VIRY.CZ

Ahoj, moc bych Vás chtěl poprosit zda mi pomůžete pročistit PC, zamrzá mi chrom při práci na internetu, asi jsem někde nabalil nějaké červotoče

děkuji předem:

Logfile of random's system information tool 1.09 (written by random/random)
Run by tom at 2012-03-26 21:34:07
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 117 GB (77%) free of 153 GB
Total RAM: 2039 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:34:15, on 26.3.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
C:\Program Files\ATKGFNEX\GFNEXSrv.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\acs.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\ATK Hotkey\HcontrolUser.exe
C:\Program Files\ATK Hotkey\Hcontrol.exe
C:\Program Files\ATK Hotkey\MsgTranAgt.exe
C:\Program Files\ATKOSD2\ATKOSD2.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\Atheros\ACU.exe
C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe
C:\Program Files\ATK Hotkey\ATKOSD.exe
C:\Program Files\ASUS\Splendid\ACMON.exe
C:\WINDOWS\ASScrPro.exe
C:\Program Files\ATK Hotkey\KBFiltr.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\ATK Hotkey\WDC.exe
C:\WINDOWS\system32\ACEngSvr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\tom\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\tom\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\tom\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\tom\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\tom\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\tom\Dokumenty\Downloads\RSIT (8).exe
C:\Program Files\trend micro\tom.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://vshare.toolbarhome.com/?hp=df
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 115.127.15.44:3128
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [HControlUser] "C:\Program Files\ATK Hotkey\HcontrolUser.exe"
O4 - HKLM\..\Run: [ATKHOTKEY] "C:\Program Files\ATK Hotkey\Hcontrol.exe"
O4 - HKLM\..\Run: [MsgTranAgt] "C:\Program Files\ATK Hotkey\MsgTranAgt.exe"
O4 - HKLM\..\Run: [ATKOSD2] "C:\Program Files\ATKOSD2\ATKOSD2.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [ACU] "C:\Program Files\Atheros\ACU.exe" -nogui
O4 - HKLM\..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1
O4 - HKLM\..\Run: [ACMON] "C:\Program Files\ASUS\Splendid\ACMON.exe"
O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\WINDOWS\ASScrProlog.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\WINDOWS\ASScrPro.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\tom\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Startup: fliptoast.lnk = C:\Program Files\fliptoast\fliptoast.exe
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D4003189-95B1-4A2F-9A87-F2B03665960D} (VodClient Control Class) - http://www.vexcast.com/download/vexcast.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Konfigurační služba Atheros (ACS) - Atheros - C:\WINDOWS\system32\acs.exe
O23 - Service: ADSM Service (ADSMService) - Unknown owner - C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe

--
End of file - 7147 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-117609710-1682526488-839522115-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-117609710-1682526488-839522115-1003UA.job
C:\WINDOWS\tasks\RMSchedule.job
C:\WINDOWS\tasks\WGASetup.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\tom\Data aplikací\Mozilla\Firefox\Profiles\obdu8w24.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://vshare.toolbarhome.com/?hp=df"
prefs.js - "keyword.URL" - "http://search.icq.com/search/afe_result ... r=1.3.1&q="

"{ABDE892B-13A8-4d1b-88E6-365A6E755758}"=C:\Program Files\Real\RealPlayer\browserrecord\firefox\ext
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.0.60129.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=1.0.3.448]
"Description"=RealJukebox Netscape Plugin
"Path"=C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448]
"Description"=6.0.12.448
"Path"=C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@veetle.com/vbp;version=0.9.17]
"Description"=Veetle Broadcaster Plugin
"Path"=C:\Program Files\Veetle\VLCBroadcast\npvbp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18]
"Description"=Veetle TV Core
"Path"=C:\Program Files\Veetle\plugins\npVeetle.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18]
"Description"=Veetle TV Player
"Path"=C:\Program Files\Veetle\Player\npvlc.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\tom\Data aplikací\Mozilla\Firefox\Profiles\obdu8w24.default\extensions\
vshare@toolbar
{800b5000-a755-47e1-992b-48a1c1357f07}
{ea614400-e918-4741-9a97-7a972ff7c30b}

C:\Documents and Settings\tom\Data aplikací\Mozilla\Firefox\Profiles\obdu8w24.default\searchplugins\
icqplugin-1.xml
icqplugin-2.xml
icqplugin.gif
icqplugin.src
icqplugin.xml
web-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2011-05-27 61888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2010-02-08 329312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-03-07 1003704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-06-30 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-06-30 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-03-07 1003704]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-03-21 141848]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-03-21 166424]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-03-21 137752]
"HControlUser"=C:\Program Files\ATK Hotkey\HcontrolUser.exe [2008-01-11 98304]
"ATKHOTKEY"=C:\Program Files\ATK Hotkey\Hcontrol.exe [2008-02-01 233472]
"MsgTranAgt"=C:\Program Files\ATK Hotkey\MsgTranAgt.exe [2007-11-04 106496]
"ATKOSD2"=C:\Program Files\ATKOSD2\ATKOSD2.exe [2008-01-23 7766016]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-11-15 1024000]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-04-09 16861184]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-02 69632]
"SMSERIAL"=C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2006-11-21 630784]
"ACU"=C:\Program Files\Atheros\ACU.exe [2008-04-09 450648]
"Power_Gear"=C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe [2006-07-26 90112]
"ACMON"=C:\Program Files\ASUS\Splendid\ACMON.exe [2008-01-15 851968]
"ASUS Camera ScreenSaver"=C:\WINDOWS\ASScrProlog.exe [2009-12-02 37232]
"ASUS Screen Saver Protector"=C:\WINDOWS\ASScrPro.exe [2009-12-02 33136]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2010-02-08 198160]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-03-07 4241512]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=C:\Documents and Settings\tom\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2009-12-02 135664]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

C:\Documents and Settings\tom\Nabídka Start\Programy\Po spuštění
fliptoast.lnk - C:\Program Files\fliptoast\fliptoast.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-03-17 208896]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Real\RealPlayer\realplay.exe"="C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealPlayer"
"C:\Documents and Settings\tom\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe"="C:\Documents and Settings\tom\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"C:\Documents and Settings\tom\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe"="C:\Documents and Settings\tom\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll

======List of files/folders created in the last 1 month======

2012-03-26 02:20:22 ----A---- C:\WINDOWS\system32\acovcnt.exe
2012-03-14 18:28:11 ----A---- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2012-03-14 18:28:10 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2012-03-14 18:28:06 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2012-03-14 18:28:05 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2012-03-14 18:28:05 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2012-03-14 18:28:04 ----A---- C:\WINDOWS\system32\drivers\aswmon2.sys
2012-03-14 18:28:04 ----A---- C:\WINDOWS\system32\drivers\aswmon.sys
2012-03-14 18:28:03 ----A---- C:\WINDOWS\system32\drivers\aavmker4.sys
2012-03-14 18:27:34 ----A---- C:\WINDOWS\system32\aswBoot.exe
2012-03-14 18:21:48 ----D---- C:\WINDOWS\pss
2012-03-13 21:21:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2641653$
2012-03-13 21:19:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2621440$
2012-03-13 21:19:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2647518$
2012-03-09 17:22:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2012-03-09 17:22:16 ----D---- C:\WINDOWS\ie8updates
2012-03-09 17:21:42 ----D---- C:\WINDOWS\WBEM
2012-03-09 17:20:00 ----HDC---- C:\WINDOWS\ie8
2012-03-09 17:16:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2012-03-09 17:16:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2012-03-09 17:16:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2012-03-09 17:15:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2012-03-09 17:15:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893-v2$
2012-03-09 17:15:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2012-03-09 17:15:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2012-03-09 17:15:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2646524$
2012-03-09 17:15:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$
2012-03-09 17:14:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2631813$
2012-03-09 17:14:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2012-03-09 17:14:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2012-03-09 17:14:29 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2012-03-09 17:14:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2012-03-09 17:14:15 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2012-03-09 17:14:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2012-03-09 17:13:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2012-03-09 17:13:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2012-03-09 17:13:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2598479$
2012-03-09 17:13:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2012-03-09 17:13:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2660465$
2012-03-09 17:13:09 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2012-03-09 17:12:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2012-03-09 17:12:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2510581$
2012-03-09 17:12:36 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2012-03-09 17:12:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2476490$
2012-03-09 17:12:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2012-03-09 17:12:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2641690$
2012-03-09 17:11:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2012-03-09 17:11:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2012-03-09 17:11:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2624667$
2012-03-09 17:11:21 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2012-03-09 17:11:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2592799$
2012-03-09 17:11:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2570222$
2012-03-09 17:10:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2012-03-09 17:10:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2412687$
2012-03-09 17:10:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2647516$
2012-03-09 17:10:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2570947$
2012-03-09 17:10:05 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2012-03-09 17:09:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2507618$
2012-03-09 17:09:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2603381$
2012-03-09 17:09:31 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2012-03-09 17:09:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2012-03-09 17:09:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2012-03-09 17:08:56 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2012-03-09 17:08:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2012-03-09 17:08:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2633952$
2012-03-09 17:08:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2619339$
2012-03-09 17:08:19 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2012-03-09 17:08:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2618451$
2012-03-09 17:07:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2012-03-09 17:07:50 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2012-03-09 17:07:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2544521$
2012-03-09 17:07:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2012-03-09 17:07:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2012-03-09 17:07:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2620712$
2012-03-09 17:07:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2012-03-09 17:06:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2661637$
2012-03-09 17:06:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2584146$
2012-03-09 17:06:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2633171$
2012-03-09 17:06:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2012-03-09 17:06:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2012-03-09 15:06:37 ----N---- C:\WINDOWS\system32\iacenc.dll
2012-03-09 03:44:16 ----D---- C:\WINDOWS\Prefetch
2012-03-09 03:16:15 ----HDC---- C:\WINDOWS\$NtUninstallKB982381$
2012-03-09 03:15:55 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2012-03-09 03:15:38 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2012-03-09 03:15:15 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2012-03-09 03:14:55 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2012-03-09 03:14:38 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2012-03-09 03:14:25 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2012-03-09 03:14:09 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2012-03-09 03:13:52 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2012-03-09 03:13:34 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2012-03-09 03:13:16 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2012-03-09 03:13:02 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2012-03-09 03:12:46 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2012-03-09 03:12:26 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2012-03-09 03:12:09 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2012-03-09 03:11:50 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2012-03-09 03:11:33 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2012-03-09 03:11:12 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2012-03-09 03:10:57 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2012-03-09 03:10:43 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2012-03-09 03:10:29 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2012-03-09 03:10:10 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2012-03-09 03:09:54 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2012-03-09 03:09:37 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2012-03-09 03:09:21 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2012-03-09 03:09:08 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2012-03-09 03:08:54 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2012-03-09 03:08:37 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2012-03-09 03:08:24 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2012-03-09 03:08:08 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2012-03-09 03:07:26 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2012-03-09 03:07:06 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2012-03-09 03:06:48 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2012-03-09 03:06:27 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2012-03-09 03:06:15 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2012-03-09 03:06:02 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2012-03-09 03:05:49 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2012-03-09 03:05:36 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2012-03-09 03:05:23 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2012-03-09 03:05:12 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2012-03-09 03:05:00 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2012-03-09 03:04:45 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2012-03-09 03:04:20 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2012-03-09 03:04:02 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2012-03-09 03:03:48 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_1$
2012-03-09 03:03:35 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2012-03-09 03:03:22 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2012-03-09 03:03:09 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2012-03-09 03:02:52 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2012-03-09 03:02:37 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2012-03-09 03:02:25 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2012-03-09 03:02:13 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2012-03-09 03:02:00 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2012-03-09 03:01:48 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2012-03-09 03:01:34 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2012-03-09 03:01:20 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2012-03-09 02:54:15 ----D---- C:\WINDOWS\l2schemas
2012-03-09 02:54:14 ----D---- C:\WINDOWS\system32\cs
2012-03-09 02:54:14 ----D---- C:\WINDOWS\system32\bits
2012-03-09 02:47:35 ----D---- C:\WINDOWS\network diagnostic
2012-03-09 02:40:05 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2012-03-04 17:17:28 ----A---- C:\WINDOWS\system32\xmllite.dll
2012-03-04 17:17:24 ----N---- C:\WINDOWS\system32\wmphoto.dll
2012-03-04 17:17:17 ----N---- C:\WINDOWS\system32\wlanapi.dll
2012-03-04 17:17:14 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2012-03-04 17:17:14 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2012-03-04 17:17:12 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2012-03-04 17:17:12 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2012-03-04 17:17:12 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2012-03-04 17:17:12 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2012-03-04 17:17:12 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2012-03-04 17:17:12 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2012-03-04 17:17:11 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2012-03-04 17:17:10 ----N---- C:\WINDOWS\system32\verclsid.exe
2012-03-04 17:17:10 ----N---- C:\WINDOWS\system32\drivers\viaagp.sys
2012-03-04 17:17:10 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2012-03-04 17:17:08 ----N---- C:\WINDOWS\system32\drivers\usbvideo.sys
2012-03-04 17:17:08 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2012-03-04 17:17:03 ----N---- C:\WINDOWS\system32\drivers\uagp35.sys
2012-03-04 17:17:02 ----N---- C:\WINDOWS\system32\tspkg.dll
2012-03-04 17:17:02 ----N---- C:\WINDOWS\system32\tsgqec.dll
2012-03-04 17:16:54 ----N---- C:\WINDOWS\system32\spupdwxp.exe
2012-03-04 17:16:53 ----A---- C:\WINDOWS\system32\spdwnwxp.exe
2012-03-04 17:16:51 ----N---- C:\WINDOWS\system32\slserv.exe
2012-03-04 17:16:51 ----N---- C:\WINDOWS\system32\slrundll.exe
2012-03-04 17:16:51 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2012-03-04 17:16:51 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2012-03-04 17:16:51 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2012-03-04 17:16:51 ----N---- C:\WINDOWS\slrundll.exe
2012-03-04 17:16:50 ----N---- C:\WINDOWS\system32\slgen.dll
2012-03-04 17:16:50 ----N---- C:\WINDOWS\system32\slextspk.dll
2012-03-04 17:16:50 ----N---- C:\WINDOWS\system32\slcoinst.dll
2012-03-04 17:16:50 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2012-03-04 17:16:50 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2012-03-04 17:16:50 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2012-03-04 17:16:50 ----N---- C:\WINDOWS\system32\drivers\siint5.dll
2012-03-04 17:16:47 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2012-03-04 17:16:46 ----N---- C:\WINDOWS\system32\setupn.exe
2012-03-04 17:16:43 ----N---- C:\WINDOWS\system32\s3gnb.dll
2012-03-04 17:16:43 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2012-03-04 17:16:42 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2012-03-04 17:16:42 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2012-03-04 17:16:42 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2012-03-04 17:16:42 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2012-03-04 17:16:41 ----N---- C:\WINDOWS\system32\rasqec.dll
2012-03-04 17:16:40 ----N---- C:\WINDOWS\system32\qutil.dll
2012-03-04 17:16:39 ----N---- C:\WINDOWS\system32\qcliprov.dll
2012-03-04 17:16:39 ----N---- C:\WINDOWS\system32\qagentrt.dll
2012-03-04 17:16:39 ----N---- C:\WINDOWS\system32\qagent.dll
2012-03-04 17:16:36 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2012-03-04 17:16:33 ----N---- C:\WINDOWS\system32\onex.dll
2012-03-04 17:16:30 ----N---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2012-03-04 17:16:29 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2012-03-04 17:16:27 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2012-03-04 17:16:19 ----N---- C:\WINDOWS\system32\napstat.exe
2012-03-04 17:16:19 ----N---- C:\WINDOWS\system32\napmontr.dll
2012-03-04 17:16:19 ----N---- C:\WINDOWS\system32\napipsec.dll
2012-03-04 17:16:19 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2012-03-04 17:16:19 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2012-03-04 17:16:19 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2012-03-04 17:16:18 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2012-03-04 17:16:18 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2012-03-04 17:16:14 ----N---- C:\WINDOWS\system32\msxml6r.dll
2012-03-04 17:16:14 ----N---- C:\WINDOWS\system32\msxml6.dll
2012-03-04 17:16:13 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2012-03-04 17:16:13 ----N---- C:\WINDOWS\system32\mssha.dll
2012-03-04 17:15:57 ----N---- C:\WINDOWS\system32\mmcperf.exe
2012-03-04 17:15:57 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2012-03-04 17:15:56 ----N---- C:\WINDOWS\system32\mmcex.dll
2012-03-04 17:15:56 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2012-03-04 17:15:54 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2012-03-04 17:15:54 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2012-03-04 17:15:39 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2012-03-04 17:15:39 ----N---- C:\WINDOWS\system32\kmsvc.dll
2012-03-04 17:15:38 ----N---- C:\WINDOWS\system32\kbdpash.dll
2012-03-04 17:15:38 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2012-03-04 17:15:38 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2012-03-04 17:15:38 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2012-03-04 17:15:32 ----N---- C:\WINDOWS\system32\smtpapi.dll
2012-03-04 17:15:32 ----N---- C:\WINDOWS\system32\rwnh.dll
2012-03-04 17:15:29 ----N---- C:\WINDOWS\system32\drivers\irbus.sys
2012-03-04 17:15:28 ----N---- C:\WINDOWS\system32\comsdupd.exe
2012-03-04 17:15:23 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2012-03-04 17:15:23 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2012-03-04 17:15:23 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2012-03-04 17:15:23 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2012-03-04 17:15:23 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2012-03-04 17:15:23 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2012-03-04 17:15:21 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2012-03-04 17:15:17 ----N---- C:\WINDOWS\system32\faxpatch.exe
2012-03-04 17:15:17 ----A---- C:\WINDOWS\002720_.tmp
2012-03-04 17:15:12 ----N---- C:\WINDOWS\system32\eapsvc.dll
2012-03-04 17:15:12 ----N---- C:\WINDOWS\system32\eapqec.dll
2012-03-04 17:15:12 ----N---- C:\WINDOWS\system32\eappprxy.dll
2012-03-04 17:15:12 ----N---- C:\WINDOWS\system32\eapphost.dll
2012-03-04 17:15:12 ----N---- C:\WINDOWS\system32\eappgnui.dll
2012-03-04 17:15:12 ----N---- C:\WINDOWS\system32\eappcfg.dll
2012-03-04 17:15:11 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2012-03-04 17:15:11 ----N---- C:\WINDOWS\system32\eapolqec.dll
2012-03-04 17:14:57 ----N---- C:\WINDOWS\system32\dot3ui.dll
2012-03-04 17:14:57 ----N---- C:\WINDOWS\system32\dot3svc.dll
2012-03-04 17:14:57 ----N---- C:\WINDOWS\system32\dot3msm.dll
2012-03-04 17:14:57 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2012-03-04 17:14:57 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2012-03-04 17:14:57 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2012-03-04 17:14:56 ----N---- C:\WINDOWS\system32\dot3api.dll
2012-03-04 17:14:55 ----N---- C:\WINDOWS\system32\dimsroam.dll
2012-03-04 17:14:55 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2012-03-04 17:14:55 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2012-03-04 17:14:51 ----N---- C:\WINDOWS\system32\credssp.dll
2012-03-04 17:14:41 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2012-03-04 17:14:30 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2012-03-04 17:14:30 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2012-03-04 17:14:27 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2012-03-04 17:14:27 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2012-03-04 17:14:27 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2012-03-04 17:14:26 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2012-03-04 17:14:26 ----N---- C:\WINDOWS\system32\azroles.dll
2012-03-04 17:14:25 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2012-03-04 17:14:25 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2012-03-04 17:14:25 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2012-03-04 17:14:25 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2012-03-04 17:14:25 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2012-03-04 17:14:24 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2012-03-04 17:14:24 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2012-03-04 17:14:24 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2012-03-04 17:14:24 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2012-03-04 17:14:24 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2012-03-04 17:14:24 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2012-03-04 17:14:24 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2012-03-04 17:14:24 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2012-03-04 17:14:24 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2012-03-04 17:14:24 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2012-03-04 17:14:24 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2012-03-04 17:14:24 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2012-03-04 17:14:24 ----N---- C:\WINDOWS\system32\ati3duag.dll
2012-03-04 17:14:23 ----N---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2012-03-04 17:14:23 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2012-03-04 17:14:23 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2012-03-04 17:14:23 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2012-03-04 17:14:23 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2012-03-04 17:14:23 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2012-03-04 17:14:23 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2012-03-04 17:14:23 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2012-03-04 17:14:23 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2012-03-04 17:14:23 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2012-03-04 17:14:23 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2012-03-04 17:14:23 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2012-03-04 17:14:23 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2012-03-04 17:14:23 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2012-03-04 17:14:23 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2012-03-04 17:14:22 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2012-03-04 17:14:15 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2012-03-04 17:14:15 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2012-03-04 17:14:11 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2012-03-04 17:14:11 ----N---- C:\WINDOWS\system32\drivers\agp440.sys
2012-03-04 17:14:11 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2012-03-04 17:14:11 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2012-03-04 17:14:11 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2012-03-04 17:14:11 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2012-03-04 17:14:11 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2012-03-04 17:14:11 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2012-03-04 17:14:10 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2012-03-04 17:14:09 ----N---- C:\WINDOWS\system32\aaclient.dll
2012-03-02 03:24:09 ----A---- C:\WINDOWS\system32\MRT.exe
2012-03-02 03:22:01 ----HDC---- C:\WINDOWS\$NtUninstallKB975467_1$
2012-03-02 03:21:52 ----HDC---- C:\WINDOWS\$NtUninstallKB968389_1$
2012-03-02 03:05:41 ----N---- C:\WINDOWS\system32\tzchange.exe
2012-03-02 03:05:14 ----N---- C:\WINDOWS\system32\browserchoice.exe
2012-03-02 03:03:34 ----D---- C:\WINDOWS\system32\PreInstall
2012-03-02 02:43:37 ----D---- C:\Documents and Settings\tom\Data aplikací\Opera
2012-03-02 02:43:26 ----D---- C:\Program Files\Opera
2012-03-02 02:29:46 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2012-03-02 02:27:57 ----A---- C:\WINDOWS\system32\xpsp4res.dll
2012-03-02 02:27:56 ----A---- C:\WINDOWS\system32\xpsp3res.dll
2012-03-02 01:29:25 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2012-02-29 14:20:43 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$(3)
2012-02-29 14:20:02 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$(3)
2012-02-27 18:37:01 ----D---- C:\Program Files\Google

