preventivka

[teabe]

Ahoj, prosím o kontrolu logu, ani v internet explorer, ani ve firefoxu neotevřu stránky bazos.cz a tuningbazar.cz. Ostatní co jsem zatím potřeboval najedou v pořádku. Díky

Logfile of random's system information tool 1.08 (written by random/random)
Run by TBE at 2010-10-19 19:38:31
Microsoft Windows 7 Ultimate
System drive C: has 177 GB (74%) free of 238 GB
Total RAM: 3327 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:38:43, on 19.10.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.Exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\QIP\qip.exe
C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
C:\Program Files\Mozilla Firefox 4.0 Beta 6\firefox.exe
C:\Program Files\Teamspeak2_RC2\TeamSpeak.exe
C:\Program Files\AVerMedia\AVerTV\AVerTV.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\TBE\Desktop\RSIT.exe
C:\Program Files\trend micro\TBE.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office12\GR469A~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - Global Startup: AVer HID Receiver.lnk = C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
O4 - Global Startup: AVerQuick.lnk = C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
O4 - Global Startup: Canon LBP2900 Status Window.lnk = C:\Windows\System32\spool\drivers\w32x86\3\CNAB4LAK.EXE
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{3A055A76-AE5F-42EF-B015-58D4D4E96967}: NameServer = 10.0.0.138
O17 - HKLM\System\CS1\Services\Tcpip\..\{3A055A76-AE5F-42EF-B015-58D4D4E96967}: NameServer = 10.0.0.138
O17 - HKLM\System\CS2\Services\Tcpip\..\{3A055A76-AE5F-42EF-B015-58D4D4E96967}: NameServer = 10.0.0.138
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~3\Office12\GRA32A~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: AVerRemote - AVerMedia - C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe
O23 - Service: AVerScheduleService - Unknown owner - C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

