MBR sektor 1. fyzického disku Win32/Agent.SDG.Gen

Zpráva

krepi · #1 Příspěvek od **krepi** » 17 zář 2011 11:09

Na žádost jsem založil nové téma,osobně si myslím,že NODem to nebude,je v dalších 5ti PC a ntb a nez problémů v boot sektoru HDD,ale vy jste odborníci,NODa dávám pryč a místo něj dám Aviru a udělám log.
Avira hlásí také chybu v boot sektoru.
Osobně bych Aviru nechtěl,hlásí stále,že něco nalela a člověk neví co může smazat a co ne.
Zde je log:

Logfile of random's system information tool 1.09 (written by random/random)
Run by Krepi at 2011-09-17 12:08:50
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 89 GB (89%) free of 100 GB
Total RAM: 3071 MB (78% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:08:53, on 17.9.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Genius\ioCentre\gTaskBar.exe
C:\Program Files\Common Files\ACD Systems\EN\DevDetect.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common\Bin\WinCinemaMgr.exe
C:\Program Files\HiCDEject\HiCDEject.exe
D:\SpeedFan\speedfan.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Windows Commander 5\WINCMD32.EXE
C:\Genius\ioCentre\gMouseTask.exe
C:\Genius\ioCentre\gKbdTask.exe
C:\Genius\ioCentre\gAutoPan.exe
C:\Genius\ioCentre\gAutoScroll.exe
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\Genius\ioCentre\gZoom.exe
C:\Genius\ioCentre\gMGlass.exe
C:\Genius\ioCentre\gIMMgm.exe
C:\Genius\ioCentre\gKbStatus.exe
C:\Genius\ioCentre\gDeskMgm.exe
C:\Genius\ioCentre\gTaskSwitch.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\vssvc.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\dllhost.exe
G:\Staženo\RSIT.exe
C:\Program Files\trend micro\Krepi.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [ioCentre] C:\Genius\ioCentre\gTaskBar.exe
O4 - HKLM\..\Run: [Device Detector] DevDetect.exe -autorun
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1214440339-1364589140-682003330-1005\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: DVD open.lnk = C:\Program Files\HiCDEject\HiCDEject.exe
O4 - Startup: speedfan.lnk = D:\SpeedFan\speedfan.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\Common\Bin\WinCinemaMgr.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: Antiwpa - Invalid registry found
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Dr.Web Scanning Engine (DrWebEngine) (DrWebEngine) - Unknown owner - C:\Program Files\Common Files\Doctor Web\Scanning Engine\dwengine.exe (file missing)
O23 - Service: GeniusMouseService - Unknown owner - C:\Genius\ioCentre\GMouseService.exe (file missing)
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

--
End of file - 7646 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Krepi\Data aplikací\Mozilla\Firefox\Profiles\lthcq01c.default

prefs.js - "browser.startup.homepage" - "seznam.cz"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}:6.0.27, jqs@sun.com:1.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.22"

"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{B13721C7-F507-4982-B2E5-502A71474FED}
{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
NPOFFICE.DLL

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\Krepi\Data aplikací\Mozilla\Firefox\Profiles\lthcq01c.default\searchplugins\
icqplugin.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-09-16 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-09-16 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2010-10-04 1049912]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-07-03 16876032]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-15 932288]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2011-08-03 13892200]
"NvMediaCenter"=NvMCTray.dll,NvTaskbarInit -login []
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2011-07-05 1632360]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]
"ioCentre"=C:\Genius\ioCentre\gTaskBar.exe [2007-12-17 61440]
"Device Detector"=DevDetect.exe -autorun []
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2010-09-08 421888]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2011-09-17 281768]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 40448]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
InterVideo WinCinema Manager.lnk - C:\Program Files\Common\Bin\WinCinemaMgr.exe

C:\Documents and Settings\Krepi\Nabídka Start\Programy\Po spuštění
DVD open.lnk - C:\Program Files\HiCDEject\HiCDEject.exe
speedfan.lnk - D:\SpeedFan\speedfan.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Antiwpa]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\TeamViewer3\TeamViewer.exe"="D:\TeamViewer3\TeamViewer.exe:*:Enabled:TeamViewer Remote Control Application"
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\WinDVD5\WinDVD.exe"="C:\Program Files\WinDVD5\WinDVD.exe:*:Enabled:WinDVD"
"C:\Program Files\ICQ7.0\ICQ.exe"="C:\Program Files\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Program Files\ICQ7.0\aolload.exe"="C:\Program Files\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Run a DLL as an App"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\ICQ7.0\ICQ.exe"="C:\Program Files\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Program Files\ICQ7.0\aolload.exe"="C:\Program Files\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"VIDC.ACDV"=ACDV.dll

