VIRY.CZ

Kaspersky antivirus mi ohlásil že mi něco vypnulo firewall,napsalo to něco o bypass a taky že mám vypnuto zabezpečení.prý něco v registrech.Dal jsem scan v Kaspersky antivirus vymazal vše co se ukázalo,poté jsem zapnul Spybot and Destroy scenoval a našel několik trojanů tak jsem dal vymazat.Po restartu se mi objevuje jen modrá obrazovka smrti s hlášením.Windows se nespustí ale v nouzovém režimu jde.Pomůže mi někdo?
----------------------------------------------------------------------------------


21:36:26.0796 1920 TDSS rootkit removing tool 2.6.15.0 Nov 3 2011 17:15:49
21:36:26.0906 1920 ============================================================
21:36:26.0906 1920 Current date / time: 2011/11/05 21:36:26.0906
21:36:26.0906 1920 SystemInfo:
21:36:26.0906 1920
21:36:26.0906 1920 OS Version: 5.1.2600 ServicePack: 3.0
21:36:26.0906 1920 Product type: Workstation
21:36:26.0906 1920 ComputerName: PC
21:36:26.0906 1920 UserName: Jirka
21:36:26.0906 1920 Windows directory: C:\WINDOWS
21:36:26.0906 1920 System windows directory: C:\WINDOWS
21:36:26.0906 1920 Processor architecture: Intel x86
21:36:26.0906 1920 Number of processors: 1
21:36:26.0906 1920 Page size: 0x1000
21:36:26.0906 1920 Boot type: Safe boot with network
21:36:26.0906 1920 ============================================================
21:36:33.0656 1920 Initialize success
21:36:48.0578 0448 ============================================================
21:36:48.0578 0448 Scan started
21:36:48.0578 0448 Mode: Manual;
21:36:48.0578 0448 ============================================================
21:36:48.0796 0448 Abiosdsk - ok
21:36:48.0890 0448 abp480n5 - ok
21:36:48.0968 0448 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:36:48.0968 0448 ACPI - ok
21:36:49.0046 0448 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
21:36:49.0046 0448 ACPIEC - ok
21:36:49.0140 0448 adpu160m - ok
21:36:49.0203 0448 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:36:49.0218 0448 aec - ok
21:36:49.0296 0448 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
21:36:49.0296 0448 AFD - ok
21:36:49.0390 0448 Aha154x - ok
21:36:49.0453 0448 aic78u2 - ok
21:36:49.0500 0448 aic78xx - ok
21:36:49.0687 0448 ALCXWDM (dd8520280304b6145a6be31008748c7c) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
21:36:49.0718 0448 ALCXWDM - ok
21:36:49.0875 0448 AliIde - ok
21:36:49.0937 0448 AmdK8 (59301936898ae62245a6f09c0aba9475) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
21:36:49.0953 0448 AmdK8 - ok
21:36:50.0000 0448 amsint - ok
21:36:50.0078 0448 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:36:50.0093 0448 Arp1394 - ok
21:36:50.0125 0448 asc - ok
21:36:50.0203 0448 asc3350p - ok
21:36:50.0265 0448 asc3550 - ok
21:36:50.0437 0448 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:36:50.0437 0448 AsyncMac - ok
21:36:50.0515 0448 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:36:50.0515 0448 atapi - ok
21:36:50.0546 0448 Atdisk - ok
21:36:50.0609 0448 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:36:50.0625 0448 Atmarpc - ok
21:36:50.0750 0448 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:36:50.0750 0448 audstub - ok
21:36:50.0828 0448 AVerAF35 (01667d8b162470ed0b7b1ec73781a0ad) C:\WINDOWS\system32\Drivers\AVerAF35.sys
21:36:50.0828 0448 AVerAF35 - ok
21:36:50.0953 0448 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:36:50.0953 0448 Beep - ok
21:36:51.0093 0448 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:36:51.0093 0448 cbidf2k - ok
21:36:51.0187 0448 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:36:51.0187 0448 CCDECODE - ok
21:36:51.0265 0448 cd20xrnt - ok
21:36:51.0343 0448 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:36:51.0343 0448 Cdaudio - ok
21:36:51.0421 0448 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:36:51.0421 0448 Cdfs - ok
21:36:51.0484 0448 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:36:51.0500 0448 Cdrom - ok
21:36:51.0546 0448 Changer - ok
21:36:51.0703 0448 CmdIde - ok
21:36:51.0843 0448 Cpqarray - ok
21:36:51.0953 0448 ctac32k - ok
21:36:52.0000 0448 ctaud2k - ok
21:36:52.0046 0448 ctprxy2k - ok
21:36:52.0140 0448 dac2w2k - ok
21:36:52.0218 0448 dac960nt - ok
21:36:52.0328 0448 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:36:52.0328 0448 Disk - ok
21:36:52.0468 0448 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
21:36:52.0468 0448 dmboot - ok
21:36:52.0515 0448 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
21:36:52.0515 0448 dmio - ok
21:36:52.0609 0448 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:36:52.0609 0448 dmload - ok
21:36:52.0671 0448 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:36:52.0671 0448 DMusic - ok
21:36:52.0734 0448 dpti2o - ok
21:36:52.0796 0448 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:36:52.0796 0448 drmkaud - ok
21:36:52.0875 0448 emupia - ok
21:36:53.0000 0448 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:36:53.0000 0448 Fastfat - ok
21:36:53.0093 0448 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:36:53.0093 0448 Fdc - ok
21:36:53.0171 0448 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
21:36:53.0171 0448 Fips - ok
21:36:53.0250 0448 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:36:53.0250 0448 Flpydisk - ok
21:36:53.0343 0448 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:36:53.0343 0448 FltMgr - ok
21:36:53.0453 0448 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:36:53.0453 0448 Fs_Rec - ok
21:36:53.0578 0448 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:36:53.0578 0448 Ftdisk - ok
21:36:53.0625 0448 GMSIPCI - ok
21:36:53.0703 0448 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:36:53.0703 0448 Gpc - ok
21:36:53.0828 0448 ha10kx2k - ok
21:36:53.0906 0448 ha20x2k - ok
21:36:53.0968 0448 hap16v2k - ok
21:36:54.0046 0448 hap17v2k - ok
21:36:54.0171 0448 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:36:54.0171 0448 hidusb - ok
21:36:54.0250 0448 hpn - ok
21:36:54.0359 0448 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
21:36:54.0375 0448 HTTP - ok
21:36:54.0468 0448 i2omgmt - ok
21:36:54.0546 0448 i2omp - ok
21:36:54.0625 0448 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:36:54.0625 0448 i8042prt - ok
21:36:54.0687 0448 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:36:54.0687 0448 Imapi - ok
21:36:54.0781 0448 ini910u - ok
21:36:54.0859 0448 IntelIde - ok
21:36:54.0937 0448 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:36:54.0937 0448 Ip6Fw - ok
21:36:54.0984 0448 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:36:54.0984 0448 IpFilterDriver - ok
21:36:55.0031 0448 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:36:55.0031 0448 IpInIp - ok
21:36:55.0125 0448 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:36:55.0125 0448 IpNat - ok
21:36:55.0187 0448 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:36:55.0187 0448 IPSec - ok
21:36:55.0265 0448 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:36:55.0265 0448 IRENUM - ok
21:36:55.0359 0448 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:36:55.0359 0448 isapnp - ok
21:36:55.0437 0448 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:36:55.0437 0448 Kbdclass - ok
21:36:55.0484 0448 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:36:55.0484 0448 kbdhid - ok
21:36:55.0562 0448 Kl1 (186b54479d98e48aee0e9ada4b3c4d31) C:\WINDOWS\system32\DRIVERS\kl1.sys
21:36:55.0562 0448 Kl1 - ok
21:36:55.0656 0448 kl2 (bf485bfba13c0ab116701fd9c55324d0) C:\WINDOWS\system32\DRIVERS\kl2.sys
21:36:55.0656 0448 kl2 - ok
21:36:55.0843 0448 KLIF (5d92a03045a6a98708975b3d77b39a36) C:\WINDOWS\system32\DRIVERS\klif.sys
21:36:55.0843 0448 KLIF - ok
21:36:55.0890 0448 klim5 (96a7ec308a93da26dfe481308baac2a2) C:\WINDOWS\system32\DRIVERS\klim5.sys
21:36:55.0890 0448 klim5 - ok
21:36:55.0937 0448 klmouflt (3959530f69e19da56f1f24f2c89f1e2c) C:\WINDOWS\system32\DRIVERS\klmouflt.sys
21:36:55.0937 0448 klmouflt - ok
21:36:56.0015 0448 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:36:56.0015 0448 kmixer - ok
21:36:56.0093 0448 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
21:36:56.0093 0448 KSecDD - ok
21:36:56.0203 0448 lbrtfdc - ok
21:36:56.0375 0448 LVPr2Mon (1a7db7a00a4b0d8da24cd691a4547291) C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
21:36:56.0375 0448 LVPr2Mon - ok
21:36:56.0500 0448 LVRS (87ecce893d8aec5a9337b917742d339c) C:\WINDOWS\system32\DRIVERS\lvrs.sys
21:36:56.0500 0448 LVRS - ok
21:36:56.0562 0448 MBAMSwissArmy - ok
21:36:56.0687 0448 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:36:56.0687 0448 mnmdd - ok
21:36:56.0828 0448 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
21:36:56.0828 0448 Modem - ok
21:36:56.0890 0448 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:36:56.0890 0448 Mouclass - ok
21:36:56.0937 0448 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:36:56.0937 0448 mouhid - ok
21:36:57.0000 0448 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:36:57.0000 0448 MountMgr - ok
21:36:57.0125 0448 MPE (c0f8e0c2c3c0437cf37c6781896dc3ec) C:\WINDOWS\system32\DRIVERS\MPE.sys
21:36:57.0125 0448 MPE - ok
21:36:57.0187 0448 mraid35x - ok
21:36:57.0265 0448 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:36:57.0265 0448 MRxDAV - ok
21:36:57.0359 0448 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:36:57.0375 0448 MRxSmb - ok
21:36:57.0500 0448 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:36:57.0500 0448 Msfs - ok
21:36:57.0625 0448 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:36:57.0625 0448 MSKSSRV - ok
21:36:57.0703 0448 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:36:57.0703 0448 MSPCLOCK - ok
21:36:57.0765 0448 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:36:57.0765 0448 MSPQM - ok
21:36:57.0843 0448 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:36:57.0843 0448 mssmbios - ok
21:36:57.0906 0448 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
21:36:57.0906 0448 MSTEE - ok
21:36:57.0968 0448 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
21:36:57.0968 0448 Mup - ok
21:36:58.0031 0448 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:36:58.0031 0448 NABTSFEC - ok
21:36:58.0140 0448 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:36:58.0140 0448 NDIS - ok
21:36:58.0218 0448 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:36:58.0218 0448 NdisIP - ok
21:36:58.0312 0448 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:36:58.0312 0448 NdisTapi - ok
21:36:58.0343 0448 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:36:58.0343 0448 Ndisuio - ok
21:36:58.0437 0448 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:36:58.0437 0448 NdisWan - ok
21:36:58.0531 0448 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
21:36:58.0531 0448 NDProxy - ok
21:36:58.0609 0448 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:36:58.0609 0448 NetBIOS - ok
21:36:58.0671 0448 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:36:58.0671 0448 NetBT - ok
21:36:58.0875 0448 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:36:58.0875 0448 NIC1394 - ok
21:36:58.0968 0448 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:36:58.0968 0448 Npfs - ok
21:36:59.0015 0448 NTACCESS - ok
21:36:59.0109 0448 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:36:59.0109 0448 Ntfs - ok
21:36:59.0203 0448 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:36:59.0203 0448 Null - ok
21:36:59.0625 0448 nv (6733e80a193fc36f41c24142b0c45c0e) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
21:36:59.0734 0448 nv - ok
21:36:59.0875 0448 nvata (dce353985c988bfb7e84fd942068151f) C:\WINDOWS\system32\DRIVERS\nvata.sys
21:36:59.0875 0448 nvata - ok
21:36:59.0921 0448 NVENETFD (720cc533eecb65553bd86b139ca04433) C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
21:36:59.0921 0448 NVENETFD - ok
21:36:59.0968 0448 nvnetbus (5f9f545cc5904dd8765f84ee1d056406) C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
21:36:59.0968 0448 nvnetbus - ok
21:37:00.0078 0448 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:37:00.0078 0448 NwlnkFlt - ok
21:37:00.0140 0448 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:37:00.0140 0448 NwlnkFwd - ok
21:37:00.0250 0448 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:37:00.0250 0448 ohci1394 - ok
21:37:00.0343 0448 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\DRIVERS\parport.sys
21:37:00.0343 0448 Parport - ok
21:37:00.0375 0448 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:37:00.0375 0448 PartMgr - ok
21:37:00.0453 0448 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
21:37:00.0453 0448 ParVdm - ok
21:37:00.0546 0448 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
21:37:00.0546 0448 PCI - ok
21:37:00.0625 0448 PCIDump - ok
21:37:00.0703 0448 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:37:00.0703 0448 PCIIde - ok
21:37:00.0765 0448 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
21:37:00.0765 0448 Pcmcia - ok
21:37:00.0828 0448 PDCOMP - ok
21:37:00.0906 0448 PDFRAME - ok
21:37:00.0968 0448 PDRELI - ok
21:37:01.0031 0448 PDRFRAME - ok
21:37:01.0093 0448 pepifilter (b20f958b207e6aaac5f70d04dd2c30d8) C:\WINDOWS\system32\DRIVERS\lv302af.sys
21:37:01.0093 0448 pepifilter - ok
21:37:01.0140 0448 perc2 - ok
21:37:01.0203 0448 perc2hib - ok
21:37:01.0437 0448 PID_PEPI (dd184d9adfe2a8a21741dbdfe9e22f5c) C:\WINDOWS\system32\DRIVERS\LV302V32.SYS
21:37:01.0468 0448 PID_PEPI - ok
21:37:01.0640 0448 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:37:01.0640 0448 PptpMiniport - ok
21:37:01.0718 0448 Processor (7eb15dce4ec3a0220bd796a15c18186e) C:\WINDOWS\system32\DRIVERS\processr.sys
21:37:01.0718 0448 Processor - ok
21:37:01.0812 0448 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:37:01.0812 0448 PSched - ok
21:37:01.0859 0448 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:37:01.0859 0448 Ptilink - ok
21:37:01.0906 0448 ql1080 - ok
21:37:01.0953 0448 Ql10wnt - ok
21:37:02.0015 0448 ql12160 - ok
21:37:02.0093 0448 ql1240 - ok
21:37:02.0171 0448 ql1280 - ok
21:37:02.0234 0448 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:37:02.0234 0448 RasAcd - ok
21:37:02.0328 0448 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:37:02.0328 0448 Rasl2tp - ok
21:37:02.0421 0448 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:37:02.0421 0448 RasPppoe - ok
21:37:02.0500 0448 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:37:02.0515 0448 Raspti - ok
21:37:02.0609 0448 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:37:02.0609 0448 Rdbss - ok
21:37:02.0687 0448 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:37:02.0687 0448 RDPCDD - ok
21:37:02.0796 0448 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
21:37:02.0812 0448 RDPWD - ok
21:37:02.0875 0448 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:37:02.0875 0448 redbook - ok
21:37:03.0140 0448 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:37:03.0140 0448 Secdrv - ok
21:37:03.0281 0448 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:37:03.0281 0448 serenum - ok
21:37:03.0343 0448 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
21:37:03.0343 0448 Serial - ok
21:37:03.0453 0448 SetupNTGLM7X - ok
21:37:03.0515 0448 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:37:03.0515 0448 Sfloppy - ok
21:37:03.0609 0448 Simbad - ok
21:37:03.0671 0448 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:37:03.0671 0448 SLIP - ok
21:37:03.0750 0448 Sparrow - ok
21:37:03.0828 0448 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:37:03.0828 0448 splitter - ok
21:37:03.0968 0448 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
21:37:03.0968 0448 sr - ok
21:37:04.0093 0448 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
21:37:04.0093 0448 Srv - ok
21:37:04.0203 0448 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
21:37:04.0203 0448 streamip - ok
21:37:04.0250 0448 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
21:37:04.0250 0448 swenum - ok
21:37:04.0296 0448 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
21:37:04.0296 0448 swmidi - ok
21:37:04.0390 0448 symc810 - ok
21:37:04.0453 0448 symc8xx - ok
21:37:04.0500 0448 sym_hi - ok
21:37:04.0562 0448 sym_u3 - ok
21:37:04.0640 0448 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
21:37:04.0656 0448 sysaudio - ok
21:37:04.0828 0448 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:37:04.0828 0448 Tcpip - ok
21:37:04.0906 0448 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
21:37:04.0906 0448 TDPIPE - ok
21:37:04.0984 0448 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
21:37:04.0984 0448 TDTCP - ok
21:37:05.0062 0448 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
21:37:05.0062 0448 TermDD - ok
21:37:05.0187 0448 TosIde - ok
21:37:05.0281 0448 truecrypt (be45dad1c73a3216edc8c485916f6594) C:\WINDOWS\system32\drivers\truecrypt.sys
21:37:05.0281 0448 truecrypt - ok
21:37:05.0406 0448 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
21:37:05.0406 0448 Udfs - ok
21:37:05.0453 0448 ultra - ok
21:37:05.0531 0448 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
21:37:05.0531 0448 Update - ok
21:37:05.0671 0448 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
21:37:05.0671 0448 usbaudio - ok
21:37:05.0718 0448 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:37:05.0718 0448 usbccgp - ok
21:37:05.0812 0448 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:37:05.0812 0448 usbehci - ok
21:37:05.0890 0448 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:37:05.0890 0448 usbhub - ok
21:37:05.0937 0448 usbohci (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys
21:37:05.0937 0448 usbohci - ok
21:37:06.0031 0448 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:37:06.0031 0448 USBSTOR - ok
21:37:06.0171 0448 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
21:37:06.0171 0448 VgaSave - ok
21:37:06.0234 0448 ViaIde - ok
21:37:06.0312 0448 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
21:37:06.0312 0448 VolSnap - ok
21:37:06.0484 0448 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:37:06.0484 0448 Wanarp - ok
21:37:06.0546 0448 WDICA - ok
21:37:06.0625 0448 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
21:37:06.0625 0448 wdmaud - ok
21:37:07.0062 0448 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
21:37:07.0062 0448 WSTCODEC - ok
21:37:07.0203 0448 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:37:07.0203 0448 WudfPf - ok
21:37:07.0281 0448 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:37:07.0281 0448 WudfRd - ok
21:37:07.0531 0448 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
21:37:07.0609 0448 \Device\Harddisk0\DR0 - ok
21:37:07.0656 0448 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR2
21:37:07.0671 0448 \Device\Harddisk1\DR2 - ok
21:37:07.0687 0448 Boot (0x1200) (651c6f6afcf1590739f7589c6584ad05) \Device\Harddisk0\DR0\Partition0
21:37:07.0703 0448 \Device\Harddisk0\DR0\Partition0 - ok
21:37:07.0750 0448 Boot (0x1200) (47663bcaed31a861aefebb892838e039) \Device\Harddisk1\DR2\Partition0
