PC-HELP.CZ

České diskuzní fórum o počítačích
https://pc-help.cnews.cz/

Prosím o kontrolu logu ComboFix

https://pc-help.cnews.cz/viewtopic.php?f=70&t=54959

Stránka 1 z 1

Prosím o kontrolu logu ComboFix

Napsal: 05 črc 2010 21:00
od matko
Pc se i vytěžuje na 100% tak prosím o kontrolu.
ComboFix 10-07-04.02 - Korman 05.07.2010 20:42:28.1.2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1033.18.3326.2219 [GMT 2:00]
Spuštěný z: e:\users\Korman\Downloads\ComboFix.exe
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

E:\Install.exe
e:\users\Korman\AppData\Roaming\Microsoft\Windows\Recent\Desktop (1).ini

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-06-05 do 2010-07-05 )))))))))))))))))))))))))))))))
.

2010-07-05 18:52 . 2010-07-05 18:53 -------- d-----w- e:\users\Korman\AppData\Local\temp
2010-07-05 18:52 . 2010-07-05 18:52 -------- d-----w- e:\users\Default\AppData\Local\temp
2010-07-05 18:52 . 2010-07-05 18:52 -------- d-----w- e:\users\Administrator\AppData\Local\temp
2010-07-05 16:20 . 2010-06-14 13:58 21320 ----a-w- e:\windows\system32\authuitu.dll
2010-07-05 16:20 . 2010-06-14 13:58 30024 ----a-w- e:\windows\system32\uxtuneup.dll
2010-07-05 11:19 . 2010-07-05 18:33 -------- d-----w- e:\program files\Spyware Doctor
2010-07-05 11:19 . 2010-07-05 18:33 -------- d-----w- e:\program files\Common Files\PC Tools
2010-07-05 10:12 . 2010-07-05 10:12 -------- d-----w- e:\users\Korman\AppData\Roaming\Malwarebytes
2010-07-05 10:11 . 2010-07-05 10:11 -------- d-----w- e:\programdata\Malwarebytes
2010-07-05 10:11 . 2010-07-05 18:33 -------- d-----w- e:\program files\Malwarebytes' Anti-Malware
2010-07-05 09:23 . 2010-07-05 09:23 388096 ----a-r- e:\users\Korman\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2010-07-05 09:23 . 2010-07-05 09:23 -------- d-----w- e:\program files\Trend Micro
2010-07-02 19:12 . 2010-07-02 19:12 -------- d-----w- e:\users\Korman\AppData\Roaming\ATI
2010-07-02 19:12 . 2010-07-02 19:12 -------- d-----w- e:\users\Korman\AppData\Local\ATI
2010-07-02 19:12 . 2010-07-02 19:12 -------- d-----w- e:\programdata\ATI
2010-07-02 19:11 . 2010-07-02 19:11 -------- d-----w- e:\program files\Common Files\ATI Technologies
2010-07-02 19:09 . 2010-07-02 19:09 -------- d-----w- e:\program files\ATI
2010-07-02 19:08 . 2010-07-02 19:11 -------- d-----w- e:\program files\ATI Technologies
2010-07-02 19:08 . 2010-07-02 19:08 -------- d-----w- E:\ATI
2010-07-02 09:50 . 2010-07-02 09:50 -------- d-----w- e:\windows\system32\RTCOM
2010-07-01 20:36 . 2010-07-01 20:36 798771 ----a-w- e:\programdata\Microsoft\Microsoft Antimalware\LocalCopy\{F1ABA6F6-ED2E-C0C0-B8CC-90C584792B16}-WebIE.dll
2010-07-01 20:36 . 2010-07-01 20:36 325120 ----a-w- e:\programdata\Microsoft\Microsoft Antimalware\LocalCopy\{8B5DDDEF-8AEC-B861-87D8-119E484C023D}-iPhoneNSE.dll
2010-07-01 20:36 . 2010-07-01 20:36 163840 ----a-w- e:\programdata\Microsoft\Microsoft Antimalware\LocalCopy\{35342421-D409-1A7D-CCC0-815D0331BC27}-PWRISOSH.DLL
2010-07-01 20:36 . 2010-07-01 20:36 141824 ----a-w- e:\programdata\Microsoft\Microsoft Antimalware\LocalCopy\{E2DAA357-6D86-204A-92D6-6BDDD72B1F48}-rarext.dll
2010-07-01 07:09 . 2010-07-01 07:10 -------- d-----w- e:\users\Korman\AppData\Local\Google
2010-07-01 07:09 . 2010-07-01 07:09 -------- d-----w- e:\program files\Google
2010-06-30 13:51 . 2010-07-02 19:17 137464 ----a-w- e:\windows\system32\drivers\PnkBstrK.sys
2010-06-30 13:51 . 2010-06-30 13:51 139152 ----a-w- e:\users\Korman\AppData\Roaming\PnkBstrK.sys
2010-06-30 13:51 . 2010-07-02 19:16 214520 ----a-w- e:\windows\system32\PnkBstrB.exe
2010-06-30 13:50 . 2010-06-30 13:51 75064 ----a-w- e:\windows\system32\PnkBstrA.exe
2010-06-30 13:50 . 2010-06-30 13:50 794408 ----a-w- e:\windows\system32\pbsvc.exe
2010-06-29 19:16 . 2010-06-29 19:16 -------- d-----w- e:\users\Korman\AppData\Local\PunkBuster
2010-06-29 19:04 . 2010-07-02 21:54 -------- d-----w- e:\users\Korman\AppData\Roaming\HLSW
2010-06-29 19:04 . 2010-06-29 19:04 -------- d-s---w- e:\program files\HLSW
2010-06-29 18:29 . 2010-06-30 10:43 -------- d-----w- e:\program files\Activision
2010-06-29 18:28 . 2010-06-29 18:28 -------- d-sh--w- e:\windows\ftpcache
2010-06-29 18:13 . 2010-06-29 18:13 -------- d-----w- e:\program files\PowerISO
2010-06-27 16:57 . 2010-06-27 16:57 -------- d-----w- e:\users\Korman\AppData\Roaming\Ubisoft
2010-06-27 16:57 . 2010-06-27 16:57 -------- d-----w- e:\programdata\Ubisoft
2010-06-27 16:17 . 2005-05-26 13:34 2297552 ----a-w- e:\windows\system32\d3dx9_26.dll
2010-06-27 16:09 . 2010-06-29 19:23 -------- d-----w- e:\program files\Ubisoft
2010-06-27 16:09 . 2010-07-02 09:49 -------- d--h--w- e:\program files\InstallShield Installation Information
2010-06-27 12:19 . 2009-11-11 16:21 159800 ----a-w- e:\users\Korman\AppData\Roaming\Mozilla\Firefox\Profiles\7rg0wv8r.default\extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829}\components\nsWebFF.dll
2010-06-27 12:19 . 2009-11-11 16:13 163898 ----a-w- e:\users\Korman\AppData\Roaming\Mozilla\Firefox\Profiles\7rg0wv8r.default\extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829}\components\nsWebFF15.dll
2010-06-27 08:01 . 2010-06-27 08:01 -------- d-----w- e:\program files\PC translator
2010-06-27 07:59 . 2010-06-27 07:59 798771 ----a-w- e:\programdata\LangSoft\WebIE.dll
2010-06-27 07:59 . 2010-06-27 07:59 356352 ----a-w- e:\programdata\LangSoft\TrnOutl.dll
2010-06-27 07:59 . 2010-06-27 07:59 299008 ----a-w- e:\programdata\LangSoft\TrnWord.dll
2010-06-27 07:58 . 2010-06-27 07:59 -------- d-----w- e:\programdata\LangSoft
2010-06-27 07:57 . 2010-06-28 19:46 -------- d-----w- e:\users\Korman\AppData\Roaming\LangSoft
2010-06-25 17:15 . 2007-10-23 07:27 110592 ----a-w- e:\users\Korman\AppData\Roaming\U3\temp\cleanup.exe
2010-06-25 17:14 . 2008-05-02 08:41 3493888 ---ha-w- e:\users\Korman\AppData\Roaming\U3\temp\Launchpad Removal.exe
2010-06-25 17:14 . 2010-07-01 20:08 -------- d-----w- e:\users\Korman\AppData\Roaming\U3
2010-06-25 04:27 . 2009-11-25 10:47 99176 ----a-w- e:\windows\system32\PresentationHostProxy.dll
2010-06-25 04:27 . 2009-11-25 10:47 49472 ----a-w- e:\windows\system32\netfxperf.dll
2010-06-25 04:27 . 2009-11-25 10:47 297808 ----a-w- e:\windows\system32\mscoree.dll
2010-06-25 04:27 . 2009-11-25 10:47 295264 ----a-w- e:\windows\system32\PresentationHost.exe
2010-06-25 04:27 . 2009-11-25 10:47 1130824 ----a-w- e:\windows\system32\dfshim.dll
2010-06-24 18:38 . 2010-03-24 06:37 1286456 ----a-w- e:\windows\system32\ntdll.dll
2010-06-24 18:38 . 2010-05-09 09:14 641536 ----a-w- e:\windows\system32\CPFilters.dll
2010-06-24 18:38 . 2010-05-09 09:14 417792 ----a-w- e:\windows\system32\msdri.dll
2010-06-21 04:39 . 2010-06-21 04:39 -------- d-----w- e:\program files\iPod
2010-06-21 04:39 . 2010-06-21 04:39 -------- d-----w- e:\program files\iTunes
2010-06-21 04:37 . 2010-06-21 04:37 -------- d-----w- e:\program files\Bonjour
2010-06-21 04:35 . 2010-06-21 04:35 72504 ----a-w- e:\programdata\Apple Computer\Installer Cache\iTunes 9.2.0.61\SetupAdmin.exe
2010-06-14 15:09 . 2010-07-02 08:00 -------- d-----w- e:\users\Korman\AppData\Local\Diagnostics
2010-06-13 12:55 . 2010-06-13 12:55 -------- d-----w- e:\programdata\regid.1986-12.com.adobe
2010-06-13 12:45 . 2010-06-13 12:45 -------- d-----w- e:\program files\Adobe Media Player
2010-06-13 12:44 . 2010-06-13 12:43 38784 ----a-w- e:\users\Default\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2010-06-13 12:44 . 2010-06-13 12:44 -------- d-----w- e:\program files\Common Files\Adobe AIR
2010-06-12 18:00 . 2010-06-12 08:16 -------- d-----w- e:\windows\Panther
2010-06-12 17:52 . 2010-06-12 10:53 -------- d-----w- E:\Windows.old
2010-06-12 17:03 . 2010-06-12 17:03 0 ----a-w- e:\windows\ativpsrm.bin
2010-06-12 15:33 . 2010-06-12 15:33 -------- d-----w- e:\program files\Microsoft CAPICOM 2.1.0.2
2010-06-12 15:27 . 2010-06-12 15:27 -------- d-----w- e:\users\Default\AppData\Local\Microsoft Help
2010-06-12 14:54 . 2008-11-10 09:41 32656 ----a-w- e:\windows\system32\msonpmon.dll
2010-06-12 14:54 . 2006-10-26 17:56 33104 ----a-w- e:\windows\system32\Spool\prtprocs\w32x86\msonpppr.dll
2010-06-12 14:52 . 2010-06-12 15:30 -------- d-----w- e:\program files\Microsoft Works
2010-06-12 14:49 . 2010-06-12 14:49 -------- d-----w- e:\windows\PCHEALTH
2010-06-12 14:49 . 2010-06-25 04:28 -------- d-----w- e:\program files\Microsoft.NET
2010-06-12 14:47 . 2010-06-12 14:47 -------- d-----w- e:\program files\Microsoft Visual Studio 8
2010-06-12 14:46 . 2010-06-12 14:46 -------- d-----w- e:\users\Korman\AppData\Local\Microsoft Help
2010-06-12 14:46 . 2010-06-13 19:27 -------- d-----w- e:\programdata\Microsoft Help
2010-06-12 14:38 . 2010-06-13 12:58 -------- d-----w- e:\users\Korman\AppData\Local\Adobe
2010-06-12 11:45 . 2010-06-12 11:45 -------- d-----w- e:\program files\Lavalys
2010-06-12 11:19 . 2010-07-05 18:41 631076 ----a-w- e:\windows\system32\perfh005.dat
2010-06-12 11:19 . 2010-07-05 18:41 121716 ----a-w- e:\windows\system32\perfc005.dat
2010-06-12 11:19 . 2010-06-12 10:27 36232 ----a-w- e:\windows\system32\perfd005.dat
2010-06-12 11:19 . 2010-06-12 10:27 292004 ----a-w- e:\windows\system32\perfi005.dat
2010-06-12 11:06 . 2010-06-12 11:06 -------- d-----w- e:\windows\cs-CZ
2010-06-12 11:06 . 2010-06-12 11:06 -------- d-----w- e:\windows\system32\cs
2010-06-12 11:05 . 2010-06-12 11:05 -------- d-----w- e:\windows\system32\XPSViewer
2010-06-12 11:05 . 2010-06-12 11:05 -------- d-----w- e:\windows\system32\drivers\cs-CZ
2010-06-12 11:05 . 2010-06-12 11:05 -------- d-----w- e:\windows\system32\Spool\prtprocs\w32x86\cs-CZ
2010-06-12 11:05 . 2010-06-12 11:05 -------- d-----w- e:\windows\system32\wbem\cs-CZ
2010-06-12 10:54 . 2010-06-12 10:55 -------- d-----w- e:\programdata\ScanSoft
2010-06-12 10:52 . 2010-07-02 09:49 -------- d-----w- e:\program files\Common Files\InstallShield
2010-06-12 10:51 . 2010-06-12 10:51 -------- d-----w- e:\program files\Common Files\CANON
2010-06-12 10:50 . 2010-06-12 10:50 -------- d--h--w- e:\programdata\CanonBJ
2010-06-12 10:50 . 2007-03-18 20:00 69632 ----a-w- e:\windows\system32\Spool\prtprocs\w32x86\CNMPP8S.DLL
2010-06-12 10:50 . 2007-03-18 20:00 27136 ----a-w- e:\windows\system32\Spool\prtprocs\w32x86\CNMPD8S.DLL
2010-06-12 10:49 . 2010-06-12 10:49 -------- d--h--w- e:\windows\system32\CanonIJ Uninstaller Information
2010-06-12 10:49 . 2007-03-18 20:00 215040 ----a-w- e:\windows\system32\CNMLM8S.DLL
2010-06-12 10:48 . 2007-03-15 05:12 188416 ----a-w- e:\windows\system32\CNC210O.DLL
2010-06-12 10:48 . 2007-03-23 07:30 1400832 ----a-w- e:\windows\system32\CNC210C.DLL
2010-06-12 10:48 . 2007-03-23 07:29 98304 ----a-w- e:\windows\system32\CNC210I.DLL
2010-06-12 10:48 . 2007-03-19 01:16 200704 ----a-w- e:\windows\system32\CNC210L.DLL
2010-06-12 10:48 . 2010-06-12 10:48 -------- d--h--w- e:\program files\CanonBJ
2010-06-12 10:47 . 2010-06-12 11:01 -------- d-----w- e:\program files\Canon
2010-06-12 10:42 . 2010-04-28 05:44 54632 ----a-w- e:\windows\system32\drivers\fssfltr.sys
2010-06-12 10:42 . 2010-06-12 10:42 -------- d-----w- e:\program files\Microsoft Sync Framework
2010-06-12 10:41 . 2006-11-29 11:06 3426072 ----a-w- e:\windows\system32\d3dx9_32.dll
2010-06-12 10:41 . 2010-06-12 10:41 -------- d-----w- e:\program files\Microsoft SQL Server Compact Edition
2010-06-12 10:41 . 2010-06-12 10:41 -------- d-----w- e:\programdata\SlySoft
2010-06-12 10:41 . 2010-06-12 10:41 -------- d-----w- e:\program files\Microsoft
2010-06-12 10:40 . 2010-06-12 10:40 -------- d-----w- e:\program files\SlySoft
2010-06-12 10:40 . 2010-06-12 10:40 -------- d-----w- e:\program files\Windows Live SkyDrive
2010-06-12 10:40 . 2010-06-12 10:42 -------- d-----w- e:\program files\Windows Live
2010-06-12 10:39 . 2010-06-12 10:39 -------- d-----w- e:\programdata\Elaborate Bytes
2010-06-12 10:39 . 2010-06-12 10:39 -------- d-----w- e:\program files\Elaborate Bytes
2010-06-12 10:29 . 2010-06-12 10:29 -------- d-----w- e:\program files\Common Files\Windows Live
2010-06-12 10:28 . 2010-06-12 10:28 -------- d-----w- e:\program files\Microsoft Silverlight
2010-06-12 10:20 . 2009-10-10 02:57 12800 ----a-w- e:\windows\system32\drivers\sffp_sd.sys
2010-06-12 10:19 . 2010-06-12 10:19 -------- d-----w- e:\windows\system32\Wat
2010-06-12 10:14 . 2010-06-12 10:14 -------- d-----w- e:\users\Korman\AppData\Roaming\Ashampoo

