avg nasel trojana Agent2.AYKI + zvlastni chovani systemu

[morgothcz]

Zdravim, AVG nasel trojskeho kone Agent2.AYKI v souborech System Volume Information. Leceni nepomohlo a dokonce prestal jit IE, okna se nezobrazuji v liste, v pripade minimalizace se zmensi do "hlavicky" okna, soubory se nedaji kopirovat a nastroj Obnovy systemu stale dokola hlasi, ze nemuze ochrani pocitac a vyzaduje restart, ktery nepomuze.
AVG jsem odinstaloval a pokusil se nainstalovat NOD32 z flash disku, nicmene Windows hlasi, ze sluzba Windows Instaler neni dostupna. Prosim o radu

log.txt z RSIT
Logfile of random's system information tool 1.08 (written by random/random)
Run by Administrator at 2010-07-12 19:57:55
WIN_XP Service Pack 3
System drive C: has 217 GB (91%) free of 238 GB
Total RAM: 3327 MB (90% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:57:59, on 12.7.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Software\SpeedFan\speedfan.exe
F:\RSIT.exe
C:\Program Files\trend micro\Administrator.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Software\AVG\avgssie.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Software\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-21-1614895754-343818398-725345543-500\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" (User '?')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - S-1-5-21-1614895754-343818398-725345543-500 Startup: SpeedFan.lnk = C:\Software\SpeedFan\speedfan.exe (User '?')
O4 - Startup: SpeedFan.lnk = C:\Software\SpeedFan\speedfan.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Software\ICQ\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Software\ICQ\ICQ7.2\ICQ.exe
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 6879044078
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 7775 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Software\AVG\avgssie.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-06-23 278192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll [2010-06-22 814648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-07-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-07-09 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2010-03-28 1017592]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-06-23 278192]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-04-04 16120832]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-07-17 13533184]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-07-17 86016]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]
"OrderReminder"=C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2005-03-18 98304]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2010-03-18 421888]
"iTunesHelper"=C:\Software\iTunes\iTunesHelper.exe [2010-06-15 141624]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-06-22 39408]

C:\Documents and Settings\Administrator\Nabídka Start\Programy\Po spuštění
SpeedFan.lnk - C:\Software\SpeedFan\speedfan.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour Service"
"C:\Software\iTunes\iTunes.exe"="C:\Software\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Software\uTorrent\utorrent.exe"="C:\Software\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Software\ICQ\ICQ7.2\ICQ.exe"="C:\Software\ICQ\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2"
"C:\Software\ICQ\ICQ7.2\aolload.exe"="C:\Software\ICQ\ICQ7.2\aolload.exe:*:Enabled:aolload.exe"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Software\ICQ\ICQ7.2\ICQ.exe"="C:\Software\ICQ\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2"
"C:\Software\ICQ\ICQ7.2\aolload.exe"="C:\Software\ICQ\ICQ7.2\aolload.exe:*:Enabled:aolload.exe"

======List of files/folders created in the last 1 months======

2010-07-12 19:57:22 ----SHD---- C:\RECYCLER
2010-07-12 19:28:36 ----D---- C:\rsit
2010-07-12 19:28:36 ----D---- C:\Program Files\trend micro
2010-07-12 19:24:39 ----A---- C:\ComboFix.txt
2010-07-12 19:15:02 ----A---- C:\Boot.bak
2010-07-12 19:14:59 ----RASHD---- C:\cmdcons
2010-07-12 19:12:42 ----A---- C:\WINDOWS\zip.exe
2010-07-12 19:12:42 ----A---- C:\WINDOWS\SWXCACLS.exe
2010-07-12 19:12:42 ----A---- C:\WINDOWS\SWSC.exe
2010-07-12 19:12:42 ----A---- C:\WINDOWS\SWREG.exe
2010-07-12 19:12:42 ----A---- C:\WINDOWS\sed.exe
2010-07-12 19:12:42 ----A---- C:\WINDOWS\PEV.exe
2010-07-12 19:12:42 ----A---- C:\WINDOWS\NIRCMD.exe
2010-07-12 19:12:42 ----A---- C:\WINDOWS\MBR.exe
2010-07-12 19:12:42 ----A---- C:\WINDOWS\grep.exe
2010-07-12 19:12:38 ----D---- C:\ComboFix
2010-07-12 19:11:34 ----D---- C:\WINDOWS\ERDNT
2010-07-12 19:08:59 ----D---- C:\Qoobox
2010-07-12 19:04:26 ----D---- C:\Nová složka
2010-07-11 14:03:26 ----D---- C:\Documents and Settings\Administrator\Data aplikací\TrojanHunter
2010-07-11 13:07:09 ----R---- C:\WINDOWS\system32\streamhlp.dll
2010-07-11 13:07:09 ----D---- C:\Program Files\TrojanHunter 5.3
2010-07-09 20:56:08 ----A---- C:\WINDOWS\system32\rpcss.dll~~167375
2010-07-09 12:47:32 ----D---- C:\WINDOWS\Sun
2010-07-09 12:47:24 ----D---- C:\Program Files\Common Files\Java
2010-07-09 12:47:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2010-07-09 12:47:09 ----A---- C:\WINDOWS\system32\javaws.exe
2010-07-09 12:47:09 ----A---- C:\WINDOWS\system32\javaw.exe
2010-07-09 12:47:09 ----A---- C:\WINDOWS\system32\java.exe
2010-07-09 12:47:09 ----A---- C:\WINDOWS\system32\deployJava1.dll
2010-07-09 12:46:56 ----D---- C:\Program Files\Java
2010-07-09 12:46:39 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Sun
2010-06-22 18:48:55 ----A---- C:\WINDOWS\system32\drivers\NetMotCM.sys
2010-06-22 11:29:46 ----D---- C:\Program Files\ICQ6Toolbar
2010-06-22 11:29:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\ICQ
2010-06-22 10:32:17 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Nero
2010-06-22 10:22:25 ----D---- C:\Program Files\Windows Sidebar
