Kaspersky antivirus mi ohlásil že mi něco vypnulo firewall,napsalo to něco o bypass a taky že mám vypnuto zabezpečení.prý něco v registrech.Dal jsem scan v Kaspersky antivirus vymazal vše co se ukázalo,poté jsem zapnul Spybot and Destroy scenoval a našel několik trojanů tak jsem dal vymazat.Po restartu se mi objevuje jen modrá obrazovka smrti s hlášením.Windows se nespustí ale v nouzovém režimu jde.Pomůže mi někdo?
----------------------------------------------------------------------------------
21:36:26.0796 1920 TDSS rootkit removing tool 2.6.15.0 Nov 3 2011 17:15:49
21:36:26.0906 1920 ============================================================
21:36:26.0906 1920 Current date / time: 2011/11/05 21:36:26.0906
21:36:26.0906 1920 SystemInfo:
21:36:26.0906 1920
21:36:26.0906 1920 OS Version: 5.1.2600 ServicePack: 3.0
21:36:26.0906 1920 Product type: Workstation
21:36:26.0906 1920 ComputerName: PC
21:36:26.0906 1920 UserName: Jirka
21:36:26.0906 1920 Windows directory: C:\WINDOWS
21:36:26.0906 1920 System windows directory: C:\WINDOWS
21:36:26.0906 1920 Processor architecture: Intel x86
21:36:26.0906 1920 Number of processors: 1
21:36:26.0906 1920 Page size: 0x1000
21:36:26.0906 1920 Boot type: Safe boot with network
21:36:26.0906 1920 ============================================================
21:36:33.0656 1920 Initialize success
21:36:48.0578 0448 ============================================================
21:36:48.0578 0448 Scan started
21:36:48.0578 0448 Mode: Manual;
21:36:48.0578 0448 ============================================================
21:36:48.0796 0448 Abiosdsk - ok
21:36:48.0890 0448 abp480n5 - ok
21:36:48.0968 0448 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:36:48.0968 0448 ACPI - ok
21:36:49.0046 0448 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
21:36:49.0046 0448 ACPIEC - ok
21:36:49.0140 0448 adpu160m - ok
21:36:49.0203 0448 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:36:49.0218 0448 aec - ok
21:36:49.0296 0448 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
21:36:49.0296 0448 AFD - ok
21:36:49.0390 0448 Aha154x - ok
21:36:49.0453 0448 aic78u2 - ok
21:36:49.0500 0448 aic78xx - ok
21:36:49.0687 0448 ALCXWDM (dd8520280304b6145a6be31008748c7c) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
21:36:49.0718 0448 ALCXWDM - ok
21:36:49.0875 0448 AliIde - ok
21:36:49.0937 0448 AmdK8 (59301936898ae62245a6f09c0aba9475) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
21:36:49.0953 0448 AmdK8 - ok
21:36:50.0000 0448 amsint - ok
21:36:50.0078 0448 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:36:50.0093 0448 Arp1394 - ok
21:36:50.0125 0448 asc - ok
21:36:50.0203 0448 asc3350p - ok
21:36:50.0265 0448 asc3550 - ok
21:36:50.0437 0448 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:36:50.0437 0448 AsyncMac - ok
21:36:50.0515 0448 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:36:50.0515 0448 atapi - ok
21:36:50.0546 0448 Atdisk - ok
21:36:50.0609 0448 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:36:50.0625 0448 Atmarpc - ok
21:36:50.0750 0448 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:36:50.0750 0448 audstub - ok
21:36:50.0828 0448 AVerAF35 (01667d8b162470ed0b7b1ec73781a0ad) C:\WINDOWS\system32\Drivers\AVerAF35.sys
21:36:50.0828 0448 AVerAF35 - ok
21:36:50.0953 0448 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:36:50.0953 0448 Beep - ok
21:36:51.0093 0448 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:36:51.0093 0448 cbidf2k - ok
21:36:51.0187 0448 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:36:51.0187 0448 CCDECODE - ok
21:36:51.0265 0448 cd20xrnt - ok
21:36:51.0343 0448 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:36:51.0343 0448 Cdaudio - ok
21:36:51.0421 0448 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:36:51.0421 0448 Cdfs - ok
21:36:51.0484 0448 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:36:51.0500 0448 Cdrom - ok
21:36:51.0546 0448 Changer - ok
21:36:51.0703 0448 CmdIde - ok
21:36:51.0843 0448 Cpqarray - ok
21:36:51.0953 0448 ctac32k - ok
21:36:52.0000 0448 ctaud2k - ok
21:36:52.0046 0448 ctprxy2k - ok
21:36:52.0140 0448 dac2w2k - ok
21:36:52.0218 0448 dac960nt - ok
21:36:52.0328 0448 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:36:52.0328 0448 Disk - ok
21:36:52.0468 0448 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
21:36:52.0468 0448 dmboot - ok
21:36:52.0515 0448 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
21:36:52.0515 0448 dmio - ok
21:36:52.0609 0448 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:36:52.0609 0448 dmload - ok
21:36:52.0671 0448 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:36:52.0671 0448 DMusic - ok
21:36:52.0734 0448 dpti2o - ok
21:36:52.0796 0448 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:36:52.0796 0448 drmkaud - ok
21:36:52.0875 0448 emupia - ok
21:36:53.0000 0448 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:36:53.0000 0448 Fastfat - ok
21:36:53.0093 0448 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:36:53.0093 0448 Fdc - ok
21:36:53.0171 0448 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
21:36:53.0171 0448 Fips - ok
21:36:53.0250 0448 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:36:53.0250 0448 Flpydisk - ok
21:36:53.0343 0448 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:36:53.0343 0448 FltMgr - ok
21:36:53.0453 0448 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:36:53.0453 0448 Fs_Rec - ok
21:36:53.0578 0448 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:36:53.0578 0448 Ftdisk - ok
21:36:53.0625 0448 GMSIPCI - ok
21:36:53.0703 0448 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:36:53.0703 0448 Gpc - ok
21:36:53.0828 0448 ha10kx2k - ok
21:36:53.0906 0448 ha20x2k - ok
21:36:53.0968 0448 hap16v2k - ok
21:36:54.0046 0448 hap17v2k - ok
21:36:54.0171 0448 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:36:54.0171 0448 hidusb - ok
21:36:54.0250 0448 hpn - ok
21:36:54.0359 0448 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
21:36:54.0375 0448 HTTP - ok
21:36:54.0468 0448 i2omgmt - ok
21:36:54.0546 0448 i2omp - ok
21:36:54.0625 0448 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:36:54.0625 0448 i8042prt - ok
21:36:54.0687 0448 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:36:54.0687 0448 Imapi - ok
21:36:54.0781 0448 ini910u - ok
21:36:54.0859 0448 IntelIde - ok
21:36:54.0937 0448 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:36:54.0937 0448 Ip6Fw - ok
21:36:54.0984 0448 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:36:54.0984 0448 IpFilterDriver - ok
21:36:55.0031 0448 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:36:55.0031 0448 IpInIp - ok
21:36:55.0125 0448 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:36:55.0125 0448 IpNat - ok
21:36:55.0187 0448 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:36:55.0187 0448 IPSec - ok
21:36:55.0265 0448 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:36:55.0265 0448 IRENUM - ok
21:36:55.0359 0448 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:36:55.0359 0448 isapnp - ok
21:36:55.0437 0448 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:36:55.0437 0448 Kbdclass - ok
21:36:55.0484 0448 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:36:55.0484 0448 kbdhid - ok
21:36:55.0562 0448 Kl1 (186b54479d98e48aee0e9ada4b3c4d31) C:\WINDOWS\system32\DRIVERS\kl1.sys
21:36:55.0562 0448 Kl1 - ok
21:36:55.0656 0448 kl2 (bf485bfba13c0ab116701fd9c55324d0) C:\WINDOWS\system32\DRIVERS\kl2.sys
21:36:55.0656 0448 kl2 - ok
21:36:55.0843 0448 KLIF (5d92a03045a6a98708975b3d77b39a36) C:\WINDOWS\system32\DRIVERS\klif.sys
21:36:55.0843 0448 KLIF - ok
21:36:55.0890 0448 klim5 (96a7ec308a93da26dfe481308baac2a2) C:\WINDOWS\system32\DRIVERS\klim5.sys
21:36:55.0890 0448 klim5 - ok
21:36:55.0937 0448 klmouflt (3959530f69e19da56f1f24f2c89f1e2c) C:\WINDOWS\system32\DRIVERS\klmouflt.sys
21:36:55.0937 0448 klmouflt - ok
21:36:56.0015 0448 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:36:56.0015 0448 kmixer - ok
21:36:56.0093 0448 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
21:36:56.0093 0448 KSecDD - ok
21:36:56.0203 0448 lbrtfdc - ok
21:36:56.0375 0448 LVPr2Mon (1a7db7a00a4b0d8da24cd691a4547291) C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
21:36:56.0375 0448 LVPr2Mon - ok
21:36:56.0500 0448 LVRS (87ecce893d8aec5a9337b917742d339c) C:\WINDOWS\system32\DRIVERS\lvrs.sys
21:36:56.0500 0448 LVRS - ok
21:36:56.0562 0448 MBAMSwissArmy - ok
21:36:56.0687 0448 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:36:56.0687 0448 mnmdd - ok
21:36:56.0828 0448 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
21:36:56.0828 0448 Modem - ok
21:36:56.0890 0448 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:36:56.0890 0448 Mouclass - ok
21:36:56.0937 0448 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:36:56.0937 0448 mouhid - ok
21:36:57.0000 0448 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:36:57.0000 0448 MountMgr - ok
21:36:57.0125 0448 MPE (c0f8e0c2c3c0437cf37c6781896dc3ec) C:\WINDOWS\system32\DRIVERS\MPE.sys
21:36:57.0125 0448 MPE - ok
21:36:57.0187 0448 mraid35x - ok
21:36:57.0265 0448 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:36:57.0265 0448 MRxDAV - ok
21:36:57.0359 0448 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:36:57.0375 0448 MRxSmb - ok
21:36:57.0500 0448 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:36:57.0500 0448 Msfs - ok
21:36:57.0625 0448 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:36:57.0625 0448 MSKSSRV - ok
21:36:57.0703 0448 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:36:57.0703 0448 MSPCLOCK - ok
21:36:57.0765 0448 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:36:57.0765 0448 MSPQM - ok
21:36:57.0843 0448 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:36:57.0843 0448 mssmbios - ok
21:36:57.0906 0448 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
21:36:57.0906 0448 MSTEE - ok
21:36:57.0968 0448 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
21:36:57.0968 0448 Mup - ok
21:36:58.0031 0448 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:36:58.0031 0448 NABTSFEC - ok
21:36:58.0140 0448 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:36:58.0140 0448 NDIS - ok
21:36:58.0218 0448 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:36:58.0218 0448 NdisIP - ok
21:36:58.0312 0448 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:36:58.0312 0448 NdisTapi - ok
21:36:58.0343 0448 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:36:58.0343 0448 Ndisuio - ok
21:36:58.0437 0448 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:36:58.0437 0448 NdisWan - ok
21:36:58.0531 0448 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
21:36:58.0531 0448 NDProxy - ok
21:36:58.0609 0448 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:36:58.0609 0448 NetBIOS - ok
21:36:58.0671 0448 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:36:58.0671 0448 NetBT - ok
21:36:58.0875 0448 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:36:58.0875 0448 NIC1394 - ok
21:36:58.0968 0448 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:36:58.0968 0448 Npfs - ok
21:36:59.0015 0448 NTACCESS - ok
21:36:59.0109 0448 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:36:59.0109 0448 Ntfs - ok
21:36:59.0203 0448 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:36:59.0203 0448 Null - ok
21:36:59.0625 0448 nv (6733e80a193fc36f41c24142b0c45c0e) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
21:36:59.0734 0448 nv - ok
21:36:59.0875 0448 nvata (dce353985c988bfb7e84fd942068151f) C:\WINDOWS\system32\DRIVERS\nvata.sys
21:36:59.0875 0448 nvata - ok
21:36:59.0921 0448 NVENETFD (720cc533eecb65553bd86b139ca04433) C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
21:36:59.0921 0448 NVENETFD - ok
21:36:59.0968 0448 nvnetbus (5f9f545cc5904dd8765f84ee1d056406) C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
21:36:59.0968 0448 nvnetbus - ok
21:37:00.0078 0448 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:37:00.0078 0448 NwlnkFlt - ok
21:37:00.0140 0448 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:37:00.0140 0448 NwlnkFwd - ok
21:37:00.0250 0448 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:37:00.0250 0448 ohci1394 - ok
21:37:00.0343 0448 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\DRIVERS\parport.sys
21:37:00.0343 0448 Parport - ok
21:37:00.0375 0448 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:37:00.0375 0448 PartMgr - ok
21:37:00.0453 0448 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
21:37:00.0453 0448 ParVdm - ok
21:37:00.0546 0448 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
21:37:00.0546 0448 PCI - ok
21:37:00.0625 0448 PCIDump - ok
21:37:00.0703 0448 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:37:00.0703 0448 PCIIde - ok
21:37:00.0765 0448 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
21:37:00.0765 0448 Pcmcia - ok
21:37:00.0828 0448 PDCOMP - ok
21:37:00.0906 0448 PDFRAME - ok
21:37:00.0968 0448 PDRELI - ok
21:37:01.0031 0448 PDRFRAME - ok
21:37:01.0093 0448 pepifilter (b20f958b207e6aaac5f70d04dd2c30d8) C:\WINDOWS\system32\DRIVERS\lv302af.sys
21:37:01.0093 0448 pepifilter - ok
21:37:01.0140 0448 perc2 - ok
21:37:01.0203 0448 perc2hib - ok
21:37:01.0437 0448 PID_PEPI (dd184d9adfe2a8a21741dbdfe9e22f5c) C:\WINDOWS\system32\DRIVERS\LV302V32.SYS
21:37:01.0468 0448 PID_PEPI - ok
21:37:01.0640 0448 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:37:01.0640 0448 PptpMiniport - ok
21:37:01.0718 0448 Processor (7eb15dce4ec3a0220bd796a15c18186e) C:\WINDOWS\system32\DRIVERS\processr.sys
21:37:01.0718 0448 Processor - ok
21:37:01.0812 0448 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:37:01.0812 0448 PSched - ok
21:37:01.0859 0448 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:37:01.0859 0448 Ptilink - ok
21:37:01.0906 0448 ql1080 - ok
21:37:01.0953 0448 Ql10wnt - ok
21:37:02.0015 0448 ql12160 - ok
21:37:02.0093 0448 ql1240 - ok
21:37:02.0171 0448 ql1280 - ok
21:37:02.0234 0448 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:37:02.0234 0448 RasAcd - ok
21:37:02.0328 0448 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:37:02.0328 0448 Rasl2tp - ok
21:37:02.0421 0448 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:37:02.0421 0448 RasPppoe - ok
21:37:02.0500 0448 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:37:02.0515 0448 Raspti - ok
21:37:02.0609 0448 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:37:02.0609 0448 Rdbss - ok
21:37:02.0687 0448 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:37:02.0687 0448 RDPCDD - ok
21:37:02.0796 0448 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
21:37:02.0812 0448 RDPWD - ok
21:37:02.0875 0448 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:37:02.0875 0448 redbook - ok
21:37:03.0140 0448 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:37:03.0140 0448 Secdrv - ok
21:37:03.0281 0448 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:37:03.0281 0448 serenum - ok
21:37:03.0343 0448 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
21:37:03.0343 0448 Serial - ok
21:37:03.0453 0448 SetupNTGLM7X - ok
21:37:03.0515 0448 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:37:03.0515 0448 Sfloppy - ok
21:37:03.0609 0448 Simbad - ok
21:37:03.0671 0448 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:37:03.0671 0448 SLIP - ok
21:37:03.0750 0448 Sparrow - ok
21:37:03.0828 0448 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:37:03.0828 0448 splitter - ok
21:37:03.0968 0448 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
21:37:03.0968 0448 sr - ok
21:37:04.0093 0448 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
21:37:04.0093 0448 Srv - ok
21:37:04.0203 0448 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
21:37:04.0203 0448 streamip - ok
21:37:04.0250 0448 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
21:37:04.0250 0448 swenum - ok
21:37:04.0296 0448 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
21:37:04.0296 0448 swmidi - ok
21:37:04.0390 0448 symc810 - ok
21:37:04.0453 0448 symc8xx - ok
21:37:04.0500 0448 sym_hi - ok
21:37:04.0562 0448 sym_u3 - ok
21:37:04.0640 0448 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
21:37:04.0656 0448 sysaudio - ok
21:37:04.0828 0448 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:37:04.0828 0448 Tcpip - ok
21:37:04.0906 0448 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
21:37:04.0906 0448 TDPIPE - ok
21:37:04.0984 0448 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
21:37:04.0984 0448 TDTCP - ok
21:37:05.0062 0448 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
21:37:05.0062 0448 TermDD - ok
21:37:05.0187 0448 TosIde - ok
21:37:05.0281 0448 truecrypt (be45dad1c73a3216edc8c485916f6594) C:\WINDOWS\system32\drivers\truecrypt.sys
21:37:05.0281 0448 truecrypt - ok
21:37:05.0406 0448 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
21:37:05.0406 0448 Udfs - ok
21:37:05.0453 0448 ultra - ok
21:37:05.0531 0448 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
21:37:05.0531 0448 Update - ok
21:37:05.0671 0448 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
21:37:05.0671 0448 usbaudio - ok
21:37:05.0718 0448 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:37:05.0718 0448 usbccgp - ok
21:37:05.0812 0448 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:37:05.0812 0448 usbehci - ok
21:37:05.0890 0448 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:37:05.0890 0448 usbhub - ok
21:37:05.0937 0448 usbohci (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys
21:37:05.0937 0448 usbohci - ok
21:37:06.0031 0448 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:37:06.0031 0448 USBSTOR - ok
21:37:06.0171 0448 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
21:37:06.0171 0448 VgaSave - ok
21:37:06.0234 0448 ViaIde - ok
21:37:06.0312 0448 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
21:37:06.0312 0448 VolSnap - ok
21:37:06.0484 0448 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:37:06.0484 0448 Wanarp - ok
21:37:06.0546 0448 WDICA - ok
21:37:06.0625 0448 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
21:37:06.0625 0448 wdmaud - ok
21:37:07.0062 0448 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
21:37:07.0062 0448 WSTCODEC - ok
21:37:07.0203 0448 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:37:07.0203 0448 WudfPf - ok
21:37:07.0281 0448 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:37:07.0281 0448 WudfRd - ok
21:37:07.0531 0448 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
21:37:07.0609 0448 \Device\Harddisk0\DR0 - ok
21:37:07.0656 0448 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR2
21:37:07.0671 0448 \Device\Harddisk1\DR2 - ok
21:37:07.0687 0448 Boot (0x1200) (651c6f6afcf1590739f7589c6584ad05) \Device\Harddisk0\DR0\Partition0
21:37:07.0703 0448 \Device\Harddisk0\DR0\Partition0 - ok
21:37:07.0750 0448 Boot (0x1200) (47663bcaed31a861aefebb892838e039) \Device\Harddisk1\DR2\Partition0
21:37:07.0750 0448 \Device\Harddisk1\DR2\Partition0 - ok
21:37:07.0812 0448 Boot (0x1200) (d8f1fc1dd2769791d8e71fb215c97068) \Device\Harddisk1\DR2\Partition1
21:37:07.0812 0448 \Device\Harddisk1\DR2\Partition1 - ok
21:37:07.0859 0448 Boot (0x1200) (046a8779a29945fc35b3f64c3cd0b36e) \Device\Harddisk1\DR2\Partition2
21:37:07.0859 0448 \Device\Harddisk1\DR2\Partition2 - ok
21:37:07.0875 0448 ============================================================
21:37:07.0875 0448 Scan finished
21:37:07.0875 0448 ============================================================
21:37:07.0953 1400 Detected object count: 0
21:37:07.0953 1400 Actual detected object count: 0
21:37:58.0515 1608 ============================================================
21:37:58.0515 1608 Scan started
21:37:58.0515 1608 Mode: Manual; TDLFS;
21:37:58.0515 1608 ============================================================
21:37:58.0796 1608 Abiosdsk - ok
21:37:58.0875 1608 abp480n5 - ok
21:37:58.0968 1608 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:37:58.0968 1608 ACPI - ok
21:37:59.0078 1608 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
21:37:59.0078 1608 ACPIEC - ok
21:37:59.0125 1608 adpu160m - ok
21:37:59.0203 1608 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:37:59.0203 1608 aec - ok
21:37:59.0281 1608 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
21:37:59.0281 1608 AFD - ok
21:37:59.0359 1608 Aha154x - ok
21:37:59.0421 1608 aic78u2 - ok
21:37:59.0484 1608 aic78xx - ok
21:37:59.0671 1608 ALCXWDM (dd8520280304b6145a6be31008748c7c) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
21:37:59.0718 1608 ALCXWDM - ok
21:37:59.0875 1608 AliIde - ok
21:37:59.0906 1608 AmdK8 (59301936898ae62245a6f09c0aba9475) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
21:37:59.0906 1608 AmdK8 - ok
21:37:59.0953 1608 amsint - ok
21:38:00.0046 1608 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:38:00.0046 1608 Arp1394 - ok
21:38:00.0093 1608 asc - ok
21:38:00.0140 1608 asc3350p - ok
21:38:00.0218 1608 asc3550 - ok
21:38:00.0359 1608 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:38:00.0359 1608 AsyncMac - ok
21:38:00.0468 1608 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:38:00.0468 1608 atapi - ok
21:38:00.0546 1608 Atdisk - ok
21:38:00.0609 1608 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:38:00.0609 1608 Atmarpc - ok
21:38:00.0703 1608 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:38:00.0703 1608 audstub - ok
21:38:00.0765 1608 AVerAF35 (01667d8b162470ed0b7b1ec73781a0ad) C:\WINDOWS\system32\Drivers\AVerAF35.sys
21:38:00.0765 1608 AVerAF35 - ok
21:38:00.0937 1608 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:38:00.0937 1608 Beep - ok
21:38:01.0078 1608 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:38:01.0078 1608 cbidf2k - ok
21:38:01.0125 1608 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:38:01.0125 1608 CCDECODE - ok
21:38:01.0234 1608 cd20xrnt - ok
21:38:01.0296 1608 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:38:01.0296 1608 Cdaudio - ok
21:38:01.0375 1608 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:38:01.0375 1608 Cdfs - ok
21:38:01.0453 1608 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:38:01.0453 1608 Cdrom - ok
21:38:01.0484 1608 Changer - ok
21:38:01.0609 1608 CmdIde - ok
21:38:01.0718 1608 Cpqarray - ok
21:38:01.0828 1608 ctac32k - ok
21:38:01.0875 1608 ctaud2k - ok
21:38:01.0937 1608 ctprxy2k - ok
21:38:01.0984 1608 dac2w2k - ok
21:38:02.0046 1608 dac960nt - ok
21:38:02.0171 1608 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:38:02.0171 1608 Disk - ok
21:38:02.0281 1608 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
21:38:02.0281 1608 dmboot - ok
21:38:02.0343 1608 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
21:38:02.0359 1608 dmio - ok
21:38:02.0468 1608 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:38:02.0468 1608 dmload - ok
21:38:02.0562 1608 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:38:02.0562 1608 DMusic - ok
21:38:02.0671 1608 dpti2o - ok
21:38:02.0750 1608 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:38:02.0750 1608 drmkaud - ok
21:38:02.0812 1608 emupia - ok
21:38:02.0937 1608 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:38:02.0937 1608 Fastfat - ok
21:38:03.0031 1608 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:38:03.0031 1608 Fdc - ok
21:38:03.0093 1608 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
21:38:03.0093 1608 Fips - ok
21:38:03.0171 1608 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:38:03.0171 1608 Flpydisk - ok
21:38:03.0250 1608 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:38:03.0250 1608 FltMgr - ok
21:38:03.0375 1608 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:38:03.0375 1608 Fs_Rec - ok
21:38:03.0421 1608 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:38:03.0421 1608 Ftdisk - ok
21:38:03.0468 1608 GMSIPCI - ok
21:38:03.0531 1608 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:38:03.0531 1608 Gpc - ok
21:38:03.0656 1608 ha10kx2k - ok
21:38:03.0703 1608 ha20x2k - ok
21:38:03.0812 1608 hap16v2k - ok
21:38:03.0843 1608 hap17v2k - ok
21:38:03.0968 1608 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:38:03.0968 1608 hidusb - ok
21:38:04.0031 1608 hpn - ok
21:38:04.0109 1608 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
21:38:04.0109 1608 HTTP - ok
21:38:04.0171 1608 i2omgmt - ok
21:38:04.0218 1608 i2omp - ok
21:38:04.0281 1608 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:38:04.0281 1608 i8042prt - ok
21:38:04.0359 1608 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:38:04.0359 1608 Imapi - ok
21:38:04.0453 1608 ini910u - ok
21:38:04.0531 1608 IntelIde - ok
21:38:04.0625 1608 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:38:04.0625 1608 Ip6Fw - ok
21:38:04.0718 1608 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:38:04.0718 1608 IpFilterDriver - ok
21:38:04.0796 1608 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:38:04.0796 1608 IpInIp - ok
21:38:04.0890 1608 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:38:04.0890 1608 IpNat - ok
21:38:04.0921 1608 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:38:04.0921 1608 IPSec - ok
21:38:05.0015 1608 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:38:05.0015 1608 IRENUM - ok
21:38:05.0109 1608 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:38:05.0109 1608 isapnp - ok
