Oba logy z avengeru a HJT daj sem.BUBINO píše:Tento subor :
C:\oxigslxn.bat
Klikni nan pravym tlacitkom mysi >> Upravit, a vypis, ktori naskoci v poznamkovom bloku mi skopiruj na sukromnu spravu.
V HJT zafixuj :
O4 - HKLM\..\Run: [btoipiby] C:\oxigslxn.bat
Do avengera napis :
Files to delete:
C:\oxigslxn.bat
HijackThis utilita + LOGY k posouzeni
- BUBINO
- Začátečník
-
- Registrován: 12. čer 2007
- Bydliště: Mám
Re: odp
- jansimo
- Nováček
-
- Registrován: 06. čer 2007
odp.
ten subor som v C neNASIEL
urobil somo avenger aj fix
avenger mi neurobil log
posielam log hijack
Logfile of HijackThis v1.99.1
Scan saved at 22:13:41, on 13.2.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Microcom\ADSL DeskPorte USB\CnxDslTb.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
C:\Program Files\WinFast\WFDTV\WFWIZ.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Netscape\Navigator 9\navigator.exe
C:\Documents and Settings\PC\Desktop\hijackthis.exe
O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [CnxDslTaskBar] "C:\Program Files\Microcom\ADSL DeskPorte USB\CnxDslTb.exe" "Microcom\ADSL DeskPorte USB"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [WinFastDTV] C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
O4 - HKLM\..\Run: [WinFast Schedule] C:\Program Files\WinFast\WFDTV\WFWIZ.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NSLauncher] C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe /startup
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Photosmart Premier Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{7B2FE6AA-664A-4DD2-A46F-1DA7E9D36BA0}: NameServer = 195.146.132.58 195.146.128.60
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
urobil somo avenger aj fix
avenger mi neurobil log
posielam log hijack
Logfile of HijackThis v1.99.1
Scan saved at 22:13:41, on 13.2.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Microcom\ADSL DeskPorte USB\CnxDslTb.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
C:\Program Files\WinFast\WFDTV\WFWIZ.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Netscape\Navigator 9\navigator.exe
C:\Documents and Settings\PC\Desktop\hijackthis.exe
O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [CnxDslTaskBar] "C:\Program Files\Microcom\ADSL DeskPorte USB\CnxDslTb.exe" "Microcom\ADSL DeskPorte USB"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [WinFastDTV] C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
O4 - HKLM\..\Run: [WinFast Schedule] C:\Program Files\WinFast\WFDTV\WFWIZ.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NSLauncher] C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe /startup
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Photosmart Premier Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{7B2FE6AA-664A-4DD2-A46F-1DA7E9D36BA0}: NameServer = 195.146.132.58 195.146.128.60
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
- BUBINO
- Začátečník
-
- Registrován: 12. čer 2007
- Bydliště: Mám
- Baron Prášil
- Začátečník
-
- Registrován: 08. čer 2006
- hamlet
- Nováček
-
- Registrován: 31. črc 2007
kontrola logu
rosím o kontrolu logu př zapnutí Pc mě "zamrzá"....zde je log z Hijack this:Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:45:59, on 4.3.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\tsnpstd3.exe
C:\WINDOWS\vsnpstd3.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\internet explorer\iexplore.exe
C:\PROGRA~1\Crawler\Toolbar\CToolbar.exe
C:\Program Files\HP\Smart Web Printing\hpswp_clipbook.exe
C:\Documents and Settings\X.999A\Plocha\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=61005
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=61005
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\TRANSLAT\WEBIE.DLL
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Kniha klipů HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: HP Chytrý výběr - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 1410674279
O17 - HKLM\System\CCS\Services\Tcpip\..\{9BFDC206-0AE8-46DA-B5EF-664F99C161EE}: NameServer = 192.168.20.254,10.10.10.10
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: Spyware Terminator Clam Service (sp_clamsrv) - Crawler.com - C:\Program Files\WinClamAVShield\sp_clamsrv.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
--
End of file - 8956 bytes
a zde z combo fix :ComboFix 07-07-30.2 - "X" 2008-03-04 22:36:28.20 [GMT 1:00] - FAT32
Syst‚m Microsoft Windows XP Professional 5.1.2600.2.1250.1.1029.18.True
((((((((((((((((((((((((( Files Created from 2008-02-04 to 2008-03-04 )))))))))))))))))))))))))))))))
2008-03-02 13:09 <DIR> d--hs---- C:\FOUND.064
2008-02-27 18:57 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\Spyware Terminator
2008-02-26 13:25 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\Help
2008-02-25 13:56 <DIR> d--hs---- C:\FOUND.063
2008-02-23 07:06 85,376 --a------ C:\WINDOWS\system32\drivers\NABTSFEC.sys
2008-02-23 07:06 59,264 --a------ C:\WINDOWS\system32\drivers\USBAUDIO.sys
2008-02-23 07:06 5,504 --a------ C:\WINDOWS\system32\drivers\MSTEE.sys
2008-02-23 07:06 19,328 --a------ C:\WINDOWS\system32\drivers\WSTCODEC.SYS
2008-02-23 07:06 17,024 --a------ C:\WINDOWS\system32\drivers\CCDECODE.sys
2008-02-23 07:06 15,360 --a------ C:\WINDOWS\system32\drivers\StreamIP.sys
2008-02-23 07:06 11,136 --a------ C:\WINDOWS\system32\drivers\SLIP.sys
2008-02-23 07:06 10,880 --a------ C:\WINDOWS\system32\drivers\NdisIP.sys
2008-02-23 07:04 54,272 --a------ C:\WINDOWS\system32\vfwwdm32.dll
2008-02-23 06:55 94,208 --a------ C:\WINDOWS\amcap.exe
2008-02-23 06:54 843,776 --a------ C:\WINDOWS\vsnpstd3.exe
2008-02-23 06:54 61,440 --a------ C:\WINDOWS\system32\vsnpstd3.dll
2008-02-23 06:54 53,248 --a------ C:\WINDOWS\system32\csnpstd3.dll
2008-02-23 06:54 53,248 --a------ C:\WINDOWS\csnpstd3.dll
2008-02-23 06:54 368,640 --a------ C:\WINDOWS\tsnpstd3.exe
2008-02-23 06:54 172,032 --a------ C:\WINDOWS\system32\rsnpstd3.dll
2008-02-23 06:54 10,222,720 --a------ C:\WINDOWS\system32\drivers\snpstd3.sys
2008-02-23 06:54 <DIR> d-------- C:\Program Files\Common Files\snpstd3
2008-02-23 06:53 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\InstallShield
2008-02-17 09:21 <DIR> d-------- C:\Program Files\Skype
2008-02-17 09:21 <DIR> d-------- C:\Program Files\Common Files\Skype
2008-02-16 19:12 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\HP
2008-02-16 19:09 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\WEBREG
2008-02-16 19:08 49,920 -ra------ C:\WINDOWS\system32\drivers\HPZid412.sys
2008-02-16 19:08 16,496 -ra------ C:\WINDOWS\system32\drivers\HPZipr12.sys
2008-02-16 19:07 267,864 -ra------ C:\WINDOWS\system32\hpzids01.dll
2008-02-16 19:07 118,272 --a------ C:\WINDOWS\system32\hpz3l5ha.dll
2008-02-16 19:07 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\Hewlett-Packard
2008-02-16 19:06 958,464 -ra------ C:\WINDOWS\system32\hpotiop4.dll
2008-02-16 19:06 675,840 -ra------ C:\WINDOWS\system32\hpowiax4.dll
2008-02-16 19:06 364,544 -ra------ C:\WINDOWS\system32\hppldcoi.dll
2008-02-16 19:06 309,760 -ra------ C:\WINDOWS\system32\difxapi.dll
2008-02-16 19:06 303,104 -ra------ C:\WINDOWS\system32\hpovst11.dll
2008-02-16 19:06 21,568 -ra------ C:\WINDOWS\system32\drivers\HPZius12.sys
2008-02-16 18:59 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\HPSSUPPLY
2008-02-16 18:58 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\HPAppData
2008-02-16 18:51 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\HP Product Assistant
2008-02-16 18:51 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\HP
2008-02-16 18:50 <DIR> d-------- C:\Program Files\Common Files\HP
2008-02-16 18:47 <DIR> d-------- C:\Program Files\Hewlett-Packard
2008-02-16 18:47 <DIR> d-------- C:\Program Files\Common Files\Hewlett-Packard
2008-02-16 18:43 31,616 --a------ C:\WINDOWS\system32\drivers\usbccgp.sys
2008-02-16 18:43 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys
2008-02-16 18:43 <DIR> d-------- C:\Program Files\HP
2008-02-16 18:39 156,681 --a------ C:\WINDOWS\hpoins15.dat
2008-02-16 18:39 1,039 --------- C:\WINDOWS\hpomdl15.dat
2008-02-12 19:27 <DIR> d-------- C:\Program Files\CCleaner
2008-02-12 19:25 2,733,928 --a------ C:\Program Files\ccsetup204.exe
2008-02-11 21:26 15,718,949 --a------ C:\Program Files\OnlineArmor_Setup_Free.exe
2008-02-10 19:32 691,545 --a------ C:\WINDOWS\unins000.exe
2008-02-10 19:32 3,440 --a------ C:\WINDOWS\unins000.dat
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
2008-02-27 18:56 138752 --a------ C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
2008-01-25 16:28 2478876 --a------ C:\Program Files\setup.exe
2008-01-23 03:17 423736 --a------ C:\Program Files\avgarkt-setup-1.1.0.42.exe
2008-01-17 16:32 --------- d-------- C:\Program Files\K-Lite Codec Pack
2008-01-17 16:32 --------- d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\Real
2008-01-16 21:30 --------- d-------- C:\Program Files\ACE Mega CoDecS Pack
2008-01-16 21:20 --------- d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\Media Player Classic
2008-01-05 19:48 1120713 --a------ C:\Program Files\ATT00210.jpg.zip
2007-12-28 16:41 0 --a------ C:\Program Files\download.htm
2007-12-28 16:40 0 --a------ C:\Program Files\Fwd_Program_SKYPE..eml
2007-12-24 16:14 12841064 --a------ C:\Program Files\SkypeSetup.exe
2007-12-04 14:04 837496 --a------ C:\WINDOWS\system32\aswBoot.exe
2007-12-04 13:54 95608 --a------ C:\WINDOWS\system32\AVASTSS.scr
2007-11-02 18:49 10603776 --a------ C:\Program Files\TU2007TrialEN.exe
2007-10-05 22:01 19755376 --a------ C:\Program Files\aaw2007.exe
2007-09-17 19:21 21344 --a------ C:\DOCUME~1\X9EB6~1.999\DATAAP~1\GDIPFONTCACHEV1.DAT
2007-09-02 17:44 6572680 --a------ C:\Program Files\Opera_9.22_International_Setup.exe
2007-08-16 22:24 11284970 --a------ C:\Program Files\cdbxp_setup_3.0.116.zip
2007-08-01 21:01 1376079 --a------ C:\Program Files\ComboFix.exe
2007-07-31 19:18 318369 --a------ C:\Program Files\HijackThis.zip
2007-07-16 18:32 733995 --a------ C:\Program Files\DVDDecrypter3540_cz.rar
2007-07-16 18:31 899414 --a------ C:\Program Files\SetupDVDDecrypter_3.5.4.0.exe
2007-05-11 20:36 15063654 --a------ C:\Program Files\vkzsetup.exe
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
2007-03-02 16:52 1298024 -ra------ C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{053F9267-DC04-4294-A72C-58F732D338C0}]
2007-03-02 16:52 177768 -ra------ C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00]
"SpywareTerminator"="C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe" [2008-02-27 18:56]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2007-03-11 21:34]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-17 13:49]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2008-01-28 11:43]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 18:24]
C:\Documents and Settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2007-03-11 21:26:24]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"ICQ Lite"="C:\Program Files\ICQLite\ICQLite.exe" -minimize
R0 JGOGO;JMicron Hot-Plug Driver;C:\WINDOWS\system32\DRIVERS\JGOGO.sys
R0 JRAID;JRAID;C:\WINDOWS\system32\DRIVERS\jraid.sys
R1 AvgArCln;Avg Anti-Rootkit Clean Driver;C:\WINDOWS\system32\DRIVERS\AvgArCln.sys
R1 fwdrv;Firewall Driver;C:\WINDOWS\system32\drivers\fwdrv.sys
R1 khips;Kerio HIPS Driver;C:\WINDOWS\system32\drivers\khips.sys
R1 sp_rsdrv2;Spyware Terminator Driver 2;\??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
R2 {95808DC4-FA4A-4c74-92FE-5B863F82066B};{95808DC4-FA4A-4c74-92FE-5B863F82066B};\??\C:\Program Files\CyberLink\PowerDVD\000.fcl
R2 hpqddsvc;Slu§ba HP CUE DeviceDiscovery;C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
R2 Net Driver HPZ12;Net Driver HPZ12;C:\WINDOWS\System32\svchost.exe -k HPZ12
R2 SPF4;Sunbelt Personal Firewall 4;"C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe"
R2 UxTuneUp;TuneUp Theme Extension;C:\WINDOWS\System32\svchost.exe -k netsvcs
R3 hpqcxs08;hpqcxs08;C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
R3 PSched;Pl novaź paket… technologie QoS;C:\WINDOWS\system32\DRIVERS\psched.sys
R3 SNPSTD3;USB PC Camera (SNPSTD3);C:\WINDOWS\system32\DRIVERS\snpstd3.sys
S3 gdrv;gdrv;\??\C:\WINDOWS\gdrv.sys
S3 GVCplDrv;GVCplDrv;C:\WINDOWS\system32\drivers\GVCplDrv.sys
S3 MSIRCOMM;Microsoft IR Communications Driver;C:\WINDOWS\system32\DRIVERS\MSIRCOMM.sys
S3 STIrUsb;SigmaTel USB-IrDA Dongle;C:\WINDOWS\system32\DRIVERS\irstusb.sys
S3 TUWinStylerThemeSvc;TuneUp WinStyler Theme Service;"C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe"
S3 winrpc;winrpc;\??\C:\WINDOWS\system32\drivers\winrpcpp.sys
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt hpqcxs08 hpqddsvc
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
Schedule
UxTuneUp
Contents of the 'Scheduled Tasks' folder
2008-02-29 16:16:08 C:\WINDOWS\Tasks\1-Click Maintenance.job
**************************************************************************
catchme 0.3.1061 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-04 22:38:42
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ...
