Některé programy nejdou spustit nebo se samy ukončují

bledulka · Příspěvekod **bledulka** » 06 srp 2010 16:15

Po restartě by mělo být černé okénko, ne obrazovka, a když tak ne moc dlouho.

Stahni Gmer http://www.gmer.net/gmer.zip
-rozbal ho a spusť
-po prvním rychlém skenu klikni na tlačítko Save, uloží se log, který mi sem zkopíruješ.
-v pravém sloupci označ všechny položky fajfkou ve čtverečku a klikni na tlačítko scan
-až se sken dokončí, opět tlačítkem Save ulož log, který sem vložíš.

Reklama

mato · Příspěvekod **mato** » 06 srp 2010 17:17

scan cez gmer zacal ale po urcitej chvili vyskocila chyba, s odpocitavanim do restartu a po restarte modra obrazovka - fatal system error, skusal som to 2x

Příspěvekod **jaro3** » 06 srp 2010 18:51

píše to nějakou chybu?? číslo..

V OTL dej tedy delší čas než 7 dní a vlož nový log.

mato · Příspěvekod **mato** » 06 srp 2010 19:18

Po kratkom case pocas scanu gmer vyskoci okno s textom:
vypnutie systemu inicioval pouzivatel NT pretoze remote procedure call bola neocakavane ukoncena
Je tam odpocitavanie do restartu. Po restarte modra obrazovka.

Modra obrazovka:

STOP: c000021a (Fatal system error)
The windows subsystem system process terminated unexectly with status of 0x c0000005 (0x10003df4 0x0058fba0)
System has been shut down

novy log z otl pri nastaveni 180 dni:

OTL logfile created on: 6.8.2010 19:07:30 - Run 2
OTL by OldTimer - Version 3.2.9.1 Folder = C:\Programy
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

767,00 Mb Total Physical Memory | 156,00 Mb Available Physical Memory | 20,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 65,00% Paging File free
Paging file location(s): E:\pagefile.sys 1024 1500 [binary data]

%SystemDrive% = E: | %SystemRoot% = E:\WINDOWS | %ProgramFiles% = E:\Program Files
Drive C: | 30,27 Gb Total Space | 3,69 Gb Free Space | 12,20% Space Free | Partition Type: NTFS
Drive D: | 40,53 Gb Total Space | 1,97 Gb Free Space | 4,87% Space Free | Partition Type: NTFS
Drive E: | 40,98 Gb Total Space | 13,19 Gb Free Space | 32,20% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: ABC
Current User Name: Klara
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 180 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010.08.06 15:09:05 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Programy\OTL.exe
PRC - [2010.07.20 12:09:42 | 000,910,296 | ---- | M] (Mozilla Corporation) -- E:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010.06.30 14:52:22 | 000,836,464 | ---- | M] (Opera Software) -- E:\Program Files\Opera 9\opera.exe
PRC - [2010.03.29 17:12:18 | 000,810,120 | ---- | M] (ESET) -- E:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2010.03.29 17:11:50 | 002,145,000 | ---- | M] (ESET) -- E:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2009.06.01 22:20:12 | 000,222,968 | ---- | M] () -- E:\Program Files\ICQ6Toolbar\ICQ Service.exe
PRC - [2008.06.15 15:34:20 | 000,071,096 | ---- | M] () -- E:\Program Files\CDBurnerXP\NMSAccessU.exe
PRC - [2006.02.16 06:54:00 | 000,842,788 | ---- | M] (C. Ghisler & Co.) -- C:\totalcmd\TC PowerPack\TOTALCMD.EXE
PRC - [2005.06.20 15:42:20 | 000,077,824 | R--- | M] (Realtek Semiconductor Corp.) -- E:\WINDOWS\soundman.exe
PRC - [2005.04.02 01:51:48 | 000,217,600 | ---- | M] (Rocket Division Software) -- E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
PRC - [2004.08.04 00:56:50 | 001,032,192 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\explorer.exe
PRC - [2002.08.21 05:13:12 | 000,189,952 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\system32\WISPTIS.EXE

========== Modules (SafeList) ==========

MOD - [2010.08.06 15:09:05 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Programy\OTL.exe
MOD - [2004.08.04 00:57:02 | 001,050,624 | R--- | M] (Microsoft Corporation) -- E:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
MOD - [2004.08.03 23:01:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\system32\msscript.ocx

========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:\WINDOWS\system32\wuauserv.dll -- (wuauserv)
SRV - File not found [Disabled | Stopped] -- K:\VS\Common7\IDE\Remote Debugger\x86\msvsmon.exe -- (msvsmon80)
SRV - [2010.03.29 17:16:36 | 000,033,560 | ---- | M] (ESET) [On_Demand | Stopped] -- E:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2010.03.29 17:12:18 | 000,810,120 | ---- | M] (ESET) [Auto | Running] -- E:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2009.06.01 22:20:12 | 000,222,968 | ---- | M] () [Auto | Running] -- E:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2008.12.20 19:32:53 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- E:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2008.06.15 15:34:20 | 000,071,096 | ---- | M] () [Auto | Running] -- E:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU)
SRV - [2007.09.11 17:10:18 | 000,184,504 | ---- | M] (SiSoftware) [On_Demand | Stopped] -- E:\Program Files\SiSoftware\SiSoftware Sandra Lite XIIc\Win32\RpcDataSrv.exe -- (SandraDataSrv)
SRV - [2007.09.11 17:10:08 | 001,265,856 | ---- | M] (SiSoftware) [Disabled | Stopped] -- E:\Program Files\SiSoftware\SiSoftware Sandra Lite XIIc\RpcSandraSrv.exe -- (SandraTheSrv)
SRV - [2007.03.26 13:06:24 | 000,292,864 | ---- | M] (Nokia.) [On_Demand | Stopped] -- E:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2005.04.02 01:51:48 | 000,217,600 | ---- | M] (Rocket Division Software) [Auto | Running] -- E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe -- (StarWindService)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- E:\DOCUME~1\Klara\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - [2010.08.02 21:32:01 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2010.05.10 20:41:30 | 000,067,656 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- E:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010.03.29 17:13:44 | 000,095,872 | ---- | M] (ESET) [Kernel | System | Running] -- E:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2010.03.29 17:12:00 | 000,114,984 | ---- | M] (ESET) [Kernel | System | Running] -- E:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2010.03.29 17:07:30 | 000,140,216 | ---- | M] (ESET) [File_System | Auto | Running] -- E:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2010.02.17 20:25:48 | 000,012,872 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- E:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2008.07.19 17:40:03 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- E:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008.02.26 07:51:43 | 002,863,616 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007.11.09 11:23:00 | 000,004,480 | ---- | M] (Promethean Technologies Ltd) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\activmouse.sys -- (prmvmouse)
DRV - [2007.11.09 11:22:48 | 000,054,656 | ---- | M] (Promethean Technologies Ltd) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\activhidsermini.sys -- (ActivHidSerMini)
DRV - [2007.10.02 19:23:13 | 000,017,480 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2006.09.24 15:28:47 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- E:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2005.06.20 16:08:44 | 002,324,480 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2005.04.25 10:43:58 | 000,159,616 | ---- | M] ( ) [Kernel | Boot | Running] -- E:\WINDOWS\system32\DRIVERS\Vax347b.sys -- (Vax347b)
DRV - [2005.04.05 21:22:30 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2005.04.05 21:22:28 | 000,033,536 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2004.08.13 04:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2004.08.04 01:08:22 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2004.08.04 00:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2004.04.30 09:33:00 | 000,005,248 | ---- | M] ( ) [Kernel | Boot | Running] -- E:\WINDOWS\System32\Drivers\Vax347s.sys -- (Vax347s)
DRV - [2001.08.17 16:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
DRV - [1996.04.03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- E:\WINDOWS\system32\giveio.sys -- (giveio)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-839522115-1580436667-2147104195-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-839522115-1580436667-2147104195-1003\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - E:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-21-839522115-1580436667-2147104195-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-839522115-1580436667-2147104195-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.order.1: "Yahoo"
FF - prefs.js..browser.search.param.yahoo-fr: "megaup"
FF - prefs.js..browser.search.param.yahoo-fr-cjkt: "megaup"
FF - prefs.js..browser.startup.homepage: "http://start.icq.com/"
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.5
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {7AB6D133-2A14-4C11-B3AD-35B1548D38F9}:1.0
FF - prefs.js..extensions.enabledItems: {c45c406e-ab73-11d8-be73-000a95be3b12}:1.1.8
FF - prefs.js..extensions.enabledItems: cs@dictionaries.addons.mozilla.org:1.0.1
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.6.6.117
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..keyword.enabled: false

FF - HKLM\software\mozilla\Firefox\extensions\\{872A1C39-DF0B-4c8b-AD84-12BA24A3B781}: E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.2.21960\FFToolbar
FF - HKLM\software\mozilla\Firefox\extensions\\{2224E955-00E9-4613-A844-CE69FCCAAE91}: E:\Program Files\Internet Saving Optimizer\3.6.3.4500\FF
FF - HKLM\software\mozilla\Firefox\extensions\\{0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}: E:\Program Files\Media Access Startup\1.5.5.900\FF
FF - HKLM\software\mozilla\Firefox\extensions\\m3ffxtbr@mywebsearch.com: E:\Program Files\MyWebSearch\bar\1.bin File not found
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2010.08.05 02:19:50 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2010.08.06 14:16:50 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: E:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010.08.05 02:20:05 | 000,000,000 | ---D | M]