21:38:05.0187 1608 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:38:05.0187 1608 Kbdclass - ok
21:38:05.0250 1608 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:38:05.0250 1608 kbdhid - ok
21:38:05.0296 1608 Kl1 (186b54479d98e48aee0e9ada4b3c4d31) C:\WINDOWS\system32\DRIVERS\kl1.sys
21:38:05.0296 1608 Kl1 - ok
21:38:05.0359 1608 kl2 (bf485bfba13c0ab116701fd9c55324d0) C:\WINDOWS\system32\DRIVERS\kl2.sys
21:38:05.0359 1608 kl2 - ok
21:38:05.0437 1608 KLIF (5d92a03045a6a98708975b3d77b39a36) C:\WINDOWS\system32\DRIVERS\klif.sys
21:38:05.0453 1608 KLIF - ok
21:38:05.0531 1608 klim5 (96a7ec308a93da26dfe481308baac2a2) C:\WINDOWS\system32\DRIVERS\klim5.sys
21:38:05.0531 1608 klim5 - ok
21:38:05.0578 1608 klmouflt (3959530f69e19da56f1f24f2c89f1e2c) C:\WINDOWS\system32\DRIVERS\klmouflt.sys
21:38:05.0578 1608 klmouflt - ok
21:38:05.0640 1608 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:38:05.0640 1608 kmixer - ok
21:38:05.0703 1608 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
21:38:05.0703 1608 KSecDD - ok
21:38:05.0828 1608 lbrtfdc - ok
21:38:06.0015 1608 LVPr2Mon (1a7db7a00a4b0d8da24cd691a4547291) C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
21:38:06.0015 1608 LVPr2Mon - ok
21:38:06.0125 1608 LVRS (87ecce893d8aec5a9337b917742d339c) C:\WINDOWS\system32\DRIVERS\lvrs.sys
21:38:06.0125 1608 LVRS - ok
21:38:06.0156 1608 MBAMSwissArmy - ok
21:38:06.0250 1608 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:38:06.0250 1608 mnmdd - ok
21:38:06.0343 1608 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
21:38:06.0343 1608 Modem - ok
21:38:06.0437 1608 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:38:06.0437 1608 Mouclass - ok
21:38:06.0515 1608 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:38:06.0515 1608 mouhid - ok
21:38:06.0609 1608 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:38:06.0609 1608 MountMgr - ok
21:38:06.0703 1608 MPE (c0f8e0c2c3c0437cf37c6781896dc3ec) C:\WINDOWS\system32\DRIVERS\MPE.sys
21:38:06.0703 1608 MPE - ok
21:38:06.0781 1608 mraid35x - ok
21:38:06.0828 1608 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:38:06.0828 1608 MRxDAV - ok
21:38:06.0890 1608 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:38:06.0890 1608 MRxSmb - ok
21:38:07.0000 1608 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:38:07.0000 1608 Msfs - ok
21:38:07.0093 1608 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:38:07.0093 1608 MSKSSRV - ok
21:38:07.0156 1608 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:38:07.0156 1608 MSPCLOCK - ok
21:38:07.0203 1608 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:38:07.0203 1608 MSPQM - ok
21:38:07.0312 1608 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:38:07.0312 1608 mssmbios - ok
21:38:07.0375 1608 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
21:38:07.0375 1608 MSTEE - ok
21:38:07.0484 1608 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
21:38:07.0484 1608 Mup - ok
21:38:07.0593 1608 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:38:07.0593 1608 NABTSFEC - ok
21:38:07.0703 1608 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:38:07.0703 1608 NDIS - ok
21:38:07.0828 1608 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:38:07.0828 1608 NdisIP - ok
21:38:07.0921 1608 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:38:07.0921 1608 NdisTapi - ok
21:38:08.0015 1608 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:38:08.0015 1608 Ndisuio - ok
21:38:08.0109 1608 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:38:08.0109 1608 NdisWan - ok
21:38:08.0187 1608 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
21:38:08.0203 1608 NDProxy - ok
21:38:08.0296 1608 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:38:08.0312 1608 NetBIOS - ok
21:38:08.0390 1608 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:38:08.0390 1608 NetBT - ok
21:38:08.0609 1608 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:38:08.0609 1608 NIC1394 - ok
21:38:08.0703 1608 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:38:08.0703 1608 Npfs - ok
21:38:08.0750 1608 NTACCESS - ok
21:38:08.0828 1608 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:38:08.0843 1608 Ntfs - ok
21:38:08.0984 1608 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:38:08.0984 1608 Null - ok
21:38:09.0406 1608 nv (6733e80a193fc36f41c24142b0c45c0e) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
21:38:09.0546 1608 nv - ok
21:38:09.0656 1608 nvata (dce353985c988bfb7e84fd942068151f) C:\WINDOWS\system32\DRIVERS\nvata.sys
21:38:09.0656 1608 nvata - ok
21:38:09.0750 1608 NVENETFD (720cc533eecb65553bd86b139ca04433) C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
21:38:09.0750 1608 NVENETFD - ok
21:38:09.0812 1608 nvnetbus (5f9f545cc5904dd8765f84ee1d056406) C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
21:38:09.0812 1608 nvnetbus - ok
21:38:09.0906 1608 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:38:09.0906 1608 NwlnkFlt - ok
21:38:10.0031 1608 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:38:10.0031 1608 NwlnkFwd - ok
21:38:10.0109 1608 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:38:10.0109 1608 ohci1394 - ok
21:38:10.0218 1608 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\DRIVERS\parport.sys
21:38:10.0234 1608 Parport - ok
21:38:10.0312 1608 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:38:10.0312 1608 PartMgr - ok
21:38:10.0390 1608 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
21:38:10.0390 1608 ParVdm - ok
21:38:10.0453 1608 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
21:38:10.0453 1608 PCI - ok
21:38:10.0531 1608 PCIDump - ok
21:38:10.0609 1608 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:38:10.0609 1608 PCIIde - ok
21:38:10.0703 1608 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
21:38:10.0703 1608 Pcmcia - ok
21:38:10.0796 1608 PDCOMP - ok
21:38:10.0859 1608 PDFRAME - ok
21:38:10.0921 1608 PDRELI - ok
21:38:11.0000 1608 PDRFRAME - ok
21:38:11.0093 1608 pepifilter (b20f958b207e6aaac5f70d04dd2c30d8) C:\WINDOWS\system32\DRIVERS\lv302af.sys
21:38:11.0093 1608 pepifilter - ok
21:38:11.0171 1608 perc2 - ok
21:38:11.0218 1608 perc2hib - ok
21:38:11.0484 1608 PID_PEPI (dd184d9adfe2a8a21741dbdfe9e22f5c) C:\WINDOWS\system32\DRIVERS\LV302V32.SYS
21:38:11.0515 1608 PID_PEPI - ok
21:38:11.0656 1608 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:38:11.0671 1608 PptpMiniport - ok
21:38:11.0750 1608 Processor (7eb15dce4ec3a0220bd796a15c18186e) C:\WINDOWS\system32\DRIVERS\processr.sys
21:38:11.0750 1608 Processor - ok
21:38:11.0859 1608 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:38:11.0859 1608 PSched - ok
21:38:11.0906 1608 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:38:11.0906 1608 Ptilink - ok
21:38:11.0953 1608 ql1080 - ok
21:38:12.0015 1608 Ql10wnt - ok
21:38:12.0062 1608 ql12160 - ok
21:38:12.0125 1608 ql1240 - ok
21:38:12.0203 1608 ql1280 - ok
21:38:12.0281 1608 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:38:12.0281 1608 RasAcd - ok
21:38:12.0359 1608 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:38:12.0359 1608 Rasl2tp - ok
21:38:12.0453 1608 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:38:12.0453 1608 RasPppoe - ok
21:38:12.0500 1608 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:38:12.0500 1608 Raspti - ok
21:38:12.0593 1608 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:38:12.0593 1608 Rdbss - ok
21:38:12.0671 1608 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:38:12.0671 1608 RDPCDD - ok
21:38:12.0812 1608 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
21:38:12.0812 1608 RDPWD - ok
21:38:12.0906 1608 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:38:12.0906 1608 redbook - ok
21:38:13.0171 1608 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:38:13.0171 1608 Secdrv - ok
21:38:13.0281 1608 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:38:13.0281 1608 serenum - ok
21:38:13.0359 1608 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
21:38:13.0359 1608 Serial - ok
21:38:13.0484 1608 SetupNTGLM7X - ok
21:38:13.0562 1608 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:38:13.0562 1608 Sfloppy - ok
21:38:13.0671 1608 Simbad - ok
21:38:13.0781 1608 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:38:13.0781 1608 SLIP - ok
21:38:13.0843 1608 Sparrow - ok
21:38:13.0906 1608 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:38:13.0906 1608 splitter - ok
21:38:14.0062 1608 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
21:38:14.0062 1608 sr - ok
21:38:14.0171 1608 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
21:38:14.0171 1608 Srv - ok
21:38:14.0281 1608 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
21:38:14.0281 1608 streamip - ok
21:38:14.0359 1608 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
21:38:14.0359 1608 swenum - ok
21:38:14.0453 1608 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
21:38:14.0453 1608 swmidi - ok
21:38:14.0609 1608 symc810 - ok
21:38:14.0671 1608 symc8xx - ok
21:38:14.0750 1608 sym_hi - ok
21:38:14.0796 1608 sym_u3 - ok
21:38:14.0875 1608 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
21:38:14.0875 1608 sysaudio - ok
21:38:15.0015 1608 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:38:15.0015 1608 Tcpip - ok
21:38:15.0125 1608 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
21:38:15.0125 1608 TDPIPE - ok
21:38:15.0187 1608 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
21:38:15.0203 1608 TDTCP - ok
21:38:15.0265 1608 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
21:38:15.0265 1608 TermDD - ok
21:38:15.0390 1608 TosIde - ok
21:38:15.0484 1608 truecrypt (be45dad1c73a3216edc8c485916f6594) C:\WINDOWS\system32\drivers\truecrypt.sys
21:38:15.0484 1608 truecrypt - ok
21:38:15.0625 1608 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
21:38:15.0625 1608 Udfs - ok
21:38:15.0687 1608 ultra - ok
21:38:15.0781 1608 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
21:38:15.0781 1608 Update - ok
21:38:15.0921 1608 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
21:38:15.0921 1608 usbaudio - ok
21:38:15.0984 1608 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:38:15.0984 1608 usbccgp - ok
21:38:16.0031 1608 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:38:16.0031 1608 usbehci - ok
21:38:16.0140 1608 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:38:16.0140 1608 usbhub - ok
21:38:16.0234 1608 usbohci (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys
21:38:16.0234 1608 usbohci - ok
21:38:16.0312 1608 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:38:16.0312 1608 USBSTOR - ok
21:38:16.0421 1608 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
21:38:16.0421 1608 VgaSave - ok
21:38:16.0500 1608 ViaIde - ok
21:38:16.0578 1608 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
21:38:16.0578 1608 VolSnap - ok
21:38:16.0718 1608 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:38:16.0718 1608 Wanarp - ok
21:38:16.0765 1608 WDICA - ok
21:38:16.0828 1608 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
21:38:16.0828 1608 wdmaud - ok
21:38:17.0187 1608 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
21:38:17.0187 1608 WSTCODEC - ok
21:38:17.0296 1608 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:38:17.0296 1608 WudfPf - ok
21:38:17.0406 1608 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:38:17.0406 1608 WudfRd - ok
21:38:17.0640 1608 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
21:38:17.0750 1608 \Device\Harddisk0\DR0 - ok
21:38:17.0796 1608 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR2
21:38:17.0890 1608 \Device\Harddisk1\DR2 - ok
21:38:17.0921 1608 Boot (0x1200) (651c6f6afcf1590739f7589c6584ad05) \Device\Harddisk0\DR0\Partition0
21:38:17.0921 1608 \Device\Harddisk0\DR0\Partition0 - ok
21:38:17.0968 1608 Boot (0x1200) (47663bcaed31a861aefebb892838e039) \Device\Harddisk1\DR2\Partition0
21:38:17.0984 1608 \Device\Harddisk1\DR2\Partition0 - ok
21:38:18.0031 1608 Boot (0x1200) (d8f1fc1dd2769791d8e71fb215c97068) \Device\Harddisk1\DR2\Partition1
21:38:18.0031 1608 \Device\Harddisk1\DR2\Partition1 - ok
21:38:18.0078 1608 Boot (0x1200) (046a8779a29945fc35b3f64c3cd0b36e) \Device\Harddisk1\DR2\Partition2
21:38:18.0078 1608 \Device\Harddisk1\DR2\Partition2 - ok
21:38:18.0109 1608 ============================================================
21:38:18.0109 1608 Scan finished
21:38:18.0109 1608 ============================================================
21:38:18.0218 0504 Detected object count: 0
21:38:18.0218 0504 Actual detected object count: 0
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
mám modrou obrazovku smrti pomůže někdo?
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119509
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: mám modrou obrazovku smrti pomůže někdo?
Log TDSS vypadá OK. Co je napsáno na té modré obrazovce?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: mám modrou obrazovku smrti pomůže někdo?
no je toho tam víc skočí to tam na chvíli pak to restartuje a po restartu se zastaví na výběru spustit běžným způsobem poslední známá konfigurace nebo safe mod.na modré obrazovce je napsáno že je něco špatně s konfigurací hardwaru nebo tak něco.Jde to spustit jenom v safe modu tam to běží i s prací v síti.ukázalo to taky rootkit zeroaccess
v safe modu mi neskenuje kaspersky antivirus chce to pustit normálně ale to nejde pustit tak nevím jestli jsem vymazal něco v registrech.nejde mi ani zvuk jinak vše jen v safe modu.
-------------------------------------------------------------
ComboFix 11-11-05.03 - Jirka 06.11.2011 5:50.3.1 - x86 NETWORK
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1793 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jirka\Plocha\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\cleanup.exe
c:\windows\$NtUninstallKB48278$
c:\windows\$NtUninstallKB48278$\1011050649
c:\windows\$NtUninstallKB48278$\4197103939\@
c:\windows\$NtUninstallKB48278$\4197103939\L\gxooxymd
c:\windows\$NtUninstallKB48278$\4197103939\loader.tlb
c:\windows\$NtUninstallKB48278$\4197103939\U\@00000001
c:\windows\$NtUninstallKB48278$\4197103939\U\@000000c0
c:\windows\$NtUninstallKB48278$\4197103939\U\@000000cb
c:\windows\$NtUninstallKB48278$\4197103939\U\@000000cf
c:\windows\$NtUninstallKB48278$\4197103939\U\@80000000
c:\windows\$NtUninstallKB48278$\4197103939\U\@800000c0
c:\windows\$NtUninstallKB48278$\4197103939\U\@800000cb
c:\windows\$NtUninstallKB48278$\4197103939\U\@800000cf
c:\windows\{2521BB91-29B1-4d7e-9137-AC9875D77735}
c:\windows\system32\pthreadVC.dll
c:\windows\system32\Thumbs.db
C:\zip.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-06 do 2011-11-06 )))))))))))))))))))))))))))))))
.
.
2011-11-06 03:27 . 2011-11-06 03:27 709968 ----a-w- c:\windows\is-PB7FQ.exe
2011-11-06 03:25 . 2011-08-31 16:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-06 01:01 . 2011-11-06 01:01 574 ----a-w- C:\cleanup.bat
2011-11-05 18:18 . 2011-11-05 18:18 -------- d-----w- C:\MEDIA.COM
2011-11-05 18:03 . 2011-11-05 18:03 -------- d-----w- C:\urn_003.lnk
2011-10-26 19:00 . 2011-10-27 00:10 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\UseNeXT
2011-10-26 19:00 . 2011-10-26 23:35 -------- d-----w- c:\program files\UseNeXT
2011-10-26 14:05 . 2011-10-27 04:04 -------- d-----w- c:\documents and settings\Jirka\Local Settings\Data aplikací\sabnzbd
2011-10-26 14:04 . 2011-10-27 04:04 -------- d-----w- c:\program files\SABnzbd
2011-10-23 23:05 . 2011-10-23 23:40 97961 ----a-w- c:\windows\system32\drivers\klick.dat
2011-10-23 23:05 . 2011-10-23 23:40 115369 ----a-w- c:\windows\system32\drivers\klin.dat
2011-10-23 23:03 . 2011-11-06 01:09 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Kaspersky Lab
2011-10-23 23:03 . 2011-10-23 23:03 -------- d-----w- c:\program files\Kaspersky Lab
2011-10-22 02:56 . 2011-10-22 02:56 -------- d-----w- C:\Users
2011-10-21 00:10 . 2011-10-21 00:10 -------- d--h--w- c:\documents and settings\All Users\Data aplikací\Common Files
2011-10-21 00:10 . 2011-10-21 00:21 -------- d-----w- c:\documents and settings\All Users\Data aplikací\MFAData
2011-10-20 23:36 . 2011-10-20 23:36 -------- d-----w- c:\program files\AVerMedia
2011-10-20 23:25 . 2011-10-20 23:25 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\Logitech
2011-10-20 19:20 . 2011-10-20 19:20 -------- d-----w- c:\documents and settings\user
2011-10-20 19:07 . 2011-07-16 14:17 151552 ----a-w- c:\windows\system32\ac3acm.acm
2011-10-20 19:07 . 2011-06-24 14:28 650752 ----a-w- c:\windows\system32\xvidcore.dll
2011-10-20 19:07 . 2008-09-24 18:41 839680 ----a-w- c:\windows\system32\lameACM.acm
2011-10-20 19:07 . 2011-10-04 08:00 74752 ----a-w- c:\windows\system32\ff_vfw.dll
2011-10-20 19:07 . 2011-06-24 14:44 243200 ----a-w- c:\windows\system32\xvidvfw.dll
2011-10-20 18:46 . 2008-04-14 03:22 221184 ----a-w- c:\windows\system32\wmpns.dll
2011-10-20 16:37 . 2011-10-25 06:20 -------- d-----w- c:\program files\Software Informer
2011-10-20 13:35 . 2011-10-20 13:35 -------- d-----w- C:\Documents
2011-10-20 12:32 . 2009-10-20 17:25 102400 ------r- c:\windows\system32\CardID.dll
2011-10-20 12:32 . 2007-02-08 13:09 49152 ------r- c:\windows\system32\AVerIO.dll
2011-10-20 12:32 . 2005-04-28 19:08 3456 ------r- c:\windows\system32\AVerIO.sys
2011-10-20 12:31 . 2008-10-07 17:31 290816 ------r- c:\windows\system32\sptlib22.dll
2011-10-20 12:31 . 2011-10-20 23:37 -------- d-----w- c:\program files\Common Files\AVerMedia
2011-10-20 12:30 . 2011-10-20 12:30 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2011-10-20 12:23 . 2008-04-13 18:46 15232 -c--a-w- c:\windows\system32\dllcache\mpe.sys
2011-10-20 12:23 . 2008-04-13 18:46 15232 ----a-w- c:\windows\system32\drivers\MPE.sys
2011-10-20 12:22 . 2008-04-14 03:22 56832 ----a-w- c:\windows\system32\MSDvbNP.ax
2011-10-20 12:22 . 2008-04-14 03:22 33280 ----a-w- c:\windows\system32\PsisRndr.ax
2011-10-20 12:22 . 2008-04-14 03:21 363520 -c--a-w- c:\windows\system32\dllcache\psisdecd.dll
2011-10-20 12:22 . 2008-04-14 03:21 363520 ----a-w- c:\windows\system32\PsisDecd.dll
2011-10-20 12:22 . 2008-04-13 18:46 11776 -c--a-w- c:\windows\system32\dllcache\bdasup.sys
2011-10-20 12:22 . 2008-04-13 18:46 11776 ----a-w- c:\windows\system32\drivers\BdaSup.sys
2011-10-20 12:22 . 2008-04-14 03:22 18432 ----a-w- c:\windows\system32\BdaPlgIn.ax
2011-10-20 08:25 . 2011-10-20 08:25 -------- d-----w- c:\program files\Common Files\Java
2011-10-20 03:19 . 2011-10-20 03:19 -------- d-----w- c:\documents and settings\Administrator\Data aplikací\Malwarebytes
2011-10-20 00:13 . 2011-10-23 23:47 -------- d-sh--w- c:\documents and settings\Jirka\Local Settings\Data aplikací\fa2ab943
2011-10-17 08:44 . 2011-10-17 08:44 -------- d-----w- c:\windows\system32\XPSViewer
2011-10-17 08:44 . 2011-10-17 08:44 -------- d-----w- c:\program files\MSBuild
2011-10-17 08:44 . 2011-10-17 08:44 -------- d-----w- c:\program files\Reference Assemblies
2011-10-17 08:43 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2011-10-17 08:43 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2011-10-17 08:43 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2011-10-17 08:43 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2011-10-17 08:43 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2011-10-17 08:43 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2011-10-17 08:43 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2011-10-17 08:43 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2011-10-16 18:43 . 2011-10-16 18:43 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\HTML Executable
2011-10-14 06:18 . 2011-10-14 06:18 -------- d-----w- C:\rsit
2011-10-13 01:55 . 2011-10-13 01:55 68096 --sha-r- c:\windows\system32\ntmsapiy.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-21 21:12 . 2006-03-02 12:00 64256 ----a-w- c:\windows\system32\drivers\serial.sys
2011-10-20 08:24 . 2011-09-11 03:20 128000 ----a-w- c:\windows\system32\javacpl.cpl
2011-10-20 08:24 . 2011-08-26 12:20 544656 ----a-w- c:\windows\system32\deployJava1.dll
2011-10-13 21:04 . 2011-08-24 20:23 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-27 11:53 . 2011-09-04 00:46 31552 ----a-w- c:\windows\system32\TURegOpt.exe
2011-09-27 11:46 . 2011-09-04 00:46 29504 ----a-w- c:\windows\system32\uxtuneup.dll
2011-09-26 09:41 . 2011-09-26 09:41 613376 ------w- c:\windows\system32\uiautomationcore.dll
2011-09-26 09:41 . 2006-03-02 12:00 22528 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-26 09:41 . 2006-03-02 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-09 09:12 . 2006-03-02 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-09-06 14:10 . 2006-03-02 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-08-26 12:13 . 2011-08-26 12:13 0 ----a-w- c:\windows\system32\ConduitEngine.tmp
2011-08-24 22:12 . 2011-08-24 22:12 231248 ----a-w- c:\windows\system32\drivers\truecrypt.sys
2011-08-24 18:02 . 2011-08-24 17:26 60416 ----a-w- c:\windows\ALCFDRTM.VER
2011-08-24 17:26 . 2011-08-24 17:26 60416 ----a-w- c:\windows\ALCFDRTM.EXE
2011-08-22 23:41 . 2006-03-02 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-08-22 23:41 . 2006-03-02 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2011-08-22 23:41 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2006-03-02 12:00 385024 ------w- c:\windows\system32\html.iec
2011-08-17 13:49 . 2006-03-02 12:00 138496 ----a-w- c:\windows\system32\drivers\afd.sys
2011-10-06 09:12 . 2011-09-11 17:28 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-10-13 17351304]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SW20"="c:\windows\system32\sw20.exe" [2005-06-29 212992]
"SW24"="c:\windows\system32\sw24.exe" [2005-07-04 69632]
"LogitechQuickCamRibbon"="c:\program files\Logitech\Logitech WebCam Software\LWS.exe" [2009-10-14 2793304]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2011-08-03 13892200]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2011-08-03 111208]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-05-04 252136]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2011-08-31 1047208]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"SpybotSnD"="c:\program files\Spybot - Search & Destroy\SpybotSD.exe" [2009-01-26 5365592]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
"InnoSetupRegFile.0000000001"="c:\windows\is-PB7FQ.exe" [2011-11-06 709968]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Creative Detector"="c:\program files\Creative\MediaSource\Detector\CTDetect.exe" /R
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SoundMan"=SOUNDMAN.EXE
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\WINDOWS\\system32\\javaw.exe"=
"c:\\WINDOWS\\system32\\dwwin.exe"=
"c:\\Program Files\\Common Files\\Java\\Java Update\\jucheck.exe"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"c:\\Program Files\\Google\\Update\\GoogleUpdate.exe"=
"c:\\Program Files\\CCleaner\\CCleaner.exe"=
"c:\\Program Files\\Common Files\\Microsoft Shared\\DW\\DW20.EXE"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Java\\jdk1.7.0_01\\jre\\bin\\javaw.exe"=
"c:\\Program Files\\Adobe\\Reader 10.0\\Reader\\AcroRd32.exe"=
"c:\\Program Files\\Mozilla Firefox\\plugin-container.exe"=
"c:\\Program Files\\Google\\Picasa3\\PicasaUpdater.exe"=
"c:\\Documents and Settings\\All Users\\Data aplikací\\MFAData\\SelfUpd\\avgmfapx.exe"=
"c:\\Program Files\\Windows Media Player\\setup_wm.exe"=
"c:\\Program Files\\Windows Media Player\\wmplayer.exe"=
"c:\\Program Files\\Logitech\\Logitech WebCam Software\\LWS.exe"=
"c:\\Program Files\\TuneUp Utilities 2011\\TURatingSynch.exe"=
"c:\\Documents and Settings\\Jirka\\Dokumenty\\Stažené soubory\\tdsskiller.exe"=
.
R1 kl2;kl2;c:\windows\system32\drivers\kl2.sys [4.3.2011 12:23 11352]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [10.3.2011 17:34 34608]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [24.8.2011 21:23 136176]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [5.9.2011 1:19 2255464]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [27.9.2011 12:50 1526080]
S3 AVerAF35;AVerMedia A825 USB Dual DVB-T;c:\windows\system32\drivers\AVerAF35.sys [26.5.2009 0:58 485888]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [24.8.2011 21:23 136176]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2.11.2009 19:27 19472]
S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\d:\ntglm7x.sys --> d:\NTGLM7X.sys [?]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
2011-11-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-24 20:23]
.
2011-11-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-24 20:23]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://home.sweetim.com
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://home.sweetim.com
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.254 192.168.2.254
FF - ProfilePath - c:\documents and settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\ss9g23ma.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&q=
FF - prefs.js: network.proxy.type - 0
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-RunOnce-Cleanup - C:\cleanup.exe
SafeBoot-00893251.sys
SafeBoot-44652580.sys
SafeBoot-87044505.sys
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-06 06:00
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2011-11-06 06:03:50 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-11-06 05:03
.
