ještě dodám ... v TRAY mám jen jednu ikonku a to ovládání zvuku ... ovladač na ATI grafiku chybí a další ...
ve správci úloh mám 17x spuštěn proces svchost.exe ... ( 3x pod LOCAL SERVICE 2x uživatel xyz zbytek SYSTEM )
LOG ZDE:
Logfile of random's system information tool 1.08 (written by random/random)
Run by xyz at 2011-07-31 12:33:14
Systém Microsoft Windows XP Professional Service Pack 3
System drive D: has 76 GB (74%) free of 102 GB
Total RAM: 2047 MB (80% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:33:50, on 31.7.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\brsvc01a.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\system32\brss01a.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\Analog Devices\Core\smax4pnp.exe
D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
D:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
D:\WINDOWS\system32\rundll32.exe
D:\WINDOWS\update.1\svchost.exe
D:\WINDOWS\sysdriver32.exe
D:\WINDOWS\sysdriver32_.exe
D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
D:\WINDOWS\l1rezerv.exe
D:\WINDOWS\systemup.exe
D:\WINDOWS\update.3\svchost.exe
D:\Program Files\Java\jre6\bin\jqs.exe
D:\WINDOWS\system32\PnkBstrA.exe
D:\WINDOWS\update.5.0\svchost.exe
D:\WINDOWS\update.2\svchost.exe
D:\WINDOWS\update.5.0\svchost.exe
D:\WINDOWS\sysdriver32.exe
D:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\update.1\svchost.exe
D:\WINDOWS\system32\wbem\wmiapsrv.exe
D:\WINDOWS\update.2\svchost.exe
D:\Documents and Settings\xyz\Plocha\6453xxx\RSIT.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\taskmgr.exe
D:\Program Files\trend micro\xyz.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext =
http://workgroup/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [JMB36X Configure] D:\WINDOWS\system32\JMRaidTool.exe boot
O4 - HKLM\..\Run: [StartCCC] "D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SoundMAXPnP] D:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] "D:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] D:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [IndexSearch] D:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [SetDefPrt] D:\Program Files\Brother\Brmfl05a\BrStDvPt.exe
O4 - HKLM\..\Run: [ControlCenter2.0] D:\Program Files\Brother\ControlCenter2\brctrcen.exe /autorun
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [wxpdrv] D:\WINDOWS\update.1\svchost.exe
O4 - HKLM\..\Run: [9237312.exe] "D:\DOCUME~1\xyz\LOCALS~1\Temp\9237312.exe"
O4 - HKLM\..\Run: [sysdriver32.exe] "D:\WINDOWS\sysdriver32.exe" rezerv
O4 - HKLM\..\Run: [sysdriver32_.exe] "D:\WINDOWS\sysdriver32_.exe" rezerv
O4 - HKLM\..\Run: [2382068.exe] "D:\WINDOWS\TEMP\2382068.exe"
O4 - HKLM\..\Run: [8947357.exe] "D:\DOCUME~1\xyz\LOCALS~1\Temp\8947357.exe"
O4 - HKLM\..\Run: [l1rezerv.exe] "D:\WINDOWS\l1rezerv.exe"
O4 - HKLM\..\Run: [70032023-loader2.exe] "D:\WINDOWS\TEMP\70032023-loader2.exe"
O4 - HKLM\..\Run: [systemup] "D:\WINDOWS\systemup.exe" stand
O4 - HKLM\..\Run: [w_distrib.exe] "D:\WINDOWS\update.3\svchost.exe" stand
O4 - HKLM\..\Run: [445345.exe] "D:\WINDOWS\TEMP\445345.exe"
O4 - HKLM\..\Run: [2602233.exe] "D:\WINDOWS\TEMP\2602233.exe"
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: _uninst_02320668.lnk = D:\Documents and Settings\xyz\Local Settings\temp\_uninst_02320668.bat