======List of files/folders created in the last 1 month======

2011-09-17 11:59:27 ----D---- C:\WINDOWS\system32\NtmsData
2011-09-17 11:58:16 ----A---- C:\WINDOWS\system32\drivers\ssmdrv.sys
2011-09-17 11:58:15 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys
2011-09-17 11:58:15 ----A---- C:\WINDOWS\system32\drivers\avgntmgr.sys
2011-09-17 11:58:15 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys
2011-09-17 11:58:15 ----A---- C:\WINDOWS\system32\drivers\avgntdd.sys
2011-09-17 11:58:14 ----D---- C:\Program Files\Avira
2011-09-17 11:58:14 ----D---- C:\Documents and Settings\All Users\Data aplikací\Avira
2011-09-17 03:30:04 ----AH---- C:\WINDOWS\system32\ezsidmv.dat
2011-09-17 03:30:03 ----D---- C:\Documents and Settings\Krepi\Data aplikací\skypePM
2011-09-17 03:07:14 ----A---- C:\WINDOWS\system32\drivers\cpuz132_x32.sys
2011-09-17 03:07:13 ----D---- C:\Program Files\CPUID
2011-09-17 02:58:52 ----D---- C:\WINDOWS\RegisteredPackages
2011-09-17 02:48:10 ----HD---- C:\WINDOWS\NiwradSoft Shell Pack
2011-09-17 02:43:02 ----A---- C:\WINDOWS\system32\drivers\sptd.sys
2011-09-17 02:42:57 ----D---- C:\Program Files\DAEMON Tools Lite
2011-09-17 02:42:10 ----D---- C:\Documents and Settings\Krepi\Data aplikací\DAEMON Tools Lite
2011-09-17 02:42:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2011-09-17 02:38:21 ----D---- C:\Documents and Settings\Krepi\Data aplikací\ACD Systems
2011-09-17 02:37:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\ACD Systems
2011-09-17 02:37:44 ----D---- C:\Program Files\Common Files\ACD Systems
2011-09-17 02:37:44 ----D---- C:\Program Files\ACD Systems
2011-09-17 02:36:20 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2011-09-17 02:36:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2570791$
2011-09-17 02:36:13 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2011-09-17 02:36:09 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2011-09-17 02:36:08 ----D---- C:\Documents and Settings\Krepi\Data aplikací\Skype
2011-09-17 02:36:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2011-09-17 02:35:59 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2011-09-17 02:35:57 ----D---- C:\Program Files\Skype
2011-09-17 02:35:57 ----D---- C:\Program Files\Common Files\Skype
2011-09-17 02:35:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2011-09-17 02:35:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2011-09-17 02:35:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2567680$
2011-09-17 02:35:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2011-09-17 02:35:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2616676$
2011-09-17 02:35:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2011-09-17 02:35:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2011-09-17 02:35:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2011-09-17 02:35:24 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2011-09-17 02:35:20 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2011-09-17 02:35:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2011-09-17 02:35:13 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2011-09-17 02:35:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2011-09-17 02:34:59 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2011-09-17 02:34:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2011-09-17 02:34:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2011-09-17 02:34:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2011-09-17 02:34:11 ----D---- C:\WINDOWS\ie8updates
2011-09-17 02:33:57 ----D---- C:\Program Files\ICQ6Toolbar
2011-09-17 02:33:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\ICQ
2011-09-17 02:33:51 ----D---- C:\WINDOWS\WBEM
2011-09-17 02:33:05 ----D---- C:\Documents and Settings\Krepi\Data aplikací\ICQ
2011-09-17 02:32:54 ----HDC---- C:\WINDOWS\ie8
2011-09-17 02:32:48 ----A---- C:\WINDOWS\ODBC.INI
2011-09-17 02:32:47 ----D---- C:\Program Files\ICQ7.0
2011-09-17 02:32:42 ----A---- C:\WINDOWS\system32\mdimon.dll
2011-09-17 02:31:54 ----D---- C:\Program Files\Common Files\DESIGNER
2011-09-17 02:31:51 ----D---- C:\Program Files\Microsoft Works
2011-09-17 02:31:47 ----D---- C:\Program Files\Microsoft Visual Studio
2011-09-17 02:31:39 ----D---- C:\WINDOWS\SHELLNEW
2011-09-17 02:31:19 ----D---- C:\Program Files\Microsoft.NET
2011-09-17 02:31:18 ----D---- C:\Program Files\Microsoft Office 2003
2011-09-17 02:29:33 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2011-09-17 02:29:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2011-09-17 02:29:26 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2011-09-17 02:29:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2011-09-17 02:28:06 ----A---- C:\WINDOWS\system32\MRT.exe
2011-09-17 02:28:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2011-09-17 02:27:58 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2011-09-17 02:27:46 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2011-09-17 02:27:43 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2011-09-17 02:27:39 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2011-09-17 02:27:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2011-09-17 02:27:33 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2011-09-17 02:27:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2510581$
2011-09-17 02:27:26 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2011-09-17 02:27:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2476490$
2011-09-17 02:27:18 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2011-09-17 02:27:13 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2011-09-17 02:27:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\HPSSUPPLY
2011-09-17 02:27:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2503665$
2011-09-17 02:27:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2011-09-17 02:26:59 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2011-09-17 02:26:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2011-09-17 02:26:53 ----D---- C:\Program Files\HP
2011-09-17 02:26:50 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2011-09-17 02:26:47 ----A---- C:\WINDOWS\system32\WRes1200.txt
2011-09-17 02:26:47 ----A---- C:\WINDOWS\system32\W600dpi.txt
2011-09-17 02:26:47 ----A---- C:\WINDOWS\system32\HRes600.txt
2011-09-17 02:26:47 ----A---- C:\WINDOWS\system32\HRes1200.txt
2011-09-17 02:26:47 ----A---- C:\WINDOWS\system32\HPPLVS.dll
2011-09-17 02:26:47 ----A---- C:\WINDOWS\system32\HP1006LM.DLL
2011-09-17 02:26:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2011-09-17 02:26:42 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys
2011-09-17 02:26:40 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2011-09-17 02:26:37 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2011-09-17 02:26:34 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2011-09-17 02:26:29 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2011-09-17 02:26:26 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2011-09-17 02:26:22 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2011-09-17 02:26:18 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2011-09-17 02:26:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2570222$
2011-09-17 02:26:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2011-09-17 02:25:59 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2011-09-17 02:25:56 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2011-09-17 02:25:52 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2011-09-17 02:25:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2412687$
2011-09-17 02:25:45 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2011-09-17 02:25:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2570947$
2011-09-17 02:25:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2508272$
2011-09-17 02:25:30 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2011-09-17 02:25:26 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2011-09-17 02:25:20 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2011-09-17 02:25:15 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2011-09-17 02:25:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2507618$
2011-09-17 02:25:09 ----RSD---- C:\WINDOWS\assembly
2011-09-17 02:25:08 ----D---- C:\WINDOWS\Microsoft.NET
2011-09-17 02:25:07 ----D---- C:\WINDOWS\system32\URTTemp
2011-09-17 02:25:06 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2011-09-17 02:25:03 ----A---- C:\WINDOWS\system32\wmpns.dll
2011-09-17 02:24:58 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2011-09-17 02:24:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2011-09-17 02:24:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2011-09-17 02:24:37 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2011-09-17 02:24:31 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2011-09-17 02:24:29 ----HD---- C:\Program Files\Avago-HP
2011-09-17 02:24:22 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2011-09-17 02:24:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2011-09-17 02:24:11 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2011-09-17 02:24:08 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2011-09-17 02:24:03 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2011-09-17 02:24:00 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2011-09-17 02:23:57 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2011-09-17 02:23:54 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2011-09-17 02:23:49 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2011-09-17 02:23:46 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2011-09-17 02:23:43 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2011-09-17 02:23:40 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2011-09-17 02:23:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2559049$
2011-09-17 02:23:28 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2011-09-17 02:23:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893$
2011-09-17 02:23:22 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2011-09-17 02:23:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2011-09-17 02:23:09 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2011-09-17 02:23:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2541763$
2011-09-17 02:23:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2544521$
2011-09-17 02:23:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2555917$
2011-09-17 02:22:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2011-09-17 02:22:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2011-09-17 02:22:48 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2011-09-17 02:22:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2011-09-17 02:22:41 ----SHD---- C:\WINDOWS\ftpcache
2011-09-17 02:22:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2562937$
2011-09-17 02:22:20 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2011-09-17 02:22:16 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2011-09-17 02:22:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2011-09-17 02:22:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2011-09-17 01:50:01 ----A---- C:\WINDOWS\system32\drivers\gMouUsb16.sys
2011-09-17 01:50:01 ----A---- C:\WINDOWS\system32\drivers\gMouPS2.sys
2011-09-17 01:50:01 ----A---- C:\WINDOWS\system32\drivers\gHidPnp.sys
2011-09-17 01:49:16 ----D---- C:\Genius
2011-09-17 01:49:00 ----D---- C:\Documents and Settings\Krepi\Data aplikací\InstallShield
2011-09-17 01:42:22 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2011-09-17 01:40:22 ----N---- C:\WINDOWS\system32\browserchoice.exe
2011-09-17 01:22:38 ----A---- C:\WINDOWS\system32\TURegOpt.exe
2011-09-17 01:22:37 ----A---- C:\WINDOWS\system32\uxtuneup.dll
2011-09-17 01:22:29 ----D---- C:\Documents and Settings\Krepi\Data aplikací\TuneUp Software
2011-09-17 01:22:23 ----D---- C:\Program Files\TuneUp Utilities 2010
2011-09-17 01:22:11 ----D---- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
2011-09-17 01:10:19 ----SHD---- C:\Documents and Settings\All Users\Data aplikací\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2011-09-17 00:57:01 ----D---- C:\rsit
2011-09-17 00:57:01 ----D---- C:\Program Files\trend micro
2011-09-17 00:05:30 ----D---- C:\Documents and Settings\Krepi\Data aplikací\InterVideo
2011-09-17 00:04:34 ----D---- C:\Program Files\Common Files\InterVideo
2011-09-17 00:02:12 ----D---- C:\Program Files\Common
2011-09-17 00:02:11 ----D---- C:\Program Files\Creative
2011-09-17 00:02:11 ----A---- C:\WINDOWS\system32\drivers\ctdvda2k.sys
2011-09-17 00:02:11 ----A---- C:\WINDOWS\system32\ctdvda32.dll
2011-09-17 00:02:11 ----A---- C:\WINDOWS\system32\Ctaa1.dat
2011-09-17 00:02:11 ----A---- C:\WINDOWS\system32\cddvdint.dll
2011-09-17 00:02:04 ----D---- C:\Program Files\WinDVD5
2011-09-16 23:59:20 ----D---- C:\Program Files\Common Files\Java
2011-09-16 23:59:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2011-09-16 23:58:55 ----A---- C:\WINDOWS\system32\javaws.exe
2011-09-16 23:58:55 ----A---- C:\WINDOWS\system32\javaw.exe
2011-09-16 23:58:55 ----A---- C:\WINDOWS\system32\java.exe
2011-09-16 23:58:55 ----A---- C:\WINDOWS\system32\deployJava1.dll
2011-09-16 23:58:48 ----D---- C:\Program Files\Java
2011-09-16 23:57:45 ----D---- C:\Documents and Settings\Krepi\Data aplikací\Sun
2011-09-16 23:47:53 ----SHD---- C:\RECYCLER
2011-09-16 23:43:33 ----N---- C:\WINDOWS\system32\spmsg.dll
2011-09-16 23:43:33 ----D---- C:\WINDOWS\system32\PreInstall
2011-09-16 23:43:33 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2011-09-16 23:43:32 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2011-09-16 23:43:32 ----HD---- C:\WINDOWS\$hf_mig$
2011-09-16 23:35:26 ----D---- C:\WINDOWS\system32\Lang
2011-09-16 23:31:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\NVIDIA Corporation
2011-09-16 23:31:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\NVIDIA
2011-09-16 23:31:07 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-09-16 23:30:59 ----A---- C:\WINDOWS\system32\nvsvc32.exe
2011-09-16 23:30:59 ----A---- C:\WINDOWS\system32\nvmctray.dll
2011-09-16 23:30:59 ----A---- C:\WINDOWS\system32\nvcpl.dll
2011-09-16 23:30:59 ----A---- C:\WINDOWS\system32\nvcolor.exe
2011-09-16 23:30:58 ----A---- C:\WINDOWS\system32\nvwddi.dll
2011-09-16 23:30:58 ----A---- C:\WINDOWS\system32\easyupdatusapiu.dll
2011-09-16 23:30:44 ----A---- C:\WINDOWS\system32\nvhdagenco322040.dll
2011-09-16 23:30:42 ----A---- C:\WINDOWS\system32\OpenCL.dll
2011-09-16 23:30:42 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2011-09-16 23:30:42 ----A---- C:\WINDOWS\system32\nvgenco32.dll
2011-09-16 23:30:42 ----A---- C:\WINDOWS\system32\nvdispco32.dll
2011-09-16 23:30:42 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2011-09-16 23:30:41 ----A---- C:\WINDOWS\system32\nvcuvenc.dll
2011-09-16 23:30:41 ----A---- C:\WINDOWS\system32\nvcuda.dll
2011-09-16 23:30:41 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2011-09-16 23:30:41 ----A---- C:\WINDOWS\system32\nvapi.dll
2011-09-16 23:30:41 ----A---- C:\WINDOWS\system32\nv4_disp.dll
2011-09-16 23:30:41 ----A---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2011-09-16 23:27:58 ----D---- C:\Program Files\NVIDIA Corporation
2011-09-16 23:27:39 ----D---- C:\NVIDIA
2011-09-16 23:24:15 ----D---- C:\Documents and Settings\Krepi\Data aplikací\Macromedia
2011-09-16 23:24:15 ----D---- C:\Documents and Settings\Krepi\Data aplikací\Adobe
2011-09-16 23:22:15 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2011-09-16 23:21:37 ----A---- C:\WINDOWS\nsreg.dat
2011-09-16 23:21:32 ----D---- C:\Documents and Settings\Krepi\Data aplikací\Mozilla
2011-09-16 23:19:47 ----A---- C:\WINDOWS\system32\drivers\imagedrv.sys
2011-09-16 23:19:24 ----A---- C:\WINDOWS\system32\picn20.dll
2011-09-16 23:19:23 ----A---- C:\WINDOWS\system32\ImagXpr5.dll
2011-09-16 23:19:23 ----A---- C:\WINDOWS\system32\imagx5.dll
2011-09-16 23:19:23 ----A---- C:\WINDOWS\system32\imagr5.dll
2011-09-16 23:19:22 ----D---- C:\Program Files\Common Files\Ahead
2011-09-16 23:19:22 ----A---- C:\WINDOWS\system32\NeroCheck.exe
2011-09-16 23:19:19 ----D---- C:\Program Files\Ahead
2011-09-16 23:17:50 ----D---- C:\Program Files\Mozilla Firefox
2011-09-16 23:16:53 ----D---- C:\Program Files\QuickTime
2011-09-16 23:16:52 ----D---- C:\Documents and Settings\All Users\Data aplikací\Apple Computer
2011-09-16 23:16:36 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2011-09-16 23:16:36 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2011-09-16 23:16:35 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2011-09-16 23:16:34 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2011-09-16 23:16:33 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2011-09-16 23:16:32 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2011-09-16 23:16:31 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2011-09-16 23:16:29 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2011-09-16 23:16:28 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2011-09-16 23:16:27 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2011-09-16 23:16:26 ----D---- C:\Program Files\Common Files\Apple
2011-09-16 23:16:26 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2011-09-16 23:16:25 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2011-09-16 23:16:24 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2011-09-16 23:16:23 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2011-09-16 23:16:22 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2011-09-16 23:16:22 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2011-09-16 23:16:21 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2011-09-16 23:16:21 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2011-09-16 23:16:19 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2011-09-16 23:16:19 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2011-09-16 23:16:16 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2011-09-16 23:16:15 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2011-09-16 23:16:14 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2011-09-16 23:16:13 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2011-09-16 23:16:12 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2011-09-16 23:16:10 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2011-09-16 23:16:10 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2011-09-16 23:16:09 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2011-09-16 23:16:08 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2011-09-16 23:16:07 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2011-09-16 23:16:06 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2011-09-16 23:16:04 ----D---- C:\Program Files\Apple Software Update
2011-09-16 23:16:04 ----D---- C:\Documents and Settings\All Users\Data aplikací\Apple
2011-09-16 23:16:04 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2011-09-16 23:16:04 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2011-09-16 23:16:03 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2011-09-16 23:16:00 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2011-09-16 23:15:59 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2011-09-16 23:15:59 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2011-09-16 23:15:58 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2011-09-16 23:15:57 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2011-09-16 23:15:56 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2011-09-16 23:15:56 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2011-09-16 23:15:55 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2011-09-16 23:15:54 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2011-09-16 23:15:53 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2011-09-16 23:15:53 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2011-09-16 23:15:50 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2011-09-16 23:15:50 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2011-09-16 23:15:48 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2011-09-16 23:15:47 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2011-09-16 23:15:46 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2011-09-16 23:15:46 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2011-09-16 23:15:45 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2011-09-16 23:15:44 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2011-09-16 23:15:44 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2011-09-16 23:15:44 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2011-09-16 23:15:44 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2011-09-16 23:15:43 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2011-09-16 23:15:43 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2011-09-16 23:15:42 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2011-09-16 23:15:41 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2011-09-16 23:15:41 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2011-09-16 23:15:39 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2011-09-16 23:15:39 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2011-09-16 23:15:39 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2011-09-16 23:15:39 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2011-09-16 23:15:38 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2011-09-16 23:15:38 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2011-09-16 23:15:38 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2011-09-16 23:15:38 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2011-09-16 23:15:38 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2011-09-16 23:15:37 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2011-09-16 23:15:37 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2011-09-16 23:15:37 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2011-09-16 23:15:37 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2011-09-16 23:15:36 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2011-09-16 23:15:36 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2011-09-16 23:15:36 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2011-09-16 23:15:36 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2011-09-16 23:15:36 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2011-09-16 23:15:35 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2011-09-16 23:15:35 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2011-09-16 23:15:35 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2011-09-16 23:15:34 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2011-09-16 23:14:51 ----D---- C:\WINDOWS\Logs
2011-09-16 23:14:23 ----A---- C:\WINDOWS\iun6002.exe
2011-09-16 23:14:17 ----D---- C:\Program Files\Codec Pack - All In 1
2011-09-16 23:14:02 ----A---- C:\WINDOWS\Codec Pack - All In 1 Setup Log.txt
2011-09-16 23:13:38 ----D---- C:\Program Files\WinRAR
2011-09-16 23:13:26 ----D---- C:\Program Files\Common Files\Adobe
2011-09-16 23:13:26 ----D---- C:\Program Files\Adobe
2011-09-16 23:13:22 ----D---- C:\Program Files\7-Zip
2011-09-16 23:13:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2011-09-16 23:11:25 ----D---- C:\Documents and Settings\Krepi\Data aplikací\GlarySoft