Před spuštěním: Volných bajtů: 124 369 149 952
Po spuštění: Volných bajtů: 124 366 471 168
.
- - End Of File - - 19A2E5815CA0918125BCB88B2192D04B
v safe modu mi neskenuje kaspersky antivirus chce to pustit normálně ale to nejde pustit tak nevím jestli jsem vymazal něco v registrech.nejde mi ani zvuk jinak vše jen v safe modu.
-------------------------------------------------------------
ComboFix 11-11-05.03 - Jirka 06.11.2011 5:50.3.1 - x86 NETWORK
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1793 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jirka\Plocha\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\cleanup.exe
c:\windows\$NtUninstallKB48278$
c:\windows\$NtUninstallKB48278$\1011050649
c:\windows\$NtUninstallKB48278$\4197103939\@
c:\windows\$NtUninstallKB48278$\4197103939\L\gxooxymd
c:\windows\$NtUninstallKB48278$\4197103939\loader.tlb
c:\windows\$NtUninstallKB48278$\4197103939\U\@00000001
c:\windows\$NtUninstallKB48278$\4197103939\U\@000000c0
c:\windows\$NtUninstallKB48278$\4197103939\U\@000000cb
c:\windows\$NtUninstallKB48278$\4197103939\U\@000000cf
c:\windows\$NtUninstallKB48278$\4197103939\U\@80000000
c:\windows\$NtUninstallKB48278$\4197103939\U\@800000c0
c:\windows\$NtUninstallKB48278$\4197103939\U\@800000cb
c:\windows\$NtUninstallKB48278$\4197103939\U\@800000cf
c:\windows\{2521BB91-29B1-4d7e-9137-AC9875D77735}
c:\windows\system32\pthreadVC.dll
c:\windows\system32\Thumbs.db
C:\zip.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-06 do 2011-11-06 )))))))))))))))))))))))))))))))
.
.
2011-11-06 03:27 . 2011-11-06 03:27 709968 ----a-w- c:\windows\is-PB7FQ.exe
2011-11-06 03:25 . 2011-08-31 16:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-06 01:01 . 2011-11-06 01:01 574 ----a-w- C:\cleanup.bat
2011-11-05 18:18 . 2011-11-05 18:18 -------- d-----w- C:\MEDIA.COM
2011-11-05 18:03 . 2011-11-05 18:03 -------- d-----w- C:\urn_003.lnk
2011-10-26 19:00 . 2011-10-27 00:10 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\UseNeXT
2011-10-26 19:00 . 2011-10-26 23:35 -------- d-----w- c:\program files\UseNeXT
2011-10-26 14:05 . 2011-10-27 04:04 -------- d-----w- c:\documents and settings\Jirka\Local Settings\Data aplikací\sabnzbd
2011-10-26 14:04 . 2011-10-27 04:04 -------- d-----w- c:\program files\SABnzbd
2011-10-23 23:05 . 2011-10-23 23:40 97961 ----a-w- c:\windows\system32\drivers\klick.dat
2011-10-23 23:05 . 2011-10-23 23:40 115369 ----a-w- c:\windows\system32\drivers\klin.dat
2011-10-23 23:03 . 2011-11-06 01:09 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Kaspersky Lab
2011-10-23 23:03 . 2011-10-23 23:03 -------- d-----w- c:\program files\Kaspersky Lab
2011-10-22 02:56 . 2011-10-22 02:56 -------- d-----w- C:\Users
2011-10-21 00:10 . 2011-10-21 00:10 -------- d--h--w- c:\documents and settings\All Users\Data aplikací\Common Files
2011-10-21 00:10 . 2011-10-21 00:21 -------- d-----w- c:\documents and settings\All Users\Data aplikací\MFAData
2011-10-20 23:36 . 2011-10-20 23:36 -------- d-----w- c:\program files\AVerMedia
2011-10-20 23:25 . 2011-10-20 23:25 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\Logitech
2011-10-20 19:20 . 2011-10-20 19:20 -------- d-----w- c:\documents and settings\user
2011-10-20 19:07 . 2011-07-16 14:17 151552 ----a-w- c:\windows\system32\ac3acm.acm
2011-10-20 19:07 . 2011-06-24 14:28 650752 ----a-w- c:\windows\system32\xvidcore.dll
2011-10-20 19:07 . 2008-09-24 18:41 839680 ----a-w- c:\windows\system32\lameACM.acm
2011-10-20 19:07 . 2011-10-04 08:00 74752 ----a-w- c:\windows\system32\ff_vfw.dll
2011-10-20 19:07 . 2011-06-24 14:44 243200 ----a-w- c:\windows\system32\xvidvfw.dll
2011-10-20 18:46 . 2008-04-14 03:22 221184 ----a-w- c:\windows\system32\wmpns.dll
2011-10-20 16:37 . 2011-10-25 06:20 -------- d-----w- c:\program files\Software Informer
2011-10-20 13:35 . 2011-10-20 13:35 -------- d-----w- C:\Documents
2011-10-20 12:32 . 2009-10-20 17:25 102400 ------r- c:\windows\system32\CardID.dll
2011-10-20 12:32 . 2007-02-08 13:09 49152 ------r- c:\windows\system32\AVerIO.dll
2011-10-20 12:32 . 2005-04-28 19:08 3456 ------r- c:\windows\system32\AVerIO.sys
2011-10-20 12:31 . 2008-10-07 17:31 290816 ------r- c:\windows\system32\sptlib22.dll
2011-10-20 12:31 . 2011-10-20 23:37 -------- d-----w- c:\program files\Common Files\AVerMedia
2011-10-20 12:30 . 2011-10-20 12:30 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2011-10-20 12:23 . 2008-04-13 18:46 15232 -c--a-w- c:\windows\system32\dllcache\mpe.sys
2011-10-20 12:23 . 2008-04-13 18:46 15232 ----a-w- c:\windows\system32\drivers\MPE.sys
2011-10-20 12:22 . 2008-04-14 03:22 56832 ----a-w- c:\windows\system32\MSDvbNP.ax
2011-10-20 12:22 . 2008-04-14 03:22 33280 ----a-w- c:\windows\system32\PsisRndr.ax
2011-10-20 12:22 . 2008-04-14 03:21 363520 -c--a-w- c:\windows\system32\dllcache\psisdecd.dll
2011-10-20 12:22 . 2008-04-14 03:21 363520 ----a-w- c:\windows\system32\PsisDecd.dll
2011-10-20 12:22 . 2008-04-13 18:46 11776 -c--a-w- c:\windows\system32\dllcache\bdasup.sys
2011-10-20 12:22 . 2008-04-13 18:46 11776 ----a-w- c:\windows\system32\drivers\BdaSup.sys
2011-10-20 12:22 . 2008-04-14 03:22 18432 ----a-w- c:\windows\system32\BdaPlgIn.ax
2011-10-20 08:25 . 2011-10-20 08:25 -------- d-----w- c:\program files\Common Files\Java
2011-10-20 03:19 . 2011-10-20 03:19 -------- d-----w- c:\documents and settings\Administrator\Data aplikací\Malwarebytes
2011-10-20 00:13 . 2011-10-23 23:47 -------- d-sh--w- c:\documents and settings\Jirka\Local Settings\Data aplikací\fa2ab943
2011-10-17 08:44 . 2011-10-17 08:44 -------- d-----w- c:\windows\system32\XPSViewer
2011-10-17 08:44 . 2011-10-17 08:44 -------- d-----w- c:\program files\MSBuild
2011-10-17 08:44 . 2011-10-17 08:44 -------- d-----w- c:\program files\Reference Assemblies
2011-10-17 08:43 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2011-10-17 08:43 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2011-10-17 08:43 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2011-10-17 08:43 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2011-10-17 08:43 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2011-10-17 08:43 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2011-10-17 08:43 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2011-10-17 08:43 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2011-10-16 18:43 . 2011-10-16 18:43 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\HTML Executable
2011-10-14 06:18 . 2011-10-14 06:18 -------- d-----w- C:\rsit
2011-10-13 01:55 . 2011-10-13 01:55 68096 --sha-r- c:\windows\system32\ntmsapiy.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-21 21:12 . 2006-03-02 12:00 64256 ----a-w- c:\windows\system32\drivers\serial.sys
2011-10-20 08:24 . 2011-09-11 03:20 128000 ----a-w- c:\windows\system32\javacpl.cpl
2011-10-20 08:24 . 2011-08-26 12:20 544656 ----a-w- c:\windows\system32\deployJava1.dll
2011-10-13 21:04 . 2011-08-24 20:23 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-27 11:53 . 2011-09-04 00:46 31552 ----a-w- c:\windows\system32\TURegOpt.exe
2011-09-27 11:46 . 2011-09-04 00:46 29504 ----a-w- c:\windows\system32\uxtuneup.dll
2011-09-26 09:41 . 2011-09-26 09:41 613376 ------w- c:\windows\system32\uiautomationcore.dll
2011-09-26 09:41 . 2006-03-02 12:00 22528 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-26 09:41 . 2006-03-02 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-09 09:12 . 2006-03-02 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-09-06 14:10 . 2006-03-02 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-08-26 12:13 . 2011-08-26 12:13 0 ----a-w- c:\windows\system32\ConduitEngine.tmp
2011-08-24 22:12 . 2011-08-24 22:12 231248 ----a-w- c:\windows\system32\drivers\truecrypt.sys
2011-08-24 18:02 . 2011-08-24 17:26 60416 ----a-w- c:\windows\ALCFDRTM.VER
2011-08-24 17:26 . 2011-08-24 17:26 60416 ----a-w- c:\windows\ALCFDRTM.EXE
2011-08-22 23:41 . 2006-03-02 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-08-22 23:41 . 2006-03-02 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2011-08-22 23:41 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2006-03-02 12:00 385024 ------w- c:\windows\system32\html.iec
2011-08-17 13:49 . 2006-03-02 12:00 138496 ----a-w- c:\windows\system32\drivers\afd.sys
2011-10-06 09:12 . 2011-09-11 17:28 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-10-13 17351304]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SW20"="c:\windows\system32\sw20.exe" [2005-06-29 212992]
"SW24"="c:\windows\system32\sw24.exe" [2005-07-04 69632]
"LogitechQuickCamRibbon"="c:\program files\Logitech\Logitech WebCam Software\LWS.exe" [2009-10-14 2793304]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2011-08-03 13892200]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2011-08-03 111208]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-05-04 252136]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2011-08-31 1047208]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"SpybotSnD"="c:\program files\Spybot - Search & Destroy\SpybotSD.exe" [2009-01-26 5365592]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
"InnoSetupRegFile.0000000001"="c:\windows\is-PB7FQ.exe" [2011-11-06 709968]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Creative Detector"="c:\program files\Creative\MediaSource\Detector\CTDetect.exe" /R
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SoundMan"=SOUNDMAN.EXE
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\WINDOWS\\system32\\javaw.exe"=
"c:\\WINDOWS\\system32\\dwwin.exe"=
"c:\\Program Files\\Common Files\\Java\\Java Update\\jucheck.exe"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"c:\\Program Files\\Google\\Update\\GoogleUpdate.exe"=
"c:\\Program Files\\CCleaner\\CCleaner.exe"=
"c:\\Program Files\\Common Files\\Microsoft Shared\\DW\\DW20.EXE"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Java\\jdk1.7.0_01\\jre\\bin\\javaw.exe"=
"c:\\Program Files\\Adobe\\Reader 10.0\\Reader\\AcroRd32.exe"=
"c:\\Program Files\\Mozilla Firefox\\plugin-container.exe"=
"c:\\Program Files\\Google\\Picasa3\\PicasaUpdater.exe"=
"c:\\Documents and Settings\\All Users\\Data aplikací\\MFAData\\SelfUpd\\avgmfapx.exe"=
"c:\\Program Files\\Windows Media Player\\setup_wm.exe"=
"c:\\Program Files\\Windows Media Player\\wmplayer.exe"=
"c:\\Program Files\\Logitech\\Logitech WebCam Software\\LWS.exe"=
"c:\\Program Files\\TuneUp Utilities 2011\\TURatingSynch.exe"=
"c:\\Documents and Settings\\Jirka\\Dokumenty\\Stažené soubory\\tdsskiller.exe"=
.
R1 kl2;kl2;c:\windows\system32\drivers\kl2.sys [4.3.2011 12:23 11352]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [10.3.2011 17:34 34608]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [24.8.2011 21:23 136176]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [5.9.2011 1:19 2255464]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [27.9.2011 12:50 1526080]
S3 AVerAF35;AVerMedia A825 USB Dual DVB-T;c:\windows\system32\drivers\AVerAF35.sys [26.5.2009 0:58 485888]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [24.8.2011 21:23 136176]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2.11.2009 19:27 19472]
S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\d:\ntglm7x.sys --> d:\NTGLM7X.sys [?]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
2011-11-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-24 20:23]
.
2011-11-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-24 20:23]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://home.sweetim.com
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://home.sweetim.com
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.254 192.168.2.254
FF - ProfilePath - c:\documents and settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\ss9g23ma.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&q=
FF - prefs.js: network.proxy.type - 0
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-RunOnce-Cleanup - C:\cleanup.exe
SafeBoot-00893251.sys
SafeBoot-44652580.sys
SafeBoot-87044505.sys
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-06 06:00
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2011-11-06 06:03:50 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-11-06 05:03
.
Před spuštěním: Volných bajtů: 124 369 149 952
Po spuštění: Volných bajtů: 124 366 471 168
.
- - End Of File - - 19A2E5815CA0918125BCB88B2192D04B
Re: mám modrou obrazovku smrti pomůže někdo?
Logfile of random's system information tool 1.09 (written by random/random)
Run by Jirka at 2011-11-06 06:12:52
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 119 GB (76%) free of 157 GB
Total RAM: 2047 MB (80% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 6:12:55, on 6.11.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Safe mode with network support
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtblfs.exe
C:\Documents and Settings\Jirka\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Jirka.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll
O3 - Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - (no file)
O4 - HKLM\..\Run: [SW20] C:\WINDOWS\system32\sw20.exe
O4 - HKLM\..\Run: [SW24] C:\WINDOWS\system32\sw24.exe
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\RunOnce: [SpybotSnD] "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autocheck
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKLM\..\RunOnce: [InnoSetupRegFile.0000000001] "C:\WINDOWS\is-PB7FQ.exe" /REG /REGSVRMODE
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: &Virtual Keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 6186566171
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Windows Service Pack Installer update service (spupdsvc) - Unknown owner - C:\WINDOWS\system32\spupdsvc.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
--
End of file - 6233 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\ss9g23ma.default
prefs.js - "browser.startup.homepage" - "http://seznam.cz"
prefs.js - "keyword.URL" - "http://search.conduit.com/ResultsExt.as ... 2786678&q="
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"linkfilter@kaspersky.ru"=C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\linkfilter@kaspersky.ru
"virtualKeyboard@kaspersky.ru"=C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\virtualKeyboard@kaspersky.ru
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
quickstores@quickstores.de
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\ss9g23ma.default\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\ss9g23ma.default\searchplugins\
conduit.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll [2011-04-24 86416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2011-10-20 57224]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll [2011-04-24 229776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SW20"=C:\WINDOWS\system32\sw20.exe [2005-06-29 212992]
"SW24"=C:\WINDOWS\system32\sw24.exe [2005-07-04 69632]
"LogitechQuickCamRibbon"=C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2009-10-14 2793304]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2011-08-03 13892200]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2011-08-03 111208]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-05-04 252136]
"Malwarebytes' Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2011-08-31 1047208]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SpybotSnD"=C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe [2009-01-26 5365592]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2011-08-31 449608]
"InnoSetupRegFile.0000000001"=C:\WINDOWS\is-PB7FQ.exe [2011-11-06 709968]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-10-13 17351304]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\WINDOWS\system32\klogon.dll [2011-04-24 229776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Disabled:Java(TM) Platform SE binary"
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\WINDOWS\system32\javaw.exe"="C:\WINDOWS\system32\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\WINDOWS\system32\dwwin.exe"="C:\WINDOWS\system32\dwwin.exe:*:Enabled:Microsoft Application Error Reporting"
"C:\Program Files\Common Files\Java\Java Update\jucheck.exe"="C:\Program Files\Common Files\Java\Java Update\jucheck.exe:*:Enabled:Java(TM) Update Checker"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:Windows® installer"
"C:\Program Files\Google\Update\GoogleUpdate.exe"="C:\Program Files\Google\Update\GoogleUpdate.exe:*:Enabled:Instalační program Google"
"C:\Program Files\CCleaner\CCleaner.exe"="C:\Program Files\CCleaner\CCleaner.exe:*:Enabled:CCleaner"
"C:\Program Files\Common Files\Microsoft Shared\DW\DW20.EXE"="C:\Program Files\Common Files\Microsoft Shared\DW\DW20.EXE:*:Enabled:Microsoft Application Error Reporting"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jdk1.7.0_01\jre\bin\javaw.exe"="C:\Program Files\Java\jdk1.7.0_01\jre\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe"="C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe:*:Enabled:Adobe Reader "
"C:\Program Files\Mozilla Firefox\plugin-container.exe"="C:\Program Files\Mozilla Firefox\plugin-container.exe:*:Enabled:Plugin Container for Firefox"
"C:\Program Files\Google\Picasa3\PicasaUpdater.exe"="C:\Program Files\Google\Picasa3\PicasaUpdater.exe:*:Enabled:Picasa"
"C:\Documents and Settings\All Users\Data aplikací\MFAData\SelfUpd\avgmfapx.exe"="C:\Documents and Settings\All Users\Data aplikací\MFAData\SelfUpd\avgmfapx.exe:*:Enabled:AVG Installer Application"
"C:\Program Files\Windows Media Player\setup_wm.exe"="C:\Program Files\Windows Media Player\setup_wm.exe:*:Enabled:Microsoft Windows Media Configuration Utility"
"C:\Program Files\Windows Media Player\wmplayer.exe"="C:\Program Files\Windows Media Player\wmplayer.exe:*:Enabled:Windows Media Player"
"C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe"="C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe:*:Enabled:Camera Software"
"C:\Program Files\TuneUp Utilities 2011\TURatingSynch.exe"="C:\Program Files\TuneUp Utilities 2011\TURatingSynch.exe:*:Enabled:TURatingSynch"
"C:\Documents and Settings\Jirka\Dokumenty\Stažené soubory\tdsskiller.exe"="C:\Documents and Settings\Jirka\Dokumenty\Stažené soubory\tdsskiller.exe:*:Disabled:TDSS rootkit removing tool"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
======List of files/folders created in the last 1 month======
2011-11-06 06:03:52 ----D---- C:\WINDOWS\temp
2011-11-06 06:03:51 ----A---- C:\ComboFix.txt
2011-11-06 05:41:57 ----A---- C:\WINDOWS\zip.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\SWXCACLS.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\SWSC.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\SWREG.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\sed.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\PEV.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\NIRCMD.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\MBR.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\grep.exe
2011-11-06 05:41:50 ----D---- C:\Qoobox
2011-11-06 05:41:50 ----A---- C:\WINDOWS\ntbtlog.txt
2011-11-06 04:27:09 ----A---- C:\WINDOWS\is-PB7FQ.exe
2011-11-06 04:25:32 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2011-11-06 02:06:50 ----A---- C:\TDSSKiller.2.6.15.0_06.11.2011_02.06.50_log.txt
2011-11-06 02:01:05 ----A---- C:\cleanup.bat
2011-11-05 21:36:26 ----A---- C:\TDSSKiller.2.6.15.0_05.11.2011_21.36.26_log.txt
2011-11-05 19:18:39 ----D---- C:\MEDIA.COM
2011-11-05 19:03:03 ----D---- C:\urn_003.lnk
2011-10-26 20:00:32 ----D---- C:\Documents and Settings\Jirka\Data aplikací\UseNeXT
2011-10-26 20:00:26 ----D---- C:\Program Files\UseNeXT
2011-10-26 15:04:53 ----D---- C:\Program Files\SABnzbd
2011-10-25 23:30:16 ----D---- C:\Documents and Settings\Jirka\Data aplikací\WinRAR
2011-10-25 23:28:38 ----D---- C:\Program Files\WinRAR
2011-10-25 06:41:59 ----A---- C:\TDSSKiller.2.6.12.0_25.10.2011_07.41.59_log.txt
2011-10-24 00:05:54 ----A---- C:\WINDOWS\system32\drivers\klin.dat
2011-10-24 00:05:54 ----A---- C:\WINDOWS\system32\drivers\klick.dat
2011-10-24 00:03:05 ----D---- C:\Program Files\Kaspersky Lab
2011-10-24 00:03:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab
2011-10-24 00:02:46 ----A---- C:\WINDOWS\system32\drivers\klif.sys
2011-10-23 23:59:41 ----A---- C:\TDSSKiller.2.6.12.0_24.10.2011_00.59.41_log.txt
2011-10-23 23:57:49 ----A---- C:\TDSSKiller.2.6.12.0_24.10.2011_00.57.49_log.txt
2011-10-23 23:57:17 ----A---- C:\TDSSKiller.2.6.12.0_24.10.2011_00.57.17_log.txt
2011-10-23 23:56:43 ----A---- C:\TDSSKiller.2.6.9.0_24.10.2011_00.56.43_log.txt
2011-10-22 03:56:20 ----D---- C:\Users
2011-10-22 03:56:20 ----A---- C:\recipes-spawner.txt
2011-10-22 03:56:20 ----A---- C:\items-nofire.txt
2011-10-21 22:05:22 ----A---- C:\TDSSKiller.2.6.12.0_21.10.2011_23.05.22_log.txt
2011-10-21 22:04:36 ----A---- C:\TDSSKiller.2.6.9.0_21.10.2011_23.04.36_log.txt
2011-10-21 05:30:04 ----A---- C:\TDSSKiller.2.6.9.0_21.10.2011_06.30.04_log.txt
2011-10-21 03:46:16 ----A---- C:\TDSSKiller.2.6.9.0_21.10.2011_04.46.16_log.txt
2011-10-21 01:10:37 ----HD---- C:\Documents and Settings\All Users\Data aplikací\Common Files
2011-10-21 01:10:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\MFAData
2011-10-21 00:36:54 ----D---- C:\Program Files\AVerMedia
2011-10-21 00:25:08 ----D---- C:\Documents and Settings\Jirka\Data aplikací\Logitech
2011-10-20 20:07:56 ----A---- C:\WINDOWS\system32\xvidcore.dll
2011-10-20 20:07:56 ----A---- C:\WINDOWS\avisplitter.ini
2011-10-20 20:07:55 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2011-10-20 20:07:55 ----A---- C:\WINDOWS\system32\ff_vfw.dll
2011-10-20 19:46:22 ----N---- C:\WINDOWS\system32\spmsg.dll
2011-10-20 19:46:16 ----A---- C:\WINDOWS\system32\wmpns.dll
2011-10-20 17:37:14 ----D---- C:\Program Files\Software Informer
2011-10-20 14:35:27 ----D---- C:\Documents
2011-10-20 13:32:04 ----R---- C:\WINDOWS\system32\CardID.dll
2011-10-20 13:32:04 ----R---- C:\WINDOWS\system32\AVerIO.sys
2011-10-20 13:32:04 ----R---- C:\WINDOWS\system32\AVerIO.dll
2011-10-20 13:31:52 ----R---- C:\WINDOWS\system32\sptlib22.dll
2011-10-20 13:31:31 ----D---- C:\Program Files\Common Files\AVerMedia
2011-10-20 13:30:47 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2011-10-20 13:23:07 ----A---- C:\WINDOWS\system32\drivers\MPE.sys
2011-10-20 13:22:54 ----A---- C:\WINDOWS\system32\PsisDecd.dll
2011-10-20 13:22:52 ----A---- C:\WINDOWS\system32\drivers\BdaSup.sys
2011-10-20 09:25:28 ----D---- C:\Program Files\Common Files\Java
2011-10-18 18:54:19 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2011-10-17 09:44:19 ----D---- C:\WINDOWS\system32\XPSViewer
2011-10-17 09:44:16 ----D---- C:\Program Files\MSBuild
2011-10-17 09:44:15 ----D---- C:\WINDOWS\system32\en-US
2011-10-17 09:44:10 ----D---- C:\Program Files\Reference Assemblies
2011-10-17 09:43:52 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2011-10-17 09:43:52 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2011-10-17 09:43:52 ----N---- C:\WINDOWS\system32\prntvpt.dll
2011-10-16 19:46:54 ----RSD---- C:\WINDOWS\assembly
2011-10-16 19:46:23 ----D---- C:\WINDOWS\Microsoft.NET
2011-10-16 19:43:45 ----D---- C:\Documents and Settings\Jirka\Data aplikací\HTML Executable
2011-10-15 03:26:36 ----A---- C:\TDSSKiller.2.6.9.0_15.10.2011_04.26.36_log.txt
2011-10-15 03:13:29 ----A---- C:\TDSSKiller.2.6.9.0_15.10.2011_04.13.29_log.txt
2011-10-14 07:18:39 ----D---- C:\rsit
2011-10-13 21:57:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2011-10-13 21:56:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2567053$
2011-10-13 21:56:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2592799$
2011-10-13 02:55:25 ----RASH---- C:\WINDOWS\system32\ntmsapiy.dll
======List of files/folders modified in the last 1 month======
2011-11-06 06:12:53 ----D---- C:\Program Files\trend micro
2011-11-06 06:03:52 ----D---- C:\WINDOWS
2011-11-06 06:02:59 ----SD---- C:\WINDOWS\Tasks
2011-11-06 06:02:33 ----D---- C:\WINDOWS\system32\CatRoot2
2011-11-06 06:00:43 ----A---- C:\WINDOWS\system.ini
2011-11-06 06:00:31 ----D---- C:\WINDOWS\system32\drivers\etc
2011-11-06 05:59:56 ----D---- C:\WINDOWS\system32\drivers
2011-11-06 05:55:41 ----D---- C:\WINDOWS\system32
2011-11-06 05:54:04 ----D---- C:\WINDOWS\AppPatch
2011-11-06 05:54:04 ----D---- C:\Program Files\Common Files
2011-11-06 05:46:36 ----D---- C:\WINDOWS\WinSxS
2011-11-06 05:41:53 ----D---- C:\WINDOWS\ERDNT
2011-11-06 04:31:02 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-11-05 19:25:18 ----D---- C:\WINDOWS\SoftwareDistribution
2011-11-05 19:25:18 ----D---- C:\Documents and Settings\Jirka\Data aplikací\uTorrent