2010-06-22 10:15:10 ----D---- C:\Program Files\Common Files\Nero
2010-06-22 10:15:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\Nero
2010-06-22 10:03:01 ----D---- C:\Documents and Settings\Administrator\Data aplikací\skypePM
2010-06-22 10:00:08 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Skype
2010-06-22 09:59:47 ----D---- C:\Program Files\Common Files\Skype
2010-06-22 09:59:46 ----RD---- C:\Program Files\Skype
2010-06-22 09:59:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-06-22 09:46:39 ----A---- C:\WINDOWS\system32\psisdecd.dll
2010-06-22 09:46:39 ----A---- C:\WINDOWS\system32\gdiplus.dll
2010-06-22 09:41:35 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Google
2010-06-22 09:41:14 ----D---- C:\Documents and Settings\All Users\Data aplikací\WinZip
2010-06-22 09:39:24 ----D---- C:\Program Files\Google
2010-06-22 09:39:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\Google
2010-06-22 03:00:24 ----D---- C:\Program Files\MSXML 4.0
2010-06-20 17:36:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2010-06-20 17:36:10 ----D---- C:\Program Files\DAEMON Tools Toolbar
2010-06-20 17:21:38 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2010-06-20 17:21:38 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2010-06-20 17:16:39 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2010-06-20 17:15:02 ----A---- C:\WINDOWS\system32\drivers\sptd.sys
2010-06-20 17:14:55 ----D---- C:\Documents and Settings\Administrator\Data aplikací\DAEMON Tools Lite
2010-06-20 17:14:48 ----D---- C:\WINDOWS\system32\Futuremark
2010-06-20 17:14:48 ----A---- C:\WINDOWS\system32\drivers\PciBus.sys
2010-06-20 17:14:48 ----A---- C:\WINDOWS\system32\drivers\Entech64.sys
2010-06-20 17:14:48 ----A---- C:\WINDOWS\system32\drivers\Entech.sys
2010-06-20 17:04:06 ----D---- C:\Documents and Settings\Administrator\Data aplikací\OpenOffice.org
2010-06-20 17:00:51 ----D---- C:\Program Files\OpenOffice.org 3
2010-06-20 16:59:08 ----D---- C:\Documents and Settings\Administrator\Data aplikací\dvdcss
2010-06-20 16:58:10 ----D---- C:\Documents and Settings\Administrator\Data aplikací\vlc
2010-06-20 16:52:55 ----A---- C:\WINDOWS\wincmd.ini
2010-06-20 16:52:55 ----A---- C:\WINDOWS\UC.PIF
2010-06-20 16:52:55 ----A---- C:\WINDOWS\RAR.PIF
2010-06-20 16:52:55 ----A---- C:\WINDOWS\PKZIP.PIF
2010-06-20 16:52:55 ----A---- C:\WINDOWS\PKUNZIP.PIF
2010-06-20 16:52:55 ----A---- C:\WINDOWS\NOCLOSE.PIF
2010-06-20 16:52:55 ----A---- C:\WINDOWS\LHA.PIF
2010-06-20 16:52:55 ----A---- C:\WINDOWS\ARJ.PIF
2010-06-20 16:50:48 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2010-06-20 16:49:14 ----HDC---- C:\WINDOWS\$NtUninstallWdf01005$
2010-06-20 16:42:22 ----D---- C:\Program Files\NVIDIA
2010-06-20 16:35:09 ----D---- C:\Documents and Settings\Administrator\Data aplikací\BSplayer Pro
2010-06-20 16:35:09 ----D---- C:\Documents and Settings\Administrator\Data aplikací\BSplayer
2010-06-20 16:09:15 ----D---- C:\Documents and Settings\Administrator\Data aplikací\ICQ
2010-06-20 15:20:27 ----D---- C:\XStandard
2010-06-20 00:36:27 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-06-20 00:36:23 ----HDC---- C:\WINDOWS\$NtUninstallKB979402_WM9$
2010-06-20 00:36:20 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2010-06-20 00:36:14 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2010-06-20 00:36:08 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2010-06-20 00:36:02 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-06-19 11:00:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\avg9
2010-06-19 10:58:39 ----D---- C:\Documents and Settings\Administrator\Data aplikací\WinRAR
2010-06-18 20:24:58 ----D---- C:\Documents and Settings\Administrator\Data aplikací\uTorrent
2010-06-18 20:13:25 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Apple Computer
2010-06-18 20:13:18 ----A---- C:\WINDOWS\system32\GEARAspi.dll
2010-06-18 20:13:18 ----A---- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
2010-06-18 20:12:50 ----D---- C:\Program Files\iPod
2010-06-18 20:12:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2010-06-18 20:12:17 ----D---- C:\Program Files\QuickTime
2010-06-18 20:12:10 ----D---- C:\Program Files\Apple Software Update
2010-06-18 20:12:07 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-06-18 20:11:49 ----D---- C:\Program Files\Bonjour
2010-06-18 20:11:43 ----D---- C:\Program Files\Common Files\Apple
2010-06-18 20:11:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\Apple
2010-06-18 20:08:06 ----D---- C:\Software
2010-06-18 20:05:25 ----D---- C:\Documents and Settings\All Users\Data aplikací\Apple Computer
2010-06-18 20:03:18 ----D---- C:\Hry
2010-06-18 19:53:37 ----D---- C:\WINDOWS\Prefetch
2010-06-18 19:53:25 ----D---- C:\WINDOWS\Minidump
2010-06-18 19:50:32 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-06-18 19:50:28 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2010-06-18 19:50:23 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2010-06-18 19:50:19 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2010-06-18 19:50:16 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-06-18 19:50:12 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-06-18 19:50:08 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-06-18 19:50:04 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-06-18 19:50:01 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2010-06-18 19:49:58 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-06-18 19:49:54 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-06-18 19:49:51 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-06-18 19:49:47 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-06-18 19:49:44 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-06-18 19:49:40 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2010-06-18 19:49:36 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-06-18 