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-07-02 09:49 . 2010-07-02 09:49 319456 ----a-w- e:\windows\DIFxAPI.dll
2010-07-02 09:49 . 2010-07-02 09:49 -------- d-----w- e:\program files\Realtek
2010-07-02 09:49 . 2010-07-02 09:49 315392 ----a-w- e:\windows\HideWin.exe
2010-06-17 14:54 . 2010-06-17 14:54 0 ---ha-w- e:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf
2010-06-13 18:41 . 2010-06-13 18:41 0 ---ha-w- e:\windows\system32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2010-06-12 14:51 . 2009-07-14 04:52 -------- d-----w- e:\program files\MSBuild
2010-06-12 11:06 . 2009-07-14 04:52 -------- d-----w- e:\program files\Windows Sidebar
2010-06-12 11:06 . 2009-07-14 02:37 -------- d-----w- e:\program files\Windows Mail
2010-06-12 11:06 . 2009-07-14 04:52 -------- d-----w- e:\program files\DVD Maker
2010-06-12 11:06 . 2009-07-14 07:50 -------- d-----w- e:\program files\Windows Journal
2010-06-12 11:06 . 2009-07-14 04:52 -------- d-----w- e:\program files\Windows Photo Viewer
2010-06-12 11:06 . 2009-07-14 04:52 -------- d-----w- e:\program files\Windows Defender
2010-06-12 11:01 . 2010-06-12 11:01 -------- d-----w- e:\programdata\CanonIJPLM
2010-06-12 10:27 . 2010-06-12 11:06 36232 ----a-w- e:\windows\inf\PERFLIB\0405\perfd.dat
2010-06-12 10:27 . 2010-06-12 11:06 36232 ----a-w- e:\windows\inf\PERFLIB\0405\perfc.dat
2010-06-12 10:27 . 2010-06-12 11:06 292004 ----a-w- e:\windows\inf\PERFLIB\0405\perfi.dat
2010-06-12 10:27 . 2010-06-12 11:06 292004 ----a-w- e:\windows\inf\PERFLIB\0405\perfh.dat
2010-06-12 09:50 . 2010-06-12 09:50 -------- d-----w- e:\programdata\Data aplikací
2010-06-12 09:35 . 2010-06-12 09:35 56 ---ha-w- e:\programdata\ezsidmv.dat
2010-06-12 08:27 . 2010-05-22 08:59 -------- d-----w- e:\users\Korman\AppData\Roaming\Xilisoft Corporation
2010-06-03 02:41 . 2010-06-03 02:41 3600384 ----a-w- e:\windows\system32\GPhotos.scr
2010-05-27 17:38 . 2010-05-27 17:38 5586432 ----a-w- e:\windows\system32\drivers\atikmdag.sys
2010-05-27 17:05 . 2010-05-27 17:05 15180800 ----a-w- e:\windows\system32\atioglxx.dll
2010-05-27 17:02 . 2010-05-27 17:02 143360 ----a-w- e:\windows\system32\atiapfxx.exe
2010-05-27 17:02 . 2010-05-27 17:02 511488 ----a-w- e:\windows\system32\aticfx32.dll
2010-05-27 17:00 . 2010-05-27 17:00 446464 ----a-w- e:\windows\system32\ATIDEMGX.dll
2010-05-27 16:59 . 2010-05-27 16:59 376832 ----a-w- e:\windows\system32\atieclxx.exe
2010-05-27 16:59 . 2010-05-27 16:59 176128 ----a-w- e:\windows\system32\atiesrxx.exe
2010-05-27 16:58 . 2010-05-27 16:58 159744 ----a-w- e:\windows\system32\atitmmxx.dll
2010-05-27 16:58 . 2010-05-27 16:58 356352 ----a-w- e:\windows\system32\atipdlxx.dll
2010-05-27 16:58 . 2010-05-27 16:58 278528 ----a-w- e:\windows\system32\Oemdspif.dll
2010-05-27 16:58 . 2010-05-27 16:58 11776 ----a-w- e:\windows\system32\atimuixx.dll
2010-05-27 16:57 . 2010-05-27 16:57 43520 ----a-w- e:\windows\system32\ati2edxx.dll
2010-05-27 16:54 . 2009-07-13 22:09 3668480 ----a-w- e:\windows\system32\atidxx32.dll
2010-05-27 16:41 . 2010-05-27 16:41 53248 ----a-w- e:\windows\system32\aticalrt.dll
2010-05-27 16:41 . 2010-05-27 16:41 53248 ----a-w- e:\windows\system32\aticalcl.dll
2010-05-27 16:39 . 2010-05-27 16:39 4096000 ----a-w- e:\windows\system32\aticaldd.dll
2010-05-27 16:37 . 2010-05-27 16:37 3798528 ----a-w- e:\windows\system32\atiumdag.dll
2010-05-27 16:35 . 2010-05-27 16:35 50176 ----a-w- e:\windows\system32\coinst.dll
2010-05-27 16:31 . 2010-05-27 16:31 3025408 ----a-w- e:\windows\system32\atiumdva.dll
2010-05-27 16:25 . 2010-05-27 16:25 237568 ----a-w- e:\windows\system32\atiadlxx.dll
2010-05-27 16:25 . 2010-05-27 16:25 12800 ----a-w- e:\windows\system32\atiglpxx.dll
2010-05-27 16:25 . 2010-05-27 16:25 16896 ----a-w- e:\windows\system32\atigktxx.dll
2010-05-27 16:25 . 2010-05-27 16:25 209920 ----a-w- e:\windows\system32\drivers\atikmpag.sys
2010-05-27 16:24 . 2010-05-27 16:24 30208 ----a-w- e:\windows\system32\atiuxpag.dll
2010-05-27 16:24 . 2010-05-27 16:24 22528 ----a-w- e:\windows\system32\atiu9pag.dll
2010-05-27 16:24 . 2010-05-27 16:24 53248 ----a-w- e:\windows\system32\drivers\ati2erec.dll
2010-05-27 16:20 . 2010-05-27 16:20 52736 ----a-w- e:\windows\system32\atimpc32.dll
2010-05-27 16:20 . 2010-05-27 16:20 52736 ----a-w- e:\windows\system32\amdpcom32.dll
2010-05-27 07:24 . 2010-06-12 08:25 34304 ----a-w- e:\windows\system32\atmlib.dll
2010-05-27 03:49 . 2010-06-12 08:25 293888 ----a-w- e:\windows\system32\atmfd.dll
2010-05-21 05:18 . 2010-06-12 08:25 977920 ----a-w- e:\windows\system32\wininet.dll
2010-05-18 14:35 . 2010-05-18 14:35 91424 ----a-w- e:\windows\system32\dnssd.dll
2010-05-18 14:35 . 2010-05-18 14:35 107808 ----a-w- e:\windows\system32\dns-sd.exe
2010-05-01 14:49 . 2010-06-12 08:25 2326528 ----a-w- e:\windows\system32\win32k.sys
2010-04-29 15:37 . 2010-04-29 15:37 2137 ----a-w- e:\windows\system32\atipblag.dat
2010-04-23 07:13 . 2010-06-12 08:25 2048 ----a-w- e:\windows\system32\tzres.dll
2010-04-19 18:47 . 2010-04-19 18:47 3062048 ----a-w- e:\windows\system32\usbaaplrc.dll
2010-04-19 18:47 . 2010-04-19 18:47 41984 ----a-w- e:\windows\system32\drivers\usbaapl.sys
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- e:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- e:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2010-02-04 14:50 1197448 ----a-w- e:\program files\Ask.com\GenericAskToolbar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "e:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="e:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
"Skype"="e:\program files\Skype\Phone\Skype.exe" [2010-05-13 26192168]
"uTorrent"="e:\program files\uTorrent\uTorrent.exe" [2010-06-12 322352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Monitor"="e:\windows\PixArt\PAC207\Monitor.exe" [2006-11-03 319488]
"QuickTime Task"="e:\program files\QuickTime\QTTask.exe" [2010-03-17 421888]
"MSSE"="e:\program files\Microsoft Security Essentials\msseces.exe" [2010-06-01 1093208]
"CloneCDTray"="e:\program files\SlySoft\CloneCD\CloneCDTray.exe" [2009-01-29 57344]
"CanonSolutionMenu"="e:\program files\Canon\SolutionMenu\CNSLMAIN.exe" [2007-05-14 644696]
"CanonMyPrinter"="e:\program files\Canon\MyPrinter\BJMyPrt.exe" [2007-04-03 1603152]
"GrooveMonitor"="e:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
"AdobeAAMUpdater-1.0"="e:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"SwitchBoard"="e:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5ServiceManager"="e:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"PWRISOVM.EXE"="e:\program files\PowerISO\PWRISOVM.EXE" [2009-11-09 180224]
"RtHDVCpl"="RtHDVCpl.exe" [2008-07-03 6266880]
"Skytel"="Skytel.exe" [2008-06-25 1826816]
"StartCCC"="e:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-05-27 98304]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Steam"="e:\program files\Steam\Steam.exe" -silent
"QIP Internet Guardian"=e:\users\Korman\AppData\Roaming\QipGuard\QipGuard.exe
"BrowserChoice"="e:\windows\System32\browserchoice.exe" /run