[2008.12.19 18:45:26 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Klara\Application Data\Mozilla\Extensions
[2010.08.02 23:54:13 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Klara\Application Data\Mozilla\Firefox\Profiles\f9qegxq2.default\extensions
[2008.06.21 13:14:49 | 000,000,000 | ---D | M] (CacheViewer) -- E:\Documents and Settings\Klara\Application Data\Mozilla\Firefox\Profiles\f9qegxq2.default\extensions\{71328583-3CA7-4809-B4BA-570A85818FBB}
[2010.04.03 17:43:29 | 000,000,000 | ---D | M] (Web Developer) -- E:\Documents and Settings\Klara\Application Data\Mozilla\Firefox\Profiles\f9qegxq2.default\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}
[2010.04.01 15:16:18 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Klara\Application Data\Mozilla\Firefox\Profiles\f9qegxq2.default\extensions\cs@dictionaries.addons.mozilla.org
[2010.08.05 02:19:26 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Klara\Application Data\Mozilla\Firefox\Profiles\f9qegxq2.default\extensions\toolbar@ask.com
[2008.07.19 17:43:04 | 000,002,921 | ---- | M] () -- E:\Documents and Settings\Klara\Application Data\Mozilla\Firefox\Profiles\f9qegxq2.default\searchplugins\daemon-search.xml
[2010.08.06 18:53:05 | 000,000,950 | ---- | M] () -- E:\Documents and Settings\Klara\Application Data\Mozilla\Firefox\Profiles\f9qegxq2.default\searchplugins\icqplugin-1.xml
[2010.07.20 12:10:05 | 000,000,950 | ---- | M] () -- E:\Documents and Settings\Klara\Application Data\Mozilla\Firefox\Profiles\f9qegxq2.default\searchplugins\icqplugin-2.xml
[2010.08.05 20:08:24 | 000,000,950 | ---- | M] () -- E:\Documents and Settings\Klara\Application Data\Mozilla\Firefox\Profiles\f9qegxq2.default\searchplugins\icqplugin-3.xml
[2009.12.22 22:39:16 | 000,000,944 | ---- | M] () -- E:\Documents and Settings\Klara\Application Data\Mozilla\Firefox\Profiles\f9qegxq2.default\searchplugins\icqplugin.xml
[2010.08.06 01:08:12 | 000,000,000 | ---D | M] -- E:\Program Files\Mozilla Firefox\extensions
[2009.09.04 12:31:41 | 000,000,000 | ---D | M] (Sukoku) -- E:\Program Files\Mozilla Firefox\extensions\{7AB6D133-2A14-4C11-B3AD-35B1548D38F9}
[2009.07.20 15:13:21 | 000,000,000 | ---D | M] (No name found) -- E:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.08.06 14:16:49 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.07.20 12:09:47 | 000,001,583 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\atlas-sk.xml
[2010.07.20 12:09:47 | 000,001,380 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\azet-sk.xml
[2010.07.20 12:09:47 | 000,001,479 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\dunaj-sk.xml
[2010.07.20 12:09:47 | 000,001,473 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\slovnik-sk.xml
[2010.07.20 12:09:47 | 000,001,104 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\wikipedia-sk.xml
[2010.07.20 12:09:47 | 000,000,830 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\zoznam-sk.xml

O1 HOSTS File: ([2010.08.06 14:05:43 | 000,000,027 | ---- | M]) - E:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Megaupload Toolbar) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - E:\Program Files\MegauploadToolbar\megauploadtoolbar.dll (MEGAUPLOAD )
O2 - BHO: (NTIECatcher Class) - {C56CB6B0-0D96-11D6-8C65-B2868B609932} - E:\Program Files\Xi\NetTransport 2\NTIEHelper.dll (Xi)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - E:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (Megaupload Toolbar) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - E:\Program Files\MegauploadToolbar\megauploadtoolbar.dll (MEGAUPLOAD )
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - E:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - No CLSID value found.
O3 - HKU\S-1-5-21-839522115-1580436667-2147104195-1003\..\Toolbar\ShellBrowser: (Megaupload Toolbar) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - E:\Program Files\MegauploadToolbar\megauploadtoolbar.dll (MEGAUPLOAD )
O3 - HKU\S-1-5-21-839522115-1580436667-2147104195-1003\..\Toolbar\WebBrowser: (Megaupload Toolbar) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - E:\Program Files\MegauploadToolbar\megauploadtoolbar.dll (MEGAUPLOAD )
O3 - HKU\S-1-5-21-839522115-1580436667-2147104195-1003\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - E:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O4 - HKLM..\Run: [egui] E:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [SoundMan] E:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StartCCC] E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-839522115-1580436667-2147104195-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-839522115-1580436667-2147104195-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-839522115-1580436667-2147104195-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-839522115-1580436667-2147104195-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - E:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - E:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - E:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - E:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - E:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... vc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_15)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - E:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - E:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - E:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - E:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - E:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 () - file:///E:/DOCUME~1/Klara/LOCALS~1/Temp/msohtml1/01/clip_image001.jpg
O24 - Desktop WallPaper: E:\WINDOWS\ACD Wallpaper.bmp
O24 - Desktop BackupWallPaper: E:\WINDOWS\ACD Wallpaper.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - E:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.02.23 13:56:54 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: wuauserv - C:\WINDOWS\system32\wuauserv.dll File not found

Drivers32: msacm.iac2 - E:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - E:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - E:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - E:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: VIDC.ACDV - E:\WINDOWS\System32\ACDV.dll (ACD Systems)
Drivers32: vidc.cvid - E:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - E:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: vidc.iv31 - E:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - E:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - E:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - E:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.tscc - E:\WINDOWS\System32\tsccvid.dll (TechSmith Corporation)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (56027131116781568)