2011-11-05 19:25:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2011-11-05 18:13:09 ----RD---- C:\Program Files
2011-11-05 17:10:59 ----D---- C:\WINDOWS\Prefetch
2011-11-04 19:31:50 ----SD---- C:\Documents and Settings\Jirka\Data aplikací\Microsoft
2011-11-03 15:42:40 ----D---- C:\Documents and Settings\Jirka\Data aplikací\Skype
2011-11-03 15:37:05 ----SHD---- C:\WINDOWS\Installer
2011-11-03 15:37:02 ----D---- C:\Config.Msi
2011-11-02 05:54:20 ----D---- C:\Documents and Settings\Jirka\Data aplikací\.minecraft
2011-11-01 00:41:24 ----HD---- C:\WINDOWS\inf
2011-11-01 00:39:03 ----D---- C:\WINDOWS\Minidump
2011-10-31 19:51:25 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-10-31 00:09:09 ----D---- C:\Program Files\CCleaner
2011-10-28 03:12:04 ----D---- C:\Program Files\K-Lite Codec Pack
2011-10-25 07:13:35 ----SHD---- C:\System Volume Information
2011-10-24 20:13:08 ----D---- C:\Program Files\TuneUp Utilities 2011
2011-10-21 22:56:31 ----D---- C:\WINDOWS\SHELLNEW
2011-10-21 18:43:37 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-10-21 01:52:06 ----D---- C:\Program Files\Spybot - Search & Destroy
2011-10-20 23:53:56 ----D---- C:\WINDOWS\Driver Cache
2011-10-20 23:27:31 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-10-20 21:33:08 ----D---- C:\Program Files\Mozilla Firefox
2011-10-20 20:20:22 ----D---- C:\Documents and Settings
2011-10-20 19:46:22 ----D---- C:\WINDOWS\system32\CatRoot
2011-10-20 19:46:13 ----D---- C:\Program Files\Windows Media Player
2011-10-20 19:46:13 ----D---- C:\Program Files\Windows Media Connect 2
2011-10-20 19:46:12 ----D---- C:\WINDOWS\Help
2011-10-20 19:45:46 ----D---- C:\WINDOWS\system32\drivers\UMDF
2011-10-20 13:34:34 ----HD---- C:\Program Files\InstallShield Installation Information
2011-10-20 13:32:29 ----D---- C:\WINDOWS\system32\config
2011-10-20 12:37:19 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-10-20 09:24:19 ----A---- C:\WINDOWS\system32\javaws.exe
2011-10-20 09:24:19 ----A---- C:\WINDOWS\system32\javaw.exe
2011-10-20 09:24:19 ----A---- C:\WINDOWS\system32\java.exe
2011-10-20 09:24:19 ----A---- C:\WINDOWS\system32\deployJava1.dll
2011-10-20 09:24:16 ----D---- C:\Program Files\Java
2011-10-20 04:33:26 ----HDC---- C:\WINDOWS\$NtUninstallKB978037_0$
2011-10-20 03:49:09 ----D---- C:\Program Files\uTorrent
2011-10-17 09:44:14 ----RSD---- C:\WINDOWS\Fonts
2011-10-17 09:43:00 ----D---- C:\Program Files\Internet Explorer
2011-10-16 19:46:27 ----D---- C:\WINDOWS\system32\mui
2011-10-16 10:57:32 ----D---- C:\WINDOWS\Debug
2011-10-14 14:58:25 ----RD---- C:\Program Files\Skype
2011-10-13 22:02:59 ----D---- C:\WINDOWS\system32\Restore
2011-10-13 22:02:39 ----D---- C:\Program Files\Microsoft Silverlight
2011-10-13 21:57:00 ----A---- C:\WINDOWS\system32\MRT.exe
2011-10-13 21:56:48 ----HD---- C:\WINDOWS\$hf_mig$
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 Kl1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2011-03-04 133208]
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2005-05-17 92800]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 kl2;kl2; C:\WINDOWS\system32\DRIVERS\kl2.sys [2011-03-04 11352]
R3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2011-03-10 34608]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2005-04-05 33536]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2005-04-05 12928]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S1 AmdK8;AMD Processor Driver; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 36352]
S1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2011-10-24 565552]
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2008-09-24 4122368]
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 AVerAF35;AVerMedia A825 USB Dual DVB-T; C:\WINDOWS\System32\Drivers\AVerAF35.sys [2009-05-26 485888]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 ctac32k;Creative AC3 Software Decoder; C:\WINDOWS\system32\drivers\ctac32k.sys []
S3 ctaud2k;Creative Audio Driver (WDM); C:\WINDOWS\system32\drivers\ctaud2k.sys []
S3 ctprxy2k;Creative Proxy Driver; C:\WINDOWS\system32\drivers\ctprxy2k.sys []
S3 emupia;E-mu Plug-in Architecture Driver; C:\WINDOWS\system32\drivers\emupia2k.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 ha10kx2k;Creative Hardware Abstract Layer Driver; C:\WINDOWS\system32\drivers\ha10kx2k.sys []
S3 ha20x2k;Creative 20X HAL Driver; C:\WINDOWS\system32\drivers\ha20x2k.sys []
S3 hap16v2k;Creative P16V HAL Driver; C:\WINDOWS\system32\drivers\hap16v2k.sys []
S3 hap17v2k;Creative P17V HAL Driver; C:\WINDOWS\system32\drivers\hap17v2k.sys []
S3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2009-11-02 19472]
S3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys [2009-10-07 25752]
S3 LVRS;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs.sys [2009-05-01 265496]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys []
S3 mbr;mbr; \??\C:\DOCUME~1\Jirka\LOCALS~1\Temp\mbr.sys []
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2011-08-03 12542592]
S3 pepifilter;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302af.sys [2009-04-30 13976]
S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\WINDOWS\system32\DRIVERS\LV302V32.SYS [2009-04-30 2687512]
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
S2 AVP;Kaspersky Anti-Virus Service; C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe [2011-04-24 202296]
S2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\system32\CTsvcCDA.EXE [1999-12-12 44032]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-08-24 136176]
S2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2009-10-07 147456]
S2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2011-08-03 139264]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-08-03 2255464]
S2 spupdsvc;Windows Service Pack Installer update service; C:\WINDOWS\system32\spupdsvc.exe [2009-01-07 26144]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [2011-09-27 1526080]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-08-24 136176]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-02-08 136120]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2011-10-20 161664]
S3 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
-----------------EOF-----------------
Run by Jirka at 2011-11-06 06:12:52
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 119 GB (76%) free of 157 GB
Total RAM: 2047 MB (80% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 6:12:55, on 6.11.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Safe mode with network support
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtblfs.exe
C:\Documents and Settings\Jirka\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Jirka.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll
O3 - Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - (no file)
O4 - HKLM\..\Run: [SW20] C:\WINDOWS\system32\sw20.exe
O4 - HKLM\..\Run: [SW24] C:\WINDOWS\system32\sw24.exe
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\RunOnce: [SpybotSnD] "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autocheck
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKLM\..\RunOnce: [InnoSetupRegFile.0000000001] "C:\WINDOWS\is-PB7FQ.exe" /REG /REGSVRMODE
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: &Virtual Keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 6186566171
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Windows Service Pack Installer update service (spupdsvc) - Unknown owner - C:\WINDOWS\system32\spupdsvc.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
--
End of file - 6233 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\ss9g23ma.default
prefs.js - "browser.startup.homepage" - "http://seznam.cz"
prefs.js - "keyword.URL" - "http://search.conduit.com/ResultsExt.as ... 2786678&q="
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"linkfilter@kaspersky.ru"=C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\linkfilter@kaspersky.ru
"virtualKeyboard@kaspersky.ru"=C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\virtualKeyboard@kaspersky.ru
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
quickstores@quickstores.de
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\ss9g23ma.default\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\ss9g23ma.default\searchplugins\
conduit.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll [2011-04-24 86416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2011-10-20 57224]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll [2011-04-24 229776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SW20"=C:\WINDOWS\system32\sw20.exe [2005-06-29 212992]
"SW24"=C:\WINDOWS\system32\sw24.exe [2005-07-04 69632]
"LogitechQuickCamRibbon"=C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2009-10-14 2793304]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2011-08-03 13892200]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2011-08-03 111208]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-05-04 252136]
"Malwarebytes' Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2011-08-31 1047208]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SpybotSnD"=C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe [2009-01-26 5365592]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2011-08-31 449608]
"InnoSetupRegFile.0000000001"=C:\WINDOWS\is-PB7FQ.exe [2011-11-06 709968]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-10-13 17351304]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\WINDOWS\system32\klogon.dll [2011-04-24 229776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Disabled:Java(TM) Platform SE binary"
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\WINDOWS\system32\javaw.exe"="C:\WINDOWS\system32\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\WINDOWS\system32\dwwin.exe"="C:\WINDOWS\system32\dwwin.exe:*:Enabled:Microsoft Application Error Reporting"
"C:\Program Files\Common Files\Java\Java Update\jucheck.exe"="C:\Program Files\Common Files\Java\Java Update\jucheck.exe:*:Enabled:Java(TM) Update Checker"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:Windows® installer"
"C:\Program Files\Google\Update\GoogleUpdate.exe"="C:\Program Files\Google\Update\GoogleUpdate.exe:*:Enabled:Instalační program Google"
"C:\Program Files\CCleaner\CCleaner.exe"="C:\Program Files\CCleaner\CCleaner.exe:*:Enabled:CCleaner"
"C:\Program Files\Common Files\Microsoft Shared\DW\DW20.EXE"="C:\Program Files\Common Files\Microsoft Shared\DW\DW20.EXE:*:Enabled:Microsoft Application Error Reporting"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jdk1.7.0_01\jre\bin\javaw.exe"="C:\Program Files\Java\jdk1.7.0_01\jre\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe"="C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe:*:Enabled:Adobe Reader "
"C:\Program Files\Mozilla Firefox\plugin-container.exe"="C:\Program Files\Mozilla Firefox\plugin-container.exe:*:Enabled:Plugin Container for Firefox"
"C:\Program Files\Google\Picasa3\PicasaUpdater.exe"="C:\Program Files\Google\Picasa3\PicasaUpdater.exe:*:Enabled:Picasa"
"C:\Documents and Settings\All Users\Data aplikací\MFAData\SelfUpd\avgmfapx.exe"="C:\Documents and Settings\All Users\Data aplikací\MFAData\SelfUpd\avgmfapx.exe:*:Enabled:AVG Installer Application"
"C:\Program Files\Windows Media Player\setup_wm.exe"="C:\Program Files\Windows Media Player\setup_wm.exe:*:Enabled:Microsoft Windows Media Configuration Utility"
"C:\Program Files\Windows Media Player\wmplayer.exe"="C:\Program Files\Windows Media Player\wmplayer.exe:*:Enabled:Windows Media Player"
"C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe"="C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe:*:Enabled:Camera Software"
"C:\Program Files\TuneUp Utilities 2011\TURatingSynch.exe"="C:\Program Files\TuneUp Utilities 2011\TURatingSynch.exe:*:Enabled:TURatingSynch"
"C:\Documents and Settings\Jirka\Dokumenty\Stažené soubory\tdsskiller.exe"="C:\Documents and Settings\Jirka\Dokumenty\Stažené soubory\tdsskiller.exe:*:Disabled:TDSS rootkit removing tool"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
======List of files/folders created in the last 1 month======
2011-11-06 06:03:52 ----D---- C:\WINDOWS\temp
2011-11-06 06:03:51 ----A---- C:\ComboFix.txt
2011-11-06 05:41:57 ----A---- C:\WINDOWS\zip.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\SWXCACLS.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\SWSC.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\SWREG.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\sed.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\PEV.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\NIRCMD.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\MBR.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\grep.exe
2011-11-06 05:41:50 ----D---- C:\Qoobox
2011-11-06 05:41:50 ----A---- C:\WINDOWS\ntbtlog.txt
2011-11-06 04:27:09 ----A---- C:\WINDOWS\is-PB7FQ.exe
2011-11-06 04:25:32 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2011-11-06 02:06:50 ----A---- C:\TDSSKiller.2.6.15.0_06.11.2011_02.06.50_log.txt
2011-11-06 02:01:05 ----A---- C:\cleanup.bat
2011-11-05 21:36:26 ----A---- C:\TDSSKiller.2.6.15.0_05.11.2011_21.36.26_log.txt
2011-11-05 19:18:39 ----D---- C:\MEDIA.COM
2011-11-05 19:03:03 ----D---- C:\urn_003.lnk
2011-10-26 20:00:32 ----D---- C:\Documents and Settings\Jirka\Data aplikací\UseNeXT
2011-10-26 20:00:26 ----D---- C:\Program Files\UseNeXT
2011-10-26 15:04:53 ----D---- C:\Program Files\SABnzbd
2011-10-25 23:30:16 ----D---- C:\Documents and Settings\Jirka\Data aplikací\WinRAR
2011-10-25 23:28:38 ----D---- C:\Program Files\WinRAR
2011-10-25 06:41:59 ----A---- C:\TDSSKiller.2.6.12.0_25.10.2011_07.41.59_log.txt
2011-10-24 00:05:54 ----A---- C:\WINDOWS\system32\drivers\klin.dat
2011-10-24 00:05:54 ----A---- C:\WINDOWS\system32\drivers\klick.dat
2011-10-24 00:03:05 ----D---- C:\Program Files\Kaspersky Lab
2011-10-24 00:03:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab
2011-10-24 00:02:46 ----A---- C:\WINDOWS\system32\drivers\klif.sys
2011-10-23 23:59:41 ----A---- C:\TDSSKiller.2.6.12.0_24.10.2011_00.59.41_log.txt
2011-10-23 23:57:49 ----A---- C:\TDSSKiller.2.6.12.0_24.10.2011_00.57.49_log.txt
2011-10-23 23:57:17 ----A---- C:\TDSSKiller.2.6.12.0_24.10.2011_00.57.17_log.txt
2011-10-23 23:56:43 ----A---- C:\TDSSKiller.2.6.9.0_24.10.2011_00.56.43_log.txt
2011-10-22 03:56:20 ----D---- C:\Users
2011-10-22 03:56:20 ----A---- C:\recipes-spawner.txt
2011-10-22 03:56:20 ----A---- C:\items-nofire.txt
2011-10-21 22:05:22 ----A---- C:\TDSSKiller.2.6.12.0_21.10.2011_23.05.22_log.txt
2011-10-21 22:04:36 ----A---- C:\TDSSKiller.2.6.9.0_21.10.2011_23.04.36_log.txt
2011-10-21 05:30:04 ----A---- C:\TDSSKiller.2.6.9.0_21.10.2011_06.30.04_log.txt
2011-10-21 03:46:16 ----A---- C:\TDSSKiller.2.6.9.0_21.10.2011_04.46.16_log.txt
2011-10-21 01:10:37 ----HD---- C:\Documents and Settings\All Users\Data aplikací\Common Files
2011-10-21 01:10:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\MFAData
2011-10-21 00:36:54 ----D---- C:\Program Files\AVerMedia
2011-10-21 00:25:08 ----D---- C:\Documents and Settings\Jirka\Data aplikací\Logitech
2011-10-20 20:07:56 ----A---- C:\WINDOWS\system32\xvidcore.dll
2011-10-20 20:07:56 ----A---- C:\WINDOWS\avisplitter.ini
2011-10-20 20:07:55 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2011-10-20 20:07:55 ----A---- C:\WINDOWS\system32\ff_vfw.dll
2011-10-20 19:46:22 ----N---- C:\WINDOWS\system32\spmsg.dll
2011-10-20 19:46:16 ----A---- C:\WINDOWS\system32\wmpns.dll
2011-10-20 17:37:14 ----D---- C:\Program Files\Software Informer
2011-10-20 14:35:27 ----D---- C:\Documents
2011-10-20 13:32:04 ----R---- C:\WINDOWS\system32\CardID.dll
2011-10-20 13:32:04 ----R---- C:\WINDOWS\system32\AVerIO.sys
2011-10-20 13:32:04 ----R---- C:\WINDOWS\system32\AVerIO.dll
2011-10-20 13:31:52 ----R---- C:\WINDOWS\system32\sptlib22.dll
2011-10-20 13:31:31 ----D---- C:\Program Files\Common Files\AVerMedia
2011-10-20 13:30:47 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2011-10-20 13:23:07 ----A---- C:\WINDOWS\system32\drivers\MPE.sys
2011-10-20 13:22:54 ----A---- C:\WINDOWS\system32\PsisDecd.dll
2011-10-20 13:22:52 ----A---- C:\WINDOWS\system32\drivers\BdaSup.sys
2011-10-20 09:25:28 ----D---- C:\Program Files\Common Files\Java
2011-10-18 18:54:19 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2011-10-17 09:44:19 ----D---- C:\WINDOWS\system32\XPSViewer
2011-10-17 09:44:16 ----D---- C:\Program Files\MSBuild
2011-10-17 09:44:15 ----D---- C:\WINDOWS\system32\en-US
2011-10-17 09:44:10 ----D---- C:\Program Files\Reference Assemblies
2011-10-17 09:43:52 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2011-10-17 09:43:52 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2011-10-17 09:43:52 ----N---- C:\WINDOWS\system32\prntvpt.dll
2011-10-16 19:46:54 ----RSD---- C:\WINDOWS\assembly
2011-10-16 19:46:23 ----D---- C:\WINDOWS\Microsoft.NET
2011-10-16 19:43:45 ----D---- C:\Documents and Settings\Jirka\Data aplikací\HTML Executable
2011-10-15 03:26:36 ----A---- C:\TDSSKiller.2.6.9.0_15.10.2011_04.26.36_log.txt
2011-10-15 03:13:29 ----A---- C:\TDSSKiller.2.6.9.0_15.10.2011_04.13.29_log.txt
2011-10-14 07:18:39 ----D---- C:\rsit
2011-10-13 21:57:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2011-10-13 21:56:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2567053$
2011-10-13 21:56:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2592799$
2011-10-13 02:55:25 ----RASH---- C:\WINDOWS\system32\ntmsapiy.dll
======List of files/folders modified in the last 1 month======
2011-11-06 06:12:53 ----D---- C:\Program Files\trend micro
2011-11-06 06:03:52 ----D---- C:\WINDOWS
2011-11-06 06:02:59 ----SD---- C:\WINDOWS\Tasks
2011-11-06 06:02:33 ----D---- C:\WINDOWS\system32\CatRoot2
2011-11-06 06:00:43 ----A---- C:\WINDOWS\system.ini
2011-11-06 06:00:31 ----D---- C:\WINDOWS\system32\drivers\etc
2011-11-06 05:59:56 ----D---- C:\WINDOWS\system32\drivers
2011-11-06 05:55:41 ----D---- C:\WINDOWS\system32
2011-11-06 05:54:04 ----D---- C:\WINDOWS\AppPatch
2011-11-06 05:54:04 ----D---- C:\Program Files\Common Files
2011-11-06 05:46:36 ----D---- C:\WINDOWS\WinSxS
2011-11-06 05:41:53 ----D---- C:\WINDOWS\ERDNT
2011-11-06 04:31:02 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-11-05 19:25:18 ----D---- C:\WINDOWS\SoftwareDistribution
2011-11-05 19:25:18 ----D---- C:\Documents and Settings\Jirka\Data aplikací\uTorrent
2011-11-05 19:25:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2011-11-05 18:13:09 ----RD---- C:\Program Files
2011-11-05 17:10:59 ----D---- C:\WINDOWS\Prefetch
2011-11-04 19:31:50 ----SD---- C:\Documents and Settings\Jirka\Data aplikací\Microsoft
2011-11-03 15:42:40 ----D---- C:\Documents and Settings\Jirka\Data aplikací\Skype
2011-11-03 15:37:05 ----SHD---- C:\WINDOWS\Installer
2011-11-03 15:37:02 ----D---- C:\Config.Msi
2011-11-02 05:54:20 ----D---- C:\Documents and Settings\Jirka\Data aplikací\.minecraft
2011-11-01 00:41:24 ----HD---- C:\WINDOWS\inf
2011-11-01 00:39:03 ----D---- C:\WINDOWS\Minidump
2011-10-31 19:51:25 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-10-31 00:09:09 ----D---- C:\Program Files\CCleaner
2011-10-28 03:12:04 ----D---- C:\Program Files\K-Lite Codec Pack
2011-10-25 07:13:35 ----SHD---- C:\System Volume Information
2011-10-24 20:13:08 ----D---- C:\Program Files\TuneUp Utilities 2011
2011-10-21 22:56:31 ----D---- C:\WINDOWS\SHELLNEW
2011-10-21 18:43:37 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-10-21 01:52:06 ----D---- C:\Program Files\Spybot - Search & Destroy
2011-10-20 23:53:56 ----D---- C:\WINDOWS\Driver Cache
2011-10-20 23:27:31 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-10-20 21:33:08 ----D---- C:\Program Files\Mozilla Firefox
2011-10-20 20:20:22 ----D---- C:\Documents and Settings
2011-10-20 19:46:22 ----D---- C:\WINDOWS\system32\CatRoot
2011-10-20 19:46:13 ----D---- C:\Program Files\Windows Media Player
2011-10-20 19:46:13 ----D---- C:\Program Files\Windows Media Connect 2
2011-10-20 19:46:12 ----D---- C:\WINDOWS\Help
2011-10-20 19:45:46 ----D---- C:\WINDOWS\system32\drivers\UMDF
2011-10-20 13:34:34 ----HD---- C:\Program Files\InstallShield Installation Information
2011-10-20 13:32:29 ----D---- C:\WINDOWS\system32\config
2011-10-20 12:37:19 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-10-20 09:24:19 ----A---- C:\WINDOWS\system32\javaws.exe
2011-10-20 09:24:19 ----A---- C:\WINDOWS\system32\javaw.exe
2011-10-20 09:24:19 ----A---- C:\WINDOWS\system32\java.exe
2011-10-20 09:24:19 ----A---- C:\WINDOWS\system32\deployJava1.dll
2011-10-20 09:24:16 ----D---- C:\Program Files\Java
2011-10-20 04:33:26 ----HDC---- C:\WINDOWS\$NtUninstallKB978037_0$
2011-10-20 03:49:09 ----D---- C:\Program Files\uTorrent
2011-10-17 09:44:14 ----RSD---- C:\WINDOWS\Fonts
2011-10-17 09:43:00 ----D---- C:\Program Files\Internet Explorer
2011-10-16 19:46:27 ----D---- C:\WINDOWS\system32\mui
2011-10-16 10:57:32 ----D---- C:\WINDOWS\Debug
2011-10-14 14:58:25 ----RD---- C:\Program Files\Skype
2011-10-13 22:02:59 ----D---- C:\WINDOWS\system32\Restore
2011-10-13 22:02:39 ----D---- C:\Program Files\Microsoft Silverlight
2011-10-13 21:57:00 ----A---- C:\WINDOWS\system32\MRT.exe
2011-10-13 21:56:48 ----HD---- C:\WINDOWS\$hf_mig$
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 Kl1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2011-03-04 133208]
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2005-05-17 92800]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 kl2;kl2; C:\WINDOWS\system32\DRIVERS\kl2.sys [2011-03-04 11352]
R3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2011-03-10 34608]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2005-04-05 33536]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2005-04-05 12928]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S1 AmdK8;AMD Processor Driver; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 36352]
S1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2011-10-24 565552]
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2008-09-24 4122368]
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 AVerAF35;AVerMedia A825 USB Dual DVB-T; C:\WINDOWS\System32\Drivers\AVerAF35.sys [2009-05-26 485888]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 ctac32k;Creative AC3 Software Decoder; C:\WINDOWS\system32\drivers\ctac32k.sys []
S3 ctaud2k;Creative Audio Driver (WDM); C:\WINDOWS\system32\drivers\ctaud2k.sys []
S3 ctprxy2k;Creative Proxy Driver; C:\WINDOWS\system32\drivers\ctprxy2k.sys []
S3 emupia;E-mu Plug-in Architecture Driver; C:\WINDOWS\system32\drivers\emupia2k.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 ha10kx2k;Creative Hardware Abstract Layer Driver; C:\WINDOWS\system32\drivers\ha10kx2k.sys []
S3 ha20x2k;Creative 20X HAL Driver; C:\WINDOWS\system32\drivers\ha20x2k.sys []
S3 hap16v2k;Creative P16V HAL Driver; C:\WINDOWS\system32\drivers\hap16v2k.sys []
S3 hap17v2k;Creative P17V HAL Driver; C:\WINDOWS\system32\drivers\hap17v2k.sys []
S3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2009-11-02 19472]
S3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys [2009-10-07 25752]
S3 LVRS;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs.sys [2009-05-01 265496]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys []
S3 mbr;mbr; \??\C:\DOCUME~1\Jirka\LOCALS~1\Temp\mbr.sys []
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2011-08-03 12542592]
S3 pepifilter;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302af.sys [2009-04-30 13976]
S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\WINDOWS\system32\DRIVERS\LV302V32.SYS [2009-04-30 2687512]
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
S2 AVP;Kaspersky Anti-Virus Service; C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe [2011-04-24 202296]
S2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\system32\CTsvcCDA.EXE [1999-12-12 44032]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-08-24 136176]
S2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2009-10-07 147456]
S2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2011-08-03 139264]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-08-03 2255464]
S2 spupdsvc;Windows Service Pack Installer update service; C:\WINDOWS\system32\spupdsvc.exe [2009-01-07 26144]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [2011-09-27 1526080]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-08-24 136176]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-02-08 136120]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2011-10-20 161664]
S3 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119509
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: mám modrou obrazovku smrti pomůže někdo?