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="e:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"Adobe ARM"="e:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"iTunesHelper"="e:\program files\iTunes\iTunesHelper.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"ISTray"="e:\program files\Spyware Doctor\pctsTray.exe"

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;e:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 EverestDriver;Lavalys EVEREST Kernel Driver;e:\program files\Lavalys\EVEREST Corporate Edition\kerneld.wnt [2010-03-30 27760]
R3 SwitchBoard;SwitchBoard;e:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 WatAdminSvc;Služba Technologie aktivace Windows;e:\windows\system32\Wat\WatAdminSvc.exe [2010-06-12 1343400]
S2 AMD External Events Utility;AMD External Events Utility;e:\windows\system32\atiesrxx.exe [2010-05-27 176128]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;e:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-06-14 1051976]
S3 amdkmdag;amdkmdag;e:\windows\system32\DRIVERS\atikmdag.sys [2010-05-27 5586432]
S3 amdkmdap;amdkmdap;e:\windows\system32\DRIVERS\atikmpag.sys [2010-05-27 209920]
S3 MpNWMon;Microsoft Malware Protection Network Driver;e:\windows\system32\DRIVERS\MpNWMon.sys [2010-03-25 42368]
S3 PAC207;SoC PC-Camera;e:\windows\system32\DRIVERS\PFC027.SYS [2006-12-05 507136]
S3 RTL8167;Realtek 8167 NT Driver;e:\windows\system32\DRIVERS\Rt86win7.sys [2009-11-05 230912]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;e:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2010-02-25 10064]
S4 MBAMProtector;MBAMProtector;e:\windows\system32\drivers\mbam.sys [x]
S4 MBAMService;MBAMService;e:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-04-29 304464]
S4 PCTCore;PCTools KDS;e:\windows\system32\drivers\PCTCore.sys [x]


HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
.
------- Doplňkový sken -------
.
uInternet Settings,ProxyOverride = *.local
IE: Add to Google Photos Screensa&ver - e:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - e:\progra~1\MIF5BA~1\Office12\EXCEL.EXE/3000
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - e:\programdata\LangSoft\WebIE.dll
IE: {{898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - e:\program files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - e:\programdata\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - e:\programdata\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - e:\programdata\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - e:\programdata\LangSoft\WebIE.dll
FF - ProfilePath - e:\users\Korman\AppData\Roaming\Mozilla\Firefox\Profiles\7rg0wv8r.default\
FF - prefs.js: browser.startup.homepage - seznam.cz
FF - component: e:\program files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}\components\SkypeFfComponent.dll
FF - component: e:\users\Korman\AppData\Roaming\Mozilla\Firefox\Profiles\7rg0wv8r.default\extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829}\components\nsWebFF15.dll
FF - plugin: e:\program files\Google\Picasa3\npPicasa3.dll

---- NASTAVENÍ FIREFOXU ----
e:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
e:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
e:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
e:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
e:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
e:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
e:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
e:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
e:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
e:\program files\Mozilla Firefox\greprefs\all.js - pref("network.proxy.type", 5);
e:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
e:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
e:\program files\Mozilla Firefox\greprefs\all.js - pref("accelerometer.enabled", true);
e:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
e:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
e:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
e:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
e:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
e:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
e:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
e:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
e:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
e:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
e:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
e:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
e:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

HKLM-Run-Malwarebytes Anti-Malware (reboot) - e:\program files\Malwarebytes' Anti-Malware\mbam.exe



[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\EverestDriver]
"ImagePath"="\??\e:\program files\Lavalys\EVEREST Corporate Edition\kerneld.wnt"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2010-07-05 20:56:52
ComboFix-quarantined-files.txt 2010-07-05 18:56

Před spuštěním: Volných bajtů: 129 431 891 968
Po spuštění: Volných bajtů: 129 383 493 632

- - End Of File - - F72ACCC671D6F517F903DD3C70D6695D

Re: Prosím o kontrolu logu ComboFix

Napsal: 05 črc 2010 21:04
od Michi?!
Stiahni RSIT http://images.malwareremoval.com/random/RSIT.exe .
Spusti ho v režime kompatibility s Windows XP Service pack 3 a log ktorý vyskočí daj sem.

Re: Prosím o kontrolu logu ComboFix

Napsal: 05 črc 2010 21:10
od matko
Logfile of random's system information tool 1.07 (written by random/random)
Run by Korman at 2010-07-05 21:06:37
Microsoft Windows 7 Ultimate Service Pack 3
System drive E: has 123 GB (56%) free of 219 GB
Total RAM: 3326 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:06:47, on 5.7.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
E:\Windows\system32\Dwm.exe
E:\Windows\system32\taskhost.exe
E:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
E:\Windows\PixArt\Pac207\Monitor.exe
E:\Program Files\Microsoft Security Essentials\msseces.exe
E:\Program Files\SlySoft\CloneCD\CloneCDTray.exe
E:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
E:\Program Files\PowerISO\PWRISOVM.EXE
E:\Windows\RtHDVCpl.exe
E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
E:\Program Files\Windows Sidebar\sidebar.exe
E:\Program Files\Skype\Phone\Skype.exe
E:\Program Files\uTorrent\uTorrent.exe
E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
E:\Program Files\Skype\Plugin Manager\skypePM.exe
E:\Windows\System32\rundll32.exe
E:\Windows\system32\notepad.exe
E:\Windows\explorer.exe
E:\Program Files\Mozilla Firefox\firefox.exe
E:\Program Files\Mozilla Firefox\plugin-container.exe
E:\Windows\system32\taskeng.exe
E:\Windows\system32\SearchFilterHost.exe
E:\Windows\explorer.exe
E:\Users\Korman\Downloads\RSIT.exe
E:\Program Files\trend micro\Korman.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - E:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - E:\ProgramData\LangSoft\WebIE.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - E:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - E:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - E:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - E:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - E:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - E:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - E:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - E:\ProgramData\LangSoft\WebIE.dll
O4 - HKLM\..\Run: [Monitor] E:\Windows\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [QuickTime Task] "E:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [MSSE] "e:\Program Files\Microsoft Security Essentials\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [CloneCDTray] "E:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [CanonSolutionMenu] E:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] E:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [GrooveMonitor] "E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "E:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [SwitchBoard] E:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "E:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [PWRISOVM.EXE] E:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [StartCCC] "E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Sidebar] E:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Skype] "E:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [uTorrent] "E:\Program Files\uTorrent\uTorrent.exe"
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://E:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://E:\PROGRA~1\MIF5BA~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - E:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - E:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\PROGRA~1\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\PROGRA~1\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - E:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\PROGRA~1\MIF5BA~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - E:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - E:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - E:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - E:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - E:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - E:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - E:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - E:\ProgramData\LangSoft\WebIE.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - E:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - E:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: AMD External Events Utility - AMD - E:\Windows\system32\atiesrxx.exe
O23 - Service: Apple Mobile Device - Apple Inc. - E:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - E:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Updater Service (gusvc) - Google - E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - E:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: iPod Service - Apple Inc. - E:\Program Files\iPod\bin\iPodService.exe
O23 - Service: PnkBstrA - Unknown owner - E:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - E:\Windows\system32\PnkBstrB.exe
O23 - Service: Steam Client Service - Valve Corporation - E:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - E:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @E:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - E:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - E:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

--
End of file - 9049 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - E:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - E:\ProgramData\LangSoft\WebIE.dll [2010-06-27 798771]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - E:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - E:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - E:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - E:\Program Files\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - E:\Program Files\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - E:\Program Files\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - E:\Program Files\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - E:\ProgramData\LangSoft\WebIE.dll [2010-06-27 798771]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Monitor"=E:\Windows\PixArt\PAC207\Monitor.exe [2006-11-03 319488]
"QuickTime Task"=E:\Program Files\QuickTime\QTTask.exe [2010-03-17 421888]
"MSSE"=e:\Program Files\Microsoft Security Essentials\msseces.exe [2010-06-01 1093208]
"CloneCDTray"=E:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2009-01-30 57344]
"CanonSolutionMenu"=E:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2007-05-14 644696]
"CanonMyPrinter"=E:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2007-04-03 1603152]
"GrooveMonitor"=E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"AdobeAAMUpdater-1.0"=E:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"SwitchBoard"=E:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=E:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"PWRISOVM.EXE"=E:\Program Files\PowerISO\PWRISOVM.EXE [2009-11-09 180224]
"RtHDVCpl"=E:\Windows\RtHDVCpl.exe [2008-07-03 6266880]
"Skytel"=E:\Windows\Skytel.exe [2008-06-25 1826816]
"StartCCC"=E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-05-27 98304]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=E:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1173504]
"Skype"=E:\Program Files\Skype\Phone\Skype.exe [2010-05-13 26192168]
"uTorrent"=E:\Program Files\uTorrent\uTorrent.exe [2010-06-12 322352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=E:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]