========== Files/Folders - Created Within 180 Days ==========

[2010.08.06 14:16:38 | 000,000,000 | ---D | C] -- E:\Program Files\Ask.com
[2010.08.06 14:05:40 | 000,000,000 | ---D | C] -- E:\WINDOWS\temp
[2010.08.06 13:54:31 | 000,000,000 | --SD | C] -- E:\ComboFix(3)
[2010.08.06 12:50:33 | 000,000,000 | ---D | C] -- E:\ComboFix(2)
[2010.08.06 11:07:39 | 000,000,000 | ---D | C] -- E:\Config.Msi
[2010.08.06 01:08:26 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Application Data\Sun
[2010.08.06 01:08:10 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- E:\WINDOWS\System32\javaws.exe
[2010.08.06 01:08:09 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- E:\WINDOWS\System32\javaw.exe
[2010.08.06 01:08:09 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- E:\WINDOWS\System32\java.exe
[2010.08.06 00:53:11 | 000,159,616 | ---- | C] ( ) -- E:\WINDOWS\System32\drivers\Vax347b.sys
[2010.08.06 00:53:11 | 000,005,248 | ---- | C] ( ) -- E:\WINDOWS\System32\drivers\Vax347s.sys
[2010.08.06 00:51:30 | 000,000,000 | -HSD | C] -- E:\RECYCLER
[2010.08.06 00:08:51 | 000,031,232 | ---- | C] (NirSoft) -- E:\WINDOWS\NIRCMD.exe
[2010.08.06 00:08:47 | 000,161,792 | ---- | C] (SteelWerX) -- E:\WINDOWS\SWREG.exe
[2010.08.06 00:08:45 | 000,136,704 | ---- | C] (SteelWerX) -- E:\WINDOWS\SWSC.exe
[2010.08.06 00:08:44 | 000,212,480 | ---- | C] (SteelWerX) -- E:\WINDOWS\SWXCACLS.exe
[2010.08.06 00:08:29 | 000,000,000 | ---D | C] -- E:\WINDOWS\ERDNT
[2010.08.06 00:06:28 | 000,000,000 | ---D | C] -- E:\Qoobox
[2010.08.05 20:25:22 | 000,000,000 | ---D | C] -- E:\Documents and Settings\Klara\Application Data\SUPERAntiSpyware.com
[2010.08.05 20:25:22 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
[2010.08.05 20:24:59 | 000,000,000 | ---D | C] -- E:\Program Files\SUPERAntiSpyware
[2010.08.05 15:25:50 | 000,000,000 | ---D | C] -- E:\Program Files\CDBurnerXP
[2010.08.05 15:14:09 | 000,000,000 | ---D | C] -- E:\Program Files\Elaborate Bytes
[2010.08.05 14:30:26 | 000,000,000 | ---D | C] -- E:\Program Files\Common Files\Wise Installation Wizard
[2010.08.05 13:51:24 | 000,000,000 | ---D | C] -- E:\Documents and Settings\Klara\Local Settings\Application Data\AskToolbar
[2010.08.05 13:15:46 | 000,000,000 | ---D | C] -- E:\metallica
[2010.08.05 02:21:01 | 000,000,000 | ---D | C] -- E:\Program Files\TeaTimer (Spybot - Search & Destroy)
[2010.08.05 02:21:00 | 000,000,000 | ---D | C] -- E:\Program Files\SDHelper (Spybot - Search & Destroy)
[2010.08.05 02:21:00 | 000,000,000 | ---D | C] -- E:\Program Files\File Scanner Library (Spybot - Search & Destroy)
[2010.08.05 02:20:58 | 000,000,000 | ---D | C] -- E:\Documents and Settings\Klara\Application Data\Malwarebytes
[2010.08.05 02:20:23 | 000,000,000 | ---D | C] -- E:\WINDOWS\VistaMizer
[2010.08.05 02:20:15 | 000,000,000 | ---D | C] -- E:\Program Files\BitTorrent
[2010.08.05 02:20:11 | 000,000,000 | ---D | C] -- E:\Program Files\Common Files\DivX Shared
[2010.08.05 01:20:44 | 000,000,000 | ---D | C] -- E:\Program Files\Spybot - Search & Destroy
[2010.08.05 01:19:32 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- E:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.08.05 01:19:30 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- E:\WINDOWS\System32\drivers\mbam.sys
[2010.08.05 01:19:30 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010.08.05 01:19:28 | 000,000,000 | ---D | C] -- E:\Program Files\Malwarebytes' Anti-Malware
[2010.08.03 00:51:41 | 000,000,000 | ---D | C] -- E:\Documents and Settings\Klara\Application Data\BitTorrent
[2010.08.03 00:02:21 | 000,000,000 | ---D | C] -- E:\Documents and Settings\Klara\Application Data\Vast Studios
[2010.08.02 22:16:48 | 000,000,000 | ---D | C] -- E:\Program Files\MPC HomeCinema
[2010.08.02 21:01:08 | 000,000,000 | ---D | C] -- E:\Program Files\DivX
[2010.08.02 21:00:18 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Application Data\DivX
[2010.05.02 20:06:27 | 000,000,000 | ---D | C] -- E:\WINDOWS\CSC
[2010.04.27 00:04:42 | 000,353,592 | ---- | C] (DivX, Inc.) -- E:\WINDOWS\System32\DivXControlPanelApplet.cpl
[2010.04.05 19:24:24 | 000,000,000 | ---D | C] -- E:\Documents and Settings\Klara\My Documents\Preberanie
[2010.03.29 17:13:44 | 000,095,872 | ---- | C] (ESET) -- E:\WINDOWS\System32\drivers\epfwtdir.sys
[2010.03.29 17:12:00 | 000,114,984 | ---- | C] (ESET) -- E:\WINDOWS\System32\drivers\ehdrv.sys
[2010.03.29 17:07:30 | 000,140,216 | ---- | C] (ESET) -- E:\WINDOWS\System32\drivers\eamon.sys
[2010.02.13 18:13:40 | 000,000,000 | ---D | C] -- E:\paris
[2007.07.03 19:32:23 | 000,133,120 | ---- | C] ( ) -- E:\WINDOWS\System32\ZIPDLL.DLL
[6 E:\Documents and Settings\Klara\My Documents\*.tmp files -> E:\Documents and Settings\Klara\My Documents\*.tmp -> ]
[4 E:\WINDOWS\*.tmp files -> E:\WINDOWS\*.tmp -> ]
[3 E:\Documents and Settings\All Users\Application Data\*.tmp files -> E:\Documents and Settings\All Users\Application Data\*.tmp -> ]
[1 E:\WINDOWS\System32\*.tmp files -> E:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 180 Days ==========