--
End of file - 6780 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}]
C:\PROGRA~1\Crawler\Toolbar\ctbr.dll [2010-09-02 1241448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~3\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-09-22 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4B3803EA-5230-4DC3-A7FC-33638F3D3542} - &Crawler lišta - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll [2010-09-02 1241448]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2010-08-12 2215064]
"EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2010-06-26 1311312]
"SpywareTerminator"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2010-10-06 2183680]
"AdobeCS5ServiceManager"=C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"SwitchBoard"=C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2010-04-29 437584]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1173504]
"AdobeBridge"= []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AVer HID Receiver.lnk - C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
AVerQuick.lnk - C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
Canon LBP2900 Status Window.lnk - C:\Windows\System32\spool\drivers\w32x86\3\CNAB4LAK.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2010-05-06 64592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2009-07-14 229376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~3\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDriveAutorun"=0
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2010-10-19 11:23:18 ----D---- C:\Users\TBE\AppData\Roaming\teamspeak2
2010-10-19 11:23:06 ----D---- C:\Program Files\Teamspeak2_RC2
2010-10-19 11:19:08 ----D---- C:\Users\TBE\AppData\Roaming\TS3Client
2010-10-18 12:18:42 ----A---- C:\Windows\system32\npptNT2.sys
2010-10-18 12:11:31 ----D---- C:\Program Files\NCsoft
2010-10-15 18:39:55 ----A---- C:\Windows\system32\mfc40u.dll
2010-10-15 18:39:55 ----A---- C:\Windows\system32\mfc40.dll
2010-10-15 18:39:52 ----A---- C:\Windows\system32\ole32.dll
2010-10-15 18:39:48 ----A---- C:\Windows\system32\wmp.dll
2010-10-15 18:39:46 ----A---- C:\Windows\system32\wmploc.DLL
2010-10-15 18:39:44 ----A---- C:\Windows\system32\comctl32.dll
2010-10-15 18:39:43 ----A---- C:\Windows\system32\t2embed.dll
2010-10-15 18:39:37 ----A---- C:\Windows\system32\StructuredQuery.dll
2010-10-15 18:39:25 ----A---- C:\Windows\system32\srvsvc.dll
2010-10-15 18:39:25 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-10-15 18:39:25 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-10-15 18:39:25 ----A---- C:\Windows\system32\drivers\srv.sys
2010-10-15 18:39:24 ----A---- C:\Windows\system32\win32k.sys
2010-10-15 18:39:23 ----A---- C:\Windows\system32\wmpmde.dll
2010-10-15 18:39:22 ----A---- C:\Windows\system32\schannel.dll
2010-10-12 13:13:06 ----A---- C:\Windows\system32\D3DX9_42.dll
2010-10-12 13:13:06 ----A---- C:\Windows\system32\d3dx9_31.dll
2010-10-12 13:12:31 ----D---- C:\Program Files\Winamp Detect
2010-10-12 13:12:05 ----D---- C:\Users\TBE\AppData\Roaming\Winamp
2010-10-12 13:12:05 ----D---- C:\Program Files\Winamp
2010-10-12 10:53:10 ----D---- C:\Program Files\Lavalys
2010-10-11 23:23:49 ----A---- C:\Windows\system32\browserchoice.exe
2010-10-11 23:23:34 ----A---- C:\Windows\system32\iertutil.dll
2010-10-11 15:48:15 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2010-10-11 15:48:14 ----A---- C:\Windows\system32\drivers\mbam.sys
2010-10-11 15:48:13 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-10-10 14:27:55 ----D---- C:\Program Files\Bonjour
2010-10-10 14:23:12 ----D---- C:\Program Files\Common Files\Macrovision Shared
2010-10-09 22:15:56 ----D---- C:\Users\TBE\AppData\Roaming\skypePM
2010-10-09 22:15:06 ----D---- C:\Users\TBE\AppData\Roaming\Skype
2010-10-09 22:14:34 ----D---- C:\ProgramData\Skype
2010-10-09 20:41:03 ----D---- C:\ProgramData\FLEXnet
2010-10-09 20:24:43 ----D---- C:\Adobe Premiere Pro CS3
2010-10-06 22:33:09 ----D---- C:\Program Files\Crawler
2010-10-06 22:33:06 ----D---- C:\Users\TBE\AppData\Roaming\Spyware Terminator
2010-10-06 22:33:06 ----A---- C:\Windows\system32\drivers\sp_rsdrv2.sys
2010-10-06 22:33:05 ----D---- C:\ProgramData\Spyware Terminator
2010-10-06 22:33:04 ----D---- C:\Program Files\Spyware Terminator
2010-10-06 21:44:46 ----D---- C:\Program Files\Mozilla Firefox 4.0 Beta 6
2010-10-06 20:37:30 ----D---- C:\Users\TBE\AppData\Roaming\Jpeg Resampler
2010-10-06 20:18:01 ----D---- C:\rsit
2010-10-06 20:15:14 ----D---- C:\Program Files\CCleaner
2010-10-06 18:54:08 ----D---- C:\Users\TBE\AppData\Roaming\Malwarebytes
2010-10-06 18:53:46 ----D---- C:\ProgramData\Malwarebytes
2010-10-06 18:35:41 ----SHD---- C:\$RECYCLE.BIN
2010-10-06 18:35:40 ----D---- C:\Windows\temp
2010-10-06 17:11:22 ----D---- C:\Program Files\trend micro
2010-10-06 16:19:37 ----D---- C:\Program Files\Enigma Software Group
2010-10-06 16:19:23 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-10-05 23:11:02 ----AD---- C:\ProgramData\TEMP
2010-10-04 17:37:21 ----D---- C:\Program Files\AviSynth 2.5
2010-10-04 17:37:09 ----D---- C:\Program Files\AVN Products
2010-10-04 17:32:28 ----N---- C:\Windows\system32\vxblock.dll
2010-10-04 17:32:28 ----N---- C:\Windows\system32\pxwma.dll
2010-10-04 17:32:28 ----N---- C:\Windows\system32\pxwave.dll
2010-10-04 17:32:28 ----N---- C:\Windows\system32\pxsfs.dll
2010-10-04 17:32:28 ----N---- C:\Windows\system32\pxmas.dll
2010-10-04 17:32:28 ----N---- C:\Windows\system32\pxhpinst.exe
2010-10-04 17:32:28 ----N---- C:\Windows\system32\pxdrv.dll
2010-10-04 17:32:28 ----N---- C:\Windows\system32\px.dll
2010-10-04 17:32:28 ----N---- C:\Windows\system32\drivers\PxHelp20.sys
2010-10-04 17:32:28 ----N---- C:\Windows\system32\drivers\cdralw2k.sys
2010-10-04 17:32:28 ----N---- C:\Windows\system32\drivers\cdr4_xp.sys
2010-10-04 17:32:06 ----D---- C:\Program Files\muvee Technologies
2010-10-04 17:32:06 ----D---- C:\Program Files\Common Files\muvee Technologies
2010-10-04 17:31:23 ----D---- C:\Users\TBE\AppData\Roaming\InstallShield
2010-10-01 00:20:34 ----D---- C:\Windows\Sun
2010-09-30 17:22:26 ----A---- C:\Windows\system32\CNAB4SMK.DLL
2010-09-30 17:22:26 ----A---- C:\Windows\system32\CNAB4RPK.EXE
2010-09-30 17:22:26 ----A---- C:\Windows\system32\CNAB4PTU.DLL
2010-09-30 17:22:26 ----A---- C:\Windows\system32\CNAB4EMU.DLL
2010-09-30 15:14:35 ----A---- C:\Windows\system32\drivers\ks.sys
2010-09-30 15:14:28 ----A---- C:\Windows\system32\mshtml.dll
2010-09-30 15:14:26 ----A---- C:\Windows\system32\urlmon.dll
2010-09-30 15:14:26 ----A---- C:\Windows\system32\mstime.dll
2010-09-30 15:14:26 ----A---- C:\Windows\system32\ieframe.dll
2010-09-30 15:14:25 ----A---- C:\Windows\system32\wininet.dll
2010-09-30 15:14:25 ----A---- C:\Windows\system32\msfeedssync.exe
2010-09-30 15:14:25 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-09-30 15:14:25 ----A---- C:\Windows\system32\jsproxy.dll
2010-09-30 15:14:25 ----A---- C:\Windows\system32\ieui.dll
2010-09-30 15:14:25 ----A---- C:\Windows\system32\iepeers.dll
2010-09-30 15:14:25 ----A---- C:\Windows\system32\iedkcs32.dll
2010-09-30 15:04:00 ----A---- C:\Windows\system32\tzres.dll
2010-09-29 12:15:01 ----D---- C:\Program Files\VirtualDJ
2010-09-29 12:14:56 ----RASH---- C:\Windows\system32\KBDBLR1.dll
2010-09-28 21:01:51 ----D---- C:\Program Files\MSXML 4.0
2010-09-28 15:20:04 ----D---- C:\Users\TBE\AppData\Roaming\MAGIX