Re: Prosím o kontrolu logu ComboFix

Napsal: 05 črc 2010 21:11
od matko
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - E:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2010-07-05 21:06:37 ----D---- E:\rsit
2010-07-05 20:56:58 ----SHD---- E:\$RECYCLE.BIN
2010-07-05 20:56:54 ----D---- E:\Windows\temp
2010-07-05 20:56:52 ----A---- E:\ComboFix.txt
2010-07-05 20:40:47 ----A---- E:\Windows\zip.exe
2010-07-05 20:40:47 ----A---- E:\Windows\SWSC.exe
2010-07-05 20:40:47 ----A---- E:\Windows\SWREG.exe
2010-07-05 20:40:47 ----A---- E:\Windows\sed.exe
2010-07-05 20:40:47 ----A---- E:\Windows\PEV.exe
2010-07-05 20:40:47 ----A---- E:\Windows\NIRCMD.exe
2010-07-05 20:40:47 ----A---- E:\Windows\MBR.exe
2010-07-05 20:40:47 ----A---- E:\Windows\grep.exe
2010-07-05 20:40:06 ----A---- E:\Windows\SWXCACLS.exe
2010-07-05 20:39:51 ----D---- E:\Windows\ERDNT
2010-07-05 20:39:22 ----D---- E:\Qoobox
2010-07-05 18:20:08 ----A---- E:\Windows\system32\uxtuneup.dll
2010-07-05 18:20:08 ----A---- E:\Windows\system32\authuitu.dll
2010-07-05 13:19:03 ----D---- E:\Program Files\Spyware Doctor
2010-07-05 13:19:03 ----D---- E:\Program Files\Common Files\PC Tools
2010-07-05 13:18:55 ----AD---- E:\ProgramData\TEMP
2010-07-05 12:12:19 ----D---- E:\Users\Korman\AppData\Roaming\Malwarebytes
2010-07-05 12:11:58 ----D---- E:\ProgramData\Malwarebytes
2010-07-05 12:11:57 ----D---- E:\Program Files\Malwarebytes' Anti-Malware
2010-07-05 11:23:05 ----D---- E:\Program Files\Trend Micro
2010-07-02 21:12:14 ----D---- E:\Users\Korman\AppData\Roaming\ATI
2010-07-02 21:12:14 ----D---- E:\ProgramData\ATI
2010-07-02 21:11:39 ----D---- E:\Program Files\Common Files\ATI Technologies
2010-07-02 21:09:56 ----D---- E:\Program Files\ATI
2010-07-02 21:08:59 ----D---- E:\Program Files\ATI Technologies
2010-07-02 21:08:28 ----D---- E:\ATI
2010-07-02 11:50:08 ----D---- E:\Windows\system32\RTCOM
2010-07-02 11:49:59 ----A---- E:\Windows\DIFxAPI.dll
2010-07-02 11:49:58 ----A---- E:\Windows\system32\RtkHDMI.dll
2010-07-02 11:49:58 ----A---- E:\Windows\RtkUpd.exe
2010-07-02 11:49:57 ----A---- E:\Windows\system32\RHDMIExt.dll
2010-07-02 11:49:57 ----A---- E:\Windows\system32\RHCoInst.dll
2010-07-02 11:49:55 ----A---- E:\Windows\system32\WavesLib.dll
2010-07-02 11:49:54 ----A---- E:\Windows\system32\SRSWOW.dll
2010-07-02 11:49:54 ----A---- E:\Windows\system32\SRSTSXT.dll
2010-07-02 11:49:54 ----A---- E:\Windows\system32\SRSTSHD.dll
2010-07-02 11:49:54 ----A---- E:\Windows\SkyTel.exe
2010-07-02 11:49:53 ----A---- E:\Windows\system32\SRSHP360.dll
2010-07-02 11:49:53 ----A---- E:\Windows\system32\RtkPgExt.dll
2010-07-02 11:49:53 ----A---- E:\Windows\system32\RtkCoInst.dll
2010-07-02 11:49:53 ----A---- E:\Windows\system32\RtkApoApi.dll
2010-07-02 11:49:53 ----A---- E:\Windows\RtlUpd.exe
2010-07-02 11:49:52 ----A---- E:\Windows\system32\RtkAPO.dll
2010-07-02 11:49:51 ----A---- E:\Windows\RtHDVCpl.exe
2010-07-02 11:49:48 ----A---- E:\Windows\system32\MaxxAudioEQ.dll
2010-07-02 11:49:48 ----A---- E:\Windows\system32\MaxxAudioAPO20.dll
2010-07-02 11:49:48 ----A---- E:\Windows\system32\MaxxAudioAPO.dll
2010-07-02 11:49:47 ----D---- E:\Program Files\Realtek
2010-07-02 11:49:47 ----A---- E:\Windows\system32\FMAPO.dll
2010-07-02 11:49:44 ----R---- E:\Windows\RtlExUpd.dll
2010-07-02 11:49:44 ----A---- E:\Windows\HideWin.exe
2010-07-01 09:09:40 ----D---- E:\Program Files\Google
2010-06-30 15:51:00 ----A---- E:\Windows\system32\PnkBstrB.exe
2010-06-30 15:50:59 ----A---- E:\Windows\system32\PnkBstrA.exe
2010-06-30 15:50:56 ----A---- E:\Windows\system32\pbsvc.exe
2010-06-29 21:04:39 ----SD---- E:\Program Files\HLSW
2010-06-29 21:04:39 ----D---- E:\Users\Korman\AppData\Roaming\HLSW
2010-06-29 20:29:31 ----D---- E:\Program Files\Activision
2010-06-29 20:28:26 ----SHD---- E:\Windows\ftpcache
2010-06-29 20:13:54 ----D---- E:\Program Files\PowerISO
2010-06-27 18:57:58 ----D---- E:\Users\Korman\AppData\Roaming\Ubisoft
2010-06-27 18:57:58 ----D---- E:\ProgramData\Ubisoft
2010-06-27 18:18:11 ----A---- E:\Windows\system32\XAudio2_5.dll
2010-06-27 18:18:11 ----A---- E:\Windows\system32\xactengine3_5.dll
2010-06-27 18:18:11 ----A---- E:\Windows\system32\D3DCompiler_42.dll
2010-06-27 18:18:10 ----A---- E:\Windows\system32\D3DX9_42.dll
2010-06-27 18:18:10 ----A---- E:\Windows\system32\d3dx11_42.dll
2010-06-27 18:18:10 ----A---- E:\Windows\system32\d3dx10_42.dll
2010-06-27 18:18:10 ----A---- E:\Windows\system32\d3dx10_41.dll
2010-06-27 18:18:10 ----A---- E:\Windows\system32\d3dcsx_42.dll
2010-06-27 18:18:10 ----A---- E:\Windows\system32\D3DCompiler_41.dll
2010-06-27 18:18:09 ----A---- E:\Windows\system32\XAudio2_4.dll
2010-06-27 18:18:09 ----A---- E:\Windows\system32\XAPOFX1_3.dll
2010-06-27 18:18:09 ----A---- E:\Windows\system32\xactengine3_4.dll
2010-06-27 18:18:09 ----A---- E:\Windows\system32\X3DAudio1_6.dll
2010-06-27 18:18:09 ----A---- E:\Windows\system32\D3DX9_41.dll
2010-06-27 18:18:09 ----A---- E:\Windows\system32\d3dx10_40.dll
2010-06-27 18:18:09 ----A---- E:\Windows\system32\D3DCompiler_40.dll
2010-06-27 18:18:08 ----A---- E:\Windows\system32\XAudio2_3.dll
2010-06-27 18:18:08 ----A---- E:\Windows\system32\XAPOFX1_2.dll
2010-06-27 18:18:08 ----A---- E:\Windows\system32\xactengine3_3.dll
2010-06-27 18:18:08 ----A---- E:\Windows\system32\X3DAudio1_5.dll
2010-06-27 18:18:08 ----A---- E:\Windows\system32\D3DX9_40.dll
2010-06-27 18:18:07 ----A---- E:\Windows\system32\XAudio2_2.dll
2010-06-27 18:18:07 ----A---- E:\Windows\system32\XAudio2_1.dll
2010-06-27 18:18:07 ----A---- E:\Windows\system32\XAPOFX1_1.dll
2010-06-27 18:18:07 ----A---- E:\Windows\system32\XAPOFX1_0.dll
2010-06-27 18:18:07 ----A---- E:\Windows\system32\xactengine3_2.dll
2010-06-27 18:18:07 ----A---- E:\Windows\system32\D3DX9_39.dll
2010-06-27 18:18:07 ----A---- E:\Windows\system32\d3dx10_39.dll
2010-06-27 18:18:07 ----A---- E:\Windows\system32\D3DCompiler_39.dll
2010-06-27 18:18:06 ----A---- E:\Windows\system32\XAudio2_0.dll
2010-06-27 18:18:06 ----A---- E:\Windows\system32\xactengine3_1.dll
2010-06-27 18:18:06 ----A---- E:\Windows\system32\X3DAudio1_4.dll
2010-06-27 18:18:06 ----A---- E:\Windows\system32\D3DX9_38.dll
2010-06-27 18:18:06 ----A---- E:\Windows\system32\d3dx10_38.dll
2010-06-27 18:18:06 ----A---- E:\Windows\system32\D3DCompiler_38.dll
2010-06-27 18:18:05 ----A---- E:\Windows\system32\xactengine3_0.dll
2010-06-27 18:18:05 ----A---- E:\Windows\system32\X3DAudio1_3.dll
2010-06-27 18:18:05 ----A---- E:\Windows\system32\D3DX9_37.dll
2010-06-27 18:18:05 ----A---- E:\Windows\system32\d3dx10_37.dll
2010-06-27 18:18:05 ----A---- E:\Windows\system32\D3DCompiler_37.dll
2010-06-27 18:18:04 ----A---- E:\Windows\system32\xactengine2_9.dll
2010-06-27 18:18:04 ----A---- E:\Windows\system32\xactengine2_10.dll
2010-06-27 18:18:04 ----A---- E:\Windows\system32\d3dx9_36.dll
2010-06-27 18:18:04 ----A---- E:\Windows\system32\d3dx10_36.dll
2010-06-27 18:18:04 ----A---- E:\Windows\system32\D3DCompiler_36.dll
2010-06-27 18:18:03 ----A---- E:\Windows\system32\xactengine2_8.dll
2010-06-27 18:18:03 ----A---- E:\Windows\system32\X3DAudio1_2.dll
2010-06-27 18:18:03 ----A---- E:\Windows\system32\d3dx9_35.dll
2010-06-27 18:18:03 ----A---- E:\Windows\system32\d3dx10_35.dll
2010-06-27 18:18:03 ----A---- E:\Windows\system32\d3dx10_34.dll
2010-06-27 18:18:03 ----A---- E:\Windows\system32\D3DCompiler_35.dll
2010-06-27 18:18:03 ----A---- E:\Windows\system32\D3DCompiler_34.dll
2010-06-27 18:18:02 ----A---- E:\Windows\system32\xinput1_3.dll
2010-06-27 18:18:02 ----A---- E:\Windows\system32\xactengine2_7.dll
2010-06-27 18:18:02 ----A---- E:\Windows\system32\d3dx9_34.dll
2010-06-27 18:18:02 ----A---- E:\Windows\system32\d3dx9_33.dll
2010-06-27 18:18:02 ----A---- E:\Windows\system32\d3dx10_33.dll
2010-06-27 18:18:02 ----A---- E:\Windows\system32\D3DCompiler_33.dll
2010-06-27 18:18:01 ----A---- E:\Windows\system32\xactengine2_6.dll
2010-06-27 18:18:01 ----A---- E:\Windows\system32\xactengine2_5.dll
2010-06-27 18:18:01 ----A---- E:\Windows\system32\d3dx10.dll
2010-06-27 18:18:00 ----A---- E:\Windows\system32\xinput1_2.dll
2010-06-27 18:18:00 ----A---- E:\Windows\system32\xinput1_1.dll
2010-06-27 18:18:00 ----A---- E:\Windows\system32\xactengine2_4.dll
2010-06-27 18:18:00 ----A---- E:\Windows\system32\xactengine2_3.dll
2010-06-27 18:18:00 ----A---- E:\Windows\system32\xactengine2_2.dll
2010-06-27 18:18:00 ----A---- E:\Windows\system32\x3daudio1_1.dll
2010-06-27 18:18:00 ----A---- E:\Windows\system32\d3dx9_31.dll
2010-06-27 18:17:59 ----A---- E:\Windows\system32\xactengine2_1.dll
2010-06-27 18:17:56 ----A---- E:\Windows\system32\xactengine2_0.dll
2010-06-27 18:17:56 ----A---- E:\Windows\system32\x3daudio1_0.dll
2010-06-27 18:17:56 ----A---- E:\Windows\system32\d3dx9_30.dll
2010-06-27 18:17:56 ----A---- E:\Windows\system32\d3dx9_29.dll
2010-06-27 18:17:56 ----A---- E:\Windows\system32\d3dx9_28.dll
2010-06-27 18:17:55 ----A---- E:\Windows\system32\d3dx9_27.dll
2010-06-27 18:17:55 ----A---- E:\Windows\system32\d3dx9_26.dll
2010-06-27 18:17:55 ----A---- E:\Windows\system32\d3dx9_25.dll
2010-06-27 18:17:55 ----A---- E:\Windows\system32\d3dx9_24.dll
2010-06-27 18:09:31 ----D---- E:\Program Files\Ubisoft
2010-06-27 18:09:30 ----HD---- E:\Program Files\InstallShield Installation Information
2010-06-27 10:01:18 ----D---- E:\Program Files\PC translator
2010-06-27 10:01:06 ----A---- E:\Windows\WTRDCTM.INI
2010-06-27 09:58:10 ----D---- E:\ProgramData\LangSoft
2010-06-27 09:57:48 ----D---- E:\Users\Korman\AppData\Roaming\LangSoft
2010-06-25 19:14:09 ----D---- E:\Users\Korman\AppData\Roaming\U3
2010-06-25 06:27:18 ----A---- E:\Windows\system32\PresentationHostProxy.dll
2010-06-25 06:27:18 ----A---- E:\Windows\system32\PresentationHost.exe
2010-06-25 06:27:18 ----A---- E:\Windows\system32\netfxperf.dll
2010-06-25 06:27:18 ----A---- E:\Windows\system32\mscoree.dll
2010-06-25 06:27:18 ----A---- E:\Windows\system32\dfshim.dll
2010-06-24 20:38:33 ----A---- E:\Windows\system32\ntdll.dll
2010-06-24 20:38:31 ----A---- E:\Windows\system32\CPFilters.dll
2010-06-24 20:38:29 ----A---- E:\Windows\system32\msdri.dll
2010-06-21 06:39:26 ----D---- E:\Program Files\iPod
2010-06-21 06:39:24 ----D---- E:\Program Files\iTunes
2010-06-21 06:37:58 ----D---- E:\Program Files\Bonjour