[2010.08.06 18:39:54 | 000,002,992 | ---- | M] () -- E:\WINDOWS\WINCMD.INI
[2010.08.06 18:38:38 | 000,000,429 | ---- | M] () -- E:\WINDOWS\System32\drivers\etc\hosts.ics
[2010.08.06 18:38:13 | 000,000,006 | -H-- | M] () -- E:\WINDOWS\tasks\SA.DAT
[2010.08.06 18:38:10 | 000,002,048 | --S- | M] () -- E:\WINDOWS\bootstat.dat
[2010.08.06 17:56:07 | 007,340,032 | ---- | M] () -- E:\Documents and Settings\Klara\ntuser.dat
[2010.08.06 17:56:07 | 000,000,278 | -HS- | M] () -- E:\Documents and Settings\Klara\ntuser.ini
[2010.08.06 14:05:43 | 000,000,027 | ---- | M] () -- E:\WINDOWS\System32\drivers\etc\hosts
[2010.08.06 01:03:03 | 000,000,684 | ---- | M] () -- E:\WINDOWS\win.ini
[2010.08.06 01:03:03 | 000,000,227 | ---- | M] () -- E:\WINDOWS\system.ini
[2010.08.06 00:53:09 | 000,001,779 | ---- | M] () -- E:\Documents and Settings\All Users\Desktop\Alcohol 120%.lnk
[2010.08.06 00:06:55 | 002,111,314 | -H-- | M] () -- E:\Documents and Settings\Klara\Local Settings\Application Data\IconCache.db
[2010.08.06 00:03:40 | 003,815,943 | R--- | M] () -- E:\Documents and Settings\Klara\Desktop\ComboFix.exe
[2010.08.05 22:53:12 | 000,001,089 | ---- | M] () -- E:\WINDOWS\WDICT32.INI
[2010.08.05 20:25:10 | 000,001,678 | ---- | M] () -- E:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
[2010.08.05 15:28:57 | 000,206,268 | -H-- | M] () -- E:\treeinfo.wc
[2010.08.05 15:25:57 | 000,001,630 | ---- | M] () -- E:\Documents and Settings\All Users\Desktop\CDBurnerXP.lnk
[2010.08.05 01:19:36 | 000,000,696 | ---- | M] () -- E:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.08.04 23:30:32 | 000,002,565 | ---- | M] () -- E:\Documents and Settings\All Users\Desktop\ACDSee 9 Photo Manager.lnk
[2010.08.04 23:30:17 | 000,196,096 | ---- | M] () -- E:\Documents and Settings\Klara\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.08.03 10:34:41 | 000,001,717 | ---- | M] () -- E:\Documents and Settings\All Users\Desktop\The Conquerors.lnk
[2010.08.02 21:39:03 | 003,240,054 | ---- | M] () -- E:\WINDOWS\ACD Wallpaper.bmp
[2010.08.02 21:34:07 | 000,034,308 | ---- | M] () -- E:\WINDOWS\System32\BASSMOD.dll
[2010.08.02 21:32:33 | 000,316,640 | ---- | M] () -- E:\WINDOWS\WMSysPr9.prx
[2010.08.02 21:32:01 | 000,010,368 | ---- | M] (Padus, Inc.) -- E:\WINDOWS\System32\drivers\pfc.sys
[2010.07.31 18:47:59 | 000,002,553 | ---- | M] () -- E:\Documents and Settings\All Users\Desktop\Activstudio Professional Edition V3.lnk
[2010.07.31 18:09:37 | 000,002,206 | ---- | M] () -- E:\WINDOWS\System32\wpa.dbl
[2010.07.20 11:09:19 | 000,001,729 | ---- | M] () -- E:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2010.07.20 10:59:05 | 000,000,624 | ---- | M] () -- E:\Documents and Settings\Klara\Application Data\Microsoft\Internet Explorer\Quick Launch\Opera.lnk
[2010.07.20 10:59:05 | 000,000,606 | ---- | M] () -- E:\Documents and Settings\All Users\Desktop\Opera.lnk
[2010.07.19 17:47:01 | 000,001,423 | ---- | M] () -- E:\Documents and Settings\All Users\Desktop\ŠVS_Proforient ZŠ.lnk
[2010.05.04 19:54:58 | 000,000,116 | ---- | M] () -- E:\WINDOWS\NeroDigital.ini
[2010.04.29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- E:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.04.29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- E:\WINDOWS\System32\drivers\mbam.sys
[2010.04.27 00:04:42 | 000,353,592 | ---- | M] (DivX, Inc.) -- E:\WINDOWS\System32\DivXControlPanelApplet.cpl
[2010.04.26 15:58:12 | 000,256,512 | ---- | M] () -- E:\WINDOWS\PEV.exe
[2010.04.25 20:01:56 | 000,026,112 | ---- | M] () -- E:\Documents and Settings\Klara\My Documents\Makovo.doc
[2010.04.16 19:03:48 | 000,531,723 | ---- | M] () -- E:\Documents and Settings\Klara\Desktop\default.htm 1000 hitu.htm
[2010.04.03 21:03:22 | 000,002,140 | ---- | M] () -- E:\Documents and Settings\Klara\rusovce.zpj
[2010.04.03 21:03:19 | 000,000,600 | ---- | M] () -- E:\Documents and Settings\Klara\winscp.RND
[2010.03.31 19:03:55 | 000,001,620 | ---- | M] () -- E:\Documents and Settings\Klara\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010.03.31 19:03:55 | 000,001,602 | ---- | M] () -- E:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2010.03.29 17:13:44 | 000,095,872 | ---- | M] (ESET) -- E:\WINDOWS\System32\drivers\epfwtdir.sys
[2010.03.29 17:12:00 | 000,114,984 | ---- | M] (ESET) -- E:\WINDOWS\System32\drivers\ehdrv.sys
[2010.03.29 17:07:30 | 000,140,216 | ---- | M] (ESET) -- E:\WINDOWS\System32\drivers\eamon.sys
[2010.03.28 20:03:08 | 000,462,344 | ---- | M] () -- E:\WINDOWS\System32\PerfStringBackup.INI
[2010.03.28 20:03:08 | 000,395,336 | ---- | M] () -- E:\WINDOWS\System32\perfh009.dat
[2010.03.28 20:03:08 | 000,059,576 | ---- | M] () -- E:\WINDOWS\System32\perfc009.dat
[2010.03.25 17:20:51 | 000,000,012 | ---- | M] () -- E:\Documents and Settings\Klara\intlname.ols
[2010.02.10 22:01:42 | 000,060,416 | ---- | M] (Realtek Semiconductor Corp.) -- E:\WINDOWS\ALCFDRTM.VER
[6 E:\Documents and Settings\Klara\My Documents\*.tmp files -> E:\Documents and Settings\Klara\My Documents\*.tmp -> ]
[4 E:\WINDOWS\*.tmp files -> E:\WINDOWS\*.tmp -> ]
[3 E:\Documents and Settings\All Users\Application Data\*.tmp files -> E:\Documents and Settings\All Users\Application Data\*.tmp -> ]
[1 E:\WINDOWS\System32\*.tmp files -> E:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.08.06 01:06:56 | 007,340,032 | ---- | C] () -- E:\Documents and Settings\Klara\ntuser.dat
[2010.08.06 00:53:09 | 000,001,779 | ---- | C] () -- E:\Documents and Settings\All Users\Desktop\Alcohol 120%.lnk
[2010.08.06 00:08:52 | 000,077,312 | ---- | C] () -- E:\WINDOWS\MBR.exe
[2010.08.06 00:08:48 | 000,256,512 | ---- | C] () -- E:\WINDOWS\PEV.exe
[2010.08.06 00:08:46 | 000,098,816 | ---- | C] () -- E:\WINDOWS\sed.exe
[2010.08.06 00:08:46 | 000,080,412 | ---- | C] () -- E:\WINDOWS\grep.exe
[2010.08.06 00:08:46 | 000,068,096 | ---- | C] () -- E:\WINDOWS\zip.exe
[2010.08.06 00:06:09 | 003,815,943 | R--- | C] () -- E:\Documents and Settings\Klara\Desktop\ComboFix.exe
[2010.08.05 20:25:10 | 000,001,678 | ---- | C] () -- E:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
[2010.08.05 15:25:57 | 000,001,630 | ---- | C] () -- E:\Documents and Settings\All Users\Desktop\CDBurnerXP.lnk
[2010.08.05 01:19:36 | 000,000,696 | ---- | C] () -- E:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.08.03 10:34:41 | 000,001,717 | ---- | C] () -- E:\Documents and Settings\All Users\Desktop\The Conquerors.lnk
[2010.08.02 21:32:49 | 000,002,565 | ---- | C] () -- E:\Documents and Settings\All Users\Desktop\ACDSee 9 Photo Manager.lnk
[2010.07.20 11:09:19 | 000,001,729 | ---- | C] () -- E:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2010.05.03 18:58:49 | 000,000,624 | ---- | C] () -- E:\Documents and Settings\Klara\Application Data\Microsoft\Internet Explorer\Quick Launch\Opera.lnk
[2010.04.25 20:01:56 | 000,026,112 | ---- | C] () -- E:\Documents and Settings\Klara\My Documents\Makovo.doc
[2010.04.16 19:03:48 | 000,531,723 | ---- | C] () -- E:\Documents and Settings\Klara\Desktop\default.htm 1000 hitu.htm
[2010.03.31 20:24:22 | 000,000,606 | ---- | C] () -- E:\Documents and Settings\All Users\Desktop\Opera.lnk
[2009.08.07 16:43:00 | 000,080,624 | R--- | C] () -- E:\WINDOWS\System32\SH31W32.DLL
[2008.07.31 16:15:33 | 000,000,547 | ---- | C] () -- E:\WINDOWS\System32\ff_vfw.dll.manifest
[2008.07.31 16:15:32 | 000,007,680 | ---- | C] () -- E:\WINDOWS\System32\ff_vfw.dll
[2008.07.19 17:40:02 | 000,717,296 | ---- | C] () -- E:\WINDOWS\System32\drivers\sptd.sys
[2008.04.06 17:40:37 | 000,000,010 | ---- | C] () -- E:\WINDOWS\WININIT.INI
[2008.03.27 18:43:01 | 000,000,405 | ---- | C] () -- E:\WINDOWS\SIERRA.INI
[2008.01.20 20:06:49 | 000,000,994 | ---- | C] () -- E:\WINDOWS\CDPLAYER.INI
[2007.12.23 13:50:17 | 000,000,048 | ---- | C] () -- E:\WINDOWS\IntegrationWizard.INI
[2007.12.08 22:22:19 | 000,000,251 | ---- | C] () -- E:\WINDOWS\level.ini
[2007.11.09 11:27:58 | 000,167,936 | ---- | C] () -- E:\WINDOWS\libactivboardex.dll
[2007.11.09 11:24:14 | 000,196,608 | ---- | C] () -- E:\WINDOWS\ActivDRV.dll
[2007.11.02 01:45:40 | 000,000,458 | ---- | C] () -- E:\WINDOWS\wcx_ftp.ini
[2007.09.03 22:06:45 | 000,000,164 | R--- | C] () -- E:\WINDOWS\avrack.ini
[2007.09.03 21:58:08 | 000,000,169 | ---- | C] () -- E:\WINDOWS\RtlRack.ini
[2007.08.27 11:35:06 | 000,000,073 | ---- | C] () -- E:\WINDOWS\hdkctnts.ini
[2007.08.23 13:52:41 | 000,176,235 | ---- | C] () -- E:\WINDOWS\System32\Primomonnt.dll
[2007.08.20 01:29:53 | 000,008,024 | ---- | C] () -- E:\WINDOWS\System32\mcimsfle.dll
[2007.08.15 16:54:03 | 000,270,336 | ---- | C] () -- E:\WINDOWS\System32\Shaper.dll
[2007.07.21 20:22:18 | 000,000,287 | ---- | C] () -- E:\WINDOWS\game.ini
[2007.07.03 19:32:23 | 000,122,368 | ---- | C] () -- E:\WINDOWS\System32\UNZDLL.DLL
[2007.07.03 19:31:30 | 000,000,116 | ---- | C] () -- E:\WINDOWS\NeroDigital.ini
[2007.07.03 18:38:11 | 000,000,033 | ---- | C] () -- E:\WINDOWS\WTRDCTM.INI
[2007.07.03 18:37:10 | 000,002,604 | ---- | C] () -- E:\WINDOWS\WTRAN32.INI
[2007.07.03 16:29:08 | 000,034,308 | ---- | C] () -- E:\WINDOWS\System32\BASSMOD.dll
[2007.07.03 16:17:49 | 000,001,089 | ---- | C] () -- E:\WINDOWS\WDICT32.INI
[2007.07.03 16:03:51 | 000,002,992 | ---- | C] () -- E:\WINDOWS\WINCMD.INI
[2007.07.03 15:55:03 | 000,000,376 | ---- | C] () -- E:\WINDOWS\ODBC.INI
[2007.07.03 14:58:08 | 000,156,672 | R--- | C] () -- E:\WINDOWS\System32\RTLCPAPI.dll
[2007.07.03 14:56:10 | 000,018,272 | ---- | C] () -- E:\WINDOWS\Ascd_tmp.ini
[2007.07.03 14:56:10 | 000,005,810 | R--- | C] () -- E:\WINDOWS\System32\drivers\ASACPI.sys
[2007.07.03 14:56:03 | 000,005,824 | ---- | C] () -- E:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2006.11.07 00:49:36 | 000,000,310 | ---- | C] () -- E:\WINDOWS\primopdf.ini
[2006.09.12 11:08:38 | 006,172,672 | ---- | C] () -- E:\WINDOWS\System32\HwRecogK.dll
[2006.08.14 09:56:52 | 007,946,240 | ---- | C] () -- E:\WINDOWS\System32\HWRecogT.dll
[2006.08.13 17:48:58 | 015,147,008 | ---- | C] () -- E:\WINDOWS\System32\HWRecog.dll
[2004.08.04 00:56:48 | 000,007,519 | ---- | C] () -- E:\WINDOWS\System32\wadnt.dll
[2004.08.04 00:56:44 | 000,081,920 | ---- | C] () -- E:\WINDOWS\System32\ieencode.dll
[2004.03.01 09:43:09 | 000,077,824 | ---- | C] () -- E:\WINDOWS\System32\MMSwitch.dll
[2004.03.01 07:53:21 | 000,679,936 | ---- | C] () -- E:\WINDOWS\System32\xvidcore.dll
[2003.09.30 11:47:47 | 000,921,600 | ---- | C] () -- E:\WINDOWS\System32\VorbisEnc.dll
[2003.09.30 11:47:47 | 000,344,064 | ---- | C] () -- E:\WINDOWS\System32\xvid.dll
[2003.09.30 11:47:47 | 000,188,416 | ---- | C] () -- E:\WINDOWS\System32\vorbis.dll
[2003.09.30 11:47:47 | 000,155,136 | ---- | C] () -- E:\WINDOWS\System32\unrar.dll
[2003.09.30 11:47:46 | 000,237,568 | ---- | C] () -- E:\WINDOWS\System32\OggDS.dll
[2003.09.30 11:47:46 | 000,045,056 | ---- | C] () -- E:\WINDOWS\System32\ogg.dll
[2003.08.07 16:01:50 | 000,237,568 | ---- | C] () -- E:\WINDOWS\System32\lame_enc.dll
[2003.04.07 11:38:32 | 000,005,746 | ---- | C] () -- E:\WINDOWS\System32\OUTLPERF.INI
[2003.03.24 06:03:00 | 000,279,552 | ---- | C] () -- E:\WINDOWS\System32\FGWVB32.DLL
[2002.03.21 15:39:02 | 000,073,728 | ---- | C] () -- E:\WINDOWS\System32\UNACEV2.DLL
[1998.03.26 01:12:00 | 000,053,248 | ---- | C] () -- E:\WINDOWS\System32\zlib.dll
[1997.06.14 02:56:08 | 000,056,832 | ---- | C] () -- E:\WINDOWS\System32\iyvu9_32.dll
[1996.04.03 21:33:26 | 000,005,248 | ---- | C] () -- E:\WINDOWS\System32\giveio.sys

========== Custom Scans ==========

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =

< c:\windows\*.* /U >

< MD5 for: AGP440.SYS >
[2004.08.04 01:05:44 | 018,738,937 | ---- | M] () .cab file -- E:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys

< MD5 for: ATAPI.SYS >
[2004.08.04 01:05:44 | 018,738,937 | ---- | M] () .cab file -- E:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- E:\WINDOWS\ERDNT\cache\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- E:\WINDOWS\system32\drivers\atapi.sys

< MD5 for: EVENTLOG.DLL >
[2004.08.04 00:56:44 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- E:\WINDOWS\ERDNT\cache\eventlog.dll
[2004.08.04 00:56:44 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- E:\WINDOWS\system32\dllcache\eventlog.dll
[2004.08.04 00:56:44 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- E:\WINDOWS\system32\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2004.08.04 00:56:50 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- E:\WINDOWS\ERDNT\cache\explorer.exe
[2004.08.04 00:56:50 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- E:\WINDOWS\explorer.exe
[2004.08.04 00:56:50 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- E:\WINDOWS\system32\dllcache\explorer.exe

< MD5 for: HAL.DLL >
[2004.08.04 01:05:44 | 018,738,937 | ---- | M] () .cab file -- E:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2004.08.03 22:59:10 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- E:\WINDOWS\system32\hal.dll

< MD5 for: LSASS.EXE >
[2004.08.04 00:56:52 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=84885F9B82F4D55C6146EBF6065D75D2 -- E:\WINDOWS\ERDNT\cache\lsass.exe
[2004.08.04 00:56:52 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=84885F9B82F4D55C6146EBF6065D75D2 -- E:\WINDOWS\system32\dllcache\lsass.exe
[2004.08.04 00:56:52 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=84885F9B82F4D55C6146EBF6065D75D2 -- E:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2004.08.03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- E:\WINDOWS\ERDNT\cache\ndis.sys
[2004.08.03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- E:\WINDOWS\system32\dllcache\ndis.sys
[2004.08.03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- E:\WINDOWS\system32\drivers\ndis.sys

< MD5 for: NETLOGON.DLL >
[2004.08.04 00:56:46 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- E:\WINDOWS\ERDNT\cache\netlogon.dll
[2004.08.04 00:56:46 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- E:\WINDOWS\system32\dllcache\netlogon.dll
[2004.08.04 00:56:46 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- E:\WINDOWS\system32\netlogon.dll

< MD5 for: SCECLI.DLL >
[2004.08.04 00:56:46 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- E:\WINDOWS\ERDNT\cache\scecli.dll
[2004.08.04 00:56:46 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- E:\WINDOWS\system32\dllcache\scecli.dll
[2004.08.04 00:56:46 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- E:\WINDOWS\system32\scecli.dll

< MD5 for: SMSS.EXE >
[2004.08.04 00:56:58 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=BD7FB0957C716F1A60333AEE04DE2178 -- E:\WINDOWS\system32\dllcache\smss.exe
[2004.08.04 00:56:58 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=BD7FB0957C716F1A60333AEE04DE2178 -- E:\WINDOWS\system32\smss.exe

< MD5 for: SVCHOST.EXE >
[2007.11.17 17:33:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- E:\WINDOWS\ERDNT\cache\svchost.exe
[2004.08.04 00:56:58 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- E:\WINDOWS\system32\dllcache\svchost.exe
[2007.11.17 17:33:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- E:\WINDOWS\system32\svchost.exe

< MD5 for: USERINIT.EXE >
[2004.08.04 00:56:58 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- E:\WINDOWS\ERDNT\cache\userinit.exe
[2004.08.04 00:56:58 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- E:\WINDOWS\system32\dllcache\userinit.exe
[2004.08.04 00:56:58 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- E:\WINDOWS\system32\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004.08.04 00:56:58 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- E:\WINDOWS\ERDNT\cache\winlogon.exe
[2004.08.04 00:56:58 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- E:\WINDOWS\system32\dllcache\winlogon.exe
[2004.08.04 00:56:58 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- E:\WINDOWS\system32\winlogon.exe

< MD5 for: WS2_32.DLL >
[2004.08.04 00:56:48 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=2ED0B7F12A60F90092081C50FA0EC2B2 -- E:\WINDOWS\ERDNT\cache\ws2_32.dll
[2004.08.04 00:56:48 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=2ED0B7F12A60F90092081C50FA0EC2B2 -- E:\WINDOWS\system32\dllcache\ws2_32.dll
[2004.08.04 00:56:48 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=2ED0B7F12A60F90092081C50FA0EC2B2 -- E:\WINDOWS\system32\ws2_32.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2008.02.26 05:12:07 | 000,372,736 | ---- | M] (Advanced Micro Devices, Inc.) Unable to obtain MD5 -- E:\WINDOWS\system32\ATIDEMGX.dll
[1 E:\WINDOWS\system32\*.tmp files -> E:\WINDOWS\system32\*.tmp -> ]

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< End of report >

bledulka · Příspěvekod **bledulka** » 06 srp 2010 21:21

Prosím tě mrkni do složky E:\WINDOWS\minidump jestli se Ti vytvořil soubor minidumopu. Pokud ano, vlož ho zde jako přílohu.

mato · Příspěvekod **mato** » 06 srp 2010 21:27

tu zlozku tam mam je tam niekolko suborov s priponou dmp akym sposobom ti to mam sem vlozit?

bledulka · Příspěvekod **bledulka** » 06 srp 2010 21:43

Dej je do zipu nebo raru a přilož sem jako přílohu.
Musím poprosit kolegu, ať na ně mrkne, asi to bude až přes víkend.

mato · Příspěvekod **mato** » 06 srp 2010 21:56

ja uz vazne neviem, subor som vybral a prilozil uz xkrat a stale sa mi nezobrazi

Pokial ide o hjt tam netreba nic fixnut?

bledulka · Příspěvekod **bledulka** » 06 srp 2010 22:15

Jsem slepá, tu přílohu nevidím :blush:

.
Já pořádně projdu log z OTL a opravím drobnosti v něm, ale asi až zítra.

mato · Příspěvekod **mato** » 06 srp 2010 22:51

objavil som dalsi problem, nemozem pridat zbaleny subor do prilohy - skusal som poslat nieco z jedneho mailu na druhy klikol som na prilozit a otvorilo sa prazdne okno, takisto nemozem nic uploadnut v priebehu uploadovania mi napise Pripojenie bolo ukončené vzdialeným serverom. Skusal som prilozit subory wordu ci excelu a fungovalo to, preco nefunguje rar? Nazov suboru som zmenil z minidump na subory, je problem v tom co sa posiela (minidump)?

bledulka · Příspěvekod **bledulka** » 06 srp 2010 22:55

Bud je tam nějaká potvora zašitá, nebo je nabořený systém.

V nouzovém režimu zkus

Stáhni http://rootrepeal.googlepages.com/RootRepeal.zip
-rozbal a spusť
udělej postupně záložky file a drivers
-proběhne sken, po něm klikni na Save Report , tím se uloží log, který zkopíruješ sem

mato · Příspěvekod **mato** » 06 srp 2010 23:12

logy z rootrepeal:

drivers:

ROOTREPEAL (c) AD, 2007-2009
==================================================
Scan Start Time: 2010/08/06 23:02
Program Version: Version 1.3.5.0
Windows Version: Windows XP SP2
==================================================

Drivers
-------------------
Name:
Image Path:
Address: 0xF7280000 Size: 98304 File Visible: No Signed: -
Status: -

Name:
Image Path:
Address: 0x00000000 Size: 0 File Visible: No Signed: -
Status: -

Name: 1394BUS.SYS
Image Path: E:\WINDOWS\system32\DRIVERS\1394BUS.SYS
Address: 0xF757C000 Size: 53248 File Visible: - Signed: -
Status: -

Name: ACPI.sys
Image Path: ACPI.sys
Address: 0xF72DD000 Size: 187776 File Visible: - Signed: -
Status: -

Name: ACPI_HAL
Image Path: \Driver\ACPI_HAL
Address: 0x804D7000 Size: 2056832 File Visible: - Signed: -
Status: -

Name: activhidsermini.sys
Image Path: E:\WINDOWS\system32\DRIVERS\activhidsermini.sys
Address: 0xF764C000 Size: 54656 File Visible: - Signed: -
Status: -

Name: activmouse.sys
Image Path: E:\WINDOWS\system32\DRIVERS\activmouse.sys
Address: 0xF7A96000 Size: 4480 File Visible: - Signed: -
Status: -

Name: afd.sys
Image Path: E:\WINDOWS\System32\drivers\afd.sys
Address: 0xED008000 Size: 138496 File Visible: - Signed: -
Status: -

Name: ALCXWDM.SYS
Image Path: E:\WINDOWS\system32\drivers\ALCXWDM.SYS
Address: 0xF6560000 Size: 2324480 File Visible: - Signed: -
Status: -

Name: arp1394.sys
Image Path: E:\WINDOWS\system32\DRIVERS\arp1394.sys
Address: 0xF774C000 Size: 60800 File Visible: - Signed: -
Status: -

Name: ASACPI.sys
Image Path: E:\WINDOWS\system32\DRIVERS\ASACPI.sys
Address: 0xF7A8E000 Size: 5152 File Visible: - Signed: -
Status: -

Name: ati2cqag.dll
Image Path: E:\WINDOWS\System32\ati2cqag.dll
Address: 0xBF05F000 Size: 520192 File Visible: - Signed: -
Status: -

Name: ati2dvag.dll
Image Path: E:\WINDOWS\System32\ati2dvag.dll
Address: 0xBF012000 Size: 315392 File Visible: - Signed: -
Status: -

Name: ati2mtag.sys
Image Path: E:\WINDOWS\system32\DRIVERS\ati2mtag.sys
Address: 0xF6083000 Size: 4337664 File Visible: - Signed: -
Status: -

Name: ati3duag.dll
Image Path: E:\WINDOWS\System32\ati3duag.dll
Address: 0xBF17C000 Size: 3178496 File Visible: - Signed: -
Status: -

Name: atikvmag.dll
Image Path: E:\WINDOWS\System32\atikvmag.dll
Address: 0xBF0DE000 Size: 458752 File Visible: - Signed: -
Status: -

Name: atiok3x2.dll
Image Path: E:\WINDOWS\System32\atiok3x2.dll
Address: 0xBF14E000 Size: 188416 File Visible: - Signed: -
Status: -

Name: ativvaxx.dll
Image Path: E:\WINDOWS\System32\ativvaxx.dll
Address: 0xBF484000 Size: 1757184 File Visible: - Signed: -
Status: -

Name: ATMFD.DLL
Image Path: E:\WINDOWS\System32\ATMFD.DLL
Address: 0xBFFA0000 Size: 286720 File Visible: - Signed: -
Status: -

Name: audstub.sys
Image Path: E:\WINDOWS\system32\DRIVERS\audstub.sys
Address: 0xF7C3D000 Size: 3072 File Visible: - Signed: -
Status: -

Name: Beep.SYS
Image Path: E:\WINDOWS\System32\Drivers\Beep.SYS
Address: 0xF7A9C000 Size: 4224 File Visible: - Signed: -
Status: -

Name: BOOTVID.dll
Image Path: E:\WINDOWS\system32\BOOTVID.dll
Address: 0xF796C000 Size: 12288 File Visible: - Signed: -
Status: -

Name: Cdfs.SYS
Image Path: E:\WINDOWS\System32\Drivers\Cdfs.SYS
Address: 0xF776C000 Size: 63744 File Visible: - Signed: -
Status: -

Name: cdrom.sys
Image Path: E:\WINDOWS\system32\DRIVERS\cdrom.sys
Address: 0xF75FC000 Size: 49536 File Visible: - Signed: -
Status: -

Name: CLASSPNP.SYS
Image Path: E:\WINDOWS\system32\DRIVERS\CLASSPNP.SYS
Address: 0xF75BC000 Size: 53248 File Visible: - Signed: -
Status: -

Name: disk.sys
Image Path: disk.sys
Address: 0xF75AC000 Size: 36352 File Visible: - Signed: -
Status: -

Name: dmio.sys
Image Path: dmio.sys
Address: 0xF7298000 Size: 153344 File Visible: - Signed: -
Status: -

Name: dmload.sys
Image Path: dmload.sys
Address: 0xF7A60000 Size: 5888 File Visible: - Signed: -
Status: -

Name: drmk.sys
Image Path: E:\WINDOWS\system32\drivers\drmk.sys
Address: 0xF67CB000 Size: 61440 File Visible: - Signed: -
Status: -

Name: dump_atapi.sys
Image Path: E:\WINDOWS\System32\Drivers\dump_atapi.sys
Address: 0xECE72000 Size: 98304 File Visible: No Signed: -
Status: -

Name: dump_WMILIB.SYS
Image Path: E:\WINDOWS\System32\Drivers\dump_WMILIB.SYS
Address: 0xF7AA8000 Size: 8192 File Visible: No Signed: -
Status: -

Name: Dxapi.sys
Image Path: E:\WINDOWS\System32\drivers\Dxapi.sys
Address: 0xF5180000 Size: 12288 File Visible: - Signed: -
Status: -

Name: dxg.sys
Image Path: E:\WINDOWS\System32\drivers\dxg.sys
Address: 0xBF000000 Size: 73728 File Visible: - Signed: -
Status: -

Name: dxgthk.sys
Image Path: E:\WINDOWS\System32\drivers\dxgthk.sys
Address: 0xF7BAB000 Size: 4096 File Visible: - Signed: -
Status: -

Name: eamon.sys
Image Path: E:\WINDOWS\system32\DRIVERS\eamon.sys
Address: 0xB8626000 Size: 794624 File Visible: - Signed: -
Status: -

Name: ehdrv.sys
Image Path: E:\WINDOWS\system32\DRIVERS\ehdrv.sys
Address: 0xED0F5000 Size: 126976 File Visible: - Signed: -
Status: -

Name: epfwtdir.sys
Image Path: E:\WINDOWS\system32\DRIVERS\epfwtdir.sys
Address: 0xED02A000 Size: 98304 File Visible: - Signed: -
Status: -

Name: Fastfat.SYS
Image Path: E:\WINDOWS\System32\Drivers\Fastfat.SYS
Address: 0xB8293000 Size: 143360 File Visible: - Signed: -
Status: -

Name: fdc.sys
Image Path: E:\WINDOWS\system32\DRIVERS\fdc.sys
Address: 0xF78DC000 Size: 27392 File Visible: - Signed: -
Status: -

Name: Fips.SYS
Image Path: E:\WINDOWS\System32\Drivers\Fips.SYS
Address: 0xF772C000 Size: 34944 File Visible: - Signed: -
Status: -

Name: flpydisk.sys
Image Path: E:\WINDOWS\system32\DRIVERS\flpydisk.sys
Address: 0xF7914000 Size: 20480 File Visible: - Signed: -
Status: -

Name: fltMgr.sys
Image Path: fltMgr.sys
Address: 0xF7261000 Size: 124800 File Visible: - Signed: -
Status: -

Name: Fs_Rec.SYS
Image Path: E:\WINDOWS\System32\Drivers\Fs_Rec.SYS
Address: 0xF7A9A000 Size: 7936 File Visible: - Signed: -
Status: -

Name: ftdisk.sys
Image Path: ftdisk.sys
Address: 0xF72BE000 Size: 125056 File Visible: - Signed: -
Status: -

Name: gameenum.sys
Image Path: E:\WINDOWS\system32\DRIVERS\gameenum.sys
Address: 0xF7137000 Size: 10624 File Visible: - Signed: -
Status: -

Name: giveio.sys
Image Path: giveio.sys
Address: 0xF7B25000 Size: 1664 File Visible: No Signed: -
Status: -

Name: hal.dll
Image Path: E:\WINDOWS\system32\hal.dll
Address: 0x806CE000 Size: 131968 File Visible: - Signed: -
Status: -

Name: HIDCLASS.SYS
Image Path: E:\WINDOWS\system32\DRIVERS\HIDCLASS.SYS
Address: 0xF765C000 Size: 36864 File Visible: - Signed: -
Status: -

Name: HIDPARSE.SYS
Image Path: E:\WINDOWS\system32\DRIVERS\HIDPARSE.SYS
Address: 0xF78EC000 Size: 28672 File Visible: - Signed: -
Status: -

Name: hidusb.sys
Image Path: E:\WINDOWS\system32\DRIVERS\hidusb.sys
Address: 0xF7A2C000 Size: 9600 File Visible: - Signed: -
Status: -

Name: HTTP.sys
Image Path: E:\WINDOWS\System32\Drivers\HTTP.sys
Address: 0xB7A8E000 Size: 263040 File Visible: - Signed: -
Status: -

Name: i8042prt.sys
Image Path: E:\WINDOWS\system32\DRIVERS\i8042prt.sys
Address: 0xF763C000 Size: 52736 File Visible: - Signed: -
Status: -

Name: imapi.sys
Image Path: E:\WINDOWS\system32\DRIVERS\imapi.sys
Address: 0xF67BB000 Size: 41856 File Visible: - Signed: -
Status: -

Name: ipnat.sys
Image Path: E:\WINDOWS\system32\DRIVERS\ipnat.sys
Address: 0xECE8A000 Size: 134912 File Visible: - Signed: -
Status: -

Name: ipsec.sys
Image Path: E:\WINDOWS\system32\DRIVERS\ipsec.sys
Address: 0xED0C2000 Size: 74752 File Visible: - Signed: -
Status: -

Name: isapnp.sys
Image Path: isapnp.sys
Address: 0xF755C000 Size: 35840 File Visible: - Signed: -
Status: -

Name: kbdclass.sys
Image Path: E:\WINDOWS\system32\DRIVERS\kbdclass.sys
Address: 0xF78E4000 Size: 24576 File Visible: - Signed: -
Status: -

Name: KDCOM.DLL
Image Path: E:\WINDOWS\system32\KDCOM.DLL
Address: 0xF7A5C000 Size: 8192 File Visible: - Signed: -
Status: -

Name: kmixer.sys
Image Path: E:\WINDOWS\system32\drivers\kmixer.sys
Address: 0xB7884000 Size: 171776 File Visible: - Signed: -
Status: -

Name: ks.sys
Image Path: E:\WINDOWS\system32\drivers\ks.sys
Address: 0xF6519000 Size: 143360 File Visible: - Signed: -
Status: -

Name: KSecDD.sys
Image Path: KSecDD.sys
Address: 0xF7238000 Size: 92032 File Visible: - Signed: -
Status: -

Name: mnmdd.SYS
Image Path: E:\WINDOWS\System32\Drivers\mnmdd.SYS
Address: 0xF7AA2000 Size: 4224 File Visible: - Signed: -
Status: -

Name: mouclass.sys
Image Path: E:\WINDOWS\system32\DRIVERS\mouclass.sys
Address: 0xF790C000 Size: 23040 File Visible: - Signed: -
Status: -

Name: mouhid.sys
Image Path: E:\WINDOWS\system32\DRIVERS\mouhid.sys
Address: 0xF70FF000 Size: 12160 File Visible: - Signed: -
Status: -

Name: MountMgr.sys
Image Path: MountMgr.sys
Address: 0xF758C000 Size: 42240 File Visible: - Signed: -
Status: -

Name: mrxdav.sys
Image Path: E:\WINDOWS\system32\DRIVERS\mrxdav.sys
Address: 0xB7EBA000 Size: 181248 File Visible: - Signed: -
Status: -

Name: mrxsmb.sys
Image Path: E:\WINDOWS\system32\DRIVERS\mrxsmb.sys
Address: 0xECEAB000 Size: 451456 File Visible: - Signed: -
Status: -

Name: Msfs.SYS
Image Path: E:\WINDOWS\System32\Drivers\Msfs.SYS
Address: 0xF7934000 Size: 19072 File Visible: - Signed: -
Status: -

Name: msgpc.sys
Image Path: E:\WINDOWS\system32\DRIVERS\msgpc.sys
Address: 0xF769C000 Size: 35072 File Visible: - Signed: -
Status: -

Name: msmpu401.sys
Image Path: E:\WINDOWS\system32\drivers\msmpu401.sys
Address: 0xF7C3C000 Size: 2944 File Visible: - Signed: -
Status: -

Name: mssmbios.sys
Image Path: E:\WINDOWS\system32\DRIVERS\mssmbios.sys
Address: 0xF710B000 Size: 15488 File Visible: - Signed: -
Status: -

Name: Mup.sys
Image Path: Mup.sys
Address: 0xF7163000 Size: 107904 File Visible: - Signed: -
Status: -

Name: NDIS.sys
Image Path: NDIS.sys
Address: 0xF717E000 Size: 182912 File Visible: - Signed: -
Status: -

Name: ndistapi.sys
Image Path: E:\WINDOWS\system32\DRIVERS\ndistapi.sys
Address: 0xF7127000 Size: 9600 File Visible: - Signed: -
Status: -

Name: ndisuio.sys
Image Path: E:\WINDOWS\system32\DRIVERS\ndisuio.sys
Address: 0xB861E000 Size: 12928 File Visible: - Signed: -
Status: -

Name: ndiswan.sys
Image Path: E:\WINDOWS\system32\DRIVERS\ndiswan.sys
Address: 0xF5EBA000 Size: 91776 File Visible: - Signed: -
Status: -

Name: NDProxy.SYS
Image Path: E:\WINDOWS\System32\Drivers\NDProxy.SYS
Address: 0xF76DC000 Size: 38016 File Visible: - Signed: -
Status: -

Name: netbios.sys
Image Path: E:\WINDOWS\system32\DRIVERS\netbios.sys
Address: 0xF771C000 Size: 34560 File Visible: - Signed: -
Status: -

Name: netbt.sys
Image Path: E:\WINDOWS\system32\DRIVERS\netbt.sys
Address: 0xED042000 Size: 162816 File Visible: - Signed: -
Status: -

Name: nic1394.sys
Image Path: E:\WINDOWS\system32\DRIVERS\nic1394.sys
Address: 0xF761C000 Size: 61824 File Visible: - Signed: -
Status: -

Name: Npfs.SYS
Image Path: E:\WINDOWS\System32\Drivers\Npfs.SYS
Address: 0xF793C000 Size: 30848 File Visible: - Signed: -
Status: -

Name: Ntfs.sys
Image Path: Ntfs.sys
Address: 0xF71AB000 Size: 574592 File Visible: - Signed: -
Status: -

Name: ntkrnlpa.exe
Image Path: E:\WINDOWS\system32\ntkrnlpa.exe
Address: 0x804D7000 Size: 2056832 File Visible: - Signed: -
Status: -

Name: Null.SYS
Image Path: E:\WINDOWS\System32\Drivers\Null.SYS
Address: 0xF7C11000 Size: 2944 File Visible: - Signed: -
Status: -

Name: nvnetbus.sys
Image Path: E:\WINDOWS\system32\DRIVERS\nvnetbus.sys
Address: 0xF713F000 Size: 12928 File Visible: - Signed: -
Status: -

Name: NVNRM.SYS
Image Path: E:\WINDOWS\system32\DRIVERS\NVNRM.SYS
Address: 0xF64D9000 Size: 262144 File Visible: - Signed: -
Status: -

Name: NVSNPU.SYS
Image Path: E:\WINDOWS\system32\DRIVERS\NVSNPU.SYS
Address: 0xF64A6000 Size: 208896 File Visible: - Signed: -
Status: -

Name: ohci1394.sys
Image Path: ohci1394.sys
Address: 0xF756C000 Size: 61056 File Visible: - Signed: -
Status: -

Name: parport.sys
Image Path: E:\WINDOWS\system32\DRIVERS\parport.sys
Address: 0xF5EF9000 Size: 80128 File Visible: - Signed: -
Status: -

Name: PartMgr.sys
Image Path: PartMgr.sys
Address: 0xF77E4000 Size: 18688 File Visible: - Signed: -
Status: -

Name: ParVdm.SYS
Image Path: E:\WINDOWS\System32\Drivers\ParVdm.SYS
Address: 0xF7B0C000 Size: 6784 File Visible: - Signed: -
Status: -

Name: pci.sys
Image Path: pci.sys
Address: 0xF730B000 Size: 68224 File Visible: - Signed: -
Status: -

Name: PCI_PNP5328
Image Path: \Driver\PCI_PNP5328
Address: 0x00000000 Size: 0 File Visible: No Signed: -
Status: -

Name: pciide.sys
Image Path: pciide.sys
Address: 0xF7B24000 Size: 3328 File Visible: - Signed: -
Status: -

Name: PCIIDEX.SYS
Image Path: E:\WINDOWS\system32\DRIVERS\PCIIDEX.SYS
Address: 0xF77DC000 Size: 28672 File Visible: - Signed: -
Status: -

Name: pfc.sys
Image Path: E:\WINDOWS\system32\drivers\pfc.sys
Address: 0xF7A54000 Size: 10368 File Visible: - Signed: -
Status: -

Name: PnpManager
Image Path: \Driver\PnpManager
Address: 0x804D7000 Size: 2056832 File Visible: - Signed: -
Status: -

Name: portcls.sys
Image Path: E:\WINDOWS\system32\drivers\portcls.sys
Address: 0xF653C000 Size: 147456 File Visible: - Signed: -
Status: -

Name: processr.sys
Image Path: E:\WINDOWS\system32\DRIVERS\processr.sys
Address: 0xF67DB000 Size: 35328 File Visible: - Signed: -
Status: -

Name: psched.sys
Image Path: E:\WINDOWS\system32\DRIVERS\psched.sys
Address: 0xF5EA9000 Size: 69120 File Visible: - Signed: -
Status: -

Name: ptilink.sys
Image Path: E:\WINDOWS\system32\DRIVERS\ptilink.sys
Address: 0xF78FC000 Size: 17792 File Visible: - Signed: -
Status: -

Name: PxHelp20.sys
Image Path: PxHelp20.sys
Address: 0xF75CC000 Size: 35712 File Visible: - Signed: -
Status: -

Name: rasacd.sys
Image Path: E:\WINDOWS\system32\DRIVERS\rasacd.sys
Address: 0xF7A3C000 Size: 8832 File Visible: - Signed: -
Status: -

