VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Preventívka

https://forum.viry.cz:443/viewtopic.php?t=109223

Stránka 1 z 1

Preventívka

Napsal: 07 úno 2011 19:45
od SkaMasta
Poprosím o preventívku, v poslednom čase mi PC robí, no opísal by som to ako záseky, oko keby ho na pár sekúnd niečo úplne vycucávalo o výkon.


Log z RSIT


Logfile of random's system information tool 1.07 (written by random/random)
Run by Čáky Maroš at 2008-09-07 19:39:10
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 467 MB (1%) free of 33 GB
Total RAM: 1279 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:41:31, on 7. 9. 2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
C:\WINDOWS\system32\ctfmon.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\Mozilla Firefox\plugin-container.exe
D:\AntiVyro\RSIT.exe
C:\Program Files\trend micro\Čáky Maroš.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://qip.ru
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (file missing)
R3 - URLSearchHook: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSoft.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O2 - BHO: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSoft.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (file missing)
O3 - Toolbar: BS.Player ControlBar - {2C688203-7EB3-4327-9995-1CB417BA23F9} - C:\Program Files\BS.Player ControlBar\BSToolbar.dll
O3 - Toolbar: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSoft.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [QNB2EB90WX] C:\DOCUME~1\KYMARO~1\LOCALS~1\Temp\Bdd.exe
O4 - HKCU\..\Run: [Infium] "C:\Program Files\QIP 2010\qip.exe" /autorun
O4 - HKCU\..\Run: [NVIDIA driver monitor] c:\windows\nvsvc32.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: &Translate English Word - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: QIP 2005 - {1EF681F7-A04B-4D6D-9012-A307CCA55610} - C:\Program Files\QIP\qip.exe (file missing) (HKCU)
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Dragon Age: Origins - Content Updater (DAUpdaterSvc) - BioWare - D:\Program Files\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Unknown owner - C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SbPF.Launcher - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe

--
End of file - 8816 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Google Software Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
C:\WINDOWS\tasks\{8C3FDD81-7AE0-4605-A46A-2488B179F2A3}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-10-10 3906656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
Softonic-Eng7 Toolbar - C:\Program Files\Softonic-Eng7\tbSoft.dll [2010-10-10 3906656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2008-09-11 761840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-04-12 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-04-12 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll []
{2C688203-7EB3-4327-9995-1CB417BA23F9} - BS.Player ControlBar - C:\Program Files\BS.Player ControlBar\BSToolbar.dll [2008-08-13 757192]
{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - Softonic-Eng7 Toolbar - C:\Program Files\Softonic-Eng7\tbSoft.dll [2010-10-10 3906656]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-10-10 3906656]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2005-07-22 81920]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2006-04-29 180269]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-10-07 1461080]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-02-01 385024]
"nwiz"=nwiz.exe /installquiet []
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2010-04-03 13670504]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2010-04-03 110696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2004-10-13 1694208]
"DAEMON Tools Lite"=D:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-09-11 39408]
"QNB2EB90WX"=C:\DOCUME~1\KYMARO~1\LOCALS~1\Temp\Bdd.exe []
"Infium"=C:\Program Files\QIP 2010\qip.exe [2010-06-09 5714384]
"NVIDIA driver monitor"=c:\windows\nvsvc32.exe []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2004-08-17 239616]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"NoDriveAutoRun"=67108863

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\ICQLite\ICQLite.exe"="C:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite"
"D:\Program Files\ICQLite\ICQLite.exe"="D:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQLite"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe"="C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe:*:Enabled:Sunbelt Firewall GUI"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"D:\Program Files\TmNationsForever\TmForever.exe"="D:\Program Files\TmNationsForever\TmForever.exe:*:Enabled:TmForever"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"D:\Program Files\Atari\Neverwinter Nights 2\nwn2main.exe"="D:\Program Files\Atari\Neverwinter Nights 2\nwn2main.exe:*:Enabled:Neverwinter Nights 2 Main"
"D:\Program Files\Atari\Neverwinter Nights 2\nwupdate.exe"="D:\Program Files\Atari\Neverwinter Nights 2\nwupdate.exe:*:Enabled:Neverwinter Nights 2 Updater"
"D:\Program Files\Atari\Neverwinter Nights 2\nwn2server.exe"="D:\Program Files\Atari\Neverwinter Nights 2\nwn2server.exe:*:Enabled:Neverwinter Nights 2 Server"
"D:\Games\Dragon Age Origins Character Creator\bin_ship\DAOCharacterCreator.exe"="D:\Games\Dragon Age Origins Character Creator\bin_ship\DAOCharacterCreator.exe:*:Enabled:Tvorba postavy Dragon Age Prameny"
"D:\Games\Dragon Age Origins Character Creator\DAOriginsLauncher.exe"="D:\Games\Dragon Age Origins Character Creator\DAOriginsLauncher.exe:*:Enabled:Tvorba postavy Dragon Age Prameny Spustit"
"D:\Program Files\Dragon Age\bin_ship\daorigins.exe"="D:\Program Files\Dragon Age\bin_ship\daorigins.exe:*:Enabled:Dragon Age Origins Game"
"D:\Program Files\Dragon Age\DAOriginsLauncher.exe"="D:\Program Files\Dragon Age\DAOriginsLauncher.exe:*:Enabled:Dragon Age Origins Launcher"
"D:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe"="D:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe:*:Enabled:Dragon Age Origins Updater"
"D:\Program Files\KAPITALSIN\Mass Effect\Binaries\MassEffect.exe"="D:\Program Files\KAPITALSIN\Mass Effect\Binaries\MassEffect.exe:*:Enabled:Mass Effect Game"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"C:\Documents and Settings\Čáky Maroš\Plocha\facebook-pic000163927.exe"="c:\windows\nvsvc32.exe:*:Enabled:NVIDIA driver monitor"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"