======List of files/folders modified in the last 1 month======

2012-03-26 21:34:12 ----D---- C:\Program Files\trend micro
2012-03-26 21:21:41 ----D---- C:\WINDOWS\Temp
2012-03-26 21:09:12 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-03-26 21:07:14 ----D---- C:\WINDOWS\system32
2012-03-26 21:06:41 ----D---- C:\WINDOWS
2012-03-25 19:33:15 ----D---- C:\Program Files\PokerStars
2012-03-24 06:38:14 ----RD---- C:\Program Files
2012-03-23 23:25:06 ----D---- C:\Config.Msi
2012-03-23 15:38:15 ----SHD---- C:\WINDOWS\Installer
2012-03-23 15:38:09 ----D---- C:\Documents and Settings\tom\Data aplikací\Mozilla
2012-03-14 18:35:41 ----D---- C:\WINDOWS\Debug
2012-03-14 18:28:11 ----D---- C:\WINDOWS\system32\drivers
2012-03-14 18:27:57 ----D---- C:\WINDOWS\WinSxS
2012-03-14 18:27:09 ----D---- C:\Program Files\AVAST Software
2012-03-14 18:27:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2012-03-14 18:10:19 ----D---- C:\Documents and Settings
2012-03-13 21:21:50 ----HD---- C:\WINDOWS\inf
2012-03-13 21:21:49 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-03-13 21:21:45 ----D---- C:\WINDOWS\$hf_mig$
2012-03-13 21:17:47 ----D---- C:\WINDOWS\system32\CatRoot2
2012-03-09 21:25:22 ----D---- C:\WINDOWS\system32\cs-cz
2012-03-09 21:25:21 ----D---- C:\WINDOWS\Media
2012-03-09 21:25:21 ----D---- C:\WINDOWS\Help
2012-03-09 21:25:21 ----D---- C:\Program Files\Internet Explorer
2012-03-09 17:13:05 ----D---- C:\WINDOWS\system32\CatRoot
2012-03-09 17:08:20 ----D---- C:\Program Files\Movie Maker
2012-03-09 17:06:27 ----D---- C:\Program Files\Outlook Express
2012-03-09 10:00:58 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2012-03-09 03:43:23 ----D---- C:\WINDOWS\system32\Setup
2012-03-09 03:43:23 ----D---- C:\WINDOWS\AppPatch
2012-03-09 03:43:22 ----D---- C:\WINDOWS\system32\wbem
2012-03-09 03:43:20 ----RSD---- C:\WINDOWS\Fonts
2012-03-09 03:42:40 ----D---- C:\WINDOWS\security
2012-03-09 03:01:51 ----D---- C:\Program Files\Messenger
2012-03-09 02:54:56 ----D---- C:\Program Files\Windows Media Player
2012-03-09 02:54:37 ----D---- C:\WINDOWS\ehome
2012-03-09 02:54:35 ----D---- C:\WINDOWS\system32\inetsrv
2012-03-09 02:54:34 ----D---- C:\WINDOWS\ime
2012-03-09 02:54:16 ----D---- C:\WINDOWS\system32\usmt
2012-03-09 02:54:14 ----D---- C:\WINDOWS\PeerNet
2012-03-09 02:51:13 ----D---- C:\WINDOWS\ServicePackFiles
2012-03-09 02:51:00 ----D---- C:\WINDOWS\system32\Restore
2012-03-09 02:51:00 ----D---- C:\WINDOWS\system32\npp
2012-03-09 02:50:57 ----D---- C:\WINDOWS\msagent
2012-03-09 02:50:56 ----D---- C:\WINDOWS\srchasst
2012-03-09 02:50:54 ----D---- C:\Program Files\NetMeeting
2012-03-09 02:50:52 ----D---- C:\WINDOWS\system32\Com
2012-03-09 02:50:48 ----D---- C:\Program Files\Windows NT
2012-03-09 02:50:42 ----D---- C:\Program Files\Common Files\System
2012-03-09 02:50:13 ----D---- C:\WINDOWS\system32\oobe
2012-03-09 02:50:09 ----D---- C:\WINDOWS\system
2012-03-09 02:44:34 ----D---- C:\WINDOWS\system32\ReinstallBackups
2012-03-02 20:47:41 ----HDC---- C:\WINDOWS\$NtUninstallKB970430_0$
2012-03-02 20:47:29 ----HDC---- C:\WINDOWS\$NtUninstallKB971737_0$
2012-03-02 05:29:45 ----D---- C:\WINDOWS\SoftwareDistribution
2012-03-02 03:45:39 ----D---- C:\WINDOWS\Minidump
2012-03-02 03:27:26 ----HDC---- C:\WINDOWS\$NtUninstallKB980218_0$
2012-03-02 03:27:16 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$
2012-03-02 03:27:08 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$
2012-03-02 03:26:59 ----HDC---- C:\WINDOWS\$NtUninstallKB959426_0$
2012-03-02 03:26:50 ----HDC---- C:\WINDOWS\$NtUninstallKB946648_0$
2012-03-02 03:26:42 ----HDC---- C:\WINDOWS\$NtUninstallKB956803_0$
2012-03-02 03:26:32 ----HDC---- C:\WINDOWS\$NtUninstallKB960859_0$
2012-03-02 03:26:23 ----HDC---- C:\WINDOWS\$NtUninstallKB971468_0$
2012-03-02 03:26:09 ----HDC---- C:\WINDOWS\$NtUninstallKB979683_0$
2012-03-02 03:25:58 ----HDC---- C:\WINDOWS\$NtUninstallKB935448$
2012-03-02 03:25:43 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2012-03-02 03:23:59 ----HDC---- C:\WINDOWS\$NtUninstallKB980232_0$
2012-03-02 03:23:51 ----HDC---- C:\WINDOWS\$NtUninstallKB981350$
2012-03-02 03:23:40 ----HDC---- C:\WINDOWS\$NtUninstallKB955759_0$
2012-03-02 03:23:35 ----SD---- C:\WINDOWS\Tasks
2012-03-02 03:23:35 ----D---- C:\WINDOWS\system32\KB905474
2012-03-02 03:23:26 ----HDC---- C:\WINDOWS\$NtUninstallKB974318_0$
2012-03-02 03:23:16 ----HDC---- C:\WINDOWS\$NtUninstallKB969059_0$
2012-03-02 03:23:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593_0$
2012-03-02 03:22:56 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$
2012-03-02 03:22:47 ----HDC---- C:\WINDOWS\$NtUninstallKB978037_0$
2012-03-02 03:22:37 ----HDC---- C:\WINDOWS\$NtUninstallKB971657_0$
2012-03-02 03:22:29 ----HDC---- C:\WINDOWS\$NtUninstallKB978338_0$
2012-03-02 03:22:20 ----HDC---- C:\WINDOWS\$NtUninstallKB972270_0$
2012-03-02 03:22:11 ----HDC---- C:\WINDOWS\$NtUninstallKB974112_0$
2012-03-02 03:21:32 ----HDC---- C:\WINDOWS\$NtUninstallKB956572_0$
2012-03-02 03:21:20 ----HDC---- C:\WINDOWS\$NtUninstallKB956844_0$
2012-03-02 03:21:13 ----HDC---- C:\WINDOWS\$NtUninstallKB961501_0$
2012-03-02 03:20:58 ----HDC---- C:\WINDOWS\$NtUninstallKB975561_0$
2012-03-02 03:20:46 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2012-03-02 03:20:38 ----HDC---- C:\WINDOWS\$NtUninstallKB973869_0$
2012-03-02 03:20:28 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$
2012-03-02 03:20:16 ----HDC---- C:\WINDOWS\$NtUninstallKB952004_0$
2012-03-02 03:20:07 ----HDC---- C:\WINDOWS\$NtUninstallKB974571_0$
2012-03-02 03:19:57 ----HDC---- C:\WINDOWS\$NtUninstallKB975560_0$
2012-03-02 03:14:29 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2012-03-02 03:14:22 ----HDC---- C:\WINDOWS\$NtUninstallKB973507_0$
2012-03-02 03:14:13 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2012-03-02 03:14:04 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_0$
2012-03-02 03:13:55 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$
2012-03-02 03:13:49 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2012-03-02 03:13:36 ----HDC---- C:\WINDOWS\$NtUninstallKB978601_0$
2012-03-02 03:13:28 ----HDC---- C:\WINDOWS\$NtUninstallKB979559_0$
2012-03-02 03:13:21 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$
2012-03-02 03:13:10 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2012-03-02 03:12:53 ----HDC---- C:\WINDOWS\$NtUninstallKB967715_0$
2012-03-02 03:12:45 ----HDC---- C:\WINDOWS\$NtUninstallKB974392_0$
2012-03-02 03:12:32 ----HDC---- C:\WINDOWS\$NtUninstallKB977914_0$
2012-03-02 03:12:19 ----HDC---- C:\WINDOWS\$NtUninstallKB951748_0$
2012-03-02 03:12:12 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2012-03-02 03:12:01 ----HDC---- C:\WINDOWS\$NtUninstallKB978542_0$
2012-03-02 03:11:53 ----HDC---- C:\WINDOWS\$NtUninstallKB970238_0$
2012-03-02 03:11:45 ----HDC---- C:\WINDOWS\$NtUninstallKB979309_0$
2012-03-02 03:11:39 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2012-03-02 03:11:32 ----HDC---- C:\WINDOWS\$NtUninstallKB979482_0$
2012-03-02 03:11:23 ----HDC---- C:\WINDOWS\$NtUninstallKB978706_0$
2012-03-02 03:11:09 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$
2012-03-02 03:11:00 ----HDC---- C:\WINDOWS\$NtUninstallKB960803_0$
2012-03-02 03:10:51 ----HDC---- C:\WINDOWS\$NtUninstallKB973815_0$
2012-03-02 03:10:42 ----HDC---- C:\WINDOWS\$NtUninstallKB975562_0$
2012-03-02 03:10:26 ----HDC---- C:\WINDOWS\$NtUninstallKB971032$
2012-03-02 03:10:16 ----HDC---- C:\WINDOWS\$NtUninstallKB958644_0$
2012-03-02 03:10:06 ----HDC---- C:\WINDOWS\$NtUninstallKB955069_0$
2012-03-02 03:09:56 ----HDC---- C:\WINDOWS\$NtUninstallKB979402_WM9L$
2012-03-02 03:09:46 ----HDC---- C:\WINDOWS\$NtUninstallKB956802_0$
2012-03-02 03:09:25 ----HDC---- C:\WINDOWS\$NtUninstallKB982381_0$
2012-03-02 03:09:12 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
2012-03-02 03:09:02 ----HDC---- C:\WINDOWS\$NtUninstallKB923561_0$
2012-03-02 03:08:53 ----HDC---- C:\WINDOWS\$NtUninstallKB975467_0$
2012-03-02 03:08:40 ----HDC---- C:\WINDOWS\$NtUninstallKB968389_0$
2012-03-02 03:03:31 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2012-03-02 01:25:16 ----D---- C:\WINDOWS\system32\config
2012-03-02 01:25:03 ----D---- C:\WINDOWS\Registration
2012-02-29 14:21:31 ----DC---- C:\WINDOWS\$NtUninstallKB960225$