2010-06-13 14:55:36 ----D---- E:\ProgramData\regid.1986-12.com.adobe
2010-06-13 14:45:33 ----D---- E:\Program Files\Adobe Media Player
2010-06-13 14:44:03 ----D---- E:\Program Files\Common Files\Adobe AIR
2010-06-12 20:00:55 ----D---- E:\Windows\Panther
2010-06-12 19:52:39 ----D---- E:\Windows.old
2010-06-12 19:04:41 ----D---- E:\Windows\SoftwareDistribution
2010-06-12 19:02:25 ----D---- E:\Windows\Prefetch
2010-06-12 17:33:06 ----D---- E:\Program Files\Microsoft CAPICOM 2.1.0.2
2010-06-12 16:54:25 ----A---- E:\Windows\system32\msonpmon.dll
2010-06-12 16:52:01 ----D---- E:\Program Files\Microsoft Works
2010-06-12 16:50:51 ----D---- E:\Program Files\Microsoft Visual Studio
2010-06-12 16:50:50 ----D---- E:\Program Files\Common Files\DESIGNER
2010-06-12 16:49:49 ----D---- E:\Windows\PCHEALTH
2010-06-12 16:49:48 ----D---- E:\Program Files\Microsoft.NET
2010-06-12 16:47:41 ----D---- E:\Program Files\Microsoft Visual Studio 8
2010-06-12 16:46:54 ----D---- E:\ProgramData\Microsoft Help
2010-06-12 16:46:54 ----D---- E:\Program Files\Microsoft Office
2010-06-12 13:45:15 ----D---- E:\Program Files\Lavalys
2010-06-12 13:06:07 ----D---- E:\Windows\cs-CZ
2010-06-12 13:06:02 ----D---- E:\Windows\system32\cs
2010-06-12 13:05:43 ----D---- E:\Windows\system32\XPSViewer
2010-06-12 13:01:55 ----D---- E:\ProgramData\CanonIJPLM
2010-06-12 12:54:33 ----D---- E:\ProgramData\ScanSoft
2010-06-12 12:52:21 ----D---- E:\Program Files\Common Files\InstallShield
2010-06-12 12:51:55 ----D---- E:\Program Files\Common Files\CANON
2010-06-12 12:50:06 ----HD---- E:\ProgramData\CanonBJ
2010-06-12 12:49:51 ----HD---- E:\Windows\system32\CanonIJ Uninstaller Information
2010-06-12 12:49:07 ----A---- E:\Windows\system32\CNMLM8S.DLL
2010-06-12 12:48:56 ----A---- E:\Windows\system32\CNC210O.DLL
2010-06-12 12:48:54 ----A---- E:\Windows\system32\CNC210L.DLL
2010-06-12 12:48:54 ----A---- E:\Windows\system32\CNC210I.DLL
2010-06-12 12:48:54 ----A---- E:\Windows\system32\CNC210C.DLL
2010-06-12 12:48:28 ----HD---- E:\Program Files\CanonBJ
2010-06-12 12:47:06 ----D---- E:\Program Files\Canon
2010-06-12 12:42:25 ----D---- E:\Program Files\Microsoft Sync Framework
2010-06-12 12:41:24 ----A---- E:\Windows\system32\d3dx9_32.dll
2010-06-12 12:41:18 ----D---- E:\Program Files\Microsoft SQL Server Compact Edition
2010-06-12 12:41:06 ----D---- E:\ProgramData\SlySoft
2010-06-12 12:41:02 ----D---- E:\Program Files\Microsoft
2010-06-12 12:40:55 ----D---- E:\Program Files\SlySoft
2010-06-12 12:40:34 ----D---- E:\Program Files\Windows Live SkyDrive
2010-06-12 12:40:26 ----D---- E:\Program Files\Windows Live
2010-06-12 12:39:49 ----D---- E:\ProgramData\Elaborate Bytes
2010-06-12 12:39:32 ----D---- E:\Program Files\Elaborate Bytes
2010-06-12 12:29:15 ----D---- E:\Program Files\Common Files\Windows Live
2010-06-12 12:28:01 ----D---- E:\Program Files\Microsoft Silverlight
2010-06-12 12:19:40 ----D---- E:\Windows\system32\Wat
2010-06-12 12:14:49 ----D---- E:\Users\Korman\AppData\Roaming\Ashampoo
2010-06-12 12:14:17 ----D---- E:\ProgramData\ashampoo
2010-06-12 12:13:33 ----D---- E:\Program Files\Ashampoo
2010-06-12 11:50:52 ----D---- E:\ProgramData\Data aplikací
2010-06-12 11:41:49 ----D---- E:\Program Files\Microsoft Security Essentials
2010-06-12 11:38:54 ----D---- E:\Users\Korman\AppData\Roaming\QipGuard
2010-06-12 11:35:51 ----A---- E:\Windows\system32\TURegOpt.exe
2010-06-12 11:35:35 ----D---- E:\Users\Korman\AppData\Roaming\TuneUp Software
2010-06-12 11:35:31 ----D---- E:\Program Files\TuneUp Utilities 2010
2010-06-12 11:35:30 ----D---- E:\Users\Korman\AppData\Roaming\skypePM
2010-06-12 11:35:13 ----D---- E:\ProgramData\TuneUp Software
2010-06-12 11:35:10 ----SHD---- E:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2010-06-12 11:34:38 ----D---- E:\Users\Korman\AppData\Roaming\Skype
2010-06-12 11:34:21 ----D---- E:\Program Files\Common Files\Skype
2010-06-12 11:34:20 ----RD---- E:\Program Files\Skype
2010-06-12 11:33:42 ----D---- E:\Users\Korman\AppData\Roaming\Apple Computer
2010-06-12 11:33:19 ----DC---- E:\Windows\system32\DRVSTORE
2010-06-12 11:33:19 ----A---- E:\Windows\system32\GEARAspi.dll
2010-06-12 11:33:10 ----D---- E:\ProgramData\Skype
2010-06-12 11:33:01 ----D---- E:\Program Files\QIP 2010
2010-06-12 11:32:18 ----D---- E:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2010-06-12 11:31:32 ----D---- E:\ProgramData\Apple Computer
2010-06-12 11:31:32 ----D---- E:\Program Files\QuickTime
2010-06-12 11:31:21 ----D---- E:\Program Files\Apple Software Update
2010-06-12 11:30:23 ----D---- E:\ProgramData\Apple
2010-06-12 11:30:23 ----D---- E:\Program Files\Common Files\Apple
2010-06-12 11:28:34 ----D---- E:\Users\Korman\AppData\Roaming\Opera
2010-06-12 11:28:29 ----D---- E:\Program Files\Opera
2010-06-12 11:24:08 ----D---- E:\Program Files\Xilisoft
2010-06-12 11:23:55 ----A---- E:\Windows\system32\BASSMOD.dll
2010-06-12 11:22:14 ----D---- E:\Users\Korman\AppData\Roaming\WinRAR
2010-06-12 11:22:06 ----D---- E:\Program Files\WinRAR
2010-06-12 11:19:52 ----D---- E:\Program Files\iPhone Folders
2010-06-12 11:14:55 ----D---- E:\Program Files\Mumble
2010-06-12 11:14:20 ----D---- E:\Program Files\TeamSpeak 3 Client
2010-06-12 11:09:54 ----D---- E:\ProgramData\Spybot - Search & Destroy
2010-06-12 11:09:54 ----D---- E:\Program Files\Spybot - Search & Destroy
2010-06-12 11:07:00 ----D---- E:\ProgramData\Adobe
2010-06-12 11:06:57 ----D---- E:\Program Files\Common Files\Adobe
2010-06-12 11:06:57 ----D---- E:\Program Files\Adobe
2010-06-12 11:06:36 ----D---- E:\Program Files\Common Files\Steam
2010-06-12 11:06:35 ----D---- E:\Program Files\Steam
2010-06-12 11:04:40 ----D---- E:\Program Files\CCleaner
2010-06-12 11:04:15 ----D---- E:\Users\Korman\AppData\Roaming\vlc
2010-06-12 11:04:04 ----D---- E:\Program Files\CountDown ShutDown PC
2010-06-12 11:03:43 ----D---- E:\Program Files\VideoLAN
2010-06-12 11:02:05 ----D---- E:\Program Files\Ask.com
2010-06-12 11:02:00 ----SHD---- E:\Windows\Installer
2010-06-12 11:01:53 ----D---- E:\Program Files\uTorrent
2010-06-12 11:01:26 ----D---- E:\Users\Korman\AppData\Roaming\uTorrent
2010-06-12 11:00:41 ----D---- E:\Users\Korman\AppData\Roaming\Macromedia
2010-06-12 11:00:41 ----D---- E:\Users\Korman\AppData\Roaming\Adobe
2010-06-12 11:00:37 ----D---- E:\Windows\system32\Macromed
2010-06-12 10:57:57 ----D---- E:\Windows\Minidump
2010-06-12 10:50:43 ----D---- E:\Users\Korman\AppData\Roaming\Mozilla
2010-06-12 10:50:23 ----D---- E:\Program Files\Mozilla Firefox
2010-06-12 10:44:06 ----A---- E:\Windows\system32\msv1_0.dll
2010-06-12 10:27:24 ----A---- E:\Windows\system32\MRT.exe
2010-06-12 10:26:55 ----A---- E:\Windows\system32\browserchoice.exe
2010-06-12 10:26:49 ----N---- E:\Windows\system32\MpSigStub.exe
2010-06-12 10:26:38 ----D---- E:\Windows\PixArt
2010-06-12 10:26:36 ----A---- E:\Windows\system32\PerfStringBackup.INI
2010-06-12 10:25:46 ----A---- E:\Windows\system32\wmp.dll
2010-06-12 10:25:45 ----A---- E:\Windows\system32\wmploc.DLL
2010-06-12 10:25:45 ----A---- E:\Windows\system32\winresume.exe
2010-06-12 10:25:45 ----A---- E:\Windows\system32\winload.exe
2010-06-12 10:25:45 ----A---- E:\Windows\system32\CertEnroll.dll
2010-06-12 10:25:42 ----A---- E:\Windows\system32\mshtml.dll
2010-06-12 10:25:42 ----A---- E:\Windows\system32\ieframe.dll
2010-06-12 10:25:41 ----A---- E:\Windows\system32\wininet.dll
2010-06-12 10:25:41 ----A---- E:\Windows\system32\urlmon.dll
2010-06-12 10:25:41 ----A---- E:\Windows\system32\mstime.dll
2010-06-12 10:25:41 ----A---- E:\Windows\system32\msfeedsbs.dll
2010-06-12 10:25:41 ----A---- E:\Windows\system32\jsproxy.dll
2010-06-12 10:25:41 ----A---- E:\Windows\system32\iedkcs32.dll
2010-06-12 10:25:40 ----A---- E:\Windows\system32\shell32.dll
2010-06-12 10:25:40 ----A---- E:\Windows\system32\secproc_ssp_isv.dll
2010-06-12 10:25:40 ----A---- E:\Windows\system32\secproc_ssp.dll
2010-06-12 10:25:40 ----A---- E:\Windows\system32\secproc_isv.dll
2010-06-12 10:25:40 ----A---- E:\Windows\system32\secproc.dll
2010-06-12 10:25:40 ----A---- E:\Windows\system32\RMActivate_ssp_isv.exe
2010-06-12 10:25:40 ----A---- E:\Windows\system32\RMActivate_ssp.exe
2010-06-12 10:25:40 ----A---- E:\Windows\system32\RMActivate_isv.exe
2010-06-12 10:25:40 ----A---- E:\Windows\system32\RMActivate.exe
2010-06-12 10:25:39 ----A---- E:\Windows\system32\lsasrv.dll
2010-06-12 10:25:37 ----A---- E:\Windows\system32\psisdecd.dll
2010-06-12 10:25:36 ----A---- E:\Windows\system32\quartz.dll
2010-06-12 10:25:36 ----A---- E:\Windows\system32\msyuv.dll
2010-06-12 10:25:36 ----A---- E:\Windows\system32\msvidc32.dll
2010-06-12 10:25:36 ----A---- E:\Windows\system32\mciavi32.dll
2010-06-12 10:25:36 ----A---- E:\Windows\system32\iyuv_32.dll
2010-06-12 10:25:36 ----A---- E:\Windows\system32\avifil32.dll
2010-06-12 10:25:35 ----A---- E:\Windows\system32\tsbyuv.dll
2010-06-12 10:25:35 ----A---- E:\Windows\system32\msrle32.dll
2010-06-12 10:25:33 ----A---- E:\Windows\system32\wintrust.dll
2010-06-12 10:25:33 ----A---- E:\Windows\system32\winlogon.exe
2010-06-12 10:25:33 ----A---- E:\Windows\explorer.exe
2010-06-12 10:25:32 ----A---- E:\Windows\system32\inetcomm.dll
2010-06-12 10:25:31 ----A---- E:\Windows\system32\ntoskrnl.exe
2010-06-12 10:25:31 ----A---- E:\Windows\system32\ntkrnlpa.exe
2010-06-12 10:25:30 ----A---- E:\Windows\system32\t2embed.dll
2010-06-12 10:25:29 ----A---- E:\Windows\system32\jscript.dll
2010-06-12 10:25:19 ----A---- E:\Windows\system32\asycfilt.dll
2010-06-12 10:25:18 ----A---- E:\Windows\system32\tzres.dll
2010-06-12 10:25:17 ----A---- E:\Windows\system32\vbscript.dll
2010-06-12 10:25:15 ----A---- E:\Windows\system32\msasn1.dll
2010-06-12 10:25:02 ----A---- E:\Windows\system32\fontsub.dll
2010-06-12 10:25:02 ----A---- E:\Windows\system32\atmlib.dll
2010-06-12 10:25:02 ----A---- E:\Windows\system32\atmfd.dll
2010-06-12 10:23:52 ----A---- E:\Windows\system32\cabview.dll
2010-06-12 10:20:45 ----D---- E:\Users\Korman\AppData\Roaming\Identities
2010-06-12 10:20:32 ----SD---- E:\Users\Korman\AppData\Roaming\Microsoft
2010-06-12 10:20:32 ----D---- E:\Users\Korman\AppData\Roaming\Media Center Programs
2010-06-12 10:16:28 ----D---- E:\Recovery
2010-06-11 23:13:37 ----D---- E:\953be2f9c0bd14e2867053cebf97