C:\WINDOWS\system32\cmd.exe [176] 0x85E85DA0
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
Completion time: 2008-03-04 22:40:10
C:\ComboFix-quarantined-files.txt ... 2008-03-04 22:40
--- E O F ---
Scan saved at 22:45:59, on 4.3.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\tsnpstd3.exe
C:\WINDOWS\vsnpstd3.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\internet explorer\iexplore.exe
C:\PROGRA~1\Crawler\Toolbar\CToolbar.exe
C:\Program Files\HP\Smart Web Printing\hpswp_clipbook.exe
C:\Documents and Settings\X.999A\Plocha\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=61005
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=61005
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\TRANSLAT\WEBIE.DLL
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Kniha klipů HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: HP Chytrý výběr - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 1410674279
O17 - HKLM\System\CCS\Services\Tcpip\..\{9BFDC206-0AE8-46DA-B5EF-664F99C161EE}: NameServer = 192.168.20.254,10.10.10.10
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: Spyware Terminator Clam Service (sp_clamsrv) - Crawler.com - C:\Program Files\WinClamAVShield\sp_clamsrv.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
--
End of file - 8956 bytes
a zde z combo fix :ComboFix 07-07-30.2 - "X" 2008-03-04 22:36:28.20 [GMT 1:00] - FAT32
Syst‚m Microsoft Windows XP Professional 5.1.2600.2.1250.1.1029.18.True
((((((((((((((((((((((((( Files Created from 2008-02-04 to 2008-03-04 )))))))))))))))))))))))))))))))
2008-03-02 13:09 <DIR> d--hs---- C:\FOUND.064
2008-02-27 18:57 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\Spyware Terminator
2008-02-26 13:25 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\Help
2008-02-25 13:56 <DIR> d--hs---- C:\FOUND.063
2008-02-23 07:06 85,376 --a------ C:\WINDOWS\system32\drivers\NABTSFEC.sys
2008-02-23 07:06 59,264 --a------ C:\WINDOWS\system32\drivers\USBAUDIO.sys
2008-02-23 07:06 5,504 --a------ C:\WINDOWS\system32\drivers\MSTEE.sys
2008-02-23 07:06 19,328 --a------ C:\WINDOWS\system32\drivers\WSTCODEC.SYS
2008-02-23 07:06 17,024 --a------ C:\WINDOWS\system32\drivers\CCDECODE.sys
2008-02-23 07:06 15,360 --a------ C:\WINDOWS\system32\drivers\StreamIP.sys
2008-02-23 07:06 11,136 --a------ C:\WINDOWS\system32\drivers\SLIP.sys
2008-02-23 07:06 10,880 --a------ C:\WINDOWS\system32\drivers\NdisIP.sys
2008-02-23 07:04 54,272 --a------ C:\WINDOWS\system32\vfwwdm32.dll
2008-02-23 06:55 94,208 --a------ C:\WINDOWS\amcap.exe
2008-02-23 06:54 843,776 --a------ C:\WINDOWS\vsnpstd3.exe
2008-02-23 06:54 61,440 --a------ C:\WINDOWS\system32\vsnpstd3.dll
2008-02-23 06:54 53,248 --a------ C:\WINDOWS\system32\csnpstd3.dll
2008-02-23 06:54 53,248 --a------ C:\WINDOWS\csnpstd3.dll
2008-02-23 06:54 368,640 --a------ C:\WINDOWS\tsnpstd3.exe
2008-02-23 06:54 172,032 --a------ C:\WINDOWS\system32\rsnpstd3.dll
2008-02-23 06:54 10,222,720 --a------ C:\WINDOWS\system32\drivers\snpstd3.sys
2008-02-23 06:54 <DIR> d-------- C:\Program Files\Common Files\snpstd3
2008-02-23 06:53 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\InstallShield
2008-02-17 09:21 <DIR> d-------- C:\Program Files\Skype
2008-02-17 09:21 <DIR> d-------- C:\Program Files\Common Files\Skype
2008-02-16 19:12 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\HP
2008-02-16 19:09 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\WEBREG
2008-02-16 19:08 49,920 -ra------ C:\WINDOWS\system32\drivers\HPZid412.sys
2008-02-16 19:08 16,496 -ra------ C:\WINDOWS\system32\drivers\HPZipr12.sys
2008-02-16 19:07 267,864 -ra------ C:\WINDOWS\system32\hpzids01.dll
2008-02-16 19:07 118,272 --a------ C:\WINDOWS\system32\hpz3l5ha.dll
2008-02-16 19:07 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\Hewlett-Packard
2008-02-16 19:06 958,464 -ra------ C:\WINDOWS\system32\hpotiop4.dll
2008-02-16 19:06 675,840 -ra------ C:\WINDOWS\system32\hpowiax4.dll
2008-02-16 19:06 364,544 -ra------ C:\WINDOWS\system32\hppldcoi.dll
2008-02-16 19:06 309,760 -ra------ C:\WINDOWS\system32\difxapi.dll
2008-02-16 19:06 303,104 -ra------ C:\WINDOWS\system32\hpovst11.dll
2008-02-16 19:06 21,568 -ra------ C:\WINDOWS\system32\drivers\HPZius12.sys
2008-02-16 18:59 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\HPSSUPPLY
2008-02-16 18:58 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\HPAppData
2008-02-16 18:51 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\HP Product Assistant
2008-02-16 18:51 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\HP
2008-02-16 18:50 <DIR> d-------- C:\Program Files\Common Files\HP
2008-02-16 18:47 <DIR> d-------- C:\Program Files\Hewlett-Packard
2008-02-16 18:47 <DIR> d-------- C:\Program Files\Common Files\Hewlett-Packard
2008-02-16 18:43 31,616 --a------ C:\WINDOWS\system32\drivers\usbccgp.sys
2008-02-16 18:43 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys
2008-02-16 18:43 <DIR> d-------- C:\Program Files\HP
2008-02-16 18:39 156,681 --a------ C:\WINDOWS\hpoins15.dat
2008-02-16 18:39 1,039 --------- C:\WINDOWS\hpomdl15.dat
2008-02-12 19:27 <DIR> d-------- C:\Program Files\CCleaner
2008-02-12 19:25 2,733,928 --a------ C:\Program Files\ccsetup204.exe
2008-02-11 21:26 15,718,949 --a------ C:\Program Files\OnlineArmor_Setup_Free.exe
2008-02-10 19:32 691,545 --a------ C:\WINDOWS\unins000.exe
2008-02-10 19:32 3,440 --a------ C:\WINDOWS\unins000.dat
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
2008-02-27 18:56 138752 --a------ C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
2008-01-25 16:28 2478876 --a------ C:\Program Files\setup.exe
2008-01-23 03:17 423736 --a------ C:\Program Files\avgarkt-setup-1.1.0.42.exe
2008-01-17 16:32 --------- d-------- C:\Program Files\K-Lite Codec Pack
2008-01-17 16:32 --------- d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\Real
2008-01-16 21:30 --------- d-------- C:\Program Files\ACE Mega CoDecS Pack
2008-01-16 21:20 --------- d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\Media Player Classic
2008-01-05 19:48 1120713 --a------ C:\Program Files\ATT00210.jpg.zip
2007-12-28 16:41 0 --a------ C:\Program Files\download.htm
2007-12-28 16:40 0 --a------ C:\Program Files\Fwd_Program_SKYPE..eml
2007-12-24 16:14 12841064 --a------ C:\Program Files\SkypeSetup.exe
2007-12-04 14:04 837496 --a------ C:\WINDOWS\system32\aswBoot.exe
2007-12-04 13:54 95608 --a------ C:\WINDOWS\system32\AVASTSS.scr
2007-11-02 18:49 10603776 --a------ C:\Program Files\TU2007TrialEN.exe
2007-10-05 22:01 19755376 --a------ C:\Program Files\aaw2007.exe
2007-09-17 19:21 21344 --a------ C:\DOCUME~1\X9EB6~1.999\DATAAP~1\GDIPFONTCACHEV1.DAT
2007-09-02 17:44 6572680 --a------ C:\Program Files\Opera_9.22_International_Setup.exe
2007-08-16 22:24 11284970 --a------ C:\Program Files\cdbxp_setup_3.0.116.zip
2007-08-01 21:01 1376079 --a------ C:\Program Files\ComboFix.exe
2007-07-31 19:18 318369 --a------ C:\Program Files\HijackThis.zip
2007-07-16 18:32 733995 --a------ C:\Program Files\DVDDecrypter3540_cz.rar
2007-07-16 18:31 899414 --a------ C:\Program Files\SetupDVDDecrypter_3.5.4.0.exe
2007-05-11 20:36 15063654 --a------ C:\Program Files\vkzsetup.exe
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
2007-03-02 16:52 1298024 -ra------ C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{053F9267-DC04-4294-A72C-58F732D338C0}]
2007-03-02 16:52 177768 -ra------ C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00]
"SpywareTerminator"="C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe" [2008-02-27 18:56]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2007-03-11 21:34]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-17 13:49]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2008-01-28 11:43]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 18:24]
C:\Documents and Settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2007-03-11 21:26:24]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"ICQ Lite"="C:\Program Files\ICQLite\ICQLite.exe" -minimize
R0 JGOGO;JMicron Hot-Plug Driver;C:\WINDOWS\system32\DRIVERS\JGOGO.sys
R0 JRAID;JRAID;C:\WINDOWS\system32\DRIVERS\jraid.sys
R1 AvgArCln;Avg Anti-Rootkit Clean Driver;C:\WINDOWS\system32\DRIVERS\AvgArCln.sys
R1 fwdrv;Firewall Driver;C:\WINDOWS\system32\drivers\fwdrv.sys
R1 khips;Kerio HIPS Driver;C:\WINDOWS\system32\drivers\khips.sys
R1 sp_rsdrv2;Spyware Terminator Driver 2;\??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
R2 {95808DC4-FA4A-4c74-92FE-5B863F82066B};{95808DC4-FA4A-4c74-92FE-5B863F82066B};\??\C:\Program Files\CyberLink\PowerDVD\000.fcl
R2 hpqddsvc;Slu§ba HP CUE DeviceDiscovery;C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
R2 Net Driver HPZ12;Net Driver HPZ12;C:\WINDOWS\System32\svchost.exe -k HPZ12
R2 SPF4;Sunbelt Personal Firewall 4;"C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe"
R2 UxTuneUp;TuneUp Theme Extension;C:\WINDOWS\System32\svchost.exe -k netsvcs
R3 hpqcxs08;hpqcxs08;C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
R3 PSched;Pl novaź paket… technologie QoS;C:\WINDOWS\system32\DRIVERS\psched.sys
R3 SNPSTD3;USB PC Camera (SNPSTD3);C:\WINDOWS\system32\DRIVERS\snpstd3.sys
S3 gdrv;gdrv;\??\C:\WINDOWS\gdrv.sys
S3 GVCplDrv;GVCplDrv;C:\WINDOWS\system32\drivers\GVCplDrv.sys
S3 MSIRCOMM;Microsoft IR Communications Driver;C:\WINDOWS\system32\DRIVERS\MSIRCOMM.sys
S3 STIrUsb;SigmaTel USB-IrDA Dongle;C:\WINDOWS\system32\DRIVERS\irstusb.sys
S3 TUWinStylerThemeSvc;TuneUp WinStyler Theme Service;"C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe"
S3 winrpc;winrpc;\??\C:\WINDOWS\system32\drivers\winrpcpp.sys
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt hpqcxs08 hpqddsvc
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
Schedule
UxTuneUp
Contents of the 'Scheduled Tasks' folder
2008-02-29 16:16:08 C:\WINDOWS\Tasks\1-Click Maintenance.job
**************************************************************************
catchme 0.3.1061 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-04 22:38:42
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ...
C:\WINDOWS\system32\cmd.exe [176] 0x85E85DA0
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
Completion time: 2008-03-04 22:40:10
C:\ComboFix-quarantined-files.txt ... 2008-03-04 22:40
--- E O F ---
- hamlet
- Nováček
-
- Registrován: 31. črc 2007
ještě jsem našel nějaký zbytek z combo fixu,zde je:
Kód: Vybrat vše
2004-07-02 16:39 307200 --a------ C:\Qoobox\Quarantine\C\WINDOWS\system32\cfx32.ocx.vir
2007-04-15 07:22 22 --a------ C:\Qoobox\Quarantine\C\WINDOWS\system32\nvs2.inf.vir
2007-06-08 21:00 671 --a------ C:\Qoobox\Quarantine\C\DOCUME~1\X9EB6~1.999\Plocha\Internet Explorer.lnk.vir
2007-07-28 11:51 54146 --a------ C:\Qoobox\Quarantine\C\WINDOWS\system32\xpdt.sys.vir
2007-08-01 21:30 1196 --a------ C:\Qoobox\Quarantine\Registry_backups\LEGACY_DRIVER.reg.cf
2007-08-01 21:30 2704 --a------ C:\Qoobox\Quarantine\Registry_backups\services_SServ.reg.cf
2007-08-01 21:30 680 --a------ C:\Qoobox\Quarantine\Registry_backups\services_Driver.reg.cf
2007-08-01 21:30 702 --a------ C:\Qoobox\Quarantine\Registry_backups\hklm_windowsNT_windows.reg.cf
2007-08-01 21:30 790 --a------ C:\Qoobox\Quarantine\Registry_backups\LEGACY_SSERV.reg.cf
2007-08-01 21:30 860 --a------ C:\Qoobox\Quarantine\Registry_backups\LEGACY_RUNTIME.reg.cf
2007-08-07 20:23 74 --a------ C:\Qoobox\Quarantine\Registry_backups\services_xpdx.reg.cf
2008-01-17 08:35 18250 --a------ C:\Qoobox\Quarantine\C\WINDOWS\rs.txt.vir
Věpis CESTY slo§ky
S‚riov‚ źˇslo svazku je 70CD-7CA6
C:\QOOBOX
\---Quarantine
+---Registry_backups
| LEGACY_DRIVER.reg.cf
| LEGACY_RUNTIME.reg.cf
| LEGACY_SSERV.reg.cf
| services_Driver.reg.cf
| services_SServ.reg.cf
| services_xpdx.reg.cf
| hklm_windowsNT_windows.reg.cf
|
\---C
+---WINDOWS
| | rs.txt.vir
| |
| \---system32
| nvs2.inf.vir
| xpdt.sys.vir
| cfx32.ocx.vir
|
\---DOCUME~1
\---X9EB6~1.999
\---Plocha
Internet Explorer.lnk.vir
- Baron Prášil
- Začátečník
-
- Registrován: 08. čer 2006
vypni ve službách WinClamAVshields(na trvalo) a v trayi i antispy štít terminatora.
(po combu ho opět zapni)
Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok)
Zkopíruj do něj následující text označený zeleně:
Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.
Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu+ info o problému
(po combu ho opět zapni)
Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok)
Zkopíruj do něj následující text označený zeleně:
Kód: Vybrat vše
File::
C:\WINDOWS\system32\drivers\winrpcpp.sys
C:\Program Files\setup.exe Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.
Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu+ info o problému
- hamlet
- Nováček
-
- Registrován: 31. črc 2007
TOHLE MĚ NAPSEL COMBO FIX
DISCLIMER OFF WARRANTY ON SOFTVARE.
THE SOFTVARE IS PROVIDET"AS IS",WIHOUT WARRANTY OF ANY KIND ALL IMPLIED WARRANTIES ARE EXPRESSLY DISCLAIMED.
This tool meant for private use and should never be used in an unsupervised environment.If infections are found,it will automatically reboot windows to complete the removal process.
PLEASE ENSURE ALL OPENED WINDOWS ARE CLOSED BEFORE PROCEDING.
Do not close this window or it may leave you with a blank desktop.If you have Exit,type 2 below...
TYPE 1 to contiue,or 2 to abort._2
CHJO....
THE SOFTVARE IS PROVIDET"AS IS",WIHOUT WARRANTY OF ANY KIND ALL IMPLIED WARRANTIES ARE EXPRESSLY DISCLAIMED.
This tool meant for private use and should never be used in an unsupervised environment.If infections are found,it will automatically reboot windows to complete the removal process.
PLEASE ENSURE ALL OPENED WINDOWS ARE CLOSED BEFORE PROCEDING.
Do not close this window or it may leave you with a blank desktop.If you have Exit,type 2 below...
TYPE 1 to contiue,or 2 to abort._2
CHJO....
- Baron Prášil
- Začátečník
-
- Registrován: 08. čer 2006
- hamlet
- Nováček
-
- Registrován: 31. črc 2007
- Baron Prášil
- Začátečník
-
- Registrován: 08. čer 2006
- hamlet
- Nováček
-
- Registrován: 31. črc 2007
- hamlet
- Nováček
-
- Registrován: 31. črc 2007
zdravím a omlouvám se za zdržení,tady je log z combo fix:ComboFix 07-07-30.2 - "X" 2008-03-05 22:33:09.21 [GMT 1:00] - FAT32
Syst‚m Microsoft Windows XP Professional 5.1.2600.2.1250.1.1029.18.True
Command switches used :: C:\Documents and Settings\X.999A\Plocha\CFScript.txt
* Created a new restore point
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
C:\Program Files\setup.exe
((((((((((((((((((((((((( Files Created from 2008-02-05 to 2008-03-05 )))))))))))))))))))))))))))))))
2008-03-02 13:09 <DIR> d--hs---- C:\FOUND.064
2008-02-27 18:57 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\Spyware Terminator
2008-02-26 13:25 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\Help
2008-02-25 13:56 <DIR> d--hs---- C:\FOUND.063
2008-02-23 07:06 85,376 --a------ C:\WINDOWS\system32\drivers\NABTSFEC.sys
2008-02-23 07:06 59,264 --a------ C:\WINDOWS\system32\drivers\USBAUDIO.sys
2008-02-23 07:06 5,504 --a------ C:\WINDOWS\system32\drivers\MSTEE.sys
2008-02-23 07:06 19,328 --a------ C:\WINDOWS\system32\drivers\WSTCODEC.SYS
2008-02-23 07:06 17,024 --a------ C:\WINDOWS\system32\drivers\CCDECODE.sys
2008-02-23 07:06 15,360 --a------ C:\WINDOWS\system32\drivers\StreamIP.sys
2008-02-23 07:06 11,136 --a------ C:\WINDOWS\system32\drivers\SLIP.sys
2008-02-23 07:06 10,880 --a------ C:\WINDOWS\system32\drivers\NdisIP.sys
2008-02-23 07:04 54,272 --a------ C:\WINDOWS\system32\vfwwdm32.dll
2008-02-23 06:55 94,208 --a------ C:\WINDOWS\amcap.exe
2008-02-23 06:54 843,776 --a------ C:\WINDOWS\vsnpstd3.exe
2008-02-23 06:54 61,440 --a------ C:\WINDOWS\system32\vsnpstd3.dll
2008-02-23 06:54 53,248 --a------ C:\WINDOWS\system32\csnpstd3.dll
2008-02-23 06:54 53,248 --a------ C:\WINDOWS\csnpstd3.dll
2008-02-23 06:54 368,640 --a------ C:\WINDOWS\tsnpstd3.exe
2008-02-23 06:54 172,032 --a------ C:\WINDOWS\system32\rsnpstd3.dll
2008-02-23 06:54 10,222,720 --a------ C:\WINDOWS\system32\drivers\snpstd3.sys
2008-02-23 06:54 <DIR> d-------- C:\Program Files\Common Files\snpstd3
2008-02-23 06:53 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\InstallShield
2008-02-17 09:21 <DIR> d-------- C:\Program Files\Skype
2008-02-17 09:21 <DIR> d-------- C:\Program Files\Common Files\Skype
2008-02-16 19:12 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\HP
2008-02-16 19:09 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\WEBREG
2008-02-16 19:08 49,920 -ra------ C:\WINDOWS\system32\drivers\HPZid412.sys
2008-02-16 19:08 16,496 -ra------ C:\WINDOWS\system32\drivers\HPZipr12.sys
2008-02-16 19:07 267,864 -ra------ C:\WINDOWS\system32\hpzids01.dll
2008-02-16 19:07 118,272 --a------ C:\WINDOWS\system32\hpz3l5ha.dll
2008-02-16 19:07 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\Hewlett-Packard
2008-02-16 19:06 958,464 -ra------ C:\WINDOWS\system32\hpotiop4.dll
2008-02-16 19:06 675,840 -ra------ C:\WINDOWS\system32\hpowiax4.dll
2008-02-16 19:06 364,544 -ra------ C:\WINDOWS\system32\hppldcoi.dll
2008-02-16 19:06 309,760 -ra------ C:\WINDOWS\system32\difxapi.dll
2008-02-16 19:06 303,104 -ra------ C:\WINDOWS\system32\hpovst11.dll
2008-02-16 19:06 21,568 -ra------ C:\WINDOWS\system32\drivers\HPZius12.sys
2008-02-16 18:59 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\HPSSUPPLY
