VIRY.CZ

Logfile of random's system information tool 1.06 (written by random/random)
Run by Pajtas at 2010-04-04 14:25:18
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 7 GB (44%) free of 15 GB
Total RAM: 255 MB (26% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-1007Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-1007UA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-500Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-500UA.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{D7EF1F49-D10B-4A9A-85C5-2502C4178D94}.job
C:\WINDOWS\tasks\{255246EC-3ACE-427B-89EF-339C12BC4F44}_LOWEGGK_pajtas.job
C:\WINDOWS\tasks\{5157186C-D3DD-4D8C-8B26-C1E1E283DC72}_LOWEGGK_pajtas.job
C:\WINDOWS\tasks\{CB9F5461-9341-405A-A12E-B1692E38FF75}_LOWEGGK_pajtas.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-03-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-03-09 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Cpqset"=C:\Program Files\HPQ\Default Settings\cpqset.exe [2004-03-01 200766]
"SynTPLpr"=C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [2004-11-04 98394]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2004-11-04 688218]
"ATIModeChange"=C:\WINDOWS\system32\Ati2mdxx.exe [2001-09-02 28672]
"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2004-01-20 335872]
"nod32kui"=C:\Program Files\Eset\nod32kui.exe [2007-02-05 949376]
"SoundMAXPnP"=C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe [2004-10-14 1388544]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2004-09-23 860160]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AGRSMMSG]
C:\WINDOWS\AGRSMMSG.exe [2003-05-03 88267]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dla]
C:\WINDOWS\system32\dla\tfswctrl.exe [2004-08-03 122939]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=149

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Sony Ericsson\Update Service\ma3platform.exe"="C:\Program Files\Sony Ericsson\Update Service\ma3platform.exe:*:Enabled:ma3platform"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Intuwave\Shared\mRouterRuntime\mRouterRuntime.exe"="C:\Program Files\Intuwave\Shared\mRouterRuntime\mRouterRuntime.exe:*:Enabled:mRouterRuntime Module"
"C:\Program Files\Sony Ericsson\Mobile4\Sync Manager\DXP SyncML.exe"="C:\Program Files\Sony Ericsson\Mobile4\Sync Manager\DXP SyncML.exe:*:Enabled:DXP SyncML Module"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype. The whole world can talk for free."
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-04-04 14:25:22 ----D---- C:\Program Files\trend micro
2010-04-04 14:25:18 ----D---- C:\rsit
2010-04-04 14:11:32 ----A---- C:\WINDOWS\iwlandrvxpver.dll
2010-04-04 14:11:14 ----D---- C:\Program Files\Intel
2010-04-04 14:10:31 ----D---- C:\WINDOWS\LastGood
2010-04-04 13:55:49 ----A---- C:\WINDOWS\system32\SynTPCo2.dll
2010-04-04 13:52:44 ----D---- C:\Program Files\GCC4243N_fw
2010-04-04 13:48:35 ----D---- C:\SWSetup
2010-04-04 11:48:51 ----D---- C:\WINDOWS\Prefetch
2010-04-04 09:42:36 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\Real
2010-04-04 09:36:41 ----SHD---- C:\Config.Msi
2010-04-03 10:45:14 ----HD---- C:\WINDOWS\system32\GroupPolicy
2010-04-03 10:05:44 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\PDFcreator
2010-04-03 09:40:56 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\Media Player Classic
2010-04-02 19:02:06 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\Skype
2010-04-02 18:36:01 ----A---- C:\WINDOWS\system32\unrar.dll
2010-04-02 18:35:58 ----A---- C:\WINDOWS\avisplitter.ini
2010-04-02 18:35:45 ----A---- C:\WINDOWS\system32\yv12vfw.dll
2010-04-02 18:35:43 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2010-04-02 18:35:43 ----A---- C:\WINDOWS\system32\xvidcore.dll
2010-04-02 18:35:32 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest
2010-04-02 18:35:32 ----A---- C:\WINDOWS\system32\ff_vfw.dll
2010-04-02 18:35:28 ----D---- C:\Program Files\K-Lite Codec Pack
2010-04-02 18:20:54 ----D---- C:\Program Files\7-Zip
2010-04-02 18:19:46 ----D---- C:\WINDOWS\WBEM
2010-04-02 18:17:34 ----HDC---- C:\WINDOWS\ie8
2010-04-02 18:17:34 ----D---- C:\WINDOWS\system32\sk-SK
2010-04-02 18:16:22 ----A---- C:\WINDOWS\system32\normaliz.dll
2010-04-02 18:16:22 ----A---- C:\WINDOWS\system32\nlsdl.dll
2010-04-02 18:16:22 ----A---- C:\WINDOWS\system32\idndl.dll
2010-04-02 18:16:21 ----A---- C:\WINDOWS\system32\msdbg2.dll
2010-04-02 18:16:20 ----N---- C:\WINDOWS\system32\WinFXDocObj.exe
2010-04-02 18:16:20 ----A---- C:\WINDOWS\system32\ieudinit.exe
2010-04-02 18:16:16 ----N---- C:\WINDOWS\system32\msrating.dll.mui
2010-04-02 18:16:14 ----N---- C:\WINDOWS\system32\mshta.exe.mui
2010-04-02 18:16:14 ----N---- C:\WINDOWS\system32\msfeedssync.exe
2010-04-02 18:16:14 ----N---- C:\WINDOWS\system32\msfeedsbs.dll
2010-04-02 18:16:14 ----N---- C:\WINDOWS\system32\msfeeds.dll
2010-04-02 18:16:11 ----N---- C:\WINDOWS\system32\ieui.dll
2010-04-02 18:16:11 ----N---- C:\WINDOWS\system32\iertutil.dll
2010-04-02 18:16:10 ----N---- C:\WINDOWS\system32\ieframe.dll.mui
2010-04-02 18:16:08 ----N---- C:\WINDOWS\system32\ieframe.dll
2010-04-02 18:16:06 ----N---- C:\WINDOWS\system32\iedkcs32.dll.mui
2010-04-02 18:16:06 ----N---- C:\WINDOWS\system32\ieapfltr.dll
2010-04-02 18:16:06 ----N---- C:\WINDOWS\system32\ie4uinit.exe.mui
2010-04-02 18:16:06 ----N---- C:\WINDOWS\system32\icardie.dll
2010-04-02 18:16:05 ----N---- C:\WINDOWS\system32\advpack.dll.mui
2010-04-02 18:12:58 ----D---- C:\Program Files\FOXIT READER
2010-04-02 18:11:26 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\Thinstall
2010-04-02 10:52:58 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\Malwarebytes
2010-04-02 10:52:29 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2010-04-02 10:52:24 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-04-02 10:36:18 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\Macromedia
2010-04-02 10:36:13 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\Adobe
2010-04-02 00:18:00 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\Sun
2010-04-02 00:17:18 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\ArcSoft
2010-04-02 00:08:24 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\Identities
2010-04-02 00:08:05 ----SD---- C:\Documents and Settings\Pajtas.HP\Application Data\Microsoft
2010-04-02 00:08:05 ----ASH---- C:\Documents and Settings\Pajtas.HP\Application Data\desktop.ini
2010-04-01 23:55:10 ----N---- C:\WINDOWS\system32\msxml6r.dll
2010-04-01 23:55:10 ----N---- C:\WINDOWS\system32\msxml6.dll
2010-04-01 23:54:55 ----N---- C:\WINDOWS\system32\smtpapi.dll
2010-04-01 23:54:55 ----N---- C:\WINDOWS\system32\rwnh.dll
2010-04-01 23:54:48 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2010-04-01 23:54:48 ----N---- C:\WINDOWS\system32\azroles.dll
2010-04-01 23:54:48 ----N---- C:\WINDOWS\system32\aaclient.dll
2010-04-01 23:54:47 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2010-04-01 23:54:47 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2010-04-01 23:54:47 ----N---- C:\WINDOWS\system32\credssp.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\eapphost.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\eappgnui.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\eappcfg.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\eapolqec.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\dot3ui.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\dot3svc.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\dot3msm.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\dot3api.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\dimsroam.dll
2010-04-01 23:54:45 ----N---- C:\WINDOWS\system32\eapsvc.dll
2010-04-01 23:54:45 ----N---- C:\WINDOWS\system32\eapqec.dll
2010-04-01 23:54:45 ----N---- C:\WINDOWS\system32\eappprxy.dll
2010-04-01 23:54:43 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2010-04-01 23:54:43 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2010-04-01 23:54:43 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2010-04-01 23:54:42 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2010-04-01 23:54:42 ----N---- C:\WINDOWS\system32\kmsvc.dll
2010-04-01 23:54:42 ----N---- C:\WINDOWS\system32\kbdpash.dll
2010-04-01 23:54:41 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2010-04-01 23:54:41 ----N---- C:\WINDOWS\system32\mssha.dll
2010-04-01 23:54:41 ----N---- C:\WINDOWS\system32\mmcperf.exe
2010-04-01 23:54:41 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2010-04-01 23:54:41 ----N---- C:\WINDOWS\system32\mmcex.dll
2010-04-01 23:54:41 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2010-04-01 23:54:40 ----N---- C:\WINDOWS\system32\napstat.exe
2010-04-01 23:54:40 ----N---- C:\WINDOWS\system32\napmontr.dll
2010-04-01 23:54:40 ----N---- C:\WINDOWS\system32\napipsec.dll
2010-04-01 23:54:39 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2010-04-01 23:54:39 ----N---- C:\WINDOWS\system32\onex.dll
2010-04-01 23:54:38 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2010-04-01 23:54:38 ----N---- C:\WINDOWS\system32\rasqec.dll
2010-04-01 23:54:38 ----N---- C:\WINDOWS\system32\qutil.dll
2010-04-01 23:54:38 ----N---- C:\WINDOWS\system32\qcliprov.dll
2010-04-01 23:54:38 ----N---- C:\WINDOWS\system32\qagentrt.dll
2010-04-01 23:54:38 ----N---- C:\WINDOWS\system32\qagent.dll
2010-04-01 23:54:37 ----N---- C:\WINDOWS\system32\setupn.exe
2010-04-01 23:54:33 ----N---- C:\WINDOWS\system32\tspkg.dll
2010-04-01 23:54:33 ----N---- C:\WINDOWS\system32\tsgqec.dll
2010-04-01 23:54:32 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2010-04-01 23:54:32 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2010-04-01 23:54:32 ----N---- C:\WINDOWS\system32\verclsid.exe
2010-04-01 23:54:32 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-04-01 23:54:31 ----N---- C:\WINDOWS\system32\wmphoto.dll
2010-04-01 23:54:31 ----N---- C:\WINDOWS\system32\wlanapi.dll
2010-04-01 23:54:30 ----A---- C:\WINDOWS\system32\xmllite.dll
2010-04-01 23:54:29 ----N---- C:\WINDOWS\system32\xpsp3res.dll
2010-04-01 23:54:28 ----D---- C:\WINDOWS\system32\en-us
2010-04-01 23:54:25 ----D---- C:\WINDOWS\system32\scripting
2010-04-01 23:54:21 ----D---- C:\WINDOWS\l2schemas
2010-04-01 23:54:19 ----D---- C:\WINDOWS\system32\en
2010-04-01 23:45:33 ----D---- C:\WINDOWS\network diagnostic
2010-04-01 23:41:36 ----A---- C:\WINDOWS\system32\WMErrSKY.dll
2010-04-01 23:41:33 ----D---- C:\WINDOWS\system32\1051
2010-04-01 23:15:47 ----D---- C:\Documents and Settings\All Users\Application Data\Sun
2010-04-01 23:14:55 ----A---- C:\WINDOWS\system32\javaws.exe
2010-04-01 23:14:54 ----A---- C:\WINDOWS\system32\javaw.exe
2010-04-01 23:14:54 ----A---- C:\WINDOWS\system32\java.exe
2010-04-01 22:22:16 ----D---- C:\Program Files\Yamicsoft
2010-04-01 21:26:24 ----D---- C:\WINDOWS\system32\NtmsData
2010-04-01 20:44:14 ----D---- C:\Program Files\CCleaner
2010-03-31 23:45:50 ----A---- C:\WINDOWS\NIRCMD.exe
2010-03-31 23:45:50 ----A---- C:\WINDOWS\MBR.exe
2010-03-31 23:45:43 ----A---- C:\WINDOWS\PEV.exe
2010-03-31 23:45:42 ----A---- C:\WINDOWS\zip.exe
2010-03-31 23:45:42 ----A---- C:\WINDOWS\SWREG.exe
2010-03-31 23:45:42 ----A---- C:\WINDOWS\sed.exe
2010-03-31 23:45:42 ----A---- C:\WINDOWS\grep.exe
2010-03-31 23:45:40 ----A---- C:\WINDOWS\SWXCACLS.exe
2010-03-31 23:45:40 ----A---- C:\WINDOWS\SWSC.exe
2010-03-31 23:45:12 ----D---- C:\WINDOWS\ERDNT
2010-03-14 15:46:02 ----A---- C:\WINDOWS\system32\deploytk.dll