2011-09-16 23:10:01 ----D---- C:\Program Files\Absolute Uninstaller
2011-09-16 23:08:35 ----D---- C:\Documents and Settings\Krepi\Data aplikací\TeamViewer
2011-09-16 23:06:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\DVD Shrink
2011-09-16 23:04:25 ----D---- C:\Documents and Settings\Krepi\Data aplikací\Vso
2011-09-16 23:04:23 ----A---- C:\WINDOWS\system32\d3d9caps.dat
2011-09-16 23:02:11 ----D---- C:\Program Files\ESET
2011-09-16 22:54:01 ----D---- C:\Program Files\HiCDEject
2011-09-16 22:53:01 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2011-09-16 22:52:58 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2011-09-16 22:52:56 ----A---- C:\WINDOWS\system32\ChCfg.exe
2011-09-16 22:52:56 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys
2011-09-16 22:52:53 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2011-09-16 22:52:51 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2011-09-16 22:52:49 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2011-09-16 22:52:48 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2011-09-16 22:52:46 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2011-09-16 22:52:44 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys
2011-09-16 22:52:42 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys
2011-09-16 22:52:40 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2011-09-16 22:52:35 ----D---- C:\WINDOWS\system32\RTCOM
2011-09-16 22:52:33 ----A---- C:\WINDOWS\system32\ksuser.dll
2011-09-16 22:52:33 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2011-09-16 22:52:32 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2011-09-16 22:52:28 ----A---- C:\WINDOWS\SoundMan.exe
2011-09-16 22:52:28 ----A---- C:\WINDOWS\SkyTel.exe
2011-09-16 22:52:28 ----A---- C:\WINDOWS\RtlUpd.exe
2011-09-16 22:52:28 ----A---- C:\WINDOWS\RTLCPL.exe
2011-09-16 22:52:27 ----A---- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2011-09-16 22:52:27 ----A---- C:\WINDOWS\RTHDCPL.exe
2011-09-16 22:52:27 ----A---- C:\WINDOWS\MicCal.exe
2011-09-16 22:52:26 ----A---- C:\WINDOWS\alcwzrd.exe
2011-09-16 22:52:26 ----A---- C:\WINDOWS\Alcmtr.exe
2011-09-16 22:52:21 ----A---- C:\WINDOWS\RtlExUpd.dll
2011-09-16 22:52:21 ----A---- C:\WINDOWS\HideWin.exe
2011-09-16 22:52:18 ----D---- C:\Program Files\Common Files\InstallShield
2011-09-16 22:50:29 ----A---- C:\WINDOWS\system32\RTNUninst32.dll
2011-09-16 22:50:29 ----A---- C:\WINDOWS\system32\RtNicProp32.dll
2011-09-16 22:50:29 ----A---- C:\WINDOWS\system32\drivers\Rtenicxp.sys
2011-09-16 22:50:24 ----HD---- C:\Program Files\InstallShield Installation Information
2011-09-16 22:50:24 ----D---- C:\Program Files\Realtek
2011-09-16 22:49:40 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2011-09-16 22:36:25 ----A---- C:\WINDOWS\system32\h323log.txt
2011-09-16 22:15:09 ----A---- C:\WINDOWS\system32\drivers\audstub.sys
2011-09-16 22:14:24 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2011-09-16 22:13:49 ----A---- C:\WINDOWS\system32\usbui.dll
2011-09-16 22:13:48 ----A---- C:\WINDOWS\system32\drivers\wmiacpi.sys
2011-09-16 22:13:08 ----A---- C:\WINDOWS\imsins.BAK
2011-09-16 22:13:06 ----SHD---- C:\WINDOWS\Installer
2011-09-16 22:13:06 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-09-16 22:13:05 ----D---- C:\Program Files\Common Files\ODBC
2011-09-16 22:13:05 ----A---- C:\WINDOWS\ODBCINST.INI
2011-09-16 22:13:02 ----RD---- C:\Program Files
2011-09-16 22:13:02 ----D---- C:\Program Files\Common Files\SpeechEngines
2011-09-16 22:13:02 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-09-16 22:13:02 ----D---- C:\Program Files\Common Files
2011-09-16 22:12:59 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2011-09-16 22:12:59 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2011-09-16 22:12:59 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2011-09-16 22:12:57 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2011-09-16 22:12:57 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2011-09-16 22:12:57 ----RA---- C:\WINDOWS\system32\kbdur.dll
2011-09-16 22:12:57 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2011-09-16 22:12:57 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2011-09-16 22:12:57 ----RA---- C:\WINDOWS\system32\kbdru.dll
2011-09-16 22:12:57 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2011-09-16 22:12:57 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2011-09-16 22:12:57 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2011-09-16 22:12:57 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2011-09-16 22:12:57 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2011-09-16 22:12:57 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2011-09-16 22:12:55 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2011-09-16 22:12:55 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2011-09-16 22:12:55 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2011-09-16 22:12:55 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2011-09-16 22:12:55 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2011-09-16 22:12:55 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2011-09-16 22:12:55 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2011-09-16 22:12:53 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2011-09-16 22:12:53 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2011-09-16 22:12:53 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2011-09-16 22:12:53 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2011-09-16 22:12:53 ----RA---- C:\WINDOWS\system32\kbdest.dll
2011-09-16 22:12:50 ----A---- C:\WINDOWS\system32\kbdsl1.dll
2011-09-16 22:12:50 ----A---- C:\WINDOWS\system32\kbdsl.dll
2011-09-16 22:12:50 ----A---- C:\WINDOWS\system32\kbdro.dll
2011-09-16 22:12:50 ----A---- C:\WINDOWS\system32\kbdpl1.dll
2011-09-16 22:12:50 ----A---- C:\WINDOWS\system32\kbdpl.dll
2011-09-16 22:12:50 ----A---- C:\WINDOWS\system32\kbdhu1.dll
2011-09-16 22:12:50 ----A---- C:\WINDOWS\system32\kbdhu.dll
2011-09-16 22:12:50 ----A---- C:\WINDOWS\system32\kbdcr.dll
2011-09-16 22:12:50 ----A---- C:\WINDOWS\system32\KBDAL.DLL
2011-09-16 22:12:49 ----A---- C:\WINDOWS\system32\kbdycl.dll
2011-09-16 22:12:48 ----A---- C:\WINDOWS\system32\spxcoins.dll
2011-09-16 22:12:48 ----A---- C:\WINDOWS\system32\irclass.dll
2011-09-16 22:12:48 ----A---- C:\WINDOWS\system32\eqnclass.dll
2011-09-16 22:12:48 ----A---- C:\WINDOWS\system32\dgsetup.dll
2011-09-16 22:12:48 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2011-09-16 22:12:46 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2011-09-16 22:12:46 ----A---- C:\WINDOWS\TASKMAN.EXE
2011-09-16 22:12:45 ----A---- C:\WINDOWS\system32\drivers\irenum.sys
2011-09-16 22:12:45 ----A---- C:\WINDOWS\system32\batt.dll
2011-09-16 22:12:45 ----A---- C:\WINDOWS\NOTEPAD.EXE
2011-09-16 22:12:44 ----A---- C:\WINDOWS\system32\storprop.dll
2011-09-16 22:12:38 ----ASH---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2011-09-16 22:12:36 ----RA---- C:\WINDOWS\SET8.tmp
2011-09-16 22:12:34 ----RA---- C:\WINDOWS\SET4.tmp
2011-09-16 22:12:33 ----RA---- C:\WINDOWS\SET3.tmp
2011-09-16 22:12:28 ----D---- C:\WINDOWS\system32\CatRoot2
2011-09-16 22:12:28 ----D---- C:\WINDOWS\system32\CatRoot
2011-09-16 22:12:23 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-09-16 22:12:05 ----A---- C:\WINDOWS\setuplog.txt
2011-09-16 22:12:03 ----D---- C:\Documents and Settings
2011-09-16 22:12:03 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2011-09-16 22:11:23 ----SH---- C:\boot.ini
2011-09-16 22:10:57 ----SHD---- C:\System Volume Information
2011-09-16 22:05:59 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-09-16 22:05:59 ----RD---- C:\WINDOWS\Web
2011-09-16 22:05:59 ----RD---- C:\WINDOWS\Fonts
2011-09-16 22:05:59 ----HD---- C:\WINDOWS\inf
2011-09-16 22:05:59 ----D---- C:\WINDOWS\WinSxS
2011-09-16 22:05:59 ----D---- C:\WINDOWS\twain_32
2011-09-16 22:05:59 ----D---- C:\WINDOWS\Temp
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\wins
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\wbem
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\usmt
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\spool
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\ShellExt
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\Setup
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\ras
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\oobe
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\npp
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\mui
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\inetsrv
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\IME
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\icsxml
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\ias
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\export
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\drivers\etc
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\drivers\disdn
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\drivers
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\dhcp
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\cs-cz
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\cs
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\config
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\3com_dmi
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\3076
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\2052
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\1054
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\1042
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\1041
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\1037
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\1033
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\1031
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\1029
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\1028
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32\1025
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system32
2011-09-16 22:05:59 ----D---- C:\WINDOWS\system
2011-09-16 22:05:59 ----D---- C:\WINDOWS\security
2011-09-16 22:05:59 ----D---- C:\WINDOWS\Resources
2011-09-16 22:05:59 ----D---- C:\WINDOWS\repair
2011-09-16 22:05:59 ----D---- C:\WINDOWS\Provisioning
2011-09-16 22:05:59 ----D---- C:\WINDOWS\pchealth
2011-09-16 22:05:59 ----D---- C:\WINDOWS\PeerNet
2011-09-16 22:05:59 ----D---- C:\WINDOWS\Network Diagnostic
2011-09-16 22:05:59 ----D---- C:\WINDOWS\mui
2011-09-16 22:05:59 ----D---- C:\WINDOWS\msapps
2011-09-16 22:05:59 ----D---- C:\WINDOWS\msagent
2011-09-16 22:05:59 ----D---- C:\WINDOWS\Media
2011-09-16 22:05:59 ----D---- C:\WINDOWS\L2Schemas
2011-09-16 22:05:59 ----D---- C:\WINDOWS\java
2011-09-16 22:05:59 ----D---- C:\WINDOWS\ime
2011-09-16 22:05:59 ----D---- C:\WINDOWS\Help
2011-09-16 22:05:59 ----D---- C:\WINDOWS\Driver Cache
2011-09-16 22:05:59 ----D---- C:\WINDOWS\Debug
2011-09-16 22:05:59 ----D---- C:\WINDOWS\Cursors
2011-09-16 22:05:59 ----D---- C:\WINDOWS\Connection Wizard
2011-09-16 22:05:59 ----D---- C:\WINDOWS\Config
2011-09-16 22:05:59 ----D---- C:\WINDOWS\AppPatch
2011-09-16 22:05:59 ----D---- C:\WINDOWS\addins
2011-09-16 22:05:59 ----D---- C:\WINDOWS
2011-09-16 22:05:58 ----ASH---- C:\pagefile.sys
2011-09-16 20:58:19 ----D---- C:\Windows Commander 5
2011-09-16 20:58:19 ----A---- C:\WINDOWS\wincmd.ini
2011-09-16 20:58:19 ----A---- C:\WINDOWS\UC.PIF
2011-09-16 20:58:19 ----A---- C:\WINDOWS\RAR.PIF
2011-09-16 20:58:19 ----A---- C:\WINDOWS\PKZIP.PIF
2011-09-16 20:58:19 ----A---- C:\WINDOWS\PKUNZIP.PIF
2011-09-16 20:58:19 ----A---- C:\WINDOWS\NOCLOSE.PIF
2011-09-16 20:58:19 ----A---- C:\WINDOWS\LHA.PIF
2011-09-16 20:58:19 ----A---- C:\WINDOWS\ARJ.PIF
2011-09-16 20:48:18 ----D---- C:\Documents and Settings\Krepi\Data aplikací\Identities
2011-09-16 20:48:17 ----HD---- C:\Program Files\Uninstall Information
2011-09-16 20:48:14 ----SD---- C:\Documents and Settings\Krepi\Data aplikací\Microsoft
2011-09-16 20:48:14 ----ASH---- C:\Documents and Settings\Krepi\Data aplikací\desktop.ini
2011-09-16 20:47:42 ----D---- C:\WINDOWS\SoftwareDistribution
2011-09-16 20:47:41 ----D---- C:\WINDOWS\Prefetch
2011-09-16 20:47:38 ----SD---- C:\WINDOWS\system32\Microsoft
2011-09-16 20:47:38 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-09-16 20:43:31 ----AS---- C:\WINDOWS\bootstat.dat
2011-09-16 20:42:16 ----D---- C:\WINDOWS\system32\xircom
2011-09-16 20:42:16 ----D---- C:\Program Files\xerox
2011-09-16 20:42:16 ----D---- C:\Program Files\microsoft frontpage
2011-09-16 20:42:07 ----RASH---- C:\MSDOS.SYS
2011-09-16 20:42:07 ----RASH---- C:\IO.SYS
2011-09-16 20:42:07 ----A---- C:\WINDOWS\control.ini
2011-09-16 20:42:07 ----A---- C:\CONFIG.SYS
2011-09-16 20:42:07 ----A---- C:\AUTOEXEC.BAT
2011-09-16 20:41:59 ----A---- C:\WINDOWS\OEWABLog.txt
2011-09-16 20:41:56 ----A---- C:\WINDOWS\system32\mapi32.dll
2011-09-16 20:41:25 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-09-16 20:41:25 ----RD---- C:\WINDOWS\Offline Web Pages
2011-09-16 20:41:19 ----HD---- C:\Program Files\WindowsUpdate
2011-09-16 20:41:16 ----D---- C:\Program Files\Online Services
2011-09-16 20:40:57 ----D---- C:\WINDOWS\system32\DirectX
2011-09-16 20:40:48 ----A---- C:\WINDOWS\system32\atrace.dll
2011-09-16 20:40:44 ----A---- C:\WINDOWS\system32\desktop.ini
2011-09-16 20:40:44 ----A---- C:\WINDOWS\desktop.ini
2011-09-16 20:40:34 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2011-09-16 20:40:33 ----A---- C:\WINDOWS\system32\acctres.dll
2011-09-16 20:40:32 ----D---- C:\Program Files\Common Files\Services
2011-09-16 20:40:28 ----SD---- C:\WINDOWS\Tasks
2011-09-16 20:40:28 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2011-09-16 20:40:27 ----D---- C:\Program Files\Common Files\MSSoap
2011-09-16 20:40:20 ----D---- C:\WINDOWS\srchasst
2011-09-16 20:40:19 ----D---- C:\WINDOWS\system32\Macromed
2011-09-16 20:40:14 ----A---- C:\WINDOWS\system32\wuweb.dll
2011-09-16 20:40:14 ----A---- C:\WINDOWS\system32\wucltui.dll
2011-09-16 20:40:14 ----A---- C:\WINDOWS\system32\wuauserv.dll
2011-09-16 20:40:14 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2011-09-16 20:40:13 ----A---- C:\WINDOWS\system32\wups.dll
2011-09-16 20:40:13 ----A---- C:\WINDOWS\system32\wuaueng.dll
2011-09-16 20:40:13 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2011-09-16 20:40:13 ----A---- C:\WINDOWS\system32\wuauclt.exe
2011-09-16 20:40:13 ----A---- C:\WINDOWS\system32\wuapi.dll
2011-09-16 20:40:13 ----A---- C:\WINDOWS\system32\bitsprx4.dll
2011-09-16 20:40:13 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2011-09-16 20:40:13 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2011-09-16 20:40:12 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2011-09-16 20:40:12 ----A---- C:\WINDOWS\system32\qmgr.dll
2011-09-16 20:40:06 ----D---- C:\Program Files\Movie Maker
2011-09-16 20:39:39 ----A---- C:\WINDOWS\system32\safrslv.dll
2011-09-16 20:39:39 ----A---- C:\WINDOWS\system32\safrdm.dll
2011-09-16 20:39:39 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2011-09-16 20:39:39 ----A---- C:\WINDOWS\system32\racpldlg.dll
2011-09-16 20:39:33 ----A---- C:\WINDOWS\system32\fltlib.dll
2011-09-16 20:39:32 ----D---- C:\WINDOWS\system32\Restore
2011-09-16 20:39:32 ----A---- C:\WINDOWS\system32\srrstr.dll
2011-09-16 20:39:32 ----A---- C:\WINDOWS\system32\fltMc.exe
2011-09-16 20:39:32 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2011-09-16 20:39:31 ----A---- C:\WINDOWS\system32\srsvc.dll
2011-09-16 20:39:31 ----A---- C:\WINDOWS\system32\srclient.dll
2011-09-16 20:39:31 ----A---- C:\WINDOWS\system32\drivers\sr.sys
2011-09-16 20:39:30 ----A---- C:\WINDOWS\system32\mnmdd.dll
2011-09-16 20:39:30 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2011-09-16 20:39:30 ----A---- C:\WINDOWS\system32\ils.dll
2011-09-16 20:39:29 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2011-09-16 20:39:29 ----A---- C:\WINDOWS\system32\msconf.dll
2011-09-16 20:39:29 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2011-09-16 20:39:25 ----D---- C:\Program Files\NetMeeting
2011-09-16 20:39:25 ----A---- C:\WINDOWS\system32\msoert2.dll
2011-09-16 20:39:25 ----A---- C:\WINDOWS\system32\msoeacct.dll
2011-09-16 20:39:23 ----A---- C:\WINDOWS\system32\inetres.dll
2011-09-16 20:39:22 ----A---- C:\WINDOWS\system32\inetcomm.dll
2011-09-16 20:39:19 ----D---- C:\Program Files\Outlook Express
2011-09-16 20:39:19 ----A---- C:\WINDOWS\system32\schedsvc.dll
2011-09-16 20:39:19 ----A---- C:\WINDOWS\system32\mstinit.exe
2011-09-16 20:39:19 ----A---- C:\WINDOWS\system32\mstask.dll
2011-09-16 20:39:18 ----A---- C:\WINDOWS\system32\isign32.dll
2011-09-16 20:39:18 ----A---- C:\WINDOWS\system32\icwphbk.dll
2011-09-16 20:39:18 ----A---- C:\WINDOWS\system32\icwdial.dll
2011-09-16 20:39:17 ----A---- C:\WINDOWS\system32\inetcfg.dll
2011-09-16 20:39:09 ----D---- C:\Program Files\Common Files\System
2011-09-16 20:39:07 ----D---- C:\Program Files\Internet Explorer
2011-09-16 20:39:05 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2011-09-16 20:38:57 ----D---- C:\Program Files\ComPlus Applications
2011-09-16 20:38:55 ----A---- C:\WINDOWS\vbaddin.ini
2011-09-16 20:38:55 ----A---- C:\WINDOWS\vb.ini
2011-09-16 20:38:51 ----D---- C:\WINDOWS\Registration
2011-09-16 20:38:27 ----D---- C:\Program Files\Windows Media Player
2011-09-16 20:38:21 ----D---- C:\Program Files\Messenger
2011-09-16 20:38:16 ----D---- C:\Program Files\MSN Gaming Zone
2011-09-16 20:38:16 ----A---- C:\WINDOWS\system32\write.exe
2011-09-16 20:38:04 ----A---- C:\WINDOWS\system32\sndvol32.exe
2011-09-16 20:38:04 ----A---- C:\WINDOWS\system32\hticons.dll
2011-09-16 20:38:04 ----A---- C:\WINDOWS\system32\avwav.dll
2011-09-16 20:38:03 ----A---- C:\WINDOWS\system32\avtapi.dll
2011-09-16 20:38:03 ----A---- C:\WINDOWS\system32\avmeter.dll
2011-09-16 20:38:02 ----A---- C:\WINDOWS\system32\winchat.exe
2011-09-16 20:37:53 ----A---- C:\WINDOWS\system32\getuname.dll
2011-09-16 20:37:52 ----A---- C:\WINDOWS\system32\charmap.exe
2011-09-16 20:37:52 ----A---- C:\WINDOWS\system32\calc.exe
2011-09-16 20:37:51 ----A---- C:\WINDOWS\system32\winmine.exe
2011-09-16 20:37:51 ----A---- C:\WINDOWS\system32\sol.exe
2011-09-16 20:37:50 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2011-09-16 20:37:50 ----A---- C:\WINDOWS\system32\reset.exe
2011-09-16 20:37:50 ----A---- C:\WINDOWS\system32\mshearts.exe
2011-09-16 20:37:50 ----A---- C:\WINDOWS\system32\freecell.exe
2011-09-16 20:37:49 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2011-09-16 20:37:49 ----A---- C:\WINDOWS\system32\tslabels.ini
2011-09-16 20:37:49 ----A---- C:\WINDOWS\system32\tskill.exe
2011-09-16 20:37:49 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2011-09-16 20:37:49 ----A---- C:\WINDOWS\system32\tscon.exe
2011-09-16 20:37:49 ----A---- C:\WINDOWS\system32\shadow.exe
2011-09-16 20:37:49 ----A---- C:\WINDOWS\system32\rwinsta.exe
2011-09-16 20:37:49 ----A---- C:\WINDOWS\system32\regini.exe
2011-09-16 20:37:49 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2011-09-16 20:37:48 ----A---- C:\WINDOWS\system32\qwinsta.exe
2011-09-16 20:37:48 ----A---- C:\WINDOWS\system32\qappsrv.exe
2011-09-16 20:37:48 ----A---- C:\WINDOWS\system32\msg.exe
2011-09-16 20:37:48 ----A---- C:\WINDOWS\system32\logoff.exe
2011-09-16 20:37:48 ----A---- C:\WINDOWS\system32\cdmodem.dll
2011-09-16 20:37:47 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2011-09-16 20:37:40 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2011-09-16 20:37:39 ----A---- C:\WINDOWS\system32\sndrec32.exe
2011-09-16 20:37:39 ----A---- C:\WINDOWS\system32\accwiz.exe
2011-09-16 20:37:38 ----A---- C:\WINDOWS\system32\mplay32.exe
2011-09-16 20:37:38 ----A---- C:\WINDOWS\system32\hypertrm.dll
2011-09-16 20:37:37 ----D---- C:\Program Files\Windows NT
2011-09-16 20:37:37 ----A---- C:\WINDOWS\system32\mspaint.exe
2011-09-16 20:37:36 ----A---- C:\WINDOWS\system32\spider.exe
2011-09-16 20:37:36 ----A---- C:\WINDOWS\system32\clipbrd.exe
2011-09-16 20:37:35 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys
2011-09-16 20:37:35 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys
2011-09-16 20:37:34 ----A---- C:\WINDOWS\system32\tsgqec.dll
2011-09-16 20:37:34 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2011-09-16 20:37:34 ----A---- C:\WINDOWS\system32\rhttpaa.dll
2011-09-16 20:37:34 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2011-09-16 20:37:33 ----A---- C:\WINDOWS\system32\aaclient.dll
2011-09-16 20:37:32 ----A---- C:\WINDOWS\system32\mstscax.dll
2011-09-16 20:37:32 ----A---- C:\WINDOWS\system32\mstsc.exe
2011-09-16 20:37:31 ----A---- C:\WINDOWS\system32\sessmgr.exe
2011-09-16 20:37:31 ----A---- C:\WINDOWS\system32\remotepg.dll
2011-09-16 20:37:31 ----A---- C:\WINDOWS\system32\rdshost.exe
2011-09-16 20:37:31 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2011-09-16 20:37:31 ----A---- C:\WINDOWS\system32\rdchost.dll
2011-09-16 20:37:30 ----A---- C:\WINDOWS\system32\termsrv.dll
2011-09-16 20:37:30 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2011-09-16 20:37:30 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2011-09-16 20:37:30 ----A---- C:\WINDOWS\system32\rdpclip.exe
2011-09-16 20:37:30 ----A---- C:\WINDOWS\system32\qprocess.exe
2011-09-16 20:37:30 ----A---- C:\WINDOWS\system32\icaapi.dll
2011-09-16 20:37:30 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2011-09-16 20:37:29 ----D---- C:\WINDOWS\system32\MsDtc
2011-09-16 20:37:29 ----A---- C:\WINDOWS\system32\mtxoci.dll
2011-09-16 20:37:29 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2011-09-16 20:37:28 ----A---- C:\WINDOWS\system32\xolehlp.dll
2011-09-16 20:37:28 ----A---- C:\WINDOWS\system32\msdtctm.dll
2011-09-16 20:37:28 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2011-09-16 20:37:27 ----A---- C:\WINDOWS\system32\msdtclog.dll
2011-09-16 20:37:27 ----A---- C:\WINDOWS\system32\msdtc.exe
2011-09-16 20:37:26 ----D---- C:\WINDOWS\system32\Com
2011-09-16 20:37:26 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2011-09-16 20:37:26 ----A---- C:\WINDOWS\system32\mtxex.dll
2011-09-16 20:37:26 ----A---- C:\WINDOWS\system32\mtxdm.dll
2011-09-16 20:37:26 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2011-09-16 20:37:26 ----A---- C:\WINDOWS\system32\colbact.dll
2011-09-16 20:37:25 ----A---- C:\WINDOWS\system32\stclient.dll
2011-09-16 20:37:25 ----A---- C:\WINDOWS\system32\comrepl.dll
2011-09-16 20:37:25 ----A---- C:\WINDOWS\system32\comaddin.dll
2011-09-16 20:37:25 ----A---- C:\WINDOWS\system32\clbcatex.dll
2011-09-16 20:37:25 ----A---- C:\WINDOWS\system32\catsrvps.dll
2011-09-16 20:37:24 ----A---- C:\WINDOWS\system32\catsrvut.dll
2011-09-16 20:37:24 ----A---- C:\WINDOWS\system32\catsrv.dll
2011-09-16 20:37:23 ----A---- C:\WINDOWS\system32\comsvcs.dll
2011-09-16 20:37:22 ----A---- C:\WINDOWS\system32\comuid.dll
2011-09-16 20:37:22 ----A---- C:\WINDOWS\system32\comsnap.dll
2011-09-16 20:37:22 ----A---- C:\WINDOWS\system32\clbcatq.dll
2011-09-16 20:37:14 ----A---- C:\WINDOWS\system32\servdeps.dll
2011-09-16 20:37:14 ----A---- C:\WINDOWS\system32\mmfutil.dll
2011-09-16 20:37:14 ----A---- C:\WINDOWS\system32\licwmi.dll
2011-09-16 20:37:13 ----A---- C:\WINDOWS\system32\cmprops.dll
2011-09-16 20:37:11 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2011-09-16 20:37:10 ----A---- C:\WINDOWS\system32\drivers\termdd.sys