======List of files/folders created in the last 1 months======

2010-12-09 14:03:04 ----D---- C:\Documents and Settings\All Users\Data aplikací\Real
2010-04-03 19:23:18 ----A---- C:\WINDOWS\system32\nvmccs.dll
2010-04-03 19:23:16 ----A---- C:\WINDOWS\system32\nvsvc32.exe
2010-04-03 19:23:16 ----A---- C:\WINDOWS\system32\nvmctray.dll
2010-04-03 19:23:16 ----A---- C:\WINDOWS\system32\nvcpl.dll
2010-04-03 19:23:16 ----A---- C:\WINDOWS\system32\nvcolor.exe
2010-04-03 19:23:00 ----A---- C:\WINDOWS\system32\nvrszht.dll
2010-04-03 19:23:00 ----A---- C:\WINDOWS\system32\nvrszhc.dll
2010-04-03 19:22:58 ----A---- C:\WINDOWS\system32\nvrstr.dll
2010-04-03 19:22:58 ----A---- C:\WINDOWS\system32\nvrsth.dll
2010-04-03 19:22:58 ----A---- C:\WINDOWS\system32\nvrssv.dll
2010-04-03 19:22:58 ----A---- C:\WINDOWS\system32\nvrssl.dll
2010-04-03 19:22:58 ----A---- C:\WINDOWS\system32\nvrssk.dll
2010-04-03 19:22:58 ----A---- C:\WINDOWS\system32\nvrsru.dll
2010-04-03 19:22:58 ----A---- C:\WINDOWS\system32\nvrsptb.dll
2010-04-03 19:22:58 ----A---- C:\WINDOWS\system32\nvrspt.dll
2010-04-03 19:22:58 ----A---- C:\WINDOWS\system32\nvrspl.dll
2010-04-03 19:22:58 ----A---- C:\WINDOWS\system32\nvrsno.dll
2010-04-03 19:22:58 ----A---- C:\WINDOWS\system32\nvrsnl.dll
2010-04-03 19:22:56 ----A---- C:\WINDOWS\system32\nvrsko.dll
2010-04-03 19:22:56 ----A---- C:\WINDOWS\system32\nvrsja.dll
2010-04-03 19:22:56 ----A---- C:\WINDOWS\system32\nvrsit.dll
2010-04-03 19:22:56 ----A---- C:\WINDOWS\system32\nvrshu.dll
2010-04-03 19:22:56 ----A---- C:\WINDOWS\system32\nvrshe.dll
2010-04-03 19:22:56 ----A---- C:\WINDOWS\system32\nvrsfr.dll
2010-04-03 19:22:56 ----A---- C:\WINDOWS\system32\nvrsfi.dll
2010-04-03 19:22:56 ----A---- C:\WINDOWS\system32\nvrsesm.dll
2010-04-03 19:22:56 ----A---- C:\WINDOWS\system32\nvrses.dll
2010-04-03 19:22:56 ----A---- C:\WINDOWS\system32\nvrseng.dll
2010-04-03 19:22:56 ----A---- C:\WINDOWS\system32\nvrsel.dll
2010-04-03 19:22:56 ----A---- C:\WINDOWS\system32\nvrsde.dll
2010-04-03 19:22:54 ----A---- C:\WINDOWS\system32\nvwddi.dll
2010-04-03 19:22:54 ----A---- C:\WINDOWS\system32\nvrsda.dll
2010-04-03 19:22:54 ----A---- C:\WINDOWS\system32\nvrscs.dll
2010-04-03 19:22:54 ----A---- C:\WINDOWS\system32\nvrsar.dll
2010-03-31 00:16:34 ----A---- C:\WINDOWS\system32\PresentationHostProxy.dll
2010-03-31 00:10:40 ----A---- C:\WINDOWS\system32\PresentationHost.exe
2010-03-18 12:27:08 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$
2010-03-18 12:26:34 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-03-18 12:26:14 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-03-18 12:26:06 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-03-18 12:25:59 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-03-18 12:25:46 ----HDC---- C:\WINDOWS\$NtUninstallKB977165-v2$
2010-03-18 12:25:38 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-03-18 12:25:23 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2010-03-18 12:25:15 ----HDC---- C:\WINDOWS\$NtUninstallKB978251$
2010-03-18 12:25:06 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-03-18 12:22:59 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-03-18 12:22:46 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-03-18 12:22:22 ----HDC---- C:\WINDOWS\$NtUninstallKB979306$
2009-11-30 17:56:59 ----HDC---- C:\WINDOWS\$NtUninstallKB976098-v2$
2009-11-30 17:56:32 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2009-11-30 17:54:03 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2009-11-30 17:53:32 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
2009-11-07 01:07:08 ----A---- C:\WINDOWS\system32\netfxperf.dll
2009-11-07 01:07:04 ----A---- C:\WINDOWS\system32\mscoree.dll
2009-11-07 01:06:46 ----A---- C:\WINDOWS\system32\dfshim.dll
2009-10-25 21:40:01 ----D---- C:\WINDOWS\temp
2009-10-25 21:39:54 ----A---- C:\ComboFix.txt
2009-10-24 15:49:48 ----A---- C:\log.txt
2009-10-24 15:42:53 ----A---- C:\WINDOWS\zip.exe
2009-10-24 15:42:53 ----A---- C:\WINDOWS\SWXCACLS.exe
2009-10-24 15:42:53 ----A---- C:\WINDOWS\SWSC.exe
2009-10-24 15:42:53 ----A---- C:\WINDOWS\SWREG.exe
2009-10-24 15:42:53 ----A---- C:\WINDOWS\sed.exe
2009-10-24 15:42:53 ----A---- C:\WINDOWS\PEV.exe
2009-10-24 15:42:53 ----A---- C:\WINDOWS\NIRCMD.exe
2009-10-24 15:42:53 ----A---- C:\WINDOWS\grep.exe
2009-08-19 18:07:18 ----A---- C:\WINDOWS\system32\msxml6.dll
2009-08-17 03:04:24 ----A---- C:\WINDOWS\system32\nvcplui.exe
2009-08-17 03:03:44 ----A---- C:\WINDOWS\system32\nvwss.dll
2009-08-17 03:03:38 ----A---- C:\WINDOWS\system32\nvvitvs.dll
2009-08-17 03:03:28 ----A---- C:\WINDOWS\system32\nvmobls.dll
2009-08-17 03:03:28 ----A---- C:\WINDOWS\system32\nvmccss.dll
2009-08-17 03:03:22 ----A---- C:\WINDOWS\system32\nvgames.dll
2009-08-17 03:03:02 ----A---- C:\WINDOWS\system32\nvdisps.dll
2009-08-17 00:57:00 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2009-08-17 00:57:00 ----A---- C:\WINDOWS\system32\nvcuvenc.dll
2009-08-14 13:36:18 ----A---- C:\WINDOWS\system32\PhysXLoader.dll
2009-08-03 00:21:54 ----A---- C:\WINDOWS\system32\PhysXDevice.dll
2009-07-21 01:05:40 ----A---- C:\WINDOWS\system32\msxml4.dll
2009-06-19 20:06:22 ----A---- C:\WINDOWS\system32\physxcudart_20.dll
2009-06-19 20:06:22 ----A---- C:\WINDOWS\system32\PhysXCplUI.exe
2009-06-19 20:06:22 ----A---- C:\WINDOWS\system32\PhysXCompatCplUI.exe
2009-06-19 20:06:22 ----A---- C:\WINDOWS\system32\AgCPanelTraditionalChinese.dll
2009-06-19 20:06:22 ----A---- C:\WINDOWS\system32\AgCPanelSwedish.dll
2009-06-19 20:06:22 ----A---- C:\WINDOWS\system32\AgCPanelSpanish.dll
2009-06-19 20:06:22 ----A---- C:\WINDOWS\system32\AgCPanelSimplifiedChinese.dll
2009-06-19 20:06:22 ----A---- C:\WINDOWS\system32\AgCPanelPortugese.dll
2009-06-19 20:06:22 ----A---- C:\WINDOWS\system32\AgCPanelKorean.dll
2009-06-19 20:06:22 ----A---- C:\WINDOWS\system32\AgCPanelJapanese.dll
2009-06-19 20:06:22 ----A---- C:\WINDOWS\system32\AgCPanelGerman.dll
2009-06-19 20:06:22 ----A---- C:\WINDOWS\system32\AgCPanelFrench.dll
2009-04-22 00:20:44 ----A---- C:\WINDOWS\system32\xlivefnt.dll
2009-04-22 00:20:44 ----A---- C:\WINDOWS\system32\xlive.dll
2009-04-22 00:19:06 ----A---- C:\WINDOWS\system32\xlive.dll.cat
2009-03-08 14:19:54 ----N---- C:\WINDOWS\system32\msrating.dll.mui
2009-03-08 14:19:36 ----N---- C:\WINDOWS\system32\mshta.exe.mui
2009-03-08 14:18:16 ----N---- C:\WINDOWS\system32\ie4uinit.exe.mui
2009-03-08 14:17:58 ----N---- C:\WINDOWS\system32\iedkcs32.dll.mui
2009-01-07 18:20:18 ----A---- C:\WINDOWS\system32\msdbg2.dll
2008-12-26 00:08:00 ----A---- C:\WINDOWS\system32\nvcuda.dll
2008-10-24 21:05:29 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2008-10-18 20:12:55 ----HDC---- C:\WINDOWS\$NtUninstallKB925720$
2008-10-16 08:53:25 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2008-10-16 08:53:18 ----HDC---- C:\WINDOWS\$NtUninstallKB956391$
2008-10-16 08:53:11 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2008-10-16 08:52:40 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2008-10-16 08:52:26 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2008-10-16 00:00:59 ----D---- C:\Program Files\MSBuild
2008-10-15 23:56:39 ----D---- C:\WINDOWS\system32\XPSViewer
2008-10-15 23:56:36 ----D---- C:\WINDOWS\system32\en-us
2008-10-15 23:56:05 ----D---- C:\Program Files\Reference Assemblies
2008-10-15 23:55:45 ----N---- C:\WINDOWS\system32\spmsg2.dll
2008-10-15 23:52:16 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
2008-10-14 07:52:14 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2008-10-14 07:52:10 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2008-10-14 07:51:30 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2008-10-14 07:51:18 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2008-10-13 18:32:22 ----A---- C:\Komponenty Duro.txt
2008-10-13 17:34:28 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2008-10-13 17:34:15 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2008-10-11 21:24:26 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2008-10-11 21:24:26 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2008-10-11 21:24:25 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2008-10-11 21:24:24 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2008-10-11 21:24:24 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2008-10-11 21:24:23 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2008-10-11 21:24:22 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2008-10-11 21:24:21 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2008-10-11 21:24:21 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2008-10-11 21:24:20 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2008-10-11 21:24:19 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2008-10-11 21:24:19 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2008-10-11 21:24:18 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2008-10-11 21:24:17 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2008-10-11 21:24:17 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2008-10-11 21:24:16 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2008-10-11 21:24:15 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2008-10-11 21:24:14 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2008-10-11 21:24:14 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2008-10-11 21:24:13 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2008-10-11 21:24:12 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2008-10-11 21:24:11 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2008-10-11 21:24:10 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2008-10-11 21:24:08 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2008-10-11 21:24:08 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2008-10-11 21:24:03 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2008-10-11 21:21:50 ----D---- C:\WINDOWS\Logs
2008-10-05 22:44:00 ----D---- C:\WINDOWS\Sun
2008-10-05 22:44:00 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\Sun
2008-09-30 07:48:08 ----D---- C:\WINDOWS\system32\CatRoot_bak
2008-09-27 16:53:26 ----D---- C:\Nová složka (2)
2008-09-27 15:15:29 ----A---- C:\NOTEBOOKY.txt
2008-09-24 22:36:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\InstallShield
2008-09-24 16:24:05 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\ArcSoft
2008-09-24 16:23:43 ----A---- C:\WINDOWS\PCDLIB32.DLL
2008-09-23 22:09:25 ----D---- C:\Program Files\trend micro
2008-09-23 22:09:24 ----D---- C:\rsit
2008-09-22 20:40:39 ----HDC---- C:\WINDOWS\$NtUninstallKB942288-v3$
2008-09-22 13:31:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\Blizzard
2008-09-21 12:26:27 ----D---- C:\WINDOWS\1C4551A64743409391E41477CD655043.TMP
2008-09-19 17:19:33 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\Facebook
2008-09-19 17:11:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\TrackMania
2008-09-19 15:35:42 ----AD---- C:\Qoobox
2008-09-19 15:32:10 ----SHD---- C:\RECYCLER
2008-09-19 11:54:05 ----D---- C:\Program Files\OpenAL
2008-09-19 11:54:04 ----RA---- C:\WINDOWS\system32\tmp444.tmp
2008-09-19 11:54:04 ----RA---- C:\WINDOWS\system32\tmp443.tmp
2008-09-18 23:10:59 ----D---- C:\Documents and Settings\All Users\Data aplikací\BioWare
2008-09-18 19:28:50 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\Malwarebytes
2008-09-18 19:28:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2008-09-18 19:14:57 ----D---- C:\WINDOWS\erdnt
2008-09-18 18:44:58 ----D---- C:\WINDOWS\ERUNT
2008-09-18 18:25:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\Lavasoft
2008-09-18 18:25:25 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2008-09-17 20:57:11 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\Canon
2008-09-17 20:07:01 ----D---- C:\Program Files\Common Files\Canon
2008-09-17 19:23:23 ----A---- C:\WINDOWS\system32\tmp.txt
2008-09-17 15:22:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\SUPERAntiSpyware.com
2008-09-17 15:20:26 ----D---- C:\Program Files\SUPERAntiSpyware
2008-09-17 15:20:26 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\SUPERAntiSpyware.com
2008-09-16 23:19:58 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\Leadertech
2008-09-16 19:15:27 ----D---- C:\WINDOWS\system32\xlive
2008-09-16 16:44:10 ----N---- C:\WINDOWS\system32\vxblock.dll
2008-09-16 16:44:10 ----N---- C:\WINDOWS\system32\pxwave.dll
2008-09-16 16:44:10 ----N---- C:\WINDOWS\system32\pxsfs.dll
2008-09-16 16:44:10 ----N---- C:\WINDOWS\system32\pxmas.dll
2008-09-16 16:44:10 ----N---- C:\WINDOWS\system32\pxinsi64.exe
2008-09-16 16:44:10 ----N---- C:\WINDOWS\system32\pxinsa64.exe
2008-09-16 16:44:10 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2008-09-16 16:44:10 ----N---- C:\WINDOWS\system32\pxdrv.dll
2008-09-16 16:44:10 ----N---- C:\WINDOWS\system32\pxcpyi64.exe
2008-09-16 16:44:10 ----N---- C:\WINDOWS\system32\pxcpya64.exe
2008-09-16 16:44:10 ----N---- C:\WINDOWS\system32\pxafs.dll
2008-09-16 16:44:10 ----N---- C:\WINDOWS\system32\px.dll
2008-09-16 14:17:18 ----D---- C:\NVIDIA
2008-09-15 23:24:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\Lavasoft(2)
2008-09-15 17:11:41 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\Mozilla
2008-09-15 17:03:13 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2008-09-15 16:35:16 ----D---- C:\Program Files\Common Files\STORMWARE Shared
2008-09-15 11:15:28 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2008-09-15 11:15:27 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2008-09-15 11:15:26 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2008-09-15 11:15:26 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2008-09-15 11:15:25 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2008-09-15 11:15:24 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2008-09-15 11:15:24 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2008-09-15 10:00:06 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2008-09-15 10:00:00 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
2008-09-15 09:58:01 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2008-09-15 09:57:47 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2008-09-15 09:57:41 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2008-09-15 09:57:29 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2008-09-14 19:16:20 ----D---- C:\Program Files\Death Rally
2008-09-14 17:55:04 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2008-09-14 17:54:50 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2008-09-14 14:36:11 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\IGN_DLM
2008-09-14 13:45:27 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\Mount&Blade Warband
2008-09-13 16:53:49 ----A---- C:\WINDOWS\system32\abecdf06-.txt
2008-09-13 15:19:11 ----D---- C:\Documents and Settings\All Users\Data aplikací\ICQ
2008-09-13 15:18:01 ----D---- C:\Program Files\ICQ6.5
2008-09-13 10:01:05 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\Mount&Blade
2008-09-13 09:57:18 ----A---- C:\WINDOWS\IsUninstR.Exe
2008-09-13 09:57:17 ----D---- C:\Program Files\snowball.ru
2008-09-12 22:23:53 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$
2008-09-12 20:31:04 ----D---- C:\školenia Tikkurila
2008-09-12 17:47:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2008-09-12 17:46:45 ----D---- C:\Program Files\DAEMON Tools Toolbar
2008-09-12 17:41:50 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\DAEMON Tools Lite
2008-09-12 17:23:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\id Software
2008-09-12 14:08:15 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2008-09-12 07:22:34 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2008-09-12 07:22:27 ----HDC---- C:\WINDOWS\$NtUninstallKB969898$
2008-09-12 07:21:00 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2008-09-12 07:20:23 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$
2008-09-11 22:21:11 ----D---- C:\Documents and Settings\All Users\Data aplikací\Google Updater
2008-09-11 17:52:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\Trymedia
2008-09-11 13:51:52 ----RA---- C:\WINDOWS\system32\tmp3E2.tmp
2008-09-11 13:10:08 ----A---- C:\WINDOWS\system32\OpenCL.dll
2008-09-11 13:10:06 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2008-09-11 09:30:39 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2008-09-10 18:16:59 ----A---- C:\WINDOWS\system32\serdit.exe
2008-09-10 12:20:16 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\HDRsoft
2008-09-09 22:33:23 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\PriceGong
2008-09-09 21:29:21 ----D---- C:\Program Files\Common Files\BioWare
2008-09-09 21:19:46 ----D---- C:\WINDOWS\SxsCaPendDel
2008-09-09 17:13:50 ----D---- C:\Program Files\NVIDIA Corporation
2008-09-09 17:13:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\NVIDIA Corporation
2008-09-09 17:12:26 ----D---- C:\fotky reklamacia
2008-09-09 16:16:04 ----D---- C:\Program Files\SDHelper (Spybot - Search & Destroy)
2008-09-09 16:16:04 ----D---- C:\Program Files\Misc. Support Library (Spybot - Search & Destroy)
2008-09-09 16:16:04 ----D---- C:\Program Files\File Scanner Library (Spybot - Search & Destroy)
2008-09-09 13:51:36 ----RHD---- C:\Documents and Settings\Čáky Maroš\Data aplikací\SecuROM
2008-09-08 23:44:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2008-09-08 23:44:19 ----A---- C:\WINDOWS\system32\javaws.exe
2008-09-08 23:44:19 ----A---- C:\WINDOWS\system32\javaw.exe
2008-09-08 23:44:19 ----A---- C:\WINDOWS\system32\java.exe
2008-09-08 23:44:19 ----A---- C:\WINDOWS\system32\deployJava1.dll
2008-09-08 22:29:51 ----HD---- C:\WINDOWS\PIF
2008-09-08 18:36:31 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2008-09-08 18:36:26 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2008-09-08 18:35:58 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2008-09-08 18:35:52 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2008-09-08 18:32:10 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2008-09-08 14:43:19 ----HDC---- C:\WINDOWS\ie8
2008-09-07 22:24:30 ----D---- C:\Program Files\QIP 2010
2008-09-07 21:49:58 ----D---- C:\WINDOWS\system32\AGEIA
2008-09-07 21:49:56 ----D---- C:\Program Files\AGEIA Technologies
2008-09-06 11:02:46 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\Turbine
2008-09-05 12:20:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\PMB Files
2008-09-05 12:20:20 ----D---- C:\Program Files\Pando Networks
2008-09-04 23:13:11 ----RA---- C:\WINDOWS\system32\psfind.dll
2008-09-04 22:20:26 ----D---- C:\Fotky
2008-09-04 17:06:09 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\TS3Client
2008-09-04 16:52:22 ----D---- C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
2008-09-04 16:52:11 ----D---- C:\Program Files\Conduit
2008-09-04 16:52:08 ----D---- C:\Program Files\ConduitEngine
2008-09-04 16:51:59 ----D---- C:\Program Files\Softonic-Eng7
2008-09-04 16:35:53 ----D---- C:\Nová složka
2008-09-03 21:19:18 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\MSN6
2008-09-03 21:19:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\MSN6
2008-09-03 19:48:55 ----D---- C:\Program Files\BS.Player ControlBar
2008-09-03 13:40:42 ----A---- C:\WINDOWS\system32\CmdLineExt03.dll
2008-09-02 18:49:36 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2008-09-02 18:49:36 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2008-09-02 18:49:35 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2008-09-02 18:49:35 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2008-09-02 18:49:35 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2008-09-02 18:49:34 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2008-09-02 18:49:34 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2008-09-02 17:49:36 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2008-09-02 17:14:59 ----D---- C:\Program Files\TeaTimer (Spybot - Search & Destroy)
2008-09-02 17:12:40 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2008-09-02 17:12:12 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2008-09-02 17:11:55 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2008-09-02 17:11:42 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2008-09-02 17:10:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2008-09-02 16:03:48 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2008-09-02 16:03:42 ----HDC---- C:\WINDOWS\$NtUninstallKB961371-v2$
2008-09-02 16:03:36 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2008-09-02 16:03:31 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
2008-09-02 16:03:25 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2008-09-02 16:03:19 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
2008-09-02 16:03:05 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2008-09-02 14:03:29 ----D---- C:\Program Files\Sunbelt Software
2008-09-02 12:51:07 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2008-09-02 12:50:57 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2008-09-02 12:50:40 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2008-09-02 12:50:28 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2008-09-02 12:49:23 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2008-09-02 12:49:06 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2008-09-02 12:48:40 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2008-09-02 12:48:24 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2008-09-02 12:47:47 ----A---- C:\WINDOWS\imsins.BAK
2008-09-02 12:47:36 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2008-09-02 11:49:10 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2008-09-02 11:46:34 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2008-09-02 11:46:30 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2008-09-02 11:46:26 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2008-09-02 11:46:22 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2008-09-02 11:46:14 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2008-09-02 11:46:12 ----A---- C:\WINDOWS\system32\wmpns.dll
2008-09-02 11:46:09 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$
2008-09-02 11:46:05 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2008-09-02 11:45:59 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2008-09-02 11:45:54 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2008-09-02 11:45:42 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$
2008-09-02 11:45:28 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$
2008-09-02 11:45:21 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2008-09-02 11:45:16 ----D---- C:\WINDOWS\ie8updates
2008-09-02 11:45:08 ----HDC---- C:\WINDOWS\$NtUninstallKB973525$
2008-09-02 11:45:00 ----HDC---- C:\WINDOWS\$NtUninstallKB971032$
2008-09-02 11:44:55 ----HDC---- C:\WINDOWS\$NtUninstallKB970653-v3$
2008-09-02 11:44:51 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2008-09-02 11:44:40 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2008-09-01 23:15:24 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\Flock
2008-09-01 23:14:58 ----D---- C:\Program Files\Flock
2008-08-30 19:43:57 ----D---- C:\Program Files\MSXML 6.0
2008-08-29 13:10:40 ----A---- C:\WINDOWS\system32\bzpdf101c.dll
2008-08-29 13:10:36 ----A---- C:\WINDOWS\system32\bzpdf101.dll
2008-08-29 13:10:32 ----A---- C:\WINDOWS\system32\msxml6r.dll
2008-08-29 13:10:13 ----D---- C:\Documents and Settings\All Users\Data aplikací\STORMWARE
2008-08-15 10:08:13 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2008-08-15 10:08:08 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2008-08-15 10:08:02 ----HDC---- C:\WINDOWS\$NtUninstallKB953839$
2008-08-15 10:07:56 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2008-08-15 10:06:56 ----HDC---- C:\WINDOWS\$NtUninstallKB951072-v2$
2008-08-15 10:06:39 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2008-08-15 10:06:08 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$

dalšia časť logu je nižšie nevošla sa sem..