======List of files/folders modified in the last 1 months======

2010-04-04 14:25:22 ----RD---- C:\Program Files
2010-04-04 14:12:38 ----D---- C:\WINDOWS\system32\drivers
2010-04-04 14:12:37 ----HD---- C:\WINDOWS\inf
2010-04-04 14:12:37 ----D---- C:\WINDOWS\system32\CatRoot
2010-04-04 14:12:22 ----HD---- C:\Program Files\InstallShield Installation Information
2010-04-04 14:11:32 ----D---- C:\WINDOWS
2010-04-04 14:11:22 ----D---- C:\WINDOWS\system32
2010-04-04 14:10:26 ----D---- C:\WINDOWS\system32\CatRoot2
2010-04-04 14:08:31 ----D---- C:\WINDOWS\Temp
2010-04-04 14:07:17 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-04-04 14:06:05 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-04-04 14:05:32 ----D---- C:\WINDOWS\system
2010-04-04 14:05:31 ----D---- C:\WINDOWS\VirtualEar
2010-04-04 11:42:35 ----D---- C:\WINDOWS\system32\config
2010-04-04 09:42:44 ----D---- C:\Program Files\Common Files\Real
2010-04-04 09:42:37 ----D---- C:\Program Files\Common Files
2010-04-04 09:41:45 ----SHD---- C:\WINDOWS\Installer
2010-04-04 09:37:01 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer
2010-04-04 09:29:59 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2010-04-03 12:20:16 ----A---- C:\WINDOWS\ODBC.INI
2010-04-03 10:28:51 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-04-03 10:27:26 ----RD---- C:\WINDOWS\Web
2010-04-03 10:24:48 ----A---- C:\WINDOWS\ODBCINST.INI
2010-04-03 10:20:09 ----D---- C:\WINDOWS\system32\ias
2010-04-02 19:01:53 ----RD---- C:\Program Files\Skype
2010-04-02 19:01:29 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
2010-04-02 18:43:36 ----SD---- C:\WINDOWS\Tasks
2010-04-02 18:38:44 ----D---- C:\WINDOWS\Help
2010-04-02 18:38:44 ----D---- C:\Program Files\Internet Explorer
2010-04-02 18:25:02 ----D---- C:\Program Files\IrfanView
2010-04-02 18:19:33 ----D---- C:\WINDOWS\Media
2010-04-02 18:02:17 ----D---- C:\WINDOWS\Debug
2010-04-02 18:02:16 ----SHD---- C:\RECYCLER
2010-04-02 14:25:27 ----SHD---- C:\System Volume Information
2010-04-02 11:16:34 ----D---- C:\Program Files\Windows Media Player
2010-04-02 11:16:22 ----D---- C:\Documents and Settings
2010-04-02 11:11:29 ----D---- C:\WINDOWS\provisioning
2010-04-02 11:04:52 ----RSD---- C:\WINDOWS\assembly
2010-04-02 11:04:52 ----D---- C:\WINDOWS\Microsoft.NET
2010-04-02 00:11:39 ----D---- C:\WINDOWS\system32\Restore
2010-04-02 00:07:32 ----RSD---- C:\WINDOWS\Fonts
2010-04-02 00:07:32 ----D---- C:\WINDOWS\system32\Setup
2010-04-01 23:55:13 ----D---- C:\Program Files\Messenger
2010-04-01 23:55:11 ----D---- C:\WINDOWS\ServicePackFiles
2010-04-01 23:54:53 ----D---- C:\WINDOWS\system32\inetsrv
2010-04-01 23:54:53 ----D---- C:\WINDOWS\ime
2010-04-01 23:54:28 ----D---- C:\WINDOWS\system32\usmt
2010-04-01 23:54:19 ----D---- C:\WINDOWS\system32\bits
2010-04-01 23:54:19 ----D---- C:\WINDOWS\peernet
2010-04-01 23:54:18 ----D---- C:\Program Files\Movie Maker
2010-04-01 23:49:25 ----D---- C:\WINDOWS\mui
2010-04-01 23:48:22 ----D---- C:\WINDOWS\ehome
2010-04-01 23:48:08 ----D---- C:\WINDOWS\system32\npp
2010-04-01 23:48:06 ----D---- C:\WINDOWS\msagent
2010-04-01 23:48:05 ----D---- C:\WINDOWS\srchasst
2010-04-01 23:48:03 ----D---- C:\Program Files\NetMeeting
2010-04-01 23:48:02 ----D---- C:\WINDOWS\system32\Com
2010-04-01 23:47:55 ----D---- C:\Program Files\Windows NT
2010-04-01 23:47:54 ----D---- C:\Program Files\Outlook Express
2010-04-01 23:43:29 ----D---- C:\WINDOWS\system32\wbem
2010-04-01 23:41:51 ----D---- C:\WINDOWS\PCHEALTH
2010-04-01 23:41:44 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-04-01 23:41:16 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-04-01 23:40:54 ----D---- C:\WINDOWS\system32\oobe
2010-04-01 23:40:43 ----D---- C:\Program Files\Common Files\System
2010-04-01 23:40:30 ----D---- C:\WINDOWS\AppPatch
2010-04-01 23:15:34 ----D---- C:\Program Files\Common Files\Java
2010-04-01 23:14:28 ----D---- C:\Program Files\Java
2010-04-01 22:17:59 ----D---- C:\WINDOWS\WinSxS
2010-04-01 22:17:04 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-04-01 21:31:11 ----D---- C:\WINDOWS\security
2010-04-01 21:25:33 ----D---- C:\Program Files\Mozilla Firefox
2010-04-01 21:23:00 ----A---- C:\WINDOWS\hplj1320.ini
2010-04-01 21:16:09 ----D---- C:\Program Files\Microsoft ActiveSync
2010-04-01 20:47:34 ----D---- C:\WINDOWS\Minidump
2010-04-01 19:03:15 ----A---- C:\WINDOWS\system.ini
2010-04-01 18:27:30 ----SHD---- C:\WINDOWS\CSC
2010-03-31 23:48:26 ----D---- C:\Program Files\ESET

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 intelppm;Intel Processor Driver; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-14 36352]
R1 nod32drv;nod32drv; C:\WINDOWS\system32\drivers\nod32drv.sys [2007-02-05 15424]
R1 sscdbhk5;sscdbhk5; C:\WINDOWS\system32\drivers\sscdbhk5.sys [2004-07-14 5627]
R1 ssrtln;ssrtln; C:\WINDOWS\system32\drivers\ssrtln.sys [2004-07-14 23545]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-08-23 12032]
R2 AMON;AMON; C:\WINDOWS\system32\drivers\amon.sys [2007-02-05 512096]
R2 cpqdfw;Diagnostics Driver; \??\C:\WINDOWS\System32\drivers\cpqdfw.sys []
R2 cq_mem;Diagnostics Memory Driver; \??\C:\WINDOWS\System32\drivers\cq_mem.sys []
R2 cqcpu;Diagnostics CPU Driver; \??\C:\WINDOWS\System32\drivers\cqcpu.sys []
R2 drvnddm;drvnddm; C:\WINDOWS\system32\drivers\drvnddm.sys [2004-07-14 40448]
R2 irda;IrDA Protocol; C:\WINDOWS\System32\DRIVERS\irda.sys [2008-04-14 88192]
R2 tfsnboio;tfsnboio; C:\WINDOWS\system32\dla\tfsnboio.sys [2004-08-03 25723]
R2 tfsncofs;tfsncofs; C:\WINDOWS\system32\dla\tfsncofs.sys [2004-08-03 34843]
R2 tfsndrct;tfsndrct; C:\WINDOWS\system32\dla\tfsndrct.sys [2004-08-03 4123]
R2 tfsndres;tfsndres; C:\WINDOWS\system32\dla\tfsndres.sys [2004-08-03 2239]
R2 tfsnifs;tfsnifs; C:\WINDOWS\system32\dla\tfsnifs.sys [2004-08-03 86138]
R2 tfsnopio;tfsnopio; C:\WINDOWS\system32\dla\tfsnopio.sys [2004-08-03 14715]
R2 tfsnpool;tfsnpool; C:\WINDOWS\system32\dla\tfsnpool.sys [2004-08-03 6363]
R2 tfsnudf;tfsnudf; C:\WINDOWS\system32\dla\tfsnudf.sys [2004-08-03 98714]
R2 tfsnudfa;tfsnudfa; C:\WINDOWS\system32\dla\tfsnudfa.sys [2004-08-03 100603]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2004-11-08 127744]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\System32\DRIVERS\AGRSM.sys [2003-05-03 1170464]
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2004-01-18 669696]
R3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2004-06-02 16896]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\System32\DRIVERS\btport.sys [2004-06-02 30235]
R3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\System32\DRIVERS\btwdndis.sys [2004-06-02 147864]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2004-06-02 53816]
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\System32\DRIVERS\CmBatt.sys [2008-04-14 13952]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\System32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-08-23 5888]
R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2005-04-04 74496]
R3 senfilt;senfilt; C:\WINDOWS\system32\drivers\senfilt.sys [2004-04-26 381056]
R3 SMCIRDA;SMC IrCC Miniport Device Driver; C:\WINDOWS\System32\DRIVERS\smcirda.sys [2001-08-17 35913]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2004-10-13 259840]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\System32\DRIVERS\SynTP.sys [2004-11-04 186016]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Microsoft USB Standard Hub Driver; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 w22n51;Intel(R) PRO/Wireless 2200 Adapter Driver for Windows XP; C:\WINDOWS\system32\DRIVERS\w22n51.sys [2004-09-21 3151232]
R3 WBSD;Winbond Secure Digital Storage (SD/MMC) Device Driver; C:\WINDOWS\System32\Drivers\WBSD.SYS [2003-05-06 27008]
S1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 catchme;catchme; \??\C:\DOCUME~1\pajtas\LOCALS~1\Temp\catchme.sys []
S3 dot4;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2008-04-14 206976]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys [2001-08-17 12928]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2001-08-17 23808]
S3 EL3C589;3Com Megahertz LAN PC Card Driver; C:\WINDOWS\System32\DRIVERS\el589nd5.sys [2001-08-17 26141]
S3 ENUM1394;%1394\031887&040892.DeviceDesc%; C:\WINDOWS\System32\DRIVERS\enum1394.sys [2001-08-17 6400]
S3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 MidiSyn;MidiSyn; C:\WINDOWS\system32\drivers\MidiSyn.sys [2004-09-14 88960]
S3 mouhid;Mouse HID Driver; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12160]
S3 MSIRCOMM;Microsoft IR Communications Driver; C:\WINDOWS\System32\DRIVERS\MSIRCOMM.sys [2008-04-14 22016]
S3 rtl8139;Realtek RTL8139/810x Family Fast Ethernet NIC NT Driver; C:\WINDOWS\System32\DRIVERS\R8139n51.SYS [2003-03-15 46976]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\System32\DRIVERS\wceusbsh.sys [2004-12-06 104064]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2004-01-18 397312]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2004-06-03 163840]
R2 Irmon;Infrared Monitor; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-03-09 153376]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [2001-02-23 270336]
R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2007-02-05 552064]
R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\System32\wdfmgr.exe [2004-09-22 38912]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\HPZipm12.exe [2003-10-22 65536]

-----------------EOF-----------------

Zdravím


Kdo Vám poradil použít ComboFix Máte z něj log

Nedoporučuji používat ComboFix z vlastní iniciativy, může dojít k poškození systému!


Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe

• Spusťte program, poté klikněte na Prohledat
• Po dokončení, sem vložte logy OTL.Txt a Extras.txt

Zdravim
log nemam, to nebola moja praca, ja som NB dostal az teraz, bola tam haved ktoru odstranil NOD po aktualizacii databazy virov. Ale daco sa mi na nom nezda. Preto prosim skusenejsich o pomoc.

Tu su logy:

OTL logfile created on: 4. 4. 2010 16:10:56 - Run 1
OTL by OldTimer - Version 3.2.1.0 Folder = D:\Dokumenty Mpajtas\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041b | Country: Slovakia | Language: SKY | Date Format: d. M. yyyy

255,00 Mb Total Physical Memory | 58,00 Mb Available Physical Memory | 23,00% Memory free
618,00 Mb Paging File | 296,00 Mb Available in Paging File | 48,00% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 14,65 Gb Total Space | 6,39 Gb Free Space | 43,63% Space Free | Partition Type: NTFS
Drive D: | 22,60 Gb Total Space | 13,24 Gb Free Space | 58,57% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HP
Current User Name: Pajtas
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010.04.04 16:09:17 | 000,561,664 | ---- | M] (OldTimer Tools) -- D:\Dokumenty Mpajtas\Downloads\OTL.exe
PRC - [2010.04.04 10:49:17 | 007,479,456 | ---- | M] (Hewlett-Packard Company ) -- D:\install\nx7010\sp28857.exe
PRC - [2010.03.28 05:13:16 | 000,530,416 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Pajtas.HP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
PRC - [2008.04.14 05:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.02.05 17:49:00 | 000,949,376 | ---- | M] (Eset ) -- C:\Program Files\ESET\nod32kui.exe
PRC - [2007.02.05 17:48:59 | 000,552,064 | ---- | M] (Eset ) -- C:\Program Files\ESET\nod32krn.exe
PRC - [2004.11.04 18:40:08 | 000,098,394 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
PRC - [2004.10.14 09:11:10 | 001,388,544 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
PRC - [2004.06.02 18:48:22 | 000,565,309 | ---- | M] (WIDCOMM, Inc.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2004.06.02 18:46:52 | 001,249,364 | ---- | M] (WIDCOMM, Inc.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
PRC - [2002.09.20 14:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe


========== Modules (SafeList) ==========

MOD - [2010.04.04 16:09:17 | 000,561,664 | ---- | M] (OldTimer Tools) -- D:\Dokumenty Mpajtas\Downloads\OTL.exe
MOD - [2004.11.04 18:39:58 | 000,069,722 | ---- | M] (Synaptics, Inc.) -- C:\WINDOWS\system32\SynTPFcs.dll


========== Win32 Services (SafeList) ==========

SRV - [2007.02.05 17:48:59 | 000,552,064 | ---- | M] (Eset ) [Auto | Running] -- C:\Program Files\ESET\nod32krn.exe -- (NOD32krn)
SRV - [2005.11.14 02:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2003.10.22 11:19:22 | 000,065,536 | ---- | M] (HP) [On_Demand | Stopped] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
SRV - [2002.09.20 14:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Running] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))