======List of files/folders modified in the last 1 month======

2011-09-17 02:55:59 ----A---- C:\WINDOWS\system32\uxtheme.dll
2011-09-17 02:32:28 ----A---- C:\WINDOWS\win.ini
2011-09-16 22:13:01 ----A---- C:\WINDOWS\system.ini
2011-09-16 20:41:48 ----ASH---- C:\WINDOWS\fonts\desktop.ini
2011-09-09 11:12:04 ----A---- C:\WINDOWS\system32\crypt32.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2006-09-24 5248]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2011-09-17 691696]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2011-09-17 138192]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2011-09-17 66616]
R2 cpuz132;cpuz132; \??\C:\WINDOWS\system32\drivers\cpuz132_x32.sys []
R3 gHidPnp;USB Device Enhanced Function Driver; C:\WINDOWS\System32\Drivers\gHidPnp.Sys [2007-07-19 16384]
R3 gMouPS2;PS2 Scroll Mouse Device; C:\WINDOWS\system32\DRIVERS\gMouPS2.sys [2006-07-12 17408]
R3 gMouUsb16;USB 16-bit Mouse Device Drv; C:\WINDOWS\system32\DRIVERS\gMouUsb16.sys [2007-12-10 9216]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-07-03 4745216]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-04-14 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2011-08-03 12542592]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda32.sys [2011-05-10 119528]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2010-07-06 234392]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys []
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 af54hagv;af54hagv; C:\WINDOWS\system32\drivers\af54hagv.sys []
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2008-04-14 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2011-09-17 269480]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2011-09-17 136360]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2010-01-03 246520]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-09-16 153376]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2011-08-03 146024]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-08-03 2255464]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-08-27 1051968]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S2 DrWebEngine;Dr.Web Scanning Engine (DrWebEngine); C:\Program Files\Common Files\Doctor Web\Scanning Engine\dwengine.exe []
S2 GeniusMouseService;GeniusMouseService; C:\Genius\ioCentre\GMouseService.exe []
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2003-02-20 32768]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2011-09-17 435008]