======List of files/folders modified in the last 1 months======

2010-07-05 20:56:54 ----D---- E:\Windows
2010-07-05 20:53:16 ----A---- E:\Windows\system.ini
2010-07-05 20:47:59 ----D---- E:\Windows\system32\drivers
2010-07-05 20:47:59 ----D---- E:\Windows\System32
2010-07-05 20:47:59 ----D---- E:\Windows\AppPatch
2010-07-05 20:47:57 ----D---- E:\Program Files\Common Files
2010-07-05 20:41:00 ----D---- E:\Windows\inf
2010-07-05 20:37:00 ----D---- E:\Windows\system32\config
2010-07-05 20:33:55 ----D---- E:\ProgramData
2010-07-05 20:19:23 ----RD---- E:\Program Files
2010-07-05 20:09:36 ----D---- E:\Config.Msi
2010-07-05 20:09:35 ----D---- E:\Windows\Microsoft.NET
2010-07-05 11:25:55 ----SHD---- E:\System Volume Information
2010-07-04 08:40:25 ----D---- E:\Windows\system32\wdi
2010-07-02 21:11:04 ----D---- E:\Windows\system32\catroot
2010-07-02 21:10:43 ----D---- E:\Windows\system32\DriverStore
2010-07-02 21:10:18 ----D---- E:\Windows\winsxs
2010-07-02 10:00:20 ----D---- E:\Windows\system32\NDF
2010-07-01 16:00:01 ----D---- E:\Windows\system32\catroot2
2010-06-30 15:50:47 ----D---- E:\Windows\system32\LogFiles
2010-06-30 12:50:26 ----D---- E:\Windows\system32\Tasks
2010-06-27 18:17:59 ----RSD---- E:\Windows\assembly
2010-06-27 18:17:14 ----D---- E:\Windows\Logs
2010-06-25 06:29:47 ----D---- E:\Windows\ehome
2010-06-25 06:28:13 ----D---- E:\Windows\system32\en-US
2010-06-17 16:52:01 ----RSD---- E:\Windows\Fonts
2010-06-13 20:41:54 ----SD---- E:\ProgramData\Microsoft
2010-06-13 11:56:53 ----D---- E:\Windows\rescache
2010-06-12 19:11:33 ----D---- E:\Windows\system32\CodeIntegrity
2010-06-12 19:02:22 ----D---- E:\Windows\CSC
2010-06-12 17:33:19 ----D---- E:\Windows\system32\cs-CZ
2010-06-12 17:30:54 ----D---- E:\Program Files\Common Files\microsoft shared
2010-06-12 17:28:51 ----D---- E:\Program Files\Common Files\System
2010-06-12 17:28:51 ----A---- E:\Windows\win.ini
2010-06-12 16:51:34 ----D---- E:\Program Files\MSBuild
2010-06-12 16:50:43 ----D---- E:\Windows\ShellNew
2010-06-12 13:06:14 ----D---- E:\Program Files\Windows Sidebar
2010-06-12 13:06:14 ----D---- E:\Program Files\Windows Mail
2010-06-12 13:06:13 ----D---- E:\Program Files\DVD Maker
2010-06-12 13:06:12 ----D---- E:\Program Files\Windows Media Player
2010-06-12 13:06:12 ----D---- E:\Program Files\Windows Journal
2010-06-12 13:06:12 ----D---- E:\Program Files\Internet Explorer
2010-06-12 13:06:11 ----D---- E:\Windows\servicing
2010-06-12 13:06:11 ----D---- E:\Program Files\Windows Photo Viewer
2010-06-12 13:06:11 ----D---- E:\Program Files\Windows Defender
2010-06-12 13:06:07 ----D---- E:\Windows\IME
2010-06-12 13:06:03 ----D---- E:\Windows\system32\winrm
2010-06-12 13:06:03 ----D---- E:\Windows\system32\oobe
2010-06-12 13:06:03 ----D---- E:\Windows\system32\migwiz
2010-06-12 13:06:03 ----D---- E:\Windows\PolicyDefinitions
2010-06-12 13:06:02 ----D---- E:\Windows\system32\sysprep
2010-06-12 13:06:02 ----D---- E:\Windows\system32\slmgr
2010-06-12 13:06:02 ----D---- E:\Windows\system32\migration
2010-06-12 13:06:02 ----D---- E:\Windows\system32\Boot
2010-06-12 13:05:42 ----D---- E:\Windows\system32\WCN
2010-06-12 13:05:42 ----D---- E:\Windows\system32\MUI
2010-06-12 13:05:42 ----D---- E:\Windows\system32\Dism
2010-06-12 13:05:24 ----D---- E:\Windows\system32\Printing_Admin_Scripts
2010-06-12 13:05:09 ----D---- E:\Windows\system32\wbem
2010-06-12 13:05:09 ----D---- E:\Windows\system32\com
2010-06-12 13:01:11 ----RSD---- E:\Windows\Media
2010-06-12 12:55:52 ----D---- E:\Windows\Downloaded Program Files
2010-06-12 12:49:50 ----D---- E:\Windows\twain_32
2010-06-12 11:04:50 ----D---- E:\Windows\debug
2010-06-12 10:51:10 ----D---- E:\Windows\Registration
2010-06-12 10:27:41 ----D---- E:\Users\Korman\AppData\Roaming\Xilisoft Corporation
2010-06-12 10:27:17 ----RD---- E:\Users
2010-06-12 10:25:56 ----D---- E:\Windows\system32\restore