-----------------EOF-----------------

Re: Preventívka

Napsal: 07 úno 2011 19:47
od SkaMasta
======List of files/folders modified in the last 1 months======

2011-01-04 18:20:14 ----A---- C:\WINDOWS\system32\MRT.exe
2010-05-06 12:35:35 ----A---- C:\WINDOWS\system32\wininet.dll
2010-05-06 12:35:35 ----A---- C:\WINDOWS\system32\urlmon.dll
2010-05-06 12:35:34 ----A---- C:\WINDOWS\system32\occache.dll
2010-05-06 12:35:34 ----A---- C:\WINDOWS\system32\mstime.dll
2010-05-06 12:35:34 ----A---- C:\WINDOWS\system32\mshtml.dll
2010-05-06 12:35:31 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2010-05-06 12:35:31 ----A---- C:\WINDOWS\system32\msfeeds.dll
2010-05-06 12:35:31 ----A---- C:\WINDOWS\system32\jsproxy.dll
2010-05-06 12:35:30 ----A---- C:\WINDOWS\system32\iertutil.dll
2010-05-06 12:35:29 ----A---- C:\WINDOWS\system32\iepeers.dll
2010-05-06 12:35:29 ----A---- C:\WINDOWS\system32\ieframe.dll
2010-05-06 12:35:26 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2010-05-05 15:30:57 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2010-04-21 15:28:50 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-04-20 07:48:33 ----A---- C:\WINDOWS\system32\atmfd.dll
2010-04-04 00:55:31 ----A---- C:\WINDOWS\system32\nvudisp.exe
2010-04-04 00:55:31 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2010-04-04 00:55:31 ----A---- C:\WINDOWS\system32\nvcodins.dll
2010-04-04 00:55:31 ----A---- C:\WINDOWS\system32\nvcod.dll
2010-04-04 00:55:31 ----A---- C:\WINDOWS\system32\nvapi.dll
2010-04-04 00:55:31 ----A---- C:\WINDOWS\system32\nv4_disp.dll
2010-04-03 03:33:56 ----A---- C:\WINDOWS\system32\WMVCore.dll
2010-04-02 16:54:38 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2010-03-19 16:06:17 ----D---- C:\WINDOWS\AppPatch
2010-03-19 15:59:35 ----D---- C:\Program Files\Movie Maker
2010-03-19 15:04:39 ----D---- C:\WINDOWS\system32\CatRoot
2010-03-18 20:33:52 ----D---- C:\WINDOWS\system32\config
2010-03-18 20:33:29 ----D---- C:\WINDOWS\system32\wbem
2010-03-10 08:17:40 ----A---- C:\WINDOWS\system32\vbscript.dll
2010-03-05 16:57:11 ----A---- C:\WINDOWS\system32\asycfilt.dll
2010-02-16 21:34:49 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2010-02-16 21:34:49 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe
2010-02-12 12:03:03 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-02-12 06:47:01 ----A---- C:\WINDOWS\system32\6to4svc.dll
2010-02-05 20:40:44 ----A---- C:\WINDOWS\system32\quartz.dll
2010-01-29 17:07:57 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-01-13 16:10:55 ----A---- C:\WINDOWS\system32\cabview.dll
2009-12-24 09:07:42 ----A---- C:\WINDOWS\system32\wintrust.dll
2009-12-17 10:00:39 ----A---- C:\WINDOWS\system32\mspaint.exe
2009-12-14 09:37:45 ----A---- C:\WINDOWS\system32\csrsrv.dll
2009-12-09 07:55:34 ----A---- C:\WINDOWS\system32\jscript.dll
2009-12-08 11:13:23 ----A---- C:\WINDOWS\system32\shlwapi.dll
2009-11-27 19:35:52 ----A---- C:\WINDOWS\system32\msyuv.dll
2009-11-27 18:40:13 ----A---- C:\WINDOWS\system32\tsbyuv.dll
2009-11-27 18:40:13 ----A---- C:\WINDOWS\system32\msvidc32.dll
2009-11-27 18:40:13 ----A---- C:\WINDOWS\system32\msrle32.dll
2009-11-27 18:40:13 ----A---- C:\WINDOWS\system32\iyuv_32.dll
2009-11-27 18:40:13 ----A---- C:\WINDOWS\system32\avifil32.dll
2009-10-29 09:43:54 ----A---- C:\WINDOWS\system32\wininet(3).dll
2009-10-29 09:43:54 ----A---- C:\WINDOWS\system32\urlmon(3).dll
2009-10-25 21:34:30 ----A---- C:\WINDOWS\system.ini
2009-10-24 15:51:13 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\Real
2009-10-21 08:03:10 ----A---- C:\WINDOWS\system32\strmfilt.dll
2009-10-21 08:03:10 ----A---- C:\WINDOWS\system32\httpapi.dll
2009-10-15 23:52:46 ----A---- C:\WINDOWS\system32\t2embed.dll
2009-10-15 19:22:45 ----A---- C:\WINDOWS\system32\fontsub.dll
2009-10-13 12:53:28 ----A---- C:\WINDOWS\system32\oakley.dll
2009-10-12 15:54:11 ----A---- C:\WINDOWS\system32\rastls.dll
2009-10-12 15:54:11 ----A---- C:\WINDOWS\system32\raschap.dll
2009-09-11 16:35:41 ----A---- C:\WINDOWS\system32\msv1_0.dll
2009-09-04 22:47:46 ----A---- C:\WINDOWS\system32\msasn1.dll
2009-08-26 10:16:32 ----A---- C:\WINDOWS\system32\strmdll.dll
2009-08-25 11:49:02 ----A---- C:\WINDOWS\system32\winhttp.dll
2009-08-06 19:24:22 ----A---- C:\WINDOWS\system32\wucltui.dll.mui
2009-08-06 19:24:18 ----A---- C:\WINDOWS\system32\wuweb.dll
2009-08-06 19:24:18 ----A---- C:\WINDOWS\system32\wucltui.dll
2009-08-06 19:24:10 ----A---- C:\WINDOWS\system32\wups2.dll
2009-08-06 19:24:10 ----A---- C:\WINDOWS\system32\wups.dll
2009-08-06 19:24:06 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui
2009-08-06 19:24:06 ----A---- C:\WINDOWS\system32\wuauclt.exe
2009-08-06 19:24:06 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
2009-08-06 19:24:04 ----A---- C:\WINDOWS\system32\cdm.dll
2009-08-06 19:23:54 ----A---- C:\WINDOWS\system32\wuapi.dll
2009-08-06 19:23:46 ----A---- C:\WINDOWS\system32\wuaueng.dll
2009-08-05 11:07:44 ----A---- C:\WINDOWS\system32\mswebdvd.dll
2009-07-31 06:59:48 ----A---- C:\WINDOWS\system32\msxml3.dll
2009-07-17 20:57:54 ----A---- C:\WINDOWS\system32\atl.dll
2009-07-17 18:27:44 ----A---- C:\WINDOWS\system32\query.dll
2009-07-13 11:08:14 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2009-07-13 11:08:12 ----A---- C:\WINDOWS\system32\wmp.dll
2009-06-25 20:37:50 ----A---- C:\WINDOWS\system32\mqutil.dll
2009-06-25 20:37:50 ----A---- C:\WINDOWS\system32\mqupgrd.dll
2009-06-25 20:37:50 ----A---- C:\WINDOWS\system32\mqtrig.dll
2009-06-25 20:37:50 ----A---- C:\WINDOWS\system32\mqsnap.dll
2009-06-25 20:37:50 ----A---- C:\WINDOWS\system32\mqsec.dll
2009-06-25 20:37:50 ----A---- C:\WINDOWS\system32\mqrtdep.dll
2009-06-25 20:37:49 ----A---- C:\WINDOWS\system32\mqrt.dll
2009-06-25 20:37:49 ----A---- C:\WINDOWS\system32\mqqm.dll
2009-06-25 20:37:49 ----A---- C:\WINDOWS\system32\mqoa.dll
2009-06-25 20:37:49 ----A---- C:\WINDOWS\system32\mqise.dll
2009-06-25 20:37:49 ----A---- C:\WINDOWS\system32\mqdscli.dll
2009-06-25 20:37:49 ----A---- C:\WINDOWS\system32\mqad.dll
2009-06-25 10:48:08 ----A---- C:\WINDOWS\system32\wdigest.dll
2009-06-25 10:48:08 ----A---- C:\WINDOWS\system32\schannel.dll
2009-06-25 10:48:08 ----A---- C:\WINDOWS\system32\secur32.dll
2009-06-25 10:48:08 ----A---- C:\WINDOWS\system32\lsasrv.dll
2009-06-25 10:48:08 ----A---- C:\WINDOWS\system32\kerberos.dll
2009-06-22 13:49:23 ----A---- C:\WINDOWS\system32\mqtgsvc.exe
2009-06-22 13:49:23 ----A---- C:\WINDOWS\system32\mqbkup.exe
2009-06-22 13:49:04 ----A---- C:\WINDOWS\system32\mqsvc.exe
2009-06-15 13:33:50 ----A---- C:\WINDOWS\system32\telnet.exe
2009-06-15 13:33:48 ----A---- C:\WINDOWS\system32\tlntsess.exe
2009-06-10 08:31:43 ----A---- C:\WINDOWS\system32\wkssvc.dll
2009-06-05 09:46:32 ----A---- C:\WINDOWS\system32\mstscax.dll
2009-05-07 17:44:45 ----A---- C:\WINDOWS\system32\localspl.dll
2009-04-29 06:47:27 ----N---- C:\WINDOWS\system32\extmgr.dll
2009-04-15 17:18:21 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2009-04-15 11:55:59 ----A---- C:\WINDOWS\system32\xpsp3res.dll
2009-04-10 01:01:42 ----A---- C:\WINDOWS\system32\wmspdmod.dll
2009-03-21 16:21:21 ----N---- C:\WINDOWS\system32\kernel32.dll
2009-03-08 14:20:12 ----A---- C:\WINDOWS\system32\ieframe.dll.mui
2009-03-08 14:18:14 ----A---- C:\WINDOWS\system32\advpack.dll.mui
2009-03-08 04:34:48 ----A---- C:\WINDOWS\system32\WinFXDocObj.exe
2009-03-08 04:34:48 ----A---- C:\WINDOWS\system32\webcheck.dll
2009-03-08 04:34:30 ----A---- C:\WINDOWS\system32\licmgr10.dll
2009-03-08 04:34:28 ----A---- C:\WINDOWS\system32\url.dll
2009-03-08 04:34:18 ----A---- C:\WINDOWS\system32\msrating.dll
2009-03-08 04:33:40 ----A---- C:\WINDOWS\system32\corpol.dll
2009-03-08 04:33:08 ----A---- C:\WINDOWS\system32\ieaksie.dll
2009-03-08 04:33:02 ----A---- C:\WINDOWS\system32\ieakeng.dll
2009-03-08 04:32:56 ----A---- C:\WINDOWS\system32\admparse.dll
2009-03-08 04:32:52 ----A---- C:\WINDOWS\system32\ieudinit.exe
2009-03-08 04:32:52 ----A---- C:\WINDOWS\system32\ieakui.dll
2009-03-08 04:32:50 ----A---- C:\WINDOWS\system32\iesetup.dll
2009-03-08 04:32:50 ----A---- C:\WINDOWS\system32\iernonce.dll
2009-03-08 04:32:48 ----A---- C:\WINDOWS\system32\advpack.dll
2009-03-08 04:32:46 ----A---- C:\WINDOWS\system32\inseng.dll
2009-03-08 04:31:54 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2009-03-08 04:31:52 ----A---- C:\WINDOWS\system32\icardie.dll
2009-03-08 04:31:44 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2009-03-08 04:31:38 ----A---- C:\WINDOWS\system32\imgutil.dll
2009-03-08 04:31:38 ----A---- C:\WINDOWS\system32\dxtrans.dll
2009-03-08 04:31:36 ----A---- C:\WINDOWS\system32\pngfilt.dll
2009-03-08 04:31:26 ----A---- C:\WINDOWS\system32\mshtmled.dll
2009-03-08 04:31:18 ----A---- C:\WINDOWS\system32\mshtmler.dll
2009-03-08 04:31:02 ----A---- C:\WINDOWS\system32\mshta.exe
2009-03-08 04:22:46 ----A---- C:\WINDOWS\system32\ieui.dll
2009-03-08 04:22:38 ----A---- C:\WINDOWS\system32\msls31.dll
2009-03-08 04:11:12 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2009-03-06 16:47:43 ----A---- C:\WINDOWS\system32\pdh.dll
2009-02-09 12:22:08 ----N---- C:\WINDOWS\system32\rpcss.dll
2009-02-09 12:22:07 ----A---- C:\WINDOWS\system32\ntdll.dll
2009-02-09 12:22:07 ----A---- C:\WINDOWS\system32\advapi32.dll
2009-02-09 12:11:38 ----N---- C:\WINDOWS\system32\services.exe
2009-02-06 18:54:36 ----A---- C:\WINDOWS\system32\sc.exe
2009-02-06 18:41:25 ----D---- C:\Program Files\ICQToolbar
2009-01-07 18:21:04 ----A---- C:\WINDOWS\system32\xmllite.dll
2009-01-07 18:20:38 ----A---- C:\WINDOWS\system32\nlsdl.dll
2009-01-07 18:20:36 ----A---- C:\WINDOWS\system32\normaliz.dll
2009-01-07 18:20:36 ----A---- C:\WINDOWS\system32\idndl.dll
2009-01-07 18:20:24 ----N---- C:\WINDOWS\system32\spmsg.dll
2009-01-07 18:20:24 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2008-12-26 00:08:00 ----A---- C:\WINDOWS\system32\nvmccsrs.dll
2008-10-23 15:01:53 ----A---- C:\WINDOWS\system32\gdi32.dll
2008-10-15 23:55:52 ----D---- C:\WINDOWS\system32\spool
2008-10-15 19:00:47 ----A---- C:\WINDOWS\system32\netapi32.dll
2008-10-10 16:49:25 ----D---- C:\WINDOWS\system32\appmgmt
2008-09-27 16:52:53 ----D---- C:\dočasné z internetu
2008-09-25 19:04:42 ----HD---- C:\WINDOWS\inf
2008-09-25 12:08:48 ----D---- C:\Program Files\Common Files\Blizzard Entertainment
2008-09-24 22:36:37 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\InstallShield
2008-09-24 22:23:24 ----D---- C:\Program Files\Common Files\InstallShield
2008-09-23 21:51:16 ----DC---- C:\WINDOWS\system32\DRVSTORE
2008-09-23 21:51:05 ----D---- C:\Program Files\Common Files
2008-09-22 20:40:45 ----D---- C:\WINDOWS\system32\mui
2008-09-21 15:21:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2008-09-20 15:30:39 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\teamspeak2
2008-09-19 16:48:55 ----D---- C:\WINDOWS\Minidump
2008-09-18 18:57:39 ----D---- C:\Documents and Settings
2008-09-18 18:25:24 ----D---- C:\Program Files\Lavasoft
2008-09-17 19:40:25 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\ICQ
2008-09-17 15:24:52 ----D---- C:\Program Files\Google
2008-09-16 19:44:39 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\Spybot - Search & Destroy
2008-09-16 19:15:27 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2008-09-16 16:40:52 ----D---- C:\Program Files\Common Files\Adobe
2008-09-16 14:19:27 ----D---- C:\WINDOWS\nview
2008-09-16 11:47:25 ----D---- C:\WINDOWS\Debug
2008-09-15 17:26:19 ----HD---- C:\Program Files\InstallShield Installation Information
2008-09-15 16:35:06 ----D---- C:\Program Files\StormWare
2008-09-14 23:30:37 ----SD---- C:\WINDOWS\Downloaded Program Files
2008-09-14 22:47:53 ----D---- C:\Program Files\WinRAR
2008-09-14 21:17:37 ----A---- C:\WINDOWS\BlendSettings.ini
2008-09-14 17:56:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\Ubisoft
2008-09-13 15:18:53 ----D---- C:\Program Files\ICQ6
2008-09-12 17:48:45 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\DAEMON Tools
2008-09-12 13:48:08 ----SHD---- C:\WINDOWS\Installer
2008-09-12 13:48:08 ----D---- C:\Config.Msi
2008-09-12 13:25:52 ----D---- C:\WINDOWS
2008-09-11 13:11:56 ----D---- C:\WINDOWS\Help
2008-09-11 12:41:26 ----D---- C:\Program Files\SystemRequirementsLab
2008-09-09 21:19:59 ----D---- C:\Program Files\Common Files\Microsoft Shared
2008-09-09 21:12:16 ----SD---- C:\Documents and Settings\Čáky Maroš\Data aplikací\Microsoft
2008-09-09 19:35:20 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\Skype
2008-09-09 13:51:34 ----A---- C:\WINDOWS\system32\CmdLineExt.dll
2008-09-08 23:44:48 ----D---- C:\Program Files\Common Files\Java
2008-09-08 23:44:09 ----D---- C:\Program Files\Java
2008-09-08 21:40:45 ----D---- C:\Testy
2008-09-08 15:33:15 ----D---- C:\WINDOWS\system32\cs-cz
2008-09-08 15:33:14 ----D---- C:\WINDOWS\Media
2008-09-07 19:26:14 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-09-07 17:21:40 ----SD---- C:\WINDOWS\Tasks
2008-09-07 11:53:42 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2008-09-06 11:01:52 ----D---- C:\WINDOWS\system32\DirectX
2008-09-06 10:54:35 ----D---- C:\WINDOWS\Registration
2008-09-06 10:52:39 ----D---- C:\WINDOWS\system32\URTTemp
2008-09-06 10:03:54 ----D---- C:\WINDOWS\Prefetch
2008-09-05 22:41:23 ----A---- C:\WINDOWS\NeroDigital.ini
2008-09-04 17:05:07 ----D---- C:\WINDOWS\WinSxS
2008-09-04 16:53:27 ----D---- C:\WINDOWS\system32\CatRoot2
2008-09-04 16:52:11 ----RD---- C:\Program Files
2008-09-04 12:56:36 ----D---- C:\Moje dokumenty
2008-09-03 17:40:48 ----D---- C:\WINDOWS\system32
2008-09-03 17:40:48 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-09-03 16:31:53 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2008-09-03 15:23:21 ----D---- C:\Okná
2008-09-03 14:25:09 ----D---- C:\WINDOWS\security
2008-09-03 14:07:08 ----D---- C:\CPU-Z
2008-09-02 22:07:44 ----A---- C:\WINDOWS\system32\pbsvc.exe
2008-09-02 21:50:32 ----RSD---- C:\WINDOWS\Fonts
2008-09-02 17:49:38 ----RSHDC---- C:\WINDOWS\system32\dllcache
2008-09-02 17:49:38 ----D---- C:\WINDOWS\system32\drivers
2008-09-02 17:12:07 ----HD---- C:\WINDOWS\$hf_mig$
2008-09-02 15:18:19 ----A---- C:\WINDOWS\cdplayer.ini
2008-09-02 13:51:47 ----D---- C:\WINDOWS\system32\Setup
2008-09-02 13:11:07 ----D---- C:\Program Files\Internet Explorer
2008-09-02 13:07:50 ----RSD---- C:\WINDOWS\assembly
2008-09-02 13:04:42 ----D---- C:\WINDOWS\Microsoft.NET
2008-09-02 12:49:26 ----D---- C:\Program Files\Outlook Express
2008-09-02 11:46:15 ----D---- C:\Documents and Settings\Čáky Maroš\Data aplikací\Adobe
2008-09-02 11:45:30 ----D---- C:\WINDOWS\ServicePackFiles
2008-09-01 17:59:19 ----D---- C:\Program Files\Adobe
2008-08-15 10:08:09 ----D---- C:\Program Files\Messenger