2010-09-28 15:18:39 ----A---- C:\Windows\system32\TTIC32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\TTI32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\STRING32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\MXRestore.exe
2010-09-28 15:18:39 ----A---- C:\Windows\system32\mgxcdr.txt
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLTPO32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLRES32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLRD32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLPTL32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLPRJ32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLPRF32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLPNT32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLMSC32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLIX.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLISO32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLIO32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLIMG32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLDRV32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLDIR32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLDEV32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLCPY32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLCDF32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLCDA32.dll
2010-09-28 15:18:39 ----A---- C:\Windows\system32\DLLAV32.dll
2010-09-28 15:18:28 ----A---- C:\Windows\system32\msxml4r.dll
2010-09-28 15:18:28 ----A---- C:\Windows\system32\msxml4a.dll
2010-09-28 15:18:13 ----D---- C:\ProgramData\MAGIX
2010-09-28 15:17:51 ----A---- C:\Windows\system32\DLLDEV32i.dll
2010-09-28 15:17:40 ----D---- C:\Program Files\Common Files\MAGIX Services
2010-09-27 12:12:34 ----A---- C:\Windows\system32\WNASPINT.DLL
2010-09-26 22:18:37 ----D---- C:\Users\TBE\AppData\Roaming\muvee Technologies
2010-09-26 22:15:06 ----D---- C:\ProgramData\muvee Technologies
2010-09-26 21:52:50 ----D---- C:\Windows\system32\appmgmt
2010-09-26 10:51:15 ----D---- C:\Program Files\DIFX
2010-09-26 10:42:24 ----D---- C:\Users\TBE\AppData\Roaming\DivX
2010-09-26 10:42:10 ----D---- C:\Program Files\Common Files\PX Storage Engine
2010-09-26 10:41:52 ----D---- C:\Program Files\Common Files\DivX Shared
2010-09-26 10:39:43 ----D---- C:\Program Files\DivX
2010-09-26 10:39:18 ----D---- C:\ProgramData\DivX
2010-09-24 13:11:25 ----A---- C:\Windows\system32\REX Shared Library.dll
2010-09-24 13:11:25 ----A---- C:\Windows\system32\ReWire.dll
2010-09-24 13:08:17 ----D---- C:\Users\TBE\AppData\Roaming\Propellerhead Software
2010-09-24 13:08:17 ----D---- C:\ProgramData\Propellerhead Software
2010-09-24 13:06:52 ----D---- C:\Program Files\Propellerhead
2010-09-23 19:50:47 ----D---- C:\Program Files\QIP
2010-09-23 19:09:40 ----D---- C:\Program Files\VideoLAN
2010-09-23 10:53:18 ----RASH---- C:\MSDOS.SYS
2010-09-23 10:53:18 ----RASH---- C:\IO.SYS
2010-09-23 07:08:56 ----D---- C:\Windows\Panther
2010-09-23 07:08:33 ----D---- C:\Windows\system32\OEM
2010-09-23 05:18:55 ----A---- C:\Windows\system32\msv1_0.dll
2010-09-23 05:18:08 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-09-23 05:18:08 ----A---- C:\Windows\system32\PresentationHost.exe
2010-09-23 05:18:08 ----A---- C:\Windows\system32\netfxperf.dll
2010-09-23 05:18:08 ----A---- C:\Windows\system32\mscoree.dll
2010-09-23 05:18:08 ----A---- C:\Windows\system32\dfshim.dll
2010-09-23 05:14:40 ----A---- C:\Windows\system32\MRT.exe
2010-09-23 05:13:37 ----A---- C:\Windows\system32\winload.exe
2010-09-23 05:13:37 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2010-09-23 05:13:37 ----A---- C:\Windows\system32\CertEnroll.dll
2010-09-23 05:13:36 ----A---- C:\Windows\system32\winresume.exe
2010-09-23 05:13:34 ----A---- C:\Windows\system32\inetcomm.dll
2010-09-23 05:13:15 ----A---- C:\Windows\system32\lsasrv.dll
2010-09-23 05:13:15 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2010-09-23 05:13:10 ----A---- C:\Windows\system32\msdri.dll
2010-09-23 05:13:10 ----A---- C:\Windows\system32\CPFilters.dll
2010-09-23 05:13:09 ----A---- C:\Windows\system32\psisdecd.dll
2010-09-23 05:13:08 ----A---- C:\Windows\system32\rtutils.dll
2010-09-23 05:13:07 ----A---- C:\Windows\system32\wintrust.dll
2010-09-23 05:13:07 ----A---- C:\Windows\system32\drivers\fvevol.sys
2010-09-23 05:13:06 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-09-23 05:13:06 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-09-23 05:13:06 ----A---- C:\Windows\system32\secproc_isv.dll
2010-09-23 05:13:06 ----A---- C:\Windows\system32\secproc.dll
2010-09-23 05:13:06 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-09-23 05:13:06 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-09-23 05:13:06 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-09-23 05:13:06 ----A---- C:\Windows\system32\RMActivate.exe
2010-09-23 05:13:05 ----A---- C:\Windows\system32\spoolsv.exe
2010-09-23 05:13:05 ----A---- C:\Windows\system32\ntdll.dll
2010-09-23 05:13:03 ----A---- C:\Windows\system32\ir32_32.dll
2010-09-23 05:13:03 ----A---- C:\Windows\system32\iccvid.dll
2010-09-23 05:13:03 ----A---- C:\Windows\system32\drivers\tcpip.sys
2010-09-23 05:12:58 ----A---- C:\Windows\system32\asycfilt.dll
2010-09-23 05:12:57 ----A---- C:\Windows\system32\tsbyuv.dll
2010-09-23 05:12:57 ----A---- C:\Windows\system32\quartz.dll
2010-09-23 05:12:57 ----A---- C:\Windows\system32\msyuv.dll
2010-09-23 05:12:57 ----A---- C:\Windows\system32\msvidc32.dll
2010-09-23 05:12:57 ----A---- C:\Windows\system32\msrle32.dll
2010-09-23 05:12:57 ----A---- C:\Windows\system32\mciavi32.dll
2010-09-23 05:12:57 ----A---- C:\Windows\system32\iyuv_32.dll
2010-09-23 05:12:57 ----A---- C:\Windows\system32\avifil32.dll
2010-09-23 05:12:09 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-09-23 05:12:09 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-09-23 05:11:58 ----A---- C:\Windows\system32\vbscript.dll
2010-09-23 05:11:57 ----A---- C:\Windows\system32\winlogon.exe
2010-09-23 05:11:57 ----A---- C:\Windows\explorer.exe
2010-09-23 05:11:55 ----A---- C:\Windows\system32\jscript.dll
2010-09-23 05:11:51 ----A---- C:\Windows\system32\shell32.dll
2010-09-23 05:11:50 ----A---- C:\Windows\system32\fontsub.dll
2010-09-23 05:11:50 ----A---- C:\Windows\system32\atmlib.dll
2010-09-23 05:11:50 ----A---- C:\Windows\system32\atmfd.dll
2010-09-23 05:11:49 ----A---- C:\Windows\system32\kernel32.dll
2010-09-23 05:11:49 ----A---- C:\Windows\system32\apphelp.dll
2010-09-23 05:11:47 ----A---- C:\Windows\system32\msxml3.dll
2010-09-23 05:11:47 ----A---- C:\Windows\system32\msasn1.dll
2010-09-23 05:11:41 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2010-09-23 05:11:41 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2010-09-23 05:11:41 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2010-09-23 05:11:39 ----A---- C:\Windows\system32\cabview.dll
2010-09-23 01:07:54 ----A---- C:\Windows\mixerdef.ini
2010-09-23 00:25:11 ----A---- C:\Windows\system32\drivers\cmudax3.sys
2010-09-23 00:16:11 ----D---- C:\ProgramData\Logitech
2010-09-23 00:16:04 ----D---- C:\Users\TBE\AppData\Roaming\Leadertech
2010-09-23 00:15:39 ----A---- C:\Windows\system32\drivers\LNonPnP.sys
2010-09-23 00:15:13 ----D---- C:\ProgramData\Logishrd
2010-09-23 00:15:12 ----D---- C:\Program Files\Logitech
2010-09-23 00:14:56 ----D---- C:\Program Files\Common Files\LogiShrd
2010-09-23 00:14:43 ----D---- C:\Users\TBE\AppData\Roaming\Logitech
2010-09-23 00:14:43 ----D---- C:\Users\TBE\AppData\Roaming\Logishrd
2010-09-22 23:58:16 ----D---- C:\Users\TBE\AppData\Roaming\ATI