========== Driver Services (SafeList) ==========

DRV - [2010.01.08 22:11:17 | 000,000,000 | ---- | M] () [Kernel | Boot | Stopped] -- C:\WINDOWS\system32\drivers\hihodt.sys -- (hihodt)
DRV - [2007.02.05 17:49:04 | 000,512,096 | ---- | M] (Eset ) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\amon.sys -- (AMON)
DRV - [2007.02.05 17:48:58 | 000,015,424 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\nod32drv.sys -- (nod32drv)
DRV - [2005.04.04 01:00:02 | 000,074,496 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtlnicxp.sys -- (RTL8023xp)
DRV - [2004.11.04 18:26:42 | 000,186,016 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SynTP.sys -- (SynTP)
DRV - [2004.09.21 10:49:46 | 003,151,232 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w22n51.sys -- (w22n51) Intel(R)
DRV - [2004.09.14 12:55:44 | 000,088,960 | ---- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MidiSyn.sys -- (MidiSyn)
DRV - [2004.08.17 04:21:00 | 000,087,168 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\drvmcdb.sys -- (drvmcdb)
DRV - [2004.08.03 02:05:00 | 000,100,603 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsnudfa.sys -- (tfsnudfa)
DRV - [2004.08.03 02:05:00 | 000,098,714 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsnudf.sys -- (tfsnudf)
DRV - [2004.08.03 02:05:00 | 000,086,138 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsnifs.sys -- (tfsnifs)
DRV - [2004.08.03 02:05:00 | 000,034,843 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsncofs.sys -- (tfsncofs)
DRV - [2004.08.03 02:05:00 | 000,025,723 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsnboio.sys -- (tfsnboio)
DRV - [2004.08.03 02:05:00 | 000,014,715 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsnopio.sys -- (tfsnopio)
DRV - [2004.08.03 02:05:00 | 000,006,363 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsnpool.sys -- (tfsnpool)
DRV - [2004.08.03 02:05:00 | 000,004,123 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsndrct.sys -- (tfsndrct)
DRV - [2004.08.03 02:05:00 | 000,002,239 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsndres.sys -- (tfsndres)
DRV - [2004.07.14 12:29:04 | 000,005,627 | ---- | M] (Sonic Solutions) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\sscdbhk5.sys -- (sscdbhk5)
DRV - [2004.07.14 12:28:50 | 000,023,545 | ---- | M] (Sonic Solutions) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\ssrtln.sys -- (ssrtln)
DRV - [2004.07.14 03:56:00 | 000,040,448 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\drvnddm.sys -- (drvnddm)
DRV - [2004.06.02 18:13:32 | 000,016,896 | ---- | M] (WIDCOMM, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio)
DRV - [2004.06.02 18:07:28 | 001,240,938 | ---- | M] (WIDCOMM, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\btkrnl.sys -- (BTKRNL)
DRV - [2004.06.02 18:00:10 | 000,147,864 | ---- | M] (WIDCOMM, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btwdndis.sys -- (BTWDNDIS)
DRV - [2004.06.02 17:59:58 | 000,030,235 | ---- | M] (WIDCOMM, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
DRV - [2004.06.02 17:50:16 | 000,053,816 | ---- | M] (WIDCOMM, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
DRV - [2004.04.26 08:49:56 | 000,381,056 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (senfilt)
DRV - [2004.01.18 04:48:08 | 000,669,696 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2003.05.06 20:46:38 | 000,027,008 | ---- | M] (Winbond Electronics Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wbsd.sys -- (WBSD) Winbond Secure Digital Storage (SD/MMC)
DRV - [2003.05.03 18:16:00 | 001,170,464 | R--- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2003.03.15 16:00:02 | 000,046,976 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\R8139n51.sys -- (rtl8139)
DRV - [2002.08.19 15:35:44 | 000,019,845 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Cpqdfw.sys -- (cpqdfw)
DRV - [2001.08.17 15:46:40 | 000,006,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\enum1394.sys -- (ENUM1394)
DRV - [2001.08.17 14:10:28 | 000,035,913 | ---- | M] (SMC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\smcirda.sys -- (SMCIRDA)
DRV - [2001.08.17 13:10:52 | 000,026,141 | ---- | M] (3Com Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\el589nd5.sys -- (EL3C589)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[2010.04.01 21:25:33 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2006.11.09 16:20:00 | 002,111,096 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\NPSWF32.dll