O4 - Global Startup: Status Monitor.lnk = D:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - D:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - D:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - D:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - D:\WINDOWS\system32\ati2sgag.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - D:\WINDOWS\system32\brsvc01a.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - D:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: PnkBstrA - Unknown owner - D:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: srvbtcclient - Unknown owner - D:\WINDOWS\update.5.0\svchost.exe
O23 - Service: srviecheck - Unknown owner - D:\WINDOWS\update.2\svchost.exe
O23 - Service: srvsysdriver32 - Unknown owner - D:\WINDOWS\sysdriver32.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - D:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: wxpdrivers - Unknown owner - D:\WINDOWS\update.1\svchost.exe
--
End of file - 6453 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - D:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-05-03 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-05-03 79648]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"JMB36X Configure"=D:\WINDOWS\system32\JMRaidTool.exe [2006-06-02 385024]
"StartCCC"=D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-08-29 61440]
"SoundMAXPnP"=D:\Program Files\Analog Devices\Core\smax4pnp.exe [2006-05-01 843776]
"SSBkgdUpdate"=D:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2003-10-14 155648]
"PaperPort PTD"=D:\Program Files\ScanSoft\PaperPort\pptd40nt.exe [2005-03-17 57393]
"IndexSearch"=D:\Program Files\ScanSoft\PaperPort\IndexSearch.exe [2005-03-17 40960]
"SetDefPrt"=D:\Program Files\Brother\Brmfl05a\BrStDvPt.exe [2005-01-26 49152]
"ControlCenter2.0"=D:\Program Files\Brother\ControlCenter2\brctrcen.exe [2005-05-17 933888]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"wxpdrv"=D:\WINDOWS\update.1\svchost.exe [2011-07-24 1185792]
"9237312.exe"=D:\DOCUME~1\xyz\LOCALS~1\Temp\9237312.exe [2011-07-24 247296]
"sysdriver32.exe"=D:\WINDOWS\sysdriver32.exe [2011-07-25 256000]
"sysdriver32_.exe"=D:\WINDOWS\sysdriver32_.exe [2011-07-25 256000]
"2382068.exe"=D:\WINDOWS\TEMP\2382068.exe [2011-07-24 247296]
"8947357.exe"=D:\DOCUME~1\xyz\LOCALS~1\Temp\8947357.exe [2011-07-24 247296]
"l1rezerv.exe"=D:\WINDOWS\l1rezerv.exe [2011-07-24 232960]
"70032023-loader2.exe"=D:\WINDOWS\TEMP\70032023-loader2.exe [2011-07-24 247296]
"systemup"=D:\WINDOWS\systemup.exe [2011-07-24 114176]
"w_distrib.exe"=D:\WINDOWS\update.3\svchost.exe [2011-07-29 272896]
"445345.exe"=D:\WINDOWS\TEMP\445345.exe [2011-07-29 502272]
"2602233.exe"=D:\WINDOWS\TEMP\2602233.exe [2011-07-29 256000]
D:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Status Monitor.lnk - D:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
D:\Documents and Settings\xyz\Nabídka Start\Programy\Po spuštění
_uninst_02320668.lnk - D:\Documents and Settings\xyz\Local Settings\temp\_uninst_02320668.bat
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
D:\WINDOWS\system32\Ati2evxx.dll [2011-05-25 188416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
D:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\wxpdrivers]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\wxpdrivers]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLUA"=0
"EnableSecureUIAPaths"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\Program Files\uTorrent\uTorrent.exe"="D:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"D:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe"="D:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher"
"D:\WINDOWS\system32\PnkBstrA.exe"="D:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"D:\WINDOWS\system32\PnkBstrB.exe"="D:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\hry\BITVA O STREDOZEM\game.dat"="C:\hry\BITVA O STREDOZEM\game.dat:*:Enabled:The Battle for Middle-earth (tm)"
"D:\Program Files\TeamViewer\Version6\TeamViewer.exe"="D:\Program Files\TeamViewer\Version6\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"D:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe"="D:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"D:\Program Files\Java\jre6\bin\javaw.exe"="D:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\hry\Alpha Protocol\Binaries\APGame.exe"="C:\hry\Alpha Protocol\Binaries\APGame.exe:*:Enabled:Alpha Protocol"
"D:\Program Files\Skype\Phone\Skype.exe"="D:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\hry\Battle vs. Chess\battlevschess.exe"="C:\hry\Battle vs. Chess\battlevschess.exe:*:Enabled:Battle vs. Chess - Fantasy chess game"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\hry\Colin McDirt 3\dirt3_game.exe"="C:\hry\Colin McDirt 3\dirt3_game.exe:*:Enabled:DiRT 3"
"C:\hry\SHIFT 2 UNLEASHED\shift2u.exe"="C:\hry\SHIFT 2 UNLEASHED\shift2u.exe:*:Enabled:SHIFT 2 UNLEASHED™"
"C:\hry\avatar\bin\Avatar.exe"="C:\hry\avatar\bin\Avatar.exe:*:Enabled:James Cameron's AVATAR(tm): THE GAME"
"C:\hry\avatar\bin\AvatarLauncher.exe"="C:\hry\avatar\bin\AvatarLauncher.exe:*:Enabled:Updater"
"C:\hry\Attack on Pearl Harbor\Attack On Pearl Harbor.exe"="C:\hry\Attack on Pearl Harbor\Attack On Pearl Harbor.exe:*:Enabled:Attack On Pearl Harbor"
"D:\Documents and Settings\xyz\Plocha\dfd\Flash-Player.exe"="D:\Documents and Settings\xyz\Plocha\dfd\Flash-Player.exe:*:Enabled:D:\Documents and Settings\xyz\Plocha\dfd\Flash-Player.exe"
"D:\WINDOWS\update.1\svchost.exe"="D:\WINDOWS\update.1\svchost.exe:*:Enabled:D:\WINDOWS\update.1\svchost.exe"
"D:\WINDOWS\update.2\svchost.exe"="D:\WINDOWS\update.2\svchost.exe:*:Enabled:D:\WINDOWS\update.2\svchost.exe"
"D:\WINDOWS\update.2\3014.exe"="D:\WINDOWS\update.2\3014.exe:*:Enabled:D:\WINDOWS\update.2\3014.exe"
"D:\WINDOWS\update.3\svchost.exe"="D:\WINDOWS\update.3\svchost.exe:*:Enabled:D:\WINDOWS\update.3\svchost.exe"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\hry\Dragon Age 2\bin_ship\DragonAge2.exe"="C:\hry\Dragon Age 2\bin_ship\DragonAge2.exe:*:Enabled:Dragon Age II"
"C:\hry\Dragon Age 2\DragonAge2Launcher.exe"="C:\hry\Dragon Age 2\DragonAge2Launcher.exe:*:Enabled:Dragon Age II Launcher"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
======List of files/folders created in the last 1 months======
2011-07-25 15:46:51 ----A---- D:\WINDOWS\w_distrib_iplist.txt
2011-07-25 15:46:04 ----HD---- D:\WINDOWS\update.3
2011-07-24 11:30:10 ----SHD---- D:\Config.Msi
2011-07-24 11:28:34 ----A---- D:\WINDOWS\system32\ativvamv.dll