-----------------EOF-----------------

krepi · #2 Příspěvek od **krepi** » 17 zář 2011 12:31

Zde to je:

1.
OTL logfile created on: 17.9.2011 13:26:37 - Run 1
OTL by OldTimer - Version 3.2.28.0 Folder = G:\Staženo
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,00 Gb Total Physical Memory | 2,34 Gb Available Physical Memory | 77,86% Memory free
4,84 Gb Paging File | 4,25 Gb Available in Paging File | 87,76% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 86,75 Gb Free Space | 88,84% Space Free | Partition Type: NTFS
Drive D: | 48,83 Gb Total Space | 48,17 Gb Free Space | 98,66% Space Free | Partition Type: NTFS
Drive E: | 48,83 Gb Total Space | 15,15 Gb Free Space | 31,03% Space Free | Partition Type: NTFS
Drive F: | 503,32 Gb Total Space | 473,23 Gb Free Space | 94,02% Space Free | Partition Type: NTFS
Drive G: | 596,16 Gb Total Space | 129,60 Gb Free Space | 21,74% Space Free | Partition Type: NTFS

Computer Name: PACKARD-BELL | User Name: Krepi | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Custom Scans ==========

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.09.17 13:26:37 | 000,000,512 | ---- | M] () MD5=911BA03770BB0FEB957388265FCA28EF -- C:\PhysicalMBR.bin

< End of report >

2.
Antivirus Version Last Update Result
AhnLab-V3 2011.09.16.00 2011.09.16 -
AntiVir 7.11.14.223 2011.09.16 -
Antiy-AVL 2.0.3.7 2011.09.17 -
Avast 4.8.1351.0 2011.09.17 -
Avast5 5.0.677.0 2011.09.17 -
AVG 10.0.0.1190 2011.09.17 -
BitDefender 7.2 2011.09.17 -
ByteHero 1.0.0.1 2011.09.13 -
CAT-QuickHeal 11.00 2011.09.16 -
ClamAV 0.97.0.0 2011.09.17 -
Commtouch 5.3.2.6 2011.09.16 -
Comodo 10141 2011.09.17 -
DrWeb 5.0.2.03300 2011.09.17 -
Emsisoft 5.1.0.11 2011.09.17 -
eSafe 7.0.17.0 2011.09.15 -
eTrust-Vet 36.1.8566 2011.09.17 -
F-Prot 4.6.2.117 2011.09.16 -
F-Secure 9.0.16440.0 2011.09.17 -
Fortinet 4.3.370.0 2011.09.17 -
GData 22 2011.09.17 -
Ikarus T3.1.1.107.0 2011.09.17 -
Jiangmin 13.0.900 2011.09.16 -
K7AntiVirus 9.113.5146 2011.09.16 -
Kaspersky 9.0.0.837 2011.09.17 -
McAfee 5.400.0.1158 2011.09.17 -
McAfee-GW-Edition 2010.1D 2011.09.16 -
Microsoft 1.7604 2011.09.17 -
NOD32 6470 2011.09.17 -
Norman 6.07.11 2011.09.17 -
nProtect 2011-09-17.01 2011.09.17 -
Panda 10.0.3.5 2011.09.17 -
PCTools 8.0.0.5 2011.09.17 -
Prevx 3.0 2011.09.17 -
Rising 23.75.04.02 2011.09.16 -
Sophos 4.69.0 2011.09.17 -
SUPERAntiSpyware 4.40.0.1006 2011.09.17 -
Symantec 20111.2.0.82 2011.09.17 -
TheHacker 6.7.0.1.297 2011.09.15 -
TrendMicro 9.500.0.1008 2011.09.17 -
TrendMicro-HouseCall 9.500.0.1008 2011.09.17 -
VBA32 3.12.16.4 2011.09.16 -
VIPRE 10502 2011.09.17 -
ViRobot 2011.9.17.4674 2011.09.17 -
VirusBuster 14.0.217.0 2011.09.16 -
Additional information
MD5 : 911ba03770bb0feb957388265fca28ef
SHA1 : cefc35b2b6eaec9f30644f9b57de141cc7aadec1
SHA256: 8aaaf11b685c66decf7d8e08080b1f4a1cf7c4a73b58c0974cddf7b4750ac0bd
ssdeep: 12:0T4ioypl5v/c8i0HYkoKLU8kW9dc/1TQU:qoypzc8XoKLU8RHc9r
File size : 512 bytes
First seen: 2011-09-17 11:16:23
Last seen : 2011-09-17 11:16:23
TrID:
Unknown!
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned

3.
MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows XP Home Edition
Windows Information: Service Pack 3 (build 2600)
Logical Drives Mask: 0x00003ffc

Kernel Drivers (total 117):
0x804D7000 \WINDOWS\system32\ntkrnlpa.exe
0x8070D000 \WINDOWS\system32\hal.dll
0xB85A8000 \WINDOWS\system32\KDCOM.DLL
0xB84B8000 \WINDOWS\system32\BOOTVID.dll
0xB7EB4000 spyv.sys
0xB85AA000 \WINDOWS\System32\Drivers\WMILIB.SYS
0xB7E9C000 \WINDOWS\System32\Drivers\SCSIPORT.SYS
0xB7E6E000 ACPI.sys
0xB7E5D000 pci.sys
0xB80A8000 isapnp.sys
0xB8670000 pciide.sys
0xB8328000 \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
0xB80B8000 MountMgr.sys
0xB7E3E000 ftdisk.sys
0xB8330000 PartMgr.sys
0xB80C8000 VolSnap.sys
0xB7E26000 atapi.sys
0xB80D8000 disk.sys
0xB80E8000 \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
0xB7E06000 fltMgr.sys
0xB7DF4000 sr.sys
0xB7DDD000 KSecDD.sys
0xB7D50000 Ntfs.sys
0xB7D23000 NDIS.sys
0xB85AC000 speedfan.sys
0xB7D09000 Mup.sys
0xB8671000 giveio.sys
0xB81E8000 \SystemRoot\system32\DRIVERS\intelppm.sys
0xB81F8000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0xB83E8000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0xB8208000 \SystemRoot\system32\DRIVERS\gMouPS2.sys
0xB83F0000 \SystemRoot\system32\DRIVERS\mouclass.sys
0xB83F8000 \SystemRoot\system32\DRIVERS\usbohci.sys
0xB78D0000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0xB8400000 \SystemRoot\system32\DRIVERS\usbehci.sys
0xB78A8000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0xB6C75000 \SystemRoot\system32\DRIVERS\nv4_mini.sys
0xB6C61000 \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
0xB6C2A000 \SystemRoot\system32\DRIVERS\Rtenicxp.sys
0xB8218000 \SystemRoot\system32\DRIVERS\imapi.sys
0xB8228000 \SystemRoot\system32\DRIVERS\cdrom.sys
0xB8238000 \SystemRoot\system32\DRIVERS\redbook.sys
0xB6C07000 \SystemRoot\system32\DRIVERS\ks.sys
0xB6BCE000 \SystemRoot\System32\Drivers\af54hagv.SYS
0xB857C000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0xB8741000 \SystemRoot\system32\DRIVERS\audstub.sys
0xB8248000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0xB8580000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0xB6BB7000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0xB8258000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0xB8268000 \SystemRoot\system32\DRIVERS\raspptp.sys
0xB8468000 \SystemRoot\system32\DRIVERS\TDI.SYS
0xB6BA6000 \SystemRoot\system32\DRIVERS\psched.sys
0xB8278000 \SystemRoot\system32\DRIVERS\msgpc.sys
0xB8470000 \SystemRoot\system32\DRIVERS\ptilink.sys
0xB8478000 \SystemRoot\system32\DRIVERS\raspti.sys
0xB8288000 \SystemRoot\system32\DRIVERS\termdd.sys
0xB85C4000 \SystemRoot\system32\DRIVERS\swenum.sys
0xB6B48000 \SystemRoot\system32\DRIVERS\update.sys
0xB858C000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0xB8298000 \SystemRoot\System32\Drivers\NDProxy.SYS
0xB82A8000 \SystemRoot\system32\DRIVERS\usbhub.sys
0xB85C6000 \SystemRoot\system32\DRIVERS\USBD.SYS
0xB448B000 \SystemRoot\system32\drivers\RtkHDAud.sys
0xB4467000 \SystemRoot\system32\drivers\portcls.sys
0xB82C8000 \SystemRoot\system32\drivers\drmk.sys
0xB444B000 \SystemRoot\system32\drivers\nvhda32.sys
0xB85CC000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0xB87E6000 \SystemRoot\System32\Drivers\Null.SYS
0xB85CE000 \SystemRoot\System32\Drivers\Beep.SYS
0xB84A0000 \SystemRoot\System32\drivers\vga.sys
0xB85D0000 \SystemRoot\System32\Drivers\mnmdd.SYS
0xB85D2000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0xB84A8000 \SystemRoot\System32\Drivers\Msfs.SYS
0xB84B0000 \SystemRoot\System32\Drivers\Npfs.SYS
0xB8564000 \SystemRoot\system32\DRIVERS\rasacd.sys
0xB43C8000 \SystemRoot\system32\DRIVERS\ipsec.sys
0xB436F000 \SystemRoot\system32\DRIVERS\tcpip.sys
0xB4347000 \SystemRoot\system32\DRIVERS\netbt.sys
0xB4321000 \SystemRoot\system32\DRIVERS\ipnat.sys
0xB82D8000 \SystemRoot\system32\DRIVERS\wanarp.sys
0xB42FF000 \SystemRoot\System32\drivers\afd.sys
0xB82E8000 \SystemRoot\system32\DRIVERS\netbios.sys
0xB8358000 \SystemRoot\system32\DRIVERS\ssmdrv.sys
0xB42D4000 \SystemRoot\system32\DRIVERS\rdbss.sys
0xB4264000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xB82F8000 \SystemRoot\System32\Drivers\Fips.SYS
0xB423D000 \SystemRoot\system32\DRIVERS\avipbb.sys
0xB85D8000 \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys
0xB8318000 \SystemRoot\System32\Drivers\gHidPnp.Sys
0xB6B28000 \SystemRoot\system32\DRIVERS\hidusb.sys
0xB8118000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0xB8388000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0xB8390000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0xB4443000 \SystemRoot\system32\DRIVERS\gMouUsb16.sys
0xB443F000 \SystemRoot\system32\DRIVERS\mouhid.sys
0xB8398000 \SystemRoot\system32\DRIVERS\USBSTOR.SYS
0xB8168000 \SystemRoot\System32\Drivers\Cdfs.SYS
0xB41D5000 \SystemRoot\System32\Drivers\dump_atapi.sys
0xB85DC000 \SystemRoot\System32\Drivers\dump_WMILIB.SYS
0xBF800000 \SystemRoot\System32\win32k.sys
0xB442F000 \SystemRoot\System32\drivers\Dxapi.sys
0xB83B0000 \SystemRoot\System32\watchdog.sys
0xBD000000 \SystemRoot\System32\drivers\dxg.sys
0xB878C000 \SystemRoot\System32\drivers\dxgthk.sys
0xBD012000 \SystemRoot\System32\nv4_disp.dll
0xB34B0000 \SystemRoot\system32\DRIVERS\avgntflt.sys
0xB34E3000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xB3243000 \SystemRoot\system32\drivers\wdmaud.sys
0xB3370000 \SystemRoot\system32\drivers\sysaudio.sys
0xB3278000 \??\C:\WINDOWS\system32\drivers\cpuz132_x32.sys
0xB2D8D000 \SystemRoot\system32\DRIVERS\srv.sys
0xB87B1000 \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys
0xB2763000 \SystemRoot\System32\Drivers\HTTP.sys
0xB0CA6000 \SystemRoot\system32\drivers\kmixer.sys
0x7C900000 \WINDOWS\system32\ntdll.dll
0x10000000 \Program Files\DAEMON Tools Lite\Engine.dll