19:49:33 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-06-18 19:49:30 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-06-18 19:49:27 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-06-18 19:49:23 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-06-18 19:49:20 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-06-18 19:49:17 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-06-18 19:49:13 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-06-18 19:49:09 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-06-18 19:49:06 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-06-18 19:49:03 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-06-18 19:49:00 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-06-18 19:48:56 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-06-18 19:48:53 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-06-18 19:48:50 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-06-18 19:48:46 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-06-18 19:48:42 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-06-18 19:48:38 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-06-18 19:48:34 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-06-18 19:48:31 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-06-18 19:48:28 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-06-18 19:48:24 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2010-06-18 19:48:21 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-06-18 19:48:18 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2010-06-18 19:48:14 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-06-18 19:48:11 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2010-06-18 19:48:08 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2010-06-18 19:48:02 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2010-06-18 19:47:59 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-06-18 19:47:55 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_1$
2010-06-18 19:47:52 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2010-06-18 19:47:48 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2010-06-18 19:47:45 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2010-06-18 19:47:42 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-06-18 19:47:38 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2010-06-18 19:47:35 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2010-06-18 19:47:31 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2010-06-18 19:47:28 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2010-06-18 19:47:24 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2010-06-18 19:47:21 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-06-18 19:45:27 ----D---- C:\WINDOWS\system32\cs
2010-06-18 19:45:27 ----D---- C:\WINDOWS\system32\bits
2010-06-18 19:45:27 ----D---- C:\WINDOWS\l2schemas
2010-06-18 19:43:52 ----D---- C:\WINDOWS\network diagnostic
2010-06-18 19:43:08 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2010-06-18 19:42:44 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-06-18 19:09:24 ----HDC---- C:\WINDOWS\$NtUninstallKB980218_0$
2010-06-18 19:09:21 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$
2010-06-18 19:09:18 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$
2010-06-18 19:09:14 ----HDC---- C:\WINDOWS\$NtUninstallKB959426_0$
2010-06-18 19:09:10 ----HDC---- C:\WINDOWS\$NtUninstallKB946648_0$
2010-06-18 19:09:06 ----HDC---- C:\WINDOWS\$NtUninstallKB956803_0$
2010-06-18 19:09:03 ----HDC---- C:\WINDOWS\$NtUninstallKB960859_0$
2010-06-18 19:08:59 ----HDC---- C:\WINDOWS\$NtUninstallKB971468_0$
2010-06-18 19:08:52 ----HDC---- C:\WINDOWS\$NtUninstallKB979683_0$
2010-06-18 19:08:48 ----HDC---- C:\WINDOWS\$NtUninstallKB935448$
2010-06-18 19:08:45 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-06-18 19:08:42 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-06-18 19:08:39 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2010-06-18 19:08:36 ----HDC---- C:\WINDOWS\$NtUninstallKB980232_0$
2010-06-18 19:08:32 ----HDC---- C:\WINDOWS\$NtUninstallKB981350$
2010-06-18 19:08:28 ----HDC---- C:\WINDOWS\$NtUninstallKB955759_0$
2010-06-18 19:08:25 ----HDC---- C:\WINDOWS\$NtUninstallKB974318_0$
2010-06-18 19:08:20 ----HDC---- C:\WINDOWS\$NtUninstallKB969059_0$
2010-06-18 19:08:02 ----D---- C:\WINDOWS\ie8updates
2010-06-18 19:07:55 ----D---- C:\WINDOWS\WBEM
2010-06-18 19:07:45 ----HDC---- C:\WINDOWS\ie8
2010-06-18 19:07:45 ----D---- C:\WINDOWS\system32\cs-CZ
2010-06-18 19:03:57 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$
2010-06-18 19:03:53 ----HDC---- C:\WINDOWS\$NtUninstallKB978037_0$
2010-06-18 19:03:50 ----HDC---- C:\WINDOWS\$NtUninstallKB975713_0$
2010-06-18 19:03:47 ----HDC---- C:\WINDOWS\$NtUninstallKB971657_0$
2010-06-18 19:03:43 ----HDC---- C:\WINDOWS\$NtUninstallKB978338_0$
2010-06-18 19:03:40 ----HDC---- C:\WINDOWS\$NtUninstallKB960225_0$
2010-06-18 19:03:37 ----HDC---- C:\WINDOWS\$NtUninstallKB972270_0$
2010-06-18 19:03:33 ----HDC---- C:\WINDOWS\$NtUninstallKB974112_0$
2010-06-18 19:02:59 ----HDC---- C:\WINDOWS\$NtUninstallKB956572_0$
2010-06-18 19:02:51 ----HDC---- C:\WINDOWS\$NtUninstallKB956844_0$
2010-06-18 19:02:47 ----HDC---- C:\WINDOWS\$NtUninstallKB961501_0$
2010-06-18 19:02:42 ----HDC---- C:\WINDOWS\$NtUninstallKB975561_0$
2010-06-18 19:02:33 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2010-06-18 19:02:25 ----HDC---- C:\WINDOWS\$NtUninstallKB973869_0$
2010-06-18 19:02:21 ----HDC---- C:\WINDOWS\$NtUninstallKB975025_0$
2010-06-18 19:02:18 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$
2010-06-18 19:02:14 ----HDC---- C:\WINDOWS\$NtUninstallKB952004_0$
2010-06-18 19:02:10 ----HDC---- C:\WINDOWS\$NtUninstallKB974571_0$
2010-06-18 19:02:07 ----HDC---- C:\WINDOWS\$NtUninstallKB975560_0$