2011-07-24 11:28:34 ----A---- D:\WINDOWS\system32\atimpc32.dll
2011-07-24 11:28:34 ----A---- D:\WINDOWS\system32\aticalrt.dll
2011-07-24 11:28:34 ----A---- D:\WINDOWS\system32\aticaldd.dll
2011-07-24 11:28:34 ----A---- D:\WINDOWS\system32\aticalcl.dll
2011-07-24 11:28:34 ----A---- D:\WINDOWS\system32\atibtmon.exe
2011-07-24 11:28:33 ----A---- D:\WINDOWS\system32\atiapfxx.exe
2011-07-24 11:28:29 ----DC---- D:\WINDOWS\system32\DRVSTORE
2011-07-24 11:28:15 ----D---- D:\Program Files\ATI
2011-07-24 11:17:12 ----D---- D:\ATI
2011-07-24 11:12:30 ----A---- D:\WINDOWS\ddh_iplist.txt
2011-07-24 11:12:19 ----D---- D:\WINDOWS\ufa
2011-07-24 11:12:19 ----D---- D:\WINDOWS\rpcminer
2011-07-24 11:12:19 ----D---- D:\WINDOWS\phoenix
2011-07-24 11:12:08 ----A---- D:\WINDOWS\systemup.exe
2011-07-24 11:11:54 ----A---- D:\WINDOWS\btc_client_iplist.txt
2011-07-24 11:10:56 ----HD---- D:\WINDOWS\update.5.0
2011-07-24 11:10:55 ----A---- D:\WINDOWS\iecheck_iplist.txt
2011-07-24 11:10:07 ----A---- D:\WINDOWS\l1rezerv.exe
2011-07-24 11:08:27 ----HD---- D:\WINDOWS\update.2
2011-07-24 11:08:23 ----A---- D:\WINDOWS\unrar.exe
2011-07-24 11:07:31 ----A---- D:\WINDOWS\iplist.txt
2011-07-24 11:07:16 ----A---- D:\WINDOWS\loader2.exe_ok
2011-07-24 11:07:14 ----A---- D:\WINDOWS\sysdriver32_.exe
2011-07-24 11:06:58 ----A---- D:\WINDOWS\sysdriver32.exe
2011-07-24 11:06:42 ----A---- D:\WINDOWS\front_ip_list.txt
2011-07-24 11:06:37 ----HD---- D:\WINDOWS\update.1
2011-07-24 11:06:37 ----A---- D:\WINDOWS\services32.exe
2011-07-21 20:50:18 ----A---- D:\WINDOWS\system32\drivers\utqyotyy.sys
2011-07-21 16:18:06 ----SHD---- D:\RECYCLER
2011-07-21 16:06:34 ----A---- D:\ComboFix.txt
2011-07-21 15:58:51 ----D---- D:\WINDOWS\temp
2011-07-20 21:24:25 ----A---- D:\WINDOWS\NIRCMD.exe
2011-07-20 21:24:25 ----A---- D:\WINDOWS\MBR.exe
2011-07-20 21:24:24 ----A---- D:\WINDOWS\zip.exe
2011-07-20 21:24:24 ----A---- D:\WINDOWS\SWXCACLS.exe
2011-07-20 21:24:24 ----A---- D:\WINDOWS\SWSC.exe
2011-07-20 21:24:24 ----A---- D:\WINDOWS\SWREG.exe
2011-07-20 21:24:24 ----A---- D:\WINDOWS\sed.exe
2011-07-20 21:24:24 ----A---- D:\WINDOWS\grep.exe
2011-07-20 21:24:15 ----D---- D:\WINDOWS\ERDNT
2011-07-20 21:24:02 ----D---- D:\Qoobox
2011-07-17 07:04:33 ----D---- D:\Documents and Settings\xyz\Data aplikací\Malwarebytes
2011-07-17 07:04:27 ----D---- D:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2011-07-17 07:04:24 ----D---- D:\Program Files\Malwarebytes' Anti-Malware
2011-07-16 22:27:00 ----D---- D:\Program Files\CrystalDiskInfo
2011-07-16 07:55:48 ----AD---- D:\Documents and Settings\xyz\Data aplikací\.minecraft
2011-07-15 21:55:27 ----D---- D:\Documents and Settings\xyz\Data aplikací\GHISLER
2011-07-15 21:55:27 ----A---- D:\WINDOWS\UC.PIF
2011-07-15 21:55:27 ----A---- D:\WINDOWS\RAR.PIF
2011-07-15 21:55:27 ----A---- D:\WINDOWS\PKZIP.PIF
2011-07-15 21:55:27 ----A---- D:\WINDOWS\PKUNZIP.PIF
2011-07-15 21:55:27 ----A---- D:\WINDOWS\NOCLOSE.PIF
2011-07-15 21:55:27 ----A---- D:\WINDOWS\LHA.PIF
2011-07-15 21:55:27 ----A---- D:\WINDOWS\ARJ.PIF
2011-07-15 07:26:14 ----D---- D:\rsit
2011-07-15 07:26:14 ----D---- D:\Program Files\trend micro
2011-07-14 18:17:32 ----D---- D:\Program Files\Vag-Labs
2011-07-14 18:13:06 ----D---- D:\Documents and Settings\xyz\Data aplikací\mncraft173