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 blbdrive;blbdrive; E:\Windows\system32\DRIVERS\blbdrive.sys [2009-07-14 35328]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; E:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 DfsC;@%systemroot%\system32\drivers\dfsc.sys,-101; E:\Windows\System32\Drivers\dfsc.sys [2009-07-14 78336]
R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; E:\Windows\System32\drivers\discache.sys [2009-07-14 32256]
R1 ElbyCDIO;ElbyCDIO Driver; E:\Windows\System32\Drivers\ElbyCDIO.sys [2009-12-18 26024]
R1 MpFilter;Microsoft Malware Protection Driver; E:\Windows\system32\DRIVERS\MpFilter.sys [2010-03-25 151216]
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; E:\Windows\system32\drivers\nsiproxy.sys [2009-07-14 16896]
R1 RDPENCDD;@%systemroot%\system32\drivers\RDPENCDD.sys,-101; E:\Windows\system32\drivers\rdpencdd.sys [2009-07-14 6656]
R1 RDPREFMP;@%systemroot%\system32\drivers\RdpRefMp.sys,-101; E:\Windows\system32\drivers\rdprefmp.sys [2009-07-14 7168]
R1 SCDEmu;SCDEmu; E:\Windows\system32\drivers\SCDEmu.sys [2009-11-09 59388]
R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; E:\Windows\system32\DRIVERS\tdx.sys [2009-07-14 74240]
R1 Wanarpv6;@%systemroot%\system32\rascfg.dll,-32012; E:\Windows\system32\DRIVERS\wanarp.sys [2009-07-14 63488]
R1 WfpLwf;WFP Lightweight Filter; E:\Windows\system32\DRIVERS\wfplwf.sys [2009-07-14 9728]
R2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver; E:\Windows\system32\DRIVERS\lltdio.sys [2009-07-14 48128]
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; E:\Windows\system32\drivers\luafv.sys [2009-07-14 86528]
R2 PEAUTH;PEAUTH; E:\Windows\system32\drivers\peauth.sys [2009-07-14 586752]
R2 rspndr;Link-Layer Topology Discovery Responder; E:\Windows\system32\DRIVERS\rspndr.sys [2009-07-14 60928]
R2 tcpipreg;TCP/IP Registry Compatibility; E:\Windows\System32\drivers\tcpipreg.sys [2009-07-14 34816]
R3 1394ohci;1394 OHCI Compliant Host Controller; E:\Windows\system32\DRIVERS\1394ohci.sys [2009-07-14 163328]
R3 AmdK8;AMD K8 Processor Driver; E:\Windows\system32\DRIVERS\amdk8.sys [2009-07-14 55296]
R3 amdkmdag;amdkmdag; E:\Windows\system32\DRIVERS\atikmdag.sys [2010-05-27 5586432]
R3 amdkmdap;amdkmdap; E:\Windows\system32\DRIVERS\atikmpag.sys [2010-05-27 209920]
R3 bowser;@%systemroot%\system32\browser.dll,-102; E:\Windows\system32\DRIVERS\bowser.sys [2009-07-14 69632]
R3 CompositeBus;Composite Bus Enumerator Driver; E:\Windows\system32\DRIVERS\CompositeBus.sys [2009-07-14 31232]
R3 DXGKrnl;LDDM Graphics Subsystem; E:\Windows\System32\drivers\dxgkrnl.sys [2009-10-02 728648]
R3 ElbyCDFL;ElbyCDFL; E:\Windows\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; E:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; E:\Windows\system32\DRIVERS\HDAudBus.sys [2009-07-14 108544]
R3 HidUsb;Microsoft HID Class Driver; E:\Windows\system32\DRIVERS\hidusb.sys [2009-07-14 24064]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); E:\Windows\system32\drivers\RTKVHDA.sys [2008-07-03 2152088]
R3 monitor;Microsoft Monitor Class Function Driver Service; E:\Windows\system32\DRIVERS\monitor.sys [2009-07-14 23552]
R3 mouhid;Mouse HID Driver; E:\Windows\system32\DRIVERS\mouhid.sys [2009-07-14 26112]
R3 MpNWMon;Microsoft Malware Protection Network Driver; E:\Windows\system32\DRIVERS\MpNWMon.sys [2010-03-25 42368]
R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; E:\Windows\System32\drivers\mpsdrv.sys [2009-07-14 60416]
R3 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; E:\Windows\system32\DRIVERS\mrxsmb10.sys [2010-02-27 221696]
R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; E:\Windows\system32\DRIVERS\mrxsmb20.sys [2010-02-27 95744]
R3 PAC207;SoC PC-Camera; E:\Windows\system32\DRIVERS\PFC027.SYS [2006-12-05 507136]
R3 RasAgileVpn;WAN Miniport (IKEv2); E:\Windows\system32\DRIVERS\AgileVpn.sys [2009-07-14 49152]
R3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; E:\Windows\system32\DRIVERS\rassstp.sys [2009-07-14 75264]
R3 rdpbus;Remote Desktop Device Redirector Bus Driver; E:\Windows\system32\DRIVERS\rdpbus.sys [2009-07-14 18944]
R3 RTHDMIAzAudService;Service for HDMI; E:\Windows\system32\drivers\RtHDMIV.sys [2008-06-18 147168]
R3 RTL8167;Realtek 8167 NT Driver; E:\Windows\system32\DRIVERS\Rt86win7.sys [2009-11-05 230912]
R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; E:\Windows\System32\DRIVERS\srv2.sys [2009-07-14 306688]
R3 srvnet;srvnet; E:\Windows\System32\DRIVERS\srvnet.sys [2009-12-08 113664]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\E:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2010-02-25 10064]
R3 tunnel;Microsoft Tunnel Miniport Adapter Driver; E:\Windows\system32\DRIVERS\tunnel.sys [2009-07-14 108544]
R3 umbus;UMBus Enumerator Driver; E:\Windows\system32\DRIVERS\umbus.sys [2009-07-14 39936]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; E:\Windows\system32\DRIVERS\usbehci.sys [2009-07-14 41472]
R3 usbhub;Microsoft USB Standard Hub Driver; E:\Windows\system32\DRIVERS\usbhub.sys [2009-07-14 258560]
R3 usbohci;Microsoft USB Open Host Controller Miniport Driver; E:\Windows\system32\DRIVERS\usbohci.sys [2009-07-14 20480]
R3 USBSTOR;USB Mass Storage Driver; E:\Windows\system32\DRIVERS\USBSTOR.SYS [2009-07-14 74752]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; E:\Windows\system32\DRIVERS\wmiacpi.sys [2009-07-14 11264]
R3 WudfPf;User Mode Driver Frameworks Platform Driver; E:\Windows\system32\drivers\WudfPf.sys [2009-07-14 92672]
R3 WUDFRd;WUDFRd; E:\Windows\system32\DRIVERS\WUDFRd.sys [2009-07-14 132224]
R4 MBAMProtector;MBAMProtector; \??\E:\Windows\system32\drivers\mbam.sys []
R4 PCTCore;PCTools KDS; E:\Windows\system32\drivers\PCTCore.sys []
S3 AcpiPmi;ACPI Power Meter Driver; E:\Windows\system32\DRIVERS\acpipmi.sys [2009-07-14 9728]
S3 adp94xx;adp94xx; E:\Windows\system32\DRIVERS\adp94xx.sys [2009-07-14 422976]
S3 adpahci;adpahci; E:\Windows\system32\DRIVERS\adpahci.sys [2009-07-14 297552]
S3 adpu320;adpu320; E:\Windows\system32\DRIVERS\adpu320.sys [2009-07-14 146512]
S3 agp440;Intel AGP Bus Filter; E:\Windows\system32\DRIVERS\agp440.sys [2009-07-14 53312]
S3 amdagp;AMD AGP Bus Filter Driver; E:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 amdide;amdide; E:\Windows\system32\DRIVERS\amdide.sys [2009-07-14 14912]
S3 AmdPPM;AMD Processor Driver; E:\Windows\system32\DRIVERS\amdppm.sys [2009-07-14 52736]
S3 amdsata;amdsata; E:\Windows\system32\DRIVERS\amdsata.sys [2009-07-14 79952]
S3 amdsbs;amdsbs; E:\Windows\system32\DRIVERS\amdsbs.sys [2009-07-14 159312]
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; E:\Windows\system32\drivers\appid.sys [2009-07-14 50176]
S3 arc;arc; E:\Windows\system32\DRIVERS\arc.sys [2009-07-14 76368]
S3 arcsas;arcsas; E:\Windows\system32\DRIVERS\arcsas.sys [2009-07-14 86608]
S3 atikmdag;atikmdag; E:\Windows\system32\DRIVERS\atikmdag.sys [2010-05-27 5586432]
S3 b06bdrv;Broadcom NetXtreme II VBD; E:\Windows\system32\DRIVERS\bxvbdx.sys [2009-07-14 430080]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; E:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BrFiltLo;Brother USB Mass-Storage Lower Filter Driver; E:\Windows\system32\DRIVERS\BrFiltLo.sys [2009-07-14 13568]
S3 BrFiltUp;Brother USB Mass-Storage Upper Filter Driver; E:\Windows\system32\DRIVERS\BrFiltUp.sys [2009-07-14 5248]
S3 Brserid;Brother MFC Serial Port Interface Driver (WDM); E:\Windows\System32\Drivers\Brserid.sys [2009-07-14 272128]
S3 BrSerWdm;Brother WDM Serial driver; E:\Windows\System32\Drivers\BrSerWdm.sys [2009-07-14 62336]
S3 BrUsbMdm;Brother MFC USB Fax Only Modem; E:\Windows\System32\Drivers\BrUsbMdm.sys [2009-07-14 12160]
S3 BrUsbSer;Brother MFC USB Serial WDM Driver; E:\Windows\System32\Drivers\BrUsbSer.sys [2009-07-14 11904]
S3 BTHMODEM;Bluetooth Serial Communications Driver; E:\Windows\system32\DRIVERS\bthmodem.sys [2009-07-14 56320]
S3 catchme;catchme; \??\E:\Users\Korman\AppData\Local\Temp\catchme.sys []
S3 circlass;Consumer IR Devices; E:\Windows\system32\DRIVERS\circlass.sys [2009-07-14 37888]
S3 CmBatt;Microsoft ACPI Control Method Battery Driver; E:\Windows\system32\DRIVERS\CmBatt.sys [2009-07-14 14080]
S3 Compbatt;Compbatt; E:\Windows\system32\DRIVERS\compbatt.sys [2009-07-14 19024]
S3 ebdrv;Broadcom NetXtreme II 10 GigE VBD; E:\Windows\system32\DRIVERS\evbdx.sys [2009-07-14 3100160]
S3 elxstor;elxstor; E:\Windows\system32\DRIVERS\elxstor.sys [2009-07-14 453712]
S3 ErrDev;Microsoft Hardware Error Device Driver; E:\Windows\system32\DRIVERS\errdev.sys [2009-07-14 7168]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\E:\Program Files\Lavalys\EVEREST Corporate Edition\kerneld.wnt [2010-03-31 27760]
S3 exfat;exFAT File System Driver; E:\Windows\system32\drivers\exfat.sys [2009-07-14 142336]
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; E:\Windows\system32\drivers\filetrace.sys [2009-07-14 28160]
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; E:\Windows\System32\drivers\FsDepends.sys [2009-07-14 46160]
S3 fssfltr;FssFltr; E:\Windows\system32\DRIVERS\fssfltr.sys [2010-04-28 54632]
S3 gagp30kx;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms; E:\Windows\system32\DRIVERS\gagp30kx.sys [2009-07-14 57936]
S3 hcw85cir;Hauppauge Consumer Infrared Receiver; E:\Windows\system32\drivers\hcw85cir.sys [2009-07-14 26624]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; E:\Windows\system32\drivers\HdAudio.sys [2009-07-14 304128]
S3 HidBatt;HID UPS Battery Driver; E:\Windows\system32\DRIVERS\HidBatt.sys [2009-07-14 21504]
S3 HidBth;Microsoft Bluetooth HID Miniport; E:\Windows\system32\DRIVERS\hidbth.sys [2009-07-14 91136]
S3 HidIr;Microsoft Infrared HID Driver; E:\Windows\system32\DRIVERS\hidir.sys [2009-07-14 37888]
S3 HpSAMD;HpSAMD; E:\Windows\system32\DRIVERS\HpSAMD.sys [2009-07-14 67152]
S3 iaStorV;iaStorV; E:\Windows\system32\DRIVERS\iaStorV.sys [2009-07-14 332352]
S3 iirsp;iirsp; E:\Windows\system32\DRIVERS\iirsp.sys [2009-07-14 41040]
S3 intelide;intelide; E:\Windows\system32\DRIVERS\intelide.sys [2009-07-14 15424]
S3 intelppm;Intel Processor Driver; E:\Windows\system32\DRIVERS\intelppm.sys [2009-07-14 53760]
S3 IPMIDRV;IPMIDRV; E:\Windows\system32\DRIVERS\IPMIDrv.sys [2009-07-14 65536]
S3 isapnp;isapnp; E:\Windows\system32\DRIVERS\isapnp.sys [2009-07-14 46656]
S3 iScsiPrt;iScsiPort Driver; E:\Windows\system32\DRIVERS\msiscsi.sys [2009-07-14 186960]
S3 kbdhid;Keyboard HID Driver; E:\Windows\system32\DRIVERS\kbdhid.sys [2009-07-14 28160]
S3 LSI_FC;LSI_FC; E:\Windows\system32\DRIVERS\lsi_fc.sys [2009-07-14 95824]
S3 LSI_SAS;LSI_SAS; E:\Windows\system32\DRIVERS\lsi_sas.sys [2009-07-14 89168]
S3 LSI_SAS2;LSI_SAS2; E:\Windows\system32\DRIVERS\lsi_sas2.sys [2009-07-14 54864]
S3 LSI_SCSI;LSI_SCSI; E:\Windows\system32\DRIVERS\lsi_scsi.sys [2009-07-14 96848]
S3 mbr;mbr; \??\E:\Users\Korman\AppData\Local\Temp\mbr.sys []
S3 megasas;megasas; E:\Windows\system32\DRIVERS\megasas.sys [2009-07-14 30800]
S3 MegaSR;MegaSR; E:\Windows\system32\DRIVERS\MegaSR.sys [2009-07-14 235584]
S3 mpio;mpio; E:\Windows\system32\DRIVERS\mpio.sys [2009-07-14 130624]
S3 msahci;msahci; E:\Windows\system32\DRIVERS\msahci.sys [2009-07-14 27712]
S3 msdsm;msdsm; E:\Windows\system32\DRIVERS\msdsm.sys [2009-07-14 115792]
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; E:\Windows\System32\drivers\mshidkmdf.sys [2009-07-14 4096]
S3 MsRPC;MsRPC; E:\Windows\system32\drivers\MsRPC.sys [2009-07-14 162896]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; E:\Windows\system32\drivers\MSTEE.sys [2009-07-14 6144]
S3 MTConfig;Microsoft Input Configuration Driver; E:\Windows\system32\DRIVERS\MTConfig.sys [2009-07-14 12288]
S3 NativeWifiP;NativeWiFi Filter; E:\Windows\system32\DRIVERS\nwifi.sys [2009-07-14 267264]
S3 NdisCap;NDIS Capture LightWeight Filter; E:\Windows\system32\DRIVERS\ndiscap.sys [2009-07-14 27136]
S3 nfrd960;nfrd960; E:\Windows\system32\DRIVERS\nfrd960.sys [2009-07-14 44624]
S3 nv_agp;NVIDIA nForce AGP Bus Filter; E:\Windows\system32\DRIVERS\nv_agp.sys [2009-07-14 105024]
S3 nvraid;nvraid; E:\Windows\system32\DRIVERS\nvraid.sys [2009-07-14 117312]
S3 nvstor;nvstor; E:\Windows\system32\DRIVERS\nvstor.sys [2009-07-14 142416]
S3 ohci1394;1394 OHCI Compliant Host Controller (Legacy); E:\Windows\system32\DRIVERS\ohci1394.sys [2009-07-14 62464]
S3 ql2300;ql2300; E:\Windows\system32\DRIVERS\ql2300.sys [2009-07-14 1383488]
S3 ql40xx;ql40xx; E:\Windows\system32\DRIVERS\ql40xx.sys [2009-07-14 106064]
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; E:\Windows\system32\drivers\qwavedrv.sys [2009-07-14 31744]
S3 s3cap;s3cap; E:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sbp2port;sbp2port; E:\Windows\system32\DRIVERS\sbp2port.sys [2009-07-14 85568]
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; E:\Windows\System32\DRIVERS\scfilter.sys [2009-07-14 26624]
S3 sermouse;Serial Mouse Driver; E:\Windows\system32\DRIVERS\sermouse.sys [2009-07-14 19968]
S3 sffdisk;SFF Storage Class Driver; E:\Windows\system32\DRIVERS\sffdisk.sys [2009-07-14 11264]
S3 sffp_mmc;SFF Storage Protocol Driver for MMC; E:\Windows\system32\DRIVERS\sffp_mmc.sys [2009-07-14 12288]
S3 sffp_sd;SFF Storage Protocol Driver for SDBus; E:\Windows\system32\DRIVERS\sffp_sd.sys [2009-10-10 12800]
S3 sisagp;SIS AGP Bus Filter; E:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 SiSRaid2;SiSRaid2; E:\Windows\system32\DRIVERS\SiSRaid2.sys [2009-07-14 40016]
S3 SiSRaid4;SiSRaid4; E:\Windows\system32\DRIVERS\sisraid4.sys [2009-07-14 77888]
S3 Smb;@%SystemRoot%\system32\tcpipcfg.dll,-50005; E:\Windows\system32\DRIVERS\smb.sys [2009-07-14 71168]
S3 stexstor;stexstor; E:\Windows\system32\DRIVERS\stexstor.sys [2009-07-14 21072]
S3 storvsc;storvsc; E:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 TCPIP6;Microsoft IPv6 Protocol Driver; E:\Windows\system32\DRIVERS\tcpip.sys [2009-07-14 1285712]
S3 tssecsrv;@%SystemRoot%\System32\DRIVERS\tssecsrv.sys,-101; E:\Windows\System32\DRIVERS\tssecsrv.sys [2009-07-14 30208]
S3 uagp35;Microsoft AGPv3.5 Filter; E:\Windows\system32\DRIVERS\uagp35.sys [2009-07-14 55888]
S3 uliagpkx;Uli AGP Bus Filter; E:\Windows\system32\DRIVERS\uliagpkx.sys [2009-07-14 57424]
S3 UmPass;Microsoft UMPass Driver; E:\Windows\system32\DRIVERS\umpass.sys [2009-07-14 8192]
S3 USBAAPL;Apple Mobile USB Driver; E:\Windows\System32\Drivers\usbaapl.sys [2010-04-19 41984]
S3 usbccgp;Microsoft USB Generic Parent Driver; E:\Windows\system32\DRIVERS\usbccgp.sys [2009-07-14 75264]
S3 usbcir;eHome Infrared Receiver (USBCIR); E:\Windows\system32\DRIVERS\usbcir.sys [2009-07-14 86016]
S3 usbprint;Microsoft USB PRINTER Class; E:\Windows\system32\DRIVERS\usbprint.sys [2009-07-14 19968]
S3 usbscan;USB Scanner Driver; E:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; E:\Windows\system32\DRIVERS\usbuhci.sys [2009-07-14 24064]
S3 vga;vga; E:\Windows\system32\DRIVERS\vgapnp.sys [2009-07-14 26112]
S3 vhdmp;vhdmp; E:\Windows\system32\DRIVERS\vhdmp.sys [2009-07-14 159824]
S3 viaagp;VIA AGP Bus Filter; E:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; E:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; E:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; E:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 vsmraid;vsmraid; E:\Windows\system32\DRIVERS\vsmraid.sys [2009-07-14 141904]
S3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; E:\Windows\System32\drivers\vwifibus.sys [2009-07-14 19968]
S3 WacomPen;Wacom Serial Pen HID Driver; E:\Windows\system32\DRIVERS\wacompen.sys [2009-07-14 21632]
S3 Wd;Wd; E:\Windows\system32\DRIVERS\wd.sys [2009-07-14 19024]
S3 WIMMount;WIMMount; E:\Windows\system32\drivers\wimmount.sys [2009-07-14 19008]
S3 WinUsb;WinUsb; E:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]
S4 crcdisk;Crcdisk Filter Driver; E:\Windows\system32\DRIVERS\crcdisk.sys [2009-07-14 22096]
S4 ws2ifsl;@%systemroot%\System32\drivers\ws2ifsl.sys,-1000; E:\Windows\system32\drivers\ws2ifsl.sys [2009-07-14 16384]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; E:\Windows\system32\atiesrxx.exe [2010-05-27 176128]
R2 Apple Mobile Device;Apple Mobile Device; E:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-06-10 144176]
R2 AudioEndpointBuilder;@%SystemRoot%\system32\audiosrv.dll,-204; E:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; E:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 Bonjour Service;Bonjour Service; E:\Program Files\Bonjour\mDNSResponder.exe [2010-05-18 345376]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; E:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DPS;@%systemroot%\system32\dps.dll,-500; E:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; E:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 gpsvc;@gpapi.dll,-112; E:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 IJPLMSVC;PIXMA Extended Survey Program; E:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2007-04-13 101528]
R2 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; E:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; E:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; E:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 MsMpSvc;Microsoft Antimalware Service; e:\Program Files\Microsoft Security Essentials\MsMpEng.exe [2010-03-25 17904]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; E:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; E:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 PnkBstrA;PnkBstrA; E:\Windows\system32\PnkBstrA.exe [2010-06-30 75064]
R2 PnkBstrB;PnkBstrB; E:\Windows\system32\PnkBstrB.exe [2010-07-02 214520]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; E:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; E:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; E:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 SeaPort;SeaPort; E:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; E:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; E:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-06-14 1051976]
R2 UxSms;@%SystemRoot%\system32\dwm.exe,-2000; E:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; E:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 WMPNetworkSvc;@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101; E:\Program Files\Windows Media Player\wmpnetwk.exe [2009-07-14 1121280]
R2 WSearch;@%systemroot%\system32\SearchIndexer.exe,-103; E:\Windows\system32\SearchIndexer.exe [2009-07-14 428032]
R2 wudfsvc;@%SystemRoot%\system32\wudfsvc.dll,-1000; E:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; E:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; E:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; E:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; E:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; E:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 KeyIso;@keyiso.dll,-100; E:\Windows\system32\lsass.exe [2009-07-14 22528]
R3 netprofm;@%SystemRoot%\system32\netprofm.dll,-202; E:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; E:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; E:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; E:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; E:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; E:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 WPDBusEnum;@%SystemRoot%\system32\wpdbusenum.dll,-100; E:\Windows\system32\svchost.exe [2009-07-14 20992]
R4 MBAMService;MBAMService; E:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-04-29 304464]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; E:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; E:\Windows\system32\sppsvc.exe [2009-07-14 3179520]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; E:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; E:\Windows\System32\lsass.exe [2009-07-14 22528]
S3 ehRecvr;@%SystemRoot%\ehome\ehrecvr.exe,-101; E:\Windows\ehome\ehRecvr.exe [2010-05-09 556032]
S3 ehSched;@%SystemRoot%\ehome\ehsched.exe,-101; E:\Windows\ehome\ehsched.exe [2009-07-14 94720]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; E:\Windows\system32\fxssvc.exe [2009-07-14 522752]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; E:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2009-06-10 42856]
S3 fsssvc;Windows Live Family Safety Service; E:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-04-28 704872]
S3 gusvc;Google Updater Service; E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-12-22 136120]
S3 idsvc;@%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8193; E:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2009-06-10 878416]
S3 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 IPBusEnum;@%systemroot%\system32\IPBusEnum.dll,-102; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 iPod Service;iPod Service; E:\Program Files\iPod\bin\iPodService.exe [2010-06-15 540472]
S3 KtmRm;@comres.dll,-2946; E:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; E:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; E:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 odserv;Microsoft Office Diagnostics Service; E:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; E:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; E:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 pla;@%systemroot%\system32\pla.dll,-500; E:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; E:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SDRSVC;@%SystemRoot%\system32\sdrsvc.dll,-107; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; E:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; E:\Windows\System32\snmptrap.exe [2009-07-14 12800]
S3 sppuinotify;@%SystemRoot%\system32\sppuinotify.dll,-103; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 Steam Client Service;Steam Client Service; E:\Program Files\Common Files\Steam\SteamService.exe [2010-07-02 395048]
S3 SwitchBoard;SwitchBoard; E:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; E:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 TBS;@%SystemRoot%\system32\tbssvc.dll,-100; E:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; E:\Windows\servicing\TrustedInstaller.exe [2009-07-14 204800]
S3 TuneUp.Defrag;@E:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1; E:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2010-07-05 435016]
S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; E:\Windows\system32\UI0Detect.exe [2009-07-14 35840]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; E:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; E:\Windows\system32\lsass.exe [2009-07-14 22528]
S3 vds;@%SystemRoot%\system32\vds.exe,-100; E:\Windows\System32\vds.exe [2009-07-14 452608]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; E:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-12 1343400]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; E:\Windows\system32\wbengine.exe [2009-07-14 1202688]
S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; E:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; E:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Wecsvc;@%SystemRoot%\system32\wecsvc.dll,-200; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; E:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WerSvc;@%SystemRoot%\System32\wersvc.dll,-100; E:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WinDefend;@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103; E:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WinRM;@%Systemroot%\system32\wsmsvc.dll,-101; E:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Wlansvc;@%SystemRoot%\System32\wlansvc.dll,-257; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 WPCSvc;@%SystemRoot%\system32\wpcsvc.dll,-100; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 WwanSvc;@%SystemRoot%\System32\wwansvc.dll,-257; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S4 clr_optimization_v2.0.50727_32;Microsoft .NET Framework NGEN v2.0.50727_X86; E:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2009-06-10 66384]
S4 Mcx2Svc;@%SystemRoot%\ehome\ehres.dll,-15501; E:\Windows\system32\svchost.exe [2009-07-14 20992]
S4 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8201; E:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2009-06-10 128848]
S4 WinHttpAutoProxySvc;Služba WinHTTP WPAD; E:\Windows\system32\svchost.exe [2009-07-14 20992]