2010-06-18 19:02:02 ----HDC---- C:\WINDOWS\$NtUninstallKB973507_0$
2010-06-18 19:01:58 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-06-18 19:01:54 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_0$
2010-06-18 19:01:51 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$
2010-06-18 19:01:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2010-06-18 19:00:38 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2010-06-18 19:00:34 ----HDC---- C:\WINDOWS\$NtUninstallKB978601_0$
2010-06-18 19:00:28 ----HDC---- C:\WINDOWS\$NtUninstallKB979559_0$
2010-06-18 18:59:58 ----A---- C:\WINDOWS\system32\MRT.exe
2010-06-18 18:59:52 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$
2010-06-18 18:59:48 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-06-18 18:59:41 ----HDC---- C:\WINDOWS\$NtUninstallKB967715_0$
2010-06-18 18:59:38 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2010-06-18 18:59:34 ----HDC---- C:\WINDOWS\$NtUninstallKB974392_0$
2010-06-18 18:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB977914_0$
2010-06-18 18:59:22 ----HDC---- C:\WINDOWS\$NtUninstallKB951748_0$
2010-06-18 18:59:18 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-06-18 18:59:13 ----HDC---- C:\WINDOWS\$NtUninstallKB978542_0$
2010-06-18 18:59:10 ----HDC---- C:\WINDOWS\$NtUninstallKB970238_0$
2010-06-18 18:59:06 ----HDC---- C:\WINDOWS\$NtUninstallKB979309_0$
2010-06-18 18:59:03 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2010-06-18 18:59:00 ----HDC---- C:\WINDOWS\$NtUninstallKB979482_0$
2010-06-18 18:58:57 ----HDC---- C:\WINDOWS\$NtUninstallKB978706_0$
2010-06-18 18:58:52 ----D---- C:\WINDOWS\ServicePackFiles
2010-06-18 18:58:51 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$
2010-06-18 18:58:47 ----HDC---- C:\WINDOWS\$NtUninstallKB960803_0$
2010-06-18 18:58:44 ----HDC---- C:\WINDOWS\$NtUninstallKB973815_0$
2010-06-18 18:58:39 ----HDC---- C:\WINDOWS\$NtUninstallKB975562_0$
2010-06-18 18:58:34 ----HDC---- C:\WINDOWS\$NtUninstallKB971032$
2010-06-18 18:58:31 ----HDC---- C:\WINDOWS\$NtUninstallKB958644_0$
2010-06-18 18:58:27 ----HDC---- C:\WINDOWS\$NtUninstallKB955069_0$
2010-06-18 18:58:22 ----HDC---- C:\WINDOWS\$NtUninstallKB979402_WM9L$
2010-06-18 18:58:20 ----HDC---- C:\WINDOWS\$NtUninstallKB956802_0$
2010-06-18 18:58:10 ----HDC---- C:\WINDOWS\$NtUninstallKB982381$
2010-06-18 18:57:36 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
2010-06-18 18:57:31 ----HDC---- C:\WINDOWS\$NtUninstallKB923561_0$
2010-06-18 18:57:26 ----HDC---- C:\WINDOWS\$NtUninstallKB975467_0$
2010-06-18 18:57:20 ----HDC---- C:\WINDOWS\$NtUninstallKB968389_0$
2010-06-18 18:51:40 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2010-06-18 18:51:40 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2010-06-18 18:51:40 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2010-06-18 18:51:40 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2010-06-18 18:51:40 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2010-06-18 18:51:40 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2010-06-18 18:51:39 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2010-06-18 18:51:39 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2010-06-18 18:51:39 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2010-06-18 18:51:39 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2010-06-18 18:51:39 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2010-06-18 18:51:39 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2010-06-18 18:51:39 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2010-06-18 18:51:38 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2010-06-18 18:51:38 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2010-06-18 18:51:38 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2010-06-18 18:51:38 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2010-06-18 18:51:37 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2010-06-18 18:51:37 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2010-06-18 18:51:37 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2010-06-18 18:51:10 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2010-06-18 18:47:01 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Macromedia
2010-06-18 18:45:54 ----A---- C:\WINDOWS\system32\drivers\mstee.sys
2010-06-18 18:45:53 ----A---- C:\WINDOWS\system32\drivers\ndisip.sys
2010-06-18 18:45:52 ----A---- C:\WINDOWS\system32\drivers\streamip.sys
2010-06-18 18:45:52 ----A---- C:\WINDOWS\system32\drivers\slip.sys
2010-06-18 18:45:51 ----A---- C:\WINDOWS\system32\drivers\wstcodec.sys
2010-06-18 18:45:50 ----A---- C:\WINDOWS\system32\drivers\nabtsfec.sys
2010-06-18 18:45:49 ----A---- C:\WINDOWS\system32\drivers\ccdecode.sys
2010-06-18 18:45:47 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2010-06-18 18:44:21 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-06-18 18:44:08 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-06-18 18:42:43 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2010-06-18 18:40:53 ----D---- C:\WINDOWS\system32\PreInstall
2010-06-18 18:40:52 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2010-06-18 18:40:52 ----HD---- C:\WINDOWS\$hf_mig$
2010-06-18 18:40:43 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-06-18 18:40:42 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2010-06-18 18:36:56 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2010-06-18 18:23:08 ----A---- C:\WINDOWS\system32\wpa.bak
2010-06-18 17:26:54 ----A---- C:\WINDOWS\ODBC.INI
2010-06-18 17:26:53 ----A---- C:\WINDOWS\system32\mdimon.dll
2010-06-18 17:26:27 ----D---- C:\Program Files\Common Files\DESIGNER
2010-06-18 17:26:08 ----D---- C:\WINDOWS\SHELLNEW
2010-06-18 17:26:07 ----D---- C:\Program Files\Microsoft Office
2010-06-18 17:19:15 ----RA---- C:\WINDOWS\apptune1020.exe
2010-06-18 17:19:12 ----RA---- C:\WINDOWS\system32\ZTAG32.DLL