21:37:07.0750 0448 \Device\Harddisk1\DR2\Partition0 - ok
21:37:07.0812 0448 Boot (0x1200) (d8f1fc1dd2769791d8e71fb215c97068) \Device\Harddisk1\DR2\Partition1
21:37:07.0812 0448 \Device\Harddisk1\DR2\Partition1 - ok
21:37:07.0859 0448 Boot (0x1200) (046a8779a29945fc35b3f64c3cd0b36e) \Device\Harddisk1\DR2\Partition2
21:37:07.0859 0448 \Device\Harddisk1\DR2\Partition2 - ok
21:37:07.0875 0448 ============================================================
21:37:07.0875 0448 Scan finished
21:37:07.0875 0448 ============================================================
21:37:07.0953 1400 Detected object count: 0
21:37:07.0953 1400 Actual detected object count: 0
21:37:58.0515 1608 ============================================================
21:37:58.0515 1608 Scan started
21:37:58.0515 1608 Mode: Manual; TDLFS;
21:37:58.0515 1608 ============================================================
21:37:58.0796 1608 Abiosdsk - ok
21:37:58.0875 1608 abp480n5 - ok
21:37:58.0968 1608 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:37:58.0968 1608 ACPI - ok
21:37:59.0078 1608 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
21:37:59.0078 1608 ACPIEC - ok
21:37:59.0125 1608 adpu160m - ok
21:37:59.0203 1608 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:37:59.0203 1608 aec - ok
21:37:59.0281 1608 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
21:37:59.0281 1608 AFD - ok
21:37:59.0359 1608 Aha154x - ok
21:37:59.0421 1608 aic78u2 - ok
21:37:59.0484 1608 aic78xx - ok
21:37:59.0671 1608 ALCXWDM (dd8520280304b6145a6be31008748c7c) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
21:37:59.0718 1608 ALCXWDM - ok
21:37:59.0875 1608 AliIde - ok
21:37:59.0906 1608 AmdK8 (59301936898ae62245a6f09c0aba9475) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
21:37:59.0906 1608 AmdK8 - ok
21:37:59.0953 1608 amsint - ok
21:38:00.0046 1608 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:38:00.0046 1608 Arp1394 - ok
21:38:00.0093 1608 asc - ok
21:38:00.0140 1608 asc3350p - ok
21:38:00.0218 1608 asc3550 - ok
21:38:00.0359 1608 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:38:00.0359 1608 AsyncMac - ok
21:38:00.0468 1608 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:38:00.0468 1608 atapi - ok
21:38:00.0546 1608 Atdisk - ok
21:38:00.0609 1608 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:38:00.0609 1608 Atmarpc - ok
21:38:00.0703 1608 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:38:00.0703 1608 audstub - ok
21:38:00.0765 1608 AVerAF35 (01667d8b162470ed0b7b1ec73781a0ad) C:\WINDOWS\system32\Drivers\AVerAF35.sys
21:38:00.0765 1608 AVerAF35 - ok
21:38:00.0937 1608 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:38:00.0937 1608 Beep - ok
21:38:01.0078 1608 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:38:01.0078 1608 cbidf2k - ok
21:38:01.0125 1608 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:38:01.0125 1608 CCDECODE - ok
21:38:01.0234 1608 cd20xrnt - ok
21:38:01.0296 1608 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:38:01.0296 1608 Cdaudio - ok
21:38:01.0375 1608 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:38:01.0375 1608 Cdfs - ok
21:38:01.0453 1608 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:38:01.0453 1608 Cdrom - ok
21:38:01.0484 1608 Changer - ok
21:38:01.0609 1608 CmdIde - ok
21:38:01.0718 1608 Cpqarray - ok
21:38:01.0828 1608 ctac32k - ok
21:38:01.0875 1608 ctaud2k - ok
21:38:01.0937 1608 ctprxy2k - ok
21:38:01.0984 1608 dac2w2k - ok
21:38:02.0046 1608 dac960nt - ok
21:38:02.0171 1608 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:38:02.0171 1608 Disk - ok
21:38:02.0281 1608 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
21:38:02.0281 1608 dmboot - ok
21:38:02.0343 1608 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
21:38:02.0359 1608 dmio - ok
21:38:02.0468 1608 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:38:02.0468 1608 dmload - ok
21:38:02.0562 1608 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:38:02.0562 1608 DMusic - ok
21:38:02.0671 1608 dpti2o - ok
21:38:02.0750 1608 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:38:02.0750 1608 drmkaud - ok
21:38:02.0812 1608 emupia - ok
21:38:02.0937 1608 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:38:02.0937 1608 Fastfat - ok
21:38:03.0031 1608 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:38:03.0031 1608 Fdc - ok
21:38:03.0093 1608 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
21:38:03.0093 1608 Fips - ok
21:38:03.0171 1608 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:38:03.0171 1608 Flpydisk - ok
21:38:03.0250 1608 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:38:03.0250 1608 FltMgr - ok
21:38:03.0375 1608 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:38:03.0375 1608 Fs_Rec - ok
21:38:03.0421 1608 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:38:03.0421 1608 Ftdisk - ok
21:38:03.0468 1608 GMSIPCI - ok
21:38:03.0531 1608 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:38:03.0531 1608 Gpc - ok
21:38:03.0656 1608 ha10kx2k - ok
21:38:03.0703 1608 ha20x2k - ok
21:38:03.0812 1608 hap16v2k - ok
21:38:03.0843 1608 hap17v2k - ok
21:38:03.0968 1608 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:38:03.0968 1608 hidusb - ok
21:38:04.0031 1608 hpn - ok
21:38:04.0109 1608 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
21:38:04.0109 1608 HTTP - ok
21:38:04.0171 1608 i2omgmt - ok
21:38:04.0218 1608 i2omp - ok
21:38:04.0281 1608 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:38:04.0281 1608 i8042prt - ok
21:38:04.0359 1608 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:38:04.0359 1608 Imapi - ok
21:38:04.0453 1608 ini910u - ok
21:38:04.0531 1608 IntelIde - ok
21:38:04.0625 1608 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:38:04.0625 1608 Ip6Fw - ok
21:38:04.0718 1608 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:38:04.0718 1608 IpFilterDriver - ok
21:38:04.0796 1608 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:38:04.0796 1608 IpInIp - ok
21:38:04.0890 1608 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:38:04.0890 1608 IpNat - ok
21:38:04.0921 1608 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:38:04.0921 1608 IPSec - ok
21:38:05.0015 1608 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:38:05.0015 1608 IRENUM - ok
21:38:05.0109 1608 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:38:05.0109 1608 isapnp - ok
21:38:05.0187 1608 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:38:05.0187 1608 Kbdclass - ok
21:38:05.0250 1608 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:38:05.0250 1608 kbdhid - ok
21:38:05.0296 1608 Kl1 (186b54479d98e48aee0e9ada4b3c4d31) C:\WINDOWS\system32\DRIVERS\kl1.sys
21:38:05.0296 1608 Kl1 - ok
21:38:05.0359 1608 kl2 (bf485bfba13c0ab116701fd9c55324d0) C:\WINDOWS\system32\DRIVERS\kl2.sys
21:38:05.0359 1608 kl2 - ok
21:38:05.0437 1608 KLIF (5d92a03045a6a98708975b3d77b39a36) C:\WINDOWS\system32\DRIVERS\klif.sys
21:38:05.0453 1608 KLIF - ok
21:38:05.0531 1608 klim5 (96a7ec308a93da26dfe481308baac2a2) C:\WINDOWS\system32\DRIVERS\klim5.sys
21:38:05.0531 1608 klim5 - ok
21:38:05.0578 1608 klmouflt (3959530f69e19da56f1f24f2c89f1e2c) C:\WINDOWS\system32\DRIVERS\klmouflt.sys
21:38:05.0578 1608 klmouflt - ok
21:38:05.0640 1608 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:38:05.0640 1608 kmixer - ok
21:38:05.0703 1608 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
21:38:05.0703 1608 KSecDD - ok
21:38:05.0828 1608 lbrtfdc - ok
21:38:06.0015 1608 LVPr2Mon (1a7db7a00a4b0d8da24cd691a4547291) C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
21:38:06.0015 1608 LVPr2Mon - ok
21:38:06.0125 1608 LVRS (87ecce893d8aec5a9337b917742d339c) C:\WINDOWS\system32\DRIVERS\lvrs.sys
21:38:06.0125 1608 LVRS - ok
21:38:06.0156 1608 MBAMSwissArmy - ok
21:38:06.0250 1608 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:38:06.0250 1608 mnmdd - ok
21:38:06.0343 1608 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
21:38:06.0343 1608 Modem - ok
21:38:06.0437 1608 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:38:06.0437 1608 Mouclass - ok
21:38:06.0515 1608 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:38:06.0515 1608 mouhid - ok
21:38:06.0609 1608 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:38:06.0609 1608 MountMgr - ok
21:38:06.0703 1608 MPE (c0f8e0c2c3c0437cf37c6781896dc3ec) C:\WINDOWS\system32\DRIVERS\MPE.sys
21:38:06.0703 1608 MPE - ok
21:38:06.0781 1608 mraid35x - ok
21:38:06.0828 1608 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:38:06.0828 1608 MRxDAV - ok
21:38:06.0890 1608 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:38:06.0890 1608 MRxSmb - ok
21:38:07.0000 1608 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:38:07.0000 1608 Msfs - ok
21:38:07.0093 1608 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:38:07.0093 1608 MSKSSRV - ok
21:38:07.0156 1608 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:38:07.0156 1608 MSPCLOCK - ok
21:38:07.0203 1608 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:38:07.0203 1608 MSPQM - ok
21:38:07.0312 1608 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:38:07.0312 1608 mssmbios - ok
21:38:07.0375 1608 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
21:38:07.0375 1608 MSTEE - ok
21:38:07.0484 1608 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
21:38:07.0484 1608 Mup - ok
21:38:07.0593 1608 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:38:07.0593 1608 NABTSFEC - ok
21:38:07.0703 1608 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:38:07.0703 1608 NDIS - ok
21:38:07.0828 1608 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:38:07.0828 1608 NdisIP - ok
21:38:07.0921 1608 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:38:07.0921 1608 NdisTapi - ok
21:38:08.0015 1608 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:38:08.0015 1608 Ndisuio - ok
21:38:08.0109 1608 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:38:08.0109 1608 NdisWan - ok
21:38:08.0187 1608 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
21:38:08.0203 1608 NDProxy - ok
21:38:08.0296 1608 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:38:08.0312 1608 NetBIOS - ok
21:38:08.0390 1608 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:38:08.0390 1608 NetBT - ok
21:38:08.0609 1608 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:38:08.0609 1608 NIC1394 - ok
21:38:08.0703 1608 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:38:08.0703 1608 Npfs - ok
21:38:08.0750 1608 NTACCESS - ok
21:38:08.0828 1608 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:38:08.0843 1608 Ntfs - ok
21:38:08.0984 1608 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:38:08.0984 1608 Null - ok
21:38:09.0406 1608 nv (6733e80a193fc36f41c24142b0c45c0e) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
21:38:09.0546 1608 nv - ok
21:38:09.0656 1608 nvata (dce353985c988bfb7e84fd942068151f) C:\WINDOWS\system32\DRIVERS\nvata.sys
21:38:09.0656 1608 nvata - ok
21:38:09.0750 1608 NVENETFD (720cc533eecb65553bd86b139ca04433) C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
21:38:09.0750 1608 NVENETFD - ok
21:38:09.0812 1608 nvnetbus (5f9f545cc5904dd8765f84ee1d056406) C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
21:38:09.0812 1608 nvnetbus - ok
21:38:09.0906 1608 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:38:09.0906 1608 NwlnkFlt - ok
21:38:10.0031 1608 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:38:10.0031 1608 NwlnkFwd - ok
21:38:10.0109 1608 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:38:10.0109 1608 ohci1394 - ok
21:38:10.0218 1608 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\DRIVERS\parport.sys
21:38:10.0234 1608 Parport - ok
21:38:10.0312 1608 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:38:10.0312 1608 PartMgr - ok
21:38:10.0390 1608 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
21:38:10.0390 1608 ParVdm - ok
21:38:10.0453 1608 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
21:38:10.0453 1608 PCI - ok
21:38:10.0531 1608 PCIDump - ok
21:38:10.0609 1608 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:38:10.0609 1608 PCIIde - ok
21:38:10.0703 1608 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
21:38:10.0703 1608 Pcmcia - ok
21:38:10.0796 1608 PDCOMP - ok
21:38:10.0859 1608 PDFRAME - ok
21:38:10.0921 1608 PDRELI - ok
21:38:11.0000 1608 PDRFRAME - ok
21:38:11.0093 1608 pepifilter (b20f958b207e6aaac5f70d04dd2c30d8) C:\WINDOWS\system32\DRIVERS\lv302af.sys
21:38:11.0093 1608 pepifilter - ok
21:38:11.0171 1608 perc2 - ok
21:38:11.0218 1608 perc2hib - ok
21:38:11.0484 1608 PID_PEPI (dd184d9adfe2a8a21741dbdfe9e22f5c) C:\WINDOWS\system32\DRIVERS\LV302V32.SYS
21:38:11.0515 1608 PID_PEPI - ok
21:38:11.0656 1608 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:38:11.0671 1608 PptpMiniport - ok
21:38:11.0750 1608 Processor (7eb15dce4ec3a0220bd796a15c18186e) C:\WINDOWS\system32\DRIVERS\processr.sys
21:38:11.0750 1608 Processor - ok
21:38:11.0859 1608 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:38:11.0859 1608 PSched - ok
21:38:11.0906 1608 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:38:11.0906 1608 Ptilink - ok
21:38:11.0953 1608 ql1080 - ok
21:38:12.0015 1608 Ql10wnt - ok
21:38:12.0062 1608 ql12160 - ok
21:38:12.0125 1608 ql1240 - ok
21:38:12.0203 1608 ql1280 - ok
21:38:12.0281 1608 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:38:12.0281 1608 RasAcd - ok
21:38:12.0359 1608 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:38:12.0359 1608 Rasl2tp - ok
21:38:12.0453 1608 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:38:12.0453 1608 RasPppoe - ok
21:38:12.0500 1608 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:38:12.0500 1608 Raspti - ok
21:38:12.0593 1608 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:38:12.0593 1608 Rdbss - ok
21:38:12.0671 1608 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:38:12.0671 1608 RDPCDD - ok
21:38:12.0812 1608 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
21:38:12.0812 1608 RDPWD - ok
21:38:12.0906 1608 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:38:12.0906 1608 redbook - ok
21:38:13.0171 1608 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:38:13.0171 1608 Secdrv - ok
21:38:13.0281 1608 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:38:13.0281 1608 serenum - ok
21:38:13.0359 1608 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
21:38:13.0359 1608 Serial - ok
21:38:13.0484 1608 SetupNTGLM7X - ok
21:38:13.0562 1608 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:38:13.0562 1608 Sfloppy - ok
21:38:13.0671 1608 Simbad - ok
21:38:13.0781 1608 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:38:13.0781 1608 SLIP - ok
21:38:13.0843 1608 Sparrow - ok
21:38:13.0906 1608 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:38:13.0906 1608 splitter - ok
21:38:14.0062 1608 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
21:38:14.0062 1608 sr - ok
21:38:14.0171 1608 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
21:38:14.0171 1608 Srv - ok
21:38:14.0281 1608 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
21:38:14.0281 1608 streamip - ok
21:38:14.0359 1608 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
21:38:14.0359 1608 swenum - ok
21:38:14.0453 1608 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
21:38:14.0453 1608 swmidi - ok
21:38:14.0609 1608 symc810 - ok
21:38:14.0671 1608 symc8xx - ok
21:38:14.0750 1608 sym_hi - ok
21:38:14.0796 1608 sym_u3 - ok
21:38:14.0875 1608 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
21:38:14.0875 1608 sysaudio - ok
21:38:15.0015 1608 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:38:15.0015 1608 Tcpip - ok
21:38:15.0125 1608 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
21:38:15.0125 1608 TDPIPE - ok
21:38:15.0187 1608 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
21:38:15.0203 1608 TDTCP - ok
21:38:15.0265 1608 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
21:38:15.0265 1608 TermDD - ok
21:38:15.0390 1608 TosIde - ok
21:38:15.0484 1608 truecrypt (be45dad1c73a3216edc8c485916f6594) C:\WINDOWS\system32\drivers\truecrypt.sys
21:38:15.0484 1608 truecrypt - ok
21:38:15.0625 1608 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
21:38:15.0625 1608 Udfs - ok
21:38:15.0687 1608 ultra - ok
21:38:15.0781 1608 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
21:38:15.0781 1608 Update - ok
21:38:15.0921 1608 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
21:38:15.0921 1608 usbaudio - ok
21:38:15.0984 1608 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:38:15.0984 1608 usbccgp - ok
21:38:16.0031 1608 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:38:16.0031 1608 usbehci - ok
21:38:16.0140 1608 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:38:16.0140 1608 usbhub - ok
21:38:16.0234 1608 usbohci (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys
21:38:16.0234 1608 usbohci - ok
21:38:16.0312 1608 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:38:16.0312 1608 USBSTOR - ok
21:38:16.0421 1608 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
21:38:16.0421 1608 VgaSave - ok
21:38:16.0500 1608 ViaIde - ok
21:38:16.0578 1608 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
21:38:16.0578 1608 VolSnap - ok
21:38:16.0718 1608 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:38:16.0718 1608 Wanarp - ok
21:38:16.0765 1608 WDICA - ok
21:38:16.0828 1608 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
21:38:16.0828 1608 wdmaud - ok
21:38:17.0187 1608 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
21:38:17.0187 1608 WSTCODEC - ok
21:38:17.0296 1608 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:38:17.0296 1608 WudfPf - ok
21:38:17.0406 1608 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:38:17.0406 1608 WudfRd - ok
21:38:17.0640 1608 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
21:38:17.0750 1608 \Device\Harddisk0\DR0 - ok
21:38:17.0796 1608 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR2
21:38:17.0890 1608 \Device\Harddisk1\DR2 - ok
21:38:17.0921 1608 Boot (0x1200) (651c6f6afcf1590739f7589c6584ad05) \Device\Harddisk0\DR0\Partition0
21:38:17.0921 1608 \Device\Harddisk0\DR0\Partition0 - ok
21:38:17.0968 1608 Boot (0x1200) (47663bcaed31a861aefebb892838e039) \Device\Harddisk1\DR2\Partition0
21:38:17.0984 1608 \Device\Harddisk1\DR2\Partition0 - ok
21:38:18.0031 1608 Boot (0x1200) (d8f1fc1dd2769791d8e71fb215c97068) \Device\Harddisk1\DR2\Partition1
21:38:18.0031 1608 \Device\Harddisk1\DR2\Partition1 - ok
21:38:18.0078 1608 Boot (0x1200) (046a8779a29945fc35b3f64c3cd0b36e) \Device\Harddisk1\DR2\Partition2
21:38:18.0078 1608 \Device\Harddisk1\DR2\Partition2 - ok
21:38:18.0109 1608 ============================================================
21:38:18.0109 1608 Scan finished
21:38:18.0109 1608 ============================================================
21:38:18.0218 0504 Detected object count: 0
21:38:18.0218 0504 Actual detected object count: 0