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK8;AMD Processor Driver; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [2005-03-09 36352]
R1 easdrv;easdrv; C:\WINDOWS\system32\DRIVERS\easdrv.sys [2009-10-07 54184]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-10-07 35168]
R1 SbFw;SbFw; C:\WINDOWS\system32\drivers\SbFw.sys [2008-10-31 270888]
R1 sbhips;Sunbelt HIPS Driver; C:\WINDOWS\system32\drivers\sbhips.sys [2008-06-21 66600]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2008-09-21 281504]
R2 eamon;EAMON; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-10-07 40824]
R2 Hardlock;Hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys []
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2008-09-21 25888]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-07-26 3644032]
R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2006-09-19 15664]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-04-04 10232128]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [2005-04-05 33536]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [2005-04-05 12928]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport; C:\WINDOWS\system32\DRIVERS\sbfwim.sys [2008-06-21 65576]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-04 26624]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2004-08-04 57600]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\System32\DRIVERS\usbohci.sys [2004-08-04 17024]
S3 ALSysIO;ALSysIO; \??\C:\DOCUME~1\KYMARO~1\LOCALS~1\Temp\ALSysIO.sys []
S3 avbfuvr3;avbfuvr3; C:\WINDOWS\system32\drivers\avbfuvr3.sys []
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-04 17024]
S3 dtscsi;dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys []
S3 ENTECH;ENTECH; \??\C:\WINDOWS\System32\DRIVERS\ENTECH.sys []
S3 GMSIPCI;GMSIPCI; \??\F:\INSTALL\GMSIPCI.SYS []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-09-23 26176]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-04 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-04 10880]
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys [2009-12-30 27064]
S3 rtl8029;Realtek RTL8029(AS)-based PCI Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8029.SYS [2001-08-17 19017]
S3 s3m;s3m; C:\WINDOWS\system32\DRIVERS\s3m.sys [2001-08-17 166720]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-04 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-04 15360]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-04 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2004-08-10 18944]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-04 19328]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-09-18 611664]
R2 ekrn;Eset Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-10-07 472280]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-04-12 153376]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-04-03 154216]
R2 SbPF.Launcher;SbPF.Launcher; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [2008-10-31 95528]
R2 SPF4;Sunbelt Personal Firewall 4; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [2008-10-31 1365288]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-10 38912]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2008-09-11 135664]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-09-11 194032]
S2 KPF4;Kerio Personal Firewall 4; C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe []
S2 SSHNAS;SSHNAS; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2007-09-08 72704]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater; D:\Program Files\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832]
S3 EhttpSrv;Eset HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-10-07 20680]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-02-19 504104]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S4 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2007-07-24 229376]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2008-09-03 75064]

Re: Preventívka

Napsal: 07 úno 2011 22:29
od motji
Dobrý večer :)
vycucává :D

:arrow: Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT :!:
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

Re: Preventívka

Napsal: 07 úno 2011 23:52
od SkaMasta
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Verze databáze: 5363

Windows 5.1.2600 Service Pack 2
Internet Explorer 8.0.6001.18702

7. 9. 2008 23:52:02
mbam-log-2008-09-07 (23-51-57).txt

Typ kontroly: Rychlý test
Testované objekty: 214568
Uplynulý čas: 14 minut, 22 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 5
Infikované hodnoty v registru: 2
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 3

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
HKEY_CURRENT_USER\SOFTWARE\RZDVL2F27W (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Handle (Malware.Trace) -> No action taken.
HKEY_CURRENT_USER\Software\QNB2EB90WX (Malware.Trace) -> No action taken.
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SSHNAS (Trojan.Renos) -> No action taken.

Infikované hodnoty v registru:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\QNB2EB90WX (Trojan.Fraudpack) -> Value: QNB2EB90WX -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Terminal Server\Install\Software\Microsoft\Windows\CurrentVersion\Run\NVIDIA driver monitor (Malware.Trace) -> Value: NVIDIA driver monitor -> No action taken.

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
c:\documents and settings\čáky igor\local settings\temporary internet files\Content.IE5\31IJ5B0N\googleearthwin[1].exe (Trojan.P2P.Worm) -> No action taken.
c:\WINDOWS\Tasks\{35dc3473-a719-4d14-b7c1-fd326ca84a0c}.job (Trojan.Downloader) -> No action taken.
c:\WINDOWS\Tasks\{8c3fdd81-7ae0-4605-a46a-2488b179f2a3}.job (Trojan.Downloader) -> No action taken.

Re: Preventívka

Napsal: 08 úno 2011 09:09
od motji
V mbamu vše smažte :)

:arrow: Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix

Re: Preventívka

Napsal: 08 úno 2011 11:49
od SkaMasta
omboFix 11-02-07.02 - Čáky Maroš . 09. 2008 11:26:39.7.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.1279.859 [GMT 2:00]
Spuštěný z: c:\documents and settings\Čáky Maroš\Plocha\ComboFix.exe
AV: ESET NOD32 Antivirus 3.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: Sunbelt Personal Firewall *Disabled* {82B1150E-9B37-49FC-83EB-D52197D900D0}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Čáky Igor\Data aplikací\PriceGong
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\1.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\a.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\b.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\c.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\d.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\e.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\f.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\g.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\h.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\i.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\J.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\k.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\l.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\m.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\mru.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\n.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\o.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\p.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\q.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\r.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\s.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\t.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\u.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\v.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\w.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\x.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\y.xml
c:\documents and settings\Čáky Igor\Data aplikací\PriceGong\Data\z.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PnkBstrK.sys
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\1.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\a.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\b.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\c.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\d.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\e.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\f.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\g.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\h.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\i.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\J.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\k.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\l.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\m.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\mru.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\n.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\o.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\p.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\q.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\r.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\s.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\t.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\u.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\v.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\w.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\x.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\y.xml
c:\documents and settings\Čáky Maroš\Data aplikací\PriceGong\Data\z.xml
c:\program files\ICQ6.5\ICQLRun.exe

.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_SSHNAS


((((((((((((((((((((((((( Soubory vytvořené od 2008-08-08 do 2008-09-08 )))))))))))))))))))))))))))))))
.

2010-08-06 10:18 . 2010-06-14 14:30 743936 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2010-08-06 10:15 . 2010-05-06 10:35 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2010-04-20 05:48 . 2010-04-20 05:48 285696 -c----w- c:\windows\system32\dllcache\atmfd.dll
2010-04-03 17:23 . 2010-04-03 17:23 278120 ----a-w- c:\windows\system32\nvmccs.dll
2010-04-03 17:23 . 2010-04-03 17:23 154216 ----a-w- c:\windows\system32\nvsvc32.exe
2010-04-03 17:23 . 2010-04-03 17:23 145000 ----a-w- c:\windows\system32\nvcolor.exe
2010-04-03 17:23 . 2010-04-03 17:23 13670504 ----a-w- c:\windows\system32\nvcpl.dll
2010-04-03 17:23 . 2010-04-03 17:23 110696 ----a-w- c:\windows\system32\nvmctray.dll
2010-04-03 17:23 . 2010-04-03 17:23 229376 ----a-w- c:\windows\system32\nvrszhc.dll
2010-04-03 17:23 . 2010-04-03 17:23 126976 ----a-w- c:\windows\system32\nvrszht.dll
2010-03-30 22:16 . 2010-03-30 22:16 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-03-30 22:10 . 2010-03-30 22:10 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2010-03-18 18:33 . 2010-03-18 18:33 -------- d-----w- c:\windows\system32\wbem\Repository
2010-03-18 09:05 . 2009-11-21 16:46 470528 -c----w- c:\windows\system32\dllcache\aclayers.dll
2010-03-18 09:01 . 2009-10-23 14:27 3555328 -c----w- c:\windows\system32\dllcache\moviemk.exe
2010-03-05 14:57 . 2010-03-05 14:57 65536 -c----w- c:\windows\system32\dllcache\asycfilt.dll
2010-01-13 14:10 . 2010-01-13 14:10 85504 -c----w- c:\windows\system32\dllcache\cabview.dll
2009-12-24 07:07 . 2009-12-24 07:07 177664 -c----w- c:\windows\system32\dllcache\wintrust.dll
2009-12-17 08:00 . 2009-12-17 08:00 343552 -c----w- c:\windows\system32\dllcache\mspaint.exe
2009-12-14 07:37 . 2009-12-14 07:37 33280 -c----w- c:\windows\system32\dllcache\csrsrv.dll
2009-11-27 16:40 . 2009-11-27 16:40 11264 -c----w- c:\windows\system32\dllcache\msrle32.dll
2009-11-06 23:07 . 2009-11-06 23:07 49488 ----a-w- c:\windows\system32\netfxperf.dll
2009-11-06 23:07 . 2009-11-06 23:07 297808 ----a-w- c:\windows\system32\mscoree.dll
2009-11-06 23:06 . 2009-11-06 23:06 1130824 ----a-w- c:\windows\system32\dfshim.dll
2009-10-26 10:23 . 2009-06-05 07:46 655872 -c----w- c:\windows\system32\dllcache\mstscax.dll
2009-10-21 06:03 . 2009-10-21 06:03 75776 -c----w- c:\windows\system32\dllcache\strmfilt.dll
2009-10-21 06:03 . 2009-10-21 06:03 25088 -c----w- c:\windows\system32\dllcache\httpapi.dll
2009-10-20 14:58 . 2009-10-20 14:58 263552 -c----w- c:\windows\system32\dllcache\http.sys
2009-10-13 10:53 . 2009-10-13 10:53 267776 -c----w- c:\windows\system32\dllcache\oakley.dll
2009-10-12 13:54 . 2009-10-12 13:54 69632 -c----w- c:\windows\system32\dllcache\raschap.dll
2009-10-12 13:54 . 2009-10-12 13:54 112640 -c----w- c:\windows\system32\dllcache\rastls.dll
2009-09-04 20:47 . 2009-09-04 20:47 58880 -c----w- c:\windows\system32\dllcache\msasn1.dll
2009-08-19 16:07 . 2009-08-19 16:07 1415000 ----a-w- c:\windows\system32\msxml6.dll
2009-08-17 01:04 . 2009-08-17 01:04 420384 ----a-w- c:\windows\system32\nvcpl.cpl
2009-08-17 01:04 . 2009-08-17 01:04 2173472 ----a-w- c:\windows\system32\nvcplui.exe
2009-08-17 01:03 . 2009-08-17 01:03 3170304 ----a-w- c:\windows\system32\nvwss.dll
2009-08-17 01:03 . 2009-08-17 01:03 4026368 ----a-w- c:\windows\system32\nvvitvs.dll
2009-08-17 01:03 . 2009-08-17 01:03 188416 ----a-w- c:\windows\system32\nvmccss.dll
2009-08-17 01:03 . 2009-08-17 01:03 1286144 ----a-w- c:\windows\system32\nvmobls.dll
2009-08-17 01:03 . 2009-08-17 01:03 3547136 ----a-w- c:\windows\system32\nvgames.dll
2009-08-17 01:03 . 2009-08-17 01:03 4923392 ----a-w- c:\windows\system32\nvdisps.dll
2009-08-16 22:57 . 2010-04-03 22:55 2646632 ----a-w- c:\windows\system32\nvcuvenc.dll
2009-08-16 22:57 . 2010-04-03 22:55 2183470 ----a-w- c:\windows\system32\nvdata.bin
2009-08-16 22:57 . 2010-04-03 22:55 2030184 ----a-w- c:\windows\system32\nvcuvid.dll
2009-08-14 11:36 . 2009-08-14 11:36 70936 ----a-w- c:\windows\system32\PhysXLoader.dll
2009-08-05 09:07 . 2009-08-05 09:07 205312 -c----w- c:\windows\system32\dllcache\mswebdvd.dll
2009-08-02 22:21 . 2009-08-02 22:21 23320 ----a-w- c:\windows\system32\PhysXDevice.dll
2009-07-29 04:53 . 2009-10-15 21:52 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2009-07-20 23:05 . 2009-07-20 23:05 1348432 ----a-w- c:\windows\system32\msxml4.dll
2009-07-17 18:57 . 2009-07-17 18:57 58880 -c----w- c:\windows\system32\dllcache\atl.dll
2009-07-11 19:37 . 2009-07-11 19:37 641536 ----a-w- c:\program files\Common Files\Microsoft Shared\VC\msdia80.dll
2009-06-25 18:37 . 2009-06-25 18:37 517120 -c----w- c:\windows\system32\dllcache\mqsnap.dll
2009-06-25 18:37 . 2009-06-25 18:37 186880 -c----w- c:\windows\system32\dllcache\mqtrig.dll
2009-06-25 18:37 . 2009-06-25 18:37 169472 -c----w- c:\windows\system32\dllcache\msmqocm.dll
2009-06-25 18:37 . 2009-06-25 18:37 123392 -c----w- c:\windows\system32\dllcache\mqrtdep.dll
2009-06-25 18:37 . 2009-06-25 18:37 225280 -c----w- c:\windows\system32\dllcache\mqoa.dll
2009-06-25 08:48 . 2009-09-11 14:35 133632 -c----w- c:\windows\system32\dllcache\msv1_0.dll
2009-06-25 08:48 . 2009-06-25 08:48 59392 -c----w- c:\windows\system32\dllcache\wdigest.dll
2009-06-25 08:48 . 2009-06-25 08:48 298496 -c----w- c:\windows\system32\dllcache\kerberos.dll
2009-06-22 11:49 . 2009-06-22 11:49 19968 -c----w- c:\windows\system32\dllcache\mqbkup.exe
2009-06-22 11:49 . 2009-06-22 11:49 117248 -c----w- c:\windows\system32\dllcache\mqtgsvc.exe
2009-06-22 11:49 . 2009-06-22 11:49 4608 -c----w- c:\windows\system32\dllcache\mqsvc.exe
2009-06-22 11:34 . 2009-06-22 11:34 92544 -c----w- c:\windows\system32\dllcache\ksecdd.sys
2009-06-15 11:33 . 2009-06-15 11:33 78336 -c----w- c:\windows\system32\dllcache\telnet.exe
2009-06-15 11:33 . 2009-06-15 11:33 81408 -c----w- c:\windows\system32\dllcache\tlntsess.exe
2009-06-10 14:24 . 2009-11-27 16:40 84992 -c----w- c:\windows\system32\dllcache\avifil32.dll
2009-05-07 15:44 . 2009-05-07 15:44 345088 -c----w- c:\windows\system32\dllcache\localspl.dll
2009-03-08 12:19 . 2009-03-08 12:19 53248 ------w- c:\windows\system32\msrating.dll.mui
2009-03-08 12:19 . 2009-03-08 12:19 2560 ------w- c:\windows\system32\mshta.exe.mui
2009-03-08 12:18 . 2009-03-08 12:18 4096 ------w- c:\windows\system32\ie4uinit.exe.mui
2009-03-08 12:17 . 2009-03-08 12:17 81920 ------w- c:\windows\system32\iedkcs32.dll.mui
2009-03-08 02:35 . 2010-05-06 10:35 743424 ------w- c:\program files\Internet Explorer\iedvtool.dll
2009-03-08 02:35 . 2009-03-08 02:35 233984 ------w- c:\program files\Internet Explorer\jsprofilerui.dll
2009-03-08 02:35 . 2009-03-08 02:35 2048 ------w- c:\program files\Internet Explorer\iecompat.dll
2009-03-08 02:35 . 2009-03-08 02:35 144384 ------w- c:\program files\Internet Explorer\ExtExport.exe
2009-03-08 02:35 . 2009-03-08 02:35 118272 ------w- c:\program files\Internet Explorer\JSProfilerCore.dll
2009-03-08 02:35 . 2009-03-08 02:35 521216 ------w- c:\program files\Internet Explorer\jsdbgui.dll
2009-03-08 02:35 . 2009-03-08 02:35 121344 ------w- c:\program files\Internet Explorer\jsdebuggeride.dll
2009-03-08 02:33 . 2010-05-06 10:35 12800 ----a-w- c:\program files\Internet Explorer\xpshims.dll
2009-02-27 12:13 . 2009-02-27 12:13 103792 ----a-w- c:\program files\Internet Explorer\PLUGINS\nppdf32.dll
2009-02-03 20:11 . 2009-06-25 08:48 56320 -c----w- c:\windows\system32\dllcache\secur32.dll
2009-01-07 16:20 . 2009-01-07 16:20 134144 -c----w- c:\windows\system32\dllcache\sqmapi.dll
2009-01-07 16:20 . 2009-01-07 16:20 134144 ------w- c:\program files\Internet Explorer\sqmapi.dll
2009-01-07 16:20 . 2009-01-07 16:20 355832 ------w- c:\program files\Internet Explorer\pdm.dll
2009-01-07 16:20 . 2009-01-07 16:20 265720 ----a-w- c:\windows\system32\msdbg2.dll
2008-12-25 22:08 . 2010-04-03 22:55 4075520 ----a-w- c:\windows\system32\nvcuda.dll
2008-12-25 22:08 . 2008-12-25 22:08 1253376 ----a-w- c:\windows\system32\NvPVEnc.ax
2008-12-16 12:50 . 2009-08-25 09:49 352256 -c----w- c:\windows\system32\dllcache\winhttp.dll
2008-11-01 09:54 . 2008-09-01 16:50 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\Temp
2008-10-15 22:00 . 2008-10-15 22:00 -------- d-----w- c:\program files\MSBuild
2008-10-15 21:56 . 2008-09-02 13:36 -------- d-----w- c:\windows\system32\XPSViewer
2008-10-15 21:56 . 2008-10-15 21:56 -------- d-----w- c:\program files\Reference Assemblies
2008-10-15 21:55 . 2006-10-14 14:43 27648 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
2008-10-15 21:55 . 2006-06-29 11:07 14048 ------w- c:\windows\system32\spmsg2.dll
2008-10-11 19:21 . 2008-09-07 20:03 -------- d-----w- c:\windows\Logs
2008-10-11 12:12 . 2008-10-11 12:17 -------- d-----w- c:\documents and settings\Čáky Maroš\Local Settings\Data aplikací\Fallout3
2008-10-05 20:44 . 2008-10-05 20:44 -------- d-----w- c:\windows\Sun
2008-10-05 20:43 . 2010-04-12 13:19 73728 ----a-w- c:\windows\system32\javacpl.cpl
2008-09-30 05:48 . 2008-09-30 06:04 -------- d-----w- c:\windows\system32\CatRoot_bak
2008-09-27 14:53 . 2008-09-08 11:29 -------- d-----w- C:\Nová složka (2)
2008-09-25 17:04 . 2008-09-25 17:04 -------- d-----w- c:\documents and settings\Čáky Miroslav\Local Settings\Data aplikací\Mozilla
2008-09-25 06:13 . 2008-09-25 06:13 -------- d-----w- c:\documents and settings\Čáky Miroslav\Local Settings\Data aplikací\Ubisoft
2008-09-24 20:39 . 2008-09-15 15:26 -------- d-----w- c:\documents and settings\Čáky Maroš\Local Settings\Data aplikací\Ubisoft
2008-09-24 20:23 . 2007-04-27 08:12 394184 ----a-w- c:\program files\Common Files\InstallShield\UpdateService\_isusres.dll
2008-09-24 20:23 . 2006-09-10 19:56 86960 ----a-w- c:\program files\Common Files\InstallShield\UpdateService\issch.exe
2008-09-24 20:23 . 2006-09-10 19:56 992176 ----a-w- c:\program files\Common Files\InstallShield\UpdateService\agent.exe
2008-09-24 20:23 . 2006-09-10 19:56 283568 ----a-w- c:\program files\Common Files\InstallShield\UpdateService\ISDM.exe
2008-09-24 14:24 . 2008-09-24 14:24 -------- d-----w- c:\documents and settings\Čáky Maroš\Data aplikací\ArcSoft
2008-09-24 14:23 . 1995-08-01 02:44 212480 ----a-w- c:\windows\PCDLIB32.DLL
2008-09-23 20:09 . 2008-09-07 17:39 -------- d-----w- c:\program files\trend micro
2008-09-23 20:09 . 2008-09-23 20:09 -------- d-----w- C:\rsit
2008-09-23 10:11 . 2008-09-23 10:11 -------- d-sh--w- c:\documents and settings\Čáky Maroš\IECompatCache
2008-09-22 15:05 . 2008-09-22 15:05 -------- d-----w- c:\documents and settings\Čáky Miroslav\Data aplikací\DAEMON Tools Lite
2008-09-21 10:28 . 2008-09-21 10:29 -------- d-----w- c:\documents and settings\Čáky Maroš\Local Settings\Data aplikací\Risen
2008-09-21 10:26 . 2008-09-21 10:26 -------- d-----w- c:\windows\1C4551A64743409391E41477CD655043.TMP
2008-09-19 15:19 . 2008-09-19 15:19 -------- d-----w- c:\documents and settings\Čáky Maroš\Data aplikací\Facebook
2008-09-19 14:53 . 2008-09-19 14:53 -------- d-----w- c:\documents and settings\Čáky Igor\Local Settings\Data aplikací\Mozilla
2008-09-19 14:39 . 2009-12-30 10:20 27064 ----a-w- c:\windows\system32\drivers\revoflt.sys
2008-09-19 14:34 . 2008-09-19 14:34 -------- d-----w- c:\documents and settings\Čáky Maroš\Local Settings\Data aplikací\VS Revo Group
2008-09-19 14:28 . 2008-09-19 14:28 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2008-09-19 13:39 . 2008-09-19 13:39 -------- d-----w- c:\documents and settings\Čáky Igor\Data aplikací\Malwarebytes
2008-09-19 12:14 . 2008-09-19 12:14 -------- d-sh--w- c:\documents and settings\Administrator\IETldCache
2008-09-19 09:54 . 2008-09-19 09:54 -------- d-----w- c:\program files\OpenAL
2008-09-19 09:54 . 2008-04-28 14:53 805400 ----a-r- c:\windows\system32\tmp444.tmp
2008-09-19 09:54 . 2008-04-28 14:53 805400 ----a-r- c:\windows\system32\tmp443.tmp