2008-02-16 18:58 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\HPAppData
2008-02-16 18:51 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\HP Product Assistant
2008-02-16 18:51 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\HP
2008-02-16 18:50 <DIR> d-------- C:\Program Files\Common Files\HP
2008-02-16 18:47 <DIR> d-------- C:\Program Files\Hewlett-Packard
2008-02-16 18:47 <DIR> d-------- C:\Program Files\Common Files\Hewlett-Packard
2008-02-16 18:43 31,616 --a------ C:\WINDOWS\system32\drivers\usbccgp.sys
2008-02-16 18:43 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys
2008-02-16 18:43 <DIR> d-------- C:\Program Files\HP
2008-02-16 18:39 156,681 --a------ C:\WINDOWS\hpoins15.dat
2008-02-16 18:39 1,039 --------- C:\WINDOWS\hpomdl15.dat
2008-02-12 19:27 <DIR> d-------- C:\Program Files\CCleaner
2008-02-12 19:25 2,733,928 --a------ C:\Program Files\ccsetup204.exe
2008-02-11 21:26 15,718,949 --a------ C:\Program Files\OnlineArmor_Setup_Free.exe
2008-02-10 19:32 691,545 --a------ C:\WINDOWS\unins000.exe
2008-02-10 19:32 3,440 --a------ C:\WINDOWS\unins000.dat
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
2008-02-27 18:56 138752 --a------ C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
2008-01-23 03:17 423736 --a------ C:\Program Files\avgarkt-setup-1.1.0.42.exe
2008-01-17 16:32 --------- d-------- C:\Program Files\K-Lite Codec Pack
2008-01-17 16:32 --------- d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\Real
2008-01-16 21:30 --------- d-------- C:\Program Files\ACE Mega CoDecS Pack
2008-01-16 21:20 --------- d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\Media Player Classic
2008-01-05 19:48 1120713 --a------ C:\Program Files\ATT00210.jpg.zip
2007-12-28 16:41 0 --a------ C:\Program Files\download.htm
2007-12-28 16:40 0 --a------ C:\Program Files\Fwd_Program_SKYPE..eml
2007-12-24 16:14 12841064 --a------ C:\Program Files\SkypeSetup.exe
2007-11-02 18:49 10603776 --a------ C:\Program Files\TU2007TrialEN.exe
2007-10-05 22:01 19755376 --a------ C:\Program Files\aaw2007.exe
2007-09-17 19:21 21344 --a------ C:\DOCUME~1\X9EB6~1.999\DATAAP~1\GDIPFONTCACHEV1.DAT
2007-09-02 17:44 6572680 --a------ C:\Program Files\Opera_9.22_International_Setup.exe
2007-08-16 22:24 11284970 --a------ C:\Program Files\cdbxp_setup_3.0.116.zip
2007-08-01 21:01 1376079 --a------ C:\Program Files\ComboFix.exe
2007-07-31 19:18 318369 --a------ C:\Program Files\HijackThis.zip
2007-07-16 18:32 733995 --a------ C:\Program Files\DVDDecrypter3540_cz.rar
2007-07-16 18:31 899414 --a------ C:\Program Files\SetupDVDDecrypter_3.5.4.0.exe
2007-05-11 20:36 15063654 --a------ C:\Program Files\vkzsetup.exe
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
2007-03-02 16:52 1298024 -ra------ C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{053F9267-DC04-4294-A72C-58F732D338C0}]
2007-03-02 16:52 177768 -ra------ C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00]
"SpywareTerminator"="C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe" [2008-02-27 18:56]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2007-03-11 21:34]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-17 13:49]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2008-01-28 11:43]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 18:24]
C:\Documents and Settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2007-03-11 21:26:24]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"ICQ Lite"="C:\Program Files\ICQLite\ICQLite.exe" -minimize
R0 JGOGO;JMicron Hot-Plug Driver;C:\WINDOWS\system32\DRIVERS\JGOGO.sys
R0 JRAID;JRAID;C:\WINDOWS\system32\DRIVERS\jraid.sys
R1 AvgArCln;Avg Anti-Rootkit Clean Driver;C:\WINDOWS\system32\DRIVERS\AvgArCln.sys
R1 fwdrv;Firewall Driver;C:\WINDOWS\system32\drivers\fwdrv.sys
R1 khips;Kerio HIPS Driver;C:\WINDOWS\system32\drivers\khips.sys
R1 sp_rsdrv2;Spyware Terminator Driver 2;\??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
R2 {95808DC4-FA4A-4c74-92FE-5B863F82066B};{95808DC4-FA4A-4c74-92FE-5B863F82066B};\??\C:\Program Files\CyberLink\PowerDVD\000.fcl
R2 hpqddsvc;Slu§ba HP CUE DeviceDiscovery;C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
R2 Net Driver HPZ12;Net Driver HPZ12;C:\WINDOWS\System32\svchost.exe -k HPZ12
R2 SPF4;Sunbelt Personal Firewall 4;"C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe"
R2 UxTuneUp;TuneUp Theme Extension;C:\WINDOWS\System32\svchost.exe -k netsvcs
R3 hpqcxs08;hpqcxs08;C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
R3 PSched;Pl novaź paket… technologie QoS;C:\WINDOWS\system32\DRIVERS\psched.sys
R3 SNPSTD3;USB PC Camera (SNPSTD3);C:\WINDOWS\system32\DRIVERS\snpstd3.sys
S3 gdrv;gdrv;\??\C:\WINDOWS\gdrv.sys
S3 GVCplDrv;GVCplDrv;C:\WINDOWS\system32\drivers\GVCplDrv.sys
S3 MSIRCOMM;Microsoft IR Communications Driver;C:\WINDOWS\system32\DRIVERS\MSIRCOMM.sys
S3 STIrUsb;SigmaTel USB-IrDA Dongle;C:\WINDOWS\system32\DRIVERS\irstusb.sys
S3 TUWinStylerThemeSvc;TuneUp WinStyler Theme Service;"C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe"
S3 winrpc;winrpc;\??\C:\WINDOWS\system32\drivers\winrpcpp.sys
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt hpqcxs08 hpqddsvc
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
Schedule
UxTuneUp
Contents of the 'Scheduled Tasks' folder
2008-02-29 16:16:08 C:\WINDOWS\Tasks\1-Click Maintenance.job
**************************************************************************
catchme 0.3.1061 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-05 22:36:23
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
Completion time: 2008-03-05 22:38:03
C:\ComboFix-quarantined-files.txt ... 2008-03-05 22:38
C:\ComboFix2.txt ... 2008-03-04 22:40
--- E O F ---
a tady z Hijacku:Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:39:26, on 5.3.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\EXPLORER.EXE
C:\WINDOWS\system32\notepad.exe
C:\Documents and Settings\X.999A\Plocha\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=61005
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=61005
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\TRANSLAT\WEBIE.DLL
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Kniha klipů HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: HP Chytrý výběr - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 1410674279
O17 - HKLM\System\CCS\Services\Tcpip\..\{9BFDC206-0AE8-46DA-B5EF-664F99C161EE}: NameServer = 192.168.20.254,10.10.10.10
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: Spyware Terminator Clam Service (sp_clamsrv) - Crawler.com - C:\Program Files\WinClamAVShield\sp_clamsrv.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
--
End of file - 8809 bytes
..... a ted aby se vtom,jak se říká......Nicméně děkuji za rady
Syst‚m Microsoft Windows XP Professional 5.1.2600.2.1250.1.1029.18.True
Command switches used :: C:\Documents and Settings\X.999A\Plocha\CFScript.txt
* Created a new restore point
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
C:\Program Files\setup.exe
((((((((((((((((((((((((( Files Created from 2008-02-05 to 2008-03-05 )))))))))))))))))))))))))))))))
2008-03-02 13:09 <DIR> d--hs---- C:\FOUND.064
2008-02-27 18:57 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\Spyware Terminator
2008-02-26 13:25 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\Help
2008-02-25 13:56 <DIR> d--hs---- C:\FOUND.063
2008-02-23 07:06 85,376 --a------ C:\WINDOWS\system32\drivers\NABTSFEC.sys
2008-02-23 07:06 59,264 --a------ C:\WINDOWS\system32\drivers\USBAUDIO.sys
2008-02-23 07:06 5,504 --a------ C:\WINDOWS\system32\drivers\MSTEE.sys
2008-02-23 07:06 19,328 --a------ C:\WINDOWS\system32\drivers\WSTCODEC.SYS
2008-02-23 07:06 17,024 --a------ C:\WINDOWS\system32\drivers\CCDECODE.sys
2008-02-23 07:06 15,360 --a------ C:\WINDOWS\system32\drivers\StreamIP.sys
2008-02-23 07:06 11,136 --a------ C:\WINDOWS\system32\drivers\SLIP.sys
2008-02-23 07:06 10,880 --a------ C:\WINDOWS\system32\drivers\NdisIP.sys
2008-02-23 07:04 54,272 --a------ C:\WINDOWS\system32\vfwwdm32.dll
2008-02-23 06:55 94,208 --a------ C:\WINDOWS\amcap.exe
2008-02-23 06:54 843,776 --a------ C:\WINDOWS\vsnpstd3.exe
2008-02-23 06:54 61,440 --a------ C:\WINDOWS\system32\vsnpstd3.dll
2008-02-23 06:54 53,248 --a------ C:\WINDOWS\system32\csnpstd3.dll
2008-02-23 06:54 53,248 --a------ C:\WINDOWS\csnpstd3.dll
2008-02-23 06:54 368,640 --a------ C:\WINDOWS\tsnpstd3.exe
2008-02-23 06:54 172,032 --a------ C:\WINDOWS\system32\rsnpstd3.dll
2008-02-23 06:54 10,222,720 --a------ C:\WINDOWS\system32\drivers\snpstd3.sys
2008-02-23 06:54 <DIR> d-------- C:\Program Files\Common Files\snpstd3
2008-02-23 06:53 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\InstallShield
2008-02-17 09:21 <DIR> d-------- C:\Program Files\Skype
2008-02-17 09:21 <DIR> d-------- C:\Program Files\Common Files\Skype
2008-02-16 19:12 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\HP
2008-02-16 19:09 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\WEBREG
2008-02-16 19:08 49,920 -ra------ C:\WINDOWS\system32\drivers\HPZid412.sys
2008-02-16 19:08 16,496 -ra------ C:\WINDOWS\system32\drivers\HPZipr12.sys
2008-02-16 19:07 267,864 -ra------ C:\WINDOWS\system32\hpzids01.dll
2008-02-16 19:07 118,272 --a------ C:\WINDOWS\system32\hpz3l5ha.dll
2008-02-16 19:07 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\Hewlett-Packard
2008-02-16 19:06 958,464 -ra------ C:\WINDOWS\system32\hpotiop4.dll
2008-02-16 19:06 675,840 -ra------ C:\WINDOWS\system32\hpowiax4.dll
2008-02-16 19:06 364,544 -ra------ C:\WINDOWS\system32\hppldcoi.dll
2008-02-16 19:06 309,760 -ra------ C:\WINDOWS\system32\difxapi.dll
2008-02-16 19:06 303,104 -ra------ C:\WINDOWS\system32\hpovst11.dll
2008-02-16 19:06 21,568 -ra------ C:\WINDOWS\system32\drivers\HPZius12.sys
2008-02-16 18:59 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\HPSSUPPLY
2008-02-16 18:58 <DIR> d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\HPAppData
2008-02-16 18:51 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\HP Product Assistant
2008-02-16 18:51 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DATAAP~1\HP
2008-02-16 18:50 <DIR> d-------- C:\Program Files\Common Files\HP
2008-02-16 18:47 <DIR> d-------- C:\Program Files\Hewlett-Packard
2008-02-16 18:47 <DIR> d-------- C:\Program Files\Common Files\Hewlett-Packard
2008-02-16 18:43 31,616 --a------ C:\WINDOWS\system32\drivers\usbccgp.sys
2008-02-16 18:43 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys
2008-02-16 18:43 <DIR> d-------- C:\Program Files\HP
2008-02-16 18:39 156,681 --a------ C:\WINDOWS\hpoins15.dat
2008-02-16 18:39 1,039 --------- C:\WINDOWS\hpomdl15.dat
2008-02-12 19:27 <DIR> d-------- C:\Program Files\CCleaner
2008-02-12 19:25 2,733,928 --a------ C:\Program Files\ccsetup204.exe
2008-02-11 21:26 15,718,949 --a------ C:\Program Files\OnlineArmor_Setup_Free.exe
2008-02-10 19:32 691,545 --a------ C:\WINDOWS\unins000.exe
2008-02-10 19:32 3,440 --a------ C:\WINDOWS\unins000.dat
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
2008-02-27 18:56 138752 --a------ C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
2008-01-23 03:17 423736 --a------ C:\Program Files\avgarkt-setup-1.1.0.42.exe
2008-01-17 16:32 --------- d-------- C:\Program Files\K-Lite Codec Pack
2008-01-17 16:32 --------- d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\Real
2008-01-16 21:30 --------- d-------- C:\Program Files\ACE Mega CoDecS Pack
2008-01-16 21:20 --------- d-------- C:\DOCUME~1\X9EB6~1.999\DATAAP~1\Media Player Classic
2008-01-05 19:48 1120713 --a------ C:\Program Files\ATT00210.jpg.zip
2007-12-28 16:41 0 --a------ C:\Program Files\download.htm
2007-12-28 16:40 0 --a------ C:\Program Files\Fwd_Program_SKYPE..eml
2007-12-24 16:14 12841064 --a------ C:\Program Files\SkypeSetup.exe
2007-11-02 18:49 10603776 --a------ C:\Program Files\TU2007TrialEN.exe
2007-10-05 22:01 19755376 --a------ C:\Program Files\aaw2007.exe
2007-09-17 19:21 21344 --a------ C:\DOCUME~1\X9EB6~1.999\DATAAP~1\GDIPFONTCACHEV1.DAT
2007-09-02 17:44 6572680 --a------ C:\Program Files\Opera_9.22_International_Setup.exe
2007-08-16 22:24 11284970 --a------ C:\Program Files\cdbxp_setup_3.0.116.zip
2007-08-01 21:01 1376079 --a------ C:\Program Files\ComboFix.exe
2007-07-31 19:18 318369 --a------ C:\Program Files\HijackThis.zip
2007-07-16 18:32 733995 --a------ C:\Program Files\DVDDecrypter3540_cz.rar
2007-07-16 18:31 899414 --a------ C:\Program Files\SetupDVDDecrypter_3.5.4.0.exe
2007-05-11 20:36 15063654 --a------ C:\Program Files\vkzsetup.exe
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
2007-03-02 16:52 1298024 -ra------ C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{053F9267-DC04-4294-A72C-58F732D338C0}]
2007-03-02 16:52 177768 -ra------ C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00]
"SpywareTerminator"="C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe" [2008-02-27 18:56]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2007-03-11 21:34]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-17 13:49]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2008-01-28 11:43]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 18:24]
C:\Documents and Settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2007-03-11 21:26:24]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"ICQ Lite"="C:\Program Files\ICQLite\ICQLite.exe" -minimize
R0 JGOGO;JMicron Hot-Plug Driver;C:\WINDOWS\system32\DRIVERS\JGOGO.sys
R0 JRAID;JRAID;C:\WINDOWS\system32\DRIVERS\jraid.sys
R1 AvgArCln;Avg Anti-Rootkit Clean Driver;C:\WINDOWS\system32\DRIVERS\AvgArCln.sys
R1 fwdrv;Firewall Driver;C:\WINDOWS\system32\drivers\fwdrv.sys
R1 khips;Kerio HIPS Driver;C:\WINDOWS\system32\drivers\khips.sys
R1 sp_rsdrv2;Spyware Terminator Driver 2;\??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
R2 {95808DC4-FA4A-4c74-92FE-5B863F82066B};{95808DC4-FA4A-4c74-92FE-5B863F82066B};\??\C:\Program Files\CyberLink\PowerDVD\000.fcl
R2 hpqddsvc;Slu§ba HP CUE DeviceDiscovery;C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
R2 Net Driver HPZ12;Net Driver HPZ12;C:\WINDOWS\System32\svchost.exe -k HPZ12
R2 SPF4;Sunbelt Personal Firewall 4;"C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe"
R2 UxTuneUp;TuneUp Theme Extension;C:\WINDOWS\System32\svchost.exe -k netsvcs
R3 hpqcxs08;hpqcxs08;C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
R3 PSched;Pl novaź paket… technologie QoS;C:\WINDOWS\system32\DRIVERS\psched.sys
R3 SNPSTD3;USB PC Camera (SNPSTD3);C:\WINDOWS\system32\DRIVERS\snpstd3.sys
S3 gdrv;gdrv;\??\C:\WINDOWS\gdrv.sys
S3 GVCplDrv;GVCplDrv;C:\WINDOWS\system32\drivers\GVCplDrv.sys
S3 MSIRCOMM;Microsoft IR Communications Driver;C:\WINDOWS\system32\DRIVERS\MSIRCOMM.sys
S3 STIrUsb;SigmaTel USB-IrDA Dongle;C:\WINDOWS\system32\DRIVERS\irstusb.sys
S3 TUWinStylerThemeSvc;TuneUp WinStyler Theme Service;"C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe"
S3 winrpc;winrpc;\??\C:\WINDOWS\system32\drivers\winrpcpp.sys
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt hpqcxs08 hpqddsvc
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
Schedule
UxTuneUp
Contents of the 'Scheduled Tasks' folder
2008-02-29 16:16:08 C:\WINDOWS\Tasks\1-Click Maintenance.job
**************************************************************************
catchme 0.3.1061 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-05 22:36:23
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
Completion time: 2008-03-05 22:38:03
C:\ComboFix-quarantined-files.txt ... 2008-03-05 22:38
C:\ComboFix2.txt ... 2008-03-04 22:40
--- E O F ---
a tady z Hijacku:Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:39:26, on 5.3.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\EXPLORER.EXE
C:\WINDOWS\system32\notepad.exe
C:\Documents and Settings\X.999A\Plocha\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=61005
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=61005
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\TRANSLAT\WEBIE.DLL
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Kniha klipů HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: HP Chytrý výběr - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\TRANSLAT\WEBIE.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 1410674279
O17 - HKLM\System\CCS\Services\Tcpip\..\{9BFDC206-0AE8-46DA-B5EF-664F99C161EE}: NameServer = 192.168.20.254,10.10.10.10
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: Spyware Terminator Clam Service (sp_clamsrv) - Crawler.com - C:\Program Files\WinClamAVShield\sp_clamsrv.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
--
End of file - 8809 bytes
..... a ted aby se vtom,jak se říká......Nicméně děkuji za rady
- BUBINO
- Začátečník
-
- Registrován: 12. čer 2007
- Bydliště: Mám
Toto este otestuj na virustotal.com:
C:\Program Files\vkzsetup.exe
Preskenuj pc este s mwavom navod tu :
http://viry.cz/forum/viewtopic.php?t=4097
Nezabudni uploadovat a spravne program nastavitp odla navodu hore. Po skene sem skopiruj log v dolnom okne.
C:\Program Files\vkzsetup.exe
Preskenuj pc este s mwavom navod tu :
http://viry.cz/forum/viewtopic.php?t=4097
Nezabudni uploadovat a spravne program nastavitp odla navodu hore. Po skene sem skopiruj log v dolnom okne.