Name: rasl2tp.sys
Image Path: E:\WINDOWS\system32\DRIVERS\rasl2tp.sys
Address: 0xF766C000 Size: 51328 File Visible: - Signed: -
Status: -

Name: raspppoe.sys
Image Path: E:\WINDOWS\system32\DRIVERS\raspppoe.sys
Address: 0xF767C000 Size: 41472 File Visible: - Signed: -
Status: -

Name: raspptp.sys
Image Path: E:\WINDOWS\system32\DRIVERS\raspptp.sys
Address: 0xF768C000 Size: 48384 File Visible: - Signed: -
Status: -

Name: raspti.sys
Image Path: E:\WINDOWS\system32\DRIVERS\raspti.sys
Address: 0xF7904000 Size: 16512 File Visible: - Signed: -
Status: -

Name: RAW
Image Path: \FileSystem\RAW
Address: 0x804D7000 Size: 2056832 File Visible: - Signed: -
Status: -

Name: rdbss.sys
Image Path: E:\WINDOWS\system32\DRIVERS\rdbss.sys
Address: 0xECF1A000 Size: 176512 File Visible: - Signed: -
Status: -

Name: RDPCDD.sys
Image Path: E:\WINDOWS\System32\DRIVERS\RDPCDD.sys
Address: 0xF7AA4000 Size: 4224 File Visible: - Signed: -
Status: -

Name: rdpdr.sys
Image Path: E:\WINDOWS\system32\DRIVERS\rdpdr.sys
Address: 0xF51B8000 Size: 196864 File Visible: - Signed: -
Status: -

Name: redbook.sys
Image Path: E:\WINDOWS\system32\DRIVERS\redbook.sys
Address: 0xF760C000 Size: 57472 File Visible: - Signed: -
Status: -

Name: rootrepeal.sys
Image Path: E:\WINDOWS\system32\drivers\rootrepeal.sys
Address: 0xB833E000 Size: 49152 File Visible: No Signed: -
Status: -

Name: RTL8139.SYS
Image Path: E:\WINDOWS\system32\DRIVERS\RTL8139.SYS
Address: 0xF78D4000 Size: 20992 File Visible: - Signed: -
Status: -

Name: SASDIFSV.SYS
Image Path: E:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
Address: 0xF7944000 Size: 24576 File Visible: - Signed: -
Status: -

Name: SASKUTIL.SYS
Image Path: E:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
Address: 0xECF46000 Size: 139264 File Visible: - Signed: -
Status: -

Name: SCSIPORT.SYS
Image Path: E:\WINDOWS\System32\Drivers\SCSIPORT.SYS
Address: 0xF7343000 Size: 98304 File Visible: - Signed: -
Status: -

Name: secdrv.sys
Image Path: E:\WINDOWS\system32\DRIVERS\secdrv.sys
Address: 0xB7E8E000 Size: 11200 File Visible: - Signed: -
Status: -

Name: serenum.sys
Image Path: E:\WINDOWS\system32\DRIVERS\serenum.sys
Address: 0xF713B000 Size: 15488 File Visible: - Signed: -
Status: -

Name: serial.sys
Image Path: E:\WINDOWS\system32\DRIVERS\serial.sys
Address: 0xF762C000 Size: 64896 File Visible: - Signed: -
Status: -

Name: speedfan.sys
Image Path: speedfan.sys
Address: 0xF7A64000 Size: 5248 File Visible: No Signed: -
Status: -

Name: spnl.sys
Image Path: spnl.sys
Address: 0xF735B000 Size: 1048576 File Visible: No Signed: -
Status: -

Name: sptd
Image Path: \Driver\sptd
Address: 0x00000000 Size: 0 File Visible: No Signed: -
Status: -

Name: sr.sys
Image Path: sr.sys
Address: 0xF724F000 Size: 73472 File Visible: - Signed: -
Status: -

Name: srv.sys
Image Path: E:\WINDOWS\system32\DRIVERS\srv.sys
Address: 0xB7DEF000 Size: 336256 File Visible: - Signed: -
Status: -

Name: swenum.sys
Image Path: E:\WINDOWS\system32\DRIVERS\swenum.sys
Address: 0xF7A92000 Size: 4352 File Visible: - Signed: -
Status: -

Name: sysaudio.sys
Image Path: E:\WINDOWS\system32\drivers\sysaudio.sys
Address: 0xB87B8000 Size: 60800 File Visible: - Signed: -
Status: -

Name: tcpip.sys
Image Path: E:\WINDOWS\system32\DRIVERS\tcpip.sys
Address: 0xED06A000 Size: 359040 File Visible: - Signed: -
Status: -

Name: TDI.SYS
Image Path: E:\WINDOWS\system32\DRIVERS\TDI.SYS
Address: 0xF78F4000 Size: 20480 File Visible: - Signed: -
Status: -

Name: termdd.sys
Image Path: E:\WINDOWS\system32\DRIVERS\termdd.sys
Address: 0xF76BC000 Size: 40704 File Visible: - Signed: -
Status: -

Name: update.sys
Image Path: E:\WINDOWS\system32\DRIVERS\update.sys
Address: 0xF5184000 Size: 209408 File Visible: - Signed: -
Status: -

Name: USBD.SYS
Image Path: E:\WINDOWS\system32\DRIVERS\USBD.SYS
Address: 0xF7A94000 Size: 8192 File Visible: - Signed: -
Status: -

Name: usbehci.sys
Image Path: E:\WINDOWS\system32\DRIVERS\usbehci.sys
Address: 0xF78CC000 Size: 26624 File Visible: - Signed: -
Status: -

Name: usbhub.sys
Image Path: E:\WINDOWS\system32\DRIVERS\usbhub.sys
Address: 0xF76CC000 Size: 57600 File Visible: - Signed: -
Status: -

Name: usbohci.sys
Image Path: E:\WINDOWS\system32\DRIVERS\usbohci.sys
Address: 0xF78C4000 Size: 17024 File Visible: - Signed: -
Status: -

Name: USBPORT.SYS
Image Path: E:\WINDOWS\system32\DRIVERS\USBPORT.SYS
Address: 0xF6798000 Size: 143360 File Visible: - Signed: -
Status: -

Name: Vax347b.sys
Image Path: Vax347b.sys
Address: 0xF731C000 Size: 159616 File Visible: - Signed: -
Status: -

Name: Vax347s.sys
Image Path: Vax347s.sys
Address: 0xF7A62000 Size: 5248 File Visible: - Signed: -
Status: -

Name: vga.sys
Image Path: E:\WINDOWS\System32\drivers\vga.sys
Address: 0xF792C000 Size: 20992 File Visible: - Signed: -
Status: -

Name: VIDEOPRT.SYS
Image Path: E:\WINDOWS\system32\DRIVERS\VIDEOPRT.SYS
Address: 0xF5F0D000 Size: 81920 File Visible: - Signed: -
Status: -

Name: VolSnap.sys
Image Path: VolSnap.sys
Address: 0xF759C000 Size: 52352 File Visible: - Signed: -
Status: -

Name: wanarp.sys
Image Path: E:\WINDOWS\system32\DRIVERS\wanarp.sys
Address: 0xF773C000 Size: 34560 File Visible: - Signed: -
Status: -

Name: watchdog.sys
Image Path: E:\WINDOWS\System32\watchdog.sys
Address: 0xF795C000 Size: 20480 File Visible: - Signed: -
Status: -

Name: wdmaud.sys
Image Path: E:\WINDOWS\system32\drivers\wdmaud.sys
Address: 0xB8256000 Size: 82944 File Visible: - Signed: -
Status: -

Name: Win32k
Image Path: \Driver\Win32k
Address: 0xBF800000 Size: 1839104 File Visible: - Signed: -
Status: -

Name: win32k.sys
Image Path: E:\WINDOWS\System32\win32k.sys
Address: 0xBF800000 Size: 1839104 File Visible: - Signed: -
Status: -

Name: WMILIB.SYS
Image Path: E:\WINDOWS\System32\Drivers\WMILIB.SYS
Address: 0xF7A5E000 Size: 8192 File Visible: - Signed: -
Status: -

Name: WMIxWDM
Image Path: \Driver\WMIxWDM
Address: 0x804D7000 Size: 2056832 File Visible: - Signed: -
Status: -

files:

ROOTREPEAL (c) AD, 2007-2009
==================================================
Scan Start Time: 2010/08/06 23:11
Program Version: Version 1.3.5.0
Windows Version: Windows XP SP2
==================================================

Hidden/Locked Files
-------------------

Některé programy nejdou spustit nebo se samy ukončují

Re: Některé programy nejdou spustit nebo se samy ukončují

Re: Některé programy nejdou spustit nebo se samy ukončují

Re: Některé programy nejdou spustit nebo se samy ukončují

Re: Některé programy nejdou spustit nebo se samy ukončují

Re: Některé programy nejdou spustit nebo se samy ukončují

Re: Některé programy nejdou spustit nebo se samy ukončují

Re: Některé programy nejdou spustit nebo se samy ukončují

Re: Některé programy nejdou spustit nebo se samy ukončují

Re: Některé programy nejdou spustit nebo se samy ukončují

Re: Některé programy nejdou spustit nebo se samy ukončují

Re: Některé programy nejdou spustit nebo se samy ukončují

Re: Některé programy nejdou spustit nebo se samy ukončují

Kdo je online