Processes (total 58):
0 System Idle Process
4 System
624 C:\WINDOWS\system32\smss.exe
792 csrss.exe
888 C:\WINDOWS\system32\winlogon.exe
948 C:\WINDOWS\system32\services.exe
960 C:\WINDOWS\system32\lsass.exe
1168 C:\WINDOWS\system32\svchost.exe
1236 svchost.exe
1348 C:\WINDOWS\system32\svchost.exe
1440 svchost.exe
1548 svchost.exe
1752 C:\WINDOWS\system32\spoolsv.exe
1804 C:\Program Files\Avira\AntiVir Desktop\sched.exe
180 C:\WINDOWS\explorer.exe
420 C:\WINDOWS\RTHDCPL.exe
460 C:\WINDOWS\system32\rundll32.exe
492 C:\Program Files\Common Files\Java\Java Update\jusched.exe
500 C:\Genius\ioCentre\gTaskBar.exe
532 C:\Program Files\Common Files\ACD Systems\EN\DevDetect.exe
576 C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
412 C:\WINDOWS\system32\ctfmon.exe
680 C:\Program Files\Common\Bin\WinCinemaMgr.exe
688 C:\Program Files\HiCDEject\HiCDEject.exe
712 D:\SpeedFan\speedfan.exe
748 C:\Program Files\Avira\AntiVir Desktop\avguard.exe
120 C:\Genius\ioCentre\gMouseTask.exe
804 C:\Genius\ioCentre\gKbdTask.exe
832 C:\Genius\ioCentre\gAutoPan.exe
844 C:\Genius\ioCentre\gAutoScroll.exe
912 C:\Program Files\ICQ6Toolbar\ICQ Service.exe
968 C:\Genius\ioCentre\gZoom.exe
1100 C:\Genius\ioCentre\gMGlass.exe
1116 C:\Genius\ioCentre\gIMMgm.exe
1128 C:\Genius\ioCentre\gKbStatus.exe
1188 C:\Genius\ioCentre\gDeskMgm.exe
1296 C:\Genius\ioCentre\gTaskSwitch.exe
1524 C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
1708 C:\Program Files\Java\jre6\bin\jqs.exe
1968 C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
144 C:\WINDOWS\system32\nvsvc32.exe
536 daemonu.exe
432 C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
1432 wdfmgr.exe
2948 HP1006MC.EXE
3520 C:\WINDOWS\system32\svchost.exe
3944 C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
904 alg.exe
2692 C:\Program Files\Mozilla Firefox\firefox.exe
672 C:\Program Files\Mozilla Firefox\plugin-container.exe
2380 C:\WINDOWS\system32\dllhost.exe
2648 msdtc.exe
2852 C:\WINDOWS\system32\wuauclt.exe
5140 C:\Program Files\Skype\Phone\Skype.exe
5800 C:\Program Files\ICQ7.0\ICQ.exe
520 C:\Program Files\Skype\Plugin Manager\skypePM.exe
1800 C:\WINDOWS\NOTEPAD.EXE
4848 G:\Sta

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000018`69e61600 (NTFS)
\\.\E: --> \\.\PhysicalDrive0 at offset 0x00000024`9ed8e200 (NTFS)
\\.\F: --> \\.\PhysicalDrive0 at offset 0x00000030`d3cbae00 (NTFS)
\\.\G: --> \\.\PhysicalDrive1 at offset 0x00000000`00007e00 (NTFS)

PhysicalDrive0 Model Number: SAMSUNGHD753LJ, Rev: 1AA01109
PhysicalDrive1 Model Number: WDCWD6400AAKS-22A7B2, Rev: 01.03B01

Size Device Name MBR Status
--------------------------------------------
698 GB \\.\PhysicalDrive0 Windows XP MBR code detected
SHA1: 41CDAF6C1E640C22E5FA4D3CF4848309BA7CA593
596 GB \\.\PhysicalDrive1 Unknown MBR code
SHA1: 2112DEB97137CBCC5710EFED18ADC8F308731CFF

Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:
Options:
[1] Dump the MBR of a physical disk to file.
[2] Restore the MBR of a physical disk with a standard boot code.
[3] Exit.

Enter your choice:

Done!

krepi · #3 Příspěvek od **krepi** » 17 zář 2011 13:20

Teď jsem v práci,udělám to hned jak přijdu domů,jak to zatím podle reportů vypadá?

krepi · #4 Příspěvek od **krepi** » 17 zář 2011 15:24

a jak se to mohlo stát?Mám v PC 2fyzické disky,jeden je rozdělen na dalších 4,druhý je bez rozdělení,i u toho druhého to hlásí stejnou chybu.Pokud ti to vyjde,budu tu ve 22:30h,kdybys nespal,objev se tu,že by jsme to dali dokupy ještě dnes.

krepi · #5 Příspěvek od **krepi** » 17 zář 2011 19:32

Je to Packard Bell,ale HDD tam jsou extra co jsem měl,hlavně na tom,co je rozdělen 750GB a je na něm systém,tak ten byl můj,druhý,co je nerozdělený 640GB tam byl systém,když jsem sestavu kupoval,ale byl znova fdiskem vytvořen jeden oddíl a slouží jen jako záloha,ale to je už rok,co jsem to dělal.
Vše zazálohované mám,co se týče prvního HDD,kde je systém,tam není problém v případě chyby znova natáhnout systém a data,pokud se disk nezničí!U toho druhého by to bylo horší,tam je vše zazálohované,stovky GB!

Budu tu ve 22:30-45h.

krepi · #6 Příspěvek od **krepi** » 17 zář 2011 21:35

Tak snad jsem to udělal správně:

mbr.exe -t
Log:
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 5.1.2600 Disk: SAMSUNG_HD753LJ rev.1AA01109 -> Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-6

device: opened successfully
user: MBR read successfully

Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys sprl.sys >>UNKNOWN [0x8A271938]<<
sprl.sys
1 ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\Harddisk0\DR0[0x8A213AB8]
3 CLASSPNP[0xB80E8FD7] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\00000067[0x8A28EA00]
5 ACPI[0xB7E74620] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\Ide\IdeDeviceP2T0L0-6[0x8A234D98]
kernel: MBR read successfully
user & kernel MBR OK

mbr.exe -s
Log:
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 5.1.2600 Disk: SAMSUNG_HD753LJ rev.1AA01109 -> Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-6

device: opened successfully
user: MBR read successfully
kernel: MBR read successfully
_asm { XOR AX, AX; MOV SS, AX; MOV SP, 0x7c00; STI ; PUSH AX; POP ES; PUSH AX; POP DS; CLD ; MOV SI, 0x7c1b; MOV DI, 0x61b; PUSH AX; PUSH DI; MOV CX, 0x1e5; REP MOVSB ; RETF ; MOV BP, 0x7be; MOV CL, 0x4; CMP [BP+0x0], CH; JL 0x2e; JNZ 0x3a; }
user & kernel MBR OK

mbr.exe -k
Log:
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 5.1.2600 Disk: SAMSUNG_HD753LJ rev.1AA01109 -> Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-6

\Device\Ide\IdeDeviceP2T0L0-6 \??\IDE#DiskSAMSUNG_HD753LJ_________________________1AA01109#31535533444a5157303331393730202020202020#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}
\Device\Ide\IdeDeviceP3T0L0-19 \??\IDE#DiskWDC_WD6400AAKS-22A7B2___________________01.03B01#5&12d3ee7d&0&0.0.0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}
\Device\0000007a \??\USBSTOR#Disk&Ven_Generic&Prod_Mini_SD_Reader&Rev_1.06#7&29d2afc&0&058F63776378&4#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}
\Device\00000077 \??\USBSTOR#Disk&Ven_Generic&Prod_USB_CF_Reader&Rev_1.01#7&29d2afc&0&058F63776378&1#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}
\Device\00000079 \??\USBSTOR#Disk&Ven_Generic&Prod_USB_MS_Reader&Rev_1.03#7&29d2afc&0&058F63776378&3#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}
\Device\00000076 \??\USBSTOR#Disk&Ven_Generic&Prod_USB_SD_Reader&Rev_1.00#7&29d2afc&0&058F63776378&0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}
\Device\00000078 \??\USBSTOR#Disk&Ven_Generic&Prod_USB_xD#SM_Reader&Rev_1.02#7&29d2afc&0&058F63776378&2#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}

END

krepi · #7 Příspěvek od **krepi** » 17 zář 2011 21:41

Uff snad to zvládnu,to je složité docela

Jak jsem psal,byli tam Visty při koupi,ale smazal jsem je fdiskem.
Jdu na to,snad se zadaří...
Takže zde:
OTL logfile created on: 17.9.2011 22:51:06 - Run 4
OTL by OldTimer - Version 3.2.28.0 Folder = F:\a
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,00 Gb Total Physical Memory | 1,65 Gb Available Physical Memory | 54,91% Memory free
4,84 Gb Paging File | 3,55 Gb Available in Paging File | 73,28% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 86,79 Gb Free Space | 88,87% Space Free | Partition Type: NTFS
Drive D: | 48,83 Gb Total Space | 48,26 Gb Free Space | 98,85% Space Free | Partition Type: NTFS
Drive E: | 48,83 Gb Total Space | 15,69 Gb Free Space | 32,13% Space Free | Partition Type: NTFS
Drive F: | 503,32 Gb Total Space | 473,23 Gb Free Space | 94,02% Space Free | Partition Type: NTFS
Drive G: | 596,16 Gb Total Space | 129,60 Gb Free Space | 21,74% Space Free | Partition Type: NTFS

Computer Name: PACKARD-BELL | User Name: Krepi | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
PhysicalDisk1 MBR saved to C:\PhysicalMBR.bin

========== Custom Scans ==========

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.09.17 22:51:07 | 000,000,512 | ---- | M] () Unable to obtain MD5 -- C:\PhysicalMBR.bin

< End of report >

VT:

Antivirus Version Last Update Result
AhnLab-V3 2011.09.17.00 2011.09.17 -
AntiVir 7.11.14.223 2011.09.16 BOO/Whistler
Antiy-AVL 2.0.3.7 2011.09.17 -
Avast 4.8.1351.0 2011.09.17 MBR:Whistler-C [Rtk]
Avast5 5.0.677.0 2011.09.17 MBR:Whistler-C [Rtk]
AVG 10.0.0.1190 2011.09.17 -
BitDefender 7.2 2011.09.17 -
ByteHero 1.0.0.1 2011.09.13 -
CAT-QuickHeal 11.00 2011.09.16 BootKit.Wistler
ClamAV 0.97.0.0 2011.09.17 -
Commtouch 5.3.2.6 2011.09.17 -
Comodo 10147 2011.09.17 -
DrWeb 5.0.2.03300 2011.09.17 -
Emsisoft 5.1.0.11 2011.09.17 Trojan.DOS.Shetwirl!IK
eSafe 7.0.17.0 2011.09.15 -
eTrust-Vet 36.1.8566 2011.09.17 -
F-Prot 4.6.2.117 2011.09.17 -
F-Secure 9.0.16440.0 2011.09.17 -
Fortinet 4.3.370.0 2011.09.17 -
GData 22 2011.09.17 MBR:Whistler-C
Ikarus T3.1.1.107.0 2011.09.17 Trojan.DOS.Shetwirl
Jiangmin 13.0.900 2011.09.17 -
K7AntiVirus 9.113.5150 2011.09.17 -
Kaspersky 9.0.0.837 2011.09.17 -
McAfee 5.400.0.1158 2011.09.17 -
McAfee-GW-Edition 2010.1D 2011.09.17 -
Microsoft 1.7604 2011.09.17 -
NOD32 6472 2011.09.17 -
nProtect 2011-09-17.01 2011.09.17 -
Panda 10.0.3.5 2011.09.17 -
PCTools 8.0.0.5 2011.09.17 -
Prevx 3.0 2011.09.17 -
Rising 23.75.04.02 2011.09.16 -
Sophos 4.69.0 2011.09.17 -
SUPERAntiSpyware 4.40.0.1006 2011.09.17 -
Symantec 20111.2.0.82 2011.09.17 -
TheHacker 6.7.0.1.298 2011.09.17 -
TrendMicro 9.500.0.1008 2011.09.17 -
TrendMicro-HouseCall 9.500.0.1008 2011.09.17 -
VBA32 3.12.16.4 2011.09.16 -
VIPRE 10505 2011.09.17 -
ViRobot 2011.9.17.4674 2011.09.17 -
VirusBuster 14.0.218.0 2011.09.17 -
Additional information
MD5 : 25277b4c97029a554a0301d2af1e8e7f
SHA1 : 4fb3c74e82fe6b326c447fb0b823c635571ab65f
SHA256: f3e905a92bf8384d54d4a9b0e08781da56ad4ab44f27f51fc3807672fd5f03cb
ssdeep: 6:lroHSO98m3pJU1RIOCZlR9fgUWrHSLbAhUi1w0gvSWIJuc6p/xJtAKCFWYGAKCFa:lGSOl5JR
ZSUMU8UirI6ucStYfcic
File size : 512 bytes
First seen: 2011-09-17 20:52:38
Last seen : 2011-09-17 20:52:38
TrID:
Unknown!
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned

Hotovo!
PS: Avira stále nechce pustit ani přejmenovat ten PhysicalMBR.bin,stále hlásí vir v něm!

krepi · #8 Příspěvek od **krepi** » 17 zář 2011 22:14

Tak hotovo,koukám na ty logy a co tam dělá AVG,nebo Avast?

krepi · #9 Příspěvek od **krepi** » 17 zář 2011 22:58

Protože byli problémy napíši to takto:
str. http://www.virustotal.com/ nešla načíst,takže zde je návod,jak to tedy znova udělat při deaktivované Aviry:
1. spustit program OTL.exe
- klik na Nekontrolovat
- do bílého pole mající titulek "Vlastní skenování/opravy" programu zkopíruji:
savembr:0
%SystemDrive%\PhysicalMBR.bin /md5
- odkliknu prohleda a vložím log z txt souboru

2. Soubor PhysicalMBR.bin otestuji na str. http://www.virustotal.com/ pokud naběhne a vložím log

3. Spustím program MBRCheck.exe a vložím log

OK?
Jen jsem nezjistil,jak udělat zálohu jednoho a pak druhého disku!