Log TDSS vypadá OK. Co je napsáno na té modré obrazovce?

no je toho tam víc skočí to tam na chvíli pak to restartuje a po restartu se zastaví na výběru spustit běžným způsobem poslední známá konfigurace nebo safe mod.na modré obrazovce je napsáno že je něco špatně s konfigurací hardwaru nebo tak něco.Jde to spustit jenom v safe modu tam to běží i s prací v síti.ukázalo to taky rootkit zeroaccess
v safe modu mi neskenuje kaspersky antivirus chce to pustit normálně ale to nejde pustit tak nevím jestli jsem vymazal něco v registrech.nejde mi ani zvuk jinak vše jen v safe modu.
-------------------------------------------------------------

ComboFix 11-11-05.03 - Jirka 06.11.2011 5:50.3.1 - x86 NETWORK
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1793 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jirka\Plocha\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\cleanup.exe
c:\windows\$NtUninstallKB48278$
c:\windows\$NtUninstallKB48278$\1011050649
c:\windows\$NtUninstallKB48278$\4197103939\@
c:\windows\$NtUninstallKB48278$\4197103939\L\gxooxymd
c:\windows\$NtUninstallKB48278$\4197103939\loader.tlb
c:\windows\$NtUninstallKB48278$\4197103939\U\@00000001
c:\windows\$NtUninstallKB48278$\4197103939\U\@000000c0
c:\windows\$NtUninstallKB48278$\4197103939\U\@000000cb
c:\windows\$NtUninstallKB48278$\4197103939\U\@000000cf
c:\windows\$NtUninstallKB48278$\4197103939\U\@80000000
c:\windows\$NtUninstallKB48278$\4197103939\U\@800000c0
c:\windows\$NtUninstallKB48278$\4197103939\U\@800000cb
c:\windows\$NtUninstallKB48278$\4197103939\U\@800000cf
c:\windows\{2521BB91-29B1-4d7e-9137-AC9875D77735}
c:\windows\system32\pthreadVC.dll
c:\windows\system32\Thumbs.db
C:\zip.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-06 do 2011-11-06 )))))))))))))))))))))))))))))))
.
.
2011-11-06 03:27 . 2011-11-06 03:27 709968 ----a-w- c:\windows\is-PB7FQ.exe
2011-11-06 03:25 . 2011-08-31 16:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-06 01:01 . 2011-11-06 01:01 574 ----a-w- C:\cleanup.bat
2011-11-05 18:18 . 2011-11-05 18:18 -------- d-----w- C:\MEDIA.COM
2011-11-05 18:03 . 2011-11-05 18:03 -------- d-----w- C:\urn_003.lnk
2011-10-26 19:00 . 2011-10-27 00:10 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\UseNeXT
2011-10-26 19:00 . 2011-10-26 23:35 -------- d-----w- c:\program files\UseNeXT
2011-10-26 14:05 . 2011-10-27 04:04 -------- d-----w- c:\documents and settings\Jirka\Local Settings\Data aplikací\sabnzbd
2011-10-26 14:04 . 2011-10-27 04:04 -------- d-----w- c:\program files\SABnzbd
2011-10-23 23:05 . 2011-10-23 23:40 97961 ----a-w- c:\windows\system32\drivers\klick.dat
2011-10-23 23:05 . 2011-10-23 23:40 115369 ----a-w- c:\windows\system32\drivers\klin.dat
2011-10-23 23:03 . 2011-11-06 01:09 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Kaspersky Lab
2011-10-23 23:03 . 2011-10-23 23:03 -------- d-----w- c:\program files\Kaspersky Lab
2011-10-22 02:56 . 2011-10-22 02:56 -------- d-----w- C:\Users
2011-10-21 00:10 . 2011-10-21 00:10 -------- d--h--w- c:\documents and settings\All Users\Data aplikací\Common Files
2011-10-21 00:10 . 2011-10-21 00:21 -------- d-----w- c:\documents and settings\All Users\Data aplikací\MFAData
2011-10-20 23:36 . 2011-10-20 23:36 -------- d-----w- c:\program files\AVerMedia
2011-10-20 23:25 . 2011-10-20 23:25 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\Logitech
2011-10-20 19:20 . 2011-10-20 19:20 -------- d-----w- c:\documents and settings\user
2011-10-20 19:07 . 2011-07-16 14:17 151552 ----a-w- c:\windows\system32\ac3acm.acm
2011-10-20 19:07 . 2011-06-24 14:28 650752 ----a-w- c:\windows\system32\xvidcore.dll
2011-10-20 19:07 . 2008-09-24 18:41 839680 ----a-w- c:\windows\system32\lameACM.acm
2011-10-20 19:07 . 2011-10-04 08:00 74752 ----a-w- c:\windows\system32\ff_vfw.dll
2011-10-20 19:07 . 2011-06-24 14:44 243200 ----a-w- c:\windows\system32\xvidvfw.dll
2011-10-20 18:46 . 2008-04-14 03:22 221184 ----a-w- c:\windows\system32\wmpns.dll
2011-10-20 16:37 . 2011-10-25 06:20 -------- d-----w- c:\program files\Software Informer
2011-10-20 13:35 . 2011-10-20 13:35 -------- d-----w- C:\Documents
2011-10-20 12:32 . 2009-10-20 17:25 102400 ------r- c:\windows\system32\CardID.dll
2011-10-20 12:32 . 2007-02-08 13:09 49152 ------r- c:\windows\system32\AVerIO.dll
2011-10-20 12:32 . 2005-04-28 19:08 3456 ------r- c:\windows\system32\AVerIO.sys
2011-10-20 12:31 . 2008-10-07 17:31 290816 ------r- c:\windows\system32\sptlib22.dll
2011-10-20 12:31 . 2011-10-20 23:37 -------- d-----w- c:\program files\Common Files\AVerMedia
2011-10-20 12:30 . 2011-10-20 12:30 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2011-10-20 12:23 . 2008-04-13 18:46 15232 -c--a-w- c:\windows\system32\dllcache\mpe.sys
2011-10-20 12:23 . 2008-04-13 18:46 15232 ----a-w- c:\windows\system32\drivers\MPE.sys
2011-10-20 12:22 . 2008-04-14 03:22 56832 ----a-w- c:\windows\system32\MSDvbNP.ax
2011-10-20 12:22 . 2008-04-14 03:22 33280 ----a-w- c:\windows\system32\PsisRndr.ax
2011-10-20 12:22 . 2008-04-14 03:21 363520 -c--a-w- c:\windows\system32\dllcache\psisdecd.dll
2011-10-20 12:22 . 2008-04-14 03:21 363520 ----a-w- c:\windows\system32\PsisDecd.dll
2011-10-20 12:22 . 2008-04-13 18:46 11776 -c--a-w- c:\windows\system32\dllcache\bdasup.sys
2011-10-20 12:22 . 2008-04-13 18:46 11776 ----a-w- c:\windows\system32\drivers\BdaSup.sys
2011-10-20 12:22 . 2008-04-14 03:22 18432 ----a-w- c:\windows\system32\BdaPlgIn.ax
2011-10-20 08:25 . 2011-10-20 08:25 -------- d-----w- c:\program files\Common Files\Java
2011-10-20 03:19 . 2011-10-20 03:19 -------- d-----w- c:\documents and settings\Administrator\Data aplikací\Malwarebytes
2011-10-20 00:13 . 2011-10-23 23:47 -------- d-sh--w- c:\documents and settings\Jirka\Local Settings\Data aplikací\fa2ab943
2011-10-17 08:44 . 2011-10-17 08:44 -------- d-----w- c:\windows\system32\XPSViewer
2011-10-17 08:44 . 2011-10-17 08:44 -------- d-----w- c:\program files\MSBuild
2011-10-17 08:44 . 2011-10-17 08:44 -------- d-----w- c:\program files\Reference Assemblies
2011-10-17 08:43 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2011-10-17 08:43 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2011-10-17 08:43 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2011-10-17 08:43 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2011-10-17 08:43 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2011-10-17 08:43 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2011-10-17 08:43 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2011-10-17 08:43 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2011-10-16 18:43 . 2011-10-16 18:43 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\HTML Executable
2011-10-14 06:18 . 2011-10-14 06:18 -------- d-----w- C:\rsit
2011-10-13 01:55 . 2011-10-13 01:55 68096 --sha-r- c:\windows\system32\ntmsapiy.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-21 21:12 . 2006-03-02 12:00 64256 ----a-w- c:\windows\system32\drivers\serial.sys
2011-10-20 08:24 . 2011-09-11 03:20 128000 ----a-w- c:\windows\system32\javacpl.cpl
2011-10-20 08:24 . 2011-08-26 12:20 544656 ----a-w- c:\windows\system32\deployJava1.dll
2011-10-13 21:04 . 2011-08-24 20:23 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-27 11:53 . 2011-09-04 00:46 31552 ----a-w- c:\windows\system32\TURegOpt.exe
2011-09-27 11:46 . 2011-09-04 00:46 29504 ----a-w- c:\windows\system32\uxtuneup.dll
2011-09-26 09:41 . 2011-09-26 09:41 613376 ------w- c:\windows\system32\uiautomationcore.dll
2011-09-26 09:41 . 2006-03-02 12:00 22528 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-26 09:41 . 2006-03-02 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-09 09:12 . 2006-03-02 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-09-06 14:10 . 2006-03-02 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-08-26 12:13 . 2011-08-26 12:13 0 ----a-w- c:\windows\system32\ConduitEngine.tmp
2011-08-24 22:12 . 2011-08-24 22:12 231248 ----a-w- c:\windows\system32\drivers\truecrypt.sys
2011-08-24 18:02 . 2011-08-24 17:26 60416 ----a-w- c:\windows\ALCFDRTM.VER
2011-08-24 17:26 . 2011-08-24 17:26 60416 ----a-w- c:\windows\ALCFDRTM.EXE
2011-08-22 23:41 . 2006-03-02 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-08-22 23:41 . 2006-03-02 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2011-08-22 23:41 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2006-03-02 12:00 385024 ------w- c:\windows\system32\html.iec
2011-08-17 13:49 . 2006-03-02 12:00 138496 ----a-w- c:\windows\system32\drivers\afd.sys
2011-10-06 09:12 . 2011-09-11 17:28 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-10-13 17351304]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SW20"="c:\windows\system32\sw20.exe" [2005-06-29 212992]
"SW24"="c:\windows\system32\sw24.exe" [2005-07-04 69632]
"LogitechQuickCamRibbon"="c:\program files\Logitech\Logitech WebCam Software\LWS.exe" [2009-10-14 2793304]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2011-08-03 13892200]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2011-08-03 111208]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-05-04 252136]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2011-08-31 1047208]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"SpybotSnD"="c:\program files\Spybot - Search & Destroy\SpybotSD.exe" [2009-01-26 5365592]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
"InnoSetupRegFile.0000000001"="c:\windows\is-PB7FQ.exe" [2011-11-06 709968]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Creative Detector"="c:\program files\Creative\MediaSource\Detector\CTDetect.exe" /R
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SoundMan"=SOUNDMAN.EXE
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\WINDOWS\\system32\\javaw.exe"=
"c:\\WINDOWS\\system32\\dwwin.exe"=
"c:\\Program Files\\Common Files\\Java\\Java Update\\jucheck.exe"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"c:\\Program Files\\Google\\Update\\GoogleUpdate.exe"=
"c:\\Program Files\\CCleaner\\CCleaner.exe"=
"c:\\Program Files\\Common Files\\Microsoft Shared\\DW\\DW20.EXE"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Java\\jdk1.7.0_01\\jre\\bin\\javaw.exe"=
"c:\\Program Files\\Adobe\\Reader 10.0\\Reader\\AcroRd32.exe"=
"c:\\Program Files\\Mozilla Firefox\\plugin-container.exe"=
"c:\\Program Files\\Google\\Picasa3\\PicasaUpdater.exe"=
"c:\\Documents and Settings\\All Users\\Data aplikací\\MFAData\\SelfUpd\\avgmfapx.exe"=
"c:\\Program Files\\Windows Media Player\\setup_wm.exe"=
"c:\\Program Files\\Windows Media Player\\wmplayer.exe"=
"c:\\Program Files\\Logitech\\Logitech WebCam Software\\LWS.exe"=
"c:\\Program Files\\TuneUp Utilities 2011\\TURatingSynch.exe"=
"c:\\Documents and Settings\\Jirka\\Dokumenty\\Stažené soubory\\tdsskiller.exe"=
.
R1 kl2;kl2;c:\windows\system32\drivers\kl2.sys [4.3.2011 12:23 11352]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [10.3.2011 17:34 34608]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [24.8.2011 21:23 136176]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [5.9.2011 1:19 2255464]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [27.9.2011 12:50 1526080]
S3 AVerAF35;AVerMedia A825 USB Dual DVB-T;c:\windows\system32\drivers\AVerAF35.sys [26.5.2009 0:58 485888]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [24.8.2011 21:23 136176]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2.11.2009 19:27 19472]
S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\d:\ntglm7x.sys --> d:\NTGLM7X.sys [?]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
2011-11-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-24 20:23]
.
2011-11-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-24 20:23]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://home.sweetim.com
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://home.sweetim.com
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.254 192.168.2.254
FF - ProfilePath - c:\documents and settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\ss9g23ma.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&q=
FF - prefs.js: network.proxy.type - 0
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-RunOnce-Cleanup - C:\cleanup.exe
SafeBoot-00893251.sys
SafeBoot-44652580.sys
SafeBoot-87044505.sys
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-06 06:00
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2011-11-06 06:03:50 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-11-06 05:03
.
Před spuštěním: Volných bajtů: 124 369 149 952
Po spuštění: Volných bajtů: 124 366 471 168
.
- - End Of File - - 19A2E5815CA0918125BCB88B2192D04B