O1 HOSTS File: ([2006.03.22 21:30:38 | 000,000,736 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O4 - HKLM..\Run: [ATIModeChange] C:\WINDOWS\System32\Ati2mdxx.exe (ATI Technologies, Inc.)
O4 - HKLM..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\Cpqset.exe ()
O4 - HKLM..\Run: [nod32kui] C:\Program Files\Eset\nod32kui.exe (Eset )
O4 - HKLM..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\BTTray.lnk = C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (WIDCOMM, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office10\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {3334504D-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... p43dmo.CAB (Reg Error: Key error.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/windows ... 3161466792 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {A8739816-022C-11D6-A85D-00C04F9AEAFB} http://www.tale.sk/envirokamera/wg_webeye.cab (Web Camera Server Control)
O16 - DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} https://btconferencing.webex.com/client ... eatgpc.cab (GpcContainer Class)
O16 - DPF: {EAA105FE-7BBD-4196-8B96-D46743894195} http://www.international.sk/plugin/mjpegcontrol.cab (MjpegControl Class)
O16 - DPF: GEMINI IBS 20 LUBA (sk) https://ibs1.luba.sk/sk/LUBA-2.3.16.6_sk.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java Reg Error: Value error. (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 217.73.16.2 192.168.0.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuálna domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\hp.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\hp.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005.02.16 23:17:28 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010.04.04 14:25:22 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010.04.04 14:25:18 | 000,000,000 | ---D | C] -- C:\rsit
[2010.04.04 14:12:26 | 000,074,496 | ---- | C] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\drivers\Rtlnicxp.sys
[2010.04.04 14:11:32 | 000,032,768 | ---- | C] (hp) -- C:\WINDOWS\iwlandrvxpver.dll
[2010.04.04 14:11:14 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2010.04.04 14:10:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2010.04.04 14:06:19 | 000,088,960 | ---- | C] (Analog Devices, Inc.) -- C:\WINDOWS\System32\drivers\MidiSyn.sys
[2010.04.04 14:05:42 | 000,381,056 | ---- | C] (Sensaura) -- C:\WINDOWS\System32\drivers\senfilt.sys
[2010.04.04 13:55:49 | 000,081,920 | ---- | C] (Synaptics, Inc.) -- C:\WINDOWS\System32\SynTPCo2.dll
[2010.04.04 13:52:44 | 000,000,000 | ---D | C] -- C:\Program Files\GCC4243N_fw
[2010.04.04 13:48:35 | 000,000,000 | ---D | C] -- C:\SWSetup
[2010.04.04 11:48:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010.04.04 09:42:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pajtas.HP\Application Data\Real
[2010.04.04 09:36:41 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2010.04.03 10:45:14 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy
[2010.04.03 10:05:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pajtas.HP\Application Data\PDFcreator
[2010.04.03 09:40:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pajtas.HP\Application Data\Media Player Classic
[2010.04.02 19:02:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pajtas.HP\Application Data\Skype
[2010.04.02 18:43:38 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Pajtas.HP\IECompatCache
[2010.04.02 18:42:47 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Pajtas.HP\PrivacIE
[2010.04.02 18:38:59 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Pajtas.HP\IETldCache
[2010.04.02 18:35:46 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm
[2010.04.02 18:35:45 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll
[2010.04.02 18:35:45 | 000,151,552 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm
[2010.04.02 18:35:28 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2010.04.02 18:20:54 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2010.04.02 18:19:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2010.04.02 18:17:34 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2010.04.02 18:17:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\sk-SK
[2010.04.02 18:16:22 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\idndl.dll
[2010.04.02 18:16:22 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nlsdl.dll
[2010.04.02 18:16:21 | 000,265,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdbg2.dll
[2010.04.02 18:16:20 | 000,914,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll
[2010.04.02 18:16:20 | 000,208,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WinFXDocObj.exe
[2010.04.02 18:16:20 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ieudinit.exe
[2010.04.02 18:16:19 | 000,759,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\VGX.dll
[2010.04.02 18:16:19 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\webcheck.dll
[2010.04.02 18:16:18 | 000,420,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vbscript.dll
[2010.04.02 18:16:17 | 001,206,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll
[2010.04.02 18:16:16 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.tlb
[2010.04.02 18:16:16 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstime.dll
[2010.04.02 18:16:16 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrating.dll
[2010.04.02 18:16:16 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sqmapi.dll
[2010.04.02 18:16:16 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\occache.dll
[2010.04.02 18:16:16 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\url.dll
[2010.04.02 18:16:16 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdc.ocx
[2010.04.02 18:16:16 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmled.dll
[2010.04.02 18:16:16 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msrating.dll.mui
[2010.04.02 18:16:16 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmler.dll
[2010.04.02 18:16:16 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pngfilt.dll
[2010.04.02 18:16:15 | 005,937,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2010.04.02 18:16:14 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeeds.dll
[2010.04.02 18:16:14 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeedsbs.dll
[2010.04.02 18:16:14 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshta.exe
[2010.04.02 18:16:14 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licmgr10.dll
[2010.04.02 18:16:14 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll
[2010.04.02 18:16:14 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeedssync.exe
[2010.04.02 18:16:14 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshta.exe.mui
[2010.04.02 18:16:13 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jscript.dll
[2010.04.02 18:16:13 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inseng.dll
[2010.04.02 18:16:12 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcpl.cpl
[2010.04.02 18:16:12 | 000,638,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe
[2010.04.02 18:16:12 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imgutil.dll
[2010.04.02 18:16:11 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iepeers.dll
[2010.04.02 18:16:11 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ieui.dll
[2010.04.02 18:16:11 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iesetup.dll
[2010.04.02 18:16:11 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iernonce.dll
[2010.04.02 18:16:10 | 001,298,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ieframe.dll.mui
[2010.04.02 18:16:06 | 003,698,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ieapfltr.dat
[2010.04.02 18:16:06 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ieapfltr.dll
[2010.04.02 18:16:06 | 000,391,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedkcs32.dll
[2010.04.02 18:16:06 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieaksie.dll
[2010.04.02 18:16:06 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtrans.dll
[2010.04.02 18:16:06 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ie4uinit.exe
[2010.04.02 18:16:06 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieakeng.dll
[2010.04.02 18:16:06 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll.mui
[2010.04.02 18:16:06 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hmmapi.dll
[2010.04.02 18:16:06 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe.mui
[2010.04.02 18:16:05 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtmsft.dll
[2010.04.02 18:16:05 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\advpack.dll
[2010.04.02 18:16:05 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admparse.dll
[2010.04.02 18:16:05 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\corpol.dll
[2010.04.02 18:16:05 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\advpack.dll.mui
[2010.04.02 18:12:58 | 000,000,000 | ---D | C] -- C:\Program Files\FOXIT READER
[2010.04.02 18:11:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pajtas.HP\Local Settings\Application Data\Thinstall
[2010.04.02 18:11:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pajtas.HP\Application Data\Thinstall
[2010.04.02 18:02:16 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Pajtas.HP\Recent
[2010.04.02 10:52:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pajtas.HP\Application Data\Malwarebytes
[2010.04.02 10:52:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010.04.02 10:52:24 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010.04.02 10:49:54 | 000,000,000 | ---D | C] -- D:\Dokumenty Mpajtas\Downloads
[2010.04.02 10:38:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pajtas.HP\Local Settings\Application Data\Temp
[2010.04.02 10:38:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pajtas.HP\Local Settings\Application Data\Google
[2010.04.02 10:37:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pajtas.HP\Local Settings\Application Data\Deployment
[2010.04.02 10:36:43 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Pajtas.HP\UserData
[2010.04.02 10:36:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pajtas.HP\Application Data\Macromedia
[2010.04.02 10:36:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pajtas.HP\Application Data\Adobe
[2010.04.02 00:18:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pajtas.HP\Application Data\Sun
[2010.04.02 00:17:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pajtas.HP\Application Data\ArcSoft
[2010.04.02 00:16:19 | 000,000,000 | ---D | C] -- D:\Dokumenty Mpajtas\Prijaté súbory
[2010.04.02 00:16:19 | 000,000,000 | ---D | C] -- D:\Dokumenty Mpajtas\Bluetooth Exchange Folder
[2010.04.02 00:08:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pajtas.HP\Bluetooth Software
[2010.04.02 00:08:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pajtas.HP\Application Data\Identities
[2010.04.02 00:08:13 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Pajtas.HP\Cookies
[2010.04.02 00:08:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pajtas.HP\Local Settings\Application Data\Microsoft
[2010.04.02 00:08:05 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Pajtas.HP\Application Data\Microsoft
[2010.04.02 00:08:05 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Pajtas.HP\SendTo
[2010.04.02 00:08:05 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Pajtas.HP\Application Data
[2010.04.02 00:08:05 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Pajtas.HP\Start Menu
[2010.04.02 00:08:05 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Pajtas.HP\Favorites
[2010.04.02 00:08:05 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Pajtas.HP\Templates
[2010.04.02 00:08:05 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Pajtas.HP\PrintHood
[2010.04.02 00:08:05 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Pajtas.HP\NetHood
[2010.04.02 00:08:05 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Pajtas.HP\Local Settings
[2010.04.02 00:08:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pajtas.HP\Desktop
[2010.04.01 23:55:10 | 001,306,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll
[2010.04.01 23:55:10 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpcdll.dll
[2010.04.01 23:55:10 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll
[2010.04.01 23:55:10 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll
[2010.04.01 23:54:55 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpapi.dll
[2010.04.01 23:54:55 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwnh.dll
[2010.04.01 23:54:48 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll
[2010.04.01 23:54:48 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2010.04.01 23:54:48 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2010.04.01 23:54:47 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll
[2010.04.01 23:54:46 | 000,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll
[2010.04.01 23:54:46 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll
[2010.04.01 23:54:46 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll
[2010.04.01 23:54:46 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappcfg.dll
[2010.04.01 23:54:46 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll
[2010.04.01 23:54:46 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll
[2010.04.01 23:54:46 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll
[2010.04.01 23:54:46 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll
[2010.04.01 23:54:46 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll
[2010.04.01 23:54:46 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapolqec.dll
[2010.04.01 23:54:46 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3api.dll
[2010.04.01 23:54:46 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3dlg.dll
[2010.04.01 23:54:45 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll
[2010.04.01 23:54:45 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappprxy.dll
[2010.04.01 23:54:43 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll
[2010.04.01 23:54:43 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll
[2010.04.01 23:54:43 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll
[2010.04.01 23:54:42 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll
[2010.04.01 23:54:42 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll
[2010.04.01 23:54:41 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll
[2010.04.01 23:54:41 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll
[2010.04.01 23:54:41 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll
[2010.04.01 23:54:41 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll
[2010.04.01 23:54:41 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll
[2010.04.01 23:54:41 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe
[2010.04.01 23:54:40 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll
[2010.04.01 23:54:40 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe
[2010.04.01 23:54:40 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll
[2010.04.01 23:54:39 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll
[2010.04.01 23:54:39 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\onex.dll
[2010.04.01 23:54:38 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2010.04.01 23:54:38 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll
[2010.04.01 23:54:38 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qutil.dll
[2010.04.01 23:54:38 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll
[2010.04.01 23:54:38 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rasqec.dll
[2010.04.01 23:54:37 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe
[2010.04.01 23:54:33 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2010.04.01 23:54:32 | 000,712,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecs.dll
[2010.04.01 23:54:32 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll
[2010.04.01 23:54:32 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe
[2010.04.01 23:54:31 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll
[2010.04.01 23:54:31 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll
[2010.04.01 23:54:29 | 000,689,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll
[2010.04.01 23:54:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us
[2010.04.01 23:54:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2010.04.01 23:54:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2010.04.01 23:54:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2010.04.01 23:45:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2010.04.01 23:45:23 | 000,144,384 | ---- | C] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\drivers\hdaudbus.sys
[2010.04.01 23:44:46 | 000,090,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\muisetup.exe
[2010.04.01 23:41:36 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WMErrSKY.dll
[2010.04.01 23:41:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1051
[2010.04.01 23:15:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2010.04.01 23:14:56 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010.04.01 23:14:55 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010.04.01 23:14:54 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010.04.01 23:14:54 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010.04.01 22:22:16 | 000,000,000 | ---D | C] -- C:\Program Files\Yamicsoft
[2010.04.01 21:26:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData
[2010.04.01 20:44:14 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010.03.31 23:45:50 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010.03.31 23:45:42 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010.03.31 23:45:40 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010.03.31 23:45:40 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010.03.31 23:45:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010.03.14 15:46:02 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2007.02.19 18:23:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2005.02.16 23:22:49 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2005.02.16 23:22:49 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2005.02.16 23:22:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010.04.04 16:13:00 | 000,001,124 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-500UA.job
[2010.04.04 16:10:02 | 000,000,468 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{D7EF1F49-D10B-4A9A-85C5-2502C4178D94}.job
[2010.04.04 15:43:03 | 000,001,102 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-1007UA.job
[2010.04.04 14:08:06 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.04.04 14:08:03 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.04.04 14:08:01 | 267,833,344 | -HS- | M] () -- C:\hiberfil.sys
[2010.04.04 14:07:06 | 001,835,008 | ---- | M] () -- C:\Documents and Settings\Pajtas.HP\NTUSER.DAT
[2010.04.04 14:07:06 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Pajtas.HP\ntuser.ini
[2010.04.04 11:43:04 | 001,835,008 | -H-- | M] () -- C:\Documents and Settings\Pajtas.HP\NTUSER.DAT.rcbak
[2010.04.04 11:40:22 | 056,616,510 | ---- | M] () -- D:\Dokumenty Mpajtas\BackupRegistry(20100404).reg
[2010.04.04 10:43:01 | 000,001,050 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-1007Core.job
[2010.04.03 12:20:16 | 000,000,376 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2010.04.03 10:28:51 | 000,471,326 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.04.03 10:28:51 | 000,401,398 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.04.03 10:28:51 | 000,062,678 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.04.03 10:28:20 | 000,156,910 | ---- | M] () -- C:\WINDOWS\WMSysPr8.prx
[2010.04.03 10:28:19 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010.04.03 10:24:48 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010.04.02 18:36:07 | 000,000,926 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Media Player Classic.lnk
[2010.04.02 18:25:21 | 000,000,685 | ---- | M] () -- C:\Documents and Settings\Pajtas.HP\Desktop\IrfanView.lnk
[2010.04.02 18:04:46 | 005,364,126 | -H-- | M] () -- C:\Documents and Settings\Pajtas.HP\Local Settings\Application Data\IconCache.db
[2010.04.02 17:49:35 | 000,000,406 | -HS- | M] () -- C:\WINDOWS\setup_9.0.0.722_29.03.2010_13-04drv.spi
[2010.04.02 16:00:00 | 000,000,394 | -H-- | M] () -- C:\WINDOWS\tasks\{5157186C-D3DD-4D8C-8B26-C1E1E283DC72}_LOWEGGK_pajtas.job
[2010.04.02 16:00:00 | 000,000,394 | -H-- | M] () -- C:\WINDOWS\tasks\{255246EC-3ACE-427B-89EF-339C12BC4F44}_LOWEGGK_pajtas.job
[2010.04.02 10:42:42 | 000,002,316 | ---- | M] () -- C:\Documents and Settings\Pajtas.HP\Desktop\Google Chrome.lnk
[2010.04.02 10:37:17 | 000,025,624 | ---- | M] () -- C:\Documents and Settings\Pajtas.HP\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010.04.02 00:15:01 | 000,000,008 | RHS- | M] () -- C:\Documents and Settings\All Users\ntuser.pol
[2010.04.02 00:07:36 | 000,141,240 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.04.01 23:44:22 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2010.04.01 23:13:00 | 000,001,072 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-500Core.job
[2010.04.01 21:31:57 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.04.01 21:23:00 | 000,065,928 | ---- | M] () -- C:\WINDOWS\hplj1320.his
[2010.04.01 21:23:00 | 000,007,267 | ---- | M] () -- C:\WINDOWS\hplj1320.ini
[2010.04.01 19:03:15 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010.03.14 20:00:00 | 000,085,504 | ---- | M] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010.03.14 20:00:00 | 000,000,038 | ---- | M] () -- C:\WINDOWS\avisplitter.ini
[2010.03.09 04:28:28 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010.03.09 04:28:27 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010.03.09 04:28:26 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010.03.09 04:28:20 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2010.03.09 02:16:10 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.04.04 11:42:35 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\Pajtas.HP\NTUSER.DAT.rctemp.LOG
[2010.04.04 11:40:14 | 056,616,510 | ---- | C] () -- D:\Dokumenty Mpajtas\BackupRegistry(20100404).reg
[2010.04.03 10:28:20 | 000,156,910 | ---- | C] () -- C:\WINDOWS\WMSysPr8.prx
[2010.04.02 18:43:36 | 000,000,468 | -H-- | C] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{D7EF1F49-D10B-4A9A-85C5-2502C4178D94}.job
[2010.04.02 18:36:07 | 000,000,926 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Media Player Classic.lnk
[2010.04.02 18:36:01 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010.04.02 18:35:58 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010.04.02 18:35:46 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml
[2010.04.02 18:35:43 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010.04.02 18:35:43 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010.04.02 18:35:32 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010.04.02 18:35:32 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2010.04.02 18:25:21 | 000,000,685 | ---- | C] () -- C:\Documents and Settings\Pajtas.HP\Desktop\IrfanView.lnk
[2010.04.02 18:16:22 | 000,066,384 | ---- | C] () -- C:\WINDOWS\System32\normnfkc.nls
[2010.04.02 18:16:22 | 000,060,294 | ---- | C] () -- C:\WINDOWS\System32\normnfkd.nls
[2010.04.02 18:16:22 | 000,059,342 | ---- | C] () -- C:\WINDOWS\System32\normidna.nls
[2010.04.02 18:16:22 | 000,045,794 | ---- | C] () -- C:\WINDOWS\System32\normnfc.nls
[2010.04.02 18:16:22 | 000,039,284 | ---- | C] () -- C:\WINDOWS\System32\normnfd.nls
[2010.04.02 18:16:21 | 000,008,370 | ---- | C] () -- C:\WINDOWS\System32\IE8Eula.rtf
[2010.04.02 18:16:16 | 000,001,988 | ---- | C] () -- C:\WINDOWS\System32\ticrf.rat
[2010.04.02 18:16:06 | 000,008,798 | ---- | C] () -- C:\WINDOWS\System32\icrav03.rat
[2010.04.02 16:40:17 | 000,000,406 | -HS- | C] () -- C:\WINDOWS\setup_9.0.0.722_29.03.2010_13-04drv.spi
[2010.04.02 10:42:42 | 000,002,316 | ---- | C] () -- C:\Documents and Settings\Pajtas.HP\Desktop\Google Chrome.lnk
[2010.04.02 10:38:13 | 000,001,102 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-1007UA.job
[2010.04.02 10:38:10 | 000,001,050 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-1007Core.job
[2010.04.02 00:08:06 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\Pajtas.HP\ntuser.ini
[2010.04.02 00:08:05 | 000,020,480 | -H-- | C] () -- C:\Documents and Settings\Pajtas.HP\ntuser.dat.LOG
[2010.04.02 00:08:04 | 001,835,008 | -H-- | C] () -- C:\Documents and Settings\Pajtas.HP\NTUSER.DAT.rcbak
[2010.04.02 00:08:04 | 001,835,008 | ---- | C] () -- C:\Documents and Settings\Pajtas.HP\NTUSER.DAT
[2010.04.01 23:41:36 | 000,039,348 | ---- | C] () -- C:\WINDOWS\WMPrfSKY.prx
[2010.04.01 23:08:43 | 000,001,124 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-500UA.job
[2010.04.01 23:08:41 | 000,001,072 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-500Core.job
[2010.04.01 21:21:49 | 000,145,736 | ---- | C] () -- C:\WINDOWS\hplj1320.hi1
[2010.04.01 21:21:49 | 000,013,004 | ---- | C] () -- C:\WINDOWS\hplj1320.bu1
[2010.03.31 23:45:50 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010.03.31 23:45:43 | 000,260,608 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010.03.31 23:45:42 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010.03.31 23:45:42 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010.03.31 23:45:42 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010.03.31 22:51:29 | 267,833,344 | -HS- | C] () -- C:\hiberfil.sys
[2009.12.13 07:47:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\drivers\hihodt.sys
[2008.01.14 10:27:11 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2008.01.14 10:25:58 | 000,000,021 | ---- | C] () -- C:\WINDOWS\CS_setup.ini
[2008.01.14 10:20:50 | 000,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
[2007.12.29 16:52:49 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat
[2007.10.10 16:38:57 | 000,000,135 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2007.10.10 16:38:33 | 000,001,770 | ---- | C] () -- C:\WINDOWS\WINCMD.INI
[2007.05.28 15:23:43 | 000,000,050 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2007.02.21 13:07:37 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2007.02.20 13:28:29 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2007.02.05 17:49:07 | 000,015,424 | ---- | C] () -- C:\WINDOWS\System32\drivers\nod32drv.sys
[2006.03.22 21:08:18 | 000,003,449 | R--- | C] () -- C:\WINDOWS\System32\hptcpmon.ini
[2006.03.22 21:08:18 | 000,000,135 | ---- | C] () -- C:\WINDOWS\System32\AddPort.ini
[2006.03.22 21:07:41 | 000,000,103 | ---- | C] () -- C:\WINDOWS\System32\hptrace.ini
[2006.03.22 21:07:08 | 000,007,267 | ---- | C] () -- C:\WINDOWS\hplj1320.ini
[2005.02.19 21:09:37 | 000,000,061 | ---- | C] () -- C:\WINDOWS\TEXTware.ini
[2005.02.19 21:09:26 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\Twavbx32.dll
[2005.02.19 21:09:26 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\idiom010227.dll
[2005.02.19 21:09:25 | 000,115,200 | ---- | C] () -- C:\WINDOWS\System32\UnzDll.dll
[2005.02.19 21:09:24 | 000,113,288 | ---- | C] () -- C:\WINDOWS\System32\bass.dll
[2005.02.19 21:09:17 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\ILXTBS.DLL
[2005.02.17 08:51:57 | 000,000,182 | ---- | C] () -- C:\WINDOWS\hpbafd.ini
[2005.02.17 08:50:13 | 000,000,008 | RHS- | C] () -- C:\Documents and Settings\All Users\ntuser.pol
[2005.02.17 01:12:18 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005.02.17 01:03:59 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\nms32.dll
[2005.02.17 01:01:35 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2005.02.17 00:34:47 | 000,000,237 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2005.02.17 00:31:56 | 000,000,138 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2005.02.17 00:09:00 | 000,000,137 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2005.02.16 23:59:32 | 000,001,911 | ---- | C] () -- C:\WINDOWS\ACT_CFG.INI
[2005.02.16 23:58:57 | 000,019,845 | ---- | C] () -- C:\WINDOWS\System32\drivers\Cpqdfw.sys
[2005.02.16 23:58:57 | 000,001,108 | ---- | C] () -- C:\WINDOWS\Cpqdiag.ini
[2005.02.16 23:48:41 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\SynTPCoI.dll
[2005.02.16 23:29:00 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\msssc.dll
[2004.06.02 18:28:30 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
[2004.01.18 04:39:06 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\ati2evxx.dll
[2004.01.06 01:22:32 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2002.05.16 00:29:04 | 000,000,607 | ---- | C] () -- C:\WINDOWS\System32\BTNeighborhood.dll.manifest
[2001.11.23 19:18:00 | 000,000,597 | ---- | C] () -- C:\WINDOWS\System32\btcss.dll.manifest
[2001.11.14 14:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll
[2001.10.28 17:42:30 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2001.07.31 12:17:12 | 000,094,274 | ---- | C] () -- C:\WINDOWS\System32\HPBHEALR.DLL
< End of report >