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AsDsm;AsDsm; C:\WINDOWS\system32\drivers\AsDsm.sys [2007-08-10 29752]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-04-27 45648]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-03-07 24920]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2012-03-07 35672]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-03-07 612184]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-03-07 337880]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-03-07 53848]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R2 ASMMAP;ASMMAP; \??\C:\Program Files\ATKGFNEX\ASMMAP.sys []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-03-07 20696]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-03-07 95704]
R2 ghaio;ghaio; \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys []
R2 rimmptsk;rimmptsk; C:\WINDOWS\system32\DRIVERS\rimmptsk.sys [2007-08-08 45568]
R2 rimsptsk;rimsptsk; C:\WINDOWS\system32\DRIVERS\rimsptsk.sys [2007-07-30 43008]
R3 AR5416;Atheros AR5008 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athw.sys [2008-04-08 1309504]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-03-17 5955872]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-04-16 4707328]
R3 kbfiltr;Keyboard Filter; C:\WINDOWS\system32\DRIVERS\kbfiltr.sys [2007-01-23 5632]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ATKACPI.sys [2006-12-17 7680]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2007-07-12 96384]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
R3 smserial;smserial; C:\WINDOWS\system32\DRIVERS\smserial.sys [2006-11-21 982272]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2007-11-15 219136]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 WSIMD;wsimd Service; C:\WINDOWS\system32\DRIVERS\wsimd.sys [2008-02-08 57408]
S3 ASUSProcObsrv;ASUS Process Creation/Termination Observer; \??\C:\Documents and Settings\tom\Plocha\ASUS\I386\AsProcOb.sys []
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACS;Konfigurační služba Atheros; C:\WINDOWS\system32\acs.exe [2008-04-09 467028]
R2 ADSMService;ADSM Service; C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe [2007-05-18 73728]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-08-08 94208]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-03-07 44768]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-06-30 153376]
R2 spmgr;spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [2007-08-03 125496]
S2 vvdsvc;VJVodClientServices; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------

Zdravim a pekny vecer preji

Stahnete RKill http://download.bleepingcomputer.com/grinler/rkill.com

Pokud ho havet blokuje, pouzijte jeden z nasledujicich
motji píše: Rkill EXE:
http://download.bleepingcomputer.com/grinler/rkill.exe

Rkill SCR:
http://download.bleepingcomputer.com/grinler/rkill.scr

Rkill PIF:
http://download.bleepingcomputer.com/grinler/rkill.pif
Ulozte nejlepena plochu a ukoncete vsechny aplikace (jinak to udela RKill za Vas)
Spustte tradicne dvojklikem - program probehne temer okamzite a ukonci i svou cinnost
RKill ukonci vsechny ne-systemove procesy - tedy i procesy, pod kterymi bezi havet
Ted nerestartujte PC - prisli byste o ucinek RKillu

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK

Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
Pokud mate Win XP spustte pod uctem Spravce\Administratora
Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

PS: trvalo to asi 6 minut, kolik chcete za pomoc zaplatit, je to vše, co tam vidíte, je to OK?

