=
"d:\\Program Files\\Mass Effect 2\\Binaries\\MassEffect2.exe"=
"d:\\Program Files\\Mass Effect 2\\MassEffect2Launcher.exe"=
"c:\\Program Files\\Common Files\\Nokia\\Service Layer\\A\\nsl_host_process.exe"=
"c:\\Program Files\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"=
"c:\\Program Files\\BitSpirit\\BitSpirit.exe"=
"c:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"=
"d:\\COMMAND.AND.CONQUER.3.TW.V1.04.ALL.HATRED.NOCD\\C&C3\\RetailExe\\1.4\\cnc3game.dat"=
"h:\\Bionika\\Prince of Persia Zapomenuté písky\\Prince of Persia.exe"=
"h:\\Bionika\\Prince of Persia Zapomenuté písky\\GameSettings.exe"=
"h:\\Bionika\\Prince of Persia Zapomenuté písky\\gu.exe"=
"h:\\Bionika\\Prince of Persia Zapomenuté písky\\UPlayBrowser.exe"=
"c:\\Program Files\\Ubisoft\\Ubisoft Game Launcher\\UbisoftGameLauncher.exe"=
"d:\\Program Files\\StarCraft II\\StarCraft II.exe"=
"d:\\Program Files\\StarCraft II\\Versions\\Base15405\\SC2.exe"=
"d:\\Program Files\\C&C4\\Data\\CNC4.game"=
"d:\\Program Files\\Mass Effect\\Binaries\\MassEffect.exe"=
"d:\\Program Files\\Mass Effect\\MassEffectLauncher.exe"=
"d:\\Warhammer Dawn of War 2\\DOW2.exe"=
"d:\\Program Files\\Warhammer 40000 Dawn of War II - Chaos Rising\\DOW2.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4