2010-09-22 23:58:16 ----D---- C:\ProgramData\ATI
2010-09-22 23:52:32 ----D---- C:\Users\TBE\AppData\Roaming\Media Player Classic
2010-09-22 23:17:37 ----A---- C:\Windows\system32\unrar.dll
2010-09-22 23:17:37 ----A---- C:\Windows\avisplitter.ini
2010-09-22 23:17:35 ----A---- C:\Windows\system32\yv12vfw.dll
2010-09-22 23:17:35 ----A---- C:\Windows\system32\xvidvfw.dll
2010-09-22 23:17:35 ----A---- C:\Windows\system32\xvidcore.dll
2010-09-22 23:17:35 ----A---- C:\Windows\system32\ff_vfw.dll.manifest
2010-09-22 23:17:35 ----A---- C:\Windows\system32\ff_vfw.dll
2010-09-22 23:17:31 ----D---- C:\Program Files\K-Lite Codec Pack
2010-09-22 22:51:32 ----D---- C:\Users\TBE\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2010-09-22 22:51:32 ----D---- C:\Users\TBE\AppData\Roaming\Adobe Mini Bridge CS5
2010-09-22 22:51:07 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2010-09-22 22:44:57 ----D---- C:\ProgramData\ALM
2010-09-22 22:40:51 ----D---- C:\Program Files\Adobe Media Player
2010-09-22 22:38:28 ----D---- C:\Program Files\Common Files\Adobe AIR
2010-09-22 22:38:27 ----D---- C:\Program Files\Adobe
2010-09-22 22:34:39 ----D---- C:\ProgramData\Adobe
2010-09-22 22:34:02 ----D---- C:\Program Files\Common Files\Adobe
2010-09-22 22:13:10 ----N---- C:\Windows\system32\Cmeaupci.exe
2010-09-22 22:13:10 ----A---- C:\Windows\Cmicnfg3.ini.cfl
2010-09-22 22:12:51 ----N---- C:\Windows\system32\CmiInstallResAll.dll
2010-09-22 22:12:51 ----N---- C:\Windows\cmudax3.ini
2010-09-22 22:12:51 ----N---- C:\Windows\Cmicnfg3.ini.cfg
2010-09-22 22:12:51 ----A---- C:\Windows\difxapi.dll
2010-09-22 22:12:51 ----A---- C:\Windows\Cmicnfg3.ini.imi
2010-09-22 22:12:50 ----A---- C:\Windows\system32\cmudax3.DLL
2010-09-22 22:02:48 ----D---- C:\Users\TBE\AppData\Roaming\ESET
2010-09-22 22:02:10 ----D---- C:\ProgramData\ESET
2010-09-22 22:02:10 ----D---- C:\Program Files\ESET
2010-09-22 22:00:05 ----A---- C:\Windows\system32\drivers\sptd.sys
2010-09-22 21:59:53 ----D---- C:\Program Files\DAEMON Tools Lite
2010-09-22 21:59:41 ----D---- C:\Users\TBE\AppData\Roaming\DAEMON Tools Lite
2010-09-22 21:59:39 ----D---- C:\ProgramData\DAEMON Tools Lite
2010-09-22 21:59:04 ----D---- C:\Users\TBE\AppData\Roaming\Ahead
2010-09-22 21:58:28 ----D---- C:\Program Files\Nero
2010-09-22 21:58:28 ----D---- C:\Program Files\Common Files\Ahead
2010-09-22 21:51:52 ----D---- C:\Program Files\JPEG Resampler
2010-09-22 21:49:51 ----D---- C:\Program Files\uTorrent
2010-09-22 21:49:26 ----D---- C:\Users\TBE\AppData\Roaming\uTorrent
2010-09-22 21:49:06 ----D---- C:\Users\TBE\AppData\Roaming\WinRAR
2010-09-22 21:46:56 ----A---- C:\Windows\system32\BASSMOD.dll
2010-09-22 21:46:47 ----D---- C:\Program Files\WinRAR
2010-09-22 21:46:20 ----A---- C:\Windows\system32\msonpmon.dll
2010-09-22 21:45:36 ----D---- C:\Program Files\Microsoft Works
2010-09-22 21:45:24 ----D---- C:\Program Files\Microsoft Visual Studio
2010-09-22 21:45:24 ----D---- C:\Program Files\Common Files\DESIGNER
2010-09-22 21:45:14 ----D---- C:\Windows\PCHEALTH
2010-09-22 21:45:14 ----D---- C:\Program Files\Microsoft.NET
2010-09-22 21:44:24 ----A---- C:\Windows\system32\TURegOpt.exe
2010-09-22 21:44:21 ----A---- C:\Windows\system32\uxtuneup.dll
2010-09-22 21:44:21 ----A---- C:\Windows\system32\authuitu.dll
2010-09-22 21:44:14 ----D---- C:\Users\TBE\AppData\Roaming\TuneUp Software
2010-09-22 21:44:10 ----D---- C:\Program Files\TuneUp Utilities 2010
2010-09-22 21:43:32 ----D---- C:\Program Files\Microsoft Visual Studio 8
2010-09-22 21:43:25 ----D---- C:\ProgramData\TuneUp Software
2010-09-22 21:43:18 ----A---- C:\Windows\system32\d3dx9_30.dll
2010-09-22 21:43:18 ----A---- C:\Windows\system32\d3dx9_28.dll
2010-09-22 21:43:16 ----SHD---- C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2010-09-22 21:42:53 ----D---- C:\ProgramData\Microsoft Help
2010-09-22 21:42:53 ----D---- C:\Program Files\Microsoft Office
2010-09-22 21:42:35 ----RD---- C:\MSOCache
2010-09-22 21:41:17 ----A---- C:\Windows\system32\CNAB4LMK.DLL
2010-09-22 21:40:52 ----D---- C:\Program Files\Canon
2010-09-22 21:40:50 ----D---- C:\Program Files\Common Files\InstallShield
2010-09-22 21:40:47 ----HD---- C:\Program Files\InstallShield Installation Information
2010-09-22 21:40:47 ----D---- C:\ProgramData\AVerTV
2010-09-22 21:40:28 ----A---- C:\Windows\system32\sptlib22.dll
2010-09-22 21:40:28 ----A---- C:\Windows\system32\sptlib21.dll
2010-09-22 21:40:28 ----A---- C:\Windows\system32\sptlib12.dll
2010-09-22 21:40:28 ----A---- C:\Windows\system32\sptlib11.dll
2010-09-22 21:40:28 ----A---- C:\Windows\system32\sptlib03.dll
2010-09-22 21:40:28 ----A---- C:\Windows\system32\sptlib02.dll
2010-09-22 21:40:28 ----A---- C:\Windows\system32\sptlib01.dll
2010-09-22 21:40:28 ----A---- C:\Windows\system32\CardID.dll
2010-09-22 21:40:28 ----A---- C:\Windows\system32\AVerIO.sys
2010-09-22 21:40:28 ----A---- C:\Windows\system32\AVerIO.dll
2010-09-22 21:40:09 ----D---- C:\Program Files\Common Files\AVerMedia
2010-09-22 21:40:07 ----D---- C:\ProgramData\AVerMedia
2010-09-22 21:39:45 ----D---- C:\Windows\Driver Cache
2010-09-22 21:39:45 ----D---- C:\Program Files\AVerMedia
2010-09-22 21:39:45 ----A---- C:\Windows\system32\TVRate.dll
2010-09-22 21:39:45 ----A---- C:\Windows\system32\drivers\AVerA706.sys
2010-09-22 21:39:45 ----A---- C:\Windows\system32\34CoInstaller.dll
2010-09-22 21:39:22 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2010-09-22 21:37:36 ----D---- C:\Program Files\Intel
2010-09-22 21:37:36 ----A---- C:\Windows\system32\CSVer.dll
2010-09-22 21:37:29 ----D---- C:\Intel
2010-09-22 21:36:50 ----N---- C:\Windows\system32\MpSigStub.exe
2010-09-22 21:31:26 ----D---- C:\Program Files\ATI
2010-09-22 21:31:06 ----D---- C:\Program Files\ATI Technologies
2010-09-22 21:30:40 ----D---- C:\ATI
2010-09-22 21:26:53 ----D---- C:\Users\TBE\AppData\Roaming\Macromedia
2010-09-22 21:26:53 ----D---- C:\Users\TBE\AppData\Roaming\Adobe
2010-09-22 21:26:40 ----D---- C:\ProgramData\Sun
2010-09-22 21:26:40 ----D---- C:\Program Files\Common Files\Java
2010-09-22 21:26:30 ----A---- C:\Windows\system32\javaws.exe
2010-09-22 21:26:30 ----A---- C:\Windows\system32\javaw.exe
2010-09-22 21:26:30 ----A---- C:\Windows\system32\java.exe
2010-09-22 21:26:30 ----A---- C:\Windows\system32\deployJava1.dll
2010-09-22 21:26:26 ----D---- C:\Program Files\Java
2010-09-22 21:26:13 ----SHD---- C:\Windows\Installer
2010-09-22 21:25:30 ----D---- C:\Windows\system32\Macromed
2010-09-22 21:24:19 ----D---- C:\Users\TBE\AppData\Roaming\Mozilla
2010-09-22 21:24:16 ----D---- C:\Program Files\Mozilla Firefox
2010-09-22 21:22:49 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-09-22 21:18:48 ----D---- C:\Users\TBE\AppData\Roaming\Identities
2010-09-22 21:18:39 ----SD---- C:\Users\TBE\AppData\Roaming\Microsoft
2010-09-22 21:18:39 ----D---- C:\Users\TBE\AppData\Roaming\Media Center Programs
2010-09-22 21:16:46 ----SHD---- C:\ProgramData\Šablony
2010-09-22 21:16:46 ----SHD---- C:\ProgramData\Plocha
2010-09-22 21:16:46 ----SHD---- C:\ProgramData\Oblíbené položky
2010-09-22 21:16:46 ----SHD---- C:\ProgramData\Nabídka Start
2010-09-22 21:16:46 ----SHD---- C:\ProgramData\Dokumenty
2010-09-22 21:16:46 ----SHD---- C:\ProgramData\Data aplikací
2010-09-22 21:16:46 ----D---- C:\Recovery
2010-09-22 21:12:35 ----D---- C:\Windows\SoftwareDistribution
2010-09-22 21:09:58 ----D---- C:\Windows\Prefetch
2010-09-22 21:09:47 ----ASH---- C:\pagefile.sys
2010-09-22 21:09:46 ----SHD---- C:\System Volume Information
2010-09-22 21:09:46 ----ASH---- C:\hiberfil.sys