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako CFScript.txt. pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.KillAll::
Collect::
c:\windows\is-PB7FQ.exe
C:\cleanup.bat
Folder::
C:\urn_003.lnk
C:\MEDIA.COM
Firefox::
FF - ProfilePath - c:\documents and settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\ss9g23ma.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.as ... 2786678&q=
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: mám modrou obrazovku smrti pomůže někdo?
hotovo pořád mi nejde spustit systém normálně jenom v save modu
---------------------------------------------
ComboFix 11-11-06.01 - Jirka 06.11.2011 16:03:23.5.1 - x86 NETWORK
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1612 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jirka\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Jirka\Plocha\CFScript.txt..txt
.
file zipped: C:\cleanup.bat
file zipped: c:\windows\is-PB7FQ.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\cleanup.bat
C:\MEDIA.COM
C:\urn_003.lnk
c:\windows\is-PB7FQ.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-06 do 2011-11-06 )))))))))))))))))))))))))))))))
.
.
2011-11-06 03:25 . 2011-08-31 16:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-10-26 19:00 . 2011-10-27 00:10 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\UseNeXT
2011-10-26 19:00 . 2011-10-26 23:35 -------- d-----w- c:\program files\UseNeXT
2011-10-26 14:05 . 2011-10-27 04:04 -------- d-----w- c:\documents and settings\Jirka\Local Settings\Data aplikací\sabnzbd
2011-10-26 14:04 . 2011-10-27 04:04 -------- d-----w- c:\program files\SABnzbd
2011-10-23 23:05 . 2011-10-23 23:40 97961 ----a-w- c:\windows\system32\drivers\klick.dat
2011-10-23 23:05 . 2011-10-23 23:40 115369 ----a-w- c:\windows\system32\drivers\klin.dat
2011-10-23 23:03 . 2011-11-06 01:09 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Kaspersky Lab
2011-10-23 23:03 . 2011-10-23 23:03 -------- d-----w- c:\program files\Kaspersky Lab
2011-10-22 02:56 . 2011-10-22 02:56 -------- d-----w- C:\Users
2011-10-21 00:10 . 2011-10-21 00:10 -------- d--h--w- c:\documents and settings\All Users\Data aplikací\Common Files
2011-10-21 00:10 . 2011-10-21 00:21 -------- d-----w- c:\documents and settings\All Users\Data aplikací\MFAData
2011-10-20 23:36 . 2011-10-20 23:36 -------- d-----w- c:\program files\AVerMedia
2011-10-20 23:25 . 2011-10-20 23:25 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\Logitech
2011-10-20 19:20 . 2011-10-20 19:20 -------- d-----w- c:\documents and settings\user
2011-10-20 19:07 . 2011-07-16 14:17 151552 ----a-w- c:\windows\system32\ac3acm.acm
2011-10-20 19:07 . 2011-06-24 14:28 650752 ----a-w- c:\windows\system32\xvidcore.dll
2011-10-20 19:07 . 2008-09-24 18:41 839680 ----a-w- c:\windows\system32\lameACM.acm
2011-10-20 19:07 . 2011-10-04 08:00 74752 ----a-w- c:\windows\system32\ff_vfw.dll
2011-10-20 19:07 . 2011-06-24 14:44 243200 ----a-w- c:\windows\system32\xvidvfw.dll
2011-10-20 18:46 . 2008-04-14 03:22 221184 ----a-w- c:\windows\system32\wmpns.dll
2011-10-20 16:37 . 2011-10-25 06:20 -------- d-----w- c:\program files\Software Informer
2011-10-20 13:35 . 2011-10-20 13:35 -------- d-----w- C:\Documents
2011-10-20 12:32 . 2009-10-20 17:25 102400 ------r- c:\windows\system32\CardID.dll
2011-10-20 12:32 . 2007-02-08 13:09 49152 ------r- c:\windows\system32\AVerIO.dll
2011-10-20 12:32 . 2005-04-28 19:08 3456 ------r- c:\windows\system32\AVerIO.sys
2011-10-20 12:31 . 2008-10-07 17:31 290816 ------r- c:\windows\system32\sptlib22.dll
2011-10-20 12:31 . 2011-10-20 23:37 -------- d-----w- c:\program files\Common Files\AVerMedia
2011-10-20 12:30 . 2011-10-20 12:30 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2011-10-20 12:23 . 2008-04-13 18:46 15232 -c--a-w- c:\windows\system32\dllcache\mpe.sys
2011-10-20 12:23 . 2008-04-13 18:46 15232 ----a-w- c:\windows\system32\drivers\MPE.sys
2011-10-20 12:22 . 2008-04-14 03:22 56832 ----a-w- c:\windows\system32\MSDvbNP.ax
2011-10-20 12:22 . 2008-04-14 03:22 33280 ----a-w- c:\windows\system32\PsisRndr.ax
2011-10-20 12:22 . 2008-04-14 03:21 363520 -c--a-w- c:\windows\system32\dllcache\psisdecd.dll
2011-10-20 12:22 . 2008-04-14 03:21 363520 ----a-w- c:\windows\system32\PsisDecd.dll
2011-10-20 12:22 . 2008-04-13 18:46 11776 -c--a-w- c:\windows\system32\dllcache\bdasup.sys
2011-10-20 12:22 . 2008-04-13 18:46 11776 ----a-w- c:\windows\system32\drivers\BdaSup.sys
2011-10-20 12:22 . 2008-04-14 03:22 18432 ----a-w- c:\windows\system32\BdaPlgIn.ax
2011-10-20 08:25 . 2011-10-20 08:25 -------- d-----w- c:\program files\Common Files\Java
2011-10-20 03:19 . 2011-10-20 03:19 -------- d-----w- c:\documents and settings\Administrator\Data aplikací\Malwarebytes
2011-10-20 00:13 . 2011-10-23 23:47 -------- d-sh--w- c:\documents and settings\Jirka\Local Settings\Data aplikací\fa2ab943
2011-10-17 08:44 . 2011-10-17 08:44 -------- d-----w- c:\windows\system32\XPSViewer
2011-10-17 08:44 . 2011-10-17 08:44 -------- d-----w- c:\program files\MSBuild
2011-10-17 08:44 . 2011-10-17 08:44 -------- d-----w- c:\program files\Reference Assemblies
2011-10-17 08:43 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2011-10-17 08:43 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2011-10-17 08:43 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2011-10-17 08:43 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2011-10-17 08:43 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2011-10-17 08:43 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2011-10-17 08:43 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2011-10-17 08:43 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2011-10-16 18:43 . 2011-10-16 18:43 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\HTML Executable
2011-10-14 06:18 . 2011-10-14 06:18 -------- d-----w- C:\rsit
2011-10-13 01:55 . 2011-10-13 01:55 68096 --sha-r- c:\windows\system32\ntmsapiy.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-21 21:12 . 2006-03-02 12:00 64256 ----a-w- c:\windows\system32\drivers\serial.sys
2011-10-20 08:24 . 2011-09-11 03:20 128000 ----a-w- c:\windows\system32\javacpl.cpl
2011-10-20 08:24 . 2011-08-26 12:20 544656 ----a-w- c:\windows\system32\deployJava1.dll
2011-10-13 21:04 . 2011-08-24 20:23 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-27 11:53 . 2011-09-04 00:46 31552 ----a-w- c:\windows\system32\TURegOpt.exe
2011-09-27 11:46 . 2011-09-04 00:46 29504 ----a-w- c:\windows\system32\uxtuneup.dll
2011-09-26 09:41 . 2011-09-26 09:41 613376 ------w- c:\windows\system32\uiautomationcore.dll
2011-09-26 09:41 . 2006-03-02 12:00 22528 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-26 09:41 . 2006-03-02 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-09 09:12 . 2006-03-02 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-09-06 14:10 . 2006-03-02 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-08-26 12:13 . 2011-08-26 12:13 0 ----a-w- c:\windows\system32\ConduitEngine.tmp
2011-08-24 22:12 . 2011-08-24 22:12 231248 ----a-w- c:\windows\system32\drivers\truecrypt.sys
2011-08-24 18:02 . 2011-08-24 17:26 60416 ----a-w- c:\windows\ALCFDRTM.VER
2011-08-24 17:26 . 2011-08-24 17:26 60416 ----a-w- c:\windows\ALCFDRTM.EXE
2011-08-22 23:41 . 2006-03-02 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-08-22 23:41 . 2006-03-02 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2011-08-22 23:41 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2006-03-02 12:00 385024 ------w- c:\windows\system32\html.iec
2011-08-17 13:49 . 2006-03-02 12:00 138496 ----a-w- c:\windows\system32\drivers\afd.sys
2011-10-06 09:12 . 2011-09-11 17:28 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-11-06_05.00.43 )))))))))))))))))))))))))))))))))))))))))
.
+ 2006-03-02 12:00 . 2011-11-06 05:28 68272 c:\windows\system32\perfc009.dat
+ 2006-03-02 12:00 . 2011-11-06 05:28 79174 c:\windows\system32\perfc005.dat
+ 2006-03-02 12:00 . 2011-11-06 05:28 435568 c:\windows\system32\perfh009.dat
+ 2006-03-02 12:00 . 2011-11-06 05:28 432332 c:\windows\system32\perfh005.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-10-13 17351304]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SW20"="c:\windows\system32\sw20.exe" [2005-06-29 212992]
"SW24"="c:\windows\system32\sw24.exe" [2005-07-04 69632]
"LogitechQuickCamRibbon"="c:\program files\Logitech\Logitech WebCam Software\LWS.exe" [2009-10-14 2793304]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2011-08-03 13892200]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2011-08-03 111208]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-05-04 252136]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2011-08-31 1047208]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"SpybotSnD"="c:\program files\Spybot - Search & Destroy\SpybotSD.exe" [2009-01-26 5365592]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Creative Detector"="c:\program files\Creative\MediaSource\Detector\CTDetect.exe" /R
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SoundMan"=SOUNDMAN.EXE
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\WINDOWS\\system32\\javaw.exe"=
"c:\\WINDOWS\\system32\\dwwin.exe"=
"c:\\Program Files\\Common Files\\Java\\Java Update\\jucheck.exe"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"c:\\Program Files\\Google\\Update\\GoogleUpdate.exe"=
"c:\\Program Files\\CCleaner\\CCleaner.exe"=
"c:\\Program Files\\Common Files\\Microsoft Shared\\DW\\DW20.EXE"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Java\\jdk1.7.0_01\\jre\\bin\\javaw.exe"=
"c:\\Program Files\\Adobe\\Reader 10.0\\Reader\\AcroRd32.exe"=
"c:\\Program Files\\Mozilla Firefox\\plugin-container.exe"=
"c:\\Program Files\\Google\\Picasa3\\PicasaUpdater.exe"=
"c:\\Documents and Settings\\All Users\\Data aplikací\\MFAData\\SelfUpd\\avgmfapx.exe"=
"c:\\Program Files\\Windows Media Player\\setup_wm.exe"=
"c:\\Program Files\\Windows Media Player\\wmplayer.exe"=
"c:\\Program Files\\Logitech\\Logitech WebCam Software\\LWS.exe"=
"c:\\Program Files\\TuneUp Utilities 2011\\TURatingSynch.exe"=
"c:\\Documents and Settings\\Jirka\\Dokumenty\\Stažené soubory\\tdsskiller.exe"=
.
R1 kl2;kl2;c:\windows\system32\drivers\kl2.sys [4.3.2011 12:23 11352]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [10.3.2011 17:34 34608]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [24.8.2011 21:23 136176]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [5.9.2011 1:19 2255464]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [27.9.2011 12:50 1526080]
S3 AVerAF35;AVerMedia A825 USB Dual DVB-T;c:\windows\system32\drivers\AVerAF35.sys [26.5.2009 0:58 485888]
S3 CFcatchme;CFcatchme;\??\c:\docume~1\Jirka\LOCALS~1\Temp\CFcatchme.sys --> c:\docume~1\Jirka\LOCALS~1\Temp\CFcatchme.sys [?]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [24.8.2011 21:23 136176]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2.11.2009 19:27 19472]
S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\d:\ntglm7x.sys --> d:\NTGLM7X.sys [?]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
2011-11-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-24 20:23]
.
2011-11-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-24 20:23]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://seznam.cz/
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://home.sweetim.com
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.254 192.168.2.254
FF - ProfilePath - c:\documents and settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\ss9g23ma.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz
FF - prefs.js: network.proxy.type - 0
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-RunOnce-InnoSetupRegFile.0000000001 - c:\windows\is-PB7FQ.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-06 19:05
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1052)
c:\windows\system32\CLBCATQ.DLL
.
Celkový čas: 2011-11-06 19:07:49 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-11-06 18:07
ComboFix2.txt 2011-11-06 06:01
ComboFix3.txt 2011-11-06 05:03
.
Před spuštěním: Volných bajtů: 124 370 554 880
Po spuštění: Volných bajtů: 124 351 381 504
.
- - End Of File - - D621DCA878597A2CBD40F0BD4D903B45
Nahr nˇ probŘhlo ŁspŘçnŘ
---------------------------------------------
ComboFix 11-11-06.01 - Jirka 06.11.2011 16:03:23.5.1 - x86 NETWORK
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1612 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jirka\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Jirka\Plocha\CFScript.txt..txt
.
file zipped: C:\cleanup.bat
file zipped: c:\windows\is-PB7FQ.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\cleanup.bat
C:\MEDIA.COM
C:\urn_003.lnk
c:\windows\is-PB7FQ.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-06 do 2011-11-06 )))))))))))))))))))))))))))))))
.
.
2011-11-06 03:25 . 2011-08-31 16:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-10-26 19:00 . 2011-10-27 00:10 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\UseNeXT
2011-10-26 19:00 . 2011-10-26 23:35 -------- d-----w- c:\program files\UseNeXT
2011-10-26 14:05 . 2011-10-27 04:04 -------- d-----w- c:\documents and settings\Jirka\Local Settings\Data aplikací\sabnzbd
2011-10-26 14:04 . 2011-10-27 04:04 -------- d-----w- c:\program files\SABnzbd
2011-10-23 23:05 . 2011-10-23 23:40 97961 ----a-w- c:\windows\system32\drivers\klick.dat
2011-10-23 23:05 . 2011-10-23 23:40 115369 ----a-w- c:\windows\system32\drivers\klin.dat
2011-10-23 23:03 . 2011-11-06 01:09 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Kaspersky Lab
2011-10-23 23:03 . 2011-10-23 23:03 -------- d-----w- c:\program files\Kaspersky Lab
2011-10-22 02:56 . 2011-10-22 02:56 -------- d-----w- C:\Users
2011-10-21 00:10 . 2011-10-21 00:10 -------- d--h--w- c:\documents and settings\All Users\Data aplikací\Common Files
2011-10-21 00:10 . 2011-10-21 00:21 -------- d-----w- c:\documents and settings\All Users\Data aplikací\MFAData
2011-10-20 23:36 . 2011-10-20 23:36 -------- d-----w- c:\program files\AVerMedia
2011-10-20 23:25 . 2011-10-20 23:25 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\Logitech
2011-10-20 19:20 . 2011-10-20 19:20 -------- d-----w- c:\documents and settings\user
2011-10-20 19:07 . 2011-07-16 14:17 151552 ----a-w- c:\windows\system32\ac3acm.acm
2011-10-20 19:07 . 2011-06-24 14:28 650752 ----a-w- c:\windows\system32\xvidcore.dll
2011-10-20 19:07 . 2008-09-24 18:41 839680 ----a-w- c:\windows\system32\lameACM.acm
2011-10-20 19:07 . 2011-10-04 08:00 74752 ----a-w- c:\windows\system32\ff_vfw.dll
2011-10-20 19:07 . 2011-06-24 14:44 243200 ----a-w- c:\windows\system32\xvidvfw.dll
2011-10-20 18:46 . 2008-04-14 03:22 221184 ----a-w- c:\windows\system32\wmpns.dll
2011-10-20 16:37 . 2011-10-25 06:20 -------- d-----w- c:\program files\Software Informer
2011-10-20 13:35 . 2011-10-20 13:35 -------- d-----w- C:\Documents
2011-10-20 12:32 . 2009-10-20 17:25 102400 ------r- c:\windows\system32\CardID.dll
2011-10-20 12:32 . 2007-02-08 13:09 49152 ------r- c:\windows\system32\AVerIO.dll
2011-10-20 12:32 . 2005-04-28 19:08 3456 ------r- c:\windows\system32\AVerIO.sys
2011-10-20 12:31 . 2008-10-07 17:31 290816 ------r- c:\windows\system32\sptlib22.dll
2011-10-20 12:31 . 2011-10-20 23:37 -------- d-----w- c:\program files\Common Files\AVerMedia
2011-10-20 12:30 . 2011-10-20 12:30 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2011-10-20 12:23 . 2008-04-13 18:46 15232 -c--a-w- c:\windows\system32\dllcache\mpe.sys
2011-10-20 12:23 . 2008-04-13 18:46 15232 ----a-w- c:\windows\system32\drivers\MPE.sys
2011-10-20 12:22 . 2008-04-14 03:22 56832 ----a-w- c:\windows\system32\MSDvbNP.ax
2011-10-20 12:22 . 2008-04-14 03:22 33280 ----a-w- c:\windows\system32\PsisRndr.ax
2011-10-20 12:22 . 2008-04-14 03:21 363520 -c--a-w- c:\windows\system32\dllcache\psisdecd.dll
2011-10-20 12:22 . 2008-04-14 03:21 363520 ----a-w- c:\windows\system32\PsisDecd.dll
2011-10-20 12:22 . 2008-04-13 18:46 11776 -c--a-w- c:\windows\system32\dllcache\bdasup.sys
2011-10-20 12:22 . 2008-04-13 18:46 11776 ----a-w- c:\windows\system32\drivers\BdaSup.sys
2011-10-20 12:22 . 2008-04-14 03:22 18432 ----a-w- c:\windows\system32\BdaPlgIn.ax
2011-10-20 08:25 . 2011-10-20 08:25 -------- d-----w- c:\program files\Common Files\Java
2011-10-20 03:19 . 2011-10-20 03:19 -------- d-----w- c:\documents and settings\Administrator\Data aplikací\Malwarebytes
2011-10-20 00:13 . 2011-10-23 23:47 -------- d-sh--w- c:\documents and settings\Jirka\Local Settings\Data aplikací\fa2ab943
2011-10-17 08:44 . 2011-10-17 08:44 -------- d-----w- c:\windows\system32\XPSViewer
2011-10-17 08:44 . 2011-10-17 08:44 -------- d-----w- c:\program files\MSBuild
2011-10-17 08:44 . 2011-10-17 08:44 -------- d-----w- c:\program files\Reference Assemblies
2011-10-17 08:43 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2011-10-17 08:43 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2011-10-17 08:43 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2011-10-17 08:43 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2011-10-17 08:43 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2011-10-17 08:43 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2011-10-17 08:43 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2011-10-17 08:43 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2011-10-16 18:43 . 2011-10-16 18:43 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\HTML Executable
2011-10-14 06:18 . 2011-10-14 06:18 -------- d-----w- C:\rsit
2011-10-13 01:55 . 2011-10-13 01:55 68096 --sha-r- c:\windows\system32\ntmsapiy.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-21 21:12 . 2006-03-02 12:00 64256 ----a-w- c:\windows\system32\drivers\serial.sys
2011-10-20 08:24 . 2011-09-11 03:20 128000 ----a-w- c:\windows\system32\javacpl.cpl
2011-10-20 08:24 . 2011-08-26 12:20 544656 ----a-w- c:\windows\system32\deployJava1.dll
2011-10-13 21:04 . 2011-08-24 20:23 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-27 11:53 . 2011-09-04 00:46 31552 ----a-w- c:\windows\system32\TURegOpt.exe
2011-09-27 11:46 . 2011-09-04 00:46 29504 ----a-w- c:\windows\system32\uxtuneup.dll
2011-09-26 09:41 . 2011-09-26 09:41 613376 ------w- c:\windows\system32\uiautomationcore.dll
2011-09-26 09:41 . 2006-03-02 12:00 22528 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-26 09:41 . 2006-03-02 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-09 09:12 . 2006-03-02 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-09-06 14:10 . 2006-03-02 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-08-26 12:13 . 2011-08-26 12:13 0 ----a-w- c:\windows\system32\ConduitEngine.tmp
2011-08-24 22:12 . 2011-08-24 22:12 231248 ----a-w- c:\windows\system32\drivers\truecrypt.sys
2011-08-24 18:02 . 2011-08-24 17:26 60416 ----a-w- c:\windows\ALCFDRTM.VER
2011-08-24 17:26 . 2011-08-24 17:26 60416 ----a-w- c:\windows\ALCFDRTM.EXE
2011-08-22 23:41 . 2006-03-02 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-08-22 23:41 . 2006-03-02 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2011-08-22 23:41 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2006-03-02 12:00 385024 ------w- c:\windows\system32\html.iec
2011-08-17 13:49 . 2006-03-02 12:00 138496 ----a-w- c:\windows\system32\drivers\afd.sys
2011-10-06 09:12 . 2011-09-11 17:28 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-11-06_05.00.43 )))))))))))))))))))))))))))))))))))))))))
.
+ 2006-03-02 12:00 . 2011-11-06 05:28 68272 c:\windows\system32\perfc009.dat
+ 2006-03-02 12:00 . 2011-11-06 05:28 79174 c:\windows\system32\perfc005.dat
+ 2006-03-02 12:00 . 2011-11-06 05:28 435568 c:\windows\system32\perfh009.dat
+ 2006-03-02 12:00 . 2011-11-06 05:28 432332 c:\windows\system32\perfh005.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-10-13 17351304]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SW20"="c:\windows\system32\sw20.exe" [2005-06-29 212992]
"SW24"="c:\windows\system32\sw24.exe" [2005-07-04 69632]
"LogitechQuickCamRibbon"="c:\program files\Logitech\Logitech WebCam Software\LWS.exe" [2009-10-14 2793304]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2011-08-03 13892200]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2011-08-03 111208]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-05-04 252136]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2011-08-31 1047208]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"SpybotSnD"="c:\program files\Spybot - Search & Destroy\SpybotSD.exe" [2009-01-26 5365592]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Creative Detector"="c:\program files\Creative\MediaSource\Detector\CTDetect.exe" /R
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SoundMan"=SOUNDMAN.EXE
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\WINDOWS\\system32\\javaw.exe"=
"c:\\WINDOWS\\system32\\dwwin.exe"=
"c:\\Program Files\\Common Files\\Java\\Java Update\\jucheck.exe"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"c:\\Program Files\\Google\\Update\\GoogleUpdate.exe"=
"c:\\Program Files\\CCleaner\\CCleaner.exe"=
"c:\\Program Files\\Common Files\\Microsoft Shared\\DW\\DW20.EXE"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Java\\jdk1.7.0_01\\jre\\bin\\javaw.exe"=
"c:\\Program Files\\Adobe\\Reader 10.0\\Reader\\AcroRd32.exe"=
"c:\\Program Files\\Mozilla Firefox\\plugin-container.exe"=
"c:\\Program Files\\Google\\Picasa3\\PicasaUpdater.exe"=
"c:\\Documents and Settings\\All Users\\Data aplikací\\MFAData\\SelfUpd\\avgmfapx.exe"=
"c:\\Program Files\\Windows Media Player\\setup_wm.exe"=
"c:\\Program Files\\Windows Media Player\\wmplayer.exe"=
"c:\\Program Files\\Logitech\\Logitech WebCam Software\\LWS.exe"=
"c:\\Program Files\\TuneUp Utilities 2011\\TURatingSynch.exe"=
"c:\\Documents and Settings\\Jirka\\Dokumenty\\Stažené soubory\\tdsskiller.exe"=
.
R1 kl2;kl2;c:\windows\system32\drivers\kl2.sys [4.3.2011 12:23 11352]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [10.3.2011 17:34 34608]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [24.8.2011 21:23 136176]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [5.9.2011 1:19 2255464]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [27.9.2011 12:50 1526080]
S3 AVerAF35;AVerMedia A825 USB Dual DVB-T;c:\windows\system32\drivers\AVerAF35.sys [26.5.2009 0:58 485888]
S3 CFcatchme;CFcatchme;\??\c:\docume~1\Jirka\LOCALS~1\Temp\CFcatchme.sys --> c:\docume~1\Jirka\LOCALS~1\Temp\CFcatchme.sys [?]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [24.8.2011 21:23 136176]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2.11.2009 19:27 19472]
S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\d:\ntglm7x.sys --> d:\NTGLM7X.sys [?]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
2011-11-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-24 20:23]
.
2011-11-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-24 20:23]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://seznam.cz/
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://home.sweetim.com
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.254 192.168.2.254
FF - ProfilePath - c:\documents and settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\ss9g23ma.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz
FF - prefs.js: network.proxy.type - 0
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-RunOnce-InnoSetupRegFile.0000000001 - c:\windows\is-PB7FQ.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-06 19:05
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1052)
c:\windows\system32\CLBCATQ.DLL
.
Celkový čas: 2011-11-06 19:07:49 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-11-06 18:07
ComboFix2.txt 2011-11-06 06:01
ComboFix3.txt 2011-11-06 05:03
.
Před spuštěním: Volných bajtů: 124 370 554 880
Po spuštění: Volných bajtů: 124 351 381 504
.
- - End Of File - - D621DCA878597A2CBD40F0BD4D903B45
Nahr nˇ probŘhlo ŁspŘçnŘ
-
Rudy
- Site Admin
- Příspěvky: 119509
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: mám modrou obrazovku smrti pomůže někdo?
Log již vypadá OK. Zkuste obnovu systému k datu, kdy korektně fungoval.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: mám modrou obrazovku smrti pomůže někdo?
obnova systému nejde zkusil jsem všechny body obnovení ale vždy ukáže že nic nebylo možno obnovit a nebyly provedeny žádné změny.Na modré obrazovce se objevilo něco jako že není driver nemohu to přečíst je tam jen na chvilku a hned restartuje myslím že tam je něco jako z důvodu změny hardwaru a nemohu načíst ?driver IQC nebo WQL nebo něco takovýho.nevím co s tím.Jirkabj
-
Rudy
- Site Admin
- Příspěvky: 119509
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: mám modrou obrazovku smrti pomůže někdo?