2010-06-18 17:19:12 ----RA---- C:\WINDOWS\system32\ZSPOOL.DLL
2010-06-18 17:19:12 ----RA---- C:\WINDOWS\system32\zlm.dll
2010-06-18 17:19:12 ----RA---- C:\WINDOWS\system32\ZLhp1020.dll
2010-06-18 17:19:12 ----RA---- C:\WINDOWS\system32\vshp1020.dll
2010-06-18 17:19:12 ----RA---- C:\WINDOWS\system32\IMF32.DLL
2010-06-18 17:19:11 ----RA---- C:\WINDOWS\system32\zshp1020.exe
2010-06-18 17:19:11 ----D---- C:\Program Files\Hewlett-Packard
2010-06-18 17:19:10 ----HD---- C:\Program Files\Zenographics
2010-06-18 16:57:02 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Adobe
2010-06-18 16:56:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-06-18 16:56:35 ----D---- C:\Program Files\Common Files\Adobe
2010-06-18 16:56:35 ----D---- C:\Program Files\Adobe
2010-06-18 16:54:12 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Mozilla
2010-06-18 16:54:09 ----D---- C:\Program Files\Mozilla Firefox
2010-06-18 16:39:14 ----A---- C:\WINDOWS\system32\h323log.txt
2010-06-18 16:36:50 ----A---- C:\WINDOWS\system32\drivers\audstub.sys
2010-06-18 16:36:37 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys
2010-06-18 16:36:24 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2010-06-18 16:36:17 ----A---- C:\WINDOWS\system32\drivers\rasirda.sys
2010-06-18 16:36:15 ----A---- C:\WINDOWS\system32\wshirda.dll
2010-06-18 16:36:15 ----A---- C:\WINDOWS\system32\irmon.dll
2010-06-18 16:36:15 ----A---- C:\WINDOWS\system32\irftp.exe
2010-06-18 16:36:15 ----A---- C:\WINDOWS\system32\drivers\irda.sys
2010-06-18 16:36:12 ----A---- C:\WINDOWS\system32\drivers\irsir.sys
2010-06-18 16:35:48 ----A---- C:\WINDOWS\system32\drivers\enum1394.sys
2010-06-18 16:35:44 ----A---- C:\WINDOWS\system32\usbui.dll
2010-06-18 16:35:27 ----N---- C:\WINDOWS\system32\drivers\NVXBAR.SYS
2010-06-18 16:35:25 ----N---- C:\WINDOWS\system32\drivers\NVCAP.SYS
2010-06-18 16:34:46 ----A---- C:\WINDOWS\imsins.BAK
2010-06-18 16:34:43 ----SHD---- C:\WINDOWS\Installer
2010-06-18 16:34:43 ----D---- C:\Program Files\Common Files\ODBC
2010-06-18 16:34:43 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-06-18 16:34:43 ----A---- C:\WINDOWS\ODBCINST.INI
2010-06-18 16:34:40 ----RD---- C:\Program Files
2010-06-18 16:34:40 ----D---- C:\Program Files\Common Files\SpeechEngines
2010-06-18 16:34:40 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-06-18 16:34:40 ----D---- C:\Program Files\Common Files
2010-06-18 16:34:37 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2010-06-18 16:34:37 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2010-06-18 16:34:37 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2010-06-18 16:34:36 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2010-06-18 16:34:36 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2010-06-18 16:34:36 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2010-06-18 16:34:36 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2010-06-18 16:34:36 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2010-06-18 16:34:36 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2010-06-18 16:34:35 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2010-06-18 16:34:35 ----RA---- C:\WINDOWS\system32\kbdur.dll
2010-06-18 16:34:35 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2010-06-18 16:34:35 ----RA---- C:\WINDOWS\system32\kbdru.dll
2010-06-18 16:34:35 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2010-06-18 16:34:35 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2010-06-18 16:34:34 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2010-06-18 16:34:34 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2010-06-18 16:34:34 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2010-06-18 16:34:34 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2010-06-18 16:34:34 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2010-06-18 16:34:34 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2010-06-18 16:34:34 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2010-06-18 16:34:33 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2010-06-18 16:34:33 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2010-06-18 16:34:33 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2010-06-18 16:34:33 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2010-06-18 16:34:32 ----RA---- C:\WINDOWS\system32\kbdest.dll
2010-06-18 16:34:30 ----A---- C:\WINDOWS\system32\kbdsl1.dll
2010-06-18 16:34:30 ----A---- C:\WINDOWS\system32\kbdsl.dll
2010-06-18 16:34:30 ----A---- C:\WINDOWS\system32\kbdro.dll
2010-06-18 16:34:30 ----A---- C:\WINDOWS\system32\kbdpl1.dll
2010-06-18 16:34:30 ----A---- C:\WINDOWS\system32\kbdpl.dll
2010-06-18 16:34:30 ----A---- C:\WINDOWS\system32\kbdhu1.dll
2010-06-18 16:34:30 ----A---- C:\WINDOWS\system32\kbdhu.dll
2010-06-18 16:34:30 ----A---- C:\WINDOWS\system32\kbdcr.dll
2010-06-18 16:34:30 ----A---- C:\WINDOWS\system32\KBDAL.DLL
2010-06-18 16:34:29 ----A---- C:\WINDOWS\system32\kbdycl.dll
2010-06-18 16:34:29 ----A---- C:\WINDOWS\system32\irclass.dll
2010-06-18 16:34:29 ----A---- C:\WINDOWS\system32\dgsetup.dll
2010-06-18 16:34:29 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2010-06-18 16:34:28 ----A---- C:\WINDOWS\system32\spxcoins.dll
2010-06-18 16:34:28 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2010-06-18 16:34:27 ----A---- C:\WINDOWS\TASKMAN.EXE
2010-06-18 16:34:26 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2010-06-18 16:34:26 ----A---- C:\WINDOWS\system32\drivers\irenum.sys
2010-06-18 16:34:26 ----A---- C:\WINDOWS\system32\batt.dll
2010-06-18 16:34:26 ----A---- C:\WINDOWS\notepad.exe
2010-06-18 16:34:25 ----A---- C:\WINDOWS\system32\storprop.dll
2010-06-18 16:34:20 ----ASH---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2010-06-18 16:34:16 ----RA---- C:\WINDOWS\SET8.tmp
2010-06-18 16:34:14 ----RA---- C:\WINDOWS\SET4.tmp