PS:str. http://www.virustotal.com/ stále nejde načíst!

krepi · #10 Příspěvek od **krepi** » 18 zář 2011 00:12

OTL:

OTL logfile created on: 18.9.2011 1:09:10 - Run 6
OTL by OldTimer - Version 3.2.28.0 Folder = F:\a
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,00 Gb Total Physical Memory | 1,74 Gb Available Physical Memory | 58,15% Memory free
4,84 Gb Paging File | 3,62 Gb Available in Paging File | 74,87% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 86,75 Gb Free Space | 88,83% Space Free | Partition Type: NTFS
Drive D: | 48,83 Gb Total Space | 48,26 Gb Free Space | 98,85% Space Free | Partition Type: NTFS
Drive E: | 48,83 Gb Total Space | 15,69 Gb Free Space | 32,13% Space Free | Partition Type: NTFS
Drive F: | 503,32 Gb Total Space | 473,23 Gb Free Space | 94,02% Space Free | Partition Type: NTFS
Drive G: | 596,16 Gb Total Space | 129,60 Gb Free Space | 21,74% Space Free | Partition Type: NTFS

Computer Name: PACKARD-BELL | User Name: Krepi | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Custom Scans ==========

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.09.18 01:09:10 | 000,000,512 | ---- | M] () MD5=911BA03770BB0FEB957388265FCA28EF -- C:\PhysicalMBR.bin

< End of report >

VT:

Antivirus Version Last Update Result
AhnLab-V3 2011.09.17.00 2011.09.17 -
AntiVir 7.11.14.223 2011.09.16 -
Antiy-AVL 2.0.3.7 2011.09.17 -
Avast 4.8.1351.0 2011.09.17 -
Avast5 5.0.677.0 2011.09.17 -
AVG 10.0.0.1190 2011.09.17 -
BitDefender 7.2 2011.09.18 -
ByteHero 1.0.0.1 2011.09.13 -
CAT-QuickHeal 11.00 2011.09.16 -
ClamAV 0.97.0.0 2011.09.17 -
Commtouch 5.3.2.6 2011.09.17 -
Comodo 10147 2011.09.17 -
DrWeb 5.0.2.03300 2011.09.18 -
Emsisoft 5.1.0.11 2011.09.17 -
eSafe 7.0.17.0 2011.09.15 -
eTrust-Vet 36.1.8566 2011.09.17 -
F-Prot 4.6.2.117 2011.09.17 -
F-Secure 9.0.16440.0 2011.09.17 -
Fortinet 4.3.370.0 2011.09.17 -
GData 22 2011.09.17 -
Ikarus T3.1.1.107.0 2011.09.17 -
Jiangmin 13.0.900 2011.09.17 -
K7AntiVirus 9.113.5150 2011.09.17 -
Kaspersky 9.0.0.837 2011.09.18 -
McAfee 5.400.0.1158 2011.09.17 -
McAfee-GW-Edition 2010.1D 2011.09.17 -
Microsoft 1.7604 2011.09.17 -
NOD32 6472 2011.09.18 -
nProtect 2011-09-17.01 2011.09.17 -
Panda 10.0.3.5 2011.09.17 -
PCTools 8.0.0.5 2011.09.18 -
Prevx 3.0 2011.09.18 -
Rising 23.75.04.02 2011.09.16 -
Sophos 4.69.0 2011.09.18 -
SUPERAntiSpyware 4.40.0.1006 2011.09.17 -
Symantec 20111.2.0.82 2011.09.18 -
TheHacker 6.7.0.1.298 2011.09.17 -
TrendMicro 9.500.0.1008 2011.09.17 -
TrendMicro-HouseCall 9.500.0.1008 2011.09.18 -
VBA32 3.12.16.4 2011.09.16 -
VIPRE 10505 2011.09.17 -
ViRobot 2011.9.17.4674 2011.09.17 -
VirusBuster 14.0.218.0 2011.09.17 -
Additional information
MD5 : 911ba03770bb0feb957388265fca28ef
SHA1 : cefc35b2b6eaec9f30644f9b57de141cc7aadec1
SHA256: 8aaaf11b685c66decf7d8e08080b1f4a1cf7c4a73b58c0974cddf7b4750ac0bd
ssdeep: 12:0T4ioypl5v/c8i0HYkoKLU8kW9dc/1TQU:qoypzc8XoKLU8RHc9r
File size : 512 bytes
First seen: 2011-09-17 11:16:23
Last seen : 2011-09-17 22:58:01
TrID:
Unknown!
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned

MBRCheck.exe:

MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows XP Home Edition
Windows Information: Service Pack 3 (build 2600)
Logical Drives Mask: 0x00003ffc

Kernel Drivers (total 117):
0x804D7000 \WINDOWS\system32\ntkrnlpa.exe
0x8070D000 \WINDOWS\system32\hal.dll
0xB85A8000 \WINDOWS\system32\KDCOM.DLL
0xB84B8000 \WINDOWS\system32\BOOTVID.dll
0xB7EB4000 spfv.sys
0xB85AA000 \WINDOWS\System32\Drivers\WMILIB.SYS
0xB7E9C000 \WINDOWS\System32\Drivers\SCSIPORT.SYS
0xB7E6E000 ACPI.sys
0xB7E5D000 pci.sys
0xB80A8000 isapnp.sys
0xB8670000 pciide.sys
0xB8328000 \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
0xB80B8000 MountMgr.sys
0xB7E3E000 ftdisk.sys
0xB8330000 PartMgr.sys
0xB80C8000 VolSnap.sys
0xB7E26000 atapi.sys
0xB80D8000 disk.sys
0xB80E8000 \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
0xB7E06000 fltMgr.sys
0xB7DF4000 sr.sys
0xB7DDD000 KSecDD.sys
0xB7D50000 Ntfs.sys
0xB7D23000 NDIS.sys
0xB85AC000 speedfan.sys
0xB7D09000 Mup.sys
0xB8671000 giveio.sys
0xB8218000 \SystemRoot\system32\DRIVERS\intelppm.sys
0xB8228000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0xB83F0000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0xB8238000 \SystemRoot\system32\DRIVERS\gMouPS2.sys
0xB83F8000 \SystemRoot\system32\DRIVERS\mouclass.sys
0xB8400000 \SystemRoot\system32\DRIVERS\usbohci.sys
0xB7AA7000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0xB8408000 \SystemRoot\system32\DRIVERS\usbehci.sys
0xB7A7F000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0xB6E4C000 \SystemRoot\system32\DRIVERS\nv4_mini.sys
0xB6E38000 \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
0xB6E01000 \SystemRoot\system32\DRIVERS\Rtenicxp.sys
0xB8248000 \SystemRoot\system32\DRIVERS\imapi.sys
0xB8258000 \SystemRoot\system32\DRIVERS\cdrom.sys
0xB8268000 \SystemRoot\system32\DRIVERS\redbook.sys
0xB6DDE000 \SystemRoot\system32\DRIVERS\ks.sys
0xB6DA5000 \SystemRoot\System32\Drivers\ax3cite2.SYS
0xB8590000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0xB873E000 \SystemRoot\system32\DRIVERS\audstub.sys
0xB8278000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0xB8594000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0xB6D8E000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0xB8288000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0xB8298000 \SystemRoot\system32\DRIVERS\raspptp.sys
0xB8470000 \SystemRoot\system32\DRIVERS\TDI.SYS
0xB6D7D000 \SystemRoot\system32\DRIVERS\psched.sys
0xB82A8000 \SystemRoot\system32\DRIVERS\msgpc.sys
0xB8478000 \SystemRoot\system32\DRIVERS\ptilink.sys
0xB8480000 \SystemRoot\system32\DRIVERS\raspti.sys
0xB82B8000 \SystemRoot\system32\DRIVERS\termdd.sys
0xB85C0000 \SystemRoot\system32\DRIVERS\swenum.sys
0xB6B5F000 \SystemRoot\system32\DRIVERS\update.sys
0xB85A0000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0xB82C8000 \SystemRoot\System32\Drivers\NDProxy.SYS
0xB82D8000 \SystemRoot\system32\DRIVERS\usbhub.sys
0xB85C2000 \SystemRoot\system32\DRIVERS\USBD.SYS
0xB44A2000 \SystemRoot\system32\drivers\RtkHDAud.sys
0xB447E000 \SystemRoot\system32\drivers\portcls.sys
0xB82F8000 \SystemRoot\system32\drivers\drmk.sys
0xB4462000 \SystemRoot\system32\drivers\nvhda32.sys
0xB85C8000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0xB8689000 \SystemRoot\System32\Drivers\Null.SYS
0xB85CA000 \SystemRoot\System32\Drivers\Beep.SYS
0xB84A8000 \SystemRoot\System32\drivers\vga.sys
0xB85CC000 \SystemRoot\System32\Drivers\mnmdd.SYS
0xB85CE000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0xB84B0000 \SystemRoot\System32\Drivers\Msfs.SYS
0xB8350000 \SystemRoot\System32\Drivers\Npfs.SYS
0xB8578000 \SystemRoot\system32\DRIVERS\rasacd.sys
0xB43DF000 \SystemRoot\system32\DRIVERS\ipsec.sys
0xB4386000 \SystemRoot\system32\DRIVERS\tcpip.sys
0xB435E000 \SystemRoot\system32\DRIVERS\netbt.sys
0xB4338000 \SystemRoot\system32\DRIVERS\ipnat.sys
0xB8308000 \SystemRoot\system32\DRIVERS\wanarp.sys
0xB4316000 \SystemRoot\System32\drivers\afd.sys
0xB8318000 \SystemRoot\system32\DRIVERS\netbios.sys
0xB8358000 \SystemRoot\system32\DRIVERS\ssmdrv.sys
0xB42EB000 \SystemRoot\system32\DRIVERS\rdbss.sys
0xB427B000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xB8118000 \SystemRoot\System32\Drivers\Fips.SYS
0xB4254000 \SystemRoot\system32\DRIVERS\avipbb.sys
0xB85D2000 \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys
0xB8128000 \SystemRoot\System32\Drivers\gHidPnp.Sys
0xB6B53000 \SystemRoot\system32\DRIVERS\hidusb.sys
0xB8138000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0xB8388000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0xB8390000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0xB6B47000 \SystemRoot\system32\DRIVERS\gMouUsb16.sys
0xB6B43000 \SystemRoot\system32\DRIVERS\mouhid.sys
0xB8398000 \SystemRoot\system32\DRIVERS\USBSTOR.SYS
0xB8198000 \SystemRoot\System32\Drivers\Cdfs.SYS
0xB41EC000 \SystemRoot\System32\Drivers\dump_atapi.sys
0xB85D4000 \SystemRoot\System32\Drivers\dump_WMILIB.SYS
0xBF800000 \SystemRoot\System32\win32k.sys
0xB444A000 \SystemRoot\System32\drivers\Dxapi.sys
0xB83A0000 \SystemRoot\System32\watchdog.sys
0xBD000000 \SystemRoot\System32\drivers\dxg.sys
0xB87FC000 \SystemRoot\System32\drivers\dxgthk.sys
0xBD012000 \SystemRoot\System32\nv4_disp.dll
0xB34C7000 \SystemRoot\system32\DRIVERS\avgntflt.sys
0xB34EA000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xB3232000 \SystemRoot\system32\drivers\wdmaud.sys
0xB338F000 \SystemRoot\system32\drivers\sysaudio.sys
0xB2F5C000 \??\C:\WINDOWS\system32\drivers\cpuz132_x32.sys
0xB2C44000 \SystemRoot\system32\DRIVERS\srv.sys
0xB8757000 \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys
0xB2475000 \SystemRoot\System32\Drivers\HTTP.sys
0xB1944000 \SystemRoot\system32\drivers\kmixer.sys
0x7C900000 \WINDOWS\system32\ntdll.dll
0x10000000 \Program Files\DAEMON Tools Lite\Engine.dll