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-06-14 14:30 . 2006-03-22 14:54 743936 ----a-w- c:\windows\pchealth\HELPCTR\Binaries\helpsvc.exe
2010-05-06 10:35 . 2006-03-22 14:54 916480 ----a-w- c:\windows\system32\wininet.dll
2010-05-06 10:35 . 2006-03-22 14:54 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2010-05-02 08:27 . 2001-10-25 12:00 1850880 ----a-w- c:\windows\system32\win32k.sys
2010-04-20 05:48 . 2001-10-25 12:00 285696 ----a-w- c:\windows\system32\atmfd.dll
2010-04-03 22:55 . 2007-10-09 16:10 14757888 ----a-w- c:\windows\system32\nvoglnt.dll
2010-04-03 22:55 . 2007-10-09 16:10 227944 ----a-w- c:\windows\system32\nvcodins.dll
2010-04-03 22:55 . 2007-10-09 16:10 227944 ----a-w- c:\windows\system32\nvcod.dll
2010-04-03 22:55 . 2007-10-09 16:10 1097728 ----a-w- c:\windows\system32\nvapi.dll
2010-04-03 22:55 . 2006-03-22 20:57 600680 ----a-w- c:\windows\system32\nvudisp.exe
2010-04-03 22:55 . 2005-12-09 19:06 6432128 ----a-w- c:\windows\system32\nv4_disp.dll
2010-04-03 22:55 . 2005-12-09 19:06 10232128 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2010-04-02 14:54 . 2006-03-22 20:52 600680 ----a-w- c:\windows\system32\NVUNINST.EXE
2010-03-10 06:17 . 2006-03-22 14:54 420352 ----a-w- c:\windows\system32\vbscript.dll
2010-03-05 14:57 . 2001-10-25 12:00 65536 ----a-w- c:\windows\system32\asycfilt.dll
2010-02-24 12:31 . 2001-10-25 12:00 454016 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2010-02-16 19:34 . 2001-10-25 12:00 2183552 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-02-16 19:34 . 2001-10-24 11:46 2060544 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-02-12 10:03 . 2008-03-20 21:36 293376 ------w- c:\windows\system32\browserchoice.exe
2010-02-12 04:47 . 2006-03-22 14:54 100864 ----a-w- c:\windows\system32\6to4svc.dll
2010-02-11 12:01 . 2001-10-25 12:00 226880 ----a-w- c:\windows\system32\drivers\tcpip6.sys
2010-02-05 18:40 . 2006-03-22 21:01 1293824 ----a-w- c:\windows\system32\quartz.dll
2010-01-29 15:07 . 2006-03-22 14:54 683520 ----a-w- c:\windows\system32\inetcomm.dll
2010-01-29 14:45 . 2006-03-22 21:01 143422 ----a-w- c:\windows\system32\l3codecx.ax
2010-01-29 14:45 . 2006-03-22 14:54 307260 ----a-w- c:\windows\system32\l3codeca.acm
2010-01-13 14:10 . 2001-10-25 12:00 85504 ----a-w- c:\windows\system32\cabview.dll
2009-12-31 16:14 . 2001-10-25 12:00 352640 ----a-w- c:\windows\system32\drivers\srv.sys
2009-12-24 07:07 . 2001-10-25 12:00 177664 ----a-w- c:\windows\system32\wintrust.dll
2009-12-17 08:00 . 2006-03-22 14:54 343552 ----a-w- c:\windows\system32\mspaint.exe
2009-12-14 07:37 . 2001-10-25 12:00 33280 ----a-w- c:\windows\system32\csrsrv.dll
2009-11-27 17:35 . 2006-03-22 21:01 17920 ----a-w- c:\windows\system32\msyuv.dll
2009-11-27 16:40 . 2006-03-22 14:54 84992 ----a-w- c:\windows\system32\avifil32.dll
2009-11-27 16:40 . 2006-03-22 14:54 11264 ----a-w- c:\windows\system32\msrle32.dll
2009-11-27 16:40 . 2001-10-25 12:00 28672 ----a-w- c:\windows\system32\msvidc32.dll
2009-11-27 16:40 . 2001-10-24 12:25 8704 ----a-w- c:\windows\system32\tsbyuv.dll
2009-11-27 16:40 . 2001-10-24 12:24 48128 ----a-w- c:\windows\system32\iyuv_32.dll
2009-11-21 16:46 . 2006-03-22 14:54 470528 ----a-w- c:\windows\apppatch\aclayers.dll
2009-10-29 07:43 . 2006-03-22 14:54 1208832 ----a-w- c:\windows\system32\urlmon(3).dll
2009-10-29 07:43 . 2006-03-22 14:54 916480 ----a-w- c:\windows\system32\wininet(3).dll
2009-10-21 06:03 . 2006-03-22 15:04 25088 ----a-w- c:\windows\system32\httpapi.dll
2009-10-21 06:03 . 2006-03-22 15:04 75776 ----a-w- c:\windows\system32\strmfilt.dll
2009-10-20 14:58 . 2006-03-22 15:04 263552 ----a-w- c:\windows\system32\drivers\http.sys
2009-10-15 21:52 . 2001-10-25 12:00 119808 ----a-w- c:\windows\system32\t2embed.dll
2009-10-15 17:22 . 2001-10-25 12:00 82432 ----a-w- c:\windows\system32\fontsub.dll
2009-10-13 10:53 . 2006-03-22 14:54 267776 ----a-w- c:\windows\system32\oakley.dll
2009-10-12 13:54 . 2006-03-22 14:54 69632 ----a-w- c:\windows\system32\raschap.dll
2009-10-12 13:54 . 2006-03-22 14:54 112640 ----a-w- c:\windows\system32\rastls.dll
2009-10-07 07:18 . 2007-11-14 14:06 35168 ----a-w- c:\windows\system32\drivers\epfwtdir.sys
2009-10-07 07:12 . 2007-11-14 14:04 54184 ----a-w- c:\windows\system32\drivers\easdrv.sys
2009-10-07 07:11 . 2007-11-14 14:03 40824 ----a-w- c:\windows\system32\drivers\eamon.sys
2009-09-23 08:41 . 2007-05-23 12:06 26176 ---ha-w- c:\windows\system32\drivers\hamachi.sys
2009-09-11 14:35 . 2001-10-25 12:00 133632 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-04 20:47 . 2001-10-25 12:00 58880 ----a-w- c:\windows\system32\msasn1.dll
2009-09-01 14:34 . 2006-03-22 14:54 282654 ----a-w- c:\windows\system32\msaud32.acm
2009-08-26 08:16 . 2006-03-22 14:54 247326 ----a-w- c:\windows\system32\strmdll.dll
2009-08-25 09:49 . 2006-03-22 14:54 352256 ----a-w- c:\windows\system32\winhttp.dll
2009-08-06 17:24 . 2007-06-18 17:34 15072 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2009-08-06 17:24 . 2007-06-18 17:34 22232 ----a-w- c:\windows\system32\wucltui.dll.mui
2009-08-06 17:24 . 2006-03-22 15:04 327896 ----a-w- c:\windows\system32\wucltui.dll
2009-08-06 17:24 . 2006-03-22 15:04 209632 ----a-w- c:\windows\system32\wuweb.dll
2009-08-06 17:24 . 2006-03-22 15:04 217816 ----a-w- c:\windows\system32\wuaucpl.cpl
2009-08-06 17:24 . 2006-03-22 15:04 35552 ----a-w- c:\windows\system32\wups.dll
2009-08-06 17:24 . 2005-05-26 03:16 44768 ----a-w- c:\windows\system32\wups2.dll
2009-08-06 17:24 . 2007-06-18 17:34 18136 ----a-w- c:\windows\system32\wuaueng.dll.mui
2009-08-06 17:24 . 2007-06-18 17:34 15072 ----a-w- c:\windows\system32\wuapi.dll.mui
2009-08-06 17:24 . 2006-03-22 14:54 53472 ----a-w- c:\windows\system32\wuauclt.exe
2009-08-06 17:24 . 2006-03-22 14:54 96480 ----a-w- c:\windows\system32\cdm.dll
2009-08-06 17:23 . 2006-03-22 15:04 575704 ----a-w- c:\windows\system32\wuapi.dll
2009-08-06 17:23 . 2006-03-22 14:54 1929952 ----a-w- c:\windows\system32\wuaueng.dll
2009-08-05 09:07 . 2006-03-22 21:01 205312 ----a-w- c:\windows\system32\mswebdvd.dll
2009-07-31 04:59 . 2006-03-22 14:54 1172480 ----a-w- c:\windows\system32\msxml3.dll
2009-07-17 18:57 . 2006-03-22 14:54 58880 ----a-w- c:\windows\system32\atl.dll
2009-07-17 16:27 . 2006-03-22 14:54 1437696 ----a-w- c:\windows\system32\query.dll
2009-07-13 09:08 . 2006-03-22 15:04 286720 ----a-w- c:\windows\system32\wmpdxm.dll
2009-06-25 18:37 . 2006-03-22 14:54 95744 ----a-w- c:\windows\system32\mqsec.dll
2009-06-25 18:37 . 2006-03-22 14:54 517120 ----a-w- c:\windows\system32\mqsnap.dll
2009-06-25 18:37 . 2006-03-22 14:54 489472 ----a-w- c:\windows\system32\mqutil.dll
2009-06-25 18:37 . 2006-03-22 14:54 186880 ----a-w- c:\windows\system32\mqtrig.dll
2009-06-25 18:37 . 2001-10-25 12:00 48640 ----a-w- c:\windows\system32\mqupgrd.dll
2009-06-25 18:37 . 2001-10-25 12:00 123392 ----a-w- c:\windows\system32\mqrtdep.dll
2009-06-25 18:37 . 2006-03-22 14:54 16896 ----a-w- c:\windows\system32\mqise.dll
2009-06-25 18:37 . 2006-03-22 14:54 138240 ----a-w- c:\windows\system32\mqad.dll
2009-06-25 18:37 . 2006-03-22 14:54 661504 ----a-w- c:\windows\system32\mqqm.dll
2009-06-25 18:37 . 2006-03-22 14:54 177152 ----a-w- c:\windows\system32\mqrt.dll
2009-06-25 18:37 . 2001-10-25 12:00 47104 ----a-w- c:\windows\system32\mqdscli.dll
2009-06-25 18:37 . 2001-10-25 12:00 225280 ----a-w- c:\windows\system32\mqoa.dll
2009-06-25 08:48 . 2006-03-22 14:54 298496 ----a-w- c:\windows\system32\kerberos.dll
2009-06-25 08:48 . 2006-03-22 14:54 56320 ----a-w- c:\windows\system32\secur32.dll
2009-06-25 08:48 . 2001-10-25 12:00 723456 ----a-w- c:\windows\system32\lsasrv.dll
2009-06-25 08:48 . 2001-10-25 12:00 59392 ----a-w- c:\windows\system32\wdigest.dll
2009-06-25 08:48 . 2001-10-25 12:00 168448 ----a-w- c:\windows\system32\schannel.dll
2009-06-22 11:49 . 2001-10-25 12:00 19968 ----a-w- c:\windows\system32\mqbkup.exe
2009-06-22 11:49 . 2001-10-25 12:00 117248 ----a-w- c:\windows\system32\mqtgsvc.exe
2009-06-22 11:49 . 2001-10-25 12:00 4608 ----a-w- c:\windows\system32\mqsvc.exe
2009-06-22 11:48 . 2006-03-22 14:54 91776 ----a-w- c:\windows\system32\drivers\mqac.sys
2009-06-22 11:34 . 2001-10-25 12:00 92544 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2009-06-15 11:33 . 2002-09-20 17:05 78336 ----a-w- c:\windows\system32\telnet.exe
2009-06-15 11:33 . 2006-03-22 14:54 81408 ----a-w- c:\windows\system32\tlntsess.exe
2009-06-10 06:31 . 2001-10-25 12:00 132096 ----a-w- c:\windows\system32\wkssvc.dll
2009-06-05 07:46 . 2006-03-22 14:54 655872 ----a-w- c:\windows\system32\mstscax.dll
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}"= "c:\program files\Softonic-Eng7\tbSoft.dll" [2010-10-10 3906656]

[HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2010-10-10 13:51 3906656 ----a-w- c:\program files\ConduitEngine\ConduitEngine.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
2010-10-10 13:51 3906656 ----a-w- c:\program files\Softonic-Eng7\tbSoft.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}"= "c:\program files\Softonic-Eng7\tbSoft.dll" [2010-10-10 3906656]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngine.dll" [2010-10-10 3906656]

[HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]

[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3}"= "c:\program files\Softonic-Eng7\tbSoft.dll" [2010-10-10 3906656]

[HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="d:\program files\DAEMON Tools Lite\daemon.exe" [2009-04-23 691656]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-09-11 39408]
"Infium"="c:\program files\QIP 2010\qip.exe" [2010-06-09 5714384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2005-07-22 81920]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2006-04-29 180269]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-10-07 1461080]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-01-31 385024]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-04-03 13670504]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-04-03 110696]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2004-08-17 15360]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\ICQLite\\ICQLite.exe"=
"d:\\Program Files\\ICQLite\\ICQLite.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"d:\\Program Files\\TmNationsForever\\TmForever.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"d:\\Program Files\\Dragon Age\\bin_ship\\daorigins.exe"=
"d:\\Program Files\\Dragon Age\\DAOriginsLauncher.exe"=
"d:\\Program Files\\Dragon Age\\bin_ship\\daupdatersvc.service.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3724:TCP"= 3724:TCP:Blizzard Downloader
"6122:TCP"= 6122:TCP:Blizzard Downloader
"57226:TCP"= 57226:TCP:Pando Media Booster
"57226:UDP"= 57226:UDP:Pando Media Booster

R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [11. 4. 2006 21:03 721904]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [14. 11. 2007 16:06 35168]
R1 SbFw;SbFw;c:\windows\system32\drivers\SbFw.sys [2. 9. 2008 14:03 270888]
R1 sbhips;Sunbelt HIPS Driver;c:\windows\system32\drivers\sbhips.sys [21. 6. 2008 4:54 66600]
R2 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [24. 10. 2008 20:51 472280]
R2 SbPF.Launcher;SbPF.Launcher;c:\program files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [31. 10. 2008 7:24 95528]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport;c:\windows\system32\drivers\SbFwIm.sys [2. 9. 2008 14:03 65576]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [11. 9. 2008 22:22 135664]
S2 SPF4;Sunbelt Personal Firewall 4;c:\program files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [31. 10. 2008 7:24 1365288]
S3 ALSysIO;ALSysIO;\??\c:\docume~1\KYMARO~1\LOCALS~1\Temp\ALSysIO.sys --> c:\docume~1\KYMARO~1\LOCALS~1\Temp\ALSysIO.sys [?]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;d:\program files\Dragon Age\bin_ship\daupdatersvc.service.exe [18. 9. 2008 22:54 25832]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [19. 9. 2008 16:39 27064]
S3 s3m;s3m;c:\windows\system32\drivers\s3m.sys [24. 9. 2007 11:17 166720]
.
Obsah adresáře 'Naplánované úlohy'

2008-09-08 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-09-11 20:21]

2008-09-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2008-09-11 20:22]

2011-02-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2008-09-11 20:22]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://qip.ru
uDefault_Search_URL = hxxp://search.qip.ru
uSearchAssistant = hxxp://search.qip.ru/ie
IE: &Google Search - c:\program files\Google\GoogleToolbar1.dll/cmsearch.html
IE: &ICQ Toolbar Search - c:\program files\ICQToolbar\toolbaru.dll/SEARCH.HTML
IE: &Translate English Word - c:\program files\Google\GoogleToolbar1.dll/cmwordtrans.html
IE: Backward Links - c:\program files\Google\GoogleToolbar1.dll/cmbacklinks.html
IE: Cached Snapshot of Page - c:\program files\Google\GoogleToolbar1.dll/cmcache.html
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Similar Pages - c:\program files\Google\GoogleToolbar1.dll/cmsimilar.html
IE: Translate Page into English - c:\program files\Google\GoogleToolbar1.dll/cmtrans.html
FF - ProfilePath - c:\documents and settings\Čáky Maroš\Data aplikací\Mozilla\Firefox\Profiles\u5mtz738.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - prefs.js: keyword.URL - hxxp://search.qip.ru/search?from=FF&query=
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - d:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - d:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - d:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - d:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

HKLM-Run-nwiz - nwiz.exe
AddRemove-NVIDIA Display Control Panel - c:\program files\NVIDIA Corporation\Uninstall\nvuninst.exe
AddRemove-Vietcong - e:\vietcong\Uninstall.exe
AddRemove-{6B34251B-AB68-4b47-AA5E-09B50EFE41A0} - e:\bfh\uninstaller.exe



**************************************************************************
skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory:

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-527237240-113007714-725345543-1005\Software\SecuROM\License information*]
"datasecu"=hex:45,e9,96,59,d3,bd,a9,3a,bf,b7,c7,aa,1f,19,60,d3,d9,88,6f,53,c1,
00,6d,89,ac,33,4c,9b,7b,5f,a7,9e,96,62,81,d1,dd,81,39,c0,95,f9,0e,d0,c3,05,\
"rkeysecu"=hex:65,2d,70,05,99,99,52,29,12,b9,8c,ef,a0,b3,f6,e4

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5BC6366B-8EDD-E369-E26E-B3BA4721F5EC}\InProcServer32*]
"jalamikenamilenpakfh"=hex:6a,61,62,67,65,69,69,6b,67,68,67,67,68,6f,62,6b,61,
67,65,6a,00,fa
"ialacjaildnkpbeacj"=hex:6a,61,62,67,67,68,6f,6a,65,65,64,68,65,67,62,6f,68,61,
64,63,00,bb
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'explorer.exe'(1416)
c:\windows\system32\msi.dll
c:\windows\system32\webcheck.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\program files\Lavasoft\Ad-Aware\aawservice.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\system32\wdfmgr.exe
c:\program files\Sunbelt Software\Personal Firewall\SbPFCl.exe
c:\windows\SOUNDMAN.EXE
c:\windows\system32\RUNDLL32.EXE
.
**************************************************************************
.
Celkový čas: 2008-09-08 11:47:21 - počítač byl restartován
ComboFix-quarantined-files.txt 2008-09-08 09:47
ComboFix2.txt 2009-10-25 19:39
ComboFix3.txt 2009-10-24 13:49

Před spuštěním: 399 826 944
Po spuštění: 2 787 319 808

WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /fastdetect /NoExecute=OptIn

- - End Of File - - 1C2317FCF9240CC65E7D0FA3F3B87D77

Re: Preventívka

Napsal: 08 úno 2011 14:35
od motji
:arrow: Pokud nemáte, přesuňte Combofix na plochu
-otevřete si Poznámkový blok
-Do něj zkopírujte text z tohoto okénka

Kód: Vybrat vše

Registry::
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000000
[-HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
[-HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
[-HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
[-HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
-uložte Vámi vytvořený TXT soubor jako CFScript.txt na plochu
-po uložení uchopte vámi vytvořený skript levým myšítkem a -přesuňte ho nad ikonu Combofixu, kde ho upustíte:

Obrázek


-po aplikaci na Vás vypadne další log,vložte ho sem

Upozornění : může se stát, že po aplikaci skriptu a restartu Windows nenaběhnou, v tom případě znovu restartujte a přitom mačkejte F8, pak zvolte Poslední známou funkční konfiguraci



:arrow: otestujte na www.virustotal.com
c:\windows\system32\drivers\mqac.sys
-Do okénka zkopírujte cestu k souboru , pokud napíše, že soubor byl už testován, dejte otestovat znovu.
-Sem vložte link s výsledky.

Re: Preventívka

Napsal: 08 úno 2011 15:49
od SkaMasta
omboFix 11-02-07.02 - Čáky Maroš . 09. 2008 15:24:45.8.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.1279.840 [GMT 2:00]
Spuštěný z: c:\documents and settings\Čáky Maroš\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Čáky Maroš\Plocha\CFScript.txt
AV: ESET NOD32 Antivirus 3.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: Sunbelt Personal Firewall *Disabled* {82B1150E-9B37-49FC-83EB-D52197D900D0}
.

((((((((((((((((((((((((( Soubory vytvořené od 2008-08-08 do 2008-09-08 )))))))))))))))))))))))))))))))
.