======List of files/folders modified in the last 1 months======

2010-10-19 11:23:13 ----D---- C:\Windows\System32
2010-10-19 11:23:06 ----RD---- C:\Program Files
2010-10-19 11:14:36 ----D---- C:\Windows\system32\Tasks
2010-10-19 11:14:34 ----D---- C:\Program Files\Common Files
2010-10-19 08:19:38 ----D---- C:\Windows\system32\config
2010-10-18 21:18:57 ----D---- C:\Windows\inf
2010-10-15 19:59:18 ----D---- C:\Windows\winsxs
2010-10-15 19:58:48 ----D---- C:\Windows
2010-10-15 19:57:26 ----D---- C:\Windows\system32\drivers
2010-10-15 19:57:26 ----D---- C:\Program Files\Windows Media Player
2010-10-15 18:40:58 ----D---- C:\Windows\debug
2010-10-15 18:39:40 ----D---- C:\Windows\system32\catroot
2010-10-15 18:39:18 ----D---- C:\Windows\system32\catroot2
2010-10-12 13:12:37 ----D---- C:\Windows\Logs
2010-10-11 23:24:05 ----D---- C:\Windows\system32\DriverStore
2010-10-11 20:06:19 ----RSD---- C:\Windows\Fonts
2010-10-11 20:06:17 ----D---- C:\Windows\AppPatch
2010-10-09 22:14:34 ----D---- C:\ProgramData
2010-10-07 02:02:23 ----D---- C:\Windows\system32\LogFiles
2010-10-06 19:54:42 ----D---- C:\Windows\Resources
2010-10-06 18:34:37 ----A---- C:\Windows\system.ini
2010-10-06 18:34:33 ----D---- C:\Windows\system32\drivers\etc
2010-10-06 18:15:46 ----D---- C:\Windows\Tasks
2010-10-02 19:23:58 ----D---- C:\Windows\Microsoft.NET
2010-10-02 19:23:48 ----RSD---- C:\Windows\assembly
2010-09-30 15:50:08 ----D---- C:\Windows\rescache
2010-09-30 15:19:19 ----D---- C:\Windows\Downloaded Program Files
2010-09-30 15:14:56 ----D---- C:\Windows\system32\migration
2010-09-30 15:14:56 ----D---- C:\Program Files\Internet Explorer
2010-09-30 15:04:06 ----D---- C:\Windows\system32\sk-SK
2010-09-30 15:04:06 ----D---- C:\Windows\system32\en-US
2010-09-30 15:04:06 ----D---- C:\Windows\system32\cs-CZ
2010-09-28 16:50:20 ----D---- C:\Program Files\Common Files\microsoft shared
2010-09-28 15:20:00 ----D---- C:\Windows\Help
2010-09-25 20:17:33 ----D---- C:\Windows\system32\wdi
2010-09-24 13:14:23 ----SD---- C:\ProgramData\Microsoft
2010-09-23 09:36:24 ----D---- C:\Windows\system32\drivers\UMDF
2010-09-23 05:20:02 ----D---- C:\Program Files\Windows Mail
2010-09-23 05:20:01 ----D---- C:\Windows\system32\Boot
2010-09-23 05:20:01 ----D---- C:\Windows\ehome
2010-09-23 01:11:49 ----D---- C:\Windows\system
2010-09-22 21:45:28 ----D---- C:\Program Files\MSBuild
2010-09-22 21:45:23 ----D---- C:\Windows\ShellNew
2010-09-22 21:43:09 ----D---- C:\Program Files\Common Files\System
2010-09-22 21:43:09 ----A---- C:\Windows\win.ini
2010-09-22 21:40:04 ----RD---- C:\Users
2010-09-22 21:28:01 ----D---- C:\Windows\system32\CodeIntegrity
2010-09-22 21:26:14 ----D---- C:\Windows\system32\restore
2010-09-22 21:22:39 ----D---- C:\Windows\system32\wbem
2010-09-22 21:17:21 ----D---- C:\Windows\Setup
2010-09-22 21:16:46 ----D---- C:\Program Files\Windows NT
2010-09-22 21:13:57 ----D---- C:\Windows\system32\sysprep
2010-09-22 21:10:21 ----D---- C:\Windows\CSC

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2006-08-30 36528]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-09-22 691696]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-07-29 115008]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\Windows\system32\drivers\sp_rsdrv2.sys [2010-10-06 142592]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-07-29 136632]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2010-07-29 134512]
R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2010-07-29 41336]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-08-26 6380032]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-08-26 221696]
R3 AVerA706;AVerMedia A706 BDA Service; C:\Windows\system32\DRIVERS\AVerA706.sys [2010-04-08 1223040]
R3 cmuda3;C-Media PCI Audio Interface; C:\Windows\system32\drivers\cmudax3.sys [2009-12-01 1872192]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2010-07-29 32608]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x86.sys [2009-08-23 48640]
R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter; C:\Windows\System32\Drivers\LEqdUsb.Sys [2010-03-18 40912]
R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter; C:\Windows\System32\Drivers\LHidEqd.Sys [2010-03-18 10448]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2010-03-18 38864]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2010-03-18 37328]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2010-04-29 20952]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2010-02-25 10064]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 ammd6s4a;ammd6s4a; C:\Windows\system32\drivers\ammd6s4a.sys []
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-08-26 6380032]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-08-26 176128]
R2 AVerRemote;AVerRemote; C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe [2009-10-31 348160]
R2 AVerScheduleService;AVerScheduleService; C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe [2009-12-07 397312]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2010-08-12 810144]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-04-29 304464]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2010-10-06 488960]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-02-25 1047880]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-08-12 33584]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-10-10 654848]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2010-05-06 293456]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-10-09 724992]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TuneUp.Defrag;@C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2010-09-22 435016]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]

-----------------EOF-----------------

[motji]

Dobrý večer
Mbam něco našel?
Nemůžou být tyto dvě stránky blokované třeba od providera, i když je to blbost ?