Logfile of random's system information tool 1.09 (written by random/random)
Run by Jirka at 2011-11-06 06:12:52
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 119 GB (76%) free of 157 GB
Total RAM: 2047 MB (80% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 6:12:55, on 6.11.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Safe mode with network support

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtblfs.exe
C:\Documents and Settings\Jirka\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Jirka.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll
O3 - Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - (no file)
O4 - HKLM\..\Run: [SW20] C:\WINDOWS\system32\sw20.exe
O4 - HKLM\..\Run: [SW24] C:\WINDOWS\system32\sw24.exe
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\RunOnce: [SpybotSnD] "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autocheck
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKLM\..\RunOnce: [InnoSetupRegFile.0000000001] "C:\WINDOWS\is-PB7FQ.exe" /REG /REGSVRMODE
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: &Virtual Keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 6186566171
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Windows Service Pack Installer update service (spupdsvc) - Unknown owner - C:\WINDOWS\system32\spupdsvc.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe

--
End of file - 6233 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\ss9g23ma.default

prefs.js - "browser.startup.homepage" - "http://seznam.cz"
prefs.js - "keyword.URL" - "http://search.conduit.com/ResultsExt.as ... 2786678&q="

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"linkfilter@kaspersky.ru"=C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\linkfilter@kaspersky.ru
"virtualKeyboard@kaspersky.ru"=C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\virtualKeyboard@kaspersky.ru


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
quickstores@quickstores.de
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\ss9g23ma.default\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\ss9g23ma.default\searchplugins\
conduit.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll [2011-04-24 86416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2011-10-20 57224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll [2011-04-24 229776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SW20"=C:\WINDOWS\system32\sw20.exe [2005-06-29 212992]
"SW24"=C:\WINDOWS\system32\sw24.exe [2005-07-04 69632]
"LogitechQuickCamRibbon"=C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2009-10-14 2793304]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2011-08-03 13892200]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2011-08-03 111208]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-05-04 252136]
"Malwarebytes' Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2011-08-31 1047208]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SpybotSnD"=C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe [2009-01-26 5365592]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2011-08-31 449608]
"InnoSetupRegFile.0000000001"=C:\WINDOWS\is-PB7FQ.exe [2011-11-06 709968]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-10-13 17351304]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\WINDOWS\system32\klogon.dll [2011-04-24 229776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Disabled:Java(TM) Platform SE binary"
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\WINDOWS\system32\javaw.exe"="C:\WINDOWS\system32\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\WINDOWS\system32\dwwin.exe"="C:\WINDOWS\system32\dwwin.exe:*:Enabled:Microsoft Application Error Reporting"
"C:\Program Files\Common Files\Java\Java Update\jucheck.exe"="C:\Program Files\Common Files\Java\Java Update\jucheck.exe:*:Enabled:Java(TM) Update Checker"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:Windows® installer"
"C:\Program Files\Google\Update\GoogleUpdate.exe"="C:\Program Files\Google\Update\GoogleUpdate.exe:*:Enabled:Instalační program Google"
"C:\Program Files\CCleaner\CCleaner.exe"="C:\Program Files\CCleaner\CCleaner.exe:*:Enabled:CCleaner"
"C:\Program Files\Common Files\Microsoft Shared\DW\DW20.EXE"="C:\Program Files\Common Files\Microsoft Shared\DW\DW20.EXE:*:Enabled:Microsoft Application Error Reporting"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jdk1.7.0_01\jre\bin\javaw.exe"="C:\Program Files\Java\jdk1.7.0_01\jre\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe"="C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe:*:Enabled:Adobe Reader "
"C:\Program Files\Mozilla Firefox\plugin-container.exe"="C:\Program Files\Mozilla Firefox\plugin-container.exe:*:Enabled:Plugin Container for Firefox"
"C:\Program Files\Google\Picasa3\PicasaUpdater.exe"="C:\Program Files\Google\Picasa3\PicasaUpdater.exe:*:Enabled:Picasa"
"C:\Documents and Settings\All Users\Data aplikací\MFAData\SelfUpd\avgmfapx.exe"="C:\Documents and Settings\All Users\Data aplikací\MFAData\SelfUpd\avgmfapx.exe:*:Enabled:AVG Installer Application"
"C:\Program Files\Windows Media Player\setup_wm.exe"="C:\Program Files\Windows Media Player\setup_wm.exe:*:Enabled:Microsoft Windows Media Configuration Utility"
"C:\Program Files\Windows Media Player\wmplayer.exe"="C:\Program Files\Windows Media Player\wmplayer.exe:*:Enabled:Windows Media Player"
"C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe"="C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe:*:Enabled:Camera Software"
"C:\Program Files\TuneUp Utilities 2011\TURatingSynch.exe"="C:\Program Files\TuneUp Utilities 2011\TURatingSynch.exe:*:Enabled:TURatingSynch"
"C:\Documents and Settings\Jirka\Dokumenty\Stažené soubory\tdsskiller.exe"="C:\Documents and Settings\Jirka\Dokumenty\Stažené soubory\tdsskiller.exe:*:Disabled:TDSS rootkit removing tool"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll

======List of files/folders created in the last 1 month======

2011-11-06 06:03:52 ----D---- C:\WINDOWS\temp
2011-11-06 06:03:51 ----A---- C:\ComboFix.txt
2011-11-06 05:41:57 ----A---- C:\WINDOWS\zip.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\SWXCACLS.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\SWSC.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\SWREG.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\sed.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\PEV.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\NIRCMD.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\MBR.exe
2011-11-06 05:41:57 ----A---- C:\WINDOWS\grep.exe
2011-11-06 05:41:50 ----D---- C:\Qoobox
2011-11-06 05:41:50 ----A---- C:\WINDOWS\ntbtlog.txt
2011-11-06 04:27:09 ----A---- C:\WINDOWS\is-PB7FQ.exe
2011-11-06 04:25:32 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2011-11-06 02:06:50 ----A---- C:\TDSSKiller.2.6.15.0_06.11.2011_02.06.50_log.txt
2011-11-06 02:01:05 ----A---- C:\cleanup.bat
2011-11-05 21:36:26 ----A---- C:\TDSSKiller.2.6.15.0_05.11.2011_21.36.26_log.txt
2011-11-05 19:18:39 ----D---- C:\MEDIA.COM
2011-11-05 19:03:03 ----D---- C:\urn_003.lnk
2011-10-26 20:00:32 ----D---- C:\Documents and Settings\Jirka\Data aplikací\UseNeXT
2011-10-26 20:00:26 ----D---- C:\Program Files\UseNeXT
2011-10-26 15:04:53 ----D---- C:\Program Files\SABnzbd
2011-10-25 23:30:16 ----D---- C:\Documents and Settings\Jirka\Data aplikací\WinRAR
2011-10-25 23:28:38 ----D---- C:\Program Files\WinRAR
2011-10-25 06:41:59 ----A---- C:\TDSSKiller.2.6.12.0_25.10.2011_07.41.59_log.txt
2011-10-24 00:05:54 ----A---- C:\WINDOWS\system32\drivers\klin.dat
2011-10-24 00:05:54 ----A---- C:\WINDOWS\system32\drivers\klick.dat
2011-10-24 00:03:05 ----D---- C:\Program Files\Kaspersky Lab
2011-10-24 00:03:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab
2011-10-24 00:02:46 ----A---- C:\WINDOWS\system32\drivers\klif.sys
2011-10-23 23:59:41 ----A---- C:\TDSSKiller.2.6.12.0_24.10.2011_00.59.41_log.txt
2011-10-23 23:57:49 ----A---- C:\TDSSKiller.2.6.12.0_24.10.2011_00.57.49_log.txt
2011-10-23 23:57:17 ----A---- C:\TDSSKiller.2.6.12.0_24.10.2011_00.57.17_log.txt
2011-10-23 23:56:43 ----A---- C:\TDSSKiller.2.6.9.0_24.10.2011_00.56.43_log.txt
2011-10-22 03:56:20 ----D---- C:\Users
2011-10-22 03:56:20 ----A---- C:\recipes-spawner.txt
2011-10-22 03:56:20 ----A---- C:\items-nofire.txt
2011-10-21 22:05:22 ----A---- C:\TDSSKiller.2.6.12.0_21.10.2011_23.05.22_log.txt
2011-10-21 22:04:36 ----A---- C:\TDSSKiller.2.6.9.0_21.10.2011_23.04.36_log.txt
2011-10-21 05:30:04 ----A---- C:\TDSSKiller.2.6.9.0_21.10.2011_06.30.04_log.txt
2011-10-21 03:46:16 ----A---- C:\TDSSKiller.2.6.9.0_21.10.2011_04.46.16_log.txt
2011-10-21 01:10:37 ----HD---- C:\Documents and Settings\All Users\Data aplikací\Common Files
2011-10-21 01:10:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\MFAData
2011-10-21 00:36:54 ----D---- C:\Program Files\AVerMedia
2011-10-21 00:25:08 ----D---- C:\Documents and Settings\Jirka\Data aplikací\Logitech
2011-10-20 20:07:56 ----A---- C:\WINDOWS\system32\xvidcore.dll
2011-10-20 20:07:56 ----A---- C:\WINDOWS\avisplitter.ini
2011-10-20 20:07:55 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2011-10-20 20:07:55 ----A---- C:\WINDOWS\system32\ff_vfw.dll
2011-10-20 19:46:22 ----N---- C:\WINDOWS\system32\spmsg.dll
2011-10-20 19:46:16 ----A---- C:\WINDOWS\system32\wmpns.dll
2011-10-20 17:37:14 ----D---- C:\Program Files\Software Informer
2011-10-20 14:35:27 ----D---- C:\Documents
2011-10-20 13:32:04 ----R---- C:\WINDOWS\system32\CardID.dll
2011-10-20 13:32:04 ----R---- C:\WINDOWS\system32\AVerIO.sys
2011-10-20 13:32:04 ----R---- C:\WINDOWS\system32\AVerIO.dll
2011-10-20 13:31:52 ----R---- C:\WINDOWS\system32\sptlib22.dll
2011-10-20 13:31:31 ----D---- C:\Program Files\Common Files\AVerMedia
2011-10-20 13:30:47 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2011-10-20 13:23:07 ----A---- C:\WINDOWS\system32\drivers\MPE.sys
2011-10-20 13:22:54 ----A---- C:\WINDOWS\system32\PsisDecd.dll
2011-10-20 13:22:52 ----A---- C:\WINDOWS\system32\drivers\BdaSup.sys
2011-10-20 09:25:28 ----D---- C:\Program Files\Common Files\Java
2011-10-18 18:54:19 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2011-10-17 09:44:19 ----D---- C:\WINDOWS\system32\XPSViewer
2011-10-17 09:44:16 ----D---- C:\Program Files\MSBuild
2011-10-17 09:44:15 ----D---- C:\WINDOWS\system32\en-US
2011-10-17 09:44:10 ----D---- C:\Program Files\Reference Assemblies
2011-10-17 09:43:52 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2011-10-17 09:43:52 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2011-10-17 09:43:52 ----N---- C:\WINDOWS\system32\prntvpt.dll
2011-10-16 19:46:54 ----RSD---- C:\WINDOWS\assembly
2011-10-16 19:46:23 ----D---- C:\WINDOWS\Microsoft.NET
2011-10-16 19:43:45 ----D---- C:\Documents and Settings\Jirka\Data aplikací\HTML Executable
2011-10-15 03:26:36 ----A---- C:\TDSSKiller.2.6.9.0_15.10.2011_04.26.36_log.txt
2011-10-15 03:13:29 ----A---- C:\TDSSKiller.2.6.9.0_15.10.2011_04.13.29_log.txt
2011-10-14 07:18:39 ----D---- C:\rsit
2011-10-13 21:57:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2011-10-13 21:56:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2567053$
2011-10-13 21:56:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2592799$
2011-10-13 02:55:25 ----RASH---- C:\WINDOWS\system32\ntmsapiy.dll