OTL Extras logfile created on: 4. 4. 2010 16:10:56 - Run 1
OTL by OldTimer - Version 3.2.1.0 Folder = D:\Dokumenty Mpajtas\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041b | Country: Slovakia | Language: SKY | Date Format: d. M. yyyy

255,00 Mb Total Physical Memory | 58,00 Mb Available Physical Memory | 23,00% Memory free
618,00 Mb Paging File | 296,00 Mb Available in Paging File | 48,00% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 14,65 Gb Total Space | 6,39 Gb Free Space | 43,63% Space Free | Partition Type: NTFS
Drive D: | 22,60 Gb Total Space | 13,24 Gb Free Space | 58,57% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HP
Current User Name: Pajtas
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- C:\Program Files\VideoLAN\VLC\vlc.exe --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- C:\Program Files\VideoLAN\VLC\vlc.exe --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Intuwave\Shared\mRouterRuntime\mRouterRuntime.exe" = C:\Program Files\Intuwave\Shared\mRouterRuntime\mRouterRuntime.exe:*:Enabled:mRouterRuntime Module -- File not found
"C:\Program Files\Sony Ericsson\Mobile4\Sync Manager\DXP SyncML.exe" = C:\Program Files\Sony Ericsson\Mobile4\Sync Manager\DXP SyncML.exe:*:Enabled:DXP SyncML Module -- File not found

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Sony Ericsson\Update Service\ma3platform.exe" = C:\Program Files\Sony Ericsson\Update Service\ma3platform.exe:*:Enabled:ma3platform -- ()


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator 0.8.0
"{09DA4F91-2A09-4232-AB8C-6BC740096DE3}" = Sonic Update Manager
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
"{1043E281-B080-4947-9BD7-3F1D233BF6D2}" = WinXP Manager
"{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}" = Sonic DLA
"{1881AE03-2BD4-11D4-86BF-00508B10AA88}" = Diagnostics for Windows
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 19
"{3248F0A8-6813-11D6-A77B-00B0D0150040}" = J2SE Runtime Environment 5.0 Update 4
"{3248F0A8-6813-11D6-A77B-00B0D0150060}" = J2SE Runtime Environment 5.0 Update 6
"{3248F0A8-6813-11D6-A77B-00B0D0160010}" = Java(TM) SE Runtime Environment 6 Update 1
"{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java(TM) 6 Update 2
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D719053-5593-11D3-8F25-0060085C1758}" = Microsoft AutoRoute 2001
"{5ADA9741-0570-4096-B5FE-1D55E57537D4}" = Camera Window
"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0
"{755D3B4E-D3A3-4D05-99D8-FC35E26A331C}" = File Viewer Utility 1.2.2
"{90535871-81B9-4D99-8A13-A7EE97F2D7FE}" = Bluetooth by hp
"{9211041B-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional
"{938DB54D-B302-4594-A782-32219F1734AB}" = Canon Camera WIA Driver
"{94FB906A-CF42-4128-A509-D353026A607E}" = REALTEK Gigabit and Fast Ethernet NIC Driver
"{9541FED0-327F-4DF0-8B96-EF57EF622F19}" = RecordNow!
"{97AA0C55-AFAD-4126-B21C-F1318FB6DADA}" = Realtek RTL8139/810x Fast Ethernet NIC Driver Setup
"{AB3AC39D-9915-435D-ACC4-9881E75326BC}" = RemoteCapture 2.7.2
"{AD708DF0-9F04-4CB3-821A-85804A833B4D}" = ArcSoft Camera Suite
"{BE99B4DC-754E-4D40-AFA6-AB43248231EC}" = Canon Camera WIA Driver
"{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}" = Canon Utilities ZoomBrowser EX
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CD815603-AB71-4CFB-B3AC-522298037ACC}" = W83L518D
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{DD066C5F-A5C6-4A2B-8A08-7E3395B72C24}" = CIG
"{E1CDCB03-A90F-4A74-BE8C-CD3AF43190CA}" = Canon Camera WIA Driver
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F11A403B-0DE9-4953-B790-7A2F014FBB2B}" = PhotoStitch
"{F73D7E88-A1BD-4C03-9677-562AE4F1C09C}" = CaddieCard v2
"7-Zip" = 7-Zip 4.65
"ActiveTouchMeetingClient" = WebEx
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Agere Systems Soft Modem" = Agere Systems AC'97 Modem
"All ATI Software" = ATI - Software Uninstall Utility
"ATI Display Driver" = ATI Display Driver
"Broadcom 802.11b Network Adapter" = Broadcom 802.11 Driver
"CCleaner" = CCleaner
"ie8" = Windows Internet Explorer 8
"InstallShield_{5ADA9741-0570-4096-B5FE-1D55E57537D4}" = Canon Camera Window for ZoomBrowser EX
"InstallShield_{755D3B4E-D3A3-4D05-99D8-FC35E26A331C}" = Canon Utilities File Viewer Utility 1.2
"InstallShield_{938DB54D-B302-4594-A782-32219F1734AB}" = Canon PowerShot S45 WIA-Treiber
"InstallShield_{AB3AC39D-9915-435D-ACC4-9881E75326BC}" = Canon Utilities RemoteCapture 2.7
"InstallShield_{BE99B4DC-754E-4D40-AFA6-AB43248231EC}" = Canon PowerShot G3 WIA-Treiber
"InstallShield_{DD066C5F-A5C6-4A2B-8A08-7E3395B72C24}" = Canon Internet Library for ZoomBrowser EX
"InstallShield_{E1CDCB03-A90F-4A74-BE8C-CD3AF43190CA}" = Canon IXY 320, PowerShot S230, IXUS v3 WIA-Treiber
"InstallShield_{F11A403B-0DE9-4953-B790-7A2F014FBB2B}" = Canon Utilities PhotoStitch 3.1
"IrfanView" = IrfanView (remove only)
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.8.3 (Full)
"Lexicon 3.0" = Lingea Lexicon 2000
"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0
"NOD32" = NOD32 Antivirus System
"Oxford Advanced Genie" = Oxford Advanced Genie
"PhotoRecord" = Canon PhotoRecord
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Update Service" = Update Service
"VLC media player" = VideoLAN VLC media player 0.8.6a
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Windows Media Player 10
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR archiver

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 1. 4. 2010 15:59:47 | Computer Name = HP | Source = AutoEnrollment | ID = 15
Description = Automatickej registrácii certifikátu local system sa nepodarilo spojiť
so službou Active Directory (0x8007054b). The specified domain either does not
exist or could not be contacted. Registrácia sa nevykoná.

Error - 1. 4. 2010 16:37:04 | Computer Name = HP | Source = Userenv | ID = 1054
Description = Systém Windows nemôže získať názov radiča domény pre počítačovú sieť.
(The specified domain either does not exist or could not be contacted. ). Spracovanie
politiky skupiny bolo prerušené.

Error - 1. 4. 2010 16:38:04 | Computer Name = HP | Source = AutoEnrollment | ID = 15
Description = Automatickej registrácii certifikátu local system sa nepodarilo spojiť
so službou Active Directory (0x8007054b). The specified domain either does not
exist or could not be contacted. Registrácia sa nevykoná.

Error - 1. 4. 2010 17:03:41 | Computer Name = HP | Source = Userenv | ID = 1054
Description = Systém Windows nemôže získať názov radiča domény pre počítačovú sieť.
(The specified domain either does not exist or could not be contacted. ). Spracovanie
politiky skupiny bolo prerušené.

Error - 1. 4. 2010 17:04:43 | Computer Name = HP | Source = AutoEnrollment | ID = 15
Description = Automatickej registrácii certifikátu local system sa nepodarilo spojiť
so službou Active Directory (0x8007054b). The specified domain either does not
exist or could not be contacted. Registrácia sa nevykoná.

Error - 1. 4. 2010 18:08:49 | Computer Name = HP | Source = Userenv | ID = 1054
Description = Systém Windows nemôže získať názov radiča domény pre počítačovú sieť.
(The specified domain either does not exist or could not be contacted. ). Spracovanie
politiky skupiny bolo prerušené.

Error - 1. 4. 2010 18:08:51 | Computer Name = HP | Source = AutoEnrollment | ID = 15
Description = Automatickej registrácii certifikátu local system sa nepodarilo spojiť
so službou Active Directory (0x8007054b). The specified domain either does not
exist or could not be contacted. Registrácia sa nevykoná.

Error - 1. 4. 2010 15:51:16 | Computer Name = HP | Source = Application Error | ID = 1000
Description = Zlyhanie aplikácie iexplore.exe, verzia 6.0.2900.5512, zlyhanie modulu
unknown, verzia 0.0.0.0, adresa zlyhania 0x62978fc0.

Error - 3. 4. 2010 3:43:08 | Computer Name = HP | Source = Google Update | ID = 20
Description =

Error - 4. 4. 2010 3:43:10 | Computer Name = HP | Source = Google Update | ID = 20
Description =

[ System Events ]
Error - 2. 4. 2010 11:59:11 | Computer Name = HP | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu SENS s argumentmi
potrebnú na spustenie servera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 2. 4. 2010 11:59:11 | Computer Name = HP | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu SENS s argumentmi
potrebnú na spustenie servera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 2. 4. 2010 12:06:40 | Computer Name = HP | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu SENS s argumentmi
potrebnú na spustenie servera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 2. 4. 2010 12:06:40 | Computer Name = HP | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu SENS s argumentmi
potrebnú na spustenie servera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 2. 4. 2010 12:06:41 | Computer Name = HP | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu SENS s argumentmi
potrebnú na spustenie servera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 2. 4. 2010 12:06:41 | Computer Name = HP | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu SENS s argumentmi
potrebnú na spustenie servera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 2. 4. 2010 12:06:41 | Computer Name = HP | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu SENS s argumentmi
potrebnú na spustenie servera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 2. 4. 2010 12:06:41 | Computer Name = HP | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu SENS s argumentmi
potrebnú na spustenie servera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 2. 4. 2010 12:06:41 | Computer Name = HP | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu SENS s argumentmi
potrebnú na spustenie servera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 2. 4. 2010 12:06:41 | Computer Name = HP | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu SENS s argumentmi
potrebnú na spustenie servera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}


< End of report >

Spusťte OTL a do spodního okna vložte následující skript. Poté klikněte na Opravit, PC se restartuje, log vložte sem.

All processes killed
========== OTL ==========
Service hihodt stopped successfully!
Service hihodt deleted successfully!
C:\WINDOWS\system32\drivers\hihodt.sys moved successfully.
C:\WINDOWS\tasks\{5157186C-D3DD-4D8C-8B26-C1E1E283DC72}_LOWEGGK_pajtas.job moved successfully.
C:\WINDOWS\tasks\{255246EC-3ACE-427B-89EF-339C12BC4F44}_LOWEGGK_pajtas.job moved successfully.
========== FILES ==========
C:\WINDOWS\SET3.tmp moved successfully.
C:\WINDOWS\SET7.tmp moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 47730 bytes
->Temporary Internet Files folder emptied: 2872311 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 5876372 bytes
->Flash cache emptied: 405 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: Marta
->Temp folder emptied: 1731 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: pajtas
->Temp folder emptied: 1433 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 2504882 bytes
->Flash cache emptied: 1169478 bytes

User: Pajtas.HP
->Temp folder emptied: 2418175 bytes
->Temporary Internet Files folder emptied: 9911902 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 12381624 bytes
->Flash cache emptied: 621 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 81576 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 36,00 mb


[EMPTYFLASH]

User: Administrator
->Flash cache emptied: 0 bytes

User: All Users

User: Default User

User: LocalService

User: Marta

User: NetworkService

User: pajtas
->Flash cache emptied: 0 bytes

User: Pajtas.HP
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

Restore points cleared and new OTL Restore Point set!
Error starting restore point: System Restore is disabled.
Error closing restore point: System Restore is disabled.

OTL by OldTimer - Version 3.2.1.0 log created on 04042010_164540

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

Stáhněte T-Cleaner
http://sweb.cz/Marinus/T-Cleaner.exe

• Spusťte, pro potvrzení volby mačkejte klávesu A, Enter
• Po použití program vymažte. Pozor,antiviry ho mohou falešně označit za vir.

Stáhněte a uložte, nejlépe na plochu http://download.bleepingcomputer.com/sUBs/ComboFix.exe

• Vypněte všechny rezidentní bezpečnostní programy - firewally, antiviry, antispywary
• Vložte do PC všechny flash disky, které používáte.
• Spusťte aplikaci pod účtem s oprávněním Administrátora (Správce), ihned po startu se zobrazí stránka s licenčními podmínkami, pokračujte stisknutím tlačítka "Ano"
• Dále postupujte dle pokynů, během scanu nespouštějte jiné aplikace a neklikejte do zobrazujícího se okna
• Scan by měl trvat okolo 5 - 10 minut, po dokončení Combofix zobrazí log C:\ComboFix.txt , který sem vložte.
• Během skenování může být počítač restartován.

ComboFix 10-04-03.02 - Pajtas . 04. 2010 17:19:18.3.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.421.1033.18.255.5 [GMT 2:00]
Running from: c:\documents and settings\Pajtas.HP\Desktop\ComboFix.exe
AV: Eset NOD32 Antivirus 2.70 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
* Resident AV is active


WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Administrator\My Documents\BackupRegistry(20100401).reg
c:\windows\AppPatch\AcAdProc.dll
d:\dokumenty mpajtas\BackupRegistry(20100404).reg

.
((((((((((((((((((((((((( Files Created from 2010-03-04 to 2010-04-04 )))))))))))))))))))))))))))))))
.