Stáhněte GMER: http://www.viry.cz/forum/viewtopic.php?f=29&t=62878 , spusťte, proveďte sken a dejte sem oba logy.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: mám modrou obrazovku smrti pomůže někdo?
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2011-11-06 23:36:54
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\0000006b HDS722516VLSA80 rev.V34OA63A
Running: gmer.exe; Driver: C:\DOCUME~1\Jirka\LOCALS~1\Temp\pxtdapow.sys
---- User code sections - GMER 1.0.15 ----
.text C:\Program Files\Mozilla Firefox\firefox.exe[528] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 0121FAE0 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
---- EOF - GMER 1.0.15 ----
--------------------------------------------------
nevím jaký druhý log
Rootkit scan 2011-11-06 23:36:54
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\0000006b HDS722516VLSA80 rev.V34OA63A
Running: gmer.exe; Driver: C:\DOCUME~1\Jirka\LOCALS~1\Temp\pxtdapow.sys
---- User code sections - GMER 1.0.15 ----
.text C:\Program Files\Mozilla Firefox\firefox.exe[528] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 0121FAE0 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
---- EOF - GMER 1.0.15 ----
--------------------------------------------------
nevím jaký druhý log
-
Rudy
- Site Admin
- Příspěvky: 119509
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: mám modrou obrazovku smrti pomůže někdo?
abychom se dostali k "hlavnimu" skenu a ziskani logu z nej, ponechame v pravem sloupci zafajfkovane vsechny polozky a klikneme na tlacitko Scan, pak to vypada v okne aplikace asi takhle:
Vyckame konce skenu (coz trva tak kolem peti deseti minut; v nekterych pripadech ovsem muze delka skenu presahnout i dve hodiny!!!), pote.....
Vyckame konce skenu (coz trva tak kolem peti deseti minut; v nekterych pripadech ovsem muze delka skenu presahnout i dve hodiny!!!), pote.....
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: mám modrou obrazovku smrti pomůže někdo?
Omlouvám se že jsem se neozval ale pokoušel jsem se něco dělat s těmi logy ale mezitím se mi zasekl comp úplně takže jsem zvolil jedinou možnost zformátoval jsem disk C a nainstaloval system znova takže nevím co byla příčina toho všeho.
Mám pocit že problém je v něčem jiném protože i po přeinstalování není něco v pořádku.Všechno nabíhá pomalu comp reaguje zpomaleně jak programy tak i běžné zobrazování na ploše.To samé internet a hry vůbec po chvíli nejdou hrát začnou se sekat mají problémy s výkonem.
Mám pocit že problém je v něčem jiném protože i po přeinstalování není něco v pořádku.Všechno nabíhá pomalu comp reaguje zpomaleně jak programy tak i běžné zobrazování na ploše.To samé internet a hry vůbec po chvíli nejdou hrát začnou se sekat mají problémy s výkonem.
Naposledy upravil(a) jirka bj dne 14 lis 2011 04:29, celkem upraveno 1 x.
Re: mám modrou obrazovku smrti pomůže někdo?
ComboFix 11-11-08.02 - Jirka 09.11.2011 8:15.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1322 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jirka\Dokumenty\Stažené soubory\ComboFix.exe
AV: Kaspersky Anti-Virus *Disabled/Updated* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\CF31928.exe
c:\windows\system32\TZLog.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-09 do 2011-11-09 )))))))))))))))))))))))))))))))
.
.
2011-11-09 06:41 . 2011-11-09 06:42 -------- d-----w- C:\rsit
2011-11-09 05:01 . 2011-11-09 05:28 -------- d-----w- C:\NVIDIA
2011-11-07 11:08 . 2011-11-09 06:55 -------- d-----r- C:\Program Files
2011-11-07 11:07 . 2011-11-07 11:06 -------- d-----w- C:\Documents and Settings
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-08 04:50 . 2005-06-15 09:20 4226688 ----a-w- c:\windows\system32\nv4_disp.dll
2011-10-08 04:50 . 2005-06-15 09:20 17956864 ----a-w- c:\windows\system32\nvoglnt.dll
2011-10-08 04:50 . 2005-06-15 09:20 12791488 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2011-09-26 10:41 . 2011-09-26 10:41 613376 ------w- c:\windows\system32\uiautomationcore.dll
2011-09-26 10:41 . 2006-03-02 12:00 22528 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-26 10:41 . 2006-03-02 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-09 09:12 . 2006-03-02 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-09-06 14:10 . 2006-03-02 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-08-22 23:41 . 2006-03-02 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-08-22 23:41 . 2006-03-02 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-08-22 23:41 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2006-03-02 12:00 385024 ----a-w- c:\windows\system32\html.iec
2011-08-17 13:49 . 2006-03-02 12:00 138496 ----a-w- c:\windows\system32\drivers\afd.sys
2011-09-29 07:07 . 2011-11-07 13:52 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{1EA00BE1-6E54-4E2A-8099-680300BF23E1}"= "c:\program files\Seznam.cz\toolbar\toolbar.dll" [2010-10-07 187672]
.
[HKEY_CLASSES_ROOT\clsid\{1ea00be1-6e54-4e2a-8099-680300bf23e1}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SW20"="c:\windows\system32\sw20.exe" [2005-06-29 212992]
"SW24"="c:\windows\system32\sw24.exe" [2005-07-04 69632]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe" [2011-04-24 202296]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 1821576]
"NVMixerTray"="c:\program files\NVIDIA Corporation\NvMixer\NVMixerTray.exe" [2004-12-20 131072]
"SoundMan"="SOUNDMAN.EXE" [2007-04-16 577536]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-01-16 13680640]
"NvMediaCenter"="NvMCTray.dll" [2009-01-16 86016]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2011-10-08 1632360]
"LogitechQuickCamRibbon"="c:\program files\Logitech\Logitech WebCam Software\LWS.exe" [2009-10-14 2793304]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Google Update"="c:\documents and settings\Jirka\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" /MINIMIZED
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SoundMan"=SOUNDMAN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"=
.
R1 kl2;kl2;c:\windows\system32\drivers\kl2.sys [4.3.2011 13:23 11352]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [7.11.2011 12:06 2253120]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [2.11.2011 20:29 1479488]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [10.3.2011 18:34 34608]
R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2.11.2009 20:27 19472]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [20.10.2011 11:48 10064]
R4 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [9.11.2011 7:55 41272]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\g:\ntglm7x.sys --> g:\NTGLM7X.sys [?]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMSWISSARMY
*NewlyCreated* - NVSVC
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: {{0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - c:\program files\Seznam.cz\listicka.dll
TCP: DhcpNameServer = 192.168.1.254 192.168.2.254
TCP: Interfaces\{61DE08D6-734E-47B4-BC54-58B9AF22BAB8}: NameServer = 82.202.74.3,82.202.74.4
FF - ProfilePath - c:\documents and settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\6v4jnou9.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: network.proxy.type - 0
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-09 08:20
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2011-11-09 08:23:09
ComboFix-quarantined-files.txt 2011-11-09 07:23
.
Před spuštěním: Volných bajtů: 151 307 026 432
Po spuštění: Volných bajtů: 151 350 173 696
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - E5541DC6C2DBF480D342FEA61D28A83F
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1322 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jirka\Dokumenty\Stažené soubory\ComboFix.exe
AV: Kaspersky Anti-Virus *Disabled/Updated* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\CF31928.exe
c:\windows\system32\TZLog.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-09 do 2011-11-09 )))))))))))))))))))))))))))))))
.
.
2011-11-09 06:41 . 2011-11-09 06:42 -------- d-----w- C:\rsit
2011-11-09 05:01 . 2011-11-09 05:28 -------- d-----w- C:\NVIDIA
2011-11-07 11:08 . 2011-11-09 06:55 -------- d-----r- C:\Program Files
2011-11-07 11:07 . 2011-11-07 11:06 -------- d-----w- C:\Documents and Settings
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-08 04:50 . 2005-06-15 09:20 4226688 ----a-w- c:\windows\system32\nv4_disp.dll
2011-10-08 04:50 . 2005-06-15 09:20 17956864 ----a-w- c:\windows\system32\nvoglnt.dll
2011-10-08 04:50 . 2005-06-15 09:20 12791488 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2011-09-26 10:41 . 2011-09-26 10:41 613376 ------w- c:\windows\system32\uiautomationcore.dll
2011-09-26 10:41 . 2006-03-02 12:00 22528 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-26 10:41 . 2006-03-02 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-09 09:12 . 2006-03-02 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-09-06 14:10 . 2006-03-02 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-08-22 23:41 . 2006-03-02 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-08-22 23:41 . 2006-03-02 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-08-22 23:41 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2006-03-02 12:00 385024 ----a-w- c:\windows\system32\html.iec
2011-08-17 13:49 . 2006-03-02 12:00 138496 ----a-w- c:\windows\system32\drivers\afd.sys
2011-09-29 07:07 . 2011-11-07 13:52 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{1EA00BE1-6E54-4E2A-8099-680300BF23E1}"= "c:\program files\Seznam.cz\toolbar\toolbar.dll" [2010-10-07 187672]
.
[HKEY_CLASSES_ROOT\clsid\{1ea00be1-6e54-4e2a-8099-680300bf23e1}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SW20"="c:\windows\system32\sw20.exe" [2005-06-29 212992]
"SW24"="c:\windows\system32\sw24.exe" [2005-07-04 69632]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe" [2011-04-24 202296]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 1821576]
"NVMixerTray"="c:\program files\NVIDIA Corporation\NvMixer\NVMixerTray.exe" [2004-12-20 131072]
"SoundMan"="SOUNDMAN.EXE" [2007-04-16 577536]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-01-16 13680640]
"NvMediaCenter"="NvMCTray.dll" [2009-01-16 86016]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2011-10-08 1632360]
"LogitechQuickCamRibbon"="c:\program files\Logitech\Logitech WebCam Software\LWS.exe" [2009-10-14 2793304]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Google Update"="c:\documents and settings\Jirka\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" /MINIMIZED
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SoundMan"=SOUNDMAN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"=
.
R1 kl2;kl2;c:\windows\system32\drivers\kl2.sys [4.3.2011 13:23 11352]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [7.11.2011 12:06 2253120]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [2.11.2011 20:29 1479488]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [10.3.2011 18:34 34608]
R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2.11.2009 20:27 19472]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [20.10.2011 11:48 10064]
R4 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [9.11.2011 7:55 41272]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\g:\ntglm7x.sys --> g:\NTGLM7X.sys [?]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMSWISSARMY
*NewlyCreated* - NVSVC
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: {{0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - c:\program files\Seznam.cz\listicka.dll
TCP: DhcpNameServer = 192.168.1.254 192.168.2.254
TCP: Interfaces\{61DE08D6-734E-47B4-BC54-58B9AF22BAB8}: NameServer = 82.202.74.3,82.202.74.4
FF - ProfilePath - c:\documents and settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\6v4jnou9.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: network.proxy.type - 0
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-09 08:20
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2011-11-09 08:23:09
ComboFix-quarantined-files.txt 2011-11-09 07:23
.
Před spuštěním: Volných bajtů: 151 307 026 432
Po spuštění: Volných bajtů: 151 350 173 696
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - E5541DC6C2DBF480D342FEA61D28A83F
Re: mám modrou obrazovku smrti pomůže někdo?
OTL logfile created on: 9.11.2011 8:46:22 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Jirka\Dokumenty\Stažené soubory
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 1,40 Gb Available Physical Memory | 70,24% Memory free
3,84 Gb Paging File | 3,35 Gb Available in Paging File | 87,10% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 153,38 Gb Total Space | 140,97 Gb Free Space | 91,91% Space Free | Partition Type: NTFS
Drive E: | 627,55 Gb Total Space | 601,76 Gb Free Space | 95,89% Space Free | Partition Type: NTFSComboFix 11-11-08.02 - Jirka 09.11.2011 8:15.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1322 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jirka\Dokumenty\Stažené soubory\ComboFix.exe
AV: Kaspersky Anti-Virus *Disabled/Updated* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\CF31928.exe
c:\windows\system32\TZLog.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-09 do 2011-11-09 )))))))))))))))))))))))))))))))
.
.
2011-11-09 06:41 . 2011-11-09 06:42 -------- d-----w- C:\rsit
2011-11-09 05:01 . 2011-11-09 05:28 -------- d-----w- C:\NVIDIA
2011-11-07 11:08 . 2011-11-09 06:55 -------- d-----r- C:\Program Files
2011-11-07 11:07 . 2011-11-07 11:06 -------- d-----w- C:\Documents and Settings
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-08 04:50 . 2005-06-15 09:20 4226688 ----a-w- c:\windows\system32\nv4_disp.dll
2011-10-08 04:50 . 2005-06-15 09:20 17956864 ----a-w- c:\windows\system32\nvoglnt.dll
2011-10-08 04:50 . 2005-06-15 09:20 12791488 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2011-09-26 10:41 . 2011-09-26 10:41 613376 ------w- c:\windows\system32\uiautomationcore.dll
2011-09-26 10:41 . 2006-03-02 12:00 22528 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-26 10:41 . 2006-03-02 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-09 09:12 . 2006-03-02 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-09-06 14:10 . 2006-03-02 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-08-22 23:41 . 2006-03-02 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-08-22 23:41 . 2006-03-02 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-08-22 23:41 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2006-03-02 12:00 385024 ----a-w- c:\windows\system32\html.iec
2011-08-17 13:49 . 2006-03-02 12:00 138496 ----a-w- c:\windows\system32\drivers\afd.sys
2011-09-29 07:07 . 2011-11-07 13:52 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{1EA00BE1-6E54-4E2A-8099-680300BF23E1}"= "c:\program files\Seznam.cz\toolbar\toolbar.dll" [2010-10-07 187672]
.
[HKEY_CLASSES_ROOT\clsid\{1ea00be1-6e54-4e2a-8099-680300bf23e1}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SW20"="c:\windows\system32\sw20.exe" [2005-06-29 212992]
"SW24"="c:\windows\system32\sw24.exe" [2005-07-04 69632]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe" [2011-04-24 202296]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 1821576]
"NVMixerTray"="c:\program files\NVIDIA Corporation\NvMixer\NVMixerTray.exe" [2004-12-20 131072]
"SoundMan"="SOUNDMAN.EXE" [2007-04-16 577536]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-01-16 13680640]
"NvMediaCenter"="NvMCTray.dll" [2009-01-16 86016]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2011-10-08 1632360]
"LogitechQuickCamRibbon"="c:\program files\Logitech\Logitech WebCam Software\LWS.exe" [2009-10-14 2793304]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Google Update"="c:\documents and settings\Jirka\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" /MINIMIZED
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SoundMan"=SOUNDMAN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"=
.
R1 kl2;kl2;c:\windows\system32\drivers\kl2.sys [4.3.2011 13:23 11352]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [7.11.2011 12:06 2253120]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [2.11.2011 20:29 1479488]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [10.3.2011 18:34 34608]
R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2.11.2009 20:27 19472]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [20.10.2011 11:48 10064]
R4 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [9.11.2011 7:55 41272]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\g:\ntglm7x.sys --> g:\NTGLM7X.sys [?]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMSWISSARMY
*NewlyCreated* - NVSVC
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: {{0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - c:\program files\Seznam.cz\listicka.dll
TCP: DhcpNameServer = 192.168.1.254 192.168.2.254
TCP: Interfaces\{61DE08D6-734E-47B4-BC54-58B9AF22BAB8}: NameServer = 82.202.74.3,82.202.74.4
FF - ProfilePath - c:\documents and settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\6v4jnou9.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: network.proxy.type - 0
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-09 08:20
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2011-11-09 08:23:09
ComboFix-quarantined-files.txt 2011-11-09 07:23
.
Před spuštěním: Volných bajtů: 151 307 026 432
Po spuštění: Volných bajtů: 151 350 173 696
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - E5541DC6C2DBF480D342FEA61D28A83F
Drive F: | 7,81 Mb Total Space | 5,22 Mb Free Space | 66,83% Space Free | Partition Type: NTFS
Drive G: | 302,04 Gb Total Space | 70,77 Gb Free Space | 23,43% Space Free | Partition Type: NTFS
Computer Name: BLUEJEANSJIRKA | User Name: Jirka | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011.11.09 08:45:38 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jirka\Dokumenty\Stažené soubory\OTL.exe
PRC - [2011.11.09 07:14:38 | 000,060,416 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCFDRTM.EXE
PRC - [2011.10.08 05:50:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011.09.29 08:07:25 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011.04.24 23:15:02 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe
PRC - [2011.04.24 23:12:42 | 000,131,472 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtblfs.exe
PRC - [2009.10.14 13:36:56 | 002,793,304 | ---- | M] () -- C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
PRC - [2009.10.14 13:34:18 | 000,560,472 | ---- | M] () -- C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe
PRC - [2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
========== Modules (No Company Name) ==========
MOD - [2011.09.29 08:07:25 | 001,833,944 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011.04.24 23:13:30 | 007,008,656 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\qtgui4.dll
MOD - [2011.04.24 23:13:28 | 000,192,912 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\qtsql4.dll
MOD - [2011.04.24 23:13:26 | 001,270,160 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\qtscript4.dll
MOD - [2011.04.24 23:13:26 | 000,758,160 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\qtnetwork4.dll
MOD - [2011.04.24 23:13:24 | 002,118,032 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\qtcore4.dll
MOD - [2011.04.24 23:13:24 | 002,089,360 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\qtdeclarative4.dll
MOD - [2011.04.20 19:56:28 | 000,025,088 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\imageformats\qgif4.dll
MOD - [2009.10.14 13:36:56 | 002,793,304 | ---- | M] () -- C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
MOD - [2009.10.14 13:34:18 | 000,560,472 | ---- | M] () -- C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe
========== Win32 Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.11.02 20:29:20 | 001,479,488 | ---- | M] (TuneUp Software) [Auto | Stopped] -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2011.11.02 20:29:08 | 000,028,992 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2011.10.08 05:50:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011.04.24 23:15:02 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe -- (AVP)
SRV - [2009.10.07 01:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
========== Driver Services (SafeList) ==========
DRV - [2011.11.09 07:55:44 | 000,041,272 | ---- | M] (Malwarebytes Corporation) [Kernel | Disabled | Running] -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2011.11.08 19:39:50 | 000,565,552 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF)
DRV - [2011.11.08 19:26:33 | 000,231,376 | ---- | M] (TrueCrypt Foundation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\truecrypt.sys -- (truecrypt)
DRV - [2011.10.20 11:48:16 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2011.03.10 18:34:46 | 000,034,608 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5)
DRV - [2011.03.04 13:23:20 | 000,011,352 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\kl2.sys -- (kl2)
DRV - [2011.03.04 13:23:14 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\kl1.sys -- (KL1)
DRV - [2009.11.02 20:27:24 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2009.10.07 01:46:36 | 000,025,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2009.05.01 00:01:34 | 000,265,496 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lvrs.sys -- (LVRS)
DRV - [2009.04.30 23:55:56 | 002,687,512 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LV302V32.SYS -- (PID_PEPI) Logitech QuickCam IM(PID_PEPI)
DRV - [2009.04.30 23:55:32 | 000,013,976 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lv302af.sys -- (pepifilter)
DRV - [2008.11.12 16:58:38 | 000,145,952 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvgts.sys -- (nvgts)
DRV - [2008.09.24 10:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2006.07.01 22:42:58 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2005.08.18 16:52:06 | 000,093,568 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata)
DRV - [2005.04.13 11:34:02 | 000,414,464 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nvapu.sys -- (nvnforce) Service for NVIDIA(R) nForce(TM)
DRV - [2005.04.13 11:32:42 | 000,053,376 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nvax.sys -- (nvax) Service for NVIDIA(R) nForce(TM)
DRV - [2005.04.05 20:22:30 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2005.04.05 20:22:28 | 000,033,536 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKU\S-1-5-21-1177238915-682003330-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-1177238915-682003330-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..network.proxy.type: 0
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\virtualKeyboard@kaspersky.ru: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\virtualKeyboard@kaspersky.ru [2011.11.08 20:34:39 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\linkfilter@kaspersky.ru: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\linkfilter@kaspersky.ru [2011.11.08 20:34:39 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.11.07 14:52:50 | 000,000,000 | ---D | M]
[2011.11.07 14:53:06 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Extensions
[2011.11.09 02:15:33 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\6v4jnou9.default\extensions
[2011.11.08 20:34:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011.11.07 14:56:08 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
[2011.11.08 19:47:48 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak2
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\JIRKA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\6V4JNOU9.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
[2011.11.07 14:56:01 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011.11.08 20:34:39 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\PROGRAM FILES\KASPERSKY LAB\KASPERSKY ANTI-VIRUS 2012\FFEXT\LINKFILTER@KASPERSKY.RU
[2011.11.08 20:34:39 | 000,000,000 | ---D | M] (Kaspersky Virtual Keyboard) -- C:\PROGRAM FILES\KASPERSKY LAB\KASPERSKY ANTI-VIRUS 2012\FFEXT\VIRTUALKEYBOARD@KASPERSKY.RU
[2011.09.29 08:07:26 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.09.29 02:30:58 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2011.09.29 02:30:58 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.09.29 02:30:58 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2011.09.29 02:30:58 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.09.29 02:30:58 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Jirka\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.106\gcswf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U29 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Jirka\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.106\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Jirka\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.106\pdf.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Jirka\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
O1 HOSTS File: ([2011.11.09 08:20:29 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll (Kaspersky Lab ZAO)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll (Kaspersky Lab ZAO)
O2 - BHO: (Lištička) - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\listicka.dll ()
O3 - HKLM\..\Toolbar: (Nástroje Lištičky) - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - C:\Program Files\Seznam.cz\toolbar\toolbar.dll ()
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NVMixerTray] C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SW20] C:\WINDOWS\system32\sw20.exe ()
O4 - HKLM..\Run: [SW24] C:\WINDOWS\system32\sw24.exe ()
O4 - HKU\S-1-5-21-1177238915-682003330-839522115-1004..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 351
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1177238915-682003330-839522115-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1177238915-682003330-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1177238915-682003330-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1177238915-682003330-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-1177238915-682003330-839522115-1006\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1177238915-682003330-839522115-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra 'Tools' menuitem : Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra Button: &Virtual Keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll (Kaspersky Lab ZAO)
O9 - Extra Button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra 'Tools' menuitem : Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll (Kaspersky Lab ZAO)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 192.168.2.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{61DE08D6-734E-47B4-BC54-58B9AF22BAB8}: NameServer = 82.202.74.3,82.202.74.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7649334D-C777-4E1E-BD87-8EB70FBFD2CB}: DhcpNameServer = 192.168.1.254 192.168.2.254
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\klogon: DllName - (C:\WINDOWS\system32\klogon.dll) - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab ZAO)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.11.07 11:22:45 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011.11.09 08:29:43 | 000,000,000 | --SD | C] -- C:\ComboFix
[2011.11.09 08:20:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2011.11.09 08:14:14 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011.11.09 08:13:19 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011.11.09 08:13:19 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011.11.09 08:13:19 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011.11.09 08:13:19 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011.11.09 08:13:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Nabídka Start\Programy\Nástroje pro správu
[2011.11.09 08:13:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Filmy
[2011.11.09 08:11:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011.11.09 08:10:40 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011.11.09 07:55:44 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011.11.09 07:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Malwarebytes
[2011.11.09 07:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
[2011.11.09 07:55:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2011.11.09 07:55:20 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011.11.09 07:55:20 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011.11.09 07:41:43 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.11.09 07:41:43 | 000,000,000 | ---D | C] -- C:\rsit
[2011.11.09 07:31:19 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab
[2011.11.09 07:31:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\SystemRequirementsLab
[2011.11.09 07:30:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2011.11.09 07:19:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Jirka\Recent
[2011.11.09 07:15:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Logitech
[2011.11.09 07:14:38 | 000,060,416 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCFDRTM.EXE
[2011.11.09 07:14:37 | 000,060,416 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCFDRTM.VER
[2011.11.09 07:14:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang
[2011.11.09 07:03:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\NVIDIA
[2011.11.09 06:53:18 | 000,201,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\fdco1.dll
[2011.11.09 06:53:18 | 000,033,536 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\NVENETFD.sys
[2011.11.09 06:53:16 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvunrm.exe
[2011.11.09 06:53:15 | 000,261,888 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvnrm.sys
[2011.11.09 06:53:15 | 000,208,256 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvsnpu.sys
[2011.11.09 06:53:15 | 000,032,256 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvconrm.dll
[2011.11.09 06:53:15 | 000,012,928 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvnetbus.sys
[2011.11.09 06:53:15 | 000,009,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\bdco1.dll
[2011.11.09 06:53:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2011.11.09 06:45:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\nView_Profiles
[2011.11.09 06:39:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Dokumenty\Filmy
[2011.11.09 06:39:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Leadertech
[2011.11.09 06:38:40 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstee.sys
[2011.11.09 06:38:37 | 000,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndisip.sys
[2011.11.09 06:38:34 | 000,015,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\streamip.sys
[2011.11.09 06:38:31 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax
[2011.11.09 06:38:31 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsink.ax
[2011.11.09 06:38:28 | 000,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\slip.sys
[2011.11.09 06:38:25 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstcodec.sys
[2011.11.09 06:38:22 | 000,085,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nabtsfec.sys
[2011.11.09 06:38:19 | 000,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ccdecode.sys
[2011.11.09 06:38:10 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax
[2011.11.09 06:38:10 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kswdmcap.ax