2010-06-18 16:34:13 ----RA---- C:\WINDOWS\SET3.tmp
2010-06-18 16:34:09 ----D---- C:\WINDOWS\system32\CatRoot2
2010-06-18 16:34:09 ----D---- C:\WINDOWS\system32\CatRoot
2010-06-18 16:34:03 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-06-18 16:34:01 ----D---- C:\WINDOWS\nview
2010-06-18 16:34:01 ----A---- C:\WINDOWS\system32\nvudisp.exe
2010-06-18 16:33:45 ----A---- C:\WINDOWS\setuplog.txt
2010-06-18 16:33:42 ----SHD---- C:\System Volume Information
2010-06-18 16:33:42 ----D---- C:\Documents and Settings
2010-06-18 16:32:53 ----RASH---- C:\boot.ini
2010-06-18 16:31:11 ----D---- C:\WINDOWS\system32\Lang
2010-06-18 16:30:07 ----R---- C:\WINDOWS\system32\RtlCPAPI.dll
2010-06-18 16:30:07 ----R---- C:\WINDOWS\system32\ChCfg.exe
2010-06-18 16:30:06 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2010-06-18 16:30:06 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2010-06-18 16:30:05 ----A---- C:\WINDOWS\system32\drivers\dmusic.sys
2010-06-18 16:30:02 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2010-06-18 16:30:01 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2010-06-18 16:30:01 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2010-06-18 16:30:01 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2010-06-18 16:30:00 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2010-06-18 16:29:59 ----A---- C:\WINDOWS\system32\drivers\mspqm.sys
2010-06-18 16:29:59 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2010-06-18 16:29:58 ----A---- C:\WINDOWS\system32\drivers\mspclock.sys
2010-06-18 16:29:55 ----D---- C:\WINDOWS\system32\RTCOM
2010-06-18 16:29:54 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-06-18 16:29:53 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2010-06-18 16:29:31 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2010-06-18 16:29:30 ----HDC---- C:\WINDOWS\$NtUninstallKB888111WXPSP2$
2010-06-18 16:29:27 ----R---- C:\WINDOWS\SoundMan.exe
2010-06-18 16:29:27 ----R---- C:\WINDOWS\RtlUpd.exe
2010-06-18 16:29:26 ----R---- C:\WINDOWS\system32\drivers\RtkHDAud.Sys
2010-06-18 16:29:24 ----R---- C:\WINDOWS\RTLCPL.exe
2010-06-18 16:29:19 ----R---- C:\WINDOWS\RTHDCPL.exe
2010-06-18 16:29:18 ----R---- C:\WINDOWS\MicCal.exe
2010-06-18 16:29:17 ----R---- C:\WINDOWS\alcwzrd.exe
2010-06-18 16:29:17 ----R---- C:\WINDOWS\Alcmtr.exe
2010-06-18 16:29:16 ----D---- C:\Program Files\Realtek
2010-06-18 16:29:14 ----HD---- C:\Program Files\InstallShield Installation Information
2010-06-18 16:29:09 ----R---- C:\WINDOWS\RtlExUpd.dll
2010-06-18 16:27:43 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-06-18 16:27:43 ----RSD---- C:\WINDOWS\Fonts
2010-06-18 16:27:43 ----RD---- C:\WINDOWS\Web
2010-06-18 16:27:43 ----HD---- C:\WINDOWS\inf
2010-06-18 16:27:43 ----D---- C:\WINDOWS\WinSxS
2010-06-18 16:27:43 ----D---- C:\WINDOWS\twain_32
2010-06-18 16:27:43 ----D---- C:\WINDOWS\Temp
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\wins
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\wbem
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\usmt
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\spool
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\ShellExt
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\Setup
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\ras
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\oobe
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\npp
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\mui
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\inetsrv
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\IME
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\icsxml
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\ias
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\export
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\drivers\etc
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\drivers\disdn
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\drivers
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\dhcp
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\config
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\3com_dmi
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\3076
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\2052
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\1054
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\1042
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\1041
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\1037
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\1033
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\1031
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\1029
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\1028
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32\1025
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system32
2010-06-18 16:27:43 ----D---- C:\WINDOWS\system
2010-06-18 16:27:43 ----D---- C:\WINDOWS\security
2010-06-18 16:27:43 ----D---- C:\WINDOWS\Resources
2010-06-18 16:27:43 ----D---- C:\WINDOWS\repair
2010-06-18 16:27:43 ----D---- C:\WINDOWS\Provisioning
2010-06-18 16:27:43 ----D---- C:\WINDOWS\pchealth
2010-06-18 16:27:43 ----D---- C:\WINDOWS\PeerNet
2010-06-18 16:27:43 ----D---- C:\WINDOWS\mui
2010-06-18 16:27:43 ----D---- C:\WINDOWS\msapps
2010-06-18 16:27:43 ----D---- C:\WINDOWS\msagent
2010-06-18 16:27:43 ----D---- C:\WINDOWS\Media
2010-06-18 16:27:43 ----D---- C:\WINDOWS\java
2010-06-18 16:27:43 ----D---- C:\WINDOWS\ime
2010-06-18 16:27:43 ----D---- C:\WINDOWS\Help
2010-06-18 16:27:43 ----D---- C:\WINDOWS\ehome
2010-06-18 16:27:43 ----D---- C:\WINDOWS\Driver Cache
2010-06-18 16:27:43 ----D---- C:\WINDOWS\Debug
2010-06-18 16:27:43 ----D---- C:\WINDOWS\Cursors
2010-06-18 16:27:43 ----D---- C:\WINDOWS\Connection Wizard
2010-06-18 16:27:43 ----D---- C:\WINDOWS\Config