[teabe]

Dobrý večer,
Mbam čistý Provider určitě ne, druhý pc na stejné lince v pořádku stránky zobrazí. Pokud je log ok a není tam nic, tak bych to neřešil. Jen jsem se chtěl přesvědčit, že tam nemám havěť.

[motji]

A v nouzovém režimu je stejný problém?

[teabe]

V nouzovém režimu jsem to rozjel, jednou se mi to načetlo i v normálním režimu a teď už opět stránka nenajede.
A teď na mě vyskočilo toto:

[motji]

Ve Vašem pc bude něco zašitého

Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix

[teabe]

ComboFix 10-10-20.04 - TBE 21.10.2010 13:38:20.4.2 - x86
Spuštěný z: c:\users\TBE\Desktop\ComboFix.exe
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-09-21 do 2010-10-21 )))))))))))))))))))))))))))))))
.

2010-10-21 11:41 . 2010-10-21 11:41 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-10-21 08:36 . 2010-10-21 08:37 301568 ----a-w- c:\windows\system32\cmd.execf
2010-10-19 09:23 . 2010-10-19 09:23 34064 ----a-w- c:\windows\system32\lhacm.acm
2010-10-19 09:23 . 2010-10-19 09:23 -------- d-----w- c:\program files\Teamspeak2_RC2
2010-10-18 11:12 . 2010-09-16 08:24 6084944 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EA740347-7F9E-4E90-958E-CBFA54AF8CE9}\mpengine.dll
2010-10-18 10:18 . 2009-04-06 08:08 5174 ----a-w- c:\windows\system32\nppt9x.vxd
2010-10-18 10:18 . 2009-04-06 08:08 4682 ----a-w- c:\windows\system32\npptNT2.sys
2010-10-18 10:11 . 2010-10-18 10:11 -------- d-----w- c:\program files\NCsoft
2010-10-12 11:13 . 2009-09-04 15:29 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
2010-10-12 11:13 . 2006-09-28 14:05 2414360 ----a-w- c:\windows\system32\d3dx9_31.dll
2010-10-12 11:12 . 2010-10-12 11:12 -------- d-----w- c:\program files\Winamp Detect
2010-10-12 11:12 . 2010-10-12 11:13 -------- d-----w- c:\program files\Winamp
2010-10-12 08:53 . 2010-10-12 08:53 -------- d-----w- c:\program files\Lavalys
2010-10-11 21:23 . 2010-02-11 07:10 293376 ----a-w- c:\windows\system32\browserchoice.exe
2010-10-11 13:48 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-10-11 13:48 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-10-11 13:48 . 2010-10-11 13:48 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-10-10 12:27 . 2010-10-10 12:27 -------- d-----w- c:\program files\Bonjour
2010-10-10 12:23 . 2010-10-10 12:23 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2010-10-09 20:14 . 2010-10-19 09:14 -------- d-----w- c:\programdata\Skype
2010-10-09 18:41 . 2010-10-09 18:51 -------- d-----w- c:\programdata\FLEXnet
2010-10-09 18:24 . 2010-10-10 12:22 -------- d-----w- C:\Adobe Premiere Pro CS3
2010-10-06 20:33 . 2010-10-06 20:33 -------- d-----w- c:\program files\Crawler
2010-10-06 20:33 . 2010-10-06 20:33 142592 ----a-w- c:\windows\system32\drivers\sp_rsdrv2.sys
2010-10-06 20:33 . 2010-10-19 08:44 -------- d-----w- c:\programdata\Spyware Terminator
2010-10-06 20:33 . 2010-10-20 04:13 -------- d-----w- c:\program files\Spyware Terminator
2010-10-06 19:44 . 2010-10-12 11:12 -------- d-----w- c:\program files\Mozilla Firefox 4.0 Beta 6
2010-10-06 18:18 . 2010-10-06 18:18 -------- d-----w- C:\rsit
2010-10-06 18:15 . 2010-10-12 08:43 -------- d-----w- c:\program files\CCleaner
2010-10-06 16:53 . 2010-10-06 16:53 -------- d-----w- c:\programdata\Malwarebytes
2010-10-06 15:11 . 2010-10-20 20:02 -------- d-----w- c:\program files\trend micro
2010-10-06 14:19 . 2010-10-06 18:05 -------- d-----w- c:\program files\Enigma Software Group
2010-10-06 14:19 . 2010-10-06 14:19 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-10-04 15:37 . 2010-10-04 15:37 -------- d-----w- c:\program files\AviSynth 2.5
2010-10-04 15:37 . 2010-10-04 15:37 -------- d-----w- c:\program files\AVN Products
2010-10-04 15:37 . 2004-03-09 14:45 152848 ----a-w- c:\windows\system32\Comdlg32.ocx
2010-09-30 22:20 . 2010-09-30 22:20 -------- d-----w- c:\windows\Sun
2010-09-30 15:22 . 2008-09-04 13:00 69632 ----a-w- c:\windows\system32\CNAB4SMK.DLL
2010-09-30 15:22 . 2008-08-31 22:50 62848 ----a-w- c:\windows\system32\CNAB4RPK.EXE
2010-09-30 15:22 . 2007-09-27 13:00 135168 ----a-w- c:\windows\system32\CNAB4EMU.DLL
2010-09-30 15:22 . 2007-01-10 13:00 28672 ----a-w- c:\windows\system32\CNAB4PTU.DLL
2010-09-30 13:04 . 2010-06-19 06:15 2048 ----a-w- c:\windows\system32\tzres.dll
2010-09-29 10:15 . 2010-09-29 10:16 -------- d-----w- c:\program files\VirtualDJ
2010-09-29 10:14 . 2010-09-29 10:14 60416 --sha-r- c:\windows\system32\KBDBLR1.dll
2010-09-28 19:01 . 2010-09-28 19:01 -------- d-----w- c:\program files\MSXML 4.0
2010-09-28 13:17 . 2007-04-27 08:43 120200 ----a-w- c:\windows\system32\DLLDEV32i.dll
2010-09-28 13:17 . 2010-09-28 14:48 -------- d-----w- c:\program files\Common Files\MAGIX Services
2010-09-27 10:12 . 2002-11-02 07:53 57344 ----a-w- c:\windows\system32\WNASPINT.DLL
2010-09-26 20:15 . 2010-10-04 15:31 -------- d-----w- c:\programdata\muvee Technologies
2010-09-26 08:51 . 2010-09-26 08:51 -------- d-----w- c:\program files\DIFX
2010-09-26 08:42 . 2010-09-26 08:42 -------- d-----w- c:\program files\Common Files\PX Storage Engine
2010-09-26 08:41 . 2010-09-26 08:41 -------- d-----w- c:\program files\Common Files\DivX Shared
2010-09-26 08:39 . 2010-09-26 08:42 -------- d-----w- c:\program files\DivX
2010-09-26 08:39 . 2010-09-26 08:42 -------- d-----w- c:\programdata\DivX
2010-09-24 11:11 . 2010-09-24 11:11 368640 ----a-w- c:\windows\system32\ReWire.dll
2010-09-24 11:11 . 2010-09-24 11:11 233472 ----a-w- c:\windows\system32\REX Shared Library.dll
2010-09-24 11:08 . 2010-09-24 11:11 -------- d-----w- c:\programdata\Propellerhead Software
2010-09-24 11:06 . 2010-09-24 11:19 -------- d-----w- c:\program files\Propellerhead
2010-09-23 17:50 . 2010-09-23 17:50 -------- d-----w- c:\program files\QIP
2010-09-23 17:09 . 2010-09-23 17:09 -------- d-----w- c:\program files\VideoLAN
2010-09-23 05:08 . 2010-09-22 19:17 -------- d-----w- c:\windows\Panther
2010-09-23 05:08 . 2010-09-23 05:08 -------- d-----w- c:\windows\system32\OEM
2010-09-23 03:18 . 2009-09-10 05:52 257024 ----a-w- c:\windows\system32\msv1_0.dll