R0 78501052;78501052 Boot Guard Driver;c:\windows\system32\drivers\78501052.sys [9.4.2010 22:11 37392]
R0 78516072;78516072 Boot Guard Driver;c:\windows\system32\drivers\78516072.sys [17.5.2010 9:07 37392]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [24.6.2007 6:08 691696]
R0 tiamobus;vcdrom Bus;c:\windows\system32\drivers\tiamobus.sys [6.1.2010 20:42 6784]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2.11.2010 16:54 114984]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2.11.2010 16:54 95896]
R1 HWiNFO32;HWiNFO32 Kernel Driver;c:\program files\HWiNFO32\HWiNFO32.SYS [3.11.2010 0:27 19320]
R1 setup_9.0.0.722_09.04.2010_23-08drv;setup_9.0.0.722_09.04.2010_23-08drv;c:\windows\system32\drivers\7850105.sys [9.4.2010 22:11 315408]
R1 setup_9.0.0.722_17.05.2010_11-24drv;setup_9.0.0.722_17.05.2010_11-24drv;c:\windows\system32\drivers\7851607.sys [17.5.2010 9:07 315408]
R2 cpuz133;cpuz133;c:\windows\system32\drivers\cpuz133_x32.sys [4.11.2010 17:19 20072]
R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2.7.2010 12:43 810144]
R2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [16.11.2009 17:33 50704]
R2 OODefragAgent;O&O Defrag Agent;c:\program files\OO Software\Defrag\oodag.exe [11.5.2010 22:36 1619272]
R2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [3.11.2006 19:19 13592]
R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [9.4.2010 13:09 30104]
R3 itchfltr;iTouch Keyboard Filter;c:\windows\system32\drivers\itchfltr.sys [10.8.2007 15:58 12953]
S0 AvgRkx86;avgrkx86.sys;c:\windows\system32\Drivers\avgrkx86.sys --> c:\windows\system32\Drivers\avgrkx86.sys [?]
S0 tiamoport;cxlmo Miniport;c:\windows\system32\drivers\tiamominiport.sys [6.1.2010 20:42 18304]
S1 SASDIFSV;SASDIFSV;\??\c:\docume~1\Tomik\LOCALS~1\Temp\SAS_SelfExtract\SASDIFSV.SYS --> c:\docume~1\Tomik\LOCALS~1\Temp\SAS_SelfExtract\SASDIFSV.SYS [?]
S1 SASKUTIL;SASKUTIL;\??\c:\docume~1\Tomik\LOCALS~1\Temp\SAS_SelfExtract\SASKUTIL.SYS --> c:\docume~1\Tomik\LOCALS~1\Temp\SAS_SelfExtract\SASKUTIL.SYS [?]
S2 avg9wd;AVG WatchDog;"c:\program files\AVG\AVG9\avgwdsvc.exe" --> c:\program files\AVG\AVG9\avgwdsvc.exe [?]
S2 avgfws9;AVG Firewall;"c:\program files\AVG\AVG9\avgfws9.exe" --> c:\program files\AVG\AVG9\avgfws9.exe [?]
S2 AVGIDSAgent;AVG9IDSAgent;"c:\program files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe" AVGIDSAgent --> c:\program files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe [?]
S2 GJService;Game Jackal Server;c:\program files\SlySoft\Game Jackal v4\Server.exe --> c:\program files\SlySoft\Game Jackal v4\Server.exe [?]
S2 gupdate1c9a8c3a9513872;Služba Google Update (gupdate1c9a8c3a9513872);c:\program files\Google\Update\GoogleUpdate.exe [19.3.2009 19:51 133104]
S2 LMIInfo;LogMeIn Kernel Information Provider;\??\c:\program files\LogMeIn\x86\RaInfo.sys --> c:\program files\LogMeIn\x86\RaInfo.sys [?]
S2 NIHardwareService;NIHardwareService;c:\program files\Common Files\Native Instruments\Hardware\NIHardwareService.exe --> c:\program files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [?]
S3 AEXPAM;Philips SmartManage Service;c:\windows\system32\drivers\aexpamdrv.sys [20.12.2005 9:57 27008]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [25.1.2010 14:59 1691480]
S3 AsAudioDevice_351;AsAudioDevice_351;c:\windows\system32\drivers\AsAudioDevice_351.sys [3.4.2010 12:57 16640]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\AVG\AVG9\Toolbar\ToolbarBroker.exe --> c:\program files\AVG\AVG9\Toolbar\ToolbarBroker.exe [?]
S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [9.4.2010 13:09 30104]
S3 AVGIDSDriverxpx;AVG9IDSDriver;\??\c:\program files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSDriver.sys --> c:\program files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSDriver.sys [?]
S3 AVGIDSFilterxpx;AVG9IDSFilter;\??\c:\program files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSFilter.sys --> c:\program files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSFilter.sys [?]
S3 AVGIDSShimxpx;AVG9IDSShim;\??\c:\program files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSShim.sys --> c:\program files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSShim.sys [?]
S3 M1000Srv;M5603C USB2.0 Camera Driver;c:\windows\system32\Drivers\M1000KNT.sys --> c:\windows\system32\Drivers\M1000KNT.sys [?]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [27.4.2010 18:54 137344]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [27.4.2010 18:54 8320]
S3 s115bus;Sony Ericsson Device 115 driver (WDM);c:\windows\system32\drivers\s115bus.sys [3.3.2009 16:35 83208]
S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter;c:\windows\system32\drivers\s115mdfl.sys [3.3.2009 16:35 15112]
S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver;c:\windows\system32\drivers\s115mdm.sys [3.3.2009 16:35 108680]
S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s115mgmt.sys [3.3.2009 16:35 100488]
S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface;c:\windows\system32\drivers\s115obex.sys [3.3.2009 16:35 98568]
S3 s816bus;Sony Ericsson Device 816 driver (WDM);c:\windows\system32\drivers\s816bus.sys [3.3.2009 16:25 81832]
S3 s816mdfl;Sony Ericsson Device 816 USB WMC Modem Filter;c:\windows\system32\drivers\s816mdfl.sys [3.3.2009 16:25 13864]
S3 s816mdm;Sony Ericsson Device 816 USB WMC Modem Driver;c:\windows\system32\drivers\s816mdm.sys [3.3.2009 16:25 107304]
S3 s816mgmt;Sony Ericsson Device 816 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s816mgmt.sys [3.3.2009 16:25 99112]
S3 s816nd5;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (NDIS);c:\windows\system32\drivers\s816nd5.sys [3.3.2009 16:26 21928]
S3 s816obex;Sony Ericsson Device 816 USB WMC OBEX Interface;c:\windows\system32\drivers\s816obex.sys [3.3.2009 16:25 97320]
S3 s816unic;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (WDM);c:\windows\system32\drivers\s816unic.sys [3.3.2009 16:25 97704]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\e:\ntglm7x.sys --> e:\NTGLM7X.sys [?]
S3 WFIOCTL;WFIOCTL;c:\program files\WinFast\WFTVFM\WFIOCTL.sys [27.8.2007 21:57 9446]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
getPlusHelper REG_MULTI_SZ getPlusHelper
.
Obsah adresáře 'Naplánované úlohy'

2010-11-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-03-19 18:50]

2010-11-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-03-19 18:50]

2010-11-04 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 18:20]
.
.
------- Doplňkový sken -------
.
uStart Page = about:blank
uInternet Connection Wizard,ShellNext = hxxp://codecs.r8.org/
uInternet Settings,ProxyOverride = local
uInternet Settings,ProxyServer = 127.0.0.1:8080
IE: &ICQ Toolbar Search - c:\program files\ICQToolbar\toolbaru.dll/SEARCH.HTML
IE: &Winamp Toolbar Search - c:\documents and settings\All Users\Data aplikací\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Stáhnout pomocí &BitSpiritu - c:\program files\BitSpirit\bsurl.htm
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\windows\WebIE.dll
FF - ProfilePath - c:\documents and settings\Tomik\Data aplikací\Mozilla\Firefox\Profiles\hxa4y507.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - plugin: c:\program files\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npgcplug.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npracplug.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-11-04 21:55
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-796845957-630328440-682003330-1003\Software\SecuROM\License information*]
"datasecu"=hex:f3,d0,ed,a5,0f,b4,ab,6d,b6,fa,4b,b8,af,dc,bc,89,df,f2,c6,cc,ce,
0a,74,58,5a,be,31,28,0e,4c,45,f7,1f,64,02,79,90,8a,27,fd,30,9e,0b,5e,c6,0f,\
"rkeysecu"=hex:56,c6,0d,e0,20,27,f2,5f,5e,7a,0c,15,6c,01,a7,f3