======List of files/folders modified in the last 1 month======

2011-11-06 06:12:53 ----D---- C:\Program Files\trend micro
2011-11-06 06:03:52 ----D---- C:\WINDOWS
2011-11-06 06:02:59 ----SD---- C:\WINDOWS\Tasks
2011-11-06 06:02:33 ----D---- C:\WINDOWS\system32\CatRoot2
2011-11-06 06:00:43 ----A---- C:\WINDOWS\system.ini
2011-11-06 06:00:31 ----D---- C:\WINDOWS\system32\drivers\etc
2011-11-06 05:59:56 ----D---- C:\WINDOWS\system32\drivers
2011-11-06 05:55:41 ----D---- C:\WINDOWS\system32
2011-11-06 05:54:04 ----D---- C:\WINDOWS\AppPatch
2011-11-06 05:54:04 ----D---- C:\Program Files\Common Files
2011-11-06 05:46:36 ----D---- C:\WINDOWS\WinSxS
2011-11-06 05:41:53 ----D---- C:\WINDOWS\ERDNT
2011-11-06 04:31:02 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-11-05 19:25:18 ----D---- C:\WINDOWS\SoftwareDistribution
2011-11-05 19:25:18 ----D---- C:\Documents and Settings\Jirka\Data aplikací\uTorrent
2011-11-05 19:25:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2011-11-05 18:13:09 ----RD---- C:\Program Files
2011-11-05 17:10:59 ----D---- C:\WINDOWS\Prefetch
2011-11-04 19:31:50 ----SD---- C:\Documents and Settings\Jirka\Data aplikací\Microsoft
2011-11-03 15:42:40 ----D---- C:\Documents and Settings\Jirka\Data aplikací\Skype
2011-11-03 15:37:05 ----SHD---- C:\WINDOWS\Installer
2011-11-03 15:37:02 ----D---- C:\Config.Msi
2011-11-02 05:54:20 ----D---- C:\Documents and Settings\Jirka\Data aplikací\.minecraft
2011-11-01 00:41:24 ----HD---- C:\WINDOWS\inf
2011-11-01 00:39:03 ----D---- C:\WINDOWS\Minidump
2011-10-31 19:51:25 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-10-31 00:09:09 ----D---- C:\Program Files\CCleaner
2011-10-28 03:12:04 ----D---- C:\Program Files\K-Lite Codec Pack
2011-10-25 07:13:35 ----SHD---- C:\System Volume Information
2011-10-24 20:13:08 ----D---- C:\Program Files\TuneUp Utilities 2011
2011-10-21 22:56:31 ----D---- C:\WINDOWS\SHELLNEW
2011-10-21 18:43:37 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-10-21 01:52:06 ----D---- C:\Program Files\Spybot - Search & Destroy
2011-10-20 23:53:56 ----D---- C:\WINDOWS\Driver Cache
2011-10-20 23:27:31 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-10-20 21:33:08 ----D---- C:\Program Files\Mozilla Firefox
2011-10-20 20:20:22 ----D---- C:\Documents and Settings
2011-10-20 19:46:22 ----D---- C:\WINDOWS\system32\CatRoot
2011-10-20 19:46:13 ----D---- C:\Program Files\Windows Media Player
2011-10-20 19:46:13 ----D---- C:\Program Files\Windows Media Connect 2
2011-10-20 19:46:12 ----D---- C:\WINDOWS\Help
2011-10-20 19:45:46 ----D---- C:\WINDOWS\system32\drivers\UMDF
2011-10-20 13:34:34 ----HD---- C:\Program Files\InstallShield Installation Information
2011-10-20 13:32:29 ----D---- C:\WINDOWS\system32\config
2011-10-20 12:37:19 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-10-20 09:24:19 ----A---- C:\WINDOWS\system32\javaws.exe
2011-10-20 09:24:19 ----A---- C:\WINDOWS\system32\javaw.exe
2011-10-20 09:24:19 ----A---- C:\WINDOWS\system32\java.exe
2011-10-20 09:24:19 ----A---- C:\WINDOWS\system32\deployJava1.dll
2011-10-20 09:24:16 ----D---- C:\Program Files\Java
2011-10-20 04:33:26 ----HDC---- C:\WINDOWS\$NtUninstallKB978037_0$
2011-10-20 03:49:09 ----D---- C:\Program Files\uTorrent
2011-10-17 09:44:14 ----RSD---- C:\WINDOWS\Fonts
2011-10-17 09:43:00 ----D---- C:\Program Files\Internet Explorer
2011-10-16 19:46:27 ----D---- C:\WINDOWS\system32\mui
2011-10-16 10:57:32 ----D---- C:\WINDOWS\Debug
2011-10-14 14:58:25 ----RD---- C:\Program Files\Skype
2011-10-13 22:02:59 ----D---- C:\WINDOWS\system32\Restore
2011-10-13 22:02:39 ----D---- C:\Program Files\Microsoft Silverlight
2011-10-13 21:57:00 ----A---- C:\WINDOWS\system32\MRT.exe
2011-10-13 21:56:48 ----HD---- C:\WINDOWS\$hf_mig$

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 Kl1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2011-03-04 133208]
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2005-05-17 92800]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 kl2;kl2; C:\WINDOWS\system32\DRIVERS\kl2.sys [2011-03-04 11352]
R3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2011-03-10 34608]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2005-04-05 33536]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2005-04-05 12928]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S1 AmdK8;AMD Processor Driver; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 36352]
S1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2011-10-24 565552]
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2008-09-24 4122368]
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 AVerAF35;AVerMedia A825 USB Dual DVB-T; C:\WINDOWS\System32\Drivers\AVerAF35.sys [2009-05-26 485888]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 ctac32k;Creative AC3 Software Decoder; C:\WINDOWS\system32\drivers\ctac32k.sys []
S3 ctaud2k;Creative Audio Driver (WDM); C:\WINDOWS\system32\drivers\ctaud2k.sys []
S3 ctprxy2k;Creative Proxy Driver; C:\WINDOWS\system32\drivers\ctprxy2k.sys []
S3 emupia;E-mu Plug-in Architecture Driver; C:\WINDOWS\system32\drivers\emupia2k.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 ha10kx2k;Creative Hardware Abstract Layer Driver; C:\WINDOWS\system32\drivers\ha10kx2k.sys []
S3 ha20x2k;Creative 20X HAL Driver; C:\WINDOWS\system32\drivers\ha20x2k.sys []
S3 hap16v2k;Creative P16V HAL Driver; C:\WINDOWS\system32\drivers\hap16v2k.sys []
S3 hap17v2k;Creative P17V HAL Driver; C:\WINDOWS\system32\drivers\hap17v2k.sys []
S3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2009-11-02 19472]
S3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys [2009-10-07 25752]
S3 LVRS;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs.sys [2009-05-01 265496]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys []
S3 mbr;mbr; \??\C:\DOCUME~1\Jirka\LOCALS~1\Temp\mbr.sys []
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2011-08-03 12542592]
S3 pepifilter;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302af.sys [2009-04-30 13976]
S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\WINDOWS\system32\DRIVERS\LV302V32.SYS [2009-04-30 2687512]
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

S2 AVP;Kaspersky Anti-Virus Service; C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe [2011-04-24 202296]
S2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\system32\CTsvcCDA.EXE [1999-12-12 44032]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-08-24 136176]
S2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2009-10-07 147456]
S2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2011-08-03 139264]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-08-03 2255464]
S2 spupdsvc;Windows Service Pack Installer update service; C:\WINDOWS\system32\spupdsvc.exe [2009-01-07 26144]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [2011-09-27 1526080]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-08-24 136176]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-02-08 136120]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2011-10-20 161664]
S3 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------

Otevřte poznámkový blok a zkopírujte do něj:

KillAll::

Collect::
c:\windows\is-PB7FQ.exe
C:\cleanup.bat

Folder::
C:\urn_003.lnk
C:\MEDIA.COM

Firefox::
FF - ProfilePath - c:\documents and settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\ss9g23ma.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.as ... 2786678&q=

Uložte na plochu jako CFScript.txt. pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