2011-07-14 18:12:53 ----D---- D:\Documents and Settings\xyz\Data aplikací\mncraft
2011-07-14 17:48:45 ----D---- D:\Documents and Settings\xyz\Data aplikací\BinarySense
2011-07-14 17:40:18 ----D---- D:\Program Files\DiskCheckup
2011-07-14 17:34:17 ----D---- D:\Program Files\MinecraftAlpha
2011-07-08 20:29:15 ----D---- D:\Documents and Settings\All Users\Data aplikací\Solidshield
======List of files/folders modified in the last 1 months======
2011-07-31 12:30:51 ----A---- D:\WINDOWS\SchedLgU.Txt
2011-07-29 09:42:58 ----D---- D:\WINDOWS\system32\config
2011-07-25 16:16:51 ----D---- D:\WINDOWS\system32\CatRoot2
2011-07-25 15:46:51 ----D---- D:\WINDOWS
2011-07-24 19:33:21 ----HD---- D:\WINDOWS\inf
2011-07-24 19:32:25 ----D---- D:\WINDOWS\system32
2011-07-24 11:30:48 ----SHD---- D:\WINDOWS\Installer
2011-07-24 11:29:14 ----RSHDC---- D:\WINDOWS\system32\dllcache
2011-07-24 11:29:09 ----D---- D:\WINDOWS\system32\drivers
2011-07-24 11:28:26 ----D---- D:\Program Files\ATI Technologies
2011-07-24 11:28:15 ----RD---- D:\Program Files
2011-07-24 11:12:55 ----SHD---- D:\System Volume Information
2011-07-24 11:12:55 ----D---- D:\WINDOWS\system32\Restore
2011-07-24 11:09:42 ----D---- D:\WINDOWS\system32\drivers\etc
2011-07-21 16:02:27 ----A---- D:\WINDOWS\system.ini
2011-07-21 15:55:28 ----D---- D:\WINDOWS\AppPatch
2011-07-21 15:55:11 ----D---- D:\Program Files\Common Files
2011-07-20 21:48:42 ----SD---- D:\WINDOWS\Tasks
2011-07-19 19:48:34 ----AD---- D:\Documents and Settings\All Users\Data aplikací\TEMP
2011-07-17 12:46:16 ----HDC---- D:\WINDOWS\$NtUninstallKB967715$
2011-07-15 08:57:20 ----HD---- D:\Program Files\InstallShield Installation Information
2011-07-15 08:22:13 ----A---- D:\WINDOWS\system32\PerfStringBackup.INI
2011-07-15 08:09:39 ----D---- D:\Program Files\Common Files\Microsoft Shared
2011-07-15 08:02:30 ----RD---- D:\Program Files\Skype
2011-07-15 07:51:40 ----D---- D:\Program Files\Your Uninstaller 2010
2011-07-15 07:26:19 ----D---- D:\WINDOWS\Prefetch
2011-07-15 07:07:55 ----D---- D:\Program Files\Defraggler
2011-07-14 18:19:25 ----D---- D:\WINDOWS\system32\DirectX
2011-07-14 18:18:38 ----RSD---- D:\WINDOWS\assembly
2011-07-13 17:10:26 ----D---- D:\Documents and Settings\xyz\Data aplikací\uTorrent
2011-07-08 19:19:11 ----D---- D:\Documents and Settings\xyz\Data aplikací\My Battle for Middle-earth Files
2011-07-06 10:36:09 ----D---- D:\Documents and Settings\All Users\Data aplikací\Adobe
2011-07-05 13:05:43 ----D---- D:\Program Files\Common Files\Adobe
2011-07-03 19:13:55 ----D---- D:\WINDOWS\WinSxS
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 JGOGO;JMicron Hot-Plug Driver; D:\WINDOWS\system32\DRIVERS\JGOGO.sys [2006-02-07 6912]
R0 JRAID;JRAID; D:\WINDOWS\system32\DRIVERS\jraid.sys [2006-08-04 43904]
R0 sptd;sptd; D:\WINDOWS\System32\Drivers\sptd.sys [2011-04-19 717296]
R1 intelppm;Řadič procesoru Intel; D:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; D:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; D:\WINDOWS\system32\drivers\ADIHdAud.sys [2006-05-02 229376]
R3 AEAudio;AE Audio Service; D:\WINDOWS\system32\drivers\AEAudio.sys [2006-04-27 93824]
R3 ati2mtag;ati2mtag; D:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2011-05-25 6554624]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; D:\WINDOWS\system32\drivers\AtiHdmi.sys [2008-07-02 89600]