ComboFix 12-03-26.02 - tom 26.03.2012 21:55:07.1.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2039.1451 [GMT 2:00]
Spuštěný z: c:\documents and settings\tom\Dokumenty\Downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\favoritevideo\InvisibleFolder
c:\favoritevideo\InvisibleFolder\20100423150458_zhaopin100423jiao15s.gif
c:\favoritevideo\InvisibleFolder\20100520155321_kuainan100520cha15s.swf
c:\favoritevideo\InvisibleFolder\20100610144608_ppliveshijiebei100610zhu15s.swf
c:\favoritevideo\InvisibleFolder\20100610145021_pplivenvziwangqiu100610zhu15s.swf
c:\favoritevideo\InvisibleFolder\20100624181647_nvziwangqiu100624zhu5s.swf
c:\favoritevideo\InvisibleFolder\20100628181546_tengfei100628zanting15s.swf
c:\favoritevideo\InvisibleFolder\20100630164735_tongyi100701zanting15s1.swf
c:\favoritevideo\InvisibleFolder\20100630165227_tongyi100701cha15s1.swf
c:\favoritevideo\InvisibleFolder\20100701120334_fengtian100701qipao15s2.swf
c:\favoritevideo\InvisibleFolder\20100708201519_tongyilvcha100708zhu15s.swf
c:\favoritevideo\InvisibleFolder\20100712180820_huiyuan100712zanting15s.jpg
c:\favoritevideo\InvisibleFolder\20100713144425_lvshou100714zanting15s.swf
c:\favoritevideo\InvisibleFolder\20100714143449_kangshifu100714zhu15s.swf
c:\favoritevideo\InvisibleFolder\20100714155319_kuowang100714zanting15s.swf
c:\favoritevideo\InvisibleFolder\20100714155650_kuowang100714zhu15s.swf
c:\favoritevideo\InvisibleFolder\20100722191959_WCG100722zhu15s1.swf
c:\favoritevideo\InvisibleFolder\20100723105912_kuowang100723zhu15s.swf
c:\favoritevideo\InvisibleFolder\20100723110000_kuowang100723zhu5s.swf
c:\favoritevideo\InvisibleFolder\20100723110043_kuowang100723zanting15s.swf
c:\favoritevideo\InvisibleFolder\20100723111826_jinglun100723cha15s.swf
c:\favoritevideo\InvisibleFolder\20100727172633_tongyi100801zhu15s.swf
c:\favoritevideo\InvisibleFolder\20100727173243_tongyi100801zanting15s.swf
c:\favoritevideo\InvisibleFolder\20100727173346_tongyi100801cha15s.swf
c:\favoritevideo\InvisibleFolder\20100802144158_qiaohu100802zanting15s.swf
c:\favoritevideo\InvisibleFolder\20100802145752_kadang100802cha15s.swf
c:\favoritevideo\InvisibleFolder\20100803173823_shijijiayuan100804zhu15s.swf
c:\favoritevideo\InvisibleFolder\20100803185733_pptvhuiyuan100803zhu15s.swf
c:\favoritevideo\InvisibleFolder\20100803190258_shijijiayuan100803zanting15s.swf
c:\favoritevideo\InvisibleFolder\20100803190357_shijijiayuan100803cha15s.swf
c:\favoritevideo\InvisibleFolder\20100805151046_kuowang100805zanting15s.swf
c:\favoritevideo\InvisibleFolder\20100805151315_kuowang100805zhu15s1.swf
c:\favoritevideo\InvisibleFolder\20100805175133_qiangsheng100805zanting15s.swf
c:\favoritevideo\InvisibleFolder\20100809191931_jiaohangchedai100815zanting15s.swf
c:\favoritevideo\InvisibleFolder\20100810151259_taobao100811zhu15s.swf
c:\favoritevideo\InvisibleFolder\20100811161854_kuowang100811zhu15s.swf
c:\favoritevideo\InvisibleFolder\20100811162053_kuowang100811zanting15s.swf
c:\favoritevideo\InvisibleFolder\20100811184133_menghuanxiyou100817zanting15s.swf
c:\favoritevideo\InvisibleFolder\20100812184056_longchuang100812zanting15s.swf
c:\favoritevideo\InvisibleFolder\20100813174141_jingji100813zhu15s.swf
c:\favoritevideo\InvisibleFolder\20100813174225_jingji100813zanting15s.swf
c:\favoritevideo\InvisibleFolder\20100813192813_zhenaiwang100816zhu15s.swf
c:\favoritevideo\InvisibleFolder\20100816121933_kfc100816zanting15s.swf
c:\favoritevideo\InvisibleFolder\20100816122046_kfc100816jiao15s.jpg
c:\favoritevideo\InvisibleFolder\20100816122126_kfc100816cha15s.gif
c:\favoritevideo\InvisibleFolder\20100818202000_qifan100822zanting15s.swf
c:\favoritevideo\InvisibleFolder\20100818202050_datangwushuang100819zhu15s.swf
c:\favoritevideo\InvisibleFolder\20100818203636_taobao100819cha15s.swf
c:\favoritevideo\InvisibleFolder\20100818203724_taobao100819zanting15s.swf
c:\favoritevideo\InvisibleFolder\20100818203812_taobao100819zhu15s.swf
c:\favoritevideo\InvisibleFolder\20100819144238_kangshifubinghongcha100819zhu15sdiaoyan.swf
c:\favoritevideo\InvisibleFolder\20100819155523_menghuanxiyou100822zhu15s.swf
c:\favoritevideo\InvisibleFolder\20100819171824_datangwushuang100820zhu15s.swf
c:\favoritevideo\InvisibleFolder\20100819171909_datangwushuang100820zanting15s.swf
c:\favoritevideo\InvisibleFolder\20100820161856_huiyuan100820zhu15s.swf
c:\favoritevideo\InvisibleFolder\externtab(1.0.0.1).zip
c:\favoritevideo\InvisibleFolder\pplss.swf
c:\favoritevideo\InvisibleFolder\vip_db_allinonetoday2010082220100823032245.zip
c:\favoritevideo\InvisibleFolder\vip_db_allinonetoday2010082220100823033218.zip
c:\favoritevideo\InvisibleFolder\vip_db_big20100822.zip
c:\windows\system32\Nagasoft
c:\windows\system32\Nagasoft\Codecs\asyncflt.ax
c:\windows\system32\Nagasoft\Codecs\atrc.dll
c:\windows\system32\Nagasoft\Codecs\cook.dll
c:\windows\system32\Nagasoft\Codecs\drvc.dll
c:\windows\system32\Nagasoft\Codecs\raac.dll
c:\windows\system32\Nagasoft\Codecs\RealMediaSplitter.ax
c:\windows\system32\Nagasoft\Codecs\WMFDemux.dll
c:\windows\system32\Nagasoft\GifShower.dll
c:\windows\system32\Nagasoft\vjocx.dll
c:\windows\system32\TZLog.log
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_vvdsvc
-------\Legacy_vvdsvc
-------\Service_vvdsvc
-------\Service_vvdsvc
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-02-26 do 2012-03-26 )))))))))))))))))))))))))))))))
.
.
2012-03-14 16:28 . 2012-03-14 16:28 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2012-03-14 16:28 . 2012-03-07 00:01 20696 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-03-14 16:28 . 2012-03-07 00:03 337880 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-03-14 16:28 . 2012-03-07 00:02 35672 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-03-14 16:28 . 2012-03-07 00:03 612184 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-03-14 16:28 . 2012-03-07 00:01 53848 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-03-14 16:28 . 2012-03-07 00:01 95704 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2012-03-14 16:28 . 2012-03-07 00:01 89048 ----a-w- c:\windows\system32\drivers\aswmon.sys
2012-03-14 16:28 . 2012-03-06 23:58 24920 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2012-03-14 16:27 . 2012-03-07 00:15 201352 ----a-w- c:\windows\system32\aswBoot.exe
2012-03-14 16:10 . 2012-03-14 16:10 -------- d-----w- c:\documents and settings\Administrator
2012-03-09 19:25 . 2012-03-09 19:25 -------- d-sh--w- c:\documents and settings\tom\IETldCache
2012-03-09 15:22 . 2011-08-16 10:45 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2012-03-09 15:21 . 2011-12-18 13:42 11082240 -c----w- c:\windows\system32\dllcache\ieframe.dll
2012-03-09 15:21 . 2011-12-17 19:42 602112 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2012-03-09 15:21 . 2011-12-17 19:42 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2012-03-09 15:21 . 2011-12-17 19:42 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2012-03-09 15:21 . 2011-12-17 19:42 2000384 -c----w- c:\windows\system32\dllcache\iertutil.dll
2012-03-09 15:21 . 2011-12-17 19:42 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2012-03-09 15:21 . 2011-12-17 19:42 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2012-03-09 15:20 . 2012-03-09 15:21 -------- dc-h--w- c:\windows\ie8
2012-03-09 13:14 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2012-03-09 13:12 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2012-03-09 13:11 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2012-03-09 13:09 . 2012-01-09 16:20 139784 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2012-03-09 13:09 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2012-03-09 13:07 . 2011-04-30 03:00 758784 -c--a-w- c:\windows\system32\dllcache\vgx.dll
2012-03-09 13:06 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2012-03-09 13:06 . 2012-01-11 19:07 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2012-03-09 13:06 . 2012-01-11 19:07 3072 ------w- c:\windows\system32\iacenc.dll
2012-03-09 13:05 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2012-03-09 00:54 . 2012-03-09 00:54 -------- d-----w- c:\windows\l2schemas
2012-03-09 00:54 . 2012-03-09 00:54 -------- d-----w- c:\windows\system32\cs
2012-03-09 00:54 . 2012-03-09 00:54 -------- d-----w- c:\windows\system32\bits
2012-03-04 15:16 . 2008-04-14 03:22 20992 ------w- c:\windows\system32\spupdwxp.exe
2012-03-04 15:15 . 2008-04-14 03:22 33792 ------w- c:\windows\system32\mmcperf.exe
2012-03-04 15:14 . 2008-04-14 03:21 9216 ------w- c:\windows\system32\dot3dlg.dll
2012-03-02 17:36 . 2009-10-21 05:40 75776 -c----w- c:\windows\system32\dllcache\strmfilt.dll
2012-03-02 17:36 . 2009-10-21 05:40 25088 -c----w- c:\windows\system32\dllcache\httpapi.dll
2012-03-02 17:36 . 2009-10-20 16:20 265728 -c----w- c:\windows\system32\dllcache\http.sys
2012-03-02 01:07 . 2008-06-24 16:44 74240 -c----w- c:\windows\system32\dllcache\mscms.dll
2012-03-02 01:07 . 2009-06-15 10:45 78336 -c----w- c:\windows\system32\dllcache\telnet.exe
2012-03-02 01:07 . 2009-06-15 10:45 81408 -c----w- c:\windows\system32\dllcache\tlntsess.exe
2012-03-02 01:07 . 2011-07-15 13:29 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2012-03-02 01:05 . 2009-09-04 21:05 58880 -c----w- c:\windows\system32\dllcache\msasn1.dll
2012-03-02 01:05 . 2012-02-03 09:57 1860096 -c----w- c:\windows\system32\dllcache\win32k.sys
2012-03-02 01:05 . 2011-01-21 14:44 8466432 -c----w- c:\windows\system32\dllcache\shell32.dll
2012-03-02 01:05 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2012-03-02 01:05 . 2011-08-17 13:49 138496 -c----w- c:\windows\system32\dllcache\afd.sys
2012-03-02 01:05 . 2011-03-03 06:54 149504 -c----w- c:\windows\system32\dllcache\dnsapi.dll
2012-03-02 01:05 . 2010-02-11 12:02 226880 -c----w- c:\windows\system32\dllcache\tcpip6.sys
2012-03-02 01:05 . 2008-06-20 16:04 247296 -c----w- c:\windows\system32\dllcache\mswsock.dll
2012-03-02 01:05 . 2008-06-20 11:51 361600 -c----w- c:\windows\system32\dllcache\tcpip.sys
2012-03-02 01:05 . 2011-10-10 14:22 692736 -c----w- c:\windows\system32\dllcache\inetcomm.dll
2012-03-02 01:05 . 2010-01-29 15:01 1315328 -c----w- c:\windows\system32\dllcache\msoe.dll
2012-03-02 01:04 . 2010-03-05 14:42 65536 -c----w- c:\windows\system32\dllcache\asycfilt.dll
2012-03-02 01:04 . 2009-08-05 09:01 205312 -c----w- c:\windows\system32\dllcache\mswebdvd.dll
2012-03-02 01:04 . 2008-10-23 12:42 286720 -c----w- c:\windows\system32\dllcache\gdi32.dll
2012-03-02 01:04 . 2011-11-16 14:21 152064 -c----w- c:\windows\system32\dllcache\schannel.dll
2012-03-02 01:04 . 2010-12-22 12:34 301568 -c----w- c:\windows\system32\dllcache\kerberos.dll
2012-03-02 01:04 . 2009-09-11 14:19 136192 -c----w- c:\windows\system32\dllcache\msv1_0.dll
2012-03-02 01:04 . 2009-06-25 08:27 54272 -c----w- c:\windows\system32\dllcache\wdigest.dll
2012-03-02 01:04 . 2009-06-24 11:18 92928 -c----w- c:\windows\system32\dllcache\ksecdd.sys
2012-03-02 00:43 . 2012-03-02 00:43 -------- d-----w- c:\documents and settings\tom\Local Settings\Data aplikací\Opera
2012-03-02 00:43 . 2012-03-26 18:06 -------- d-----w- c:\program files\Opera
2012-03-02 00:29 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2012-03-02 00:29 . 2008-06-14 17:35 272128 ------w- c:\windows\system32\drivers\bthport.sys
2012-03-02 00:29 . 2009-06-25 08:27 56832 -c----w- c:\windows\system32\dllcache\secur32.dll
2012-03-02 00:29 . 2009-03-21 14:09 988160 -c----w- c:\windows\system32\dllcache\kernel32.dll
2012-03-02 00:29 . 2009-07-17 16:17 1437696 -c----w- c:\windows\system32\dllcache\query.dll
2012-03-02 00:29 . 2008-07-07 20:29 253952 -c----w- c:\windows\system32\dllcache\es.dll
2012-03-02 00:29 . 2010-02-12 04:35 100864 -c----w- c:\windows\system32\dllcache\6to4svc.dll
2012-03-02 00:29 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2012-03-02 00:29 . 2009-10-15 16:32 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2012-03-02 00:27 . 2011-02-17 12:54 5632 ----a-w- c:\windows\system32\xpsp4res.dll
2012-03-02 00:27 . 2010-07-16 11:58 219136 -c----w- c:\windows\system32\dllcache\wordpad.exe
2012-03-01 23:46 . 2011-02-17 13:18 357888 -c----w- c:\windows\system32\dllcache\srv.sys
2012-03-01 23:46 . 2009-12-08 09:25 474112 -c----w- c:\windows\system32\dllcache\shlwapi.dll
2012-03-01 23:46 . 2011-11-03 15:29 1294848 -c----w- c:\windows\system32\dllcache\quartz.dll
2012-03-01 23:46 . 2009-11-27 17:14 17920 -c----w- c:\windows\system32\dllcache\msyuv.dll
2012-03-01 23:46 . 2009-10-13 10:34 271360 -c----w- c:\windows\system32\dllcache\oakley.dll
2012-03-01 23:46 . 2008-10-15 16:38 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2012-03-01 23:25 . 2012-03-01 23:25 -------- d-----w- c:\windows\system32\wbem\Repository
2012-02-27 16:37 . 2012-03-01 23:10 -------- d-----w- c:\program files\Google
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-03-07 00:15 . 2011-02-26 23:45 41184 ----a-w- c:\windows\avastSS.scr
2012-02-03 09:57 . 2004-08-17 13:44 1860096 ----a-w- c:\windows\system32\win32k.sys
2012-01-09 16:20 . 2009-12-01 20:55 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2011-06-24 09:33 . 2011-03-24 14:55 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-03-07 00:15 123536 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-01 16:08 143360 ----a-w- c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-03-21 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-03-21 166424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-03-21 137752]
"HControlUser"="c:\program files\ATK Hotkey\HcontrolUser.exe" [2008-01-11 98304]
"ATKHOTKEY"="c:\program files\ATK Hotkey\Hcontrol.exe" [2008-02-01 233472]
"MsgTranAgt"="c:\program files\ATK Hotkey\MsgTranAgt.exe" [2007-11-04 106496]
"ATKOSD2"="c:\program files\ATKOSD2\ATKOSD2.exe" [2008-01-23 7766016]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-11-15 1024000]
"RTHDCPL"="RTHDCPL.EXE" [2008-04-09 16861184]
"SMSERIAL"="c:\program files\Motorola\SMSERIAL\sm56hlpr.exe" [2006-11-21 630784]
"ACU"="c:\program files\Atheros\ACU.exe" [2008-04-09 450648]
"Power_Gear"="c:\program files\ASUS\Power4 Gear\BatteryLife.exe" [2006-07-26 90112]
"ACMON"="c:\program files\ASUS\Splendid\ACMON.exe" [2008-01-15 851968]
"ASUS Camera ScreenSaver"="c:\windows\ASScrProlog.exe" [2009-12-01 37232]
"ASUS Screen Saver Protector"="c:\windows\ASScrPro.exe" [2009-12-01 33136]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2010-02-08 198160]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-03-07 4241512]
.
c:\documents and settings\tom\Nabídka Start\Programy\Po spuštění\
fliptoast.lnk - c:\program files\fliptoast\fliptoast.exe [N/A]
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"c:\\Documents and Settings\\tom\\Local Settings\\Data aplikací\\Google\\Chrome\\Application\\chrome.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"c:\\Documents and Settings\\tom\\Local Settings\\Data aplikací\\Google\\Google Talk Plugin\\googletalkplugin.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [14.3.2012 18:28 612184]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [14.3.2012 18:28 337880]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [14.3.2012 18:28 20696]
S3 ASUSProcObsrv;ASUS Process Creation/Termination Observer;\??\c:\documents and settings\tom\Plocha\ASUS\I386\AsProcOb.sys --> c:\documents and settings\tom\Plocha\ASUS\I386\AsProcOb.sys [?]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
vvdsvc REG_MULTI_SZ vvdsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2012-03-26 c:\windows\Tasks\WGASetup.job
- c:\windows\system32\KB905474\wgasetup.exe [2012-03-02 21:18]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://vshare.toolbarhome.com/?hp=df
uInternet Settings,ProxyServer = 115.127.15.44:3128
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\documents and settings\tom\Data aplikací\Mozilla\Firefox\Profiles\obdu8w24.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://vshare.toolbarhome.com/?hp=df
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.3.1&q=
FF - prefs.js: network.proxy.ftp - 187.17.133.249
FF - prefs.js: network.proxy.ftp_port - 3128
FF - prefs.js: network.proxy.http - 187.17.133.249
FF - prefs.js: network.proxy.http_port - 3128
FF - prefs.js: network.proxy.socks - 187.17.133.249
FF - prefs.js: network.proxy.socks_port - 3128
FF - prefs.js: network.proxy.ssl - 187.17.133.249
FF - prefs.js: network.proxy.ssl_port - 3128
FF - prefs.js: network.proxy.type - 0
.
.
**************************************************************************
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory:
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(3396)
c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt.dll
c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
c:\windows\system32\webcheck.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
c:\program files\ATKGFNEX\GFNEXSrv.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\acs.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\ASUS\NB Probe\SPM\spmgr.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\igfxsrvc.exe
c:\windows\RTHDCPL.EXE
c:\program files\ATK Hotkey\ATKOSD.exe
c:\windows\system32\ACEngSvr.exe
c:\program files\ATK Hotkey\KBFiltr.exe
c:\program files\ATK Hotkey\WDC.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Celkový čas: 2012-03-26 22:05:52 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-03-26 20:05
.
Před spuštěním: Volných bajtů: 122 496 696 320
Po spuštění: Volných bajtů: 122 260 434 944
.
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - 1DBCE784C0DD27C0D0329076DC192924