2010-04-04 12:12 . 2005-04-03 23:00 74496 ----a-w- c:\windows\system32\drivers\Rtlnicxp.sys
2010-04-04 12:11 . 2004-09-21 08:49 32768 ----a-w- c:\windows\iwlandrvxpver.dll
2010-04-04 12:11 . 2010-04-04 12:11 -------- d-----w- c:\program files\Intel
2010-04-04 12:06 . 2004-09-14 10:55 88960 ----a-w- c:\windows\system32\drivers\MidiSyn.sys
2010-04-04 12:05 . 2004-04-26 06:49 381056 ----a-w- c:\windows\system32\drivers\senfilt.sys
2010-04-04 11:55 . 2004-11-04 16:42 81920 ----a-w- c:\windows\system32\SynTPCo2.dll
2010-04-04 11:52 . 2010-04-04 11:52 -------- d-----w- c:\program files\GCC4243N_fw
2010-04-04 11:48 . 2010-04-04 12:12 -------- d-----w- C:\SWSetup
2010-04-03 08:45 . 2010-04-03 08:45 -------- d--h--w- c:\windows\system32\GroupPolicy
2010-04-03 08:05 . 2010-04-03 08:05 -------- d-----w- c:\documents and settings\Pajtas.HP\Application Data\PDFcreator
2010-04-03 07:40 . 2010-04-03 07:43 -------- d-----w- c:\documents and settings\Pajtas.HP\Application Data\Media Player Classic
2010-04-02 17:02 . 2010-04-02 18:50 -------- d-----w- c:\documents and settings\Pajtas.HP\Application Data\Skype
2010-04-02 16:43 . 2010-04-02 16:43 -------- d-sh--w- c:\documents and settings\Pajtas.HP\IECompatCache
2010-04-02 16:42 . 2010-04-02 16:42 -------- d-sh--w- c:\documents and settings\Pajtas.HP\PrivacIE
2010-04-02 16:38 . 2010-04-02 16:38 -------- d-sh--w- c:\documents and settings\Pajtas.HP\IETldCache
2010-04-02 16:36 . 2010-02-10 17:13 165376 ----a-w- c:\windows\system32\unrar.dll
2010-04-02 16:35 . 2004-01-25 16:18 217088 ----a-w- c:\windows\system32\yv12vfw.dll
2010-04-02 16:35 . 2009-05-29 21:37 205824 ----a-w- c:\windows\system32\xvidvfw.dll
2010-04-02 16:35 . 2009-05-29 21:31 881664 ----a-w- c:\windows\system32\xvidcore.dll
2010-04-02 16:35 . 2010-03-14 18:00 85504 ----a-w- c:\windows\system32\ff_vfw.dll
2010-04-02 16:35 . 2010-04-02 16:35 -------- d-----w- c:\program files\K-Lite Codec Pack
2010-04-02 16:20 . 2010-04-02 16:21 -------- d-----w- c:\program files\7-Zip
2010-04-02 16:17 . 2010-04-02 16:20 -------- dc-h--w- c:\windows\ie8
2010-04-02 16:17 . 2010-04-02 16:19 -------- d-----w- c:\windows\system32\sk-SK
2010-04-02 16:12 . 2010-04-02 16:13 -------- d-----w- c:\program files\FOXIT READER
2010-04-02 16:11 . 2010-04-02 16:11 -------- d-----w- c:\documents and settings\Pajtas.HP\Local Settings\Application Data\Thinstall
2010-04-02 16:11 . 2010-04-02 16:11 -------- d-----w- c:\documents and settings\Pajtas.HP\Application Data\Thinstall
2010-04-02 10:20 . 2010-04-02 10:20 503808 ----a-w- c:\documents and settings\Pajtas.HP\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-45a2343e-n\msvcp71.dll
2010-04-02 10:20 . 2010-04-02 10:20 499712 ----a-w- c:\documents and settings\Pajtas.HP\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-45a2343e-n\jmc.dll
2010-04-02 10:20 . 2010-04-02 10:20 348160 ----a-w- c:\documents and settings\Pajtas.HP\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-45a2343e-n\msvcr71.dll
2010-04-02 09:22 . 2010-04-02 09:22 61440 ----a-w- c:\documents and settings\Marta\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-54f96838-n\decora-sse.dll
2010-04-02 09:22 . 2010-04-02 09:22 12800 ----a-w- c:\documents and settings\Marta\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-54f96838-n\decora-d3d.dll
2010-04-02 09:17 . 2010-04-02 09:17 -------- d-----w- c:\documents and settings\Marta\Bluetooth Software
2010-04-02 08:52 . 2010-04-02 08:52 -------- d-----w- c:\documents and settings\Pajtas.HP\Application Data\Malwarebytes
2010-04-02 08:52 . 2010-04-02 08:52 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2010-04-02 08:52 . 2010-04-04 09:48 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-04-02 08:38 . 2010-04-02 08:41 -------- d-----w- c:\documents and settings\Pajtas.HP\Local Settings\Application Data\Temp
2010-04-02 08:38 . 2010-04-02 08:42 -------- d-----w- c:\documents and settings\Pajtas.HP\Local Settings\Application Data\Google
2010-04-02 08:37 . 2010-04-02 08:37 25624 ----a-w- c:\documents and settings\Pajtas.HP\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-04-02 08:37 . 2010-04-02 08:38 -------- d-----w- c:\documents and settings\Pajtas.HP\Local Settings\Application Data\Deployment
2010-04-02 08:36 . 2010-04-02 08:36 -------- d-sh--w- c:\documents and settings\Pajtas.HP\UserData
2010-04-01 22:18 . 2010-04-01 22:18 61440 ----a-w- c:\documents and settings\Pajtas.HP\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-1a0b6f1a-n\decora-sse.dll
2010-04-01 22:18 . 2010-04-01 22:18 12800 ----a-w- c:\documents and settings\Pajtas.HP\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-1a0b6f1a-n\decora-d3d.dll
2010-04-01 22:17 . 2010-04-01 22:17 -------- d-----w- c:\documents and settings\Pajtas.HP\Application Data\ArcSoft
2010-04-01 22:03 . 2010-04-01 22:03 -------- d-----w- c:\documents and settings\Administrator\Application Data\vlc
2010-04-01 21:55 . 2008-04-14 03:42 1306624 -c----w- c:\windows\system32\dllcache\msxml6.dll
2010-04-01 21:55 . 2008-04-14 03:42 1306624 ------w- c:\windows\system32\msxml6.dll
2010-04-01 21:55 . 2008-04-14 03:40 102912 -c----w- c:\windows\system32\dllcache\dpcdll.dll
2010-04-01 21:55 . 2008-04-13 20:57 79872 -c----w- c:\windows\system32\dllcache\msxml6r.dll
2010-04-01 21:55 . 2008-04-13 20:57 79872 ------w- c:\windows\system32\msxml6r.dll
2010-04-01 21:45 . 2008-04-13 20:06 144384 ------w- c:\windows\system32\drivers\hdaudbus.sys
2010-04-01 21:45 . 2008-04-13 22:10 10240 ------w- c:\windows\system32\drivers\sffp_mmc.sys
2010-04-01 21:44 . 2008-04-14 03:42 90624 -c--a-w- c:\windows\system32\dllcache\muisetup.exe
2010-04-01 21:43 . 2010-04-01 21:43 -------- d-----w- c:\windows\system32\wbem\MUI
2010-04-01 21:41 . 2002-02-12 11:00 61440 ----a-w- c:\windows\system32\WMErrSKY.dll
2010-04-01 21:41 . 2010-04-01 21:41 -------- d-----w- c:\windows\system32\1051
2010-04-01 21:27 . 2010-04-01 21:27 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\ApplicationHistory
2010-04-01 21:17 . 2010-04-01 21:17 503808 ----a-w- c:\documents and settings\Administrator\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-188abc7a-n\msvcp71.dll
2010-04-01 21:17 . 2010-04-01 21:17 499712 ----a-w- c:\documents and settings\Administrator\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-188abc7a-n\jmc.dll
2010-04-01 21:17 . 2010-04-01 21:17 348160 ----a-w- c:\documents and settings\Administrator\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-188abc7a-n\msvcr71.dll
2010-04-01 21:16 . 2010-04-01 21:16 61440 ----a-w- c:\documents and settings\Administrator\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-70c9c0c8-n\decora-sse.dll
2010-04-01 21:16 . 2010-04-01 21:16 12800 ----a-w- c:\documents and settings\Administrator\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-70c9c0c8-n\decora-d3d.dll
2010-04-01 21:08 . 2010-04-01 21:14 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Temp
2010-04-01 21:08 . 2010-04-01 19:35 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Google
2010-04-01 21:07 . 2010-04-01 21:07 -------- d-s---w- c:\documents and settings\Administrator\UserData
2010-04-01 20:38 . 2010-04-01 20:38 -------- d-----w- c:\documents and settings\Administrator\Bluetooth Software
2010-04-01 19:26 . 2010-04-01 19:26 -------- d-----w- c:\windows\system32\NtmsData
2010-04-01 18:58 . 2010-04-01 18:58 25624 ----a-w- c:\documents and settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-04-01 18:44 . 2010-04-01 18:44 -------- d-----w- c:\program files\CCleaner
2010-03-14 13:46 . 2010-03-09 02:28 411368 ----a-w- c:\windows\system32\deploytk.dll
2010-03-14 13:40 . 2010-03-14 13:40 152576 ----a-w- c:\documents and settings\pajtas\Application Data\Sun\Java\jre1.6.0_17\lzma.dll
2010-03-14 13:39 . 2010-03-14 13:39 79488 ----a-w- c:\documents and settings\pajtas\Application Data\Sun\Java\jre1.6.0_17\gtapi.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-04 12:12 . 2005-02-16 21:29 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-04-04 07:42 . 2007-04-06 09:54 -------- d-----w- c:\program files\Common Files\Real
2010-04-04 07:37 . 2007-02-12 16:16 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer
2010-04-04 07:29 . 2006-03-22 18:39 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2010-04-02 17:01 . 2007-02-18 20:58 -------- d-----r- c:\program files\Skype
2010-04-02 17:01 . 2007-02-18 20:58 -------- d-----w- c:\documents and settings\All Users\Application Data\Skype
2010-04-02 16:25 . 2005-02-16 22:33 -------- d-----w- c:\program files\IrfanView
2010-04-01 21:42 . 2005-02-16 21:16 179007 ----a-w- c:\windows\PCHEALTH\HELPCTR\OfflineCache\index.dat
2010-04-01 21:42 . 2005-02-16 21:16 8120 ----a-w- c:\windows\PCHEALTH\HELPCTR\PackageStore\SkuStore.bin
2010-04-01 21:15 . 2005-08-16 14:03 -------- d-----w- c:\program files\Common Files\Java
2010-04-01 21:14 . 2005-08-16 14:13 -------- d-----w- c:\program files\Java
2010-04-01 19:16 . 2005-02-16 22:25 -------- d-----w- c:\program files\Microsoft ActiveSync
2010-04-01 19:15 . 2006-03-22 18:45 -------- d-----w- c:\documents and settings\pajtas\Application Data\Lavasoft
2010-03-31 21:48 . 2005-02-16 23:02 -------- d-----w- c:\program files\ESET
2010-02-20 17:39 . 2007-02-18 20:58 -------- d-----w- c:\documents and settings\pajtas\Application Data\Skype
2010-02-20 15:17 . 2007-12-29 14:52 -------- d-----w- c:\documents and settings\pajtas\Application Data\skypePM
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Cpqset"="c:\program files\HPQ\Default Settings\cpqset.exe" [2004-03-01 200766]
"SynTPLpr"="c:\program files\Synaptics\SynTP\SynTPLpr.exe" [2004-11-04 98394]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2004-11-04 688218]
"ATIModeChange"="Ati2mdxx.exe" [2001-09-02 28672]
"ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2004-01-20 335872]
"nod32kui"="c:\program files\Eset\nod32kui.exe" [2007-02-05 949376]
"SoundMAXPnP"="c:\program files\Analog Devices\SoundMAX\SMax4PNP.exe" [2004-10-14 1388544]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2004-6-2 565309]
Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AGRSMMSG]
2003-05-03 16:16 88267 ----a-r- c:\windows\AGRSMMSG.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dla]
2004-08-03 00:05 122939 ----a-w- c:\windows\system32\dla\tfswctrl.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Google Update"="c:\documents and settings\Pajtas.HP\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Sony Ericsson\\Update Service\\ma3platform.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009

R1 nod32drv;nod32drv;c:\windows\system32\drivers\nod32drv.sys [5. 2. 2007 17:49 15424]
R3 WBSD;Winbond Secure Digital Storage (SD/MMC) Device Driver;c:\windows\system32\drivers\wbsd.sys [16. 2. 2005 23:52 27008]
S3 EL3C589;3Com Megahertz LAN PC Card Driver;c:\windows\system32\drivers\el589nd5.sys [20. 3. 2006 14:20 26141]
.
Contents of the 'Scheduled Tasks' folder

2010-04-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-1007Core.job
- c:\documents and settings\Pajtas.HP\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-04-02 08:38]

2010-04-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-1007UA.job
- c:\documents and settings\Pajtas.HP\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-04-02 08:38]

2010-04-01 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-500Core.job
- c:\documents and settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-04-01 21:08]

2010-04-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-500UA.job
- c:\documents and settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-04-01 21:08]

2010-04-04 c:\windows\Tasks\User_Feed_Synchronization-{D7EF1F49-D10B-4A9A-85C5-2502C4178D94}.job
- c:\windows\system32\msfeedssync.exe [2010-04-02 02:31]

2008-08-06 c:\windows\Tasks\{CB9F5461-9341-405A-A12E-B1692E38FF75}_LOWEGGK_pajtas.job
- c:\windows\system32\mobsync.exe [2001-08-23 03:42]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.sk/
uInternet Connection Wizard,ShellNext = hxxp://www.hp.com/
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~3\Office10\EXCEL.EXE/3000
DPF: GEMINI IBS 20 LUBA (sk) - hxxps://ibs1.luba.sk/sk/LUBA-2.3.16.6_sk.cab
DPF: Microsoft XML Parser for Java
DPF: {EAA105FE-7BBD-4196-8B96-D46743894195} - hxxp://www.international.sk/plugin/mjpegcontrol.cab
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-04-04 17:27
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Cpqset = c:\program files\HPQ\Default Settings\cpqset.exe????????????h????@???? ???B???????????????B? ??????