R3 hamachi;Hamachi Network Interface; D:\WINDOWS\system32\DRIVERS\hamachi.sys [2011-05-03 25280]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; D:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; D:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 mouhid;Ovladač myši standardu HID; D:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; D:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; D:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2006-07-27 83712]
R3 SenFiltService;SenFilt Service; D:\WINDOWS\system32\drivers\Senfilt.sys [2006-03-17 392960]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; D:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; D:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 arj74j8j;arj74j8j; D:\WINDOWS\system32\drivers\arj74j8j.sys []
S3 BrScnUsb;Brother USB Still Image driver; D:\WINDOWS\System32\Drivers\BrScnUsb.sys [2004-10-15 15295]
S3 BthEnum;Služba Bluetooth Enumerator; D:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-14 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); D:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-14 101120]
S3 BTHPORT;Ovladač portu Bluetooth; D:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; D:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-14 18944]
S3 catchme;catchme; \??\D:\ComboFix\catchme.sys []
S3 nv;nv; D:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2004-08-03 1897408]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); D:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-14 59136]
S3 usbprint;Třída USB Printer; D:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; D:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 utqyotyy;AVZ Kernel Driver; \??\D:\WINDOWS\system32\Drivers\utqyotyy.sys []
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; D:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; D:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati HotKey Poller;Ati HotKey Poller; D:\WINDOWS\system32\Ati2evxx.exe [2011-05-25 643072]
R2 Brother XP spl Service;BrSplService; D:\WINDOWS\system32\brsvc01a.exe [2002-04-12 57344]
R2 BthServ;Bluetooth Support Service; D:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; D:\Program Files\Java\jre6\bin\jqs.exe [2011-05-03 153376]
R2 PnkBstrA;PnkBstrA; D:\WINDOWS\system32\PnkBstrA.exe [2011-04-21 75136]
R2 srvbtcclient;srvbtcclient; D:\WINDOWS\update.5.0\svchost.exe [2011-07-26 348672]
R2 srviecheck;srviecheck; D:\WINDOWS\update.2\svchost.exe [2011-07-27 502272]
R2 srvsysdriver32;srvsysdriver32; D:\WINDOWS\sysdriver32.exe [2011-07-25 256000]
R2 StarWindServiceAE;StarWind AE Service; D:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 wxpdrivers;wxpdrivers; D:\WINDOWS\update.1\svchost.exe [2011-07-24 1185792]
S2 ATI Smart;ATI Smart; D:\WINDOWS\system32\ati2sgag.exe [2008-10-03 593920]
S3 aspnet_state;ASP.NET State Service; D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; D:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; D:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; D:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; D:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Stáhněte Roguekiller 
záložka 