2010-06-18 16:27:43 ----D---- C:\WINDOWS\AppPatch
2010-06-18 16:27:43 ----D---- C:\WINDOWS\addins
2010-06-18 16:27:43 ----D---- C:\WINDOWS
2010-06-18 16:27:43 ----ASH---- C:\pagefile.sys
2010-06-18 16:27:32 ----N---- C:\WINDOWS\system32\nvuide.exe
2010-06-18 16:27:31 ----RA---- C:\WINDOWS\system32\NVCOI.DLL
2010-06-18 16:27:31 ----RA---- C:\WINDOWS\system32\idecoiins.dll
2010-06-18 16:27:31 ----RA---- C:\WINDOWS\system32\idecoi.dll
2010-06-18 16:27:31 ----RA---- C:\WINDOWS\system32\drivers\nvata.sys
2010-06-18 16:27:07 ----RA---- C:\WINDOWS\system32\fdco1ins.dll
2010-06-18 16:27:07 ----RA---- C:\WINDOWS\system32\fdco_l2052.dll
2010-06-18 16:27:07 ----RA---- C:\WINDOWS\system32\fdco_l1046.dll
2010-06-18 16:27:07 ----RA---- C:\WINDOWS\system32\fdco_l1042.dll
2010-06-18 16:27:07 ----RA---- C:\WINDOWS\system32\fdco_l1041.dll
2010-06-18 16:27:07 ----RA---- C:\WINDOWS\system32\fdco_l1040.dll
2010-06-18 16:27:07 ----RA---- C:\WINDOWS\system32\fdco_l1036.dll
2010-06-18 16:27:07 ----RA---- C:\WINDOWS\system32\fdco_l1034.dll
2010-06-18 16:27:07 ----RA---- C:\WINDOWS\system32\fdco_l1031.dll
2010-06-18 16:27:07 ----RA---- C:\WINDOWS\system32\fdco_l1028.dll
2010-06-18 16:27:07 ----RA---- C:\WINDOWS\system32\drivers\NVENETFD.sys
2010-06-18 16:27:07 ----A---- C:\WINDOWS\system32\fdco1.dll
2010-06-18 16:27:06 ----RA---- C:\WINDOWS\system32\drivers\nvtcp.sys
2010-06-18 16:27:06 ----A---- C:\WINDOWS\system32\nvunrm.exe
2010-06-18 16:27:05 ----RA---- C:\WINDOWS\system32\nvconrm.dll
2010-06-18 16:27:05 ----RA---- C:\WINDOWS\system32\drivers\nvsnpu.sys
2010-06-18 16:27:05 ----RA---- C:\WINDOWS\system32\drivers\nvnrm.sys
2010-06-18 16:27:05 ----RA---- C:\WINDOWS\system32\drivers\nvnetbus.sys
2010-06-18 16:27:05 ----RA---- C:\WINDOWS\system32\bdco1ins.dll
2010-06-18 16:27:05 ----RA---- C:\WINDOWS\system32\bdco1.dll
2010-06-18 16:27:05 ----D---- C:\WINDOWS\NV18481996.TMP
2010-06-18 16:27:04 ----RA---- C:\WINDOWS\system32\nvusmb.exe
2010-06-18 16:26:51 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2010-06-18 16:26:42 ----D---- C:\Program Files\Common Files\InstallShield
2010-06-18 16:26:35 ----RA---- C:\WINDOWS\system32\drivers\AmdK8.sys
2010-06-18 16:26:34 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-06-18 15:57:45 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2010-06-18 15:12:18 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Identities
2010-06-18 15:12:17 ----HD---- C:\Program Files\Uninstall Information
2010-06-18 15:12:12 ----ASH---- C:\Documents and Settings\Administrator\Data aplikací\desktop.ini
2010-06-18 15:12:11 ----SD---- C:\Documents and Settings\Administrator\Data aplikací\Microsoft
2010-06-18 15:12:06 ----D---- C:\WINDOWS\SoftwareDistribution
2010-06-18 15:12:05 ----SD---- C:\WINDOWS\system32\Microsoft
2010-06-18 15:12:05 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-06-18 15:09:01 ----D---- C:\WINDOWS\system32\xircom
2010-06-18 15:09:01 ----D---- C:\Program Files\xerox
2010-06-18 15:09:01 ----D---- C:\Program Files\microsoft frontpage
2010-06-18 15:08:47 ----RASH---- C:\MSDOS.SYS
2010-06-18 15:08:47 ----RASH---- C:\IO.SYS
2010-06-18 15:08:47 ----A---- C:\WINDOWS\control.ini
2010-06-18 15:08:47 ----A---- C:\CONFIG.SYS
2010-06-18 15:08:47 ----A---- C:\AUTOEXEC.BAT
2010-06-18 15:08:36 ----A---- C:\WINDOWS\OEWABLog.txt
2010-06-18 15:08:33 ----A---- C:\WINDOWS\system32\mapi32.dll
2010-06-18 15:07:59 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-06-18 15:07:59 ----RD---- C:\WINDOWS\Offline Web Pages
2010-06-18 15:07:59 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-06-18 15:07:55 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-06-18 15:07:52 ----HD---- C:\Program Files\WindowsUpdate
2010-06-18 15:07:49 ----D---- C:\Program Files\Online Services
2010-06-18 15:07:37 ----D---- C:\WINDOWS\system32\DirectX
2010-06-18 15:07:21 ----A---- C:\WINDOWS\system32\atrace.dll
2010-06-18 15:07:19 ----A---- C:\WINDOWS\system32\desktop.ini
2010-06-18 15:07:19 ----A---- C:\WINDOWS\desktop.ini
2010-06-18 15:07:13 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2010-06-18 15:07:12 ----A---- C:\WINDOWS\system32\acctres.dll
2010-06-18 15:07:11 ----D---- C:\Program Files\Common Files\Services
2010-06-18 15:07:09 ----SD---- C:\WINDOWS\Tasks
2010-06-18 15:07:09 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2010-06-18 15:07:08 ----D---- C:\Program Files\Common Files\MSSoap
2010-06-18 15:07:05 ----D---- C:\WINDOWS\srchasst
2010-06-18 15:07:04 ----D---- C:\WINDOWS\system32\Macromed
2010-06-18 15:07:02 ----A---- C:\WINDOWS\system32\wuweb.dll
2010-06-18 15:07:02 ----A---- C:\WINDOWS\system32\wucltui.dll
2010-06-18 15:07:02 ----A---- C:\WINDOWS\system32\wuauserv.dll
2010-06-18 15:07:02 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2010-06-18 15:07:01 ----A---- C:\WINDOWS\system32\wups.dll
2010-06-18 15:07:01 ----A---- C:\WINDOWS\system32\wuaueng.dll
2010-06-18 15:07:01 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2010-06-18 15:07:01 ----A---- C:\WINDOWS\system32\wuauclt.exe
2010-06-18 15:07:01 ----A---- C:\WINDOWS\system32\wuapi.dll
2010-06-18 15:07:01 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2010-06-18 15:07:01 ----A---- C:\WINDOWS\system32\qmgr.dll
2010-06-18 15:07:01 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2010-06-18 15:07:01 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2010-06-18 15:06:57 ----D---- C:\Program Files\Movie Maker
2010-06-18 15:06:54 ----A---- C:\WINDOWS\system32\safrslv.dll
2010-06-18 15:06:54 ----A---- C:\WINDOWS\system32\safrdm.dll
2010-06-18 15:06:54 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2010-06-18 15:06:54 ----A---- C:\WINDOWS\system32\racpldlg.dll
2010-06-18 15:06:51 ----D---- C:\WINDOWS\system32\Restore
2010-06-18 15:06:51 ----A---- C:\WINDOWS\system32\srrstr.dll
2010-06-18 15:06:51 ----A---- C:\WINDOWS\system32\fltmc.exe