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\Ř•€|˙˙˙˙•€|ů•6~*]
"5E7CEC10DF0760D4F8DAFB12FDC06CCD"="02:\\Software\\Adobe\\FeatureSubscriptions\\DVAAdobeDocMeta\\{01CEC7E5-70FD-4D06-8FAD-BF21DF0CC6DC}\\Registered"

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG10.00.00.01WORKSTATION"="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"
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
"OODEFRAG12.00.00.01PROFESSIONAL"="0F6ABC709B396A4AE4E90DC834189DD2A5D2A40DD649A1E566AE1EC0710921DB0043332198372FF270F68A30E8A358FA4C031F05042C5758B77CACFB8DA8475777A2BAAFCBA3F1C5120AA43BC76D2A697A0C46D405F3B741CD8F283BC8F2CC8DA718436772E8943C7AAFD41BDC6C4F0F81973FB3D8C576A13D4FFCD634D8FEB983E724E84CE39D651E27F9D5B98A246CF8800F2B83B76B935C557A7EE1BFCFA7C30896269FE6B5633767D543F6A8AD1B395B231909561343C67056356A81D2396525386934392DFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74C5D575E7D6A3B9808BA7FD869164D6794FEBC9E127BECC74C8EDD5E5BE2F6E66728525E84B94D277B3D5FAB33860B8E6914EFE549635460FE877626223FCFDF4218C8EEB3D87E5BEBB9AB0004B84BE631F7767A480039E6A361BC577D77947093CE0C2AA27EBAF3936CC037F2C273B779A15E55C047D12B81BB7E26D43C31F9F2F05315DCA835FE5E2FB3B4F365E4006541B957B25F523797B9F08F4FB74934583513EB54A59F045FEDDC0F62B205B0C11764957DC06C8B09118DC6F768024CDDE9869BDD17317BCA2AD6937991BAAFFAFA7957E9B85C1A1C10152FBE9E08E1466FAE473074A6D2787A0240DCC074D72356DB1AA1675FC93C9306647601880873374CC4E78840E8E78604C8904E21F56F26AF0EB1C03875788FAAB3580AB647EDCCE89F0672BF96B68C4416FC9DB64EBA7FDD180F8E29EC038B0A9D7D85C99C614BCC166EA46DA12BDD6E42F1E6AC94038714CF0EED7FF23323F2D7E597FAF61E620A1B6BE417482E5E739C9F36017469F644036ACE073E8504784BF5348A3B97D6F1D3A64F0ABBCD8986299BE9338AB31E2230C1F612FA95F27097F3A5B9C0E5019B1C32529920B8EA21A05FB8496ACCDEA70F96FD75C6A9C7F38C8C8A50D3464DE38281311F10C5A4FDECC7A74B18C1AE91054FD08AB4A56BE2304DD318B395BB68486E02F4176C6B1EAE9614C48F461861B036B1B14D175FDD3C2BC66016D9DF0DE4332F7BB64B8846B8F02D48BE2DB9DC61F9B3C90A2AB6CB1E7DFEFAA1BB637882F2F896E4A0DAFC92E1F6E88572C68B9B2D41395AB41756F6FD68407284039501AF702D0954511077D34940BC34833B19C695E922AB3DEC1CCE458899A68B94F0537DAB01ED720E581ACEE92DB2CA7EC51FC1C937AAF7C018F02C341A3465E71AA9D9011D1AD74C57EA888793560CA741F6AAC9E470AA47A74D85A5EBE687C676E21621242A2E62CBDDC93E24A64853E16E0A5F6ADF4D3CBDAE11C27C197CAC34931384CD9236AC4371BA3584D297DAAE8EEB057B00E89CFD445EF62A4A6658B6348825C7ECC5CBFA85569ACC2B22E2E43FAFB8BDFA1FAAC2A1D431C9A0F8CD9421810332F4C7"
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(1124)
c:\windows\system32\LMIinit.dll
c:\windows\system32\LMIRfsClientNP.dll

- - - - - - - > 'explorer.exe'(2036)
c:\progra~1\WINDOW~3\wmpband.dll
c:\windows\system32\WPDShServiceObj.dll
c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
c:\windows\system32\LMIRfsClientNP.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\HPZipm12.exe
c:\program files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
.
**************************************************************************
.
Celkový čas: 2010-11-04 22:01:55 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-11-04 21:01

Před spuštěním: 4 050 509 824
Po spuštění: 4 160 503 808

Current=15 Default=15 Failed=14 LastKnownGood=16 Sets=1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16
- - End Of File - - 57202C5C0C6178ED1E3CA5CE0E511AA4
Nahr nˇ probŘhlo ŁspŘçnŘ

Log již vypadá čistý. Hlavním důvodem restartu byl beze sporu prach v chladiči.

Děkuji za pomoc už to jede jak má

Nemáte zač!