2010-08-06 10:18 . 2010-06-14 14:30 743936 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2010-08-06 10:15 . 2010-05-06 10:35 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2010-04-20 05:48 . 2010-04-20 05:48 285696 -c----w- c:\windows\system32\dllcache\atmfd.dll
2010-04-03 17:23 . 2010-04-03 17:23 278120 ----a-w- c:\windows\system32\nvmccs.dll
2010-04-03 17:23 . 2010-04-03 17:23 154216 ----a-w- c:\windows\system32\nvsvc32.exe
2010-04-03 17:23 . 2010-04-03 17:23 145000 ----a-w- c:\windows\system32\nvcolor.exe
2010-04-03 17:23 . 2010-04-03 17:23 13670504 ----a-w- c:\windows\system32\nvcpl.dll
2010-04-03 17:23 . 2010-04-03 17:23 110696 ----a-w- c:\windows\system32\nvmctray.dll
2010-04-03 17:23 . 2010-04-03 17:23 229376 ----a-w- c:\windows\system32\nvrszhc.dll
2010-04-03 17:23 . 2010-04-03 17:23 126976 ----a-w- c:\windows\system32\nvrszht.dll
2010-03-30 22:16 . 2010-03-30 22:16 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-03-30 22:10 . 2010-03-30 22:10 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2010-03-18 18:33 . 2010-03-18 18:33 -------- d-----w- c:\windows\system32\wbem\Repository
2010-03-18 09:05 . 2009-11-21 16:46 470528 -c----w- c:\windows\system32\dllcache\aclayers.dll
2010-03-18 09:01 . 2009-10-23 14:27 3555328 -c----w- c:\windows\system32\dllcache\moviemk.exe
2010-03-05 14:57 . 2010-03-05 14:57 65536 -c----w- c:\windows\system32\dllcache\asycfilt.dll
2010-01-13 14:10 . 2010-01-13 14:10 85504 -c----w- c:\windows\system32\dllcache\cabview.dll
2009-12-24 07:07 . 2009-12-24 07:07 177664 -c----w- c:\windows\system32\dllcache\wintrust.dll
2009-12-17 08:00 . 2009-12-17 08:00 343552 -c----w- c:\windows\system32\dllcache\mspaint.exe
2009-12-14 07:37 . 2009-12-14 07:37 33280 -c----w- c:\windows\system32\dllcache\csrsrv.dll
2009-11-27 16:40 . 2009-11-27 16:40 11264 -c----w- c:\windows\system32\dllcache\msrle32.dll
2009-11-06 23:07 . 2009-11-06 23:07 49488 ----a-w- c:\windows\system32\netfxperf.dll
2009-11-06 23:07 . 2009-11-06 23:07 297808 ----a-w- c:\windows\system32\mscoree.dll
2009-11-06 23:06 . 2009-11-06 23:06 1130824 ----a-w- c:\windows\system32\dfshim.dll
2009-10-26 10:23 . 2009-06-05 07:46 655872 -c----w- c:\windows\system32\dllcache\mstscax.dll
2009-10-21 06:03 . 2009-10-21 06:03 75776 -c----w- c:\windows\system32\dllcache\strmfilt.dll
2009-10-21 06:03 . 2009-10-21 06:03 25088 -c----w- c:\windows\system32\dllcache\httpapi.dll
2009-10-20 14:58 . 2009-10-20 14:58 263552 -c----w- c:\windows\system32\dllcache\http.sys
2009-10-13 10:53 . 2009-10-13 10:53 267776 -c----w- c:\windows\system32\dllcache\oakley.dll
2009-10-12 13:54 . 2009-10-12 13:54 69632 -c----w- c:\windows\system32\dllcache\raschap.dll
2009-10-12 13:54 . 2009-10-12 13:54 112640 -c----w- c:\windows\system32\dllcache\rastls.dll
2009-09-04 20:47 . 2009-09-04 20:47 58880 -c----w- c:\windows\system32\dllcache\msasn1.dll
2009-08-19 16:07 . 2009-08-19 16:07 1415000 ----a-w- c:\windows\system32\msxml6.dll
2009-08-17 01:04 . 2009-08-17 01:04 420384 ----a-w- c:\windows\system32\nvcpl.cpl
2009-08-17 01:04 . 2009-08-17 01:04 2173472 ----a-w- c:\windows\system32\nvcplui.exe
2009-08-17 01:03 . 2009-08-17 01:03 3170304 ----a-w- c:\windows\system32\nvwss.dll
2009-08-17 01:03 . 2009-08-17 01:03 4026368 ----a-w- c:\windows\system32\nvvitvs.dll
2009-08-17 01:03 . 2009-08-17 01:03 188416 ----a-w- c:\windows\system32\nvmccss.dll
2009-08-17 01:03 . 2009-08-17 01:03 1286144 ----a-w- c:\windows\system32\nvmobls.dll
2009-08-17 01:03 . 2009-08-17 01:03 3547136 ----a-w- c:\windows\system32\nvgames.dll
2009-08-17 01:03 . 2009-08-17 01:03 4923392 ----a-w- c:\windows\system32\nvdisps.dll
2009-08-16 22:57 . 2010-04-03 22:55 2646632 ----a-w- c:\windows\system32\nvcuvenc.dll
2009-08-16 22:57 . 2010-04-03 22:55 2183470 ----a-w- c:\windows\system32\nvdata.bin
2009-08-16 22:57 . 2010-04-03 22:55 2030184 ----a-w- c:\windows\system32\nvcuvid.dll
2009-08-14 11:36 . 2009-08-14 11:36 70936 ----a-w- c:\windows\system32\PhysXLoader.dll
2009-08-05 09:07 . 2009-08-05 09:07 205312 -c----w- c:\windows\system32\dllcache\mswebdvd.dll
2009-08-02 22:21 . 2009-08-02 22:21 23320 ----a-w- c:\windows\system32\PhysXDevice.dll
2009-07-29 04:53 . 2009-10-15 21:52 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2009-07-20 23:05 . 2009-07-20 23:05 1348432 ----a-w- c:\windows\system32\msxml4.dll
2009-07-17 18:57 . 2009-07-17 18:57 58880 -c----w- c:\windows\system32\dllcache\atl.dll
2009-07-11 19:37 . 2009-07-11 19:37 641536 ----a-w- c:\program files\Common Files\Microsoft Shared\VC\msdia80.dll
2009-06-25 18:37 . 2009-06-25 18:37 517120 -c----w- c:\windows\system32\dllcache\mqsnap.dll
2009-06-25 18:37 . 2009-06-25 18:37 186880 -c----w- c:\windows\system32\dllcache\mqtrig.dll
2009-06-25 18:37 . 2009-06-25 18:37 169472 -c----w- c:\windows\system32\dllcache\msmqocm.dll
2009-06-25 18:37 . 2009-06-25 18:37 123392 -c----w- c:\windows\system32\dllcache\mqrtdep.dll
2009-06-25 18:37 . 2009-06-25 18:37 225280 -c----w- c:\windows\system32\dllcache\mqoa.dll
2009-06-25 08:48 . 2009-09-11 14:35 133632 -c----w- c:\windows\system32\dllcache\msv1_0.dll
2009-06-25 08:48 . 2009-06-25 08:48 59392 -c----w- c:\windows\system32\dllcache\wdigest.dll
2009-06-25 08:48 . 2009-06-25 08:48 298496 -c----w- c:\windows\system32\dllcache\kerberos.dll
2009-06-22 11:49 . 2009-06-22 11:49 19968 -c----w- c:\windows\system32\dllcache\mqbkup.exe
2009-06-22 11:49 . 2009-06-22 11:49 117248 -c----w- c:\windows\system32\dllcache\mqtgsvc.exe
2009-06-22 11:49 . 2009-06-22 11:49 4608 -c----w- c:\windows\system32\dllcache\mqsvc.exe
2009-06-22 11:34 . 2009-06-22 11:34 92544 -c----w- c:\windows\system32\dllcache\ksecdd.sys
2009-06-15 11:33 . 2009-06-15 11:33 78336 -c----w- c:\windows\system32\dllcache\telnet.exe
2009-06-15 11:33 . 2009-06-15 11:33 81408 -c----w- c:\windows\system32\dllcache\tlntsess.exe
2009-06-10 14:24 . 2009-11-27 16:40 84992 -c----w- c:\windows\system32\dllcache\avifil32.dll
2009-05-07 15:44 . 2009-05-07 15:44 345088 -c----w- c:\windows\system32\dllcache\localspl.dll
2009-03-08 12:19 . 2009-03-08 12:19 53248 ------w- c:\windows\system32\msrating.dll.mui
2009-03-08 12:19 . 2009-03-08 12:19 2560 ------w- c:\windows\system32\mshta.exe.mui
2009-03-08 12:18 . 2009-03-08 12:18 4096 ------w- c:\windows\system32\ie4uinit.exe.mui
2009-03-08 12:17 . 2009-03-08 12:17 81920 ------w- c:\windows\system32\iedkcs32.dll.mui
2009-03-08 02:35 . 2010-05-06 10:35 743424 ------w- c:\program files\Internet Explorer\iedvtool.dll
2009-03-08 02:35 . 2009-03-08 02:35 233984 ------w- c:\program files\Internet Explorer\jsprofilerui.dll
2009-03-08 02:35 . 2009-03-08 02:35 2048 ------w- c:\program files\Internet Explorer\iecompat.dll
2009-03-08 02:35 . 2009-03-08 02:35 144384 ------w- c:\program files\Internet Explorer\ExtExport.exe
2009-03-08 02:35 . 2009-03-08 02:35 118272 ------w- c:\program files\Internet Explorer\JSProfilerCore.dll
2009-03-08 02:35 . 2009-03-08 02:35 521216 ------w- c:\program files\Internet Explorer\jsdbgui.dll
2009-03-08 02:35 . 2009-03-08 02:35 121344 ------w- c:\program files\Internet Explorer\jsdebuggeride.dll
2009-03-08 02:33 . 2010-05-06 10:35 12800 ----a-w- c:\program files\Internet Explorer\xpshims.dll
2009-02-27 12:13 . 2009-02-27 12:13 103792 ----a-w- c:\program files\Internet Explorer\PLUGINS\nppdf32.dll
2009-02-03 20:11 . 2009-06-25 08:48 56320 -c----w- c:\windows\system32\dllcache\secur32.dll
2009-01-07 16:20 . 2009-01-07 16:20 134144 -c----w- c:\windows\system32\dllcache\sqmapi.dll
2009-01-07 16:20 . 2009-01-07 16:20 134144 ------w- c:\program files\Internet Explorer\sqmapi.dll
2009-01-07 16:20 . 2009-01-07 16:20 355832 ------w- c:\program files\Internet Explorer\pdm.dll
2009-01-07 16:20 . 2009-01-07 16:20 265720 ----a-w- c:\windows\system32\msdbg2.dll
2008-12-25 22:08 . 2010-04-03 22:55 4075520 ----a-w- c:\windows\system32\nvcuda.dll
2008-12-25 22:08 . 2008-12-25 22:08 1253376 ----a-w- c:\windows\system32\NvPVEnc.ax
2008-12-16 12:50 . 2009-08-25 09:49 352256 -c----w- c:\windows\system32\dllcache\winhttp.dll
2008-11-01 09:54 . 2008-09-01 16:50 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\Temp
2008-10-15 22:00 . 2008-10-15 22:00 -------- d-----w- c:\program files\MSBuild
2008-10-15 21:56 . 2008-09-02 13:36 -------- d-----w- c:\windows\system32\XPSViewer
2008-10-15 21:56 . 2008-10-15 21:56 -------- d-----w- c:\program files\Reference Assemblies
2008-10-15 21:55 . 2006-10-14 14:43 27648 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
2008-10-15 21:55 . 2006-06-29 11:07 14048 ------w- c:\windows\system32\spmsg2.dll
2008-10-11 19:21 . 2008-09-07 20:03 -------- d-----w- c:\windows\Logs
2008-10-11 12:12 . 2008-10-11 12:17 -------- d-----w- c:\documents and settings\Čáky Maroš\Local Settings\Data aplikací\Fallout3
2008-10-05 20:44 . 2008-10-05 20:44 -------- d-----w- c:\windows\Sun
2008-10-05 20:43 . 2010-04-12 13:19 73728 ----a-w- c:\windows\system32\javacpl.cpl
2008-09-30 05:48 . 2008-09-30 06:04 -------- d-----w- c:\windows\system32\CatRoot_bak
2008-09-27 14:53 . 2008-09-08 11:29 -------- d-----w- C:\Nová složka (2)
2008-09-25 17:04 . 2008-09-25 17:04 -------- d-----w- c:\documents and settings\Čáky Miroslav\Local Settings\Data aplikací\Mozilla
2008-09-25 06:13 . 2008-09-25 06:13 -------- d-----w- c:\documents and settings\Čáky Miroslav\Local Settings\Data aplikací\Ubisoft
2008-09-24 20:39 . 2008-09-15 15:26 -------- d-----w- c:\documents and settings\Čáky Maroš\Local Settings\Data aplikací\Ubisoft
2008-09-24 20:23 . 2007-04-27 08:12 394184 ----a-w- c:\program files\Common Files\InstallShield\UpdateService\_isusres.dll
2008-09-24 20:23 . 2006-09-10 19:56 86960 ----a-w- c:\program files\Common Files\InstallShield\UpdateService\issch.exe
2008-09-24 20:23 . 2006-09-10 19:56 992176 ----a-w- c:\program files\Common Files\InstallShield\UpdateService\agent.exe
2008-09-24 20:23 . 2006-09-10 19:56 283568 ----a-w- c:\program files\Common Files\InstallShield\UpdateService\ISDM.exe
2008-09-24 14:24 . 2008-09-24 14:24 -------- d-----w- c:\documents and settings\Čáky Maroš\Data aplikací\ArcSoft
2008-09-24 14:23 . 1995-08-01 02:44 212480 ----a-w- c:\windows\PCDLIB32.DLL
2008-09-23 20:09 . 2008-09-07 17:39 -------- d-----w- c:\program files\trend micro
2008-09-23 20:09 . 2008-09-23 20:09 -------- d-----w- C:\rsit
2008-09-23 10:11 . 2008-09-23 10:11 -------- d-sh--w- c:\documents and settings\Čáky Maroš\IECompatCache
2008-09-22 15:05 . 2008-09-22 15:05 -------- d-----w- c:\documents and settings\Čáky Miroslav\Data aplikací\DAEMON Tools Lite
2008-09-21 10:28 . 2008-09-21 10:29 -------- d-----w- c:\documents and settings\Čáky Maroš\Local Settings\Data aplikací\Risen
2008-09-21 10:26 . 2008-09-21 10:26 -------- d-----w- c:\windows\1C4551A64743409391E41477CD655043.TMP
2008-09-19 15:19 . 2008-09-19 15:19 -------- d-----w- c:\documents and settings\Čáky Maroš\Data aplikací\Facebook
2008-09-19 14:53 . 2008-09-19 14:53 -------- d-----w- c:\documents and settings\Čáky Igor\Local Settings\Data aplikací\Mozilla
2008-09-19 14:39 . 2009-12-30 10:20 27064 ----a-w- c:\windows\system32\drivers\revoflt.sys
2008-09-19 14:34 . 2008-09-19 14:34 -------- d-----w- c:\documents and settings\Čáky Maroš\Local Settings\Data aplikací\VS Revo Group
2008-09-19 14:28 . 2008-09-19 14:28 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2008-09-19 13:39 . 2008-09-19 13:39 -------- d-----w- c:\documents and settings\Čáky Igor\Data aplikací\Malwarebytes
2008-09-19 12:14 . 2008-09-19 12:14 -------- d-sh--w- c:\documents and settings\Administrator\IETldCache
2008-09-19 09:54 . 2008-09-19 09:54 -------- d-----w- c:\program files\OpenAL
2008-09-19 09:54 . 2008-04-28 14:53 805400 ----a-r- c:\windows\system32\tmp444.tmp
2008-09-19 09:54 . 2008-04-28 14:53 805400 ----a-r- c:\windows\system32\tmp443.tmp