[2011.11.09 06:38:10 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll
[2011.11.09 06:38:10 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vfwwdm32.dll
[2011.11.09 06:38:10 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax
[2011.11.09 06:38:10 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksxbar.ax
[2011.11.09 06:38:09 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax
[2011.11.09 06:38:09 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kstvtune.ax
[2011.11.09 06:38:06 | 002,687,512 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\LV302V32.SYS
[2011.11.09 06:38:06 | 000,539,160 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\LVUI2RC.dll
[2011.11.09 06:38:06 | 000,539,160 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\LVUI2.dll
[2011.11.09 06:38:06 | 000,416,280 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\LVCodec2.dll
[2011.11.09 06:37:51 | 000,265,496 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\lvrs.sys
[2011.11.09 06:37:51 | 000,199,192 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\lvci1201278.dll
[2011.11.09 06:37:51 | 000,013,976 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\lv302af.sys
[2011.11.09 06:36:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Logitech
[2011.11.09 06:36:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\LogiShrd
[2011.11.09 06:36:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\LogiShrd
[2011.11.09 06:36:47 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech
[2011.11.09 06:30:39 | 000,331,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshe.dll
[2011.11.09 06:30:39 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfr.dll
[2011.11.09 06:30:39 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrses.dll
[2011.11.09 06:30:39 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsel.dll
[2011.11.09 06:30:39 | 000,278,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsit.dll
[2011.11.09 06:30:39 | 000,278,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsde.dll
[2011.11.09 06:30:39 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsnl.dll
[2011.11.09 06:30:39 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsesm.dll
[2011.11.09 06:30:39 | 000,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspt.dll
[2011.11.09 06:30:39 | 000,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsja.dll
[2011.11.09 06:30:39 | 000,266,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsru.dll
[2011.11.09 06:30:39 | 000,266,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsptb.dll
[2011.11.09 06:30:39 | 000,262,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsko.dll
[2011.11.09 06:30:39 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssl.dll
[2011.11.09 06:30:39 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssk.dll
[2011.11.09 06:30:39 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshu.dll
[2011.11.09 06:30:39 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrstr.dll
[2011.11.09 06:30:39 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsth.dll
[2011.11.09 06:30:39 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssv.dll
[2011.11.09 06:30:39 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspl.dll
[2011.11.09 06:30:39 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsno.dll
[2011.11.09 06:30:39 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfi.dll
[2011.11.09 06:30:39 | 000,245,760 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrseng.dll
[2011.11.09 06:30:39 | 000,225,280 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszhc.dll
[2011.11.09 06:30:39 | 000,122,880 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszht.dll
[2011.11.09 06:30:38 | 000,331,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsar.dll
[2011.11.09 06:30:38 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsda.dll
[2011.11.09 06:30:38 | 000,245,760 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrscs.dll
[2011.11.09 06:30:38 | 000,143,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcolor.exe
[2011.11.09 06:30:37 | 013,680,640 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2011.11.09 06:30:37 | 000,086,016 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2011.11.09 06:30:33 | 000,602,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\easyupdatusapiu.dll
[2011.11.09 06:30:33 | 000,054,272 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2011.11.09 06:29:41 | 000,919,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco32.dll
[2011.11.09 06:29:41 | 000,877,376 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgenco32.dll
[2011.11.09 06:09:51 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek AC97
[2011.11.09 06:05:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\NVIDIA Shared
[2011.11.09 06:05:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\NVIDIA Corporation
[2011.11.09 06:04:40 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvuaudio.exe
[2011.11.09 06:04:29 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvuide.exe
[2011.11.09 06:03:51 | 000,101,632 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvtcp.sys
[2011.11.09 06:01:47 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2011.11.09 06:01:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Mouse
[2011.11.09 06:01:00 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsgXP_2k3.dll
[2011.11.09 06:00:46 | 001,461,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfcoinstaller01009.dll
[2011.11.09 06:00:20 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft IntelliPoint
[2011.11.09 05:59:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2011.11.09 05:58:59 | 000,000,000 | ---D | C] -- C:\Program Files\AMD
[2011.11.09 05:58:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\InstallShield
[2011.11.09 03:20:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Spybot - Search & Destroy
[2011.11.09 03:20:29 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2011.11.09 03:20:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
[2011.11.09 03:00:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Identities
[2011.11.09 02:38:47 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2011.11.09 02:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Plocha\Servis
[2011.11.09 01:29:40 | 000,028,992 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2011.11.09 00:54:01 | 000,031,552 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2011.11.09 00:52:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\TuneUp Utilities 2012
[2011.11.09 00:45:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\TuneUp Software
[2011.11.09 00:42:40 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2012
[2011.11.09 00:39:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2011.11.09 00:35:03 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Data aplikací\{32364CEA-7855-4A3C-B674-53D8E9B97936}
[2011.11.08 21:44:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\WinZip
[2011.11.08 21:30:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
[2011.11.08 21:30:18 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011.11.08 19:47:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Kaspersky Anti-Virus 2012
[2011.11.08 19:41:17 | 000,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab
[2011.11.08 19:41:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab
[2011.11.08 19:39:50 | 000,565,552 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys
[2011.11.08 19:29:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\TrueCrypt
[2011.11.08 19:26:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\TrueCrypt
[2011.11.08 19:26:33 | 000,231,376 | ---- | C] (TrueCrypt Foundation) -- C:\WINDOWS\System32\drivers\truecrypt.sys
[2011.11.08 19:26:31 | 000,000,000 | ---D | C] -- C:\Program Files\TrueCrypt
[2011.11.08 19:22:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Dokumenty\Downloads
[2011.11.08 19:19:48 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2011.11.08 19:18:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Local Settings\Data aplikací\uTorrent
[2011.11.08 19:18:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\uTorrent
[2011.11.08 18:44:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Macromedia
[2011.11.08 18:44:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Adobe
[2011.11.08 18:44:16 | 000,414,368 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011.11.08 14:40:39 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll
[2011.11.08 14:40:21 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll
[2011.11.08 14:39:35 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys
[2011.11.08 14:39:08 | 000,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys
[2011.11.08 14:38:32 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys
[2011.11.08 14:36:41 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys
[2011.11.08 14:36:38 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2011.11.07 21:56:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Dokumenty\SuperOvladac
[2011.11.07 21:51:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Super Ovladac
[2011.11.07 21:51:08 | 000,000,000 | ---D | C] -- C:\Program Files\Driver-Soft
[2011.11.07 21:46:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Nabídka Start\Programy\Google Chrome
[2011.11.07 21:44:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google
[2011.11.07 15:12:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Dokumenty\.minecraft
[2011.11.07 14:59:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\.minecraft
[2011.11.07 14:58:57 | 000,695,296 | ---- | C] (AnjoCaido) -- C:\Documents and Settings\Jirka\Plocha\MinecraftSP.exe
[2011.11.07 14:56:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Sun
[2011.11.07 14:56:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011.11.07 14:56:07 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2011.11.07 14:56:07 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011.11.07 14:56:07 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011.11.07 14:56:07 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011.11.07 14:56:07 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2011.11.07 14:55:57 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011.11.07 14:55:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Sun
[2011.11.07 14:54:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Dokumenty\Stažené soubory
[2011.11.07 14:52:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Mozilla
[2011.11.07 14:52:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla
[2011.11.07 14:52:49 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011.11.07 14:47:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2011.11.07 14:39:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2011.11.07 14:39:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cs
[2011.11.07 14:39:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2011.11.07 14:38:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2011.11.07 14:37:11 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2011.11.07 14:37:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome
[2011.11.07 14:26:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Jirka\IECompatCache
[2011.11.07 14:26:07 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Jirka\PrivacIE
[2011.11.07 14:18:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2011.11.07 14:15:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Dokumenty\Obrázky
[2011.11.07 14:15:43 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Jirka\IETldCache
[2011.11.07 14:09:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2011.11.07 14:09:45 | 000,000,000 | ---D | C] -- C:\Program Files\Seznam.cz
[2011.11.07 14:09:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2011.11.07 14:09:27 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2011.11.07 14:09:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cs-CZ
[2011.11.07 14:08:42 | 000,602,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2011.11.07 14:08:42 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2011.11.07 14:08:40 | 002,000,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2011.11.07 14:08:40 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2011.11.07 14:08:38 | 011,081,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2011.11.07 14:05:24 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2011.11.07 14:05:24 | 000,022,271 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2011.11.07 14:05:24 | 000,011,935 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2011.11.07 14:05:24 | 000,011,871 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2011.11.07 14:05:24 | 000,011,807 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2011.11.07 14:05:24 | 000,011,295 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2011.11.07 14:05:21 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2011.11.07 14:05:21 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2011.11.07 14:05:21 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2011.11.07 14:05:21 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys
[2011.11.07 14:05:21 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2011.11.07 14:05:21 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys
[2011.11.07 14:05:21 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2011.11.07 14:05:20 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2011.11.07 14:05:20 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2011.11.07 14:05:20 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2011.11.07 14:04:58 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys
[2011.11.07 14:04:58 | 000,326,912 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys
[2011.11.07 14:04:58 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys
[2011.11.07 14:04:58 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys
[2011.11.07 14:04:58 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys
[2011.11.07 14:04:58 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys
[2011.11.07 14:04:58 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys
[2011.11.07 14:04:58 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys
[2011.11.07 14:04:58 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys
[2011.11.07 14:04:58 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys
[2011.11.07 14:04:58 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys
[2011.11.07 14:04:58 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys
[2011.11.07 14:04:58 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys
[2011.11.07 14:04:58 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys
[2011.11.07 14:04:58 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys
[2011.11.07 14:04:58 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys
[2011.11.07 14:04:58 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys
[2011.11.07 14:04:58 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys
[2011.11.07 14:04:58 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys
[2011.11.07 14:04:58 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys
[2011.11.07 14:04:58 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys
[2011.11.07 14:04:58 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys
[2011.11.07 13:53:13 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2011.11.07 13:53:07 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys
[2011.11.07 13:52:54 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2011.11.07 13:52:48 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll
[2011.11.07 13:52:48 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll
[2011.11.07 13:52:07 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2011.11.07 13:52:01 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2011.11.07 13:51:48 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2011.11.07 13:51:10 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2011.11.07 13:51:08 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2011.11.07 13:49:57 | 002,194,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2011.11.07 13:49:56 | 002,150,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2011.11.07 13:49:56 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll
[2011.11.07 13:49:54 | 002,029,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2011.11.07 13:43:29 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
[2011.11.07 13:43:13 | 000,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2011.11.07 13:43:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2011.11.07 13:33:29 | 000,289,792 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\idecoi.dll
[2011.11.07 13:33:29 | 000,093,568 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvata.sys
[2011.11.07 13:31:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2011.11.07 13:30:23 | 000,201,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\fdco1ins.dll
[2011.11.07 13:30:21 | 000,009,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\bdco1ins.dll
[2011.11.07 13:30:20 | 000,600,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVUNINST.EXE
[2011.11.07 13:30:20 | 000,453,152 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvusmb.exe
[2011.11.07 13:29:40 | 000,043,008 | ---- | C] (Advanced Micro Devices) -- C:\WINDOWS\System32\drivers\AmdK8.sys
[2011.11.07 13:23:37 | 004,122,368 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\alcxwdm.sys
[2011.11.07 13:23:36 | 000,577,536 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe
[2011.11.07 13:23:33 | 010,528,768 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTLCPL.exe
[2011.11.07 13:23:23 | 018,804,736 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\alsndmgr.cpl
[2011.11.07 13:23:22 | 000,315,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\alcupd.exe
[2011.11.07 13:23:22 | 000,217,088 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\Alcrmv.exe
[2011.11.07 13:23:21 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2011.11.07 12:10:59 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys
[2011.11.07 12:10:59 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys
[2011.11.07 12:10:59 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2011.11.07 12:10:59 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax
[2011.11.07 12:10:59 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2011.11.07 12:10:59 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys
[2011.11.07 12:10:59 | 000,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys
[2011.11.07 12:10:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2011.11.07 12:10:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll
[2011.11.07 12:10:08 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\enum1394.sys
[2011.11.07 12:09:24 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll
[2011.11.07 12:08:20 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2011.11.07 12:08:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2011.11.07 12:08:19 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll
[2011.11.07 12:08:19 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll
[2011.11.07 12:08:18 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll
[2011.11.07 12:08:17 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe
[2011.11.07 12:08:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2011.11.07 12:08:16 | 000,000,000 | R--D | C] -- C:\Program Files
[2011.11.07 12:08:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2011.11.07 12:08:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2011.11.07 12:08:14 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll
[2011.11.07 12:08:14 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll
[2011.11.07 12:08:14 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll
[2011.11.07 12:08:14 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll
[2011.11.07 12:08:14 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll
[2011.11.07 12:08:14 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll
[2011.11.07 12:08:10 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll
[2011.11.07 12:08:10 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll
[2011.11.07 12:08:10 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll
[2011.11.07 12:08:10 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll
[2011.11.07 12:08:10 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll
[2011.11.07 12:08:10 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll
[2011.11.07 12:08:10 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll
[2011.11.07 12:08:10 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll
[2011.11.07 12:08:10 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll
[2011.11.07 12:08:10 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll
[2011.11.07 12:08:10 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll
[2011.11.07 12:08:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll
[2011.11.07 12:08:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll
[2011.11.07 12:08:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll
[2011.11.07 12:08:09 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll
[2011.11.07 12:08:09 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll
[2011.11.07 12:08:09 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll
[2011.11.07 12:08:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll
[2011.11.07 12:08:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll
[2011.11.07 12:08:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll
[2011.11.07 12:08:09 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll
[2011.11.07 12:08:09 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll
[2011.11.07 12:08:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll
[2011.11.07 12:08:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll
[2011.11.07 12:08:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll
[2011.11.07 12:08:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll
[2011.11.07 12:08:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll
[2011.11.07 12:08:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll
[2011.11.07 12:08:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll
[2011.11.07 12:08:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll
[2011.11.07 12:08:05 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll
[2011.11.07 12:08:05 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll
[2011.11.07 12:08:05 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll
[2011.11.07 12:08:05 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll
[2011.11.07 12:08:05 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2011.11.07 12:08:05 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2011.11.07 12:08:05 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2011.11.07 12:08:05 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2011.11.07 12:08:04 | 000,127,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL
[2011.11.07 12:08:04 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll
[2011.11.07 12:08:04 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll
[2011.11.07 12:08:04 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL
[2011.11.07 12:08:04 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL
[2011.11.07 12:08:04 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL
[2011.11.07 12:08:04 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV
[2011.11.07 12:08:04 | 000,009,291 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL
[2011.11.07 12:08:04 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL
[2011.11.07 12:08:04 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV
[2011.11.07 12:08:04 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV
[2011.11.07 12:08:04 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV
[2011.11.07 12:08:04 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV
[2011.11.07 12:08:03 | 000,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL
[2011.11.07 12:08:03 | 000,073,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV
[2011.11.07 12:08:03 | 000,070,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL
[2011.11.07 12:08:03 | 000,033,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL
[2011.11.07 12:08:03 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV
[2011.11.07 12:08:03 | 000,025,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV
[2011.11.07 12:08:03 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE
[2011.11.07 12:08:03 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe
[2011.11.07 12:08:03 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL
[2011.11.07 12:08:03 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV
[2011.11.07 12:08:03 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV
[2011.11.07 12:08:03 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK
[2011.11.07 12:08:02 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\winspool.drv
[2011.11.07 12:08:02 | 000,069,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL
[2011.11.07 12:08:02 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll
[2011.11.07 12:08:01 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll
[2011.11.07 12:07:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
[2011.11.07 12:07:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Nabídka Start
[2011.11.07 12:07:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty
[2011.11.07 12:07:54 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Šablony
[2011.11.07 12:07:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Plocha
[2011.11.07 12:07:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Oblíbené položky
[2011.11.07 12:07:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2011.11.07 12:07:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2011.11.07 12:07:38 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Data aplikací\Microsoft
[2011.11.07 12:07:38 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Data aplikací
[2011.11.07 12:07:17 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2011.11.07 12:07:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2011.11.07 12:06:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\NVIDIA Corporation
[2011.11.07 12:06:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\NVIDIA
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Jirka\Dokumenty\Stažené soubory
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 1,40 Gb Available Physical Memory | 70,24% Memory free
3,84 Gb Paging File | 3,35 Gb Available in Paging File | 87,10% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 153,38 Gb Total Space | 140,97 Gb Free Space | 91,91% Space Free | Partition Type: NTFS
Drive E: | 627,55 Gb Total Space | 601,76 Gb Free Space | 95,89% Space Free | Partition Type: NTFSComboFix 11-11-08.02 - Jirka 09.11.2011 8:15.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1322 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jirka\Dokumenty\Stažené soubory\ComboFix.exe
AV: Kaspersky Anti-Virus *Disabled/Updated* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\CF31928.exe
c:\windows\system32\TZLog.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-09 do 2011-11-09 )))))))))))))))))))))))))))))))
.
.
2011-11-09 06:41 . 2011-11-09 06:42 -------- d-----w- C:\rsit
2011-11-09 05:01 . 2011-11-09 05:28 -------- d-----w- C:\NVIDIA
2011-11-07 11:08 . 2011-11-09 06:55 -------- d-----r- C:\Program Files
2011-11-07 11:07 . 2011-11-07 11:06 -------- d-----w- C:\Documents and Settings
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-08 04:50 . 2005-06-15 09:20 4226688 ----a-w- c:\windows\system32\nv4_disp.dll
2011-10-08 04:50 . 2005-06-15 09:20 17956864 ----a-w- c:\windows\system32\nvoglnt.dll
2011-10-08 04:50 . 2005-06-15 09:20 12791488 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2011-09-26 10:41 . 2011-09-26 10:41 613376 ------w- c:\windows\system32\uiautomationcore.dll
2011-09-26 10:41 . 2006-03-02 12:00 22528 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-26 10:41 . 2006-03-02 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-09 09:12 . 2006-03-02 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-09-06 14:10 . 2006-03-02 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-08-22 23:41 . 2006-03-02 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-08-22 23:41 . 2006-03-02 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-08-22 23:41 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2006-03-02 12:00 385024 ----a-w- c:\windows\system32\html.iec
2011-08-17 13:49 . 2006-03-02 12:00 138496 ----a-w- c:\windows\system32\drivers\afd.sys
2011-09-29 07:07 . 2011-11-07 13:52 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{1EA00BE1-6E54-4E2A-8099-680300BF23E1}"= "c:\program files\Seznam.cz\toolbar\toolbar.dll" [2010-10-07 187672]
.
[HKEY_CLASSES_ROOT\clsid\{1ea00be1-6e54-4e2a-8099-680300bf23e1}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SW20"="c:\windows\system32\sw20.exe" [2005-06-29 212992]
"SW24"="c:\windows\system32\sw24.exe" [2005-07-04 69632]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe" [2011-04-24 202296]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 1821576]
"NVMixerTray"="c:\program files\NVIDIA Corporation\NvMixer\NVMixerTray.exe" [2004-12-20 131072]
"SoundMan"="SOUNDMAN.EXE" [2007-04-16 577536]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-01-16 13680640]
"NvMediaCenter"="NvMCTray.dll" [2009-01-16 86016]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2011-10-08 1632360]
"LogitechQuickCamRibbon"="c:\program files\Logitech\Logitech WebCam Software\LWS.exe" [2009-10-14 2793304]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Google Update"="c:\documents and settings\Jirka\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" /MINIMIZED
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SoundMan"=SOUNDMAN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"=
.
R1 kl2;kl2;c:\windows\system32\drivers\kl2.sys [4.3.2011 13:23 11352]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [7.11.2011 12:06 2253120]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [2.11.2011 20:29 1479488]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [10.3.2011 18:34 34608]
R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2.11.2009 20:27 19472]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [20.10.2011 11:48 10064]
R4 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [9.11.2011 7:55 41272]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\g:\ntglm7x.sys --> g:\NTGLM7X.sys [?]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMSWISSARMY
*NewlyCreated* - NVSVC
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: {{0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - c:\program files\Seznam.cz\listicka.dll
TCP: DhcpNameServer = 192.168.1.254 192.168.2.254
TCP: Interfaces\{61DE08D6-734E-47B4-BC54-58B9AF22BAB8}: NameServer = 82.202.74.3,82.202.74.4
FF - ProfilePath - c:\documents and settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\6v4jnou9.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: network.proxy.type - 0
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-09 08:20
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2011-11-09 08:23:09
ComboFix-quarantined-files.txt 2011-11-09 07:23
.