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'explorer.exe'(2924)
c:\windows\system32\SynTPFcs.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\OneX.DLL
c:\windows\system32\eappprxy.dll
c:\windows\system32\webcheck.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
c:\program files\Eset\nod32krn.exe
c:\program files\Analog Devices\SoundMAX\SMAgent.exe
c:\windows\System32\wdfmgr.exe
c:\windows\system32\wscntfy.exe
c:\progra~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
.
**************************************************************************
.
Completion time: 2010-04-04 17:32:48 - machine was rebooted
ComboFix-quarantined-files.txt 2010-04-04 15:32

Pre-Run: 7 689 740 288 bytes free
Post-Run: 7 589 396 480 voľných bajtov

- - End Of File - - 4DE9932AC1F0C6A110A120976C25B462

Jak to vypadá s PC

Vypada to v poriadku, az na to ze nejde autorun. Da sa to napravit ?

Autorun bych z bezpečnostních důvodů doporučil nechat vypnutý, pokud ho i přesto chcete zapnout, napíšu Vám postup.


Poprosím o nový log z RSIT.

Mne by ten autorun nechybal, ale zlozvyk uzivatelov - vlozil som tam CD a nic .... ????

Logfile of random's system information tool 1.06 (written by random/random)
Run by Pajtas at 2010-04-04 18:14:21
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 7 GB (48%) free of 15 GB
Total RAM: 255 MB (30% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:15:17, on 4. 4. 2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Pajtas.HP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Pajtas.HP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Pajtas.HP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Pajtas.HP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\HAVET\RSIT.exe
C:\Program Files\trend micro\Pajtas.exe
C:\WINDOWS\system32\msfeedssync.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.hp.com/
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.hp.com
O16 - DPF: GEMINI IBS 20 LUBA (sk) - https://ibs1.luba.sk/sk/LUBA-2.3.16.6_sk.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 3161466792
O16 - DPF: {A8739816-022C-11D6-A85D-00C04F9AEAFB} (Web Camera Server Control) - http://www.tale.sk/envirokamera/wg_webeye.cab
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class) - https://btconferencing.webex.com/client ... eatgpc.cab
O16 - DPF: {EAA105FE-7BBD-4196-8B96-D46743894195} (MjpegControl Class) - http://www.international.sk/plugin/mjpegcontrol.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

--
End of file - 6392 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-1007Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-1007UA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-500Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-2111687655-1343024091-500UA.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{D7EF1F49-D10B-4A9A-85C5-2502C4178D94}.job
C:\WINDOWS\tasks\{CB9F5461-9341-405A-A12E-B1692E38FF75}_LOWEGGK_pajtas.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-03-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-03-09 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Cpqset"=C:\Program Files\HPQ\Default Settings\cpqset.exe [2004-03-01 200766]
"SynTPLpr"=C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [2004-11-04 98394]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2004-11-04 688218]
"ATIModeChange"=C:\WINDOWS\system32\Ati2mdxx.exe [2001-09-02 28672]
"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2004-01-20 335872]
"nod32kui"=C:\Program Files\Eset\nod32kui.exe [2007-02-05 949376]
"SoundMAXPnP"=C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe [2004-10-14 1388544]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AGRSMMSG]
C:\WINDOWS\AGRSMMSG.exe [2003-05-03 88267]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dla]
C:\WINDOWS\system32\dla\tfswctrl.exe [2004-08-03 122939]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Sony Ericsson\Update Service\ma3platform.exe"="C:\Program Files\Sony Ericsson\Update Service\ma3platform.exe:*:Enabled:ma3platform"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Intuwave\Shared\mRouterRuntime\mRouterRuntime.exe"="C:\Program Files\Intuwave\Shared\mRouterRuntime\mRouterRuntime.exe:*:Enabled:mRouterRuntime Module"
"C:\Program Files\Sony Ericsson\Mobile4\Sync Manager\DXP SyncML.exe"="C:\Program Files\Sony Ericsson\Mobile4\Sync Manager\DXP SyncML.exe:*:Enabled:DXP SyncML Module"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype. The whole world can talk for free."
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-04-04 18:14:24 ----D---- C:\Program Files\trend micro
2010-04-04 18:14:21 ----D---- C:\rsit
2010-04-04 17:32:49 ----A---- C:\ComboFix.txt
2010-04-04 17:16:39 ----A---- C:\WINDOWS\MBR.exe
2010-04-04 17:16:38 ----A---- C:\WINDOWS\NIRCMD.exe
2010-04-04 17:16:35 ----A---- C:\WINDOWS\PEV.exe
2010-04-04 17:16:34 ----A---- C:\WINDOWS\zip.exe
2010-04-04 17:16:34 ----A---- C:\WINDOWS\SWREG.exe
2010-04-04 17:16:33 ----A---- C:\WINDOWS\sed.exe
2010-04-04 17:16:33 ----A---- C:\WINDOWS\grep.exe
2010-04-04 17:16:32 ----A---- C:\WINDOWS\SWXCACLS.exe
2010-04-04 17:16:32 ----A---- C:\WINDOWS\SWSC.exe
2010-04-04 17:16:23 ----D---- C:\WINDOWS\ERDNT
2010-04-04 17:13:06 ----AD---- C:\Qoobox
2010-04-04 14:11:32 ----A---- C:\WINDOWS\iwlandrvxpver.dll
2010-04-04 14:11:14 ----D---- C:\Program Files\Intel
2010-04-04 13:55:49 ----A---- C:\WINDOWS\system32\SynTPCo2.dll
2010-04-04 13:52:44 ----D---- C:\Program Files\GCC4243N_fw
2010-04-04 13:48:35 ----D---- C:\SWSetup
2010-04-04 11:48:51 ----D---- C:\WINDOWS\Prefetch
2010-04-04 09:42:36 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\Real
2010-04-04 09:36:41 ----D---- C:\Config.Msi
2010-04-03 10:45:14 ----HD---- C:\WINDOWS\system32\GroupPolicy
2010-04-03 10:05:44 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\PDFcreator
2010-04-03 09:40:56 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\Media Player Classic
2010-04-02 19:02:06 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\Skype
2010-04-02 18:36:01 ----A---- C:\WINDOWS\system32\unrar.dll
2010-04-02 18:35:58 ----A---- C:\WINDOWS\avisplitter.ini
2010-04-02 18:35:45 ----A---- C:\WINDOWS\system32\yv12vfw.dll
2010-04-02 18:35:43 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2010-04-02 18:35:43 ----A---- C:\WINDOWS\system32\xvidcore.dll
2010-04-02 18:35:32 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest
2010-04-02 18:35:32 ----A---- C:\WINDOWS\system32\ff_vfw.dll
2010-04-02 18:35:28 ----D---- C:\Program Files\K-Lite Codec Pack
2010-04-02 18:20:54 ----D---- C:\Program Files\7-Zip
2010-04-02 18:19:46 ----D---- C:\WINDOWS\WBEM
2010-04-02 18:17:34 ----HDC---- C:\WINDOWS\ie8
2010-04-02 18:17:34 ----D---- C:\WINDOWS\system32\sk-SK
2010-04-02 18:16:22 ----A---- C:\WINDOWS\system32\normaliz.dll
2010-04-02 18:16:22 ----A---- C:\WINDOWS\system32\nlsdl.dll
2010-04-02 18:16:22 ----A---- C:\WINDOWS\system32\idndl.dll
2010-04-02 18:16:21 ----A---- C:\WINDOWS\system32\msdbg2.dll
2010-04-02 18:16:20 ----N---- C:\WINDOWS\system32\WinFXDocObj.exe
2010-04-02 18:16:20 ----A---- C:\WINDOWS\system32\ieudinit.exe
2010-04-02 18:16:16 ----N---- C:\WINDOWS\system32\msrating.dll.mui
2010-04-02 18:16:14 ----N---- C:\WINDOWS\system32\mshta.exe.mui
2010-04-02 18:16:14 ----N---- C:\WINDOWS\system32\msfeedssync.exe
2010-04-02 18:16:14 ----N---- C:\WINDOWS\system32\msfeedsbs.dll
2010-04-02 18:16:14 ----N---- C:\WINDOWS\system32\msfeeds.dll
2010-04-02 18:16:11 ----N---- C:\WINDOWS\system32\ieui.dll
2010-04-02 18:16:11 ----N---- C:\WINDOWS\system32\iertutil.dll
2010-04-02 18:16:10 ----N---- C:\WINDOWS\system32\ieframe.dll.mui
2010-04-02 18:16:08 ----N---- C:\WINDOWS\system32\ieframe.dll
2010-04-02 18:16:06 ----N---- C:\WINDOWS\system32\iedkcs32.dll.mui
2010-04-02 18:16:06 ----N---- C:\WINDOWS\system32\ieapfltr.dll
2010-04-02 18:16:06 ----N---- C:\WINDOWS\system32\ie4uinit.exe.mui
2010-04-02 18:16:06 ----N---- C:\WINDOWS\system32\icardie.dll
2010-04-02 18:16:05 ----N---- C:\WINDOWS\system32\advpack.dll.mui
2010-04-02 18:12:58 ----D---- C:\Program Files\FOXIT READER
2010-04-02 18:11:26 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\Thinstall
2010-04-02 10:52:58 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\Malwarebytes
2010-04-02 10:52:29 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2010-04-02 10:52:24 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-04-02 10:36:18 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\Macromedia
2010-04-02 10:36:13 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\Adobe
2010-04-02 00:18:00 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\Sun
2010-04-02 00:17:18 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\ArcSoft
2010-04-02 00:08:24 ----D---- C:\Documents and Settings\Pajtas.HP\Application Data\Identities
2010-04-02 00:08:05 ----SD---- C:\Documents and Settings\Pajtas.HP\Application Data\Microsoft
2010-04-02 00:08:05 ----ASH---- C:\Documents and Settings\Pajtas.HP\Application Data\desktop.ini
2010-04-01 23:55:10 ----N---- C:\WINDOWS\system32\msxml6r.dll
2010-04-01 23:55:10 ----N---- C:\WINDOWS\system32\msxml6.dll
2010-04-01 23:54:55 ----N---- C:\WINDOWS\system32\smtpapi.dll
2010-04-01 23:54:55 ----N---- C:\WINDOWS\system32\rwnh.dll
2010-04-01 23:54:48 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2010-04-01 23:54:48 ----N---- C:\WINDOWS\system32\azroles.dll
2010-04-01 23:54:48 ----N---- C:\WINDOWS\system32\aaclient.dll
2010-04-01 23:54:47 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2010-04-01 23:54:47 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2010-04-01 23:54:47 ----N---- C:\WINDOWS\system32\credssp.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\eapphost.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\eappgnui.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\eappcfg.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\eapolqec.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\dot3ui.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\dot3svc.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\dot3msm.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\dot3api.dll
2010-04-01 23:54:46 ----N---- C:\WINDOWS\system32\dimsroam.dll
2010-04-01 23:54:45 ----N---- C:\WINDOWS\system32\eapsvc.dll
2010-04-01 23:54:45 ----N---- C:\WINDOWS\system32\eapqec.dll
2010-04-01 23:54:45 ----N---- C:\WINDOWS\system32\eappprxy.dll
2010-04-01 23:54:43 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2010-04-01 23:54:43 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2010-04-01 23:54:43 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2010-04-01 23:54:42 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2010-04-01 23:54:42 ----N---- C:\WINDOWS\system32\kmsvc.dll
2010-04-01 23:54:42 ----N---- C:\WINDOWS\system32\kbdpash.dll
2010-04-01 23:54:41 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2010-04-01 23:54:41 ----N---- C:\WINDOWS\system32\mssha.dll
2010-04-01 23:54:41 ----N---- C:\WINDOWS\system32\mmcperf.exe
2010-04-01 23:54:41 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2010-04-01 23:54:41 ----N---- C:\WINDOWS\system32\mmcex.dll
2010-04-01 23:54:41 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2010-04-01 23:54:40 ----N---- C:\WINDOWS\system32\napstat.exe
2010-04-01 23:54:40 ----N---- C:\WINDOWS\system32\napmontr.dll
2010-04-01 23:54:40 ----N---- C:\WINDOWS\system32\napipsec.dll
2010-04-01 23:54:39 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2010-04-01 23:54:39 ----N---- C:\WINDOWS\system32\onex.dll
2010-04-01 23:54:38 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2010-04-01 23:54:38 ----N---- C:\WINDOWS\system32\rasqec.dll
2010-04-01 23:54:38 ----N---- C:\WINDOWS\system32\qutil.dll
2010-04-01 23:54:38 ----N---- C:\WINDOWS\system32\qcliprov.dll
2010-04-01 23:54:38 ----N---- C:\WINDOWS\system32\qagentrt.dll
2010-04-01 23:54:38 ----N---- C:\WINDOWS\system32\qagent.dll
2010-04-01 23:54:37 ----N---- C:\WINDOWS\system32\setupn.exe
2010-04-01 23:54:33 ----N---- C:\WINDOWS\system32\tspkg.dll
2010-04-01 23:54:33 ----N---- C:\WINDOWS\system32\tsgqec.dll
2010-04-01 23:54:32 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2010-04-01 23:54:32 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2010-04-01 23:54:32 ----N---- C:\WINDOWS\system32\verclsid.exe
2010-04-01 23:54:32 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-04-01 23:54:31 ----N---- C:\WINDOWS\system32\wmphoto.dll
2010-04-01 23:54:31 ----N---- C:\WINDOWS\system32\wlanapi.dll
2010-04-01 23:54:30 ----A---- C:\WINDOWS\system32\xmllite.dll
2010-04-01 23:54:29 ----N---- C:\WINDOWS\system32\xpsp3res.dll
2010-04-01 23:54:28 ----D---- C:\WINDOWS\system32\en-us
2010-04-01 23:54:25 ----D---- C:\WINDOWS\system32\scripting
2010-04-01 23:54:21 ----D---- C:\WINDOWS\l2schemas
2010-04-01 23:54:19 ----D---- C:\WINDOWS\system32\en
2010-04-01 23:45:33 ----D---- C:\WINDOWS\network diagnostic
2010-04-01 23:41:36 ----A---- C:\WINDOWS\system32\WMErrSKY.dll
2010-04-01 23:41:33 ----D---- C:\WINDOWS\system32\1051
2010-04-01 23:15:47 ----D---- C:\Documents and Settings\All Users\Application Data\Sun
2010-04-01 23:14:55 ----A---- C:\WINDOWS\system32\javaws.exe
2010-04-01 23:14:54 ----A---- C:\WINDOWS\system32\javaw.exe
2010-04-01 23:14:54 ----A---- C:\WINDOWS\system32\java.exe
2010-04-01 22:22:16 ----D---- C:\Program Files\Yamicsoft
2010-04-01 21:26:24 ----D---- C:\WINDOWS\system32\NtmsData
2010-04-01 20:44:14 ----D---- C:\Program Files\CCleaner
2010-03-14 15:46:02 ----A---- C:\WINDOWS\system32\deploytk.dll