Platit neni treba, nase forum funguje na bazi dobrovolnosti

Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe

Ukoncete vsechny programy
Pokud pouzivate Win Vista ci W7, kliknete na RogueKiller pravym a dejte Run As Administrator ci Spustit jako spravce
Pockejte na dokonceni PreScanu
Zvolte moznost Prohledat (scan)
Po dokonceni skenu kliknete na Zpráva (Report)- otevre se log, ten sem vlozte

RogueKiller V7.3.2 [03/20/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v: Normální režim
Uživatel: tom [Práva správce]
Mód: Kontrola -- Datum: 03/27/2012 17:52:11

¤¤¤ Škodlivé procesy: 0 ¤¤¤

¤¤¤ Záznamy Registrů: 3 ¤¤¤
[PROXY IE] HKCU\[...]\Internet Settings : ProxyServer (115.127.15.44:3128) -> FOUND
[SCRSV] HKCU\[...]\Desktop : SCRNSAVE.EXE (C:\WINDOWS\ASUS_C~1.SCR) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač: [NAHRÁNO] ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
127.0.0.1 localhost

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: ST9160310AS +++++
--- User ---
[MBR] c9bad5112a700aa9fd0dba5b343a332f
[BSP] 4b29359bfac423c9cc0785897800e746 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 152617 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[1].txt >>
RKreport[1].txt

Tuhle proxy 115.127.15.44:3128 mate umyslne

nn, v žádném případě, jen jsem zkoušel jak se s proxy pracuje a asi jsem něco nabalil, od té doby mám zamrznutý net, prosím jak se toho mohu zbavit? díky moc...