2010-09-23 03:18 . 2009-11-25 10:47 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-09-23 03:18 . 2009-11-25 10:47 49472 ----a-w- c:\windows\system32\netfxperf.dll
2010-09-23 03:18 . 2009-11-25 10:47 297808 ----a-w- c:\windows\system32\mscoree.dll
2010-09-23 03:18 . 2009-11-25 10:47 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2010-09-23 03:18 . 2009-11-25 10:47 1130824 ----a-w- c:\windows\system32\dfshim.dll
2010-09-23 03:12 . 2010-03-05 07:42 67584 ----a-w- c:\windows\system32\asycfilt.dll
2010-09-23 03:12 . 2009-12-19 09:02 12288 ----a-w- c:\windows\system32\tsbyuv.dll
2010-09-23 03:12 . 2009-12-19 09:02 1328640 ----a-w- c:\windows\system32\quartz.dll
2010-09-23 03:12 . 2009-12-19 09:02 22016 ----a-w- c:\windows\system32\msyuv.dll
2010-09-23 03:12 . 2009-12-19 09:02 31744 ----a-w- c:\windows\system32\msvidc32.dll
2010-09-23 03:12 . 2009-12-19 09:02 13312 ----a-w- c:\windows\system32\msrle32.dll
2010-09-23 03:12 . 2009-12-19 09:02 84480 ----a-w- c:\windows\system32\mciavi32.dll
2010-09-23 03:12 . 2009-12-19 09:02 50176 ----a-w- c:\windows\system32\iyuv_32.dll
2010-09-23 03:12 . 2009-12-19 09:02 91648 ----a-w- c:\windows\system32\avifil32.dll
2010-09-23 03:12 . 2010-06-19 06:33 3955080 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-09-23 03:12 . 2010-06-19 06:33 3899784 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-09-22 22:25 . 2009-12-01 09:11 1872192 ----a-w- c:\windows\system32\drivers\cmudax3.sys
2010-09-22 22:16 . 2010-09-22 22:16 -------- d-----w- c:\programdata\Logitech
2010-09-22 22:15 . 2010-10-20 21:21 16400 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2010-09-22 22:15 . 2010-09-22 22:16 -------- d-----w- c:\programdata\Logishrd
2010-09-22 22:15 . 2010-09-22 22:15 -------- d-----w- c:\program files\Logitech
2010-09-22 22:14 . 2010-09-22 22:16 -------- d-----w- c:\program files\Common Files\LogiShrd
2010-09-22 21:58 . 2010-09-22 21:58 -------- d-----w- c:\programdata\ATI
2010-09-22 21:17 . 2010-03-15 09:31 165376 ----a-w- c:\windows\system32\unrar.dll
2010-09-22 21:17 . 2010-09-14 08:00 108032 ----a-w- c:\windows\system32\ff_vfw.dll
2010-09-22 21:17 . 2010-06-08 16:10 790528 ----a-w- c:\windows\system32\xvidcore.dll
2010-09-22 21:17 . 2010-06-08 16:10 134144 ----a-w- c:\windows\system32\xvidvfw.dll
2010-09-22 21:17 . 2010-01-17 15:18 151552 ----a-w- c:\windows\system32\ac3acm.acm
2010-09-22 21:17 . 2006-10-18 18:05 232448 ----a-w- c:\windows\system32\mp3fhg.acm
2010-09-22 21:17 . 2004-01-25 16:18 217088 ----a-w- c:\windows\system32\yv12vfw.dll
2010-09-22 21:17 . 2010-10-04 15:37 -------- d-----w- c:\program files\K-Lite Codec Pack
2010-09-22 20:51 . 2010-10-11 16:05 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
2010-09-22 20:44 . 2010-09-22 20:44 -------- d-----w- c:\programdata\ALM
2010-09-22 20:40 . 2010-09-22 20:40 -------- d-----w- c:\program files\Adobe Media Player
2010-09-22 20:38 . 2010-09-22 20:38 -------- d-----w- c:\program files\Common Files\Adobe AIR
2010-09-22 20:34 . 2010-10-11 09:52 -------- d-----w- c:\program files\Common Files\Adobe
2010-09-22 20:13 . 2009-12-08 14:53 557056 ------w- c:\windows\system32\Cmeaupci.exe
2010-09-22 20:13 . 2009-04-02 14:59 143360 ------w- c:\windows\system\VmixP6.dll
2010-09-22 20:12 . 2009-08-19 14:00 303104 ------w- c:\windows\system32\CmiInstallResAll.dll
2010-09-22 20:12 . 2006-10-06 03:47 319968 ----a-w- c:\windows\difxapi.dll
2010-09-22 20:12 . 2009-11-02 08:33 36864 ----a-w- c:\windows\system32\cmudax3.DLL
2010-09-22 20:02 . 2010-09-22 20:03 -------- d-----w- c:\program files\ESET
2010-09-22 20:00 . 2010-09-22 20:00 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-09-22 19:59 . 2010-09-22 20:00 -------- d-----w- c:\program files\DAEMON Tools Lite
2010-09-22 19:59 . 2010-09-22 19:59 -------- d-----w- c:\programdata\DAEMON Tools Lite
2010-09-22 19:58 . 2010-09-22 19:59 -------- d-----w- c:\program files\Common Files\Ahead
2010-09-22 19:58 . 2010-09-22 19:58 -------- d-----w- c:\program files\Nero
2010-09-22 19:51 . 2010-09-22 19:51 -------- d-----w- c:\program files\JPEG Resampler
2010-09-22 19:49 . 2010-09-22 19:49 -------- d-----w- c:\program files\uTorrent
2010-09-22 19:46 . 2006-10-26 17:56 33104 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\msonpppr.dll
2010-09-22 19:46 . 2006-10-26 17:56 32592 ----a-w- c:\windows\system32\msonpmon.dll
2010-09-22 19:45 . 2010-09-22 19:45 -------- d-----w- c:\program files\Microsoft Works
2010-09-22 19:42 . 2010-09-22 19:42 -------- d-----r- C:\MSOCache
2010-09-22 19:41 . 2007-01-10 13:00 28672 ----a-w- c:\windows\system32\CNAB4LMK.DLL
2010-09-22 19:39 . 2010-09-22 19:39 -------- d-----w- c:\windows\Driver Cache
2010-09-22 19:39 . 2010-04-08 11:18 1223040 ----a-w- c:\windows\system32\drivers\AVerA706.sys
2010-09-22 19:39 . 2010-01-13 03:46 81920 ----a-w- c:\windows\system32\TVRate.dll
2010-09-22 19:39 . 2010-01-13 03:46 3072 ----a-w- c:\windows\system32\34CoInstaller.dll
2010-09-22 19:39 . 2010-01-13 03:46 163768 ----a-w- c:\windows\system32\MVDetection.ax
2010-09-22 19:39 . 2010-09-22 19:39 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2010-09-22 19:37 . 2010-09-22 19:37 -------- d-----w- c:\program files\Intel
2010-09-22 19:37 . 2010-09-22 19:37 53248 ----a-w- c:\windows\system32\CSVer.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2010-08-12 2215064]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2010-06-26 1311312]
"SpywareTerminator"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2010-10-06 2183680]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2010-04-29 437584]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
AVer HID Receiver.lnk - c:\program files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe [2010-9-22 155648]
AVerQuick.lnk - c:\program files\Common Files\AVerMedia\AVerQuick\AVerQuick.exe [2010-9-22 651264]
Canon LBP2900 Status Window.lnk - c:\windows\System32\spool\drivers\w32x86\3\CNAB4LAK.EXE [2010-9-30 50848]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2010-05-06 09:29 64592 ----a-w- c:\program files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer4"=wdmaud.drv

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"AdobeBridge"=

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 esgiguard;esgiguard;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-09-22 691696]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-07-29 115008]
S1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [2010-10-06 142592]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-08-26 176128]
S2 AVerRemote;AVerRemote;c:\program files\Common Files\AVerMedia\Service\AVerRemote.exe [2009-10-30 348160]
S2 AVerScheduleService;AVerScheduleService;c:\program files\Common Files\AVerMedia\Service\AVerScheduleService.exe [2009-12-07 397312]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-07-29 136632]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2010-08-12 810144]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2010-07-29 41336]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-04-29 304464]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-02-25 1047880]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-08-26 6380032]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-08-26 221696]
S3 AVerA706;AVerMedia A706 BDA Service;c:\windows\system32\DRIVERS\AVerA706.sys [2010-04-08 1223040]
S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;c:\windows\system32\Drivers\LEqdUsb.Sys [2010-03-18 40912]
S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;c:\windows\system32\Drivers\LHidEqd.Sys [2010-03-18 10448]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2010-04-29 20952]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2010-02-25 10064]


HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
.
------- Doplňkový sken -------
.
uInternet Settings,ProxyOverride = *.local
IE: Crawler Search - tbr:iemenu
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
TCP: {3A055A76-AE5F-42EF-B015-58D4D4E96967} = 10.0.0.138
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - c:\progra~1\Crawler\Toolbar\ctbr.dll
FF - ProfilePath - c:\users\TBE\AppData\Roaming\Mozilla\Firefox\Profiles\pgpnyrnd.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - plugin: c:\program files\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox 4.0 Beta 6\plugins\npwachk.dll
.
.
Celkový čas: 2010-10-21 13:44:54
ComboFix-quarantined-files.txt 2010-10-21 11:44
ComboFix2.txt 2010-10-21 11:34

Před spuštěním: Volných bajtů: 192 761 405 440
Po spuštění: Volných bajtů: 192 706 068 480

- - End Of File - - CEFF77B4F3671C33B1266F8A6E7301D6

[teabe]

Restartoval jsem pc a nešla mi síť. Zjistil jsem, že mi něco smazalo výchozí bránu v nastavení IP, zřejmě combofix. Takže jsem napsal zpět, bazos.cz opet funguje.
MBAM stále hlásí svchost.exe jako trojana

[motji]

Nejspíš Vám nměco mazal v registrech, což v logu nevidím, ale pokud se tohle stalo, muselo tam být něco škodlivého .

Ještě otestujte na www.virustotal.com
c:\windows\system32\cmd.execf
c:\windows\system32\lhacm.acm

[teabe]

Obojí dvojí na nule.

[teabe]

Už mi to přijde, jako bych si z vás dělal dobrý den, ale bazos.cz opet nefunguje.

[motji]

dobrý den

:arrow:Stáhněte OTM http://oldtimer.geekstogo.com/OTM.exe
Stáhněte na plochu Otm, 2krát klikněte na Otm,spustí se program,
Do levého okna "Paste Instructions for Items to be Moved" pod žlutou čáru zkopírujete skript

Kód: Vybrat vše

:processes
explorer.exe
 
:files
C:\WINDOWS\system32\*.tmp.dll /s
C:\WINDOWS\system32\SET*.tmp /s
C:\WINDOWS\*.tmp /s

:commands
[resethosts]
[emptytemp]
[EMPTYFLASH]

-klikněte na červené tlačítko Moveit!
-sem vložte obsah zeleného okénka
-Pokud se bude chtít restartovat pc, dejte YES,log pak najdete C:\_OTM\MovedFiles. Log vložte sem

[teabe]

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5E64.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8545.tmp folder moved successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

User: TBE
->Temp folder emptied: 17108713 bytes
->Temporary Internet Files folder emptied: 264529 bytes
->Java cache emptied: 1986627 bytes
->FireFox cache emptied: 184836817 bytes
->Flash cache emptied: 7786 bytes

User: user
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 195,00 mb


OTM by OldTimer - Version 3.1.16.1 log created on 10212010_211633

Files moved on Reboot...

Registry entries deleted on Reboot...

[motji]

Zkontrolujte nastavení IP adres. Mbam ještě něco hlásí? Jak to vypadá s počítačem?

[teabe]

mbam zatím nehlásí, asi ticho před bouří. otestoval jsem raději sám od sebe ještě
C:\Windows\System32\svchost.exe
http://www.virustotal.com/file-scan/rep ... 1287677298

Edit: opět na mě skáče hláška od MBAMu, ale pokud chci nahrát cestu k svchostu.exe, ktery je na C:\Users\TBE\AppData\Local\Temp\svchost.exe tak mi to napíše,že cesta nenalezena.

Takže teď otázka, u MBAMu hlášky mám kliknout na Ignorovat, nebo Karanténa?