Processes (total 60):
0 System Idle Process
4 System
692 C:\WINDOWS\system32\smss.exe
848 csrss.exe
920 C:\WINDOWS\system32\winlogon.exe
964 C:\WINDOWS\system32\services.exe
976 C:\WINDOWS\system32\lsass.exe
1172 C:\WINDOWS\system32\svchost.exe
1240 svchost.exe
1336 C:\WINDOWS\system32\svchost.exe
1456 svchost.exe
1552 svchost.exe
1724 C:\WINDOWS\system32\spoolsv.exe
1804 C:\Program Files\Avira\AntiVir Desktop\sched.exe
164 C:\WINDOWS\explorer.exe
248 C:\WINDOWS\RTHDCPL.exe
304 C:\WINDOWS\system32\rundll32.exe
420 C:\Program Files\Common Files\Java\Java Update\jusched.exe
428 C:\Genius\ioCentre\gTaskBar.exe
444 C:\Program Files\Common Files\ACD Systems\EN\DevDetect.exe
472 C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
484 C:\WINDOWS\system32\ctfmon.exe
508 C:\Program Files\Common\Bin\WinCinemaMgr.exe
520 C:\Genius\ioCentre\gMouseTask.exe
528 C:\Genius\ioCentre\gKbdTask.exe
544 C:\Program Files\HiCDEject\HiCDEject.exe
552 C:\Genius\ioCentre\gAutoPan.exe
560 C:\Genius\ioCentre\gAutoScroll.exe
576 C:\Genius\ioCentre\gZoom.exe
412 C:\Genius\ioCentre\gMGlass.exe
608 C:\Genius\ioCentre\gIMMgm.exe
636 C:\Genius\ioCentre\gKbStatus.exe
652 C:\Genius\ioCentre\gDeskMgm.exe
724 C:\Genius\ioCentre\gTaskSwitch.exe
788 D:\SpeedFan\speedfan.exe
168 C:\Program Files\Avira\AntiVir Desktop\avguard.exe
1632 C:\Program Files\Java\jre6\bin\jqs.exe
324 C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
316 C:\WINDOWS\system32\nvsvc32.exe
1484 daemonu.exe
2660 C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
2684 C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
2780 wdfmgr.exe
3628 HP1006MC.EXE
772 C:\WINDOWS\system32\svchost.exe
2236 C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
2800 alg.exe
2444 C:\Program Files\Internet Explorer\iexplore.exe
2532 C:\Program Files\Internet Explorer\iexplore.exe
3644 C:\Program Files\Internet Explorer\iexplore.exe
3484 C:\Program Files\Internet Explorer\iexplore.exe
3816 C:\Program Files\Internet Explorer\iexplore.exe
5844 C:\PROGRA~1\ICQ7.0\ICQ.exe
656 C:\Program Files\Skype\Phone\Skype.exe
4712 C:\Program Files\Skype\Plugin Manager\skypePM.exe
6048 C:\Program Files\Mozilla Firefox\firefox.exe
4648 C:\Program Files\Mozilla Firefox\plugin-container.exe
6044 C:\Windows Commander 5\WINCMD32.EXE
6020 C:\WINDOWS\system32\wscntfy.exe
4884 F:\a\MBRCheck.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000018`69e61600 (NTFS)
\\.\E: --> \\.\PhysicalDrive0 at offset 0x00000024`9ed8e200 (NTFS)
\\.\F: --> \\.\PhysicalDrive0 at offset 0x00000030`d3cbae00 (NTFS)
\\.\G: --> \\.\PhysicalDrive1 at offset 0x00000000`00007e00 (NTFS)

PhysicalDrive0 Model Number: SAMSUNGHD753LJ, Rev: 1AA01109
PhysicalDrive1 Model Number: WDCWD6400AAKS-22A7B2, Rev: 01.03B01

Size Device Name MBR Status
--------------------------------------------
698 GB \\.\PhysicalDrive0 Windows XP MBR code detected
SHA1: 41CDAF6C1E640C22E5FA4D3CF4848309BA7CA593
596 GB \\.\PhysicalDrive1 Unknown MBR code
SHA1: 2112DEB97137CBCC5710EFED18ADC8F308731CFF

Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:
Options:
[1] Dump the MBR of a physical disk to file.
[2] Restore the MBR of a physical disk with a standard boot code.
[3] Exit.

Enter your choice:

Done!

krepi · #11 Příspěvek od **krepi** » 18 zář 2011 18:33

Byl jsem na návštěvě,už jsem doma a plně k dispozici,zde jsou logy:
OTL:
OTL logfile created on: 18.9.2011 19:30:20 - Run 7
OTL by OldTimer - Version 3.2.28.0 Folder = F:\a
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,00 Gb Total Physical Memory | 1,63 Gb Available Physical Memory | 54,36% Memory free
4,84 Gb Paging File | 3,50 Gb Available in Paging File | 72,29% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 86,60 Gb Free Space | 88,68% Space Free | Partition Type: NTFS
Drive D: | 48,83 Gb Total Space | 48,26 Gb Free Space | 98,85% Space Free | Partition Type: NTFS
Drive E: | 48,83 Gb Total Space | 15,69 Gb Free Space | 32,13% Space Free | Partition Type: NTFS
Drive F: | 503,32 Gb Total Space | 473,23 Gb Free Space | 94,02% Space Free | Partition Type: NTFS
Drive G: | 596,16 Gb Total Space | 129,15 Gb Free Space | 21,66% Space Free | Partition Type: NTFS

Computer Name: PACKARD-BELL | User Name: Krepi | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
PhysicalDisk1 MBR saved to C:\PhysicalMBR.bin

========== Custom Scans ==========

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.09.18 19:30:20 | 000,000,512 | ---- | M] () MD5=25277B4C97029A554A0301D2AF1E8E7F -- C:\PhysicalMBR.bin

< End of report >

VT:
Antivirus Version Last Update Result
AhnLab-V3 2011.09.18.00 2011.09.18 -
AntiVir 7.11.14.223 2011.09.16 BOO/Whistler
Antiy-AVL 2.0.3.7 2011.09.18 -
Avast 4.8.1351.0 2011.09.18 MBR:Whistler-C [Rtk]
Avast5 5.0.677.0 2011.09.18 MBR:Whistler-C [Rtk]
AVG 10.0.0.1190 2011.09.18 -
BitDefender 7.2 2011.09.18 -
ByteHero 1.0.0.1 2011.09.13 -
CAT-QuickHeal 11.00 2011.09.18 BootKit.Wistler
ClamAV 0.97.0.0 2011.09.18 -
Commtouch 5.3.2.6 2011.09.17 -
Comodo 10158 2011.09.18 -
DrWeb 5.0.2.03300 2011.09.18 -
Emsisoft 5.1.0.11 2011.09.18 Trojan.DOS.Shetwirl!IK
eSafe 7.0.17.0 2011.09.15 -
eTrust-Vet 36.1.8566 2011.09.17 -
F-Prot 4.6.2.117 2011.09.17 -
F-Secure 9.0.16440.0 2011.09.18 -
Fortinet 4.3.370.0 2011.09.18 -
GData 22 2011.09.18 MBR:Whistler-C
Ikarus T3.1.1.107.0 2011.09.18 Trojan.DOS.Shetwirl
Jiangmin 13.0.900 2011.09.18 -
K7AntiVirus 9.113.5150 2011.09.17 -
Kaspersky 9.0.0.837 2011.09.18 -
McAfee 5.400.0.1158 2011.09.18 -
McAfee-GW-Edition 2010.1D 2011.09.17 -
Microsoft 1.7604 2011.09.18 -
NOD32 6474 2011.09.18 -
Norman 6.07.11 2011.09.17 -
nProtect 2011-09-18.01 2011.09.18 -
Panda 10.0.3.5 2011.09.18 -
PCTools 8.0.0.5 2011.09.18 -
Prevx 3.0 2011.09.18 -
Rising 23.75.04.02 2011.09.16 -
Sophos 4.69.0 2011.09.18 -
SUPERAntiSpyware 4.40.0.1006 2011.09.17 -
Symantec 20111.2.0.82 2011.09.18 -
TheHacker 6.7.0.1.298 2011.09.17 -
TrendMicro 9.500.0.1008 2011.09.18 -
TrendMicro-HouseCall 9.500.0.1008 2011.09.18 -
VBA32 3.12.16.4 2011.09.16 -
VIPRE 10513 2011.09.18 -
ViRobot 2011.9.17.4674 2011.09.18 -
VirusBuster 14.0.219.0 2011.09.18 -
Additional information
MD5 : 25277b4c97029a554a0301d2af1e8e7f
SHA1 : 4fb3c74e82fe6b326c447fb0b823c635571ab65f
SHA256: f3e905a92bf8384d54d4a9b0e08781da56ad4ab44f27f51fc3807672fd5f03cb
ssdeep: 6:lroHSO98m3pJU1RIOCZlR9fgUWrHSLbAhUi1w0gvSWIJuc6p/xJtAKCFWYGAKCFa:lGSOl5JR
ZSUMU8UirI6ucStYfcic
File size : 512 bytes
First seen: 2011-09-17 20:52:38
Last seen : 2011-09-18 17:20:21
TrID:
Unknown!
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned

Čekám co dál...

krepi · #12 Příspěvek od **krepi** » 18 zář 2011 18:44

nemáš Skype nebo ICQ?

krepi · #13 Příspěvek od **krepi** » 18 zář 2011 18:48

Tak zde je odkaz:
http://www.ulozto.cz/10307124/mbr-rar
heslo ti zašlu SZ

krepi · #14 Příspěvek od **krepi** » 18 zář 2011 18:55

Mám ho upnout znova?
Zde je to označení:

Kód: Vybrat vše

90 31 C0 90 8E D8 8E C0 90 8E D0 BC 00 7C BE 00 7C 90 BF 00 06 90 B9 80 00 90 FC F3 66 A5 90 EA 26 06 00 00 90 90 66 31 C0 90 BE BE 07 B1 04 66 39 44 08 90 72 08 66 8B 44 08 66 03 44 0C 83 C6 10 90 83 2E 8B 06 04 E2 E6 66 09 C0 74 40 66 83 C0 02 90 B9 40 00 BB 00 7C BF 12 07 90 83 2E 8B 06 04 E8 71 00 72 27 66 68 83 C4 14 90 90 66 68 04 46 E2 F9 90 66 68 80 FF D7 30 90 66 68 89 C3 B9 00 90 66 68 BE 00 7C 66 0F 83 73 75 E8 BE BE 07 B1 04 80 3C 80 74 0F 38 2C 0F 85 96 00 83 C6 10 E2 F0 90 CD 18 90 66 8B 44 08 89 E3 B9 01 00 90 E8 22 00 73 0E 8B 4C 02 B8 01 02 90 CD 13 0F 82 8B 00 90 81 3E FE 7D 55 AA 90 0F 85 A0 00 90 EA 00 7C 00 00 90 66 60 90 BB AA 55 B4 41 CD 13 90 73 04 F9 66 61 C3 81 FB 55 AA 75 F6 90 F6 C1 01 74 F0 66 61 90 66 60 6A 00 90 6A 00 66 50 06 90 53 51 90 6A 10 B4 42 90 89 E6 CD 13 61 90 66 61 C3 66 69 DB FD 43 03 00 90 66 81 C3 C3 9E 26 00 90 66 89 D8 90 66 C1 E8 10 90 66 25 FF 00 00 00 90 C3 90 49 6E 76 61 6C 69 64 20 70 61 72 74 69 74 69 6F 6E 20 74 61 62 6C 65 00 90 90 45 72 72 6F 72 20 6C 6F 61 64 69 6E 67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74 65 6D 00 90 90 4D 69 73 73 69 6E 67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74 65 6D 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 01 2F E3 25 00 00 80 01 01 00 07 FE FF FF 3F 00 00 00 C1 2F 85 4A 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA

co dál?

PS: upload na jiný server máš v poště!

krepi · #15 Příspěvek od **krepi** » 18 zář 2011 19:01

Teda to je složitost.
Hrozí nějaká ztráta dat kdyžtak?Mm tam nějaké věci,které bych přendal na 1.HDD,fotky apod.!

VIRY.CZ

MBR sektor 1. fyzického disku Win32/Agent.SDG.Gen

MBR sektor 1. fyzického disku Win32/Agent.SDG.Gen

Re: MBR sektor 1. fyzického disku Win32/Agent.SDG.Gen

Re: MBR sektor 1. fyzického disku Win32/Agent.SDG.Gen

Re: MBR sektor 1. fyzického disku Win32/Agent.SDG.Gen

Re: MBR sektor 1. fyzického disku Win32/Agent.SDG.Gen

Re: MBR sektor 1. fyzického disku Win32/Agent.SDG.Gen

Re: MBR sektor 1. fyzického disku Win32/Agent.SDG.Gen

Re: MBR sektor 1. fyzického disku Win32/Agent.SDG.Gen

Re: MBR sektor 1. fyzického disku Win32/Agent.SDG.Gen

Re: MBR sektor 1. fyzického disku Win32/Agent.SDG.Gen

Re: MBR sektor 1. fyzického disku Win32/Agent.SDG.Gen

Re: MBR sektor 1. fyzického disku Win32/Agent.SDG.Gen

Re: MBR sektor 1. fyzického disku Win32/Agent.SDG.Gen

Re: MBR sektor 1. fyzického disku Win32/Agent.SDG.Gen

Re: MBR sektor 1. fyzického disku Win32/Agent.SDG.Gen