hotovo pořád mi nejde spustit systém normálně jenom v save modu

---------------------------------------------
ComboFix 11-11-06.01 - Jirka 06.11.2011 16:03:23.5.1 - x86 NETWORK
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1612 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jirka\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Jirka\Plocha\CFScript.txt..txt
.
file zipped: C:\cleanup.bat
file zipped: c:\windows\is-PB7FQ.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\cleanup.bat
C:\MEDIA.COM
C:\urn_003.lnk
c:\windows\is-PB7FQ.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-06 do 2011-11-06 )))))))))))))))))))))))))))))))
.
.
2011-11-06 03:25 . 2011-08-31 16:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-10-26 19:00 . 2011-10-27 00:10 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\UseNeXT
2011-10-26 19:00 . 2011-10-26 23:35 -------- d-----w- c:\program files\UseNeXT
2011-10-26 14:05 . 2011-10-27 04:04 -------- d-----w- c:\documents and settings\Jirka\Local Settings\Data aplikací\sabnzbd
2011-10-26 14:04 . 2011-10-27 04:04 -------- d-----w- c:\program files\SABnzbd
2011-10-23 23:05 . 2011-10-23 23:40 97961 ----a-w- c:\windows\system32\drivers\klick.dat
2011-10-23 23:05 . 2011-10-23 23:40 115369 ----a-w- c:\windows\system32\drivers\klin.dat
2011-10-23 23:03 . 2011-11-06 01:09 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Kaspersky Lab
2011-10-23 23:03 . 2011-10-23 23:03 -------- d-----w- c:\program files\Kaspersky Lab
2011-10-22 02:56 . 2011-10-22 02:56 -------- d-----w- C:\Users
2011-10-21 00:10 . 2011-10-21 00:10 -------- d--h--w- c:\documents and settings\All Users\Data aplikací\Common Files
2011-10-21 00:10 . 2011-10-21 00:21 -------- d-----w- c:\documents and settings\All Users\Data aplikací\MFAData
2011-10-20 23:36 . 2011-10-20 23:36 -------- d-----w- c:\program files\AVerMedia
2011-10-20 23:25 . 2011-10-20 23:25 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\Logitech
2011-10-20 19:20 . 2011-10-20 19:20 -------- d-----w- c:\documents and settings\user
2011-10-20 19:07 . 2011-07-16 14:17 151552 ----a-w- c:\windows\system32\ac3acm.acm
2011-10-20 19:07 . 2011-06-24 14:28 650752 ----a-w- c:\windows\system32\xvidcore.dll
2011-10-20 19:07 . 2008-09-24 18:41 839680 ----a-w- c:\windows\system32\lameACM.acm
2011-10-20 19:07 . 2011-10-04 08:00 74752 ----a-w- c:\windows\system32\ff_vfw.dll
2011-10-20 19:07 . 2011-06-24 14:44 243200 ----a-w- c:\windows\system32\xvidvfw.dll
2011-10-20 18:46 . 2008-04-14 03:22 221184 ----a-w- c:\windows\system32\wmpns.dll
2011-10-20 16:37 . 2011-10-25 06:20 -------- d-----w- c:\program files\Software Informer
2011-10-20 13:35 . 2011-10-20 13:35 -------- d-----w- C:\Documents
2011-10-20 12:32 . 2009-10-20 17:25 102400 ------r- c:\windows\system32\CardID.dll
2011-10-20 12:32 . 2007-02-08 13:09 49152 ------r- c:\windows\system32\AVerIO.dll
2011-10-20 12:32 . 2005-04-28 19:08 3456 ------r- c:\windows\system32\AVerIO.sys
2011-10-20 12:31 . 2008-10-07 17:31 290816 ------r- c:\windows\system32\sptlib22.dll
2011-10-20 12:31 . 2011-10-20 23:37 -------- d-----w- c:\program files\Common Files\AVerMedia
2011-10-20 12:30 . 2011-10-20 12:30 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2011-10-20 12:23 . 2008-04-13 18:46 15232 -c--a-w- c:\windows\system32\dllcache\mpe.sys
2011-10-20 12:23 . 2008-04-13 18:46 15232 ----a-w- c:\windows\system32\drivers\MPE.sys
2011-10-20 12:22 . 2008-04-14 03:22 56832 ----a-w- c:\windows\system32\MSDvbNP.ax
2011-10-20 12:22 . 2008-04-14 03:22 33280 ----a-w- c:\windows\system32\PsisRndr.ax
2011-10-20 12:22 . 2008-04-14 03:21 363520 -c--a-w- c:\windows\system32\dllcache\psisdecd.dll
2011-10-20 12:22 . 2008-04-14 03:21 363520 ----a-w- c:\windows\system32\PsisDecd.dll
2011-10-20 12:22 . 2008-04-13 18:46 11776 -c--a-w- c:\windows\system32\dllcache\bdasup.sys
2011-10-20 12:22 . 2008-04-13 18:46 11776 ----a-w- c:\windows\system32\drivers\BdaSup.sys
2011-10-20 12:22 . 2008-04-14 03:22 18432 ----a-w- c:\windows\system32\BdaPlgIn.ax
2011-10-20 08:25 . 2011-10-20 08:25 -------- d-----w- c:\program files\Common Files\Java
2011-10-20 03:19 . 2011-10-20 03:19 -------- d-----w- c:\documents and settings\Administrator\Data aplikací\Malwarebytes
2011-10-20 00:13 . 2011-10-23 23:47 -------- d-sh--w- c:\documents and settings\Jirka\Local Settings\Data aplikací\fa2ab943
2011-10-17 08:44 . 2011-10-17 08:44 -------- d-----w- c:\windows\system32\XPSViewer
2011-10-17 08:44 . 2011-10-17 08:44 -------- d-----w- c:\program files\MSBuild
2011-10-17 08:44 . 2011-10-17 08:44 -------- d-----w- c:\program files\Reference Assemblies
2011-10-17 08:43 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2011-10-17 08:43 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2011-10-17 08:43 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2011-10-17 08:43 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2011-10-17 08:43 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2011-10-17 08:43 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2011-10-17 08:43 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2011-10-17 08:43 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2011-10-16 18:43 . 2011-10-16 18:43 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\HTML Executable
2011-10-14 06:18 . 2011-10-14 06:18 -------- d-----w- C:\rsit
2011-10-13 01:55 . 2011-10-13 01:55 68096 --sha-r- c:\windows\system32\ntmsapiy.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-21 21:12 . 2006-03-02 12:00 64256 ----a-w- c:\windows\system32\drivers\serial.sys
2011-10-20 08:24 . 2011-09-11 03:20 128000 ----a-w- c:\windows\system32\javacpl.cpl
2011-10-20 08:24 . 2011-08-26 12:20 544656 ----a-w- c:\windows\system32\deployJava1.dll
2011-10-13 21:04 . 2011-08-24 20:23 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-27 11:53 . 2011-09-04 00:46 31552 ----a-w- c:\windows\system32\TURegOpt.exe
2011-09-27 11:46 . 2011-09-04 00:46 29504 ----a-w- c:\windows\system32\uxtuneup.dll
2011-09-26 09:41 . 2011-09-26 09:41 613376 ------w- c:\windows\system32\uiautomationcore.dll
2011-09-26 09:41 . 2006-03-02 12:00 22528 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-26 09:41 . 2006-03-02 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-09 09:12 . 2006-03-02 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-09-06 14:10 . 2006-03-02 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-08-26 12:13 . 2011-08-26 12:13 0 ----a-w- c:\windows\system32\ConduitEngine.tmp
2011-08-24 22:12 . 2011-08-24 22:12 231248 ----a-w- c:\windows\system32\drivers\truecrypt.sys
2011-08-24 18:02 . 2011-08-24 17:26 60416 ----a-w- c:\windows\ALCFDRTM.VER
2011-08-24 17:26 . 2011-08-24 17:26 60416 ----a-w- c:\windows\ALCFDRTM.EXE
2011-08-22 23:41 . 2006-03-02 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-08-22 23:41 . 2006-03-02 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2011-08-22 23:41 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2006-03-02 12:00 385024 ------w- c:\windows\system32\html.iec
2011-08-17 13:49 . 2006-03-02 12:00 138496 ----a-w- c:\windows\system32\drivers\afd.sys
2011-10-06 09:12 . 2011-09-11 17:28 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-11-06_05.00.43 )))))))))))))))))))))))))))))))))))))))))
.
+ 2006-03-02 12:00 . 2011-11-06 05:28 68272 c:\windows\system32\perfc009.dat
+ 2006-03-02 12:00 . 2011-11-06 05:28 79174 c:\windows\system32\perfc005.dat
+ 2006-03-02 12:00 . 2011-11-06 05:28 435568 c:\windows\system32\perfh009.dat
+ 2006-03-02 12:00 . 2011-11-06 05:28 432332 c:\windows\system32\perfh005.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-10-13 17351304]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SW20"="c:\windows\system32\sw20.exe" [2005-06-29 212992]
"SW24"="c:\windows\system32\sw24.exe" [2005-07-04 69632]
"LogitechQuickCamRibbon"="c:\program files\Logitech\Logitech WebCam Software\LWS.exe" [2009-10-14 2793304]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2011-08-03 13892200]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2011-08-03 111208]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-05-04 252136]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2011-08-31 1047208]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"SpybotSnD"="c:\program files\Spybot - Search & Destroy\SpybotSD.exe" [2009-01-26 5365592]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Creative Detector"="c:\program files\Creative\MediaSource\Detector\CTDetect.exe" /R
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SoundMan"=SOUNDMAN.EXE
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\WINDOWS\\system32\\javaw.exe"=
"c:\\WINDOWS\\system32\\dwwin.exe"=
"c:\\Program Files\\Common Files\\Java\\Java Update\\jucheck.exe"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"c:\\Program Files\\Google\\Update\\GoogleUpdate.exe"=
"c:\\Program Files\\CCleaner\\CCleaner.exe"=
"c:\\Program Files\\Common Files\\Microsoft Shared\\DW\\DW20.EXE"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Java\\jdk1.7.0_01\\jre\\bin\\javaw.exe"=
"c:\\Program Files\\Adobe\\Reader 10.0\\Reader\\AcroRd32.exe"=
"c:\\Program Files\\Mozilla Firefox\\plugin-container.exe"=
"c:\\Program Files\\Google\\Picasa3\\PicasaUpdater.exe"=
"c:\\Documents and Settings\\All Users\\Data aplikací\\MFAData\\SelfUpd\\avgmfapx.exe"=
"c:\\Program Files\\Windows Media Player\\setup_wm.exe"=
"c:\\Program Files\\Windows Media Player\\wmplayer.exe"=
"c:\\Program Files\\Logitech\\Logitech WebCam Software\\LWS.exe"=
"c:\\Program Files\\TuneUp Utilities 2011\\TURatingSynch.exe"=
"c:\\Documents and Settings\\Jirka\\Dokumenty\\Stažené soubory\\tdsskiller.exe"=
.
R1 kl2;kl2;c:\windows\system32\drivers\kl2.sys [4.3.2011 12:23 11352]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [10.3.2011 17:34 34608]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [24.8.2011 21:23 136176]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [5.9.2011 1:19 2255464]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [27.9.2011 12:50 1526080]
S3 AVerAF35;AVerMedia A825 USB Dual DVB-T;c:\windows\system32\drivers\AVerAF35.sys [26.5.2009 0:58 485888]
S3 CFcatchme;CFcatchme;\??\c:\docume~1\Jirka\LOCALS~1\Temp\CFcatchme.sys --> c:\docume~1\Jirka\LOCALS~1\Temp\CFcatchme.sys [?]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [24.8.2011 21:23 136176]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2.11.2009 19:27 19472]
S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\d:\ntglm7x.sys --> d:\NTGLM7X.sys [?]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
2011-11-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-24 20:23]
.
2011-11-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-24 20:23]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://seznam.cz/
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://home.sweetim.com
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.254 192.168.2.254
FF - ProfilePath - c:\documents and settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\ss9g23ma.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz
FF - prefs.js: network.proxy.type - 0
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-RunOnce-InnoSetupRegFile.0000000001 - c:\windows\is-PB7FQ.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-06 19:05
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1052)
c:\windows\system32\CLBCATQ.DLL
.
Celkový čas: 2011-11-06 19:07:49 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-11-06 18:07
ComboFix2.txt 2011-11-06 06:01
ComboFix3.txt 2011-11-06 05:03
.
Před spuštěním: Volných bajtů: 124 370 554 880
Po spuštění: Volných bajtů: 124 351 381 504
.
- - End Of File - - D621DCA878597A2CBD40F0BD4D903B45
Nahr nˇ probŘhlo ŁspŘçnŘ

Log již vypadá OK. Zkuste obnovu systému k datu, kdy korektně fungoval.

obnova systému nejde zkusil jsem všechny body obnovení ale vždy ukáže že nic nebylo možno obnovit a nebyly provedeny žádné změny.Na modré obrazovce se objevilo něco jako že není driver nemohu to přečíst je tam jen na chvilku a hned restartuje myslím že tam je něco jako z důvodu změny hardwaru a nemohu načíst ?driver IQC nebo WQL nebo něco takovýho.nevím co s tím.Jirkabj

Stáhněte GMER: http://www.viry.cz/forum/viewtopic.php?f=29&t=62878 , spusťte, proveďte sken a dejte sem oba logy.

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2011-11-06 23:36:54
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\0000006b HDS722516VLSA80 rev.V34OA63A
Running: gmer.exe; Driver: C:\DOCUME~1\Jirka\LOCALS~1\Temp\pxtdapow.sys


---- User code sections - GMER 1.0.15 ----

.text C:\Program Files\Mozilla Firefox\firefox.exe[528] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 0121FAE0 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)

---- EOF - GMER 1.0.15 ----

--------------------------------------------------
nevím jaký druhý log

abychom se dostali k "hlavnimu" skenu a ziskani logu z nej, ponechame v pravem sloupci zafajfkovane vsechny polozky a klikneme na tlacitko Scan, pak to vypada v okne aplikace asi takhle:



Vyckame konce skenu (coz trva tak kolem peti deseti minut; v nekterych pripadech ovsem muze delka skenu presahnout i dve hodiny!!!), pote.....

Omlouvám se že jsem se neozval ale pokoušel jsem se něco dělat s těmi logy ale mezitím se mi zasekl comp úplně takže jsem zvolil jedinou možnost zformátoval jsem disk C a nainstaloval system znova takže nevím co byla příčina toho všeho.
Mám pocit že problém je v něčem jiném protože i po přeinstalování není něco v pořádku.Všechno nabíhá pomalu comp reaguje zpomaleně jak programy tak i běžné zobrazování na ploše.To samé internet a hry vůbec po chvíli nejdou hrát začnou se sekat mají problémy s výkonem.

ComboFix 11-11-08.02 - Jirka 09.11.2011 8:15.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1322 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jirka\Dokumenty\Stažené soubory\ComboFix.exe
AV: Kaspersky Anti-Virus *Disabled/Updated* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\CF31928.exe
c:\windows\system32\TZLog.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-09 do 2011-11-09 )))))))))))))))))))))))))))))))
.
.
2011-11-09 06:41 . 2011-11-09 06:42 -------- d-----w- C:\rsit
2011-11-09 05:01 . 2011-11-09 05:28 -------- d-----w- C:\NVIDIA
2011-11-07 11:08 . 2011-11-09 06:55 -------- d-----r- C:\Program Files
2011-11-07 11:07 . 2011-11-07 11:06 -------- d-----w- C:\Documents and Settings
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-08 04:50 . 2005-06-15 09:20 4226688 ----a-w- c:\windows\system32\nv4_disp.dll
2011-10-08 04:50 . 2005-06-15 09:20 17956864 ----a-w- c:\windows\system32\nvoglnt.dll
2011-10-08 04:50 . 2005-06-15 09:20 12791488 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2011-09-26 10:41 . 2011-09-26 10:41 613376 ------w- c:\windows\system32\uiautomationcore.dll
2011-09-26 10:41 . 2006-03-02 12:00 22528 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-26 10:41 . 2006-03-02 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-09 09:12 . 2006-03-02 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-09-06 14:10 . 2006-03-02 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-08-22 23:41 . 2006-03-02 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-08-22 23:41 . 2006-03-02 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-08-22 23:41 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2006-03-02 12:00 385024 ----a-w- c:\windows\system32\html.iec
2011-08-17 13:49 . 2006-03-02 12:00 138496 ----a-w- c:\windows\system32\drivers\afd.sys
2011-09-29 07:07 . 2011-11-07 13:52 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{1EA00BE1-6E54-4E2A-8099-680300BF23E1}"= "c:\program files\Seznam.cz\toolbar\toolbar.dll" [2010-10-07 187672]
.
[HKEY_CLASSES_ROOT\clsid\{1ea00be1-6e54-4e2a-8099-680300bf23e1}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SW20"="c:\windows\system32\sw20.exe" [2005-06-29 212992]
"SW24"="c:\windows\system32\sw24.exe" [2005-07-04 69632]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe" [2011-04-24 202296]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 1821576]
"NVMixerTray"="c:\program files\NVIDIA Corporation\NvMixer\NVMixerTray.exe" [2004-12-20 131072]
"SoundMan"="SOUNDMAN.EXE" [2007-04-16 577536]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-01-16 13680640]
"NvMediaCenter"="NvMCTray.dll" [2009-01-16 86016]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2011-10-08 1632360]
"LogitechQuickCamRibbon"="c:\program files\Logitech\Logitech WebCam Software\LWS.exe" [2009-10-14 2793304]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Google Update"="c:\documents and settings\Jirka\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" /MINIMIZED
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SoundMan"=SOUNDMAN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"=
.
R1 kl2;kl2;c:\windows\system32\drivers\kl2.sys [4.3.2011 13:23 11352]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [7.11.2011 12:06 2253120]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [2.11.2011 20:29 1479488]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [10.3.2011 18:34 34608]
R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2.11.2009 20:27 19472]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [20.10.2011 11:48 10064]
R4 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [9.11.2011 7:55 41272]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\g:\ntglm7x.sys --> g:\NTGLM7X.sys [?]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMSWISSARMY
*NewlyCreated* - NVSVC
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: {{0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - c:\program files\Seznam.cz\listicka.dll
TCP: DhcpNameServer = 192.168.1.254 192.168.2.254
TCP: Interfaces\{61DE08D6-734E-47B4-BC54-58B9AF22BAB8}: NameServer = 82.202.74.3,82.202.74.4
FF - ProfilePath - c:\documents and settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\6v4jnou9.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: network.proxy.type - 0
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-09 08:20
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2011-11-09 08:23:09
ComboFix-quarantined-files.txt 2011-11-09 07:23
.
Před spuštěním: Volných bajtů: 151 307 026 432
Po spuštění: Volných bajtů: 151 350 173 696
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - E5541DC6C2DBF480D342FEA61D28A83F

OTL logfile created on: 9.11.2011 8:46:22 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Jirka\Dokumenty\Stažené soubory
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,40 Gb Available Physical Memory | 70,24% Memory free
3,84 Gb Paging File | 3,35 Gb Available in Paging File | 87,10% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 153,38 Gb Total Space | 140,97 Gb Free Space | 91,91% Space Free | Partition Type: NTFS
Drive E: | 627,55 Gb Total Space | 601,76 Gb Free Space | 95,89% Space Free | Partition Type: NTFSComboFix 11-11-08.02 - Jirka 09.11.2011 8:15.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1322 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jirka\Dokumenty\Stažené soubory\ComboFix.exe
AV: Kaspersky Anti-Virus *Disabled/Updated* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\CF31928.exe
c:\windows\system32\TZLog.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-09 do 2011-11-09 )))))))))))))))))))))))))))))))
.
.
2011-11-09 06:41 . 2011-11-09 06:42 -------- d-----w- C:\rsit
2011-11-09 05:01 . 2011-11-09 05:28 -------- d-----w- C:\NVIDIA
2011-11-07 11:08 . 2011-11-09 06:55 -------- d-----r- C:\Program Files
2011-11-07 11:07 . 2011-11-07 11:06 -------- d-----w- C:\Documents and Settings
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-08 04:50 . 2005-06-15 09:20 4226688 ----a-w- c:\windows\system32\nv4_disp.dll
2011-10-08 04:50 . 2005-06-15 09:20 17956864 ----a-w- c:\windows\system32\nvoglnt.dll
2011-10-08 04:50 . 2005-06-15 09:20 12791488 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2011-09-26 10:41 . 2011-09-26 10:41 613376 ------w- c:\windows\system32\uiautomationcore.dll
2011-09-26 10:41 . 2006-03-02 12:00 22528 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-26 10:41 . 2006-03-02 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-09 09:12 . 2006-03-02 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-09-06 14:10 . 2006-03-02 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-08-22 23:41 . 2006-03-02 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-08-22 23:41 . 2006-03-02 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-08-22 23:41 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2006-03-02 12:00 385024 ----a-w- c:\windows\system32\html.iec
2011-08-17 13:49 . 2006-03-02 12:00 138496 ----a-w- c:\windows\system32\drivers\afd.sys
2011-09-29 07:07 . 2011-11-07 13:52 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{1EA00BE1-6E54-4E2A-8099-680300BF23E1}"= "c:\program files\Seznam.cz\toolbar\toolbar.dll" [2010-10-07 187672]
.
[HKEY_CLASSES_ROOT\clsid\{1ea00be1-6e54-4e2a-8099-680300bf23e1}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SW20"="c:\windows\system32\sw20.exe" [2005-06-29 212992]
"SW24"="c:\windows\system32\sw24.exe" [2005-07-04 69632]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe" [2011-04-24 202296]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 1821576]
"NVMixerTray"="c:\program files\NVIDIA Corporation\NvMixer\NVMixerTray.exe" [2004-12-20 131072]
"SoundMan"="SOUNDMAN.EXE" [2007-04-16 577536]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-01-16 13680640]
"NvMediaCenter"="NvMCTray.dll" [2009-01-16 86016]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2011-10-08 1632360]
"LogitechQuickCamRibbon"="c:\program files\Logitech\Logitech WebCam Software\LWS.exe" [2009-10-14 2793304]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Google Update"="c:\documents and settings\Jirka\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" /MINIMIZED
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SoundMan"=SOUNDMAN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"=
.
R1 kl2;kl2;c:\windows\system32\drivers\kl2.sys [4.3.2011 13:23 11352]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [7.11.2011 12:06 2253120]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [2.11.2011 20:29 1479488]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [10.3.2011 18:34 34608]
R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2.11.2009 20:27 19472]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [20.10.2011 11:48 10064]
R4 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [9.11.2011 7:55 41272]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\g:\ntglm7x.sys --> g:\NTGLM7X.sys [?]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMSWISSARMY
*NewlyCreated* - NVSVC
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: {{0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - c:\program files\Seznam.cz\listicka.dll
TCP: DhcpNameServer = 192.168.1.254 192.168.2.254
TCP: Interfaces\{61DE08D6-734E-47B4-BC54-58B9AF22BAB8}: NameServer = 82.202.74.3,82.202.74.4
FF - ProfilePath - c:\documents and settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\6v4jnou9.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: network.proxy.type - 0
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-09 08:20
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2011-11-09 08:23:09
ComboFix-quarantined-files.txt 2011-11-09 07:23
.
Před spuštěním: Volných bajtů: 151 307 026 432
Po spuštění: Volných bajtů: 151 350 173 696
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - E5541DC6C2DBF480D342FEA61D28A83F