-----------------EOF-----------------

Re: Prosím o kontrolu logu ComboFix

Napsal: 05 črc 2010 21:52
od Michi?!
Log vyzerá čistý. Len trochu prečistíme:
- Odinštaluj uTorrent . P2P je prakticky neustálim zdrojom vírusov. Zbytočne sa vystavuješ riziku.
- Stiahni a nainštaluj CCleaner . http://download.piriform.com/ccsetup233.exe Pri inštalácií zakáž inštaláciu Yahoo Toolbar . Klikni na Čistič. Daj analyzovať a potom vyčistiť. Klikni na registre. Zafajkni všetko. Daj hľadať problémi. Potom daj opraviť vybrané. Ak sa vypýta na zálohu daj áno a ulož zálohu.
-Ďalej niečo zakáž pri spúštaní. Máš tam toho veľa.

Re: Prosím o kontrolu logu ComboFix

Napsal: 05 črc 2010 21:58
od matko
ok diky ale vyuzitie cpu 100% svchost jeden 30% a druhy 40% ...

Re: Prosím o kontrolu logu ComboFix

Napsal: 05 črc 2010 22:01
od Michi?!
Stiahni MBAM a sprav úplnú kontrolu. Aký máš procesor?
http://majorgeeks.com/download.php?det=5756

Re: Prosím o kontrolu logu ComboFix

Napsal: 05 črc 2010 22:06
od matko
amd athlon x2 6000+ 3.1ghz, jaaj pred chvilou som malware odinstaloval, no nic musim znovu, inak vir mi nenasiel anti malware

Re: Prosím o kontrolu logu ComboFix

Napsal: 06 črc 2010 08:50
od matko
preinstaloval sem ovladaqce zvuku ok diky moc, prosim o lock
Časové pásmo: UTC+02:00
Stránka 1 z 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/