- hamlet
- Nováček
-
- Registrován: 31. črc 2007
tady to je:07 III 2008 20:22:38 - **********************************************************
07 III 2008 20:22:38 - MicroWorld Anti Virus & Spyware Toolkit Utility.
07 III 2008 20:22:38 - Copyright © MicroWorld Technologies
07 III 2008 20:22:38 - **********************************************************
07 III 2008 20:22:38 - Source: C:\PROGRA~1\mwav.exe
07 III 2008 20:22:38 - Version 9.7.6 (C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\mexe.com)
07 III 2008 20:22:38 - Log File: C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\MWAV.LOG
07 III 2008 20:22:38 - MWAV Registered: FALSE
07 III 2008 20:22:38 - User Account: X (Administrator Mode)
07 III 2008 20:22:38 - OS Type: Windows Workstation
07 III 2008 20:22:38 - OS: Windows XP
07 III 2008 20:22:38 - Ver: Service Pack 2 (Build 2600)
07 III 2008 20:22:38 - Windows Root Folder: C:\WINDOWS
07 III 2008 20:22:38 - Windows Sys32 Folder: C:\WINDOWS\system32
07 III 2008 20:22:38 - Interface0 NameServer: 192.168.20.254,10.10.10.10
07 III 2008 20:22:38 - Local Fixed Drives: c:\,d:\,f:\,g:\,h:\
07 III 2008 20:22:38 - MWAV Mode: Only Scan files
07 III 2008 20:22:38 - [CREATED ZIP FILE C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\pinfect.zip]
07 III 2008 20:22:38 - ****** Files/Folders created/modified during last fortnight in Windows and ROOT Folder ******
07 III 2008 20:22:38 - C:\WINDOWS\csnpstd3.dll (53248), 23-Feb-2008, , InstallUtil
07 III 2008 20:22:38 - C:\WINDOWS\tsnpstd3.exe (368640), 23-Feb-2008, tsnpstd3
07 III 2008 20:22:38 - C:\WINDOWS\amcap.exe (94208), 23-Feb-2008, Microsoft Corporation, DirectX 8.1 Sample
07 III 2008 20:22:38 - C:\WINDOWS\vsnpstd3.exe (843776), 23-Feb-2008, CameraMonitor Application
07 III 2008 20:22:38 - C:\WINDOWS\system32\vsnpstd3.dll (61440), 23-Feb-2008,
07 III 2008 20:22:38 - C:\WINDOWS\system32\csnpstd3.dll (53248), 23-Feb-2008, , InstallUtil
07 III 2008 20:22:38 - C:\WINDOWS\system32\vfwwdm32.dll (54272), 23-Feb-2008, Microsoft Corporation, Operační systém Microsoft® Windows®
07 III 2008 20:22:38 - C:\WINDOWS\system32\rsnpstd3.dll (172032), 23-Feb-2008, , ResourceDLL
07 III 2008 20:22:38 - C:\WINDOWS\system32\ipsink.ax (16384), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:38 - C:\WINDOWS\system32\ksxbar.ax (43008), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:38 - C:\WINDOWS\system32\kstvtune.ax (61952), 23-Feb-2008, Microsoft Corporation, Operační systém Microsoft(R) Windows(R)
07 III 2008 20:22:38 - C:\WINDOWS\system32\kswdmcap.ax (91136), 23-Feb-2008, Microsoft Corporation, Operační systém Microsoft(R) Windows(R)
07 III 2008 20:22:38 - C:\WINDOWS\system32\vidcap.ax (28672), 23-Feb-2008, Microsoft Corporation, Microsoft® Windows® Operating System
07 III 2008 20:22:38 - C:\Bootfont.bin (4952), 25-Oct-2001 [HSR]
07 III 2008 20:22:38 - C:\NTDETECT.COM (47564), 03-Aug-2004 [HSR]
07 III 2008 20:22:38 - C:\WINDOWS\system32\dllcache\ksxbar.ax (43008), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\vfwwdm32.dll (54272), 23-Feb-2008, Microsoft Corporation, Operační systém Microsoft® Windows®
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\kstvtune.ax (61952), 23-Feb-2008, Microsoft Corporation, Operační systém Microsoft(R) Windows(R)
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\kswdmcap.ax (91136), 23-Feb-2008, Microsoft Corporation, Operační systém Microsoft(R) Windows(R)
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\vidcap.ax (28672), 23-Feb-2008, Microsoft Corporation, Microsoft® Windows® Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\usbaudio.sys (59264), 23-Feb-2008, Microsoft Corporation, Microsoft® Windows® Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\ccdecode.sys (17024), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\nabtsfec.sys (85376), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\wstcodec.sys (19328), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\slip.sys (11136), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\ipsink.ax (16384), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\streamip.sys (15360), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\ndisip.sys (10880), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\mstee.sys (5504), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\sp_rsdrv2.sys (138752), 27-Feb-2008 [Added C:\WINDOWS\system32\drivers\sp_rsdrv2.sys to ZIP FILE]
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\snpstd3.sys (10222720), 23-Feb-2008, Sonix Co. Ltd., USB PC Camera
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\USBAUDIO.sys (59264), 23-Feb-2008, Microsoft Corporation, Microsoft® Windows® Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\CCDECODE.sys (17024), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\NABTSFEC.sys (85376), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\WSTCODEC.SYS (19328), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\SLIP.sys (11136), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\MSTEE.sys (5504), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\StreamIP.sys (15360), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\NdisIP.sys (10880), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\inf, 03-Feb-2007 [H] [Folder]
07 III 2008 20:22:39 - C:\WINDOWS\Fonts, 03-Feb-2007 [SR] [Folder]
07 III 2008 20:22:39 - C:\WINDOWS\$hf_mig$, 17-Jan-2008 [H] [Folder]
07 III 2008 20:22:39 - C:\WINDOWS\ie7, 17-Jan-2008 [H] [Folder]
07 III 2008 20:22:39 - C:\WINDOWS\Tasks, 03-Feb-2007 [S] [Folder]
07 III 2008 20:22:39 - C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$, 17-Jan-2008 [H] [Folder]
07 III 2008 20:22:39 - C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$, 17-Jan-2008 [H] [Folder]
07 III 2008 20:22:39 - C:\WINDOWS\$MSI31Uninstall_KB893803v2$, 17-Jan-2008 [H] [Folder]
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache, 03-Feb-2007 [HSR] [Folder]
07 III 2008 20:22:39 - C:\WINDOWS\system32\Microsoft, 03-Feb-2007 [S] [Folder]
07 III 2008 20:22:39 - C:\FOUND.023, 21-Jun-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.000, 15-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.001, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.002, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.003, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.004, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.005, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.006, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.007, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.008, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.009, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.010, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.011, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.012, 20-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.013, 20-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.014, 20-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.015, 24-May-2003 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.016, 26-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.017, 26-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.018, 26-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.019, 26-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.020, 28-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.021, 28-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.022, 06-Jun-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.024, 23-Jun-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.036, 15-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.037, 15-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.025, 09-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.026, 09-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.027, 10-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.028, 10-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.029, 11-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.030, 11-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.031, 11-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.032, 12-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.057, 16-Aug-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.062, 17-Jan-2008 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.033, 12-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.034, 12-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.035, 15-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.038, 15-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.039, 17-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.040, 18-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.041, 18-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.042, 18-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.043, 19-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.044, 19-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.045, 19-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.046, 20-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.047, 21-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.048, 22-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.049, 22-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.050, 22-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.051, 25-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.052, 28-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.053, 29-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.054, 30-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.055, 31-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.063, 25-Feb-2008 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.064, 02-Mar-2008 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.061, 15-Jan-2008 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.056, 12-Aug-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\Config.Msi, 18-Aug-2007 [H] [Folder]
07 III 2008 20:22:39 - C:\FOUND.058, 10-Nov-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.059, 24-Nov-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.060, 27-Nov-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\Program Files\WindowsUpdate, 03-Feb-2007 [H] [Folder]
07 III 2008 20:22:39 - C:\Program Files\Common Files\snpstd3, 23-Feb-2008 [Folder]
07 III 2008 20:22:39 - [Made copy of PINFECT.ZIP as C:\DOCUME~1\X9EB6~1.999\DOKUME~1\pinfect.zip]
07 III 2008 20:22:39 - *********************************************************************************************
07 III 2008 20:22:39 - Latest Date of files inside MWAV: 26 Feb 2008 06:52:53.
07 III 2008 20:22:40 - ** Changed Value of "NoDriveTypeAutoRun" in "HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" from DWORD:36 to DWORD:145
07 III 2008 20:22:40 - ** Changed Value of "NoDriveTypeAutoRun" in "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" from DWORD:36 to DWORD:145
07 III 2008 20:22:40 - ** Changed Value of "NoDriveAutoRun" in "HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" from DWORD:-1 to DWORD:0
07 III 2008 20:22:40 - ** Changed Value of "NoDriveAutoRun" in "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" from DWORD:-1 to DWORD:0
07 III 2008 20:22:51 - AV Library Loaded...
07 III 2008 20:22:51 - MWAV doing self scanning...
07 III 2008 20:22:51 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\getvlist.exe
07 III 2008 20:22:51 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\main.avi
07 III 2008 20:22:51 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\virus.avi
07 III 2008 20:22:51 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\ScanningProcess.exe
07 III 2008 20:22:51 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\kave.dll
07 III 2008 20:22:51 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\prloader.dll
07 III 2008 20:22:51 - MWAV files are clean.
07 III 2008 20:23:17 - Datum vydání databáze: 26 Feb 2008
07 III 2008 20:23:17 - Verze virové databáze: 581531
07 III 2008 20:23:43 - **********************************************************
07 III 2008 20:23:43 - MicroWorld Anti Virus & Spyware Toolkit Utility.
07 III 2008 20:23:43 - Copyright © 2003-2006, MicroWorld Technologies Inc.
07 III 2008 20:23:43 -
07 III 2008 20:23:43 - Podpora [EN]: support@mwti.net
07 III 2008 20:23:43 - Web: http://www.mwti.net
07 III 2008 20:23:43 - **********************************************************
07 III 2008 20:23:43 - Verze 9.7.6 (C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\mexe.com)
07 III 2008 20:23:43 - Log soubor: C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\MWAV.LOG
07 III 2008 20:23:43 - User Account: X
07 III 2008 20:23:43 - Windows Root Folder: C:\WINDOWS
07 III 2008 20:23:43 - Windows Sys32 Folder: C:\WINDOWS\system32
07 III 2008 20:23:43 - OS: Windows XP
07 III 2008 20:23:43 - Ver: Service Pack 2 (Build 2600)
07 III 2008 20:23:43 - Poslední datum souborů používaných MWAV: 26 Feb 2008 06:52:53.
07 III 2008 20:23:43 - Nastavení vybraná uživatelem:
07 III 2008 20:23:43 - Kontrola paměti: Zapnuto
07 III 2008 20:23:43 - Kontorla registrů: Zapnuto
07 III 2008 20:23:43 - Kontrola souborů po spuštění: Zapnuto
07 III 2008 20:23:43 - Kontrola systémových složek: Zapnuto
07 III 2008 20:23:43 - Kontrola systémových oblastí: Vypnuto
07 III 2008 20:23:43 - Kontrola služeb: Zapnuto
07 III 2008 20:23:43 - Nastavení kontroly disků vypnuto
07 III 2008 20:23:43 - Kontrola složek: Vypnuto
07 III 2008 20:23:45 - ***** Testování paměti *****
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\System32\smss.exe
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\system32\ntdll.dll
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\SYSTEM32\CSRSS.EXE
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\system32\CSRSRV.dll
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\system32\basesrv.dll
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\system32\winsrv.dll
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\system32\GDI32.dll
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\system32\KERNEL32.dll
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\system32\USER32.dll
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\system32\sxs.dll
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\system32\ADVAPI32.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\RPCRT4.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\SYSTEM32\WINLOGON.EXE
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\AUTHZ.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\msvcrt.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\CRYPT32.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\MSASN1.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\NDdeApi.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\PROFMAP.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\NETAPI32.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\USERENV.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\PSAPI.DLL
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\REGAPI.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\Secur32.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\SETUPAPI.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\VERSION.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\WINSTA.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\WINTRUST.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\IMAGEHLP.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\WS2_32.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\WS2HELP.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\IMM32.DLL
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\MSGINA.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\SHELL32.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\SHLWAPI.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\COMCTL32.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\ODBC32.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\comdlg32.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\odbcint.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\SHSVCS.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\sfc.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\sfc_os.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\ole32.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\Apphelp.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\msctfime.ime
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\WINSCARD.DLL
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\WTSAPI32.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\uxtheme.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\WINMM.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\cscdll.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\WlNotify.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\WINSPOOL.DRV
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\MPR.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\rsaenh.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\SAMLIB.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\msv1_0.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\iphlpapi.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\cscui.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\xpsp2res.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\NTMARTA.DLL
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\WLDAP32.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\wdmaud.drv
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\msacm32.drv
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\MSACM32.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\midimap.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\COMRes.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\OLEAUT32.dll (????)
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\CLBCATQ.DLL
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\services.exe
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\SCESRV.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\umpnpmgr.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\NCObjAPI.DLL
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\MSVCP60.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\ShimEng.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\AppPatch\AcGenral.DLL
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\eventlog.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\lsass.exe
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\LSASRV.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\NTDSAPI.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\DNSAPI.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\SAMSRV.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\cryptdll.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\msprivs.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\kerberos.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\netlogon.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\w32time.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\schannel.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\wdigest.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\scecli.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\ipsecsvc.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\oakley.DLL
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\WINIPSEC.DLL
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\pstorsvc.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\mswsock.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\hnetcfg.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\System32\wshtcpip.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\psbase.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\dssenh.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\svchost.exe
07 III 2008 20:23:49 - Scanning File c:\windows\system32\rpcss.dll
07 III 2008 20:23:49 - Scanning File c:\windows\system32\termsrv.dll
07 III 2008 20:23:49 - Scanning File c:\windows\system32\ICAAPI.dll
07 III 2008 20:23:49 - Scanning File c:\windows\system32\mstlsapi.dll
07 III 2008 20:23:49 - Scanning File c:\windows\system32\ACTIVEDS.dll
07 III 2008 20:23:49 - Scanning File c:\windows\system32\adsldpc.dll
07 III 2008 20:23:49 - Scanning File c:\windows\system32\ATL.DLL
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\msi.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\System32\winrnr.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\rasadhlp.dll
07 III 2008 20:23:49 - Scanning File c:\windows\system32\uxtuneup.dll
07 III 2008 20:23:49 - Scanning File c:\windows\system32\dbghelp.dll
07 III 2008 20:23:49 - Scanning File c:\windows\system32\dhcpcsvc.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\wzcsvc.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\rtutils.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\WMI.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\ESENT.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\irmon.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\System32\wshirda.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\System32\rastls.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\system32\CRYPTUI.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\system32\WININET.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\system32\Normaliz.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\system32\iertutil.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\System32\MPRAPI.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\System32\RASAPI32.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\System32\rasman.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\System32\TAPI32.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\System32\raschap.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\schedsvc.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\System32\MSIDLE.DLL
07 III 2008 20:23:50 - Scanning File c:\windows\system32\audiosrv.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\wkssvc.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\qmgr.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\SHFOLDER.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\WINHTTP.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\netman.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\netshell.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\credui.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\WZCSAPI.DLL
07 III 2008 20:23:51 - Scanning File c:\windows\system32\srvsvc.dll
07 III 2008 20:23:51 - Scanning File c:\windows\pchealth\helpctr\binaries\pchsvc.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\es.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\ersvc.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\dmserver.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\cryptsvc.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\certcli.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\seclogon.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\sens.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\srsvc.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\POWRPROF.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\trkwks.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\wbem\wmisvc.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\VSSAPI.DLL
07 III 2008 20:23:51 - Scanning File c:\windows\system32\wuauserv.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\wuaueng.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\System32\Cabinet.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\System32\mspatcha.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\wscsvc.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\ipnathlp.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\browser.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\wbem\wbemcomn.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\wbem\wbemcore.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\wbem\esscli.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\wbem\FastProx.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\wbem\wmiutils.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\wbem\repdrvfs.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\comsvcs.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\colbact.DLL
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\MTXCLU.DLL
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\WSOCK32.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\CLUSAPI.DLL
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\RESUTILS.DLL
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\system32\wbem\wmiprvsd.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\system32\wbem\wbemess.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\system32\wbem\ncprov.dll
07 III 2008 20:23:52 - Scanning File c:\windows\system32\tapisrv.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\system32\upnp.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\system32\SSDPAPI.dll
07 III 2008 20:23:52 - Scanning File c:\windows\system32\rasmans.dll
07 III 2008 20:23:52 - Scanning File c:\windows\system32\netcfgx.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\rastapi.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\unimdm.tsp
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\uniplat.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\kmddsp.tsp
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\ndptsp.tsp
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\ipconf.tsp
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\h323.tsp
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\hidphone.tsp
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\HID.DLL
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\rasppp.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\ntlsapi.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\RASDLG.dll
07 III 2008 20:23:52 - Scanning File c:\windows\system32\dnsrslvr.dll
07 III 2008 20:23:52 - Scanning File c:\windows\system32\lmhsvc.dll
07 III 2008 20:23:52 - Scanning File c:\windows\system32\webclnt.dll
07 III 2008 20:23:52 - Scanning File c:\windows\system32\regsvc.dll
07 III 2008 20:23:52 - Scanning File c:\windows\system32\ssdpsrv.dll
07 III 2008 20:23:52 - Scanning File C:\PROGRA~1\Lavasoft\AD-AWA~2\AAWSER~1.EXE
07 III 2008 20:23:53 - Scanning File C:\PROGRA~1\Lavasoft\AD-AWA~2\CEAPI.dll
07 III 2008 20:23:53 - Scanning File C:\PROGRA~1\Lavasoft\AD-AWA~2\PKARCH~1.DLL
07 III 2008 20:23:53 - Scanning File C:\PROGRA~1\Lavasoft\AD-AWA~2\Update.dll (????)
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\Explorer.EXE
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\system32\BROWSEUI.dll
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\system32\SHDOCVW.dll
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\system32\themeui.dll
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\system32\MSIMG32.dll
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\system32\msutb.dll
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\system32\MSCTF.dll
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\system32\LINKINFO.dll
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\system32\ntshrui.dll
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\system32\ieframe.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\MLANG.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\webcheck.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\urlmon.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\stobject.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\BatMeter.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\System32\drprov.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\System32\ntlanman.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\System32\NETUI0.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\System32\NETUI1.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\System32\NETRAP.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\System32\davclnt.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\browselc.dll
07 III 2008 20:23:54 - Scanning File C:\PROGRA~1\SPYBOT~1\SDHelper.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\faultrep.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\olepro32.dll (????)
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\jsproxy.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\DUSER.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\shdoclc.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswUpdSv.exe
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswCmnS.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswCmnOS.dll
07 III 2008 20:23:55 - Scanning File C:\WINDOWS\system32\MSVCP71.dll
07 III 2008 20:23:55 - Scanning File C:\WINDOWS\system32\MSVCR71.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswCmnB.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashServ.exe
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswAux.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswEngin.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswScan.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashBase.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashTask.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswInteg.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswIdle.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\Aavm4h.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\Czech\Base.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\UNACEV2.DLL (????)
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AhResMai.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ahResMes.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AhResNS.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AhResOut.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ahResP2P.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AhResStd.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AhResWS.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashSSqlt.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\perfos.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\spoolsv.exe
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\SPOOLSS.DLL
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\localspl.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\cnbjmon.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\hpz3l5ha.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\pjlmon.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\tcpmon.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\usbmon.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\System32\spool\PRTPROCS\W32X86\hpzpp5ha.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\win32spl.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\inetpp.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswCmnOS.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashBase.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswCmnB.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswCmnS.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashTask.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswAux.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\Aavm4h.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\Czech\Lang.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\MFC71.DLL
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AavmRpch.dll
07 III 2008 20:23:56 - Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruimai.dll
07 III 2008 20:23:57 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashUInt.dll
07 III 2008 20:23:57 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\XT1922.dll
07 III 2008 20:23:57 - Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruimes.dll
07 III 2008 20:23:57 - Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruins.dll
07 III 2008 20:23:57 - Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruiout.dll
07 III 2008 20:23:57 - Scanning File C:\WINDOWS\system32\MAPI32.dll
07 III 2008 20:23:57 - Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruip2p.dll
07 III 2008 20:23:57 - Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruistd.dll
07 III 2008 20:23:57 - Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruiws.dll
07 III 2008 20:23:57 - Scanning File C:\PROGRA~1\SPYWAR~1\SPYWAR~2.EXE (????)
07 III 2008 20:23:57 - Scanning File C:\PROGRA~1\HP\HPSOFT~1\HPWUSC~1.EXE
07 III 2008 20:23:57 - Scanning File C:\WINDOWS\system32\ctfmon.exe
07 III 2008 20:23:57 - Scanning File C:\PROGRA~1\SPYBOT~1\TeaTimer.exe (????)
07 III 2008 20:23:57 - Scanning File C:\WINDOWS\system32\hhctrl.ocx
07 III 2008 20:23:58 - Scanning File C:\WINDOWS\system32\mui\0005\hhctrlui.dll
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\SPYBOT~1\advcheck.dll
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\MESSEN~1\msmsgs.exe
07 III 2008 20:23:58 - Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll (????)
07 III 2008 20:23:58 - Scanning File C:\WINDOWS\system32\XPOB2RES.DLL
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe
07 III 2008 20:23:58 - Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.91_x-ww_0de56c07\MSVCP80.dll
07 III 2008 20:23:58 - Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.91_x-ww_0de56c07\MSVCR80.dll
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpquio08.dll
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.rsc
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqtao08.dll
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpotra08.dll
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpotra08.rsc
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpotradd.dll
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqrif08.dll
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqmif08.dll
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqcob08.dll
07 III 2008 20:23:59 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpodio08.dll
07 III 2008 20:23:59 - Scanning File C:\WINDOWS\system32\hpzipr12.dll
07 III 2008 20:23:59 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqddusr.dll
07 III 2008 20:23:59 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqddcmn.dll
07 III 2008 20:23:59 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqusg.dll
07 III 2008 20:23:59 - Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.91_x-ww_6e85597b\ATL80.DLL
07 III 2008 20:23:59 - Scanning File C:\WINDOWS\system32\hpzidr12.dll
07 III 2008 20:23:59 - Scanning File c:\PROGRA~1\hp\DIGITA~1\bin\hpqddsvc.dll
07 III 2008 20:23:59 - Scanning File c:\PROGRA~1\hp\DIGITA~1\bin\hpqcxs08.dll
07 III 2008 20:23:59 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpocxi08.dll
07 III 2008 20:23:59 - Scanning File C:\PROGRA~1\COMMON~1\MICROS~1\VS7Debug\mdm.exe
07 III 2008 20:23:59 - Scanning File c:\windows\system32\hpzinw12.dll
07 III 2008 20:23:59 - Scanning File C:\WINDOWS\system32\nvsvc32.exe
07 III 2008 20:23:59 - Scanning File C:\WINDOWS\system32\nvapi.dll (????)
07 III 2008 20:23:59 - Scanning File c:\windows\system32\hpzipm12.dll
07 III 2008 20:23:59 - Scanning File C:\PROGRA~1\CYBERL~1\SHARED~1\RICHVI~1.EXE (????)
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\kpf4ss.exe
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\POCOFO~1.DLL (????)
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\PocoXML.dll (????)
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\PocoExt.dll (????)
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\kfe.dll
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\LIBEAY32.dll (????)
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\SSLEAY32.dll (????)
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\curllib.dll
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\kwsapi.dll
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SPYWAR~1\sp_rsser.exe (????)
07 III 2008 20:24:00 - Scanning File c:\windows\system32\wiaservc.dll
07 III 2008 20:24:00 - Scanning File c:\windows\system32\CFGMGR32.dll
07 III 2008 20:24:00 - Scanning File c:\windows\system32\mscms.dll
07 III 2008 20:24:00 - Scanning File C:\WINDOWS\system32\wiavusd.dll
07 III 2008 20:24:01 - Scanning File C:\WINDOWS\system32\actxprxy.dll
07 III 2008 20:24:01 - Scanning File C:\WINDOWS\system32\sti.dll
07 III 2008 20:24:01 - Scanning File C:\WINDOWS\system32\wdfmgr.exe
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\kpf4gui.exe
07 III 2008 20:24:01 - Scanning File C:\WINDOWS\system32\wscntfy.exe
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashMaiSv.exe
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashUInt.dll
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\XT1922.dll
07 III 2008 20:24:01 - Scanning File C:\WINDOWS\system32\RICHED20.DLL
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\Czech\langmai.dll
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashWebSv.exe
07 III 2008 20:24:01 - Scanning File C:\WINDOWS\system32\security.dll
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashWsFtr.dll
07 III 2008 20:24:01 - Scanning File C:\WINDOWS\system32\OLEACC.dll
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AhResWs.dll
07 III 2008 20:24:01 - Scanning File C:\WINDOWS\System32\alg.exe
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqSTE08.exe
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqwso08.dll
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqsti08.dll
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqstp08.dll
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqstp08.rsc
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqsem08.rsc
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\INTERN~1\iexplore.exe
07 III 2008 20:24:02 - Scanning File C:\WINDOWS\system32\IEUI.dll
07 III 2008 20:24:02 - Scanning File C:\WINDOWS\system32\xmllite.dll
07 III 2008 20:24:02 - Scanning File C:\WINDOWS\system32\msimtf.dll
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\MICROS~2\Office10\msohev.dll
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\INTERN~1\ieproxy.dll
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPSWP_~1.DLL (????)
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPSWP_~4.DLL (????)
07 III 2008 20:24:02 - Scanning File C:\WINDOWS\system32\msxml3.dll
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPC2AD~1.DLL (????)
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPB542~1.DLL (????)
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HP007C~1.DLL (????)
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HP0401~1.DLL (????)
07 III 2008 20:24:03 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HP6600~1.DLL (????)
07 III 2008 20:24:03 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HP8C8B~1.DLL (????)
07 III 2008 20:24:03 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HP3C7C~1.DLL (????)
07 III 2008 20:24:03 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPSWP_~3.DLL (????)
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\mshtml.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\msls31.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\ieapfltr.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\sensapi.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\jscript.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\ImgUtil.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\pngfilt.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\mshtmled.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\vbscript.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx (????)
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\ddrawex.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\DDRAW.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\DCIMAN32.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\msfeeds.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\iepeers.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\wmpdxm.dll
07 III 2008 20:24:04 - Scanning File C:\WINDOWS\system32\wmp.dll
07 III 2008 20:24:04 - Scanning File C:\WINDOWS\system32\MSVFW32.dll
07 III 2008 20:24:04 - Scanning File C:\WINDOWS\system32\wmploc.dll
07 III 2008 20:24:04 - Scanning File C:\WINDOWS\system32\USP10.dll
07 III 2008 20:24:04 - Scanning File C:\PROGRA~1\COMMON~1\Ahead\Lib\NERODI~1.DLL
07 III 2008 20:24:04 - Scanning File C:\PROGRA~1\COMMON~1\Ahead\Lib\MFC71.DLL
07 III 2008 20:24:04 - Scanning File C:\PROGRA~1\COMMON~1\Ahead\Lib\MSVCR71.dll
07 III 2008 20:24:04 - Scanning File C:\PROGRA~1\COMMON~1\Ahead\Lib\MSVCP71.dll
07 III 2008 20:24:04 - Scanning File C:\PROGRA~1\Adobe\ACROBA~1.0\ActiveX\PDFShell.dll (????)
07 III 2008 20:24:04 - Scanning File C:\WINDOWS\system32\Dxtrans.dll
07 III 2008 20:24:04 - Scanning File C:\WINDOWS\system32\Dxtmsft.dll
07 III 2008 20:24:04 - Scanning File C:\WINDOWS\system32\corpol.dll
07 III 2008 20:24:04 - Scanning File C:\WINDOWS\system32\cryptnet.dll
07 III 2008 20:24:04 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPSWP_~1.EXE (????)
07 III 2008 20:24:05 - Scanning File C:\PROGRA~1\Crawler\Toolbar\CToolbar.exe
07 III 2008 20:24:06 - Scanning File c:\PROGRA~1\Crawler\Toolbar\ctbcomm.dll
07 III 2008 20:24:06 - Scanning File c:\PROGRA~1\Crawler\Toolbar\WEBSEC~1.DLL
07 III 2008 20:24:06 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\mexe.com (????)
07 III 2008 20:24:06 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\msvl64.dll
07 III 2008 20:24:06 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\kave.dll
07 III 2008 20:24:06 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\FSSync.dll
07 III 2008 20:24:06 - Scanning File C:\WINDOWS\system32\RICHED32.DLL
07 III 2008 20:24:06 - Scanning File C:\WINDOWS\system32\VDMDBG.DLL
07 III 2008 20:24:06 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\ScanningProcess.exe
07 III 2008 20:24:06 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\prloader.dll
07 III 2008 20:24:06 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\prkernel.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\avpmgr.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\wdiskio.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\nfio.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\fsdrvplg.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\avlib.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\dtreg.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\prutil.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\avp1.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\l_llio.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\ichk2.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\sfdb.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\ichksa.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\mkavio.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\hashmd5.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\hashcont.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\hccmp.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\iwgen.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\uniarc.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\minizip.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\cab.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\arj.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\rar.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\lha.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\mdb.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\msoe.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\tempfile.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\avpgs.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\thpimpl.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\dmap.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\ntfsstrm.ppl
07 III 2008 20:24:07 - ***** Testování souborů registrů *****
07 III 2008 20:24:07 - Testování HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
07 III 2008 20:24:07 - ** (PostBootReminder) {7849596a-48ea-486e-8937-a2a3009f31a9} = %SystemRoot%\system32\SHELL32.dll
07 III 2008 20:24:07 - *** Soubor C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***. Filesize 8259 kb > 3072 kb...
07 III 2008 20:24:07 - Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
07 III 2008 20:24:07 - ** (CDBurn) {fbeb8a05-beee-4442-804e-409d6c4515e9} = %SystemRoot%\system32\SHELL32.dll
07 III 2008 20:24:07 - *** Soubor C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***. Filesize 8259 kb > 3072 kb...
07 III 2008 20:24:07 - Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
07 III 2008 20:24:07 - ** (WebCheck) {E6FB5E20-DE35-11CF-9C87-00AA005127ED} = C:\WINDOWS\system32\webcheck.dll
07 III 2008 20:24:07 - Scanning File C:\WINDOWS\system32\webcheck.dll
07 III 2008 20:24:07 - ** (SysTray) {35CEC8A3-2BE6-11D2-8773-92E220524153} = C:\WINDOWS\system32\stobject.dll
07 III 2008 20:24:07 - Scanning File C:\WINDOWS\system32\stobject.dll
07 III 2008 20:24:07 - Testování HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
07 III 2008 20:24:07 - Testování HKLM\SOFTWARE\Microsoft\Internet Explorer\Plugins\Extension
07 III 2008 20:24:07 - Testování HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar
07 III 2008 20:24:07 - ** {BFC32E1D-EE75-4A48-BC60-104E11EE2431} = C:\TRANSLAT\WEBIE.DLL
07 III 2008 20:24:07 - Scanning File C:\TRANSLAT\WEBIE.DLL (????)
07 III 2008 20:24:07 - ** {4B3803EA-5230-4DC3-A7FC-33638F3D3542} = C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
07 III 2008 20:24:07 - Scanning File C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
07 III 2008 20:24:07 - Testování HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units
07 III 2008 20:24:07 - ** {31435657-9980-0010-8000-00AA00389B71} = NULL
07 III 2008 20:24:07 - ** {41564D57-9980-0010-8000-00AA00389B71} = NULL
07 III 2008 20:24:07 - ** {6414512B-B978-451D-A0D8-FCFDF33E833C} = C:\WINDOWS\system32\wuweb.dll
07 III 2008 20:24:07 - Scanning File C:\WINDOWS\system32\wuweb.dll
07 III 2008 20:24:07 - ** {D27CDB6E-AE6D-11CF-96B8-444553540000} = C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx
07 III 2008 20:24:07 - Scanning File C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx (????)
07 III 2008 20:24:07 - Testování HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects
07 III 2008 20:24:07 - ** {0347C33E-8762-4905-BF09-768834316C61} = C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll
07 III 2008 20:24:07 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPSWP_~1.DLL (????)
07 III 2008 20:24:07 - ** {053F9267-DC04-4294-A72C-58F732D338C0} = C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
07 III 2008 20:24:07 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPSWP_~4.DLL (????)
07 III 2008 20:24:07 - ** {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} = C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
07 III 2008 20:24:07 - Scanning File C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
07 III 2008 20:24:07 - ** {53707962-6F74-2D53-2644-206D7942484F} = C:\PROGRA~1\SPYBOT~1\SDHelper.dll
07 III 2008 20:24:07 - Scanning File C:\PROGRA~1\SPYBOT~1\SDHelper.dll
07 III 2008 20:24:07 - Testování HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars
07 III 2008 20:24:07 - ** {4D5C8C25-D075-11d0-B416-00C04FB90376} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:07 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:07 - Testování HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions
07 III 2008 20:24:07 - ** {58ECB495-38F0-49cb-A538-10282ABF65E7} = C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
07 III 2008 20:24:07 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPSWP_~2.DLL (????)
07 III 2008 20:24:07 - ** {700259D7-1666-479a-93B1-3250410481E8} = C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
07 III 2008 20:24:07 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPSWP_~2.DLL (????)
07 III 2008 20:24:07 - ** {7E6A20FB-153F-402c-A84B-1A64E1955D3D} = C:\TRANSLAT\WEBIE.DLL
07 III 2008 20:24:07 - Scanning File C:\TRANSLAT\WEBIE.DLL (????)
07 III 2008 20:24:07 - ** {B863453A-26C3-4e1f-A54D-A2CD196348E9} = C:\Program Files\ICQLite\ICQLite.exe
07 III 2008 20:24:07 - Scanning File C:\PROGRA~1\ICQLite\ICQLite.exe
07 III 2008 20:24:07 - ** {CC963627-B1DC-40E0-B52A-CF21EE748450} = C:\TRANSLAT\WEBIE.DLL
07 III 2008 20:24:07 - Scanning File C:\TRANSLAT\WEBIE.DLL (????)
07 III 2008 20:24:07 - ** {CC963627-B1DC-40E0-B52A-CF21EE748451} = C:\TRANSLAT\WEBIE.DLL
07 III 2008 20:24:07 - Scanning File C:\TRANSLAT\WEBIE.DLL (????)
07 III 2008 20:24:07 - ** {CC963627-B1DC-40E0-B52A-CF21EE748452} = C:\TRANSLAT\WEBIE.DLL
07 III 2008 20:24:07 - Scanning File C:\TRANSLAT\WEBIE.DLL (????)
07 III 2008 20:24:07 - ** {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} = C:\PROGRA~1\SPYBOT~1\SDHelper.dll
07 III 2008 20:24:07 - Scanning File C:\PROGRA~1\SPYBOT~1\SDHelper.dll
07 III 2008 20:24:07 - ** {e2e2dd38-d088-4134-82b7-f2ba38496583} = %windir%\Network Diagnostic\xpnetdiag.exe
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\NETWOR~1\XPNETD~1.EXE
07 III 2008 20:24:08 - ** {FB5F1910-F110-11d2-BB9E-00C04F795683} = C:\Program Files\Messenger\msmsgs.exe
07 III 2008 20:24:08 - Scanning File C:\PROGRA~1\MESSEN~1\msmsgs.exe
07 III 2008 20:24:08 - Testování HKCU\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars
07 III 2008 20:24:08 - ** {30D02401-6A81-11D0-8274-00C04FD5AE38} = C:\WINDOWS\system32\ieframe.dll
07 III 2008 20:24:08 - *** Soubor C:\WINDOWS\system32\ieframe.dll having Size Restriction ***. Filesize 5916 kb > 3072 kb...
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\ieframe.dll [**]
07 III 2008 20:24:08 - ** {C4EE31F3-4768-11D2-BE5C-00A0C9A83DA1} = %SystemRoot%\system32\SHELL32.dll
07 III 2008 20:24:08 - *** Soubor C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***. Filesize 8259 kb > 3072 kb...
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
07 III 2008 20:24:08 - ** {EFA24E61-B078-11D0-89E4-00C04FC9E26E} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:08 - ** {EFA24E62-B078-11D0-89E4-00C04FC9E26E} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:08 - Testování HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping
07 III 2008 20:24:08 - ** {7E6A20FB-153F-402c-A84B-1A64E1955D3D} = C:\TRANSLAT\WEBIE.DLL
07 III 2008 20:24:08 - Scanning File C:\TRANSLAT\WEBIE.DLL (????)
07 III 2008 20:24:08 - ** {CC963627-B1DC-40E0-B52A-CF21EE748450} = C:\TRANSLAT\WEBIE.DLL
07 III 2008 20:24:08 - Scanning File C:\TRANSLAT\WEBIE.DLL (????)
07 III 2008 20:24:08 - ** {CC963627-B1DC-40E0-B52A-CF21EE748451} = C:\TRANSLAT\WEBIE.DLL
07 III 2008 20:24:08 - Scanning File C:\TRANSLAT\WEBIE.DLL (????)
07 III 2008 20:24:08 - ** {CC963627-B1DC-40E0-B52A-CF21EE748452} = C:\TRANSLAT\WEBIE.DLL
07 III 2008 20:24:08 - Scanning File C:\TRANSLAT\WEBIE.DLL (????)
07 III 2008 20:24:08 - Testování HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler
07 III 2008 20:24:08 - ** {438755C2-A8BA-11D1-B96B-00A0C90312E1} = %SystemRoot%\system32\browseui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\browseui.dll
07 III 2008 20:24:08 - ** {8C7461EF-2B13-11d2-BE35-3078302C2030} = %SystemRoot%\system32\browseui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\browseui.dll
07 III 2008 20:24:08 - Testování HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
07 III 2008 20:24:08 - ** {00022613-0000-0000-C000-000000000046} = mmsys.cpl
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\mmsys.cpl
07 III 2008 20:24:08 - ** {176d6597-26d3-11d1-b350-080036a75b03} = icmui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\icmui.dll
07 III 2008 20:24:08 - ** {1F2E5C40-9550-11CE-99D2-00AA006E086C} = rshx32.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\rshx32.dll
07 III 2008 20:24:08 - ** {3EA48300-8CF6-101B-84FB-666CCB9BCD32} = docprop.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\docprop.dll
07 III 2008 20:24:08 - ** {40dd6e20-7c17-11ce-a804-00aa003ca9f6} = ntshrui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\ntshrui.dll
07 III 2008 20:24:08 - ** {41E300E0-78B6-11ce-849B-444553540000} = %SystemRoot%\system32\themeui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\themeui.dll
07 III 2008 20:24:08 - ** {42071712-76d4-11d1-8b24-00a0c9068ff3} = deskadp.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\deskadp.dll
07 III 2008 20:24:08 - ** {42071713-76d4-11d1-8b24-00a0c9068ff3} = deskmon.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\deskmon.dll
07 III 2008 20:24:08 - ** {42071714-76d4-11d1-8b24-00a0c9068ff3} = deskpan.dll
07 III 2008 20:24:08 - ** {4E40F770-369C-11d0-8922-00A024AB2DBB} = dssec.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\dssec.dll
07 III 2008 20:24:08 - ** {513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8} = SlayerXP.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\SlayerXP.dll
07 III 2008 20:24:08 - ** {56117100-C0CD-101B-81E2-00AA004AE837} = shscrap.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\shscrap.dll
07 III 2008 20:24:08 - ** {59099400-57FF-11CE-BD94-0020AF85B590} = diskcopy.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\diskcopy.dll
07 III 2008 20:24:08 - ** {59be4990-f85c-11ce-aff7-00aa003ca9f6} = ntlanui2.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\ntlanui2.dll
07 III 2008 20:24:08 - ** {5DB2625A-54DF-11D0-B6C4-0800091AA605} = %SystemRoot%\System32\icmui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\System32\icmui.dll
07 III 2008 20:24:08 - ** {675F097E-4C4D-11D0-B6C1-0800091AA605} = %SystemRoot%\system32\icmui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\icmui.dll
07 III 2008 20:24:08 - ** {77597368-7b15-11d0-a0c2-080036af3f03} = printui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\printui.dll
07 III 2008 20:24:08 - ** {7988B573-EC89-11cf-9C00-00AA00A14F56} = dskquoui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\dskquoui.dll
07 III 2008 20:24:08 - ** {85BBD920-42A0-1069-A2E4-08002B30309D} = syncui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\syncui.dll
07 III 2008 20:24:08 - ** {88895560-9AA2-1069-930E-00AA0030EBC8} = C:\WINDOWS\system32\hticons.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\hticons.dll
07 III 2008 20:24:08 - ** {BD84B380-8CA2-1069-AB1D-08000948F534} = fontext.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\fontext.dll
07 III 2008 20:24:08 - ** {DBCE2480-C732-101B-BE72-BA78E9AD5B27} = %SystemRoot%\system32\icmui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\icmui.dll
07 III 2008 20:24:08 - ** {F37C5810-4D3F-11d0-B4BF-00AA00BBB723} = rshx32.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\rshx32.dll
07 III 2008 20:24:08 - ** {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} = ntshrui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\ntshrui.dll
07 III 2008 20:24:08 - ** {f92e8c40-3d33-11d2-b1aa-080036a75b03} = deskperf.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\deskperf.dll
07 III 2008 20:24:08 - ** {7444C717-39BF-11D1-8CD9-00C04FC29D45} = C:\WINDOWS\system32\cryptext.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\cryptext.dll
07 III 2008 20:24:08 - ** {7444C719-39BF-11D1-8CD9-00C04FC29D45} = C:\WINDOWS\system32\cryptext.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\cryptext.dll
07 III 2008 20:24:08 - ** {7007ACC7-3202-11D1-AAD2-00805FC1270E} = C:\WINDOWS\system32\NETSHELL.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\NETSHELL.dll
07 III 2008 20:24:08 - ** {992CFFA0-F557-101A-88EC-00DD010CCC48} = C:\WINDOWS\system32\NETSHELL.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\NETSHELL.dll
07 III 2008 20:24:08 - ** {E211B736-43FD-11D1-9EFB-0000F8757FCD} = wiashext.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\wiashext.dll
07 III 2008 20:24:08 - ** {FB0C9C8A-6C50-11D1-9F1D-0000F8757FCD} = wiashext.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\wiashext.dll
07 III 2008 20:24:08 - ** {905667aa-acd6-11d2-8080-00805f6596d2} = wiashext.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\wiashext.dll
07 III 2008 20:24:08 - ** {3F953603-1008-4f6e-A73A-04AAC7A992F1} = wiashext.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\wiashext.dll
07 III 2008 20:24:08 - ** {83bbcbf3-b28a-4919-a5aa-73027445d672} = wiashext.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\wiashext.dll
07 III 2008 20:24:08 - ** {F0152790-D56E-4445-850E-4F3117DB740C} = C:\WINDOWS\system32\remotepg.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\remotepg.dll
07 III 2008 20:24:08 - ** {60254CA5-953B-11CF-8C96-00AA00B8708C} = C:\WINDOWS\system32\wshext.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\wshext.dll
07 III 2008 20:24:08 - ** {2206CDB2-19C1-11D1-89E0-00C04FD7A829} = C:\Program Files\Common Files\System\Ole DB\oledb32.dll
07 III 2008 20:24:09 - Scanning File C:\PROGRA~1\COMMON~1\System\OLEDB~1\oledb32.dll
07 III 2008 20:24:09 - ** {DD2110F0-9EEF-11cf-8D8E-00AA0060F5BF} = C:\WINDOWS\system32\mstask.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\mstask.dll
07 III 2008 20:24:09 - ** {797F1E90-9EDD-11cf-8D8E-00AA0060F5BF} = C:\WINDOWS\system32\mstask.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\mstask.dll
07 III 2008 20:24:09 - ** {D6277990-4C6A-11CF-8D87-00AA0060F5BF} = C:\WINDOWS\system32\mstask.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\mstask.dll
07 III 2008 20:24:09 - ** {2559a1f7-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:09 - ** {5F327514-6C5E-4d60-8F16-D07FA08A78ED} = C:\WINDOWS\system32\wuaucpl.cpl
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\wuaucpl.cpl
07 III 2008 20:24:09 - ** {2559a1f0-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:09 - ** {2559a1f1-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:09 - ** {2559a1f2-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:09 - ** {2559a1f3-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:09 - ** {2559a1f4-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:09 - ** {2559a1f5-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:09 - ** {D20EA4E1-3957-11d2-A40B-0C5020524152} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:09 - ** {D20EA4E1-3957-11d2-A40B-0C5020524153} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:09 - ** {596AB062-B4D2-4215-9F74-E9109B0A8153} = %SystemRoot%\system32\twext.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\twext.dll
07 III 2008 20:24:09 - ** {9DB7A13C-F208-4981-8353-73CC61AE2783} = %SystemRoot%\system32\twext.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\twext.dll
07 III 2008 20:24:09 - ** {875CB1A1-0F29-45de-A1AE-CFB4950D0B78} = %SystemRoot%\system32\shmedia.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shmedia.dll
07 III 2008 20:24:09 - ** {40C3D757-D6E4-4b49-BB41-0E5BBEA28817} = %SystemRoot%\system32\shmedia.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shmedia.dll
07 III 2008 20:24:09 - ** {E4B29F9D-D390-480b-92FD-7DDB47101D71} = %SystemRoot%\system32\shmedia.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shmedia.dll
07 III 2008 20:24:09 - ** {87D62D94-71B3-4b9a-9489-5FE6850DC73E} = %SystemRoot%\system32\shmedia.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shmedia.dl
07 III 2008 20:22:38 - MicroWorld Anti Virus & Spyware Toolkit Utility.
07 III 2008 20:22:38 - Copyright © MicroWorld Technologies
07 III 2008 20:22:38 - **********************************************************
07 III 2008 20:22:38 - Source: C:\PROGRA~1\mwav.exe
07 III 2008 20:22:38 - Version 9.7.6 (C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\mexe.com)
07 III 2008 20:22:38 - Log File: C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\MWAV.LOG
07 III 2008 20:22:38 - MWAV Registered: FALSE
07 III 2008 20:22:38 - User Account: X (Administrator Mode)
07 III 2008 20:22:38 - OS Type: Windows Workstation
07 III 2008 20:22:38 - OS: Windows XP
07 III 2008 20:22:38 - Ver: Service Pack 2 (Build 2600)
07 III 2008 20:22:38 - Windows Root Folder: C:\WINDOWS
07 III 2008 20:22:38 - Windows Sys32 Folder: C:\WINDOWS\system32
07 III 2008 20:22:38 - Interface0 NameServer: 192.168.20.254,10.10.10.10
07 III 2008 20:22:38 - Local Fixed Drives: c:\,d:\,f:\,g:\,h:\
07 III 2008 20:22:38 - MWAV Mode: Only Scan files
07 III 2008 20:22:38 - [CREATED ZIP FILE C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\pinfect.zip]
07 III 2008 20:22:38 - ****** Files/Folders created/modified during last fortnight in Windows and ROOT Folder ******
07 III 2008 20:22:38 - C:\WINDOWS\csnpstd3.dll (53248), 23-Feb-2008, , InstallUtil
07 III 2008 20:22:38 - C:\WINDOWS\tsnpstd3.exe (368640), 23-Feb-2008, tsnpstd3
07 III 2008 20:22:38 - C:\WINDOWS\amcap.exe (94208), 23-Feb-2008, Microsoft Corporation, DirectX 8.1 Sample
07 III 2008 20:22:38 - C:\WINDOWS\vsnpstd3.exe (843776), 23-Feb-2008, CameraMonitor Application
07 III 2008 20:22:38 - C:\WINDOWS\system32\vsnpstd3.dll (61440), 23-Feb-2008,
07 III 2008 20:22:38 - C:\WINDOWS\system32\csnpstd3.dll (53248), 23-Feb-2008, , InstallUtil
07 III 2008 20:22:38 - C:\WINDOWS\system32\vfwwdm32.dll (54272), 23-Feb-2008, Microsoft Corporation, Operační systém Microsoft® Windows®
07 III 2008 20:22:38 - C:\WINDOWS\system32\rsnpstd3.dll (172032), 23-Feb-2008, , ResourceDLL
07 III 2008 20:22:38 - C:\WINDOWS\system32\ipsink.ax (16384), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:38 - C:\WINDOWS\system32\ksxbar.ax (43008), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:38 - C:\WINDOWS\system32\kstvtune.ax (61952), 23-Feb-2008, Microsoft Corporation, Operační systém Microsoft(R) Windows(R)
07 III 2008 20:22:38 - C:\WINDOWS\system32\kswdmcap.ax (91136), 23-Feb-2008, Microsoft Corporation, Operační systém Microsoft(R) Windows(R)
07 III 2008 20:22:38 - C:\WINDOWS\system32\vidcap.ax (28672), 23-Feb-2008, Microsoft Corporation, Microsoft® Windows® Operating System
07 III 2008 20:22:38 - C:\Bootfont.bin (4952), 25-Oct-2001 [HSR]
07 III 2008 20:22:38 - C:\NTDETECT.COM (47564), 03-Aug-2004 [HSR]
07 III 2008 20:22:38 - C:\WINDOWS\system32\dllcache\ksxbar.ax (43008), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\vfwwdm32.dll (54272), 23-Feb-2008, Microsoft Corporation, Operační systém Microsoft® Windows®
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\kstvtune.ax (61952), 23-Feb-2008, Microsoft Corporation, Operační systém Microsoft(R) Windows(R)
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\kswdmcap.ax (91136), 23-Feb-2008, Microsoft Corporation, Operační systém Microsoft(R) Windows(R)
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\vidcap.ax (28672), 23-Feb-2008, Microsoft Corporation, Microsoft® Windows® Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\usbaudio.sys (59264), 23-Feb-2008, Microsoft Corporation, Microsoft® Windows® Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\ccdecode.sys (17024), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\nabtsfec.sys (85376), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\wstcodec.sys (19328), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\slip.sys (11136), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\ipsink.ax (16384), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\streamip.sys (15360), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\ndisip.sys (10880), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache\mstee.sys (5504), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\sp_rsdrv2.sys (138752), 27-Feb-2008 [Added C:\WINDOWS\system32\drivers\sp_rsdrv2.sys to ZIP FILE]
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\snpstd3.sys (10222720), 23-Feb-2008, Sonix Co. Ltd., USB PC Camera
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\USBAUDIO.sys (59264), 23-Feb-2008, Microsoft Corporation, Microsoft® Windows® Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\CCDECODE.sys (17024), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\NABTSFEC.sys (85376), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\WSTCODEC.SYS (19328), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\SLIP.sys (11136), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\MSTEE.sys (5504), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\StreamIP.sys (15360), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\system32\drivers\NdisIP.sys (10880), 23-Feb-2008, Microsoft Corporation, Microsoft(R) Windows(R) Operating System
07 III 2008 20:22:39 - C:\WINDOWS\inf, 03-Feb-2007 [H] [Folder]
07 III 2008 20:22:39 - C:\WINDOWS\Fonts, 03-Feb-2007 [SR] [Folder]
07 III 2008 20:22:39 - C:\WINDOWS\$hf_mig$, 17-Jan-2008 [H] [Folder]
07 III 2008 20:22:39 - C:\WINDOWS\ie7, 17-Jan-2008 [H] [Folder]
07 III 2008 20:22:39 - C:\WINDOWS\Tasks, 03-Feb-2007 [S] [Folder]
07 III 2008 20:22:39 - C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$, 17-Jan-2008 [H] [Folder]
07 III 2008 20:22:39 - C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$, 17-Jan-2008 [H] [Folder]
07 III 2008 20:22:39 - C:\WINDOWS\$MSI31Uninstall_KB893803v2$, 17-Jan-2008 [H] [Folder]
07 III 2008 20:22:39 - C:\WINDOWS\system32\dllcache, 03-Feb-2007 [HSR] [Folder]
07 III 2008 20:22:39 - C:\WINDOWS\system32\Microsoft, 03-Feb-2007 [S] [Folder]
07 III 2008 20:22:39 - C:\FOUND.023, 21-Jun-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.000, 15-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.001, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.002, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.003, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.004, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.005, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.006, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.007, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.008, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.009, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.010, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.011, 18-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.012, 20-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.013, 20-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.014, 20-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.015, 24-May-2003 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.016, 26-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.017, 26-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.018, 26-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.019, 26-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.020, 28-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.021, 28-May-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.022, 06-Jun-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.024, 23-Jun-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.036, 15-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.037, 15-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.025, 09-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.026, 09-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.027, 10-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.028, 10-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.029, 11-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.030, 11-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.031, 11-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.032, 12-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.057, 16-Aug-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.062, 17-Jan-2008 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.033, 12-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.034, 12-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.035, 15-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.038, 15-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.039, 17-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.040, 18-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.041, 18-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.042, 18-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.043, 19-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.044, 19-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.045, 19-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.046, 20-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.047, 21-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.048, 22-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.049, 22-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.050, 22-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.051, 25-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.052, 28-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.053, 29-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.054, 30-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.055, 31-Jul-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.063, 25-Feb-2008 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.064, 02-Mar-2008 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.061, 15-Jan-2008 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.056, 12-Aug-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\Config.Msi, 18-Aug-2007 [H] [Folder]
07 III 2008 20:22:39 - C:\FOUND.058, 10-Nov-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.059, 24-Nov-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\FOUND.060, 27-Nov-2007 [HS] [Folder]
07 III 2008 20:22:39 - C:\Program Files\WindowsUpdate, 03-Feb-2007 [H] [Folder]
07 III 2008 20:22:39 - C:\Program Files\Common Files\snpstd3, 23-Feb-2008 [Folder]
07 III 2008 20:22:39 - [Made copy of PINFECT.ZIP as C:\DOCUME~1\X9EB6~1.999\DOKUME~1\pinfect.zip]
07 III 2008 20:22:39 - *********************************************************************************************
07 III 2008 20:22:39 - Latest Date of files inside MWAV: 26 Feb 2008 06:52:53.
07 III 2008 20:22:40 - ** Changed Value of "NoDriveTypeAutoRun" in "HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" from DWORD:36 to DWORD:145
07 III 2008 20:22:40 - ** Changed Value of "NoDriveTypeAutoRun" in "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" from DWORD:36 to DWORD:145
07 III 2008 20:22:40 - ** Changed Value of "NoDriveAutoRun" in "HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" from DWORD:-1 to DWORD:0
07 III 2008 20:22:40 - ** Changed Value of "NoDriveAutoRun" in "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" from DWORD:-1 to DWORD:0
07 III 2008 20:22:51 - AV Library Loaded...
07 III 2008 20:22:51 - MWAV doing self scanning...
07 III 2008 20:22:51 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\getvlist.exe
07 III 2008 20:22:51 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\main.avi
07 III 2008 20:22:51 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\virus.avi
07 III 2008 20:22:51 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\ScanningProcess.exe
07 III 2008 20:22:51 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\kave.dll
07 III 2008 20:22:51 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\prloader.dll
07 III 2008 20:22:51 - MWAV files are clean.
07 III 2008 20:23:17 - Datum vydání databáze: 26 Feb 2008
07 III 2008 20:23:17 - Verze virové databáze: 581531
07 III 2008 20:23:43 - **********************************************************
07 III 2008 20:23:43 - MicroWorld Anti Virus & Spyware Toolkit Utility.
07 III 2008 20:23:43 - Copyright © 2003-2006, MicroWorld Technologies Inc.
07 III 2008 20:23:43 -
07 III 2008 20:23:43 - Podpora [EN]: support@mwti.net
07 III 2008 20:23:43 - Web: http://www.mwti.net
07 III 2008 20:23:43 - **********************************************************
07 III 2008 20:23:43 - Verze 9.7.6 (C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\mexe.com)
07 III 2008 20:23:43 - Log soubor: C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\MWAV.LOG
07 III 2008 20:23:43 - User Account: X
07 III 2008 20:23:43 - Windows Root Folder: C:\WINDOWS
07 III 2008 20:23:43 - Windows Sys32 Folder: C:\WINDOWS\system32
07 III 2008 20:23:43 - OS: Windows XP
07 III 2008 20:23:43 - Ver: Service Pack 2 (Build 2600)
07 III 2008 20:23:43 - Poslední datum souborů používaných MWAV: 26 Feb 2008 06:52:53.
07 III 2008 20:23:43 - Nastavení vybraná uživatelem:
07 III 2008 20:23:43 - Kontrola paměti: Zapnuto
07 III 2008 20:23:43 - Kontorla registrů: Zapnuto
07 III 2008 20:23:43 - Kontrola souborů po spuštění: Zapnuto
07 III 2008 20:23:43 - Kontrola systémových složek: Zapnuto
07 III 2008 20:23:43 - Kontrola systémových oblastí: Vypnuto
07 III 2008 20:23:43 - Kontrola služeb: Zapnuto
07 III 2008 20:23:43 - Nastavení kontroly disků vypnuto
07 III 2008 20:23:43 - Kontrola složek: Vypnuto
07 III 2008 20:23:45 - ***** Testování paměti *****
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\System32\smss.exe
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\system32\ntdll.dll
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\SYSTEM32\CSRSS.EXE
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\system32\CSRSRV.dll
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\system32\basesrv.dll
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\system32\winsrv.dll
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\system32\GDI32.dll
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\system32\KERNEL32.dll
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\system32\USER32.dll
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\system32\sxs.dll
07 III 2008 20:23:45 - Scanning File C:\WINDOWS\system32\ADVAPI32.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\RPCRT4.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\SYSTEM32\WINLOGON.EXE
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\AUTHZ.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\msvcrt.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\CRYPT32.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\MSASN1.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\NDdeApi.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\PROFMAP.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\NETAPI32.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\USERENV.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\PSAPI.DLL
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\REGAPI.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\Secur32.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\SETUPAPI.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\VERSION.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\WINSTA.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\WINTRUST.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\IMAGEHLP.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\WS2_32.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\WS2HELP.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\IMM32.DLL
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\MSGINA.dll
07 III 2008 20:23:46 - Scanning File C:\WINDOWS\system32\SHELL32.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\SHLWAPI.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\COMCTL32.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\ODBC32.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\comdlg32.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\odbcint.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\SHSVCS.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\sfc.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\sfc_os.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\ole32.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\Apphelp.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\msctfime.ime
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\WINSCARD.DLL
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\WTSAPI32.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\uxtheme.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\WINMM.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\cscdll.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\WlNotify.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\WINSPOOL.DRV
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\MPR.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\rsaenh.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\SAMLIB.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\msv1_0.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\iphlpapi.dll
07 III 2008 20:23:47 - Scanning File C:\WINDOWS\system32\cscui.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\xpsp2res.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\NTMARTA.DLL
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\WLDAP32.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\wdmaud.drv
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\msacm32.drv
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\MSACM32.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\midimap.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\COMRes.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\OLEAUT32.dll (????)
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\CLBCATQ.DLL
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\services.exe
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\SCESRV.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\umpnpmgr.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\NCObjAPI.DLL
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\MSVCP60.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\ShimEng.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\AppPatch\AcGenral.DLL
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\eventlog.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\lsass.exe
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\LSASRV.dll
07 III 2008 20:23:48 - Scanning File C:\WINDOWS\system32\NTDSAPI.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\DNSAPI.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\SAMSRV.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\cryptdll.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\msprivs.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\kerberos.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\netlogon.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\w32time.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\schannel.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\wdigest.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\scecli.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\ipsecsvc.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\oakley.DLL
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\WINIPSEC.DLL
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\pstorsvc.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\mswsock.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\hnetcfg.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\System32\wshtcpip.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\psbase.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\dssenh.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\svchost.exe
07 III 2008 20:23:49 - Scanning File c:\windows\system32\rpcss.dll
07 III 2008 20:23:49 - Scanning File c:\windows\system32\termsrv.dll
07 III 2008 20:23:49 - Scanning File c:\windows\system32\ICAAPI.dll
07 III 2008 20:23:49 - Scanning File c:\windows\system32\mstlsapi.dll
07 III 2008 20:23:49 - Scanning File c:\windows\system32\ACTIVEDS.dll
07 III 2008 20:23:49 - Scanning File c:\windows\system32\adsldpc.dll
07 III 2008 20:23:49 - Scanning File c:\windows\system32\ATL.DLL
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\msi.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\System32\winrnr.dll
07 III 2008 20:23:49 - Scanning File C:\WINDOWS\system32\rasadhlp.dll
07 III 2008 20:23:49 - Scanning File c:\windows\system32\uxtuneup.dll
07 III 2008 20:23:49 - Scanning File c:\windows\system32\dbghelp.dll
07 III 2008 20:23:49 - Scanning File c:\windows\system32\dhcpcsvc.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\wzcsvc.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\rtutils.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\WMI.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\ESENT.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\irmon.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\System32\wshirda.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\System32\rastls.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\system32\CRYPTUI.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\system32\WININET.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\system32\Normaliz.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\system32\iertutil.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\System32\MPRAPI.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\System32\RASAPI32.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\System32\rasman.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\System32\TAPI32.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\System32\raschap.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\schedsvc.dll
07 III 2008 20:23:50 - Scanning File C:\WINDOWS\System32\MSIDLE.DLL
07 III 2008 20:23:50 - Scanning File c:\windows\system32\audiosrv.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\wkssvc.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\qmgr.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\SHFOLDER.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\WINHTTP.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\netman.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\netshell.dll
07 III 2008 20:23:50 - Scanning File c:\windows\system32\credui.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\WZCSAPI.DLL
07 III 2008 20:23:51 - Scanning File c:\windows\system32\srvsvc.dll
07 III 2008 20:23:51 - Scanning File c:\windows\pchealth\helpctr\binaries\pchsvc.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\es.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\ersvc.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\dmserver.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\cryptsvc.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\certcli.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\seclogon.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\sens.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\srsvc.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\POWRPROF.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\trkwks.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\wbem\wmisvc.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\VSSAPI.DLL
07 III 2008 20:23:51 - Scanning File c:\windows\system32\wuauserv.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\wuaueng.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\System32\Cabinet.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\System32\mspatcha.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\wscsvc.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\ipnathlp.dll
07 III 2008 20:23:51 - Scanning File c:\windows\system32\browser.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\wbem\wbemcomn.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\wbem\wbemcore.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\wbem\esscli.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\wbem\FastProx.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\wbem\wmiutils.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\wbem\repdrvfs.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\comsvcs.dll
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\colbact.DLL
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\MTXCLU.DLL
07 III 2008 20:23:51 - Scanning File C:\WINDOWS\system32\WSOCK32.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\CLUSAPI.DLL
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\RESUTILS.DLL
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\system32\wbem\wmiprvsd.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\system32\wbem\wbemess.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\system32\wbem\ncprov.dll
07 III 2008 20:23:52 - Scanning File c:\windows\system32\tapisrv.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\system32\upnp.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\system32\SSDPAPI.dll
07 III 2008 20:23:52 - Scanning File c:\windows\system32\rasmans.dll
07 III 2008 20:23:52 - Scanning File c:\windows\system32\netcfgx.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\rastapi.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\unimdm.tsp
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\uniplat.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\kmddsp.tsp
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\ndptsp.tsp
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\ipconf.tsp
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\h323.tsp
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\hidphone.tsp
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\HID.DLL
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\rasppp.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\ntlsapi.dll
07 III 2008 20:23:52 - Scanning File C:\WINDOWS\System32\RASDLG.dll
07 III 2008 20:23:52 - Scanning File c:\windows\system32\dnsrslvr.dll
07 III 2008 20:23:52 - Scanning File c:\windows\system32\lmhsvc.dll
07 III 2008 20:23:52 - Scanning File c:\windows\system32\webclnt.dll
07 III 2008 20:23:52 - Scanning File c:\windows\system32\regsvc.dll
07 III 2008 20:23:52 - Scanning File c:\windows\system32\ssdpsrv.dll
07 III 2008 20:23:52 - Scanning File C:\PROGRA~1\Lavasoft\AD-AWA~2\AAWSER~1.EXE
07 III 2008 20:23:53 - Scanning File C:\PROGRA~1\Lavasoft\AD-AWA~2\CEAPI.dll
07 III 2008 20:23:53 - Scanning File C:\PROGRA~1\Lavasoft\AD-AWA~2\PKARCH~1.DLL
07 III 2008 20:23:53 - Scanning File C:\PROGRA~1\Lavasoft\AD-AWA~2\Update.dll (????)
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\Explorer.EXE
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\system32\BROWSEUI.dll
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\system32\SHDOCVW.dll
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\system32\themeui.dll
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\system32\MSIMG32.dll
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\system32\msutb.dll
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\system32\MSCTF.dll
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\system32\LINKINFO.dll
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\system32\ntshrui.dll
07 III 2008 20:23:53 - Scanning File C:\WINDOWS\system32\ieframe.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\MLANG.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\webcheck.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\urlmon.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\stobject.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\BatMeter.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\System32\drprov.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\System32\ntlanman.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\System32\NETUI0.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\System32\NETUI1.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\System32\NETRAP.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\System32\davclnt.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\browselc.dll
07 III 2008 20:23:54 - Scanning File C:\PROGRA~1\SPYBOT~1\SDHelper.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\faultrep.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\olepro32.dll (????)
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\jsproxy.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\DUSER.dll
07 III 2008 20:23:54 - Scanning File C:\WINDOWS\system32\shdoclc.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswUpdSv.exe
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswCmnS.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswCmnOS.dll
07 III 2008 20:23:55 - Scanning File C:\WINDOWS\system32\MSVCP71.dll
07 III 2008 20:23:55 - Scanning File C:\WINDOWS\system32\MSVCR71.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswCmnB.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashServ.exe
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswAux.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswEngin.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswScan.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashBase.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashTask.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswInteg.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswIdle.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\Aavm4h.dll
07 III 2008 20:23:55 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\Czech\Base.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\UNACEV2.DLL (????)
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AhResMai.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ahResMes.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AhResNS.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AhResOut.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ahResP2P.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AhResStd.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AhResWS.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashSSqlt.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\perfos.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\spoolsv.exe
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\SPOOLSS.DLL
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\localspl.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\cnbjmon.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\hpz3l5ha.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\pjlmon.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\tcpmon.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\usbmon.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\System32\spool\PRTPROCS\W32X86\hpzpp5ha.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\win32spl.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\inetpp.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswCmnOS.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashBase.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswCmnB.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswCmnS.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashTask.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswAux.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\Aavm4h.dll
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\Czech\Lang.dll
07 III 2008 20:23:56 - Scanning File C:\WINDOWS\system32\MFC71.DLL
07 III 2008 20:23:56 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AavmRpch.dll
07 III 2008 20:23:56 - Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruimai.dll
07 III 2008 20:23:57 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashUInt.dll
07 III 2008 20:23:57 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\XT1922.dll
07 III 2008 20:23:57 - Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruimes.dll
07 III 2008 20:23:57 - Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruins.dll
07 III 2008 20:23:57 - Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruiout.dll
07 III 2008 20:23:57 - Scanning File C:\WINDOWS\system32\MAPI32.dll
07 III 2008 20:23:57 - Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruip2p.dll
07 III 2008 20:23:57 - Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruistd.dll
07 III 2008 20:23:57 - Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruiws.dll
07 III 2008 20:23:57 - Scanning File C:\PROGRA~1\SPYWAR~1\SPYWAR~2.EXE (????)
07 III 2008 20:23:57 - Scanning File C:\PROGRA~1\HP\HPSOFT~1\HPWUSC~1.EXE
07 III 2008 20:23:57 - Scanning File C:\WINDOWS\system32\ctfmon.exe
07 III 2008 20:23:57 - Scanning File C:\PROGRA~1\SPYBOT~1\TeaTimer.exe (????)
07 III 2008 20:23:57 - Scanning File C:\WINDOWS\system32\hhctrl.ocx
07 III 2008 20:23:58 - Scanning File C:\WINDOWS\system32\mui\0005\hhctrlui.dll
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\SPYBOT~1\advcheck.dll
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\MESSEN~1\msmsgs.exe
07 III 2008 20:23:58 - Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll (????)
07 III 2008 20:23:58 - Scanning File C:\WINDOWS\system32\XPOB2RES.DLL
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe
07 III 2008 20:23:58 - Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.91_x-ww_0de56c07\MSVCP80.dll
07 III 2008 20:23:58 - Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.91_x-ww_0de56c07\MSVCR80.dll
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpquio08.dll
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.rsc
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqtao08.dll
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpotra08.dll
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpotra08.rsc
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpotradd.dll
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqrif08.dll
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqmif08.dll
07 III 2008 20:23:58 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqcob08.dll
07 III 2008 20:23:59 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpodio08.dll
07 III 2008 20:23:59 - Scanning File C:\WINDOWS\system32\hpzipr12.dll
07 III 2008 20:23:59 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqddusr.dll
07 III 2008 20:23:59 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqddcmn.dll
07 III 2008 20:23:59 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqusg.dll
07 III 2008 20:23:59 - Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.91_x-ww_6e85597b\ATL80.DLL
07 III 2008 20:23:59 - Scanning File C:\WINDOWS\system32\hpzidr12.dll
07 III 2008 20:23:59 - Scanning File c:\PROGRA~1\hp\DIGITA~1\bin\hpqddsvc.dll
07 III 2008 20:23:59 - Scanning File c:\PROGRA~1\hp\DIGITA~1\bin\hpqcxs08.dll
07 III 2008 20:23:59 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpocxi08.dll
07 III 2008 20:23:59 - Scanning File C:\PROGRA~1\COMMON~1\MICROS~1\VS7Debug\mdm.exe
07 III 2008 20:23:59 - Scanning File c:\windows\system32\hpzinw12.dll
07 III 2008 20:23:59 - Scanning File C:\WINDOWS\system32\nvsvc32.exe
07 III 2008 20:23:59 - Scanning File C:\WINDOWS\system32\nvapi.dll (????)
07 III 2008 20:23:59 - Scanning File c:\windows\system32\hpzipm12.dll
07 III 2008 20:23:59 - Scanning File C:\PROGRA~1\CYBERL~1\SHARED~1\RICHVI~1.EXE (????)
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\kpf4ss.exe
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\POCOFO~1.DLL (????)
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\PocoXML.dll (????)
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\PocoExt.dll (????)
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\kfe.dll
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\LIBEAY32.dll (????)
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\SSLEAY32.dll (????)
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\curllib.dll
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\kwsapi.dll
07 III 2008 20:24:00 - Scanning File C:\PROGRA~1\SPYWAR~1\sp_rsser.exe (????)
07 III 2008 20:24:00 - Scanning File c:\windows\system32\wiaservc.dll
07 III 2008 20:24:00 - Scanning File c:\windows\system32\CFGMGR32.dll
07 III 2008 20:24:00 - Scanning File c:\windows\system32\mscms.dll
07 III 2008 20:24:00 - Scanning File C:\WINDOWS\system32\wiavusd.dll
07 III 2008 20:24:01 - Scanning File C:\WINDOWS\system32\actxprxy.dll
07 III 2008 20:24:01 - Scanning File C:\WINDOWS\system32\sti.dll
07 III 2008 20:24:01 - Scanning File C:\WINDOWS\system32\wdfmgr.exe
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\kpf4gui.exe
07 III 2008 20:24:01 - Scanning File C:\WINDOWS\system32\wscntfy.exe
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashMaiSv.exe
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashUInt.dll
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\XT1922.dll
07 III 2008 20:24:01 - Scanning File C:\WINDOWS\system32\RICHED20.DLL
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\Czech\langmai.dll
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashWebSv.exe
07 III 2008 20:24:01 - Scanning File C:\WINDOWS\system32\security.dll
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashWsFtr.dll
07 III 2008 20:24:01 - Scanning File C:\WINDOWS\system32\OLEACC.dll
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AhResWs.dll
07 III 2008 20:24:01 - Scanning File C:\WINDOWS\System32\alg.exe
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqSTE08.exe
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqwso08.dll
07 III 2008 20:24:01 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqsti08.dll
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqstp08.dll
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqstp08.rsc
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\HP\DIGITA~1\bin\hpqsem08.rsc
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\INTERN~1\iexplore.exe
07 III 2008 20:24:02 - Scanning File C:\WINDOWS\system32\IEUI.dll
07 III 2008 20:24:02 - Scanning File C:\WINDOWS\system32\xmllite.dll
07 III 2008 20:24:02 - Scanning File C:\WINDOWS\system32\msimtf.dll
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\MICROS~2\Office10\msohev.dll
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\INTERN~1\ieproxy.dll
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPSWP_~1.DLL (????)
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPSWP_~4.DLL (????)
07 III 2008 20:24:02 - Scanning File C:\WINDOWS\system32\msxml3.dll
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPC2AD~1.DLL (????)
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPB542~1.DLL (????)
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HP007C~1.DLL (????)
07 III 2008 20:24:02 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HP0401~1.DLL (????)
07 III 2008 20:24:03 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HP6600~1.DLL (????)
07 III 2008 20:24:03 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HP8C8B~1.DLL (????)
07 III 2008 20:24:03 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HP3C7C~1.DLL (????)
07 III 2008 20:24:03 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPSWP_~3.DLL (????)
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\mshtml.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\msls31.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\ieapfltr.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\sensapi.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\jscript.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\ImgUtil.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\pngfilt.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\mshtmled.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\vbscript.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx (????)