Drive F: | 7,81 Mb Total Space | 5,22 Mb Free Space | 66,83% Space Free | Partition Type: NTFS
Drive G: | 302,04 Gb Total Space | 70,77 Gb Free Space | 23,43% Space Free | Partition Type: NTFS

Computer Name: BLUEJEANSJIRKA | User Name: Jirka | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011.11.09 08:45:38 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jirka\Dokumenty\Stažené soubory\OTL.exe
PRC - [2011.11.09 07:14:38 | 000,060,416 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCFDRTM.EXE
PRC - [2011.10.08 05:50:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011.09.29 08:07:25 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011.04.24 23:15:02 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe
PRC - [2011.04.24 23:12:42 | 000,131,472 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtblfs.exe
PRC - [2009.10.14 13:36:56 | 002,793,304 | ---- | M] () -- C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
PRC - [2009.10.14 13:34:18 | 000,560,472 | ---- | M] () -- C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe
PRC - [2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (No Company Name) ==========

MOD - [2011.09.29 08:07:25 | 001,833,944 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011.04.24 23:13:30 | 007,008,656 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\qtgui4.dll
MOD - [2011.04.24 23:13:28 | 000,192,912 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\qtsql4.dll
MOD - [2011.04.24 23:13:26 | 001,270,160 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\qtscript4.dll
MOD - [2011.04.24 23:13:26 | 000,758,160 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\qtnetwork4.dll
MOD - [2011.04.24 23:13:24 | 002,118,032 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\qtcore4.dll
MOD - [2011.04.24 23:13:24 | 002,089,360 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\qtdeclarative4.dll
MOD - [2011.04.20 19:56:28 | 000,025,088 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\imageformats\qgif4.dll
MOD - [2009.10.14 13:36:56 | 002,793,304 | ---- | M] () -- C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
MOD - [2009.10.14 13:34:18 | 000,560,472 | ---- | M] () -- C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.11.02 20:29:20 | 001,479,488 | ---- | M] (TuneUp Software) [Auto | Stopped] -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2011.11.02 20:29:08 | 000,028,992 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2011.10.08 05:50:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011.04.24 23:15:02 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe -- (AVP)
SRV - [2009.10.07 01:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)


========== Driver Services (SafeList) ==========

DRV - [2011.11.09 07:55:44 | 000,041,272 | ---- | M] (Malwarebytes Corporation) [Kernel | Disabled | Running] -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2011.11.08 19:39:50 | 000,565,552 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF)
DRV - [2011.11.08 19:26:33 | 000,231,376 | ---- | M] (TrueCrypt Foundation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\truecrypt.sys -- (truecrypt)
DRV - [2011.10.20 11:48:16 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2011.03.10 18:34:46 | 000,034,608 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5)
DRV - [2011.03.04 13:23:20 | 000,011,352 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\kl2.sys -- (kl2)
DRV - [2011.03.04 13:23:14 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\kl1.sys -- (KL1)
DRV - [2009.11.02 20:27:24 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2009.10.07 01:46:36 | 000,025,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2009.05.01 00:01:34 | 000,265,496 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lvrs.sys -- (LVRS)
DRV - [2009.04.30 23:55:56 | 002,687,512 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LV302V32.SYS -- (PID_PEPI) Logitech QuickCam IM(PID_PEPI)
DRV - [2009.04.30 23:55:32 | 000,013,976 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lv302af.sys -- (pepifilter)
DRV - [2008.11.12 16:58:38 | 000,145,952 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvgts.sys -- (nvgts)
DRV - [2008.09.24 10:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2006.07.01 22:42:58 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2005.08.18 16:52:06 | 000,093,568 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata)
DRV - [2005.04.13 11:34:02 | 000,414,464 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nvapu.sys -- (nvnforce) Service for NVIDIA(R) nForce(TM)
DRV - [2005.04.13 11:32:42 | 000,053,376 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nvax.sys -- (nvax) Service for NVIDIA(R) nForce(TM)
DRV - [2005.04.05 20:22:30 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2005.04.05 20:22:28 | 000,033,536 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========







IE - HKU\S-1-5-21-1177238915-682003330-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-1177238915-682003330-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..network.proxy.type: 0


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\virtualKeyboard@kaspersky.ru: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\virtualKeyboard@kaspersky.ru [2011.11.08 20:34:39 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\linkfilter@kaspersky.ru: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\linkfilter@kaspersky.ru [2011.11.08 20:34:39 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.11.07 14:52:50 | 000,000,000 | ---D | M]

[2011.11.07 14:53:06 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Extensions
[2011.11.09 02:15:33 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\6v4jnou9.default\extensions
[2011.11.08 20:34:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011.11.07 14:56:08 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
[2011.11.08 19:47:48 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak2
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\JIRKA\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6V4JNOU9.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
[2011.11.07 14:56:01 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011.11.08 20:34:39 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\PROGRAM FILES\KASPERSKY LAB\KASPERSKY ANTI-VIRUS 2012\FFEXT\LINKFILTER@KASPERSKY.RU
[2011.11.08 20:34:39 | 000,000,000 | ---D | M] (Kaspersky Virtual Keyboard) -- C:\PROGRAM FILES\KASPERSKY LAB\KASPERSKY ANTI-VIRUS 2012\FFEXT\VIRTUALKEYBOARD@KASPERSKY.RU
[2011.09.29 08:07:26 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.09.29 02:30:58 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2011.09.29 02:30:58 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.09.29 02:30:58 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2011.09.29 02:30:58 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.09.29 02:30:58 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Jirka\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.106\gcswf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U29 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Jirka\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.106\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Jirka\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.106\pdf.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Jirka\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin

O1 HOSTS File: ([2011.11.09 08:20:29 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll (Kaspersky Lab ZAO)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll (Kaspersky Lab ZAO)
O2 - BHO: (Lištička) - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\listicka.dll ()
O3 - HKLM\..\Toolbar: (Nástroje Lištičky) - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - C:\Program Files\Seznam.cz\toolbar\toolbar.dll ()
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NVMixerTray] C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SW20] C:\WINDOWS\system32\sw20.exe ()
O4 - HKLM..\Run: [SW24] C:\WINDOWS\system32\sw24.exe ()
O4 - HKU\S-1-5-21-1177238915-682003330-839522115-1004..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 351
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1177238915-682003330-839522115-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1177238915-682003330-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1177238915-682003330-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1177238915-682003330-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-1177238915-682003330-839522115-1006\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1177238915-682003330-839522115-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra 'Tools' menuitem : Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra Button: &Virtual Keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll (Kaspersky Lab ZAO)
O9 - Extra Button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra 'Tools' menuitem : Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll (Kaspersky Lab ZAO)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 192.168.2.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{61DE08D6-734E-47B4-BC54-58B9AF22BAB8}: NameServer = 82.202.74.3,82.202.74.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7649334D-C777-4E1E-BD87-8EB70FBFD2CB}: DhcpNameServer = 192.168.1.254 192.168.2.254
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\klogon: DllName - (C:\WINDOWS\system32\klogon.dll) - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab ZAO)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.11.07 11:22:45 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011.11.09 08:29:43 | 000,000,000 | --SD | C] -- C:\ComboFix
[2011.11.09 08:20:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2011.11.09 08:14:14 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011.11.09 08:13:19 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011.11.09 08:13:19 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011.11.09 08:13:19 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011.11.09 08:13:19 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011.11.09 08:13:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Nabídka Start\Programy\Nástroje pro správu
[2011.11.09 08:13:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Filmy
[2011.11.09 08:11:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011.11.09 08:10:40 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011.11.09 07:55:44 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011.11.09 07:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Malwarebytes
[2011.11.09 07:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
[2011.11.09 07:55:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2011.11.09 07:55:20 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011.11.09 07:55:20 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011.11.09 07:41:43 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.11.09 07:41:43 | 000,000,000 | ---D | C] -- C:\rsit
[2011.11.09 07:31:19 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab
[2011.11.09 07:31:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\SystemRequirementsLab
[2011.11.09 07:30:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2011.11.09 07:19:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Jirka\Recent
[2011.11.09 07:15:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Logitech
[2011.11.09 07:14:38 | 000,060,416 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCFDRTM.EXE
[2011.11.09 07:14:37 | 000,060,416 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCFDRTM.VER
[2011.11.09 07:14:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang
[2011.11.09 07:03:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\NVIDIA
[2011.11.09 06:53:18 | 000,201,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\fdco1.dll
[2011.11.09 06:53:18 | 000,033,536 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\NVENETFD.sys
[2011.11.09 06:53:16 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvunrm.exe
[2011.11.09 06:53:15 | 000,261,888 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvnrm.sys
[2011.11.09 06:53:15 | 000,208,256 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvsnpu.sys
[2011.11.09 06:53:15 | 000,032,256 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvconrm.dll
[2011.11.09 06:53:15 | 000,012,928 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvnetbus.sys
[2011.11.09 06:53:15 | 000,009,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\bdco1.dll
[2011.11.09 06:53:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2011.11.09 06:45:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\nView_Profiles
[2011.11.09 06:39:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Dokumenty\Filmy
[2011.11.09 06:39:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Leadertech
[2011.11.09 06:38:40 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstee.sys
[2011.11.09 06:38:37 | 000,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndisip.sys
[2011.11.09 06:38:34 | 000,015,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\streamip.sys
[2011.11.09 06:38:31 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax
[2011.11.09 06:38:31 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsink.ax
[2011.11.09 06:38:28 | 000,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\slip.sys
[2011.11.09 06:38:25 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstcodec.sys
[2011.11.09 06:38:22 | 000,085,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nabtsfec.sys
[2011.11.09 06:38:19 | 000,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ccdecode.sys
[2011.11.09 06:38:10 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax
[2011.11.09 06:38:10 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kswdmcap.ax
[2011.11.09 06:38:10 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll
[2011.11.09 06:38:10 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vfwwdm32.dll
[2011.11.09 06:38:10 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax
[2011.11.09 06:38:10 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksxbar.ax
[2011.11.09 06:38:09 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax
[2011.11.09 06:38:09 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kstvtune.ax
[2011.11.09 06:38:06 | 002,687,512 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\LV302V32.SYS
[2011.11.09 06:38:06 | 000,539,160 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\LVUI2RC.dll
[2011.11.09 06:38:06 | 000,539,160 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\LVUI2.dll
[2011.11.09 06:38:06 | 000,416,280 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\LVCodec2.dll
[2011.11.09 06:37:51 | 000,265,496 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\lvrs.sys
[2011.11.09 06:37:51 | 000,199,192 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\lvci1201278.dll
[2011.11.09 06:37:51 | 000,013,976 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\lv302af.sys
[2011.11.09 06:36:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Logitech
[2011.11.09 06:36:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\LogiShrd
[2011.11.09 06:36:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\LogiShrd
[2011.11.09 06:36:47 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech
[2011.11.09 06:30:39 | 000,331,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshe.dll
[2011.11.09 06:30:39 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfr.dll
[2011.11.09 06:30:39 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrses.dll
[2011.11.09 06:30:39 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsel.dll
[2011.11.09 06:30:39 | 000,278,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsit.dll
[2011.11.09 06:30:39 | 000,278,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsde.dll
[2011.11.09 06:30:39 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsnl.dll
[2011.11.09 06:30:39 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsesm.dll
[2011.11.09 06:30:39 | 000,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspt.dll
[2011.11.09 06:30:39 | 000,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsja.dll
[2011.11.09 06:30:39 | 000,266,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsru.dll
[2011.11.09 06:30:39 | 000,266,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsptb.dll
[2011.11.09 06:30:39 | 000,262,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsko.dll
[2011.11.09 06:30:39 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssl.dll
[2011.11.09 06:30:39 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssk.dll
[2011.11.09 06:30:39 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshu.dll
[2011.11.09 06:30:39 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrstr.dll
[2011.11.09 06:30:39 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsth.dll
[2011.11.09 06:30:39 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssv.dll
[2011.11.09 06:30:39 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspl.dll
[2011.11.09 06:30:39 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsno.dll
[2011.11.09 06:30:39 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfi.dll
[2011.11.09 06:30:39 | 000,245,760 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrseng.dll
[2011.11.09 06:30:39 | 000,225,280 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszhc.dll
[2011.11.09 06:30:39 | 000,122,880 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszht.dll
[2011.11.09 06:30:38 | 000,331,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsar.dll
[2011.11.09 06:30:38 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsda.dll
[2011.11.09 06:30:38 | 000,245,760 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrscs.dll
[2011.11.09 06:30:38 | 000,143,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcolor.exe
[2011.11.09 06:30:37 | 013,680,640 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2011.11.09 06:30:37 | 000,086,016 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2011.11.09 06:30:33 | 000,602,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\easyupdatusapiu.dll
[2011.11.09 06:30:33 | 000,054,272 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2011.11.09 06:29:41 | 000,919,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco32.dll
[2011.11.09 06:29:41 | 000,877,376 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgenco32.dll
[2011.11.09 06:09:51 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek AC97
[2011.11.09 06:05:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\NVIDIA Shared
[2011.11.09 06:05:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\NVIDIA Corporation
[2011.11.09 06:04:40 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvuaudio.exe
[2011.11.09 06:04:29 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvuide.exe
[2011.11.09 06:03:51 | 000,101,632 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvtcp.sys
[2011.11.09 06:01:47 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2011.11.09 06:01:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Mouse
[2011.11.09 06:01:00 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsgXP_2k3.dll
[2011.11.09 06:00:46 | 001,461,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfcoinstaller01009.dll
[2011.11.09 06:00:20 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft IntelliPoint
[2011.11.09 05:59:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2011.11.09 05:58:59 | 000,000,000 | ---D | C] -- C:\Program Files\AMD
[2011.11.09 05:58:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\InstallShield
[2011.11.09 03:20:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Spybot - Search & Destroy
[2011.11.09 03:20:29 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2011.11.09 03:20:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
[2011.11.09 03:00:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Identities
[2011.11.09 02:38:47 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2011.11.09 02:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Plocha\Servis
[2011.11.09 01:29:40 | 000,028,992 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2011.11.09 00:54:01 | 000,031,552 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2011.11.09 00:52:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\TuneUp Utilities 2012
[2011.11.09 00:45:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\TuneUp Software
[2011.11.09 00:42:40 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2012
[2011.11.09 00:39:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2011.11.09 00:35:03 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Data aplikací\{32364CEA-7855-4A3C-B674-53D8E9B97936}
[2011.11.08 21:44:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\WinZip
[2011.11.08 21:30:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
[2011.11.08 21:30:18 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011.11.08 19:47:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Kaspersky Anti-Virus 2012
[2011.11.08 19:41:17 | 000,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab
[2011.11.08 19:41:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab
[2011.11.08 19:39:50 | 000,565,552 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys
[2011.11.08 19:29:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\TrueCrypt
[2011.11.08 19:26:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\TrueCrypt
[2011.11.08 19:26:33 | 000,231,376 | ---- | C] (TrueCrypt Foundation) -- C:\WINDOWS\System32\drivers\truecrypt.sys
[2011.11.08 19:26:31 | 000,000,000 | ---D | C] -- C:\Program Files\TrueCrypt
[2011.11.08 19:22:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Dokumenty\Downloads
[2011.11.08 19:19:48 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2011.11.08 19:18:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Local Settings\Data aplikací\uTorrent
[2011.11.08 19:18:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\uTorrent
[2011.11.08 18:44:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Macromedia
[2011.11.08 18:44:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Adobe
[2011.11.08 18:44:16 | 000,414,368 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011.11.08 14:40:39 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll
[2011.11.08 14:40:21 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll
[2011.11.08 14:39:35 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys
[2011.11.08 14:39:08 | 000,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys
[2011.11.08 14:38:32 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys
[2011.11.08 14:36:41 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys
[2011.11.08 14:36:38 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2011.11.07 21:56:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Dokumenty\SuperOvladac
[2011.11.07 21:51:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Super Ovladac
[2011.11.07 21:51:08 | 000,000,000 | ---D | C] -- C:\Program Files\Driver-Soft
[2011.11.07 21:46:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Nabídka Start\Programy\Google Chrome
[2011.11.07 21:44:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Google
[2011.11.07 15:12:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Dokumenty\.minecraft
[2011.11.07 14:59:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\.minecraft
[2011.11.07 14:58:57 | 000,695,296 | ---- | C] (AnjoCaido) -- C:\Documents and Settings\Jirka\Plocha\MinecraftSP.exe
[2011.11.07 14:56:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Sun
[2011.11.07 14:56:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011.11.07 14:56:07 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2011.11.07 14:56:07 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011.11.07 14:56:07 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011.11.07 14:56:07 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011.11.07 14:56:07 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2011.11.07 14:55:57 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011.11.07 14:55:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Sun
[2011.11.07 14:54:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Dokumenty\Stažené soubory
[2011.11.07 14:52:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Mozilla
[2011.11.07 14:52:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Mozilla
[2011.11.07 14:52:49 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011.11.07 14:47:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2011.11.07 14:39:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2011.11.07 14:39:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cs
[2011.11.07 14:39:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2011.11.07 14:38:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2011.11.07 14:37:11 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2011.11.07 14:37:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome
[2011.11.07 14:26:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Jirka\IECompatCache
[2011.11.07 14:26:07 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Jirka\PrivacIE
[2011.11.07 14:18:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2011.11.07 14:15:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Dokumenty\Obrázky
[2011.11.07 14:15:43 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Jirka\IETldCache
[2011.11.07 14:09:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2011.11.07 14:09:45 | 000,000,000 | ---D | C] -- C:\Program Files\Seznam.cz
[2011.11.07 14:09:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2011.11.07 14:09:27 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2011.11.07 14:09:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cs-CZ
[2011.11.07 14:08:42 | 000,602,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2011.11.07 14:08:42 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2011.11.07 14:08:40 | 002,000,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2011.11.07 14:08:40 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2011.11.07 14:08:38 | 011,081,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2011.11.07 14:05:24 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2011.11.07 14:05:24 | 000,022,271 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2011.11.07 14:05:24 | 000,011,935 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2011.11.07 14:05:24 | 000,011,871 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2011.11.07 14:05:24 | 000,011,807 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2011.11.07 14:05:24 | 000,011,295 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2011.11.07 14:05:21 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2011.11.07 14:05:21 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2011.11.07 14:05:21 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2011.11.07 14:05:21 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys
[2011.11.07 14:05:21 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2011.11.07 14:05:21 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys
[2011.11.07 14:05:21 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2011.11.07 14:05:20 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2011.11.07 14:05:20 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2011.11.07 14:05:20 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2011.11.07 14:04:58 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys
[2011.11.07 14:04:58 | 000,326,912 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys
[2011.11.07 14:04:58 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys
[2011.11.07 14:04:58 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys
[2011.11.07 14:04:58 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys
[2011.11.07 14:04:58 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys
[2011.11.07 14:04:58 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys
[2011.11.07 14:04:58 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys
[2011.11.07 14:04:58 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys
[2011.11.07 14:04:58 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys
[2011.11.07 14:04:58 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys
[2011.11.07 14:04:58 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys
[2011.11.07 14:04:58 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys
[2011.11.07 14:04:58 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys
[2011.11.07 14:04:58 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys
[2011.11.07 14:04:58 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys
[2011.11.07 14:04:58 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys
[2011.11.07 14:04:58 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys
[2011.11.07 14:04:58 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys
[2011.11.07 14:04:58 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys
[2011.11.07 14:04:58 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys
[2011.11.07 14:04:58 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys
[2011.11.07 13:53:13 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2011.11.07 13:53:07 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys
[2011.11.07 13:52:54 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2011.11.07 13:52:48 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll
[2011.11.07 13:52:48 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll
[2011.11.07 13:52:07 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2011.11.07 13:52:01 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2011.11.07 13:51:48 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2011.11.07 13:51:10 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2011.11.07 13:51:08 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2011.11.07 13:49:57 | 002,194,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2011.11.07 13:49:56 | 002,150,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2011.11.07 13:49:56 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll
[2011.11.07 13:49:54 | 002,029,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2011.11.07 13:43:29 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
[2011.11.07 13:43:13 | 000,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2011.11.07 13:43:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2011.11.07 13:33:29 | 000,289,792 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\idecoi.dll
[2011.11.07 13:33:29 | 000,093,568 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvata.sys
[2011.11.07 13:31:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2011.11.07 13:30:23 | 000,201,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\fdco1ins.dll
[2011.11.07 13:30:21 | 000,009,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\bdco1ins.dll
[2011.11.07 13:30:20 | 000,600,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVUNINST.EXE
[2011.11.07 13:30:20 | 000,453,152 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvusmb.exe
[2011.11.07 13:29:40 | 000,043,008 | ---- | C] (Advanced Micro Devices) -- C:\WINDOWS\System32\drivers\AmdK8.sys
[2011.11.07 13:23:37 | 004,122,368 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\alcxwdm.sys
[2011.11.07 13:23:36 | 000,577,536 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe
[2011.11.07 13:23:33 | 010,528,768 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTLCPL.exe
[2011.11.07 13:23:23 | 018,804,736 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\alsndmgr.cpl
[2011.11.07 13:23:22 | 000,315,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\alcupd.exe
[2011.11.07 13:23:22 | 000,217,088 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\Alcrmv.exe
[2011.11.07 13:23:21 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2011.11.07 12:10:59 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys
[2011.11.07 12:10:59 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys
[2011.11.07 12:10:59 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2011.11.07 12:10:59 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax
[2011.11.07 12:10:59 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2011.11.07 12:10:59 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys
[2011.11.07 12:10:59 | 000,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys
[2011.11.07 12:10:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2011.11.07 12:10:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll
[2011.11.07 12:10:08 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\enum1394.sys
[2011.11.07 12:09:24 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll
[2011.11.07 12:08:20 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2011.11.07 12:08:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2011.11.07 12:08:19 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll
[2011.11.07 12:08:19 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll
[2011.11.07 12:08:18 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll
[2011.11.07 12:08:17 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe
[2011.11.07 12:08:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2011.11.07 12:08:16 | 000,000,000 | R--D | C] -- C:\Program Files
[2011.11.07 12:08:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2011.11.07 12:08:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2011.11.07 12:08:14 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll
[2011.11.07 12:08:14 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll
[2011.11.07 12:08:14 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll
[2011.11.07 12:08:14 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll
[2011.11.07 12:08:14 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll
[2011.11.07 12:08:14 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll
[2011.11.07 12:08:12 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll
[2011.11.07 12:08:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll
[2011.11.07 12:08:10 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll
[2011.11.07 12:08:10 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll
[2011.11.07 12:08:10 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll
[2011.11.07 12:08:10 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll
[2011.11.07 12:08:10 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll
[2011.11.07 12:08:10 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll
[2011.11.07 12:08:10 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll
[2011.11.07 12:08:10 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll
[2011.11.07 12:08:10 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll
[2011.11.07 12:08:10 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll
[2011.11.07 12:08:10 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll
[2011.11.07 12:08:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll
[2011.11.07 12:08:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll
[2011.11.07 12:08:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll
[2011.11.07 12:08:09 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll
[2011.11.07 12:08:09 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll
[2011.11.07 12:08:09 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll
[2011.11.07 12:08:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll
[2011.11.07 12:08:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll
[2011.11.07 12:08:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll
[2011.11.07 12:08:09 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll
[2011.11.07 12:08:09 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll
[2011.11.07 12:08:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll
[2011.11.07 12:08:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL
[2011.11.07 12:08:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll
[2011.11.07 12:08:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll
[2011.11.07 12:08:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll
[2011.11.07 12:08:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll
[2011.11.07 12:08:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll
[2011.11.07 12:08:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll
[2011.11.07 12:08:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll
[2011.11.07 12:08:05 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll
[2011.11.07 12:08:05 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll
[2011.11.07 12:08:05 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll
[2011.11.07 12:08:05 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll
[2011.11.07 12:08:05 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2011.11.07 12:08:05 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2011.11.07 12:08:05 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2011.11.07 12:08:05 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2011.11.07 12:08:04 | 000,127,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL
[2011.11.07 12:08:04 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll
[2011.11.07 12:08:04 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll
[2011.11.07 12:08:04 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL
[2011.11.07 12:08:04 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL
[2011.11.07 12:08:04 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL
[2011.11.07 12:08:04 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV
[2011.11.07 12:08:04 | 000,009,291 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL
[2011.11.07 12:08:04 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL
[2011.11.07 12:08:04 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV
[2011.11.07 12:08:04 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV
[2011.11.07 12:08:04 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV
[2011.11.07 12:08:04 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV
[2011.11.07 12:08:03 | 000,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL
[2011.11.07 12:08:03 | 000,073,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV
[2011.11.07 12:08:03 | 000,070,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL
[2011.11.07 12:08:03 | 000,033,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL
[2011.11.07 12:08:03 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV
[2011.11.07 12:08:03 | 000,025,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV
[2011.11.07 12:08:03 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE
[2011.11.07 12:08:03 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe
[2011.11.07 12:08:03 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL
[2011.11.07 12:08:03 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV
[2011.11.07 12:08:03 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV
[2011.11.07 12:08:03 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK
[2011.11.07 12:08:02 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\winspool.drv
[2011.11.07 12:08:02 | 000,069,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL
[2011.11.07 12:08:02 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll
[2011.11.07 12:08:01 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll
[2011.11.07 12:07:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
[2011.11.07 12:07:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Nabídka Start
[2011.11.07 12:07:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty
[2011.11.07 12:07:54 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Šablony
[2011.11.07 12:07:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Plocha
[2011.11.07 12:07:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Oblíbené položky
[2011.11.07 12:07:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2011.11.07 12:07:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2011.11.07 12:07:38 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Data aplikací\Microsoft
[2011.11.07 12:07:38 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Data aplikací
[2011.11.07 12:07:17 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2011.11.07 12:07:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2011.11.07 12:06:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\NVIDIA Corporation
[2011.11.07 12:06:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\NVIDIA

[2011.11.07 12:06:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2011.11.07 12:06:03 | 017,240,064 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll
[2011.11.07 12:06:03 | 005,595,136 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll
[2011.11.07 12:06:03 | 002,449,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2011.11.07 12:06:03 | 002,398,016 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll
[2011.11.07 12:06:03 | 002,099,520 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll
[2011.11.07 12:06:03 | 000,899,688 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco3220150.dll
[2011.11.07 12:06:03 | 000,865,896 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgenco322090.dll
[2011.11.07 12:06:03 | 000,065,536 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2011.11.07 12:05:49 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2011.11.07 11:59:43 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2011.11.07 11:59:43 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2011.11.07 11:59:43 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2011.11.07 11:59:43 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1029
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2011.11.07 11:59:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2011.11.07 11:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2011.11.07 11:53:08 | 000,485,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvudisp.exe
[2011.11.07 11:53:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview
[2011.11.07 11:52:59 | 000,364,544 | R--- | C] (MSI) -- C:\WINDOWS\System32\msicpl.dll
[2011.11.07 11:52:59 | 000,114,688 | R--- | C] (Crystal Dew World) -- C:\WINDOWS\System32\sysinfo.dll
[2011.11.07 11:52:59 | 000,061,440 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgpio.dll
[2011.11.07 11:52:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2011.11.07 11:49:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Nabídka Start\Programy\XP Codec Pack 2.5.1
[2011.11.07 11:49:10 | 000,000,000 | ---D | C] -- C:\Program Files\XP Codec Pack
[2011.11.07 11:28:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Data aplikací\Identities
[2011.11.07 11:28:03 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2011.11.07 11:28:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Dokumenty\Hudba
[2011.11.07 11:28:00 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Jirka\Data aplikací\Microsoft
[2011.11.07 11:28:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Jirka\Data aplikací
[2011.11.07 11:28:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Dokumenty
[2011.11.07 11:28:00 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Jirka\Cookies
[2011.11.07 11:28:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Jirka\Local Settings
[2011.11.07 11:28:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Local Settings\Data aplikací\Microsoft
[2011.11.07 11:27:59 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Jirka\SendTo
[2011.11.07 11:27:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Nabídka Start\Programy\Příslušenství
[2011.11.07 11:27:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Nabídka Start\Programy\Po spuštění
[2011.11.07 11:27:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Oblíbené položky
[2011.11.07 11:27:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Jirka\Nabídka Start
[2011.11.07 11:27:59 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Jirka\Šablony
[2011.11.07 11:27:59 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Jirka\Okolní tiskárny
[2011.11.07 11:27:59 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Jirka\Okolní síť
[2011.11.07 11:27:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jirka\Plocha
[2011.11.07 11:26:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2011.11.07 11:26:15 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2011.11.07 11:26:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Data aplikací\Microsoft
[2011.11.07 11:26:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Microsoft
[2011.11.07 11:25:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Microsoft