Spustte znovu RogueKiller

Pokud pouzivate Win Vista ci W7, kliknete na RogueKiller pravym a dejte Run As Administrator ci Spustit jako spravce
Zvolte moznost Prohledat
Pak kliknete na Oprava Host a Zprava - otevre se log, ten sem vlozte
Pak kliknete na Oprava Proxy a Zprava - otevre se log, ten sem vlozte

tak teď nevím zda se v těch log na ploše vyznám, ale měl by to být 3 a 4

tady je HOST !!!

RogueKiller V7.3.2 [03/20/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v: Normální režim
Uživatel: tom [Práva správce]
Mód: Oprava HOSTS -- Datum: 03/27/2012 19:00:04

¤¤¤ Škodlivé procesy: 0 ¤¤¤

¤¤¤ Ovladač: [NAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
127.0.0.1 localhost

¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost

Dokončeno : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt

tady je PROXY !!!

RogueKiller V7.3.2 [03/20/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v: Normální režim
Uživatel: tom [Práva správce]
Mód: Oprava Proxy -- Datum: 03/27/2012 19:02:37

¤¤¤ Škodlivé procesy: 0 ¤¤¤

¤¤¤ Ovladač: [NAHRÁNO] ¤¤¤

¤¤¤ Záznamy Registrů: 1 ¤¤¤
[PROXY IE] HKCU\[...]\Internet Settings : ProxyServer (115.127.15.44:3128) -> DELETED

Dokončeno : << RKreport[4].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt

myslíte že to bylo ono, co sekalo net? mám ještě resetovat PC? vždy něco zkouším aniž bych tomu rozumněl, odpusťte že Vás pak opravou otravuji

aspoň se na mě vyřádíte

zkouším net, a přijde mi že je to o trošku lepší ale stále zasekané, ten chrome je nějaký zakousaný, nemám ho smazat a nainstalovat znovu, nebo zkusíme ještě něco prosím?
děkuji

tak co šéfe? ještě nějaká rada? děkuji...

rada bude ale my tu jsme ve svem volnem case a ze jsem online neznamena ale ze u fora jsem nebo treba delam neco v internich sekcich. PMkami tomu nepomuzete...pokud potrebujete urgentni radu, jsou placene servisy kde resi hned a na pockani...

Je problem ve vsech prohlizecich? FF, IE nebo jen GCH

Pokud nemate, tak presunte Combofix na plochu

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

KillAll::

NetSvc::
vvdsvc

Driver::
vvdsvc

Registry::
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
"vvdsvc"=-
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000000
[-HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
[-HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]

DDS::
uStart Page = hxxp://vshare.toolbarhome.com/?hp=df
uInternet Settings,ProxyServer = 115.127.15.44:3128

Firefox::
FF - ProfilePath - c:\documents and settings\tom\Data aplikací\Mozilla\Firefox\Profiles\obdu8w24.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://vshare.toolbarhome.com/?hp=df
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_result ... r=1.3.1&q=
FF - prefs.js: network.proxy.ftp - 187.17.133.249
FF - prefs.js: network.proxy.ftp_port - 3128
FF - prefs.js: network.proxy.http - 187.17.133.249
FF - prefs.js: network.proxy.http_port - 3128
FF - prefs.js: network.proxy.socks - 187.17.133.249
FF - prefs.js: network.proxy.socks_port - 3128
FF - prefs.js: network.proxy.ssl - 187.17.133.249
FF - prefs.js: network.proxy.ssl_port - 3128
FF - prefs.js: network.proxy.type - 0

ClearJavaCache::

AtJob::

Reboot::

Ulozte vytvoreny TXT jako CFScript.txt
Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte

Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci

Takže na začátku jsem zapomněl vypnout avast takže to písklo a když jsem ho pozastavil rozjelo se to, cca po 5 minutách to vyhodilo nějakou chybu v aplikaci PEV.exe tak jsem dal neodesílat informace o chybě, poté to jelo až do konce a test cca 12minut.

ostatní prohlížeče nepoužívám, měl jsem Operu a raději jsem jí smazal aby se nekousali mezi sebou, myslel jsem že to dělá kvůli tomu...

ZDE JE LOG:

ComboFix 12-03-26.02 - tom 27.03.2012 23:37:16.2.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2039.1569 [GMT 2:00]
Spuštěný z: c:\documents and settings\tom\Dokumenty\Downloads\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\tom\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-02-27 do 2012-03-27 )))))))))))))))))))))))))))))))
.
.
2012-03-27 21:45 . 2012-03-27 21:45 45056 ----a-w- c:\windows\system32\acovcnt.exe
2012-03-14 16:28 . 2012-03-14 16:28 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2012-03-14 16:28 . 2012-03-07 00:01 20696 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-03-14 16:28 . 2012-03-07 00:03 337880 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-03-14 16:28 . 2012-03-07 00:02 35672 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-03-14 16:28 . 2012-03-07 00:03 612184 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-03-14 16:28 . 2012-03-07 00:01 53848 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-03-14 16:28 . 2012-03-07 00:01 95704 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2012-03-14 16:28 . 2012-03-07 00:01 89048 ----a-w- c:\windows\system32\drivers\aswmon.sys
2012-03-14 16:28 . 2012-03-06 23:58 24920 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2012-03-14 16:27 . 2012-03-07 00:15 201352 ----a-w- c:\windows\system32\aswBoot.exe
2012-03-14 16:10 . 2012-03-14 16:10 -------- d-----w- c:\documents and settings\Administrator
2012-03-09 19:25 . 2012-03-09 19:25 -------- d-sh--w- c:\documents and settings\tom\IETldCache
2012-03-09 15:22 . 2011-08-16 10:45 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2012-03-09 15:21 . 2011-12-18 13:42 11082240 -c----w- c:\windows\system32\dllcache\ieframe.dll
2012-03-09 15:21 . 2011-12-17 19:42 602112 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2012-03-09 15:21 . 2011-12-17 19:42 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2012-03-09 15:21 . 2011-12-17 19:42 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2012-03-09 15:21 . 2011-12-17 19:42 2000384 -c----w- c:\windows\system32\dllcache\iertutil.dll
2012-03-09 15:21 . 2011-12-17 19:42 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2012-03-09 15:21 . 2011-12-17 19:42 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2012-03-09 15:20 . 2012-03-09 15:21 -------- dc-h--w- c:\windows\ie8
2012-03-09 13:14 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2012-03-09 13:12 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2012-03-09 13:11 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2012-03-09 13:09 . 2012-01-09 16:20 139784 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2012-03-09 13:09 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2012-03-09 13:07 . 2011-04-30 03:00 758784 -c--a-w- c:\windows\system32\dllcache\vgx.dll
2012-03-09 13:06 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2012-03-09 13:06 . 2012-01-11 19:07 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2012-03-09 13:06 . 2012-01-11 19:07 3072 ------w- c:\windows\system32\iacenc.dll
2012-03-09 13:05 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2012-03-09 00:54 . 2012-03-09 00:54 -------- d-----w- c:\windows\l2schemas
2012-03-09 00:54 . 2012-03-09 00:54 -------- d-----w- c:\windows\system32\cs
2012-03-09 00:54 . 2012-03-09 00:54 -------- d-----w- c:\windows\system32\bits
2012-03-04 15:16 . 2008-04-14 03:22 20992 ------w- c:\windows\system32\spupdwxp.exe
2012-03-04 15:15 . 2008-04-14 03:22 33792 ------w- c:\windows\system32\mmcperf.exe
2012-03-04 15:14 . 2008-04-14 03:21 9216 ------w- c:\windows\system32\dot3dlg.dll
2012-03-02 17:36 . 2009-10-21 05:40 75776 -c----w- c:\windows\system32\dllcache\strmfilt.dll
2012-03-02 17:36 . 2009-10-21 05:40 25088 -c----w- c:\windows\system32\dllcache\httpapi.dll
2012-03-02 17:36 . 2009-10-20 16:20 265728 -c----w- c:\windows\system32\dllcache\http.sys
2012-03-02 01:07 . 2008-06-24 16:44 74240 -c----w- c:\windows\system32\dllcache\mscms.dll
2012-03-02 01:07 . 2009-06-15 10:45 78336 -c----w- c:\windows\system32\dllcache\telnet.exe
2012-03-02 01:07 . 2009-06-15 10:45 81408 -c----w- c:\windows\system32\dllcache\tlntsess.exe
2012-03-02 01:07 . 2011-07-15 13:29 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2012-03-02 01:05 . 2009-09-04 21:05 58880 -c----w- c:\windows\system32\dllcache\msasn1.dll
2012-03-02 01:05 . 2012-02-03 09:57 1860096 -c----w- c:\windows\system32\dllcache\win32k.sys
2012-03-02 01:05 . 2011-01-21 14:44 8466432 -c----w- c:\windows\system32\dllcache\shell32.dll
2012-03-02 01:05 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2012-03-02 01:05 . 2011-08-17 13:49 138496 -c----w- c:\windows\system32\dllcache\afd.sys
2012-03-02 01:05 . 2011-03-03 06:54 149504 -c----w- c:\windows\system32\dllcache\dnsapi.dll
2012-03-02 01:05 . 2010-02-11 12:02 226880 -c----w- c:\windows\system32\dllcache\tcpip6.sys
2012-03-02 01:05 . 2008-06-20 16:04 247296 -c----w- c:\windows\system32\dllcache\mswsock.dll
2012-03-02 01:05 . 2008-06-20 11:51 361600 -c----w- c:\windows\system32\dllcache\tcpip.sys
2012-03-02 01:05 . 2011-10-10 14:22 692736 -c----w- c:\windows\system32\dllcache\inetcomm.dll
2012-03-02 01:05 . 2010-01-29 15:01 1315328 -c----w- c:\windows\system32\dllcache\msoe.dll
2012-03-02 01:04 . 2010-03-05 14:42 65536 -c----w- c:\windows\system32\dllcache\asycfilt.dll
2012-03-02 01:04 . 2009-08-05 09:01 205312 -c----w- c:\windows\system32\dllcache\mswebdvd.dll
2012-03-02 01:04 . 2008-10-23 12:42 286720 -c----w- c:\windows\system32\dllcache\gdi32.dll
2012-03-02 01:04 . 2011-11-16 14:21 152064 -c----w- c:\windows\system32\dllcache\schannel.dll
2012-03-02 01:04 . 2010-12-22 12:34 301568 -c----w- c:\windows\system32\dllcache\kerberos.dll
2012-03-02 01:04 . 2009-09-11 14:19 136192 -c----w- c:\windows\system32\dllcache\msv1_0.dll
2012-03-02 01:04 . 2009-06-25 08:27 54272 -c----w- c:\windows\system32\dllcache\wdigest.dll
2012-03-02 01:04 . 2009-06-24 11:18 92928 -c----w- c:\windows\system32\dllcache\ksecdd.sys
2012-03-02 00:43 . 2012-03-02 00:43 -------- d-----w- c:\documents and settings\tom\Local Settings\Data aplikací\Opera
2012-03-02 00:43 . 2012-03-26 18:06 -------- d-----w- c:\program files\Opera
2012-03-02 00:29 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2012-03-02 00:29 . 2008-06-14 17:35 272128 ------w- c:\windows\system32\drivers\bthport.sys
2012-03-02 00:29 . 2009-06-25 08:27 56832 -c----w- c:\windows\system32\dllcache\secur32.dll
2012-03-02 00:29 . 2009-03-21 14:09 988160 -c----w- c:\windows\system32\dllcache\kernel32.dll
2012-03-02 00:29 . 2009-07-17 16:17 1437696 -c----w- c:\windows\system32\dllcache\query.dll
2012-03-02 00:29 . 2008-07-07 20:29 253952 -c----w- c:\windows\system32\dllcache\es.dll
2012-03-02 00:29 . 2010-02-12 04:35 100864 -c----w- c:\windows\system32\dllcache\6to4svc.dll
2012-03-02 00:29 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2012-03-02 00:29 . 2009-10-15 16:32 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2012-03-02 00:27 . 2011-02-17 12:54 5632 ----a-w- c:\windows\system32\xpsp4res.dll
2012-03-02 00:27 . 2010-07-16 11:58 219136 -c----w- c:\windows\system32\dllcache\wordpad.exe
2012-03-01 23:46 . 2011-02-17 13:18 357888 -c----w- c:\windows\system32\dllcache\srv.sys
2012-03-01 23:46 . 2009-12-08 09:25 474112 -c----w- c:\windows\system32\dllcache\shlwapi.dll
2012-03-01 23:46 . 2011-11-03 15:29 1294848 -c----w- c:\windows\system32\dllcache\quartz.dll
2012-03-01 23:46 . 2009-11-27 17:14 17920 -c----w- c:\windows\system32\dllcache\msyuv.dll
2012-03-01 23:46 . 2009-10-13 10:34 271360 -c----w- c:\windows\system32\dllcache\oakley.dll
2012-03-01 23:46 . 2008-10-15 16:38 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2012-03-01 23:25 . 2012-03-01 23:25 -------- d-----w- c:\windows\system32\wbem\Repository
2012-02-27 16:37 . 2012-03-01 23:10 -------- d-----w- c:\program files\Google
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-03-07 00:15 . 2011-02-26 23:45 41184 ----a-w- c:\windows\avastSS.scr
2012-02-03 09:57 . 2004-08-17 13:44 1860096 ----a-w- c:\windows\system32\win32k.sys
2012-01-09 16:20 . 2009-12-01 20:55 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2011-06-24 09:33 . 2011-03-24 14:55 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-03-26_20.02.34 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-03-27 21:44 . 2012-03-27 21:44 16384 c:\windows\temp\Perflib_Perfdata_ac.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-03-07 00:15 123536 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-01 16:08 143360 ----a-w- c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-03-21 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-03-21 166424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-03-21 137752]
"HControlUser"="c:\program files\ATK Hotkey\HcontrolUser.exe" [2008-01-11 98304]
"ATKHOTKEY"="c:\program files\ATK Hotkey\Hcontrol.exe" [2008-02-01 233472]
"MsgTranAgt"="c:\program files\ATK Hotkey\MsgTranAgt.exe" [2007-11-04 106496]
"ATKOSD2"="c:\program files\ATKOSD2\ATKOSD2.exe" [2008-01-23 7766016]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-11-15 1024000]
"RTHDCPL"="RTHDCPL.EXE" [2008-04-09 16861184]
"SMSERIAL"="c:\program files\Motorola\SMSERIAL\sm56hlpr.exe" [2006-11-21 630784]
"ACU"="c:\program files\Atheros\ACU.exe" [2008-04-09 450648]
"Power_Gear"="c:\program files\ASUS\Power4 Gear\BatteryLife.exe" [2006-07-26 90112]
"ACMON"="c:\program files\ASUS\Splendid\ACMON.exe" [2008-01-15 851968]
"ASUS Camera ScreenSaver"="c:\windows\ASScrProlog.exe" [2009-12-01 37232]
"ASUS Screen Saver Protector"="c:\windows\ASScrPro.exe" [2009-12-01 33136]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2010-02-08 198160]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-03-07 4241512]
.
c:\documents and settings\tom\Nabídka Start\Programy\Po spuštění\
fliptoast.lnk - c:\program files\fliptoast\fliptoast.exe [N/A]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"c:\\Documents and Settings\\tom\\Local Settings\\Data aplikací\\Google\\Chrome\\Application\\chrome.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"c:\\Documents and Settings\\tom\\Local Settings\\Data aplikací\\Google\\Google Talk Plugin\\googletalkplugin.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [14.3.2012 18:28 612184]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [14.3.2012 18:28 337880]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [14.3.2012 18:28 20696]
S3 ASUSProcObsrv;ASUS Process Creation/Termination Observer;\??\c:\documents and settings\tom\Plocha\ASUS\I386\AsProcOb.sys --> c:\documents and settings\tom\Plocha\ASUS\I386\AsProcOb.sys [?]
.
Obsah adresáře 'Naplánované úlohy'
.
2012-03-27 c:\windows\Tasks\WGASetup.job
- c:\windows\system32\KB905474\wgasetup.exe [2012-03-02 21:18]
.
.
------- Doplňkový sken -------
.
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\documents and settings\tom\Data aplikací\Mozilla\Firefox\Profiles\obdu8w24.default\
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-03-27 23:45
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(1032)
c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt.dll
c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
c:\windows\system32\webcheck.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
c:\program files\ATKGFNEX\GFNEXSrv.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\acs.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\ASUS\NB Probe\SPM\spmgr.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\igfxsrvc.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\ACEngSvr.exe
c:\program files\ATK Hotkey\ATKOSD.exe
c:\program files\ATK Hotkey\KBFiltr.exe
c:\program files\ATK Hotkey\WDC.exe
.
**************************************************************************
.
Celkový čas: 2012-03-27 23:49:10 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-03-27 21:49
ComboFix2.txt 2012-03-26 20:05
.
Před spuštěním: Volných bajtů: 122 280 198 144
Po spuštění: Volných bajtů: 122 282 217 472
.
- - End Of File - - 375AE26B065A10FBABA5D76AA602B13B

VIRY.CZ

Zamrzající PC, nemožná práce s internetem :-(

Zamrzající PC, nemožná práce s internetem :-(

Re: Zamrzající PC, nemožná práce s internetem :-(

Re: Zamrzající PC, nemožná práce s internetem :-(

Re: Zamrzající PC, nemožná práce s internetem :-(

Re: Zamrzající PC, nemožná práce s internetem :-(

Re: Zamrzající PC, nemožná práce s internetem :-(

Re: Zamrzající PC, nemožná práce s internetem :-(

Re: Zamrzající PC, nemožná práce s internetem :-(

Re: Zamrzající PC, nemožná práce s internetem :-(

Re: Zamrzající PC, nemožná práce s internetem :-(

Re: Zamrzající PC, nemožná práce s internetem :-(

Re: Zamrzající PC, nemožná práce s internetem :-(

Re: Zamrzající PC, nemožná práce s internetem :-(

Re: Zamrzající PC, nemožná práce s internetem :-(

Re: Zamrzající PC, nemožná práce s internetem :-(