======List of files/folders modified in the last 1 months======

2010-04-04 18:14:24 ----RD---- C:\Program Files
2010-04-04 18:08:54 ----D---- C:\WINDOWS\Temp
2010-04-04 17:32:55 ----D---- C:\WINDOWS\system32\drivers
2010-04-04 17:31:00 ----D---- C:\WINDOWS\system32\CatRoot2
2010-04-04 17:29:06 ----D---- C:\WINDOWS
2010-04-04 17:29:06 ----A---- C:\WINDOWS\system.ini
2010-04-04 17:24:14 ----D---- C:\WINDOWS\AppPatch
2010-04-04 17:23:01 ----D---- C:\WINDOWS\system32
2010-04-04 17:22:56 ----D---- C:\Program Files\Common Files
2010-04-04 17:17:13 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-04-04 17:08:17 ----SHD---- C:\System Volume Information
2010-04-04 17:08:17 ----D---- C:\WINDOWS\system32\Restore
2010-04-04 16:45:56 ----SD---- C:\WINDOWS\Tasks
2010-04-04 14:14:27 ----D---- C:\WINDOWS\system32\CatRoot
2010-04-04 14:12:37 ----HD---- C:\WINDOWS\inf
2010-04-04 14:12:35 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-04-04 14:12:22 ----HD---- C:\Program Files\InstallShield Installation Information
2010-04-04 14:06:05 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-04-04 14:05:32 ----D---- C:\WINDOWS\system
2010-04-04 14:05:31 ----D---- C:\WINDOWS\VirtualEar
2010-04-04 11:42:35 ----D---- C:\WINDOWS\system32\config
2010-04-04 09:42:44 ----D---- C:\Program Files\Common Files\Real
2010-04-04 09:41:45 ----SHD---- C:\WINDOWS\Installer
2010-04-04 09:37:01 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer
2010-04-04 09:29:59 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2010-04-03 12:20:16 ----A---- C:\WINDOWS\ODBC.INI
2010-04-03 10:28:51 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-04-03 10:27:26 ----RD---- C:\WINDOWS\Web
2010-04-03 10:24:48 ----A---- C:\WINDOWS\ODBCINST.INI
2010-04-03 10:20:09 ----D---- C:\WINDOWS\system32\ias
2010-04-02 19:01:53 ----RD---- C:\Program Files\Skype
2010-04-02 19:01:29 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
2010-04-02 18:38:44 ----D---- C:\WINDOWS\Help
2010-04-02 18:38:44 ----D---- C:\Program Files\Internet Explorer
2010-04-02 18:25:02 ----D---- C:\Program Files\IrfanView
2010-04-02 18:19:33 ----D---- C:\WINDOWS\Media
2010-04-02 18:02:17 ----D---- C:\WINDOWS\Debug
2010-04-02 11:16:34 ----D---- C:\Program Files\Windows Media Player
2010-04-02 11:16:22 ----D---- C:\Documents and Settings
2010-04-02 11:11:29 ----D---- C:\WINDOWS\provisioning
2010-04-02 11:04:52 ----RSD---- C:\WINDOWS\assembly
2010-04-02 11:04:52 ----D---- C:\WINDOWS\Microsoft.NET
2010-04-02 00:07:32 ----RSD---- C:\WINDOWS\Fonts
2010-04-02 00:07:32 ----D---- C:\WINDOWS\system32\Setup
2010-04-01 23:55:13 ----D---- C:\Program Files\Messenger
2010-04-01 23:55:11 ----D---- C:\WINDOWS\ServicePackFiles
2010-04-01 23:54:53 ----D---- C:\WINDOWS\system32\inetsrv
2010-04-01 23:54:53 ----D---- C:\WINDOWS\ime
2010-04-01 23:54:28 ----D---- C:\WINDOWS\system32\usmt
2010-04-01 23:54:19 ----D---- C:\WINDOWS\system32\bits
2010-04-01 23:54:19 ----D---- C:\WINDOWS\peernet
2010-04-01 23:54:18 ----D---- C:\Program Files\Movie Maker
2010-04-01 23:49:25 ----D---- C:\WINDOWS\mui
2010-04-01 23:48:22 ----D---- C:\WINDOWS\ehome
2010-04-01 23:48:08 ----D---- C:\WINDOWS\system32\npp
2010-04-01 23:48:06 ----D---- C:\WINDOWS\msagent
2010-04-01 23:48:05 ----D---- C:\WINDOWS\srchasst
2010-04-01 23:48:03 ----D---- C:\Program Files\NetMeeting
2010-04-01 23:48:02 ----D---- C:\WINDOWS\system32\Com
2010-04-01 23:47:55 ----D---- C:\Program Files\Windows NT
2010-04-01 23:47:54 ----D---- C:\Program Files\Outlook Express
2010-04-01 23:43:29 ----D---- C:\WINDOWS\system32\wbem
2010-04-01 23:41:51 ----D---- C:\WINDOWS\PCHEALTH
2010-04-01 23:41:16 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-04-01 23:40:54 ----D---- C:\WINDOWS\system32\oobe
2010-04-01 23:40:43 ----D---- C:\Program Files\Common Files\System
2010-04-01 23:15:34 ----D---- C:\Program Files\Common Files\Java
2010-04-01 23:14:28 ----D---- C:\Program Files\Java
2010-04-01 22:17:59 ----D---- C:\WINDOWS\WinSxS
2010-04-01 22:17:04 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-04-01 21:31:11 ----D---- C:\WINDOWS\security
2010-04-01 21:25:33 ----D---- C:\Program Files\Mozilla Firefox
2010-04-01 21:23:00 ----A---- C:\WINDOWS\hplj1320.ini
2010-04-01 21:16:09 ----D---- C:\Program Files\Microsoft ActiveSync
2010-04-01 20:47:34 ----D---- C:\WINDOWS\Minidump
2010-04-01 18:27:30 ----SHD---- C:\WINDOWS\CSC
2010-03-31 23:48:26 ----D---- C:\Program Files\ESET

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 intelppm;Intel Processor Driver; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-14 36352]
R1 nod32drv;nod32drv; C:\WINDOWS\system32\drivers\nod32drv.sys [2007-02-05 15424]
R1 sscdbhk5;sscdbhk5; C:\WINDOWS\system32\drivers\sscdbhk5.sys [2004-07-14 5627]
R1 ssrtln;ssrtln; C:\WINDOWS\system32\drivers\ssrtln.sys [2004-07-14 23545]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-08-23 12032]
R2 AMON;AMON; C:\WINDOWS\system32\drivers\amon.sys [2007-02-05 512096]
R2 cpqdfw;Diagnostics Driver; \??\C:\WINDOWS\System32\drivers\cpqdfw.sys []
R2 cq_mem;Diagnostics Memory Driver; \??\C:\WINDOWS\System32\drivers\cq_mem.sys []
R2 cqcpu;Diagnostics CPU Driver; \??\C:\WINDOWS\System32\drivers\cqcpu.sys []
R2 drvnddm;drvnddm; C:\WINDOWS\system32\drivers\drvnddm.sys [2004-07-14 40448]
R2 irda;IrDA Protocol; C:\WINDOWS\System32\DRIVERS\irda.sys [2008-04-14 88192]
R2 tfsnboio;tfsnboio; C:\WINDOWS\system32\dla\tfsnboio.sys [2004-08-03 25723]
R2 tfsncofs;tfsncofs; C:\WINDOWS\system32\dla\tfsncofs.sys [2004-08-03 34843]
R2 tfsndrct;tfsndrct; C:\WINDOWS\system32\dla\tfsndrct.sys [2004-08-03 4123]
R2 tfsndres;tfsndres; C:\WINDOWS\system32\dla\tfsndres.sys [2004-08-03 2239]
R2 tfsnifs;tfsnifs; C:\WINDOWS\system32\dla\tfsnifs.sys [2004-08-03 86138]
R2 tfsnopio;tfsnopio; C:\WINDOWS\system32\dla\tfsnopio.sys [2004-08-03 14715]
R2 tfsnpool;tfsnpool; C:\WINDOWS\system32\dla\tfsnpool.sys [2004-08-03 6363]
R2 tfsnudf;tfsnudf; C:\WINDOWS\system32\dla\tfsnudf.sys [2004-08-03 98714]
R2 tfsnudfa;tfsnudfa; C:\WINDOWS\system32\dla\tfsnudfa.sys [2004-08-03 100603]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2004-11-08 127744]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\System32\DRIVERS\AGRSM.sys [2003-05-03 1170464]
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2004-01-18 669696]
R3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2004-06-02 16896]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\System32\DRIVERS\btport.sys [2004-06-02 30235]
R3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\System32\DRIVERS\btwdndis.sys [2004-06-02 147864]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2004-06-02 53816]
R3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\System32\DRIVERS\CmBatt.sys [2008-04-14 13952]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\System32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-08-23 5888]
R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2005-04-04 74496]
R3 senfilt;senfilt; C:\WINDOWS\system32\drivers\senfilt.sys [2004-04-26 381056]
R3 SMCIRDA;SMC IrCC Miniport Device Driver; C:\WINDOWS\System32\DRIVERS\smcirda.sys [2001-08-17 35913]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2004-10-13 259840]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\System32\DRIVERS\SynTP.sys [2004-11-04 186016]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Microsoft USB Standard Hub Driver; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 w22n51;Intel(R) PRO/Wireless 2200 Adapter Driver for Windows XP; C:\WINDOWS\system32\DRIVERS\w22n51.sys [2004-09-21 3151232]
R3 WBSD;Winbond Secure Digital Storage (SD/MMC) Device Driver; C:\WINDOWS\System32\Drivers\WBSD.SYS [2003-05-06 27008]
S1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 dot4;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2008-04-14 206976]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys [2001-08-17 12928]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2001-08-17 23808]
S3 EL3C589;3Com Megahertz LAN PC Card Driver; C:\WINDOWS\System32\DRIVERS\el589nd5.sys [2001-08-17 26141]
S3 ENUM1394;%1394\031887&040892.DeviceDesc%; C:\WINDOWS\System32\DRIVERS\enum1394.sys [2001-08-17 6400]
S3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 mbr;mbr; \??\C:\DOCUME~1\Pajtas.HP\LOCALS~1\Temp\mbr.sys []
S3 MidiSyn;MidiSyn; C:\WINDOWS\system32\drivers\MidiSyn.sys [2004-09-14 88960]
S3 mouhid;Mouse HID Driver; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12160]
S3 MSIRCOMM;Microsoft IR Communications Driver; C:\WINDOWS\System32\DRIVERS\MSIRCOMM.sys [2008-04-14 22016]
S3 rtl8139;Realtek RTL8139/810x Family Fast Ethernet NIC NT Driver; C:\WINDOWS\System32\DRIVERS\R8139n51.SYS [2003-03-15 46976]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\System32\DRIVERS\wceusbsh.sys [2004-12-06 104064]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2004-01-18 397312]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2004-06-03 163840]
R2 Irmon;Infrared Monitor; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-03-09 153376]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [2001-02-23 270336]
R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2007-02-05 552064]
R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\System32\wdfmgr.exe [2004-09-22 38912]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\HPZipm12.exe [2003-10-22 65536]

-----------------EOF-----------------

Odinstalujte ComboFix přes:
Start >> Spustit, zkopírujte do okénka:

ComboFix /Uninstall

stiskněte Enter


Stáhněte T-Cleaner
http://sweb.cz/Marinus/T-Cleaner.exe

• Spusťte, pro potvrzení volby mačkejte klávesu A, Enter
• Po použití program vymažte. Pozor,antiviry ho mohou falešně označit za vir.

Pokud chcete zapnout Autorun, znovu spusťte T-Cleaner a stiskněte klávesu P.


Stáhněte a použijte http://oldtimer.geekstogo.com/TFC.exe


Stáhněte OTC http://oldtimer.geekstogo.com/OTC.exe

• Spusťte.
• Klikněte na "CleanUp!". Potvrďte hlášky stiskem "Yes" (Bude následovat restart)

Stáhněte Ccleaner http://viry.cz/forum/viewtopic.php?t=7478

• Nainstalujte a v průběhu instalace odškrtněte, že chcete instalovat yahoo toolbar.
  
  Záložka Čistič
• Dejte analyzovat, po dokončení dejte Spustit Ccleaner.
  
  Záložka Registry
• Klikněte na Hledej problémy, po dokončení klikněte na Opravit problémy, zálohu dělat nemusíte, potom dejte Opravit všechny problémy.
  OK Zavřít

V logu nevidím firewall, doinstalujte Přehled: http://www.viry.cz/forum/viewtopic.php?f=41&t=6523

Vsetko vykonane, vsetko precistene - dakujem za pomoc a trpezlivost.

Nemáte zač