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\ddrawex.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\DDRAW.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\DCIMAN32.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\msfeeds.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\iepeers.dll
07 III 2008 20:24:03 - Scanning File C:\WINDOWS\system32\wmpdxm.dll
07 III 2008 20:24:04 - Scanning File C:\WINDOWS\system32\wmp.dll
07 III 2008 20:24:04 - Scanning File C:\WINDOWS\system32\MSVFW32.dll
07 III 2008 20:24:04 - Scanning File C:\WINDOWS\system32\wmploc.dll
07 III 2008 20:24:04 - Scanning File C:\WINDOWS\system32\USP10.dll
07 III 2008 20:24:04 - Scanning File C:\PROGRA~1\COMMON~1\Ahead\Lib\NERODI~1.DLL
07 III 2008 20:24:04 - Scanning File C:\PROGRA~1\COMMON~1\Ahead\Lib\MFC71.DLL
07 III 2008 20:24:04 - Scanning File C:\PROGRA~1\COMMON~1\Ahead\Lib\MSVCR71.dll
07 III 2008 20:24:04 - Scanning File C:\PROGRA~1\COMMON~1\Ahead\Lib\MSVCP71.dll
07 III 2008 20:24:04 - Scanning File C:\PROGRA~1\Adobe\ACROBA~1.0\ActiveX\PDFShell.dll (????)
07 III 2008 20:24:04 - Scanning File C:\WINDOWS\system32\Dxtrans.dll
07 III 2008 20:24:04 - Scanning File C:\WINDOWS\system32\Dxtmsft.dll
07 III 2008 20:24:04 - Scanning File C:\WINDOWS\system32\corpol.dll
07 III 2008 20:24:04 - Scanning File C:\WINDOWS\system32\cryptnet.dll
07 III 2008 20:24:04 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPSWP_~1.EXE (????)
07 III 2008 20:24:05 - Scanning File C:\PROGRA~1\Crawler\Toolbar\CToolbar.exe
07 III 2008 20:24:06 - Scanning File c:\PROGRA~1\Crawler\Toolbar\ctbcomm.dll
07 III 2008 20:24:06 - Scanning File c:\PROGRA~1\Crawler\Toolbar\WEBSEC~1.DLL
07 III 2008 20:24:06 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\mexe.com (????)
07 III 2008 20:24:06 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\msvl64.dll
07 III 2008 20:24:06 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\kave.dll
07 III 2008 20:24:06 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\FSSync.dll
07 III 2008 20:24:06 - Scanning File C:\WINDOWS\system32\RICHED32.DLL
07 III 2008 20:24:06 - Scanning File C:\WINDOWS\system32\VDMDBG.DLL
07 III 2008 20:24:06 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\ScanningProcess.exe
07 III 2008 20:24:06 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\prloader.dll
07 III 2008 20:24:06 - Scanning File C:\DOCUME~1\X9EB6~1.999\LOCALS~1\Temp\prkernel.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\avpmgr.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\wdiskio.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\nfio.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\fsdrvplg.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\avlib.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\dtreg.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\prutil.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\avp1.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\l_llio.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\ichk2.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\sfdb.ppl
07 III 2008 20:24:06 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\ichksa.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\mkavio.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\hashmd5.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\hashcont.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\hccmp.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\iwgen.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\uniarc.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\minizip.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\cab.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\arj.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\rar.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\lha.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\mdb.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\msoe.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\tempfile.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\avpgs.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\thpimpl.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\dmap.ppl
07 III 2008 20:24:07 - Scanning File c:\docume~1\x9eb6~1.999\locals~1\temp\ntfsstrm.ppl
07 III 2008 20:24:07 - ***** Testování souborů registrů *****
07 III 2008 20:24:07 - Testování HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
07 III 2008 20:24:07 - ** (PostBootReminder) {7849596a-48ea-486e-8937-a2a3009f31a9} = %SystemRoot%\system32\SHELL32.dll
07 III 2008 20:24:07 - *** Soubor C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***. Filesize 8259 kb > 3072 kb...
07 III 2008 20:24:07 - Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
07 III 2008 20:24:07 - ** (CDBurn) {fbeb8a05-beee-4442-804e-409d6c4515e9} = %SystemRoot%\system32\SHELL32.dll
07 III 2008 20:24:07 - *** Soubor C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***. Filesize 8259 kb > 3072 kb...
07 III 2008 20:24:07 - Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
07 III 2008 20:24:07 - ** (WebCheck) {E6FB5E20-DE35-11CF-9C87-00AA005127ED} = C:\WINDOWS\system32\webcheck.dll
07 III 2008 20:24:07 - Scanning File C:\WINDOWS\system32\webcheck.dll
07 III 2008 20:24:07 - ** (SysTray) {35CEC8A3-2BE6-11D2-8773-92E220524153} = C:\WINDOWS\system32\stobject.dll
07 III 2008 20:24:07 - Scanning File C:\WINDOWS\system32\stobject.dll
07 III 2008 20:24:07 - Testování HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
07 III 2008 20:24:07 - Testování HKLM\SOFTWARE\Microsoft\Internet Explorer\Plugins\Extension
07 III 2008 20:24:07 - Testování HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar
07 III 2008 20:24:07 - ** {BFC32E1D-EE75-4A48-BC60-104E11EE2431} = C:\TRANSLAT\WEBIE.DLL
07 III 2008 20:24:07 - Scanning File C:\TRANSLAT\WEBIE.DLL (????)
07 III 2008 20:24:07 - ** {4B3803EA-5230-4DC3-A7FC-33638F3D3542} = C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
07 III 2008 20:24:07 - Scanning File C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
07 III 2008 20:24:07 - Testování HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units
07 III 2008 20:24:07 - ** {31435657-9980-0010-8000-00AA00389B71} = NULL
07 III 2008 20:24:07 - ** {41564D57-9980-0010-8000-00AA00389B71} = NULL
07 III 2008 20:24:07 - ** {6414512B-B978-451D-A0D8-FCFDF33E833C} = C:\WINDOWS\system32\wuweb.dll
07 III 2008 20:24:07 - Scanning File C:\WINDOWS\system32\wuweb.dll
07 III 2008 20:24:07 - ** {D27CDB6E-AE6D-11CF-96B8-444553540000} = C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx
07 III 2008 20:24:07 - Scanning File C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx (????)
07 III 2008 20:24:07 - Testování HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects
07 III 2008 20:24:07 - ** {0347C33E-8762-4905-BF09-768834316C61} = C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll
07 III 2008 20:24:07 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPSWP_~1.DLL (????)
07 III 2008 20:24:07 - ** {053F9267-DC04-4294-A72C-58F732D338C0} = C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
07 III 2008 20:24:07 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPSWP_~4.DLL (????)
07 III 2008 20:24:07 - ** {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} = C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
07 III 2008 20:24:07 - Scanning File C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
07 III 2008 20:24:07 - ** {53707962-6F74-2D53-2644-206D7942484F} = C:\PROGRA~1\SPYBOT~1\SDHelper.dll
07 III 2008 20:24:07 - Scanning File C:\PROGRA~1\SPYBOT~1\SDHelper.dll
07 III 2008 20:24:07 - Testování HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars
07 III 2008 20:24:07 - ** {4D5C8C25-D075-11d0-B416-00C04FB90376} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:07 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:07 - Testování HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions
07 III 2008 20:24:07 - ** {58ECB495-38F0-49cb-A538-10282ABF65E7} = C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
07 III 2008 20:24:07 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPSWP_~2.DLL (????)
07 III 2008 20:24:07 - ** {700259D7-1666-479a-93B1-3250410481E8} = C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
07 III 2008 20:24:07 - Scanning File C:\PROGRA~1\HP\SMARTW~1\HPSWP_~2.DLL (????)
07 III 2008 20:24:07 - ** {7E6A20FB-153F-402c-A84B-1A64E1955D3D} = C:\TRANSLAT\WEBIE.DLL
07 III 2008 20:24:07 - Scanning File C:\TRANSLAT\WEBIE.DLL (????)
07 III 2008 20:24:07 - ** {B863453A-26C3-4e1f-A54D-A2CD196348E9} = C:\Program Files\ICQLite\ICQLite.exe
07 III 2008 20:24:07 - Scanning File C:\PROGRA~1\ICQLite\ICQLite.exe
07 III 2008 20:24:07 - ** {CC963627-B1DC-40E0-B52A-CF21EE748450} = C:\TRANSLAT\WEBIE.DLL
07 III 2008 20:24:07 - Scanning File C:\TRANSLAT\WEBIE.DLL (????)
07 III 2008 20:24:07 - ** {CC963627-B1DC-40E0-B52A-CF21EE748451} = C:\TRANSLAT\WEBIE.DLL
07 III 2008 20:24:07 - Scanning File C:\TRANSLAT\WEBIE.DLL (????)
07 III 2008 20:24:07 - ** {CC963627-B1DC-40E0-B52A-CF21EE748452} = C:\TRANSLAT\WEBIE.DLL
07 III 2008 20:24:07 - Scanning File C:\TRANSLAT\WEBIE.DLL (????)
07 III 2008 20:24:07 - ** {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} = C:\PROGRA~1\SPYBOT~1\SDHelper.dll
07 III 2008 20:24:07 - Scanning File C:\PROGRA~1\SPYBOT~1\SDHelper.dll
07 III 2008 20:24:07 - ** {e2e2dd38-d088-4134-82b7-f2ba38496583} = %windir%\Network Diagnostic\xpnetdiag.exe
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\NETWOR~1\XPNETD~1.EXE
07 III 2008 20:24:08 - ** {FB5F1910-F110-11d2-BB9E-00C04F795683} = C:\Program Files\Messenger\msmsgs.exe
07 III 2008 20:24:08 - Scanning File C:\PROGRA~1\MESSEN~1\msmsgs.exe
07 III 2008 20:24:08 - Testování HKCU\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars
07 III 2008 20:24:08 - ** {30D02401-6A81-11D0-8274-00C04FD5AE38} = C:\WINDOWS\system32\ieframe.dll
07 III 2008 20:24:08 - *** Soubor C:\WINDOWS\system32\ieframe.dll having Size Restriction ***. Filesize 5916 kb > 3072 kb...
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\ieframe.dll [**]
07 III 2008 20:24:08 - ** {C4EE31F3-4768-11D2-BE5C-00A0C9A83DA1} = %SystemRoot%\system32\SHELL32.dll
07 III 2008 20:24:08 - *** Soubor C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***. Filesize 8259 kb > 3072 kb...
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
07 III 2008 20:24:08 - ** {EFA24E61-B078-11D0-89E4-00C04FC9E26E} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:08 - ** {EFA24E62-B078-11D0-89E4-00C04FC9E26E} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:08 - Testování HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping
07 III 2008 20:24:08 - ** {7E6A20FB-153F-402c-A84B-1A64E1955D3D} = C:\TRANSLAT\WEBIE.DLL
07 III 2008 20:24:08 - Scanning File C:\TRANSLAT\WEBIE.DLL (????)
07 III 2008 20:24:08 - ** {CC963627-B1DC-40E0-B52A-CF21EE748450} = C:\TRANSLAT\WEBIE.DLL
07 III 2008 20:24:08 - Scanning File C:\TRANSLAT\WEBIE.DLL (????)
07 III 2008 20:24:08 - ** {CC963627-B1DC-40E0-B52A-CF21EE748451} = C:\TRANSLAT\WEBIE.DLL
07 III 2008 20:24:08 - Scanning File C:\TRANSLAT\WEBIE.DLL (????)
07 III 2008 20:24:08 - ** {CC963627-B1DC-40E0-B52A-CF21EE748452} = C:\TRANSLAT\WEBIE.DLL
07 III 2008 20:24:08 - Scanning File C:\TRANSLAT\WEBIE.DLL (????)
07 III 2008 20:24:08 - Testování HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler
07 III 2008 20:24:08 - ** {438755C2-A8BA-11D1-B96B-00A0C90312E1} = %SystemRoot%\system32\browseui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\browseui.dll
07 III 2008 20:24:08 - ** {8C7461EF-2B13-11d2-BE35-3078302C2030} = %SystemRoot%\system32\browseui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\browseui.dll
07 III 2008 20:24:08 - Testování HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
07 III 2008 20:24:08 - ** {00022613-0000-0000-C000-000000000046} = mmsys.cpl
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\mmsys.cpl
07 III 2008 20:24:08 - ** {176d6597-26d3-11d1-b350-080036a75b03} = icmui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\icmui.dll
07 III 2008 20:24:08 - ** {1F2E5C40-9550-11CE-99D2-00AA006E086C} = rshx32.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\rshx32.dll
07 III 2008 20:24:08 - ** {3EA48300-8CF6-101B-84FB-666CCB9BCD32} = docprop.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\docprop.dll
07 III 2008 20:24:08 - ** {40dd6e20-7c17-11ce-a804-00aa003ca9f6} = ntshrui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\ntshrui.dll
07 III 2008 20:24:08 - ** {41E300E0-78B6-11ce-849B-444553540000} = %SystemRoot%\system32\themeui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\themeui.dll
07 III 2008 20:24:08 - ** {42071712-76d4-11d1-8b24-00a0c9068ff3} = deskadp.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\deskadp.dll
07 III 2008 20:24:08 - ** {42071713-76d4-11d1-8b24-00a0c9068ff3} = deskmon.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\deskmon.dll
07 III 2008 20:24:08 - ** {42071714-76d4-11d1-8b24-00a0c9068ff3} = deskpan.dll
07 III 2008 20:24:08 - ** {4E40F770-369C-11d0-8922-00A024AB2DBB} = dssec.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\dssec.dll
07 III 2008 20:24:08 - ** {513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8} = SlayerXP.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\SlayerXP.dll
07 III 2008 20:24:08 - ** {56117100-C0CD-101B-81E2-00AA004AE837} = shscrap.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\shscrap.dll
07 III 2008 20:24:08 - ** {59099400-57FF-11CE-BD94-0020AF85B590} = diskcopy.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\diskcopy.dll
07 III 2008 20:24:08 - ** {59be4990-f85c-11ce-aff7-00aa003ca9f6} = ntlanui2.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\ntlanui2.dll
07 III 2008 20:24:08 - ** {5DB2625A-54DF-11D0-B6C4-0800091AA605} = %SystemRoot%\System32\icmui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\System32\icmui.dll
07 III 2008 20:24:08 - ** {675F097E-4C4D-11D0-B6C1-0800091AA605} = %SystemRoot%\system32\icmui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\icmui.dll
07 III 2008 20:24:08 - ** {77597368-7b15-11d0-a0c2-080036af3f03} = printui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\printui.dll
07 III 2008 20:24:08 - ** {7988B573-EC89-11cf-9C00-00AA00A14F56} = dskquoui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\dskquoui.dll
07 III 2008 20:24:08 - ** {85BBD920-42A0-1069-A2E4-08002B30309D} = syncui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\syncui.dll
07 III 2008 20:24:08 - ** {88895560-9AA2-1069-930E-00AA0030EBC8} = C:\WINDOWS\system32\hticons.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\hticons.dll
07 III 2008 20:24:08 - ** {BD84B380-8CA2-1069-AB1D-08000948F534} = fontext.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\fontext.dll
07 III 2008 20:24:08 - ** {DBCE2480-C732-101B-BE72-BA78E9AD5B27} = %SystemRoot%\system32\icmui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\icmui.dll
07 III 2008 20:24:08 - ** {F37C5810-4D3F-11d0-B4BF-00AA00BBB723} = rshx32.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\rshx32.dll
07 III 2008 20:24:08 - ** {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} = ntshrui.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\ntshrui.dll
07 III 2008 20:24:08 - ** {f92e8c40-3d33-11d2-b1aa-080036a75b03} = deskperf.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\deskperf.dll
07 III 2008 20:24:08 - ** {7444C717-39BF-11D1-8CD9-00C04FC29D45} = C:\WINDOWS\system32\cryptext.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\cryptext.dll
07 III 2008 20:24:08 - ** {7444C719-39BF-11D1-8CD9-00C04FC29D45} = C:\WINDOWS\system32\cryptext.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\cryptext.dll
07 III 2008 20:24:08 - ** {7007ACC7-3202-11D1-AAD2-00805FC1270E} = C:\WINDOWS\system32\NETSHELL.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\NETSHELL.dll
07 III 2008 20:24:08 - ** {992CFFA0-F557-101A-88EC-00DD010CCC48} = C:\WINDOWS\system32\NETSHELL.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\NETSHELL.dll
07 III 2008 20:24:08 - ** {E211B736-43FD-11D1-9EFB-0000F8757FCD} = wiashext.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\wiashext.dll
07 III 2008 20:24:08 - ** {FB0C9C8A-6C50-11D1-9F1D-0000F8757FCD} = wiashext.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\wiashext.dll
07 III 2008 20:24:08 - ** {905667aa-acd6-11d2-8080-00805f6596d2} = wiashext.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\wiashext.dll
07 III 2008 20:24:08 - ** {3F953603-1008-4f6e-A73A-04AAC7A992F1} = wiashext.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\wiashext.dll
07 III 2008 20:24:08 - ** {83bbcbf3-b28a-4919-a5aa-73027445d672} = wiashext.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\wiashext.dll
07 III 2008 20:24:08 - ** {F0152790-D56E-4445-850E-4F3117DB740C} = C:\WINDOWS\system32\remotepg.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\remotepg.dll
07 III 2008 20:24:08 - ** {60254CA5-953B-11CF-8C96-00AA00B8708C} = C:\WINDOWS\system32\wshext.dll
07 III 2008 20:24:08 - Scanning File C:\WINDOWS\system32\wshext.dll
07 III 2008 20:24:08 - ** {2206CDB2-19C1-11D1-89E0-00C04FD7A829} = C:\Program Files\Common Files\System\Ole DB\oledb32.dll
07 III 2008 20:24:09 - Scanning File C:\PROGRA~1\COMMON~1\System\OLEDB~1\oledb32.dll
07 III 2008 20:24:09 - ** {DD2110F0-9EEF-11cf-8D8E-00AA0060F5BF} = C:\WINDOWS\system32\mstask.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\mstask.dll
07 III 2008 20:24:09 - ** {797F1E90-9EDD-11cf-8D8E-00AA0060F5BF} = C:\WINDOWS\system32\mstask.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\mstask.dll
07 III 2008 20:24:09 - ** {D6277990-4C6A-11CF-8D87-00AA0060F5BF} = C:\WINDOWS\system32\mstask.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\mstask.dll
07 III 2008 20:24:09 - ** {2559a1f7-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:09 - ** {5F327514-6C5E-4d60-8F16-D07FA08A78ED} = C:\WINDOWS\system32\wuaucpl.cpl
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\wuaucpl.cpl
07 III 2008 20:24:09 - ** {2559a1f0-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:09 - ** {2559a1f1-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:09 - ** {2559a1f2-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:09 - ** {2559a1f3-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:09 - ** {2559a1f4-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:09 - ** {2559a1f5-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:09 - ** {D20EA4E1-3957-11d2-A40B-0C5020524152} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:09 - ** {D20EA4E1-3957-11d2-A40B-0C5020524153} = %SystemRoot%\system32\shdocvw.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shdocvw.dll
07 III 2008 20:24:09 - ** {596AB062-B4D2-4215-9F74-E9109B0A8153} = %SystemRoot%\system32\twext.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\twext.dll
07 III 2008 20:24:09 - ** {9DB7A13C-F208-4981-8353-73CC61AE2783} = %SystemRoot%\system32\twext.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\twext.dll
07 III 2008 20:24:09 - ** {875CB1A1-0F29-45de-A1AE-CFB4950D0B78} = %SystemRoot%\system32\shmedia.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shmedia.dll
07 III 2008 20:24:09 - ** {40C3D757-D6E4-4b49-BB41-0E5BBEA28817} = %SystemRoot%\system32\shmedia.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shmedia.dll
07 III 2008 20:24:09 - ** {E4B29F9D-D390-480b-92FD-7DDB47101D71} = %SystemRoot%\system32\shmedia.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shmedia.dll
07 III 2008 20:24:09 - ** {87D62D94-71B3-4b9a-9489-5FE6850DC73E} = %SystemRoot%\system32\shmedia.dll
07 III 2008 20:24:09 - Scanning File C:\WINDOWS\system32\shmedia.dl