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-06-14 14:30 . 2006-03-22 14:54 743936 ----a-w- c:\windows\pchealth\HELPCTR\Binaries\helpsvc.exe
2010-05-06 10:35 . 2006-03-22 14:54 916480 ----a-w- c:\windows\system32\wininet.dll
2010-05-06 10:35 . 2006-03-22 14:54 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2010-05-02 08:27 . 2001-10-25 12:00 1850880 ----a-w- c:\windows\system32\win32k.sys
2010-04-20 05:48 . 2001-10-25 12:00 285696 ----a-w- c:\windows\system32\atmfd.dll
2010-04-03 22:55 . 2007-10-09 16:10 14757888 ----a-w- c:\windows\system32\nvoglnt.dll
2010-04-03 22:55 . 2007-10-09 16:10 227944 ----a-w- c:\windows\system32\nvcodins.dll
2010-04-03 22:55 . 2007-10-09 16:10 227944 ----a-w- c:\windows\system32\nvcod.dll
2010-04-03 22:55 . 2007-10-09 16:10 1097728 ----a-w- c:\windows\system32\nvapi.dll
2010-04-03 22:55 . 2006-03-22 20:57 600680 ----a-w- c:\windows\system32\nvudisp.exe
2010-04-03 22:55 . 2005-12-09 19:06 6432128 ----a-w- c:\windows\system32\nv4_disp.dll
2010-04-03 22:55 . 2005-12-09 19:06 10232128 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2010-04-02 14:54 . 2006-03-22 20:52 600680 ----a-w- c:\windows\system32\NVUNINST.EXE
2010-03-10 06:17 . 2006-03-22 14:54 420352 ----a-w- c:\windows\system32\vbscript.dll
2010-03-05 14:57 . 2001-10-25 12:00 65536 ----a-w- c:\windows\system32\asycfilt.dll
2010-02-24 12:31 . 2001-10-25 12:00 454016 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2010-02-16 19:34 . 2001-10-25 12:00 2183552 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-02-16 19:34 . 2001-10-24 11:46 2060544 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-02-12 10:03 . 2008-03-20 21:36 293376 ------w- c:\windows\system32\browserchoice.exe
2010-02-12 04:47 . 2006-03-22 14:54 100864 ----a-w- c:\windows\system32\6to4svc.dll
2010-02-11 12:01 . 2001-10-25 12:00 226880 ----a-w- c:\windows\system32\drivers\tcpip6.sys
2010-02-05 18:40 . 2006-03-22 21:01 1293824 ----a-w- c:\windows\system32\quartz.dll
2010-01-29 15:07 . 2006-03-22 14:54 683520 ----a-w- c:\windows\system32\inetcomm.dll
2010-01-29 14:45 . 2006-03-22 21:01 143422 ----a-w- c:\windows\system32\l3codecx.ax
2010-01-29 14:45 . 2006-03-22 14:54 307260 ----a-w- c:\windows\system32\l3codeca.acm
2010-01-13 14:10 . 2001-10-25 12:00 85504 ----a-w- c:\windows\system32\cabview.dll
2009-12-31 16:14 . 2001-10-25 12:00 352640 ----a-w- c:\windows\system32\drivers\srv.sys
2009-12-24 07:07 . 2001-10-25 12:00 177664 ----a-w- c:\windows\system32\wintrust.dll
2009-12-17 08:00 . 2006-03-22 14:54 343552 ----a-w- c:\windows\system32\mspaint.exe
2009-12-14 07:37 . 2001-10-25 12:00 33280 ----a-w- c:\windows\system32\csrsrv.dll
2009-11-27 17:35 . 2006-03-22 21:01 17920 ----a-w- c:\windows\system32\msyuv.dll
2009-11-27 16:40 . 2006-03-22 14:54 84992 ----a-w- c:\windows\system32\avifil32.dll
2009-11-27 16:40 . 2006-03-22 14:54 11264 ----a-w- c:\windows\system32\msrle32.dll
2009-11-27 16:40 . 2001-10-25 12:00 28672 ----a-w- c:\windows\system32\msvidc32.dll
2009-11-27 16:40 . 2001-10-24 12:25 8704 ----a-w- c:\windows\system32\tsbyuv.dll
2009-11-27 16:40 . 2001-10-24 12:24 48128 ----a-w- c:\windows\system32\iyuv_32.dll
2009-11-21 16:46 . 2006-03-22 14:54 470528 ----a-w- c:\windows\apppatch\aclayers.dll
2009-10-29 07:43 . 2006-03-22 14:54 1208832 ----a-w- c:\windows\system32\urlmon(3).dll
2009-10-29 07:43 . 2006-03-22 14:54 916480 ----a-w- c:\windows\system32\wininet(3).dll
2009-10-21 06:03 . 2006-03-22 15:04 25088 ----a-w- c:\windows\system32\httpapi.dll
2009-10-21 06:03 . 2006-03-22 15:04 75776 ----a-w- c:\windows\system32\strmfilt.dll
2009-10-20 14:58 . 2006-03-22 15:04 263552 ----a-w- c:\windows\system32\drivers\http.sys
2009-10-15 21:52 . 2001-10-25 12:00 119808 ----a-w- c:\windows\system32\t2embed.dll
2009-10-15 17:22 . 2001-10-25 12:00 82432 ----a-w- c:\windows\system32\fontsub.dll
2009-10-13 10:53 . 2006-03-22 14:54 267776 ----a-w- c:\windows\system32\oakley.dll
2009-10-12 13:54 . 2006-03-22 14:54 69632 ----a-w- c:\windows\system32\raschap.dll
2009-10-12 13:54 . 2006-03-22 14:54 112640 ----a-w- c:\windows\system32\rastls.dll
2009-10-07 07:18 . 2007-11-14 14:06 35168 ----a-w- c:\windows\system32\drivers\epfwtdir.sys
2009-10-07 07:12 . 2007-11-14 14:04 54184 ----a-w- c:\windows\system32\drivers\easdrv.sys
2009-10-07 07:11 . 2007-11-14 14:03 40824 ----a-w- c:\windows\system32\drivers\eamon.sys
2009-09-23 08:41 . 2007-05-23 12:06 26176 ---ha-w- c:\windows\system32\drivers\hamachi.sys
2009-09-11 14:35 . 2001-10-25 12:00 133632 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-04 20:47 . 2001-10-25 12:00 58880 ----a-w- c:\windows\system32\msasn1.dll
2009-09-01 14:34 . 2006-03-22 14:54 282654 ----a-w- c:\windows\system32\msaud32.acm
2009-08-26 08:16 . 2006-03-22 14:54 247326 ----a-w- c:\windows\system32\strmdll.dll
2009-08-25 09:49 . 2006-03-22 14:54 352256 ----a-w- c:\windows\system32\winhttp.dll
2009-08-06 17:24 . 2007-06-18 17:34 15072 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2009-08-06 17:24 . 2007-06-18 17:34 22232 ----a-w- c:\windows\system32\wucltui.dll.mui
2009-08-06 17:24 . 2006-03-22 15:04 327896 ----a-w- c:\windows\system32\wucltui.dll
2009-08-06 17:24 . 2006-03-22 15:04 209632 ----a-w- c:\windows\system32\wuweb.dll
2009-08-06 17:24 . 2006-03-22 15:04 217816 ----a-w- c:\windows\system32\wuaucpl.cpl
2009-08-06 17:24 . 2006-03-22 15:04 35552 ----a-w- c:\windows\system32\wups.dll
2009-08-06 17:24 . 2005-05-26 03:16 44768 ----a-w- c:\windows\system32\wups2.dll
2009-08-06 17:24 . 2007-06-18 17:34 18136 ----a-w- c:\windows\system32\wuaueng.dll.mui
2009-08-06 17:24 . 2007-06-18 17:34 15072 ----a-w- c:\windows\system32\wuapi.dll.mui
2009-08-06 17:24 . 2006-03-22 14:54 53472 ----a-w- c:\windows\system32\wuauclt.exe
2009-08-06 17:24 . 2006-03-22 14:54 96480 ----a-w- c:\windows\system32\cdm.dll
2009-08-06 17:23 . 2006-03-22 15:04 575704 ----a-w- c:\windows\system32\wuapi.dll
2009-08-06 17:23 . 2006-03-22 14:54 1929952 ----a-w- c:\windows\system32\wuaueng.dll
2009-08-05 09:07 . 2006-03-22 21:01 205312 ----a-w- c:\windows\system32\mswebdvd.dll
2009-07-31 04:59 . 2006-03-22 14:54 1172480 ----a-w- c:\windows\system32\msxml3.dll
2009-07-17 18:57 . 2006-03-22 14:54 58880 ----a-w- c:\windows\system32\atl.dll
2009-07-17 16:27 . 2006-03-22 14:54 1437696 ----a-w- c:\windows\system32\query.dll
2009-07-13 09:08 . 2006-03-22 15:04 286720 ----a-w- c:\windows\system32\wmpdxm.dll
2009-06-25 18:37 . 2006-03-22 14:54 95744 ----a-w- c:\windows\system32\mqsec.dll
2009-06-25 18:37 . 2006-03-22 14:54 517120 ----a-w- c:\windows\system32\mqsnap.dll
2009-06-25 18:37 . 2006-03-22 14:54 489472 ----a-w- c:\windows\system32\mqutil.dll
2009-06-25 18:37 . 2006-03-22 14:54 186880 ----a-w- c:\windows\system32\mqtrig.dll
2009-06-25 18:37 . 2001-10-25 12:00 48640 ----a-w- c:\windows\system32\mqupgrd.dll
2009-06-25 18:37 . 2001-10-25 12:00 123392 ----a-w- c:\windows\system32\mqrtdep.dll
2009-06-25 18:37 . 2006-03-22 14:54 16896 ----a-w- c:\windows\system32\mqise.dll
2009-06-25 18:37 . 2006-03-22 14:54 138240 ----a-w- c:\windows\system32\mqad.dll
2009-06-25 18:37 . 2006-03-22 14:54 661504 ----a-w- c:\windows\system32\mqqm.dll
2009-06-25 18:37 . 2006-03-22 14:54 177152 ----a-w- c:\windows\system32\mqrt.dll
2009-06-25 18:37 . 2001-10-25 12:00 47104 ----a-w- c:\windows\system32\mqdscli.dll
2009-06-25 18:37 . 2001-10-25 12:00 225280 ----a-w- c:\windows\system32\mqoa.dll
2009-06-25 08:48 . 2006-03-22 14:54 298496 ----a-w- c:\windows\system32\kerberos.dll
2009-06-25 08:48 . 2006-03-22 14:54 56320 ----a-w- c:\windows\system32\secur32.dll
2009-06-25 08:48 . 2001-10-25 12:00 723456 ----a-w- c:\windows\system32\lsasrv.dll
2009-06-25 08:48 . 2001-10-25 12:00 59392 ----a-w- c:\windows\system32\wdigest.dll
2009-06-25 08:48 . 2001-10-25 12:00 168448 ----a-w- c:\windows\system32\schannel.dll
2009-06-22 11:49 . 2001-10-25 12:00 19968 ----a-w- c:\windows\system32\mqbkup.exe
2009-06-22 11:49 . 2001-10-25 12:00 117248 ----a-w- c:\windows\system32\mqtgsvc.exe
2009-06-22 11:49 . 2001-10-25 12:00 4608 ----a-w- c:\windows\system32\mqsvc.exe
2009-06-22 11:48 . 2006-03-22 14:54 91776 ----a-w- c:\windows\system32\drivers\mqac.sys
2009-06-22 11:34 . 2001-10-25 12:00 92544 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2009-06-15 11:33 . 2002-09-20 17:05 78336 ----a-w- c:\windows\system32\telnet.exe
2009-06-15 11:33 . 2006-03-22 14:54 81408 ----a-w- c:\windows\system32\tlntsess.exe
2009-06-10 06:31 . 2001-10-25 12:00 132096 ----a-w- c:\windows\system32\wkssvc.dll
2009-06-05 07:46 . 2006-03-22 14:54 655872 ----a-w- c:\windows\system32\mstscax.dll
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="d:\program files\DAEMON Tools Lite\daemon.exe" [2009-04-23 691656]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-09-11 39408]
"Infium"="c:\program files\QIP 2010\qip.exe" [2010-06-09 5714384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2005-07-22 81920]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2006-04-29 180269]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-10-07 1461080]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-01-31 385024]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-04-03 13670504]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-04-03 110696]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2004-08-17 15360]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\ICQLite\\ICQLite.exe"=
"d:\\Program Files\\ICQLite\\ICQLite.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"d:\\Program Files\\TmNationsForever\\TmForever.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"d:\\Program Files\\Dragon Age\\bin_ship\\daorigins.exe"=
"d:\\Program Files\\Dragon Age\\DAOriginsLauncher.exe"=
"d:\\Program Files\\Dragon Age\\bin_ship\\daupdatersvc.service.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3724:TCP"= 3724:TCP:Blizzard Downloader
"6122:TCP"= 6122:TCP:Blizzard Downloader
"57226:TCP"= 57226:TCP:Pando Media Booster
"57226:UDP"= 57226:UDP:Pando Media Booster

R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [11. 4. 2006 21:03 721904]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [14. 11. 2007 16:06 35168]
R1 SbFw;SbFw;c:\windows\system32\drivers\SbFw.sys [2. 9. 2008 14:03 270888]
R1 sbhips;Sunbelt HIPS Driver;c:\windows\system32\drivers\sbhips.sys [21. 6. 2008 4:54 66600]
R2 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [24. 10. 2008 20:51 472280]
R2 SbPF.Launcher;SbPF.Launcher;c:\program files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [31. 10. 2008 7:24 95528]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport;c:\windows\system32\drivers\SbFwIm.sys [2. 9. 2008 14:03 65576]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [11. 9. 2008 22:22 135664]
S2 SPF4;Sunbelt Personal Firewall 4;c:\program files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [31. 10. 2008 7:24 1365288]
S3 ALSysIO;ALSysIO;\??\c:\docume~1\KYMARO~1\LOCALS~1\Temp\ALSysIO.sys --> c:\docume~1\KYMARO~1\LOCALS~1\Temp\ALSysIO.sys [?]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;d:\program files\Dragon Age\bin_ship\daupdatersvc.service.exe [18. 9. 2008 22:54 25832]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [19. 9. 2008 16:39 27064]
S3 s3m;s3m;c:\windows\system32\drivers\s3m.sys [24. 9. 2007 11:17 166720]
.
Obsah adresáře 'Naplánované úlohy'

2008-09-08 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-09-11 20:21]

2008-09-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2008-09-11 20:22]

2011-02-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2008-09-11 20:22]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://qip.ru
uDefault_Search_URL = hxxp://search.qip.ru
uSearchAssistant = hxxp://search.qip.ru/ie
IE: &Google Search - c:\program files\Google\GoogleToolbar1.dll/cmsearch.html
IE: &ICQ Toolbar Search - c:\program files\ICQToolbar\toolbaru.dll/SEARCH.HTML
IE: &Translate English Word - c:\program files\Google\GoogleToolbar1.dll/cmwordtrans.html
IE: Backward Links - c:\program files\Google\GoogleToolbar1.dll/cmbacklinks.html
IE: Cached Snapshot of Page - c:\program files\Google\GoogleToolbar1.dll/cmcache.html
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Similar Pages - c:\program files\Google\GoogleToolbar1.dll/cmsimilar.html
IE: Translate Page into English - c:\program files\Google\GoogleToolbar1.dll/cmtrans.html
FF - ProfilePath - c:\documents and settings\Čáky Maroš\Data aplikací\Mozilla\Firefox\Profiles\1odxbsty.default\
FF - prefs.js: browser.startup.homepage - hxxp://start.icq.com/
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - d:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

URLSearchHooks-{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - (no file)
BHO-{30F9B915-B755-4826-820B-08FBA6BD249D} - (no file)
BHO-{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - (no file)
Toolbar-{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - (no file)
Toolbar-{30F9B915-B755-4826-820B-08FBA6BD249D} - (no file)
WebBrowser-{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3} - (no file)



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-08 15:36
Windows 5.1.2600 Service Pack 2 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-527237240-113007714-725345543-1005\Software\SecuROM\License information*]
"datasecu"=hex:45,e9,96,59,d3,bd,a9,3a,bf,b7,c7,aa,1f,19,60,d3,d9,88,6f,53,c1,
00,6d,89,ac,33,4c,9b,7b,5f,a7,9e,96,62,81,d1,dd,81,39,c0,95,f9,0e,d0,c3,05,\
"rkeysecu"=hex:65,2d,70,05,99,99,52,29,12,b9,8c,ef,a0,b3,f6,e4

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5BC6366B-8EDD-E369-E26E-B3BA4721F5EC}\InProcServer32*]
"jalamikenamilenpakfh"=hex:6a,61,62,67,65,69,69,6b,67,68,67,67,68,6f,62,6b,61,
67,65,6a,00,fa
"ialacjaildnkpbeacj"=hex:6a,61,62,67,67,68,6f,6a,65,65,64,68,65,67,62,6f,68,61,
64,63,00,bb
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'explorer.exe'(1780)
c:\windows\system32\msi.dll
c:\windows\system32\webcheck.dll
.
Celkový čas: 2008-09-08 15:39:39
ComboFix-quarantined-files.txt 2008-09-08 13:39
ComboFix2.txt 2008-09-08 09:47
ComboFix3.txt 2009-10-25 19:39
ComboFix4.txt 2009-10-24 13:49

Před spuštěním: 2 851 827 712
Po spuštění: 2 834 657 280

- - End Of File - - 56AA51D230A3EC33426E70B76EE2F732

Re: Preventívka

Napsal: 08 úno 2011 16:19
od motji
Jak to vypadá s počítačem?

Re: Preventívka

Napsal: 08 úno 2011 17:20
od SkaMasta
No je to určite lepšie, čo sa týka tých zásekov tak rapídne klesli, myslím že vlastne asi úplne zmizli, ten zvyšok by sa dal pripísať starobe mojho PC..Ďakujem za pomoc.. :worship:

Re: Preventívka

Napsal: 08 úno 2011 21:27
od motji
Omlouvám se, ještě jeden skript

:arrow: Pokud nemáte, přesuňte Combofix na plochu
-otevřete si Poznámkový blok
-Do něj zkopírujte text z tohoto okénka

Kód: Vybrat vše


DDS::
uStart Page = hxxp://qip.ru
uDefault_Search_URL = hxxp://search.qip.ru
uSearchAssistant = hxxp://search.qip.ru/ie

Firefox::
F - ProfilePath - c:\documents and settings\Čáky Maroš\Data aplikací\Mozilla\Firefox\Profiles\1odxbsty.default\
FF - prefs.js: browser.startup.homepage - hxxp://start.icq.com/
FF - prefs.js: browser.search.selectedEngine - ICQ Search

Regnull::
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5BC6366B-8EDD-E369-E26E-B3BA4721F5EC}\InProcServer32*]
-uložte Vámi vytvořený TXT soubor jako CFScript.txt na plochu
-po uložení uchopte vámi vytvořený skript levým myšítkem a -přesuňte ho nad ikonu Combofixu, kde ho upustíte:

Obrázek


-po aplikaci na Vás vypadne další log,vložte ho sem

Upozornění : může se stát, že po aplikaci skriptu a restartu Windows nenaběhnou, v tom případě znovu restartujte a přitom mačkejte F8, pak zvolte Poslední známou funkční konfiguraci
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz