PC-HELP.CZ

České diskuzní fórum o počítačích
https://pc-help.cnews.cz/

Prosím o kontrolu logu, PC jako šnek

https://pc-help.cnews.cz/viewtopic.php?f=70&t=36257

Stránka 1 z 1

Prosím o kontrolu logu, PC jako šnek

Napsal: 28 led 2009 16:22
od leklaryba
Logfile of HijackThis v1.99.1
Scan saved at 16:19:44, on 28.1.2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
C:\Program Files\WinFast\WFDTV\WFWIZ.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\WebCam\M1000\M1000Mnt.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\PROGRA~1\AVG\AVG8\avgam.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Opera\opera.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\Adam\LOCALS~1\Temp\Rar$EX00.766\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [WinFastDTV] C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
O4 - HKLM\..\Run: [WinFast Schedule] C:\Program Files\WinFast\WFDTV\WFWIZ.exe
O4 - HKLM\..\Run: [M1000Mnt] M1000Rmv.exe /StartStillMnt
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe




Díky moc, počítač se pomalu spoští a než naběhne lišta a můžu něco spustit tak to je taky doba.

Re: Prosím o kontrolu logu, PC jako šnek

Napsal: 28 led 2009 20:01
od jaro3
Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Re: Prosím o kontrolu logu, PC jako šnek

Napsal: 29 led 2009 14:23
od leklaryba
tady je ten sken:

Malwarebytes' Anti-Malware 1.33
Verze databáze: 1704
Windows 5.1.2600 Service Pack 2

29.1.2009 14:20:31
mbam-log-2009-01-29 (14-20-31).txt

Typ skenu: Rychlý sken
Objektu skenováno: 72599
Uplynulý cas: 11 minute(s), 6 second(s)

Infikované procesy pameti: 0
Infikované pametové moduly: 0
Infikované klíce registru: 0
Infikované hodnoty registru: 0
Infikované položky dat registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy pameti:
(Žádné zákerné položky nebyly zjišteny)

Infikované pametové moduly:
(Žádné zákerné položky nebyly zjišteny)

Infikované klíce registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované hodnoty registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované položky dat registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované složky:
(Žádné zákerné položky nebyly zjišteny)

Infikované soubory:
(Žádné zákerné položky nebyly zjišteny)

Re: Prosím o kontrolu logu, PC jako šnek

Napsal: 29 led 2009 14:41
od jaro3
vyčisti systém CCleanerem
a RegCleanerem

Stáhni si SREng -klikni pravým na odkaz a vyber uložit cíl...
- rozbal na plochu a spusť ho
- "zvol Smart Scan", nech nastaveni tak jak je
- zvol "Verify the digital signature of process modules"
- klik na "Scan"
- klik na Save Reports, ulož log na plochu a cely obsah logu zkopiruj sem.

Re: Prosím o kontrolu logu, PC jako šnek

Napsal: 29 led 2009 15:11
od leklaryba
Ccleanerem a Regem sem to udal, pekne sem to procistil, a tady je ten log:




2009-01-29,15:16:22

System Repair Engineer 2.7.0.1210
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600) - Administrative User - Completed Functions Allowed

Follow item(s) have been selected:
All Boot Items (Including Registry, Startup Folders, Services and so on)
Browser Add-ons
Running Processes (Including process model information)
File Associations
Winsock Provider
Autorun.Inf
HOSTS File
Process Privileges Scan
Scheduled Tasks
API HOOK
Hidden Process


Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<CTFMON.EXE><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Publisher]
<uTorrent><"C:\Program Files\uTorrent\uTorrent.exe"> [(Verified)BitTorrent Inc]
<swg><C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe> [(Verified)Google Inc]
<BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}><"C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"> [(Verified)Nero AG]
<DAEMON Tools Lite><"C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun> [(Verified)DAEMON Tools Code Signing Services]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<SkyTel><SkyTel.EXE> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<AVG8_TRAY><C:\PROGRA~1\AVG\AVG8\avgtray.exe> [(Verified)AVG Technologies]
<GrooveMonitor><"C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"> [(Verified)Microsoft Corporation]
<WinFastDTV><C:\Program Files\WinFast\WFDTV\DTVSchdl.exe> [Leadtek Research Inc.]
<WinFast Schedule><C:\Program Files\WinFast\WFDTV\WFWIZ.exe> [Leadtek Research Inc.]
<M1000Mnt><M1000Rmv.exe /StartStillMnt> [N/A]
<NeroFilterCheck><C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe> [(Verified)Nero AG]
<QuickTime Task><"C:\Program Files\QuickTime\qttask.exe" -atboottime> [Apple Computer, Inc.]
<SunJavaUpdateSched><"C:\Program Files\Java\jre6\bin\jusched.exe"> [(Verified)"Sun Microsystems, Inc."]
<RTHDCPL><RTHDCPL.EXE> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<Alcmtr><ALCMTR.EXE> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<NvCplDaemon><RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<nwiz><nwiz.exe /install> [(Verified)NVIDIA Corporation]
<NvMediaCenter><RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
<Malwarebytes' Anti-Malware><C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent> [(Verified)Malwarebytes]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnceEx]
<Flag><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Windows Component Publisher]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll> [(Verified)Microsoft Windows Component Publisher]
<{B5A7F190-DDA6-4420-B3BA-52453494E6CD}><C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL> [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
<PostBootReminder><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows Component Publisher]
<CDBurn><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows Component Publisher]
<WebCheck><C:\WINDOWS\system32\webcheck.dll> [(Verified)Microsoft Windows Component Publisher]
<SysTray><C:\WINDOWS\system32\stobject.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
<WinlogonNotify: avgrsstarter><avgrsstx.dll> [(Verified)AVG Technologies]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
<WinlogonNotify: crypt32chain><crypt32.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
<WinlogonNotify: cryptnet><cryptnet.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
<WinlogonNotify: cscdll><cscdll.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
<WinlogonNotify: ScCertProp><wlnotify.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
<WinlogonNotify: Schedule><wlnotify.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
<WinlogonNotify: sclgntfy><sclgntfy.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
<WinlogonNotify: SensLogn><WlNotify.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
<WinlogonNotify: termsrv><wlnotify.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
<WinlogonNotify: wlballoon><wlnotify.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
<{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher]
<{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
<IE7 Uninstall Stub><C:\WINDOWS\system32\ieudinit.exe> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
<Microsoft Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
<Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
<Browser Customizations><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
<Vlastní nastavení prohlížeče><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
<Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
<Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
<NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
<Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
<Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
<Adresář 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
<Aktualizace plochy systému Windows><regsvr32.exe /s /n /i:U shell32.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
<Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -BaseSettings> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
<N/A><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install> [(Verified)Microsoft Corporation]
[HKEY_CURRENT_USER\Control Panel\Desktop]
<SCRNSAVE.EXE><C:\WINDOWS\system32\logon.scr> [(Verified)Microsoft Windows Publisher]

==================================
Startup Folders
[Adobe Gamma Loader]
<C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Gamma Loader.lnk --> C:\PROGRA~1\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [Adobe Systems, Inc.]><N>

==================================
Services
[AVG8 E-mail Scanner / avg8emc][Running/Auto Start]
<C:\PROGRA~1\AVG\AVG8\avgemc.exe><AVG Technologies CZ, s.r.o.>
[AVG8 WatchDog / avg8wd][Running/Auto Start]
<C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe><AVG Technologies CZ, s.r.o.>
[Windows Presentation Foundation Font Cache 3.0.0.0 / FontCache3.0.0.0][Stopped/Manual Start]
<C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe><Microsoft Corporation>
[Google Updater Service / gusvc][Stopped/Manual Start]
<"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"><Google>
[Přístup k zařízením standardu HID / HidServ][Stopped/Disabled]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[Windows CardSpace / idsvc][Stopped/Manual Start]
<"C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe"><Microsoft Corporation>
[Java Quick Starter / JavaQuickStarterService][Running/Auto Start]
<"C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf"><Sun Microsystems, Inc.>
[Net.Tcp Port Sharing Service / NetTcpPortSharing][Stopped/Disabled]
<"C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe"><Microsoft Corporation>
[NMIndexingService / NMIndexingService][Running/Manual Start]
<"C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe"><Nero AG>
[NVIDIA Display Driver Service / NVSvc][Running/Auto Start]
<C:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
[PnkBstrA / PnkBstrA][Running/Auto Start]
<C:\WINDOWS\system32\PnkBstrA.exe><N/A>
[Ulead Burning Helper / UleadBurningHelper][Running/Auto Start]
<C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe><Ulead Systems, Inc.>

==================================
Drivers
[Ovladač procesoru AMD / AmdK8][Running/System Start]
<system32\DRIVERS\AmdK8.sys><Advanced Micro Devices>
[AMD Low Level Device Driver / AmdLLD][Stopped/Manual Start]
<system32\DRIVERS\AmdLLD.sys><N/A>
[AVG AVI Loader Driver x86 / AvgLdx86][Running/System Start]
<\SystemRoot\System32\Drivers\avgldx86.sys><AVG Technologies CZ, s.r.o.>
[AVG On-access Scanner Minifilter Driver x86 / AvgMfx86][Running/System Start]
<\SystemRoot\System32\Drivers\avgmfx86.sys><AVG Technologies CZ, s.r.o.>
[avgrkx86.sys / AvgRkx86][Running/Boot Start]
<\SystemRoot\System32\Drivers\avgrkx86.sys><AVG Technologies CZ, s.r.o.>
[AVG8 Network Redirector / AvgTdiX][Running/System Start]
<\SystemRoot\System32\Drivers\avgtdix.sys><AVG Technologies CZ, s.r.o.>
[Microsoft UAA Bus Driver for High Definition Audio / HDAudBus][Running/Manual Start]
<system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start]
<system32\drivers\RtkHDAud.sys><Realtek Semiconductor Corp.>
[M5603C USB2.0 Camera Driver / M1000Srv][Running/Manual Start]
<System32\Drivers\M1000KNT.sys><N/A>
[ATK0110 ACPI UTILITY / MTsensor][Running/Manual Start]
<system32\DRIVERS\ASACPI.sys><>
[nv / nv][Running/Manual Start]
<system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[PxHelp20 / PxHelp20][Running/Boot Start]
<\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
[Realtek 10/100/1000 PCI NIC Family NDIS XP Driver / RTL8023xp][Running/Manual Start]
<system32\DRIVERS\Rtnicxp.sys><Realtek Semiconductor Corporation>
[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Stopped/Manual Start]
<system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[Secdrv / Secdrv][Stopped/Manual Start]
<system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[sptd / sptd][Running/Boot Start]
<\SystemRoot\System32\Drivers\sptd.sys><N/A>
[videX32 / videX32][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\videX32.sys><VIA Technologies, Inc.>
[WinFast TV PCI Audio Capture Driver / wfcxacap][Running/System Start]
<system32\DRIVERS\wfcxacap.sys><Leadtek Research Inc.>
[WinFast TV Analog Tuner Driver / wfcxatun][Running/Auto Start]
<system32\drivers\wfcxatun.sys><Leadtek Research Inc.>
[WinFast DTV BDA Tuner/Demod Driver / wfcxdtun][Running/Manual Start]
<system32\drivers\wfcxdtun.sys><Leadtek Research Inc.>
[WinFast DTV BDA Transport Stream Capture Driver / wfcxtcap][Running/Manual Start]
<system32\drivers\wfcxtcap.sys><Leadtek Research Inc.>
[WinFast TV Video Capture Driver / WFCXVCAP][Running/Auto Start]
<system32\drivers\wfcxvcap.sys><Leadtek Research Inc.>
[WinFast TV Crossbar Driver / wfcxxbar][Running/Manual Start]
<system32\drivers\wfcxxbar.sys><Leadtek Research Inc.>
[WFIOCTL / WFIOCTL][Running/Manual Start]
<\??\C:\Program Files\WinFast\WFDTV\WFIOCTL.SYS><Leadtek Research Inc.>
[VIA SATA IDE Hot-plug Driver / xfilt][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\xfilt.sys><VIA Technologies,Inc>

==================================
Browser Add-ons
[Skype add-on (mastermind)]
{22BF413B-C6D2-4d91-82A9-A0F997BA588C} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, (Signed) Skype Technologies S.A.>
[AVG Safe Search]
{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} <C:\Program Files\AVG\AVG8\avgssie.dll, (Signed) AVG Technologies CZ, s.r.o.>
[Groove GFS Browser Helper]
{72853161-30C5-4D22-B7F9-0BBC1D38A37E} <C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL, (Signed) Microsoft Corporation>
[Java(tm) Plug-In SSV Helper]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre6\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[AVG Security Toolbar]
{A057A204-BACC-4D26-9990-79A187E2698E} <C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL, (Signed) [[[COMPANYNAME]]]---------------------------->
[Google Toolbar Helper]
{AA58ED58-01DD-4d91-8333-CF10577473F7} <C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll, (Signed) N/A>
[Google Toolbar Notifier BHO]
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll, (Signed) Google Inc.>
[Google Dictionary Compression sdch]
{C84D72FE-E17D-4195-BB24-76C02E2E7C4E} <C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll, (Signed) Google Inc.>
[Java(tm) Plug-In 2 SSV Helper]
{DBC80044-A445-435b-BC74-9C25C1C588A9} <C:\Program Files\Java\jre6\bin\jp2ssv.dll, Sun Microsystems, Inc.>
[JQSIEStartDetectorImpl Class]
{E7E6F031-17CE-4C07-BC86-EABFE594F69C} <C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll, Sun Microsystems, Inc.>
[Send to OneNote from Internet Explorer button]
{2670000A-7350-4f3c-8081-5663EE0C6C49} <C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll, (Signed) Microsoft Corporation>
[Skype add-on (button)]
{77BF5300-1474-4EC7-9980-D32B190E9B07} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, (Signed) Skype Technologies S.A.>
[&Research]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL, (Signed) Microsoft Corporation>
[]
{e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, (Signed) N/A>
[ICQ6]
{E59EB121-F339-4851-A3BA-FE49C35617C2} <C:\Program Files\ICQ6.5\ICQ.exe, (Signed) ICQ, Inc.>
[Messenger]
{FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, (Signed) Microsoft Corporation>
[AVG Security Toolbar]
{A057A204-BACC-4D26-9990-79A187E2698E} <C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL, (Signed) [[[COMPANYNAME]]]---------------------------->
[&Google Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} <C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll, (Signed) N/A>
[DAEMON Tools Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} <C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll, (Signed) >
[Java Plug-in 1.6.0_11]
{8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, >
[Java Plug-in 1.6.0_11]
{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, >
[Java Plug-in 1.6.0_11]
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\npjpi160_11.dll, (Signed) Sun Microsystems, Inc.>
[Google Script Object]
{00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} <C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll, (Signed) N/A>
[QuickTime Object]
{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} <C:\Program Files\QuickTime\QTPlugin.ocx, Apple Computer, Inc.>
[Skype add-on (mastermind)]
{22BF413B-C6D2-4D91-82A9-A0F997BA588C} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, (Signed) Skype Technologies S.A.>
[Windows Media Player]
{22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, (Signed) Microsoft Corporation>
[&Google Toolbar]
{2318C2B1-4965-11D4-9B18-009027A5CD4F} <C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll, (Signed) N/A>
[]
{2670000A-7350-4F3C-8081-5663EE0C6C49} <, >
[DHTML Edit Control Safe for Scripting for IE5]
{2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, (Signed) Microsoft Corporation>
[DAEMON Tools Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} <C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll, (Signed) >
[AVG Safe Search]
{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} <C:\Program Files\AVG\AVG8\avgssie.dll, (Signed) AVG Technologies CZ, s.r.o.>
[XML Document]
{48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[Shell Name Space]
{55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[Groove GFS Browser Helper]
{72853161-30C5-4D22-B7F9-0BBC1D38A37E} <C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL, (Signed) Microsoft Corporation>
[Java(tm) Plug-In SSV Helper]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre6\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[Skype add-on (button)]
{77BF5300-1474-4EC7-9980-D32B190E9B07} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, (Signed) Skype Technologies S.A.>
[Microsoft Web Browser]
{8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[XML DOM Document 6.0]
{88D96A05-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
[]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <, >
[AVG Security Toolbar]
{A057A204-BACC-4D26-9990-79A187E2698E} <C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL, (Signed) [[[COMPANYNAME]]]---------------------------->
[Google Toolbar Helper]
{AA58ED58-01DD-4D91-8333-CF10577473F7} <C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll, (Signed) N/A>
[Google Toolbar Notifier BHO]
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll, (Signed) Google Inc.>
[Google Dictionary Compression sdch]
{C84D72FE-E17D-4195-BB24-76C02E2E7C4E} <C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll, (Signed) Google Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10a.ocx, (Signed) Adobe Systems, Inc.>
[Java(tm) Plug-In 2 SSV Helper]
{DBC80044-A445-435B-BC74-9C25C1C588A9} <C:\Program Files\Java\jre6\bin\jp2ssv.dll, Sun Microsystems, Inc.>
[QuickTimeCheck Class]
{DE4AF3B0-F4D4-11D3-B41A-0050DA2E6C21} <C:\WINDOWS\system32\QUICKT~1.OCX, Apple Computer, Inc.>
[]
{E2E2DD38-D088-4134-82B7-F2BA38496583} <, >
[]
{E59EB121-F339-4851-A3BA-FE49C35617C2} <, >
[JQSIEStartDetectorImpl Class]
{E7E6F031-17CE-4C07-BC86-EABFE594F69C} <C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll, Sun Microsystems, Inc.>
[XML HTTP Request]
{ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[XML HTTP]
{F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[]
{FB5F1910-F110-11D2-BB9E-00C04F795683} <, >
[E&xport to Microsoft Excel]
<res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000, N/A>

==================================
Running Processes
[PID: 576 / SYSTEM][\SystemRoot\System32\smss.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 632 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 656 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[PID: 700 / SYSTEM][C:\WINDOWS\system32\services.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 712 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 864 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 920 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 992 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1040 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1160 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1452 / Adam][C:\WINDOWS\Explorer.EXE] [(Verified) Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234)]
[C:\WINDOWS\system32\BROWSEUI.dll] [Společnost Microsoft, 6.00.2900.3462 (xpsp_sp2_gdr.081015-1244)]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.DLL] [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\WinRAR\rarext.dll] [N/A, ]
[C:\Program Files\WinRAR\rarlng.dll] [N/A, ]
[C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll] [Malwarebytes Corporation, 1, 1, 0, 0]
[C:\Program Files\AVG\AVG8\avgse.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[PID: 1548 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe] [(Verified) Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
[C:\WINDOWS\System32\spool\PRTPROCS\W32X86\filterpipelineprintproc.dll] [Microsoft Corporation, 6.0.6000.16438 (winmain(wmbla).070123-1305)]
[PID: 1812 / Adam][C:\PROGRA~1\AVG\AVG8\avgtray.exe] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80U.DLL] [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.224]
[C:\Program Files\AVG\AVG8\avgcfgx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\Program Files\AVG\AVG8\avglngx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.227]
[C:\Program Files\AVG\AVG8\avguires.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[PID: 1840 / Adam][C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe] [Microsoft Corporation, 12.0.4518.1014]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.DLL] [Microsoft Corporation, 8.00.50727.762]
[PID: 1852 / Adam][C:\Program Files\WinFast\WFDTV\DTVSchdl.exe] [Leadtek Research Inc., 1, 1, 0, 3]
[PID: 1868 / Adam][C:\Program Files\WinFast\WFDTV\WFWIZ.exe] [Leadtek Research Inc., 5.13.01.2006-3.02]
[C:\WINDOWS\system32\msdmo.dll] [, ]
[PID: 1892 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.224]
[C:\PROGRA~1\AVG\AVG8\avgwd.dll] [AVG Technologies CZ, s.r.o., 8.0.0.228]
[C:\PROGRA~1\AVG\AVG8\avgcfgx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\PROGRA~1\AVG\AVG8\avgsched.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\PROGRA~1\AVG\AVG8\avgwdwsc.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\PROGRA~1\AVG\AVG8\avglngx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.227]
[PID: 1916 / Adam][C:\Program Files\QuickTime\qttask.exe] [Apple Computer, Inc., 6.4]
[C:\WINDOWS\system32\QuickTime.qts] [Apple Computer, Inc., 6.4]
[C:\WINDOWS\system32\QuickTime\QuickTime3GPP.qtx] [Apple Computer, Inc., 6.4]
[C:\WINDOWS\system32\QuickTime\QuickTimeAuthoring.qtx] [Apple Computer, Inc., 6.4]
[C:\WINDOWS\system32\QuickTime\QuickTimeCapture.qtx] [Apple Computer, Inc., 6.4]
[C:\WINDOWS\system32\QuickTime\QuickTimeEffects.qtx] [Apple Computer, Inc., 6.4]
[C:\WINDOWS\system32\QuickTime\QuickTimeEssentials.qtx] [Apple Computer, Inc., 6.4]
[C:\WINDOWS\system32\QuickTime\QuickTimeImage.qtx] [Apple Computer, Inc., 6.4]
[C:\WINDOWS\system32\QuickTime\QuickTimeInternetExtras.qtx] [Apple Computer, Inc., 6.4]
[C:\WINDOWS\system32\QuickTime\QuickTimeMPEG.qtx] [Apple Computer, Inc, 6.4]
[C:\WINDOWS\system32\QuickTime\QuickTimeMPEG4.qtx] [Apple Computer, Inc., 6.4]
[C:\WINDOWS\system32\QuickTime\QuickTimeMPEG4Authoring.qtx] [Apple Computer, Inc., 6.4]
[C:\WINDOWS\system32\QuickTime\QuickTimeMusic.qtx] [Apple Computer, Inc., 6.4]
[C:\WINDOWS\system32\QuickTime\QuickTimeStreaming.qtx] [Apple Computer, Inc., 6.4]
[C:\WINDOWS\system32\QuickTime\QuickTimeStreamingAuthoring.qtx] [Apple Computer, Inc., 6.4]
[C:\WINDOWS\system32\QuickTime\QuickTimeStreamingExtras.qtx] [Apple Computer, Inc., 6.4]
[PID: 1924 / Adam][C:\Program Files\Java\jre6\bin\jusched.exe] [Sun Microsystems, Inc., 6.0.110.3]
[PID: 1944 / Adam][C:\WINDOWS\RTHDCPL.EXE] [Realtek Semiconductor Corp., 2.1.1.4]
[PID: 1964 / Adam][C:\WINDOWS\WebCam\M1000\M1000Mnt.exe] [ALi, 1, 0, 0, 1]
[PID: 2028 / Adam][C:\WINDOWS\system32\RUNDLL32.EXE] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\NvMcTray.dll] [NVIDIA Corporation, 6.14.11.8122]
[C:\WINDOWS\system32\nvapi.dll] [NVIDIA Corporation, 6.14.11.8122]
[PID: 184 / Adam][C:\WINDOWS\system32\ctfmon.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 200 / SYSTEM][C:\Program Files\Java\jre6\bin\jqs.exe] [Sun Microsystems, Inc., 6.0.110.3]
[C:\Program Files\Java\jre6\bin\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[PID: 220 / Adam][C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe] [Google Inc., 4, 1, 509, 1944]
[C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\gtn.dll] [Google Inc., 5, 0, 926, 3450]
[C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll] [Google Inc., 5, 0, 926, 3450]
[PID: 232 / Adam][C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe] [Nero AG, 2,0,16,0]
[C:\Program Files\Common Files\Ahead\Lib\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Common Files\Ahead\Lib\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Common Files\Ahead\Lib\AdvrCntr2.dll] [Nero AG, 10,1,1, 10900]
[C:\Program Files\Common Files\Ahead\Lib\NMIndexingServicePS.dll] [Nero AG, 2,0,16,0]
[C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvrPS.dll] [Nero AG, 2,0,16,0]
[C:\Program Files\Common Files\Ahead\Lib\NMDataServices.dll] [Nero AG, 2,0,16,0]
[PID: 244 / Adam][C:\Program Files\DAEMON Tools Lite\daemon.exe] [DT Soft Ltd, 4.30.1.0]
[C:\Program Files\DAEMON Tools Lite\DaemonPlugin.dll] [DT Soft Ltd, 4.12.0.0]
[C:\Program Files\DAEMON Tools Lite\daemon.dll] [DT Soft Ltd., 4.30.0.0]
[C:\Program Files\DAEMON Tools Lite\imgengine.dll] [DT Soft Ltd., 1.17.0.0]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.DLL] [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\DAEMON Tools Lite\Lang\CSY.dll] [N/A, ]
[C:\Program Files\DAEMON Tools Lite\Lang\ENU.dll] [N/A, ]
[C:\Program Files\DAEMON Tools Lite\Plugins\ISOmaker.dll] [DT Soft Ltd, 1.0.0.0]
[PID: 280 / SYSTEM][C:\WINDOWS\system32\nvsvc32.exe] [NVIDIA Corporation, 6.14.11.8122]
[C:\WINDOWS\system32\nvapi.dll] [NVIDIA Corporation, 6.14.11.8122]
[PID: 448 / SYSTEM][C:\WINDOWS\system32\PnkBstrA.exe] [N/A, ]
[PID: 596 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 976 / SYSTEM][C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe] [Ulead Systems, Inc., 1, 0, 0, 4]
[PID: 1140 / LOCAL SERVICE][C:\WINDOWS\system32\wdfmgr.exe] [Microsoft Corporation, 5.2.3790.1230 built by: dnsrv(bld4act)]
[PID: 2160 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgemc.exe] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\PROGRA~1\AVG\AVG8\libsasl.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.224]
[C:\Program Files\AVG\AVG8\avgapix.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\Program Files\AVG\AVG8\avgcfgx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\Program Files\AVG\AVG8\avglngx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.227]
[C:\Program Files\AVG\AVG8\avgscanx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\Program Files\AVG\AVG8\avgsrmx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\Program Files\AVG\AVG8\avgvvx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\Program Files\AVG\AVG8\avgmvflx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\Program Files\AVG\AVG8\avgcclix.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\PROGRA~1\AVG\AVG8\saslcrammd5.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\PROGRA~1\AVG\AVG8\sasldigestmd5.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\PROGRA~1\AVG\AVG8\sasllogin.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\PROGRA~1\AVG\AVG8\saslplain.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[PID: 2188 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgam.exe] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.224]
[C:\Program Files\AVG\AVG8\avgcfgx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\Program Files\AVG\AVG8\avglngx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.227]
[C:\Program Files\AVG\AVG8\avgameh.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80U.DLL] [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\AVG\AVG8\avgamnot.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[PID: 2208 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgrsx.exe] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.224]
[C:\PROGRA~1\AVG\AVG8\avgcorex.dll] [AVG Technologies CZ, s.r.o., 8.0.0.224]
[C:\PROGRA~1\AVG\AVG8\avgcrlpx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.228]
[PID: 2224 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgnsx.exe] [AVG Technologies CZ, s.r.o., 8.0.0.232]
[C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.224]
[C:\PROGRA~1\AVG\AVG8\avgcfgx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\PROGRA~1\AVG\AVG8\avgxpl.dll] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\PROGRA~1\AVG\AVG8\avgcorex.dll] [AVG Technologies CZ, s.r.o., 8.0.0.224]
[C:\PROGRA~1\AVG\AVG8\avgcrlpx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.228]
[C:\PROGRA~1\AVG\AVG8\imsdk32.dll] [Winco Sistemas, 1.2.0.3]
[PID: 2540 / SYSTEM][C:\Program Files\AVG\AVG8\avgcsrvx.exe] [AVG Technologies CZ, s.r.o., 8.0.0.223]
[C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.224]
[C:\Program Files\AVG\AVG8\avgcorex.dll] [AVG Technologies CZ, s.r.o., 8.0.0.224]
[C:\Program Files\AVG\AVG8\avgcrlpx.dll] [AVG Technologies CZ, s.r.o., 8.0.0.228]
[PID: 2896 / SYSTEM][C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe] [Nero AG, 2,0,16,0]
[C:\Program Files\Common Files\Ahead\Lib\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Common Files\Ahead\Lib\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Common Files\Ahead\Lib\NMIndexingServicePS.dll] [Nero AG, 2,0,16,0]
[C:\Program Files\Common Files\Ahead\Lib\NMLogCxx.dll] [Nero AG, 2,0,16,0]
[C:\Program Files\Common Files\Ahead\Lib\log4cxx.dll] [Nero AG, 1, 0, 0, 0]
[C:\Program Files\Common Files\Ahead\Lib\NMDataServices.dll] [Nero AG, 2,0,16,0]
[C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvrPS.dll] [Nero AG, 2,0,16,0]
[PID: 3024 / Adam][C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe] [Nero AG, 2,0,16,0]
[C:\Program Files\Common Files\Ahead\Lib\NMSQLDB.dll] [Nero AG, 2,0,16,0]
[C:\Program Files\Common Files\Ahead\Lib\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Common Files\Ahead\Lib\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Common Files\Ahead\Lib\NMLogCxx.dll] [Nero AG, 2,0,16,0]
[C:\Program Files\Common Files\Ahead\Lib\log4cxx.dll] [Nero AG, 1, 0, 0, 0]
[C:\Program Files\Common Files\Ahead\Lib\NMIndexingServicePS.dll] [Nero AG, 2,0,16,0]
[C:\Program Files\Common Files\Ahead\Lib\NMCoFoundation.dll] [Nero AG, 2,0,16,0]
[C:\Program Files\Common Files\Ahead\Lib\NMPluginBase.dll] [Nero AG, 2,0,16,0]
[C:\Program Files\Common Files\Ahead\Lib\NMFullTextExtraction.dll] [Nero AG, 2,0,16,0]
[C:\Program Files\Common Files\Ahead\Lib\NMSearchPluginSimilarImages.dll] [Nero AG, 2,0,16,0]
[C:\Program Files\Common Files\Ahead\Lib\NeroIPP.dll] [Nero AG, 4,11,3,1]
[C:\Program Files\Common Files\Ahead\Lib\NMDataServices.dll] [Nero AG, 2,0,16,0]
[C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvrPS.dll] [Nero AG, 2,0,16,0]
[PID: 3044 / SYSTEM][C:\WINDOWS\system32\wbem\wmiapsrv.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 3184 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 3420 / Adam][C:\Program Files\ICQ6.5\ICQ.exe] [ICQ, Inc., 6.5.0.104]
[C:\Program Files\ICQ6.5\MKernel.dll] [ICQ, Inc., 6.5.0.104]
[C:\Program Files\ICQ6.5\MUtils.dll] [ICQ, Inc., 6.5.0.104]
[C:\Program Files\ICQ6.5\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\ICQ6.5\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\ICQ6.5\coolcore49.dll] [AOL LLC, 4.9.0.5711]
[C:\Program Files\ICQ6.5\xprt6.dll] [AOL LLC, 6.6.6.5927]
[C:\Program Files\ICQ6.5\MDb.dll] [ICQ, Inc., 6.5.0.104]
[C:\Program Files\ICQ6.5\MCoreLib.dll] [ICQ, Inc., 6.5.0.104]
[C:\Program Files\ICQ6.5\MUIUtils.dll] [ICQ, Inc., 6.5.0.104]
[C:\Program Files\ICQ6.5\MUICoreLib.dll] [ICQ, Inc., 6.5.0.104]
[C:\Program Files\ICQ6.5\AOLSvcMgr.dll] [AOL LLC, 15.5.1.2]
[c:\program files\icq6.5\services\boxelyrenderer\ver3_6_8_1\boxelyRenderer.dll] [AOL LLC, 3.6.8.1]
[C:\Program Files\ICQ6.5\ICQDevilImg.ocx] [ICQ Ltd., 1, 0, 0, 1]
[C:\Program Files\ICQ6.5\MBContainer.dll] [ICQ, Inc., 6.5.0.104]
[C:\Program Files\ICQ6.5\MCore.dll] [ICQ, Inc., 6.5.0.104]
[C:\Program Files\ICQ6.5\MReport.dll] [ICQ, Inc., 6.5.0.104]
[C:\Program Files\ICQ6.5\MISB.dll] [ICQ, Inc., 6.0.0.5011]
[C:\Program Files\ICQ6.5\MUICore.dll] [ICQ, Inc., 6.5.0.104]
[C:\WINDOWS\system32\Macromed\Flash\Flash10a.ocx] [Adobe Systems, Inc., 10,0,12,36]
[C:\Program Files\ICQ6.5\FlashPlayerControl.dll] [Softanics, 2, 1, 7, 0]
[C:\WINDOWS\system32\l3codecx.ax] [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 5, 0, 50]
[C:\WINDOWS\system32\msdmo.dll] [, ]
[C:\WINDOWS\system32\acelpdec.ax] [Sipro Lab Telecom Inc., 1.40]
[C:\Program Files\WinFast\Common\GdiVbi.ax] [GDI, 5, 5, 0, 19]
[C:\WINDOWS\system32\ir41_32.ax] [Intel Corporation, 4.51.16.03]
[C:\WINDOWS\system32\ir50_32.dll] [Intel Corporation, R.5.10.15.2.55]
[C:\Program Files\WinFast\Common\WFADC.ax] [Leadtek Research Inc., 3.5.0301]
[C:\WINDOWS\system32\tssoft32.acm] [DSP GROUP, INC., 1.01]
[C:\WINDOWS\system32\tsd32.dll] [, ]
[C:\WINDOWS\system32\sl_anet.acm] [Sipro Lab Telecom Inc., 3.02]
[C:\WINDOWS\system32\iac25_32.ax] [Intel Corporation, 2.05.53]
[C:\WINDOWS\system32\l3codeca.acm] [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0305]
[C:\WINDOWS\system32\PsisRndr.ax] [, ]
[C:\WINDOWS\system32\Mpeg2Data.ax] [, ]
[C:\WINDOWS\system32\encdec.dll] [, ]
[C:\Program Files\Common Files\Ahead\DSFilter\NeVideo.ax] [Nero AG, 4, 11, 3, 1]
[C:\Program Files\Common Files\Ahead\Lib\AdvrCntr2.dll] [Nero AG, 10,1,1, 10900]
[C:\Program Files\Common Files\Ahead\DSFilter\NeBDGraphic.ax] [Nero AG, 4,11,3,1]
[C:\WINDOWS\system32\wstdecod.dll] [Společnost Microsoft, 5.3.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\Common Files\Ahead\DSFilter\NeAudio2.ax] [Nero AG, 4,11,3,1]
[C:\Program Files\Common Files\Ahead\DSFilter\NeFLVSplitter.ax] [Nero AG, 4,11,3,1]
[C:\WINDOWS\system32\mpg2splt.ax] [, ]
[C:\Program Files\Common Files\Ahead\DSFilter\NeBDThumbnail.ax] [Nero AG, 4,11,3,1]
[C:\Program Files\Common Files\Ahead\DSFilter\NeMP4Splitter.ax] [Nero AG, 4,11,3,1]
[C:\Program Files\Common Files\Ahead\DSFilter\NeSplitter.ax] [Nero AG, 4,11,3,1]
[C:\Program Files\ICQ6.5\MUIMessage.dll] [ICQ, Inc., 6.5.0.104]
[C:\Program Files\ICQ6.5\SSCE5532.dll] [Wintertree Software Inc., 5.16.6.0]
[C:\Program Files\Common Files\Ahead\DSFilter\NeQTDec.ax] [Nero AG, 4,11,3,1]
[C:\Program Files\Common Files\Ahead\DSFilter\NeOggSplitter.ax] [Nero AG, 4,11,3,1]
[C:\Program Files\Common Files\Ahead\DSFilter\NeSubpicture.ax] [Nero AG, 4,11,3,1]
[C:\Program Files\WinFast\Common\WFDADC.ax] [CyberLink Corp., 6.00.2008]
[C:\Program Files\Common Files\Ahead\DSFilter\NeResize.ax] [Nero AG, 4,11,3,]
[C:\Program Files\Common Files\Ahead\DSFilter\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Common Files\Ahead\DSFilter\NeVideoHD.ax] [Nero AG, 4,11,3,1]
[PID: 2732 / Adam][C:\Program Files\Opera\opera.exe] [Opera Software, 10476]
[C:\Program Files\Opera\Opera.dll] [Opera Software, 10476]
[C:\Program Files\Java\jre6\bin\client\jvm.dll] [Sun Microsystems, Inc., 11.0.0.16]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Java\jre6\bin\hpi.dll] [Sun Microsystems, Inc., 6.0.110.3]
[C:\Program Files\Java\jre6\bin\verify.dll] [Sun Microsystems, Inc., 6.0.110.3]
[C:\Program Files\Java\jre6\bin\java.dll] [Sun Microsystems, Inc., 6.0.110.3]
[C:\Program Files\Java\jre6\bin\zip.dll] [Sun Microsystems, Inc., 6.0.110.3]
[C:\Program Files\Java\jre6\bin\awt.dll] [Sun Microsystems, Inc., 6.0.110.3]
[C:\Program Files\Java\jre6\bin\fontmanager.dll] [Sun Microsystems, Inc., 6.0.110.3]
[C:\WINDOWS\system32\msdmo.dll] [, ]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.DLL] [Microsoft Corporation, 8.00.50727.762]
[C:\WINDOWS\system32\browseui.dll] [Společnost Microsoft, 6.00.2900.3462 (xpsp_sp2_gdr.081015-1244)]
[C:\Program Files\Opera\Program\Plugins\NPSWF32.dll] [, ]
[PID: 1652 / Adam][C:\Program Files\Winamp\winamp.exe] [Nullsoft, 5,5,4,2189]
[C:\Program Files\Winamp\NSCRT.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Winamp\System\aacPlusDecoder.w5s] [N/A, ]
[C:\Program Files\Winamp\System\bmp.w5s] [N/A, ]
[C:\Program Files\Winamp\System\dlmgr.w5s] [N/A, ]
[C:\Program Files\Winamp\System\filereader.w5s] [N/A, ]
[C:\Program Files\Winamp\System\gif.w5s] [N/A, ]
[C:\Program Files\Winamp\System\gracenote.w5s] [N/A, ]
[C:\Program Files\Winamp\System\jnetlib.w5s] [N/A, ]
[C:\Program Files\Winamp\System\jpeg.w5s] [N/A, ]
[C:\Program Files\Winamp\System\playlist.w5s] [N/A, ]
[C:\Program Files\Winamp\System\png.w5s] [N/A, ]
[C:\Program Files\Winamp\System\tagz.w5s] [N/A, ]
[C:\Program Files\Winamp\System\xml.w5s] [N/A, ]
[C:\Program Files\Winamp\Plugins\in_cdda.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\in_dshow.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\in_flac.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\in_flv.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\in_linein.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\in_midi.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\in_mod.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\in_mp3.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\in_mp4.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\in_nsv.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\in_swf.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\in_vorbis.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\in_wave.dll] [N/A, ]
[C:\Program Files\Winamp\libsndfile.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\in_wm.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\out_disk.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\out_ds.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\out_wave.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\gen_dropbox.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\gen_ff.dll] [N/A, ]
[C:\Program Files\Winamp\tataki.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\freeform\wacs\freetype\freetype.wac] [N/A, ]
[C:\Program Files\Winamp\zlib.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\gen_hotkeys.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\gen_jumpex.dll] [N/A, ]
[C:\Program Files\Winamp\Plugins\gen_tray.dll] [N/A, ]
[PID: 3956 / Adam][D:\Programy\totalcd\TOTALCMD.EXE] [C. Ghisler & Co., 7.04a]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.DLL] [Microsoft Corporation, 8.00.50727.762]
[C:\WINDOWS\system32\browseui.dll] [Společnost Microsoft, 6.00.2900.3462 (xpsp_sp2_gdr.081015-1244)]
[D:\Programy\totalcd\wcmzip32.dll] [N/A, ]
[PID: 1460 / Adam][D:\Games\sreng\SREngLdr.EXE] [Smallfrogs Studio, 2.7.0.1210]
[PID: 3952 / Adam][D:\Games\sreng\SRE25b02e6e.EXE] [Smallfrogs Studio, 2.7.0.1210]
[D:\Games\sreng\Upload\3rdUpd.DLL] [Smallfrogs Studio, 2, 1, 0, 15]

==================================
File Associations
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock Provider
N/A

==================================
Autorun.Inf
N/A

==================================
HOSTS File
127.0.0.1 localhost

==================================
Process Privileges Scan
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1852, C:\PROGRAM FILES\WINFAST\WFDTV\DTVSCHDL.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1868, C:\PROGRAM FILES\WINFAST\WFDTV\WFWIZ.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1916, C:\PROGRAM FILES\QUICKTIME\QTTASK.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2732, C:\PROGRAM FILES\OPERA\OPERA.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1460, D:\GAMES\SRENG\SRENGLDR.EXE]

==================================
Scheduled Tasks
N/A

==================================
API HOOK
N/A

==================================
Hidden Process
N/A

==================================






Ještě sem registry proje Advanced Uninstallerem, nasel tam jeste naky chyby.

Re: Prosím o kontrolu logu, PC jako šnek

Napsal: 29 led 2009 15:41
od jaro3
Logy O.K.
Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:

Kód: Vybrat vše

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] &quot;C:\Program Files\QuickTime\qttask.exe&quot; -atboottime
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O11 - Options group: [INTERNATIONAL] International*


Zkus defragmentaci HDD a kontrolu HDD utilitou od výrobce,RAM Memtestem, napiš výsledek , popř. zkusíme jiné nástroje.

Re: Prosím o kontrolu logu, PC jako šnek

Napsal: 30 led 2009 09:19
od leklaryba
No tak je to furt pomalý když se to spouští, ale aspoň za provozu je to lepší, prostě to mám asi zaflákaný, musim reinstallnout no, díky moc za pomoc :D, dá se na vás spolehnout.

Re: Prosím o kontrolu logu, PC jako šnek

Napsal: 30 led 2009 09:50
od jaro3
Pokud si otestoval HDD na chyby a je O.K., tak reinstalace OS bez formátu nemusí pomoci.Ještě zkus toto.
Vypni rez. ochranu u AVG.
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah

Re: Prosím o kontrolu logu, PC jako šnek

Napsal: 30 led 2009 15:09
od leklaryba
Tady je ten log: AVG sem vypnul, stejne mi to neco psalo ze je to furt pusteny, pak se udal ten log, a nez se spustilo scanovani tak PC strasne pronikave piskal, nwm jesi je to normalni. tady ten log:


ComboFix 09-01-21.04 - Adam 2009-01-30 15:03:55.1 - NTFSx86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.1.1029.18.2047.1466 [GMT 1:00]
Spuštěný z: d:\poinstalace windows\ComboFix.exe
AV: AVG Anti-Virus *On-access scanning enabled* (Updated)

VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
- REŽIM S OMEZENOU FUNKČNOSTÍ -
.

((((((((((((((((((((((((( Soubory vytvořené od 2008-12-28 do 2009-01-30 )))))))))))))))))))))))))))))))
.

2009-01-29 15:03 . 2009-01-29 15:07 <DIR> d-------- c:\program files\RegCleaner
2009-01-29 14:56 . 2009-01-29 14:56 <DIR> d-------- c:\program files\CCleaner
2009-01-29 14:08 . 2009-01-29 14:08 <DIR> d-------- c:\program files\Malwarebytes' Anti-Malware
2009-01-29 14:08 . 2009-01-29 14:08 <DIR> d-------- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2009-01-29 14:08 . 2009-01-29 14:08 <DIR> d-------- c:\documents and settings\Adam\Data aplikací\Malwarebytes
2009-01-29 14:08 . 2009-01-14 16:11 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2009-01-29 14:08 . 2009-01-14 16:11 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2009-01-28 17:44 . 2009-01-28 17:44 <DIR> d--h----- c:\windows\PIF
2009-01-27 17:25 . 2009-01-27 17:26 <DIR> d-------- c:\program files\XRECODE
2009-01-25 12:49 . 2009-01-25 12:52 <DIR> d-------- c:\program files\Rozvrh hodin
2009-01-24 11:40 . 2009-01-24 11:40 <DIR> d-------- c:\windows\system32\AGEIA
2009-01-24 11:40 . 2009-01-24 11:40 <DIR> d-------- c:\program files\AGEIA Technologies
2009-01-24 11:39 . 2009-01-24 11:39 <DIR> d-------- c:\windows\nview
2009-01-24 11:39 . 2009-01-07 11:28 453,152 --a------ c:\windows\system32\NVUNINST.EXE
2009-01-24 11:39 . 2009-01-15 08:19 453,152 --a------ c:\windows\system32\nvudisp.exe
2009-01-24 11:39 . 2009-01-30 09:14 206,862 --a------ c:\windows\system32\nvapps.xml
2009-01-24 11:39 . 2009-01-15 08:19 18,725 --a------ c:\windows\system32\nvdisp.nvu
2009-01-24 11:33 . 2009-01-24 11:36 <DIR> d-------- c:\program files\Driver Sweeper
2009-01-23 09:55 . 2005-05-03 18:43 69,632 --a------ c:\windows\Alcmtr.exe
2009-01-22 19:25 . 2009-01-22 19:25 <DIR> d-------- c:\program files\DAEMON Tools Toolbar
2009-01-22 19:24 . 2009-01-22 19:25 <DIR> d-------- c:\program files\DAEMON Tools Lite
2009-01-21 12:22 . 2009-01-21 12:22 <DIR> d-------- c:\program files\Java
2009-01-21 12:22 . 2009-01-21 12:22 410,984 --a------ c:\windows\system32\deploytk.dll
2009-01-21 12:22 . 2009-01-21 12:22 73,728 --a------ c:\windows\system32\javacpl.cpl
2009-01-15 08:19 . 2009-01-15 08:19 13,680,640 --a------ c:\windows\system32\nvcpl.dll
2009-01-03 19:39 . 2009-01-03 19:39 <DIR> d-------- c:\program files\Webteh
2008-12-26 12:14 . 2008-12-26 12:14 <DIR> d-------- c:\documents and settings\All Users\Data aplikací\OLYMPUS
2008-12-26 12:12 . 2003-04-18 16:29 44,544 --a------ c:\windows\system32\msxml4a.dll
2008-12-26 12:12 . 2003-05-01 17:49 402 --a------ c:\windows\system32\msxml4.inf
2008-12-26 12:11 . 2008-12-26 12:11 <DIR> d-------- c:\program files\OLYMPUS
2008-12-26 12:11 . 1998-10-29 14:45 306,688 --a------ c:\windows\IsUninst.exe
2008-12-26 12:10 . 2008-12-26 12:11 <DIR> d-------- c:\windows\system32\QuickTime
2008-12-26 12:10 . 2008-12-26 12:10 <DIR> d-------- c:\program files\QuickTime
2008-12-26 12:10 . 2008-12-26 12:10 <DIR> d-------- c:\documents and settings\All Users\Data aplikací\QuickTime
2008-12-26 12:10 . 1999-11-10 12:05 86,016 --a------ c:\windows\unvise32qt.exe
2008-12-25 22:16 . 2008-12-25 22:16 682,280 --a------ c:\windows\system32\pbsvc.exe
2008-12-25 20:33 . 2009-01-20 11:39 202,000 --a------ c:\windows\system32\PnkBstrB.exe
2008-12-25 20:33 . 2009-01-20 11:39 139,280 --a------ c:\windows\system32\drivers\PnkBstrK.sys
2008-12-25 20:33 . 2008-12-25 20:33 66,872 --a------ c:\windows\system32\PnkBstrA.exe
2008-12-25 11:57 . 2008-12-25 11:58 <DIR> d-------- c:\windows\system32\XPSViewer
2008-12-25 11:57 . 2008-12-25 11:57 <DIR> d-------- c:\program files\Reference Assemblies
2008-12-25 11:46 . 2008-12-25 18:42 <DIR> d-------- c:\windows\SxsCaPendDel
2008-12-25 09:57 . 2006-06-29 13:07 14,048 --------- c:\windows\system32\spmsg2.dll
2008-12-25 09:56 . 2008-12-25 09:56 <DIR> d-------- c:\program files\MSXML 6.0
2008-12-24 19:22 . 2008-12-24 19:22 <DIR> d-------- c:\windows\Logs
2008-12-24 19:22 . 2007-10-12 15:14 3,734,536 --a------ c:\windows\system32\d3dx9_36.dll
2008-12-24 19:22 . 2007-07-19 18:14 3,727,720 --a------ c:\windows\system32\d3dx9_35.dll
2008-12-24 19:22 . 2007-07-19 18:14 1,358,192 --a------ c:\windows\system32\D3DCompiler_35.dll
2008-12-24 19:22 . 2007-07-19 18:14 444,776 --a------ c:\windows\system32\d3dx10_35.dll
2008-12-24 19:22 . 2007-07-20 00:57 267,112 --a------ c:\windows\system32\xactengine2_9.dll
2008-12-24 18:27 . 2009-01-30 14:29 69 --a------ c:\windows\NeroDigital.ini
2008-12-24 09:50 . 2008-12-24 09:50 <DIR> d-------- c:\documents and settings\Adam\Data aplikací\Lavasoft
2008-12-24 09:49 . 2008-12-24 09:49 <DIR> d-------- c:\program files\Lavasoft
2008-12-23 09:42 . 2008-12-23 09:42 <DIR> d-------- c:\program files\MSXML 4.0
2008-12-22 12:52 . 2008-12-22 12:52 <DIR> d-------- c:\program files\Common Files\Adobe
2008-12-22 12:51 . 1998-11-13 12:58 307,200 --a------ c:\windows\IsUn0405.exe
2008-12-22 11:31 . 2008-12-22 11:31 <DIR> d-------- c:\documents and settings\Adam\Data aplikací\Ahead
2008-12-22 11:29 . 2008-12-22 11:29 <DIR> d-------- c:\program files\Nero
2008-12-22 11:29 . 2008-12-22 11:29 <DIR> d-------- c:\program files\Common Files\Ahead
2008-12-22 11:29 . 2008-12-22 11:29 <DIR> d-------- c:\documents and settings\All Users\Data aplikací\Nero
2008-12-21 22:26 . 2008-12-21 22:26 <DIR> d-------- c:\documents and settings\Adam\Data aplikací\Media Player Classic
2008-12-21 19:38 . 2008-12-21 19:38 <DIR> d-------- c:\program files\GamePark
2008-12-21 19:19 . 2008-12-21 19:19 <DIR> d-------- c:\windows\system32\LogFiles
2008-12-21 19:19 . 2008-12-25 22:16 22,328 --a------ c:\documents and settings\Adam\Data aplikací\PnkBstrK.sys
2008-12-21 19:19 . 2008-12-21 19:19 274 --a------ c:\windows\game.ini
2008-12-21 18:55 . 2008-12-21 18:55 <DIR> d--hs---- c:\windows\ftpcache
2008-12-21 17:22 . 2004-08-17 15:49 91,136 --a------ c:\windows\kswdmcap.ax
2008-12-21 17:22 . 2004-08-17 15:49 61,952 --a------ c:\windows\kstvtune.ax
2008-12-21 17:22 . 2004-08-17 15:49 54,272 --a------ c:\windows\vfwwdm32.dll
2008-12-21 17:22 . 2004-08-17 15:49 43,008 --a------ c:\windows\ksxbar.ax
2008-12-21 17:22 . 2004-08-17 15:49 28,672 --a------ c:\windows\vidcap.ax
2008-12-21 17:18 . 2008-12-21 17:18 <DIR> d-------- c:\program files\Genius
2008-12-21 17:13 . 2009-01-27 21:00 <DIR> d-------- c:\documents and settings\Adam\Data aplikací\skypePM
2008-12-21 17:13 . 2008-12-21 17:13 56 --ah----- c:\windows\system32\ezsidmv.dat
2008-12-21 17:12 . 2008-12-21 17:12 <DIR> d-------- c:\program files\Skype
2008-12-21 17:12 . 2008-12-21 17:57 <DIR> d-------- c:\program files\Google
2008-12-21 17:12 . 2008-12-21 17:12 <DIR> d-------- c:\program files\Common Files\Skype
2008-12-21 17:12 . 2008-12-21 17:12 <DIR> d-------- c:\documents and settings\All Users\Data aplikací\Skype
2008-12-21 17:12 . 2009-01-27 21:02 <DIR> d-------- c:\documents and settings\Adam\Data aplikací\Skype
2008-12-21 09:05 . 2008-12-21 09:05 <DIR> d-------- c:\program files\Innovative Solutions
2008-12-21 09:05 . 2008-12-21 09:05 <DIR> d-------- c:\documents and settings\All Users\Data aplikací\Innovative Solutions
2008-12-21 09:05 . 2006-11-22 11:35 42,496 --a------ c:\windows\system32\AdvUninstCPL.cpl
2008-12-21 08:43 . 2008-12-21 08:43 <DIR> d-------- C:\WFDB
2008-12-21 08:43 . 2008-12-21 08:43 <DIR> d-------- c:\program files\WinFast
2008-12-21 08:37 . 2004-08-03 23:10 10,880 --a------ c:\windows\system32\drivers\NdisIP.sys
2008-12-21 08:37 . 2004-08-03 23:10 10,880 --a--c--- c:\windows\system32\dllcache\ndisip.sys
2008-12-21 08:34 . 2008-12-21 08:34 <DIR> d-------- C:\WinFast
2008-12-21 08:34 . 2008-12-21 08:34 <DIR> d-------- c:\windows\system32\DX9
2008-12-21 08:34 . 2006-03-24 09:25 167,296 --a------ c:\windows\system32\drivers\wfcxvcap.sys
2008-12-21 08:34 . 2006-03-24 09:24 31,616 --a------ c:\windows\system32\drivers\wfcxatun.sys
2008-12-21 08:34 . 2006-03-24 09:23 21,248 --a------ c:\windows\system32\drivers\wfcxdtun.sys
2008-12-21 08:34 . 2006-03-24 09:21 15,872 --a------ c:\windows\system32\drivers\wfcxtcap.sys
2008-12-21 08:34 . 2006-03-24 09:20 9,856 --a------ c:\windows\system32\drivers\wfcxacap.sys
2008-12-21 08:34 . 2002-06-03 22:52 2,238 --a------ c:\windows\system32\WFDRV.ico
2008-12-21 08:33 . 2008-12-21 08:33 <DIR> d-------- c:\windows\system32\WinFox
2008-12-21 08:33 . 2005-03-25 18:24 9,600 --a------ c:\windows\system32\drivers\WINFOXIO.sys
2008-12-20 19:58 . 2008-12-20 20:01 <DIR> d-------- c:\program files\uTorrent
2008-12-20 19:58 . 2009-01-30 15:00 <DIR> d-------- c:\documents and settings\Adam\Data aplikací\uTorrent
2008-12-20 19:57 . 2008-12-28 10:29 <DIR> d-------- c:\program files\Opera
2008-12-20 19:44 . 2006-10-26 19:56 32,592 --a------ c:\windows\system32\msonpmon.dll
2008-12-20 19:43 . 2008-12-25 11:57 <DIR> d-------- c:\program files\MSBuild
2008-12-20 19:43 . 2008-12-20 19:43 <DIR> d-------- c:\program files\Microsoft Works
2008-12-20 19:39 . 2008-12-20 19:42 <DIR> d-------- c:\windows\SHELLNEW
2008-12-20 19:38 . 2008-12-20 19:38 <DIR> dr-h----- C:\MSOCache
2008-12-20 19:38 . 2008-12-20 19:44 <DIR> d-------- c:\documents and settings\All Users\Data aplikací\Microsoft Help
2008-12-20 19:35 . 2008-12-20 19:35 <DIR> d-------- c:\documents and settings\Adam\Data aplikací\DAEMON Tools
2008-12-20 19:35 . 2008-12-20 19:35 717,296 --a------ c:\windows\system32\drivers\sptd.sys
2008-12-20 19:13 . 2009-01-28 17:19 <DIR> d-------- c:\program files\Winamp
2008-12-20 19:13 . 2009-01-28 17:32 <DIR> d-------- c:\documents and settings\Adam\Data aplikací\Winamp
2008-12-20 19:10 . 2008-12-20 19:11 <DIR> d-------- c:\documents and settings\Adam\Data aplikací\ICQ
2008-12-20 19:09 . 2008-12-27 11:25 <DIR> d-------- c:\program files\ICQ6.5
2008-12-20 18:59 . 2008-12-25 11:58 <DIR> d-------- c:\windows\system32\cs-cz
2008-12-20 18:59 . 2008-10-16 21:33 6,066,176 -----c--- c:\windows\system32\dllcache\ieframe.dll
2008-12-20 18:59 . 2007-04-17 10:32 2,455,488 -----c--- c:\windows\system32\dllcache\ieapfltr.dat
2008-12-20 18:59 . 2007-03-08 06:09 1,024,000 -----c--- c:\windows\system32\dllcache\ieframe.dll.mui
2008-12-20 18:59 . 2008-10-16 21:33 459,264 -----c--- c:\windows\system32\dllcache\msfeeds.dll
2008-12-20 18:59 . 2008-10-16 21:33 383,488 -----c--- c:\windows\system32\dllcache\ieapfltr.dll
2008-12-20 18:59 . 2008-10-16 21:33 267,776 -----c--- c:\windows\system32\dllcache\iertutil.dll
2008-12-20 18:59 . 2008-10-16 21:33 63,488 -----c--- c:\windows\system32\dllcache\icardie.dll
2008-12-20 18:59 . 2008-10-16 21:33 52,224 -----c--- c:\windows\system32\dllcache\msfeedsbs.dll
2008-12-20 18:59 . 2008-10-16 14:11 13,824 -----c--- c:\windows\system32\dllcache\ieudinit.exe

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-01-24 10:41 --------- d-----w c:\program files\Common Files\Wise Installation Wizard
2009-01-23 08:55 --------- d-----w c:\program files\Realtek
2009-01-16 08:33 325,128 ----a-w c:\windows\system32\drivers\avgldx86.sys
2009-01-07 21:36 --------- d-----w c:\documents and settings\All Users\Data aplikací\avg8
2009-01-07 21:35 12,552 ----a-w c:\windows\system32\drivers\avgrkx86.sys
2009-01-07 21:35 107,272 ----a-w c:\windows\system32\drivers\avgtdix.sys
2009-01-07 21:35 10,520 ----a-w c:\windows\system32\avgrsstx.dll
2008-12-26 11:11 --------- d--h--w c:\program files\InstallShield Installation Information
2008-12-21 07:29 --------- d-----w c:\program files\Common Files\ArcSoft
2008-12-20 09:12 --------- d-----w c:\documents and settings\Adam\Data aplikací\AVGTOOLBAR
2008-12-20 09:10 --------- d-----w c:\documents and settings\Adam\Data aplikací\ArcSoft
2008-12-20 09:08 --------- d-----w c:\program files\Common Files\Ulead Systems
2008-12-20 09:08 --------- d-----w c:\program files\Common Files\InstallShield
2008-12-20 09:08 --------- d-----w c:\documents and settings\All Users\Data aplikací\ArcSoft
2008-12-20 09:03 --------- d-----w c:\program files\AVG
2008-12-20 08:50 --------- d-----w c:\program files\VIA
2008-12-20 08:48 --------- d-----w c:\program files\DIFX
2008-12-20 08:42 --------- d-----w c:\program files\microsoft frontpage
2008-12-11 11:57 333,184 ----a-w c:\windows\system32\drivers\srv.sys
2008-12-10 08:45 70,936 ----a-w c:\windows\system32\PhysXLoader.dll
2008-12-04 08:28 24,344 ----a-w c:\windows\system32\PhysXDevice.dll
2008-11-26 07:55 288,024 ----a-w c:\windows\system32\PhysXCplUI.exe
2008-11-25 07:38 288,024 ----a-w c:\windows\system32\PhysXCompatCplUI.exe
2008-10-27 09:04 70,992 ----a-w c:\windows\system32\XAPOFX1_2.dll
2008-10-27 09:04 514,384 ----a-w c:\windows\system32\XAudio2_3.dll
2008-10-27 09:04 235,856 ----a-w c:\windows\system32\xactengine3_3.dll
2008-10-27 09:04 23,376 ----a-w c:\windows\system32\X3DAudio1_5.dll
2008-10-23 13:01 283,648 ----a-w c:\windows\system32\gdi32.dll
2008-10-16 20:33 826,368 ----a-w c:\windows\system32\wininet.dll
2008-10-16 13:13 202,776 ----a-w c:\windows\system32\wuweb.dll
2008-10-16 13:13 1,809,944 ----a-w c:\windows\system32\wuaueng.dll
2008-10-16 13:12 561,688 ----a-w c:\windows\system32\wuapi.dll
2008-10-16 13:12 323,608 ----a-w c:\windows\system32\wucltui.dll
2008-10-16 13:09 92,696 ----a-w c:\windows\system32\cdm.dll
2008-10-16 13:09 51,224 ----a-w c:\windows\system32\wuauclt.exe
2008-10-16 13:09 43,544 ----a-w c:\windows\system32\wups2.dll
2008-10-16 13:08 34,328 ----a-w c:\windows\system32\wups.dll
2008-10-10 03:52 452,440 ----a-w c:\windows\system32\d3dx10_40.dll
2008-10-10 03:52 4,379,984 ----a-w c:\windows\system32\D3DX9_40.dll
2008-10-10 03:52 2,036,576 ----a-w c:\windows\system32\D3DCompiler_40.dll
2008-10-07 08:13 58,648 ----a-w c:\windows\system32\AgCPanelTraditionalChinese.dll
2008-10-07 08:13 58,648 ----a-w c:\windows\system32\AgCPanelSwedish.dll
2008-10-07 08:13 58,648 ----a-w c:\windows\system32\AgCPanelSpanish.dll
2008-10-07 08:13 58,648 ----a-w c:\windows\system32\AgCPanelSimplifiedChinese.dll
2008-10-07 08:13 58,648 ----a-w c:\windows\system32\AgCPanelPortugese.dll
2008-10-07 08:13 58,648 ----a-w c:\windows\system32\AgCPanelKorean.dll
2008-10-07 08:13 58,648 ----a-w c:\windows\system32\AgCPanelJapanese.dll
2008-10-07 08:13 58,648 ----a-w c:\windows\system32\AgCPanelGerman.dll
2008-10-07 08:13 58,648 ----a-w c:\windows\system32\AgCPanelFrench.dll
2008-10-07 08:13 197,912 ----a-w c:\windows\system32\physxcudart_20.dll
2008-10-03 10:17 247,326 ----a-w c:\windows\system32\strmdll.dll
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2004-08-17 15360]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2008-12-20 269616]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-12-21 39408]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-06-27 152872]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2008-07-24 490952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2009-01-07 1601304]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 31016]
"WinFastDTV"="c:\program files\WinFast\WFDTV\DTVSchdl.exe" [2006-07-11 69632]
"WinFast Schedule"="c:\program files\WinFast\WFDTV\WFWIZ.exe" [2006-07-07 348160]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-01-21 136600]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-01-15 13680640]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-01-15 86016]
"SkyTel"="SkyTel.EXE" [2006-05-16 c:\windows\SkyTel.exe]
"RTHDCPL"="RTHDCPL.EXE" [2006-12-19 c:\windows\RTHDCPL.exe]
"nwiz"="nwiz.exe" [2009-01-15 c:\windows\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-17 15360]

c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2008-12-22 113664]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2009-01-07 22:35 10520 c:\windows\system32\avgrsstx.dll

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgam.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgupd.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgnsx.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgemc.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\WinFast\\WFDTV\\DVBTAP.exe"=
"d:\\Games\\Paintball2\\paintball2.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"d:\\Games\\CoD 4\\iw3mp.exe"=
"d:\\Games\\CoD 5\\CoDWaW.exe"=
"d:\\Games\\CoD 5\\CoDWaWmp.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"d:\\Games\\LOTR\\Conquest.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)

R0 AvgRkx86;avgrkx86.sys;c:\windows\system32\drivers\avgrkx86.sys [2008-12-20 12552]
R0 xfilt;VIA SATA IDE Hot-plug Driver;c:\windows\system32\drivers\xfilt.sys [2008-12-20 11264]
R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2008-12-20 325128]
R1 AvgTdiX;AVG8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2008-12-20 107272]
R1 wfcxacap;WinFast TV PCI Audio Capture Driver;c:\windows\system32\drivers\wfcxacap.sys [2008-12-21 9856]
R3 M1000Srv;M5603C USB2.0 Camera Driver;c:\windows\system32\drivers\M1000KNT.sys [2008-12-21 276930]
R3 PSched;Plánovač paketů technologie QoS;c:\windows\system32\drivers\psched.sys [2004-08-03 69120]
R3 wfcxdtun;WinFast DTV BDA Tuner/Demod Driver;c:\windows\system32\drivers\wfcxdtun.sys [2008-12-21 21248]
R3 wfcxtcap;WinFast DTV BDA Transport Stream Capture Driver;c:\windows\system32\drivers\wfcxtcap.sys [2008-12-21 15872]
R3 wfcxxbar;WinFast TV Crossbar Driver;c:\windows\system32\drivers\wfcxxbar.sys [2008-12-21 10368]
R3 WFIOCTL;WFIOCTL;c:\program files\WinFast\WFDTV\WFIOCTL.sys [2008-12-21 9446]
R4 avg8emc;AVG8 E-mail Scanner;c:\progra~1\AVG\AVG8\avgemc.exe [2009-01-07 903960]
R4 avg8wd;AVG8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [2009-01-07 298264]
R4 wfcxatun;WinFast TV Analog Tuner Driver;c:\windows\system32\drivers\wfcxatun.sys [2008-12-21 31616]
R4 WFCXVCAP;WinFast TV Video Capture Driver;c:\windows\system32\drivers\wfcxvcap.sys [2008-12-21 167296]
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

HKLM-Run-M1000Mnt - M1000Rmv.exe


.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-30 15:04:19
Windows 5.1.2600 Service Pack 2 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
Celkový čas: 2009-01-30 15:05:19
ComboFix-quarantined-files.txt 2009-01-30 14:05:17

Před spuštěním: Volných bajtů: 26,671,878,144
Po spuštění: Volných bajtů: 27,442,167,808

277 --- E O F --- 2009-01-14 07:44:52

Re: Prosím o kontrolu logu, PC jako šnek

Napsal: 30 led 2009 16:24
od jaro3
Log O.K:
Najdi a manuálně smaž:
c:\windows\Alcmtr.exe

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix[mezera]/u


Zkus přeinstalaci systému, ale spíše to vidím na chybu HDD nebo RAM.

Re: Prosím o kontrolu logu, PC jako šnek

Napsal: 30 led 2009 17:20
od leklaryba
A tamty Malwere a Reg... proste vsechno cos mi poradil mam jednou za cas udelat tak jak si mi to rek aby mel PC nakou "hygienu", nebo to mam smazat

Re: Prosím o kontrolu logu, PC jako šnek

Napsal: 30 led 2009 18:09
od jaro3
Ponech si :
Malwarebytes' Anti-Malware ( aktualizovat před skenem)
CCleanerem ( také se aktualizuje-stačí rozjet při připojení k síti, když bude nová verze k dispozici , tak jí stáhni)
RegCleanerem

Odinstaluj pouze ComboFix.
Časové pásmo: UTC+02:00
Stránka 1 z 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/