Před spuštěním: Volných bajtů: 151 307 026 432
Po spuštění: Volných bajtů: 151 350 173 696
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - E5541DC6C2DBF480D342FEA61D28A83F
Drive F: | 7,81 Mb Total Space | 5,22 Mb Free Space | 66,83% Space Free | Partition Type: NTFS
Drive G: | 302,04 Gb Total Space | 70,77 Gb Free Space | 23,43% Space Free | Partition Type: NTFS
Computer Name: BLUEJEANSJIRKA | User Name: Jirka | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011.11.09 08:45:38 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jirka\Dokumenty\Stažené soubory\OTL.exe
PRC - [2011.11.09 07:14:38 | 000,060,416 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCFDRTM.EXE
PRC - [2011.10.08 05:50:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011.09.29 08:07:25 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011.04.24 23:15:02 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe
PRC - [2011.04.24 23:12:42 | 000,131,472 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtblfs.exe
PRC - [2009.10.14 13:36:56 | 002,793,304 | ---- | M] () -- C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
PRC - [2009.10.14 13:34:18 | 000,560,472 | ---- | M] () -- C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe
PRC - [2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
========== Modules (No Company Name) ==========
MOD - [2011.09.29 08:07:25 | 001,833,944 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011.04.24 23:13:30 | 007,008,656 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\qtgui4.dll
MOD - [2011.04.24 23:13:28 | 000,192,912 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\qtsql4.dll
MOD - [2011.04.24 23:13:26 | 001,270,160 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\qtscript4.dll
MOD - [2011.04.24 23:13:26 | 000,758,160 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\qtnetwork4.dll
MOD - [2011.04.24 23:13:24 | 002,118,032 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\qtcore4.dll
MOD - [2011.04.24 23:13:24 | 002,089,360 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\qtdeclarative4.dll
MOD - [2011.04.20 19:56:28 | 000,025,088 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\imageformats\qgif4.dll
MOD - [2009.10.14 13:36:56 | 002,793,304 | ---- | M] () -- C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
MOD - [2009.10.14 13:34:18 | 000,560,472 | ---- | M] () -- C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe
========== Win32 Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.11.02 20:29:20 | 001,479,488 | ---- | M] (TuneUp Software) [Auto | Stopped] -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2011.11.02 20:29:08 | 000,028,992 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2011.10.08 05:50:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011.04.24 23:15:02 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe -- (AVP)
SRV - [2009.10.07 01:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
========== Driver Services (SafeList) ==========
DRV - [2011.11.09 07:55:44 | 000,041,272 | ---- | M] (Malwarebytes Corporation) [Kernel | Disabled | Running] -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2011.11.08 19:39:50 | 000,565,552 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF)
DRV - [2011.11.08 19:26:33 | 000,231,376 | ---- | M] (TrueCrypt Foundation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\truecrypt.sys -- (truecrypt)
DRV - [2011.10.20 11:48:16 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2011.03.10 18:34:46 | 000,034,608 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5)
DRV - [2011.03.04 13:23:20 | 000,011,352 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\kl2.sys -- (kl2)
DRV - [2011.03.04 13:23:14 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\kl1.sys -- (KL1)
DRV - [2009.11.02 20:27:24 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2009.10.07 01:46:36 | 000,025,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2009.05.01 00:01:34 | 000,265,496 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lvrs.sys -- (LVRS)
DRV - [2009.04.30 23:55:56 | 002,687,512 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LV302V32.SYS -- (PID_PEPI) Logitech QuickCam IM(PID_PEPI)
DRV - [2009.04.30 23:55:32 | 000,013,976 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lv302af.sys -- (pepifilter)
DRV - [2008.11.12 16:58:38 | 000,145,952 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvgts.sys -- (nvgts)
DRV - [2008.09.24 10:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2006.07.01 22:42:58 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2005.08.18 16:52:06 | 000,093,568 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata)
DRV - [2005.04.13 11:34:02 | 000,414,464 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nvapu.sys -- (nvnforce) Service for NVIDIA(R) nForce(TM)
DRV - [2005.04.13 11:32:42 | 000,053,376 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nvax.sys -- (nvax) Service for NVIDIA(R) nForce(TM)
DRV - [2005.04.05 20:22:30 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2005.04.05 20:22:28 | 000,033,536 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKU\S-1-5-21-1177238915-682003330-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-1177238915-682003330-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..network.proxy.type: 0
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\virtualKeyboard@kaspersky.ru: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\virtualKeyboard@kaspersky.ru [2011.11.08 20:34:39 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\linkfilter@kaspersky.ru: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\linkfilter@kaspersky.ru [2011.11.08 20:34:39 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.11.07 14:52:50 | 000,000,000 | ---D | M]
[2011.11.07 14:53:06 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Extensions
[2011.11.09 02:15:33 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\6v4jnou9.default\extensions
[2011.11.08 20:34:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011.11.07 14:56:08 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
[2011.11.08 19:47:48 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak2
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\JIRKA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\6V4JNOU9.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
[2011.11.07 14:56:01 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011.11.08 20:34:39 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\PROGRAM FILES\KASPERSKY LAB\KASPERSKY ANTI-VIRUS 2012\FFEXT\LINKFILTER@KASPERSKY.RU
[2011.11.08 20:34:39 | 000,000,000 | ---D | M] (Kaspersky Virtual Keyboard) -- C:\PROGRAM FILES\KASPERSKY LAB\KASPERSKY ANTI-VIRUS 2012\FFEXT\VIRTUALKEYBOARD@KASPERSKY.RU
[2011.09.29 08:07:26 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.09.29 02:30:58 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2011.09.29 02:30:58 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.09.29 02:30:58 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2011.09.29 02:30:58 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.09.29 02:30:58 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Jirka\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.106\gcswf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U29 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Jirka\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.106\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Jirka\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.106\pdf.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Jirka\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
O1 HOSTS File: ([2011.11.09 08:20:29 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll (Kaspersky Lab ZAO)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll (Kaspersky Lab ZAO)
O2 - BHO: (Lištička) - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\listicka.dll ()
O3 - HKLM\..\Toolbar: (Nástroje Lištičky) - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - C:\Program Files\Seznam.cz\toolbar\toolbar.dll ()
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NVMixerTray] C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SW20] C:\WINDOWS\system32\sw20.exe ()
O4 - HKLM..\Run: [SW24] C:\WINDOWS\system32\sw24.exe ()
O4 - HKU\S-1-5-21-1177238915-682003330-839522115-1004..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 351
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1177238915-682003330-839522115-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1177238915-682003330-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1177238915-682003330-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1177238915-682003330-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-1177238915-682003330-839522115-1006\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1177238915-682003330-839522115-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra 'Tools' menuitem : Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra Button: &Virtual Keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll (Kaspersky Lab ZAO)
O9 - Extra Button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra 'Tools' menuitem : Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll (Kaspersky Lab ZAO)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 192.168.2.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{61DE08D6-734E-47B4-BC54-58B9AF22BAB8}: NameServer = 82.202.74.3,82.202.74.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7649334D-C777-4E1E-BD87-8EB70FBFD2CB}: DhcpNameServer = 192.168.1.254 192.168.2.254
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\klogon: DllName - (C:\WINDOWS\system32\klogon.dll) - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab ZAO)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.11.07 11:22:45 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011.11.09 08:29:43 | 000,000,000 | --SD | C] -- C:\ComboFix
[2011.11.09 08:20:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2011.11.09 08:14:14 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011.11.09 08:13:19 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011.11.09 08:13:19 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011.11.09 08:13:19 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011.11.09 08:13:19 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011.11.09 08:13:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Nabídka Start\Programy\Nástroje pro správu
[2011.11.09 08:13:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Filmy
[2011.11.09 08:11:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011.11.09 08:10:40 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011.11.09 07:55:44 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011.11.09 07:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Malwarebytes
[2011.11.09 07:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
[2011.11.09 07:55:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2011.11.09 07:55:20 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011.11.09 07:55:20 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011.11.09 07:41:43 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.11.09 07:41:43 | 000,000,000 | ---D | C] -- C:\rsit
[2011.11.09 07:31:19 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab
[2011.11.09 07:31:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\SystemRequirementsLab
[2011.11.09 07:30:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2011.11.09 07:19:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Jirka\Recent
[2011.11.09 07:15:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Logitech
[2011.11.09 07:14:38 | 000,060,416 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCFDRTM.EXE
[2011.11.09 07:14:37 | 000,060,416 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCFDRTM.VER
[2011.11.09 07:14:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang
[2011.11.09 07:03:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\NVIDIA
[2011.11.09 06:53:18 | 000,201,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\fdco1.dll
[2011.11.09 06:53:18 | 000,033,536 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\NVENETFD.sys
[2011.11.09 06:53:16 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvunrm.exe
[2011.11.09 06:53:15 | 000,261,888 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvnrm.sys
[2011.11.09 06:53:15 | 000,208,256 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvsnpu.sys
[2011.11.09 06:53:15 | 000,032,256 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvconrm.dll
[2011.11.09 06:53:15 | 000,012,928 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvnetbus.sys
[2011.11.09 06:53:15 | 000,009,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\bdco1.dll
[2011.11.09 06:53:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2011.11.09 06:45:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\nView_Profiles
[2011.11.09 06:39:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Dokumenty\Filmy
[2011.11.09 06:39:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Leadertech
[2011.11.09 06:38:40 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstee.sys
[2011.11.09 06:38:37 | 000,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndisip.sys
[2011.11.09 06:38:34 | 000,015,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\streamip.sys
[2011.11.09 06:38:31 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax
[2011.11.09 06:38:31 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsink.ax
[2011.11.09 06:38:28 | 000,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\slip.sys
[2011.11.09 06:38:25 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstcodec.sys
[2011.11.09 06:38:22 | 000,085,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nabtsfec.sys
[2011.11.09 06:38:19 | 000,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ccdecode.sys
[2011.11.09 06:38:10 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax
[2011.11.09 06:38:10 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kswdmcap.ax
[2011.11.09 06:38:10 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll
[2011.11.09 06:38:10 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vfwwdm32.dll
[2011.11.09 06:38:10 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax
[2011.11.09 06:38:10 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksxbar.ax
[2011.11.09 06:38:09 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax
[2011.11.09 06:38:09 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kstvtune.ax
[2011.11.09 06:38:06 | 002,687,512 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\LV302V32.SYS
[2011.11.09 06:38:06 | 000,539,160 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\LVUI2RC.dll
[2011.11.09 06:38:06 | 000,539,160 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\LVUI2.dll
[2011.11.09 06:38:06 | 000,416,280 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\LVCodec2.dll
[2011.11.09 06:37:51 | 000,265,496 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\lvrs.sys
[2011.11.09 06:37:51 | 000,199,192 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\lvci1201278.dll
[2011.11.09 06:37:51 | 000,013,976 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\lv302af.sys
[2011.11.09 06:36:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Logitech
[2011.11.09 06:36:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\LogiShrd
[2011.11.09 06:36:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\LogiShrd
[2011.11.09 06:36:47 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech
[2011.11.09 06:30:39 | 000,331,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshe.dll
[2011.11.09 06:30:39 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfr.dll
[2011.11.09 06:30:39 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrses.dll
[2011.11.09 06:30:39 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsel.dll
[2011.11.09 06:30:39 | 000,278,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsit.dll
[2011.11.09 06:30:39 | 000,278,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsde.dll
[2011.11.09 06:30:39 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsnl.dll
[2011.11.09 06:30:39 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsesm.dll
[2011.11.09 06:30:39 | 000,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspt.dll
[2011.11.09 06:30:39 | 000,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsja.dll
[2011.11.09 06:30:39 | 000,266,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsru.dll
[2011.11.09 06:30:39 | 000,266,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsptb.dll
[2011.11.09 06:30:39 | 000,262,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsko.dll
[2011.11.09 06:30:39 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssl.dll
[2011.11.09 06:30:39 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssk.dll
[2011.11.09 06:30:39 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshu.dll
[2011.11.09 06:30:39 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrstr.dll
[2011.11.09 06:30:39 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsth.dll
[2011.11.09 06:30:39 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssv.dll
[2011.11.09 06:30:39 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspl.dll
[2011.11.09 06:30:39 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsno.dll
[2011.11.09 06:30:39 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfi.dll
[2011.11.09 06:30:39 | 000,245,760 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrseng.dll
[2011.11.09 06:30:39 | 000,225,280 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszhc.dll
[2011.11.09 06:30:39 | 000,122,880 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszht.dll
[2011.11.09 06:30:38 | 000,331,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsar.dll
[2011.11.09 06:30:38 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsda.dll
[2011.11.09 06:30:38 | 000,245,760 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrscs.dll
[2011.11.09 06:30:38 | 000,143,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcolor.exe
[2011.11.09 06:30:37 | 013,680,640 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2011.11.09 06:30:37 | 000,086,016 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2011.11.09 06:30:33 | 000,602,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\easyupdatusapiu.dll
[2011.11.09 06:30:33 | 000,054,272 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2011.11.09 06:29:41 | 000,919,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco32.dll
[2011.11.09 06:29:41 | 000,877,376 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgenco32.dll
[2011.11.09 06:09:51 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek AC97
[2011.11.09 06:05:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\NVIDIA Shared
[2011.11.09 06:05:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\NVIDIA Corporation
[2011.11.09 06:04:40 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvuaudio.exe
[2011.11.09 06:04:29 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvuide.exe
[2011.11.09 06:03:51 | 000,101,632 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvtcp.sys
[2011.11.09 06:01:47 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2011.11.09 06:01:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Mouse
[2011.11.09 06:01:00 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsgXP_2k3.dll
[2011.11.09 06:00:46 | 001,461,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfcoinstaller01009.dll
[2011.11.09 06:00:20 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft IntelliPoint
[2011.11.09 05:59:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2011.11.09 05:58:59 | 000,000,000 | ---D | C] -- C:\Program Files\AMD
[2011.11.09 05:58:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\InstallShield
[2011.11.09 03:20:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Spybot - Search & Destroy
[2011.11.09 03:20:29 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2011.11.09 03:20:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
[2011.11.09 03:00:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Identities
[2011.11.09 02:38:47 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2011.11.09 02:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Plocha\Servis
[2011.11.09 01:29:40 | 000,028,992 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2011.11.09 00:54:01 | 000,031,552 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2011.11.09 00:52:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\TuneUp Utilities 2012
[2011.11.09 00:45:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\TuneUp Software
[2011.11.09 00:42:40 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2012
[2011.11.09 00:39:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2011.11.09 00:35:03 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Data aplikací\{32364CEA-7855-4A3C-B674-53D8E9B97936}
[2011.11.08 21:44:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\WinZip
[2011.11.08 21:30:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
[2011.11.08 21:30:18 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011.11.08 19:47:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Kaspersky Anti-Virus 2012
[2011.11.08 19:41:17 | 000,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab
[2011.11.08 19:41:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab
[2011.11.08 19:39:50 | 000,565,552 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys
[2011.11.08 19:29:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\TrueCrypt
[2011.11.08 19:26:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\TrueCrypt
[2011.11.08 19:26:33 | 000,231,376 | ---- | C] (TrueCrypt Foundation) -- C:\WINDOWS\System32\drivers\truecrypt.sys
[2011.11.08 19:26:31 | 000,000,000 | ---D | C] -- C:\Program Files\TrueCrypt
[2011.11.08 19:22:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Dokumenty\Downloads
[2011.11.08 19:19:48 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2011.11.08 19:18:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Local Settings\Data aplikací\uTorrent
[2011.11.08 19:18:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\uTorrent
[2011.11.08 18:44:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Macromedia
[2011.11.08 18:44:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Adobe
[2011.11.08 18:44:16 | 000,414,368 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011.11.08 14:40:39 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll
[2011.11.08 14:40:21 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll
[2011.11.08 14:39:35 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys
[2011.11.08 14:39:08 | 000,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys
[2011.11.08 14:38:32 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys
[2011.11.08 14:36:41 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys
[2011.11.08 14:36:38 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2011.11.07 21:56:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Dokumenty\SuperOvladac
[2011.11.07 21:51:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Super Ovladac
[2011.11.07 21:51:08 | 000,000,000 | ---D | C] -- C:\Program Files\Driver-Soft
[2011.11.07 21:46:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Nabídka Start\Programy\Google Chrome
[2011.11.07 21:44:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google
[2011.11.07 15:12:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Dokumenty\.minecraft
[2011.11.07 14:59:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\.minecraft
[2011.11.07 14:58:57 | 000,695,296 | ---- | C] (AnjoCaido) -- C:\Documents and Settings\Jirka\Plocha\MinecraftSP.exe
[2011.11.07 14:56:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Sun
[2011.11.07 14:56:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011.11.07 14:56:07 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2011.11.07 14:56:07 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011.11.07 14:56:07 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011.11.07 14:56:07 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011.11.07 14:56:07 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2011.11.07 14:55:57 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011.11.07 14:55:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Sun
[2011.11.07 14:54:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Dokumenty\Stažené soubory
[2011.11.07 14:52:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Mozilla
[2011.11.07 14:52:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla
[2011.11.07 14:52:49 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011.11.07 14:47:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2011.11.07 14:39:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2011.11.07 14:39:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cs
[2011.11.07 14:39:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2011.11.07 14:38:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2011.11.07 14:37:11 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2011.11.07 14:37:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome
[2011.11.07 14:26:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Jirka\IECompatCache
[2011.11.07 14:26:07 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Jirka\PrivacIE
[2011.11.07 14:18:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2011.11.07 14:15:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Dokumenty\Obrázky
[2011.11.07 14:15:43 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Jirka\IETldCache
[2011.11.07 14:09:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2011.11.07 14:09:45 | 000,000,000 | ---D | C] -- C:\Program Files\Seznam.cz
[2011.11.07 14:09:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2011.11.07 14:09:27 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2011.11.07 14:09:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cs-CZ
[2011.11.07 14:08:42 | 000,602,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2011.11.07 14:08:42 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2011.11.07 14:08:40 | 002,000,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2011.11.07 14:08:40 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2011.11.07 14:08:38 | 011,081,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2011.11.07 14:05:24 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2011.11.07 14:05:24 | 000,022,271 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2011.11.07 14:05:24 | 000,011,935 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2011.11.07 14:05:24 | 000,011,871 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2011.11.07 14:05:24 | 000,011,807 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2011.11.07 14:05:24 | 000,011,295 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2011.11.07 14:05:21 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2011.11.07 14:05:21 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2011.11.07 14:05:21 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2011.11.07 14:05:21 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys
[2011.11.07 14:05:21 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2011.11.07 14:05:21 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys
[2011.11.07 14:05:21 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2011.11.07 14:05:20 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2011.11.07 14:05:20 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2011.11.07 14:05:20 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2011.11.07 14:04:58 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys
[2011.11.07 14:04:58 | 000,326,912 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys
[2011.11.07 14:04:58 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys
[2011.11.07 14:04:58 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys
[2011.11.07 14:04:58 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys
[2011.11.07 14:04:58 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys
[2011.11.07 14:04:58 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys
[2011.11.07 14:04:58 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys
[2011.11.07 14:04:58 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys
[2011.11.07 14:04:58 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys
[2011.11.07 14:04:58 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys
[2011.11.07 14:04:58 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys
[2011.11.07 14:04:58 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys
[2011.11.07 14:04:58 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys
[2011.11.07 14:04:58 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys
[2011.11.07 14:04:58 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys
[2011.11.07 14:04:58 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys
[2011.11.07 14:04:58 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys
[2011.11.07 14:04:58 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys
[2011.11.07 14:04:58 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys
[2011.11.07 14:04:58 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys
[2011.11.07 14:04:58 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys
[2011.11.07 13:53:13 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2011.11.07 13:53:07 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys
[2011.11.07 13:52:54 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2011.11.07 13:52:48 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll
[2011.11.07 13:52:48 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll
[2011.11.07 13:52:07 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2011.11.07 13:52:01 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2011.11.07 13:51:48 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2011.11.07 13:51:10 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2011.11.07 13:51:08 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2011.11.07 13:49:57 | 002,194,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2011.11.07 13:49:56 | 002,150,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2011.11.07 13:49:56 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll
[2011.11.07 13:49:54 | 002,029,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2011.11.07 13:43:29 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
[2011.11.07 13:43:13 | 000,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2011.11.07 13:43:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2011.11.07 13:33:29 | 000,289,792 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\idecoi.dll
[2011.11.07 13:33:29 | 000,093,568 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvata.sys
[2011.11.07 13:31:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2011.11.07 13:30:23 | 000,201,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\fdco1ins.dll
[2011.11.07 13:30:21 | 000,009,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\bdco1ins.dll
[2011.11.07 13:30:20 | 000,600,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVUNINST.EXE
[2011.11.07 13:30:20 | 000,453,152 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvusmb.exe
[2011.11.07 13:29:40 | 000,043,008 | ---- | C] (Advanced Micro Devices) -- C:\WINDOWS\System32\drivers\AmdK8.sys
[2011.11.07 13:23:37 | 004,122,368 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\alcxwdm.sys
[2011.11.07 13:23:36 | 000,577,536 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe
[2011.11.07 13:23:33 | 010,528,768 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTLCPL.exe
[2011.11.07 13:23:23 | 018,804,736 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\alsndmgr.cpl
[2011.11.07 13:23:22 | 000,315,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\alcupd.exe
[2011.11.07 13:23:22 | 000,217,088 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\Alcrmv.exe
[2011.11.07 13:23:21 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2011.11.07 12:10:59 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys
[2011.11.07 12:10:59 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys
[2011.11.07 12:10:59 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2011.11.07 12:10:59 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax
[2011.11.07 12:10:59 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2011.11.07 12:10:59 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys
[2011.11.07 12:10:59 | 000,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys
[2011.11.07 12:10:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2011.11.07 12:10:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll
[2011.11.07 12:10:08 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\enum1394.sys
[2011.11.07 12:09:24 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll
[2011.11.07 12:08:20 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2011.11.07 12:08:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2011.11.07 12:08:19 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll
[2011.11.07 12:08:19 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll
[2011.11.07 12:08:18 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll
[2011.11.07 12:08:17 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe
[2011.11.07 12:08:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2011.11.07 12:08:16 | 000,000,000 | R--D | C] -- C:\Program Files
[2011.11.07 12:08:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2011.11.07 12:08:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2011.11.07 12:08:14 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll
[2011.11.07 12:08:14 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll
[2011.11.07 12:08:14 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll
[2011.11.07 12:08:14 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll
[2011.11.07 12:08:14 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll
[2011.11.07 12:08:14 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll
[2011.11.07 12:08:10 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll
[2011.11.07 12:08:10 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll
[2011.11.07 12:08:10 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll
[2011.11.07 12:08:10 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll
[2011.11.07 12:08:10 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll
[2011.11.07 12:08:10 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll
[2011.11.07 12:08:10 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll
[2011.11.07 12:08:10 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll
[2011.11.07 12:08:10 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll
[2011.11.07 12:08:10 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll
[2011.11.07 12:08:10 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll
[2011.11.07 12:08:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll
[2011.11.07 12:08:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll
[2011.11.07 12:08:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll
[2011.11.07 12:08:09 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll
[2011.11.07 12:08:09 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll
[2011.11.07 12:08:09 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll
[2011.11.07 12:08:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll
[2011.11.07 12:08:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll
[2011.11.07 12:08:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll
[2011.11.07 12:08:09 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll
[2011.11.07 12:08:09 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll
[2011.11.07 12:08:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll
[2011.11.07 12:08:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll
[2011.11.07 12:08:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll
[2011.11.07 12:08:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll
[2011.11.07 12:08:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll
[2011.11.07 12:08:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll
[2011.11.07 12:08:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll
[2011.11.07 12:08:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll
[2011.11.07 12:08:05 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll
[2011.11.07 12:08:05 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll
[2011.11.07 12:08:05 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll
[2011.11.07 12:08:05 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll
[2011.11.07 12:08:05 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2011.11.07 12:08:05 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2011.11.07 12:08:05 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2011.11.07 12:08:05 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2011.11.07 12:08:04 | 000,127,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL
[2011.11.07 12:08:04 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll
[2011.11.07 12:08:04 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll
[2011.11.07 12:08:04 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL
[2011.11.07 12:08:04 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL
[2011.11.07 12:08:04 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL
[2011.11.07 12:08:04 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV
[2011.11.07 12:08:04 | 000,009,291 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL
[2011.11.07 12:08:04 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL
[2011.11.07 12:08:04 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV
[2011.11.07 12:08:04 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV
[2011.11.07 12:08:04 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV
[2011.11.07 12:08:04 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV
[2011.11.07 12:08:03 | 000,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL
[2011.11.07 12:08:03 | 000,073,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV
[2011.11.07 12:08:03 | 000,070,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL
[2011.11.07 12:08:03 | 000,033,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL
[2011.11.07 12:08:03 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV
[2011.11.07 12:08:03 | 000,025,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV
[2011.11.07 12:08:03 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE
[2011.11.07 12:08:03 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe
[2011.11.07 12:08:03 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL
[2011.11.07 12:08:03 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV
[2011.11.07 12:08:03 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV
[2011.11.07 12:08:03 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK
[2011.11.07 12:08:02 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\winspool.drv
[2011.11.07 12:08:02 | 000,069,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL
[2011.11.07 12:08:02 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll
[2011.11.07 12:08:01 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll
[2011.11.07 12:07:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
[2011.11.07 12:07:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Nabídka Start
[2011.11.07 12:07:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty
[2011.11.07 12:07:54 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Šablony
[2011.11.07 12:07:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Plocha
[2011.11.07 12:07:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Oblíbené položky
[2011.11.07 12:07:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2011.11.07 12:07:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2011.11.07 12:07:38 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Data aplikací\Microsoft
[2011.11.07 12:07:38 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Data aplikací
[2011.11.07 12:07:17 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2011.11.07 12:07:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2011.11.07 12:06:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\NVIDIA Corporation
[2011.11.07 12:06:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\NVIDIA
Re: mám modrou obrazovku smrti pomůže někdo?
[2011.11.07 12:06:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2011.11.07 12:06:03 | 017,240,064 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll
[2011.11.07 12:06:03 | 005,595,136 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll
[2011.11.07 12:06:03 | 002,449,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2011.11.07 12:06:03 | 002,398,016 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll
[2011.11.07 12:06:03 | 002,099,520 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll
[2011.11.07 12:06:03 | 000,899,688 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco3220150.dll
[2011.11.07 12:06:03 | 000,865,896 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgenco322090.dll
[2011.11.07 12:06:03 | 000,065,536 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2011.11.07 12:05:49 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2011.11.07 11:59:43 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2011.11.07 11:59:43 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2011.11.07 11:59:43 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2011.11.07 11:59:43 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1029
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2011.11.07 11:53:08 | 000,485,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvudisp.exe
[2011.11.07 11:53:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview
[2011.11.07 11:52:59 | 000,364,544 | R--- | C] (MSI) -- C:\WINDOWS\System32\msicpl.dll
[2011.11.07 11:52:59 | 000,114,688 | R--- | C] (Crystal Dew World) -- C:\WINDOWS\System32\sysinfo.dll
[2011.11.07 11:52:59 | 000,061,440 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgpio.dll
[2011.11.07 11:52:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2011.11.07 11:49:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Nabídka Start\Programy\XP Codec Pack 2.5.1
[2011.11.07 11:49:10 | 000,000,000 | ---D | C] -- C:\Program Files\XP Codec Pack
[2011.11.07 11:28:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Identities
[2011.11.07 11:28:03 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2011.11.07 11:28:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Dokumenty\Hudba
[2011.11.07 11:28:00 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Jirka\Data aplikací\Microsoft
[2011.11.07 11:28:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Jirka\Data aplikací
[2011.11.07 11:28:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Dokumenty
[2011.11.07 11:28:00 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Jirka\Cookies
[2011.11.07 11:28:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Jirka\Local Settings
[2011.11.07 11:28:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Microsoft
[2011.11.07 11:27:59 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Jirka\SendTo
[2011.11.07 11:27:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Nabídka Start\Programy\Příslušenství
[2011.11.07 11:27:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Nabídka Start\Programy\Po spuštění
[2011.11.07 11:27:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Oblíbené položky
[2011.11.07 11:27:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Nabídka Start
[2011.11.07 11:27:59 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Jirka\Šablony
[2011.11.07 11:27:59 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Jirka\Okolní tiskárny
[2011.11.07 11:27:59 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Jirka\Okolní síť
[2011.11.07 11:27:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Plocha
[2011.11.07 11:26:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2011.11.07 11:26:15 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2011.11.07 11:26:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Data aplikací\Microsoft
[2011.11.07 11:26:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Microsoft
[2011.11.07 11:25:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Microsoft
[2011.11.07 12:06:03 | 017,240,064 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll
[2011.11.07 12:06:03 | 005,595,136 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll
[2011.11.07 12:06:03 | 002,449,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2011.11.07 12:06:03 | 002,398,016 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll
[2011.11.07 12:06:03 | 002,099,520 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll
[2011.11.07 12:06:03 | 000,899,688 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco3220150.dll
[2011.11.07 12:06:03 | 000,865,896 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgenco322090.dll
[2011.11.07 12:06:03 | 000,065,536 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2011.11.07 12:05:49 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2011.11.07 11:59:43 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2011.11.07 11:59:43 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2011.11.07 11:59:43 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2011.11.07 11:59:43 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1029
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2011.11.07 11:53:08 | 000,485,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvudisp.exe
[2011.11.07 11:53:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview
[2011.11.07 11:52:59 | 000,364,544 | R--- | C] (MSI) -- C:\WINDOWS\System32\msicpl.dll
[2011.11.07 11:52:59 | 000,114,688 | R--- | C] (Crystal Dew World) -- C:\WINDOWS\System32\sysinfo.dll
[2011.11.07 11:52:59 | 000,061,440 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgpio.dll
[2011.11.07 11:52:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2011.11.07 11:49:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Nabídka Start\Programy\XP Codec Pack 2.5.1
[2011.11.07 11:49:10 | 000,000,000 | ---D | C] -- C:\Program Files\XP Codec Pack
[2011.11.07 11:28:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Identities
[2011.11.07 11:28:03 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2011.11.07 11:28:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Dokumenty\Hudba
[2011.11.07 11:28:00 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Jirka\Data aplikací\Microsoft
[2011.11.07 11:28:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Jirka\Data aplikací
[2011.11.07 11:28:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Dokumenty
[2011.11.07 11:28:00 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Jirka\Cookies
[2011.11.07 11:28:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Jirka\Local Settings
[2011.11.07 11:28:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Microsoft
[2011.11.07 11:27:59 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Jirka\SendTo
[2011.11.07 11:27:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Nabídka Start\Programy\Příslušenství
[2011.11.07 11:27:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Nabídka Start\Programy\Po spuštění
[2011.11.07 11:27:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Oblíbené položky
[2011.11.07 11:27:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Nabídka Start
[2011.11.07 11:27:59 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Jirka\Šablony
[2011.11.07 11:27:59 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Jirka\Okolní tiskárny
[2011.11.07 11:27:59 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Jirka\Okolní síť
[2011.11.07 11:27:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Plocha
[2011.11.07 11:26:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2011.11.07 11:26:15 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2011.11.07 11:26:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Data aplikací\Microsoft
[2011.11.07 11:26:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Microsoft
[2011.11.07 11:25:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Microsoft
Přispějete na provoz fóra?