2010-06-18 15:06:51 ----A---- C:\WINDOWS\system32\fltlib.dll
2010-06-18 15:06:51 ----A---- C:\WINDOWS\system32\drivers\fltmgr.sys
2010-06-18 15:06:50 ----A---- C:\WINDOWS\system32\srsvc.dll
2010-06-18 15:06:50 ----A---- C:\WINDOWS\system32\srclient.dll
2010-06-18 15:06:50 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2010-06-18 15:06:50 ----A---- C:\WINDOWS\system32\mnmdd.dll
2010-06-18 15:06:50 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2010-06-18 15:06:50 ----A---- C:\WINDOWS\system32\ils.dll
2010-06-18 15:06:50 ----A---- C:\WINDOWS\system32\drivers\sr.sys
2010-06-18 15:06:49 ----A---- C:\WINDOWS\system32\msconf.dll
2010-06-18 15:06:49 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-06-18 15:06:47 ----D---- C:\Program Files\NetMeeting
2010-06-18 15:06:47 ----A---- C:\WINDOWS\system32\msoert2.dll
2010-06-18 15:06:47 ----A---- C:\WINDOWS\system32\msoeacct.dll
2010-06-18 15:06:46 ----A---- C:\WINDOWS\system32\inetres.dll
2010-06-18 15:06:46 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-06-18 15:06:44 ----D---- C:\Program Files\Outlook Express
2010-06-18 15:06:44 ----A---- C:\WINDOWS\system32\schedsvc.dll
2010-06-18 15:06:44 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-06-18 15:06:44 ----A---- C:\WINDOWS\system32\mstask.dll
2010-06-18 15:06:44 ----A---- C:\WINDOWS\system32\isign32.dll
2010-06-18 15:06:44 ----A---- C:\WINDOWS\system32\inetcfg.dll
2010-06-18 15:06:44 ----A---- C:\WINDOWS\system32\icwphbk.dll
2010-06-18 15:06:44 ----A---- C:\WINDOWS\system32\icwdial.dll
2010-06-18 15:06:39 ----D---- C:\Program Files\Common Files\System
2010-06-18 15:06:38 ----D---- C:\Program Files\Internet Explorer
2010-06-18 15:06:14 ----D---- C:\Program Files\ComPlus Applications
2010-06-18 15:06:12 ----A---- C:\WINDOWS\vbaddin.ini
2010-06-18 15:06:12 ----A---- C:\WINDOWS\vb.ini
2010-06-18 15:06:09 ----D---- C:\WINDOWS\Registration
2010-06-18 15:06:03 ----D---- C:\Program Files\Windows Media Player
2010-06-18 15:05:59 ----D---- C:\Program Files\Messenger
2010-06-18 15:05:56 ----D---- C:\Program Files\MSN Gaming Zone
2010-06-18 15:05:56 ----A---- C:\WINDOWS\system32\write.exe
2010-06-18 15:05:49 ----A---- C:\WINDOWS\system32\sndvol32.exe
2010-06-18 15:05:49 ----A---- C:\WINDOWS\system32\hticons.dll
2010-06-18 15:05:49 ----A---- C:\WINDOWS\system32\avwav.dll
2010-06-18 15:05:49 ----A---- C:\WINDOWS\system32\avtapi.dll
2010-06-18 15:05:49 ----A---- C:\WINDOWS\system32\avmeter.dll
2010-06-18 15:05:48 ----A---- C:\WINDOWS\system32\winchat.exe
2010-06-18 15:05:42 ----A---- C:\WINDOWS\system32\sol.exe
2010-06-18 15:05:42 ----A---- C:\WINDOWS\system32\charmap.exe
2010-06-18 15:05:42 ----A---- C:\WINDOWS\system32\getuname.dll
2010-06-18 15:05:42 ----A---- C:\WINDOWS\system32\calc.exe
2010-06-18 15:05:41 ----A---- C:\WINDOWS\system32\winmine.exe
2010-06-18 15:05:41 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2010-06-18 15:05:41 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2010-06-18 15:05:41 ----A---- C:\WINDOWS\system32\tslabels.ini
2010-06-18 15:05:41 ----A---- C:\WINDOWS\system32\tskill.exe
2010-06-18 15:05:41 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2010-06-18 15:05:41 ----A---- C:\WINDOWS\system32\tscon.exe
2010-06-18 15:05:41 ----A---- C:\WINDOWS\system32\reset.exe
2010-06-18 15:05:41 ----A---- C:\WINDOWS\system32\mshearts.exe
2010-06-18 15:05:41 ----A---- C:\WINDOWS\system32\freecell.exe
2010-06-18 15:05:40 ----A---- C:\WINDOWS\system32\shadow.exe
2010-06-18 15:05:40 ----A---- C:\WINDOWS\system32\rwinsta.exe
2010-06-18 15:05:40 ----A---- C:\WINDOWS\system32\regini.exe
2010-06-18 15:05:40 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2010-06-18 15:05:40 ----A---- C:\WINDOWS\system32\qwinsta.exe
2010-06-18 15:05:40 ----A---- C:\WINDOWS\system32\qappsrv.exe
2010-06-18 15:05:40 ----A---- C:\WINDOWS\system32\msg.exe
2010-06-18 15:05:40 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2010-06-18 15:05:40 ----A---- C:\WINDOWS\system32\logoff.exe
2010-06-18 15:05:40 ----A---- C:\WINDOWS\system32\cdmodem.dll
2010-06-18 15:05:39 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2010-06-18 15:05:39 ----A---- C:\WINDOWS\system32\mtxex.dll
2010-06-18 15:05:39 ----A---- C:\WINDOWS\system32\mtxdm.dll
2010-06-18 15:05:39 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2010-06-18 15:05:39 ----A---- C:\WINDOWS\system32\comrepl.dll
2010-06-18 15:05:39 ----A---- C:\WINDOWS\system32\comaddin.dll
2010-06-18 15:05:38 ----A---- C:\WINDOWS\system32\stclient.dll
2010-06-18 15:05:38 ----A---- C:\WINDOWS\system32\comsnap.dll
2010-06-18 15:05:34 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2010-06-18 15:05:33 ----A---- C:\WINDOWS\system32\sndrec32.exe
2010-06-18 15:05:33 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-06-18 15:05:33 ----A---- C:\WINDOWS\system32\hypertrm.dll
2010-06-18 15:05:33 ----A---- C:\WINDOWS\system32\accwiz.exe
2010-06-18 15:05:32 ----D---- C:\Program Files\Windows NT
2010-06-18 15:05:32 ----A---- C:\WINDOWS\system32\spider.exe
2010-06-18 15:05:32 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-06-18 15:05:32 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys
2010-06-18 15:05:32 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys
2010-06-18 15:05:32 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2010-06-18 15:05:32 ----A---- C:\WINDOWS\system32\clipbrd.exe
2010-06-18 15:05:31 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2010-06-18 15:05:31 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2010-06-18 15:05:31 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-06-18 15:05:31 ----A---- C:\WINDOWS\system32\remotepg.dll
2010-06-18 15:05:31 ----A---- C:\WINDOWS\system32\rdshost.exe
2010-06-18 15:05:31 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2010-06-18 15:05:31 ----A---- C:\WINDOWS\system32\rdchost.dll
2010-06-18 15:05:31 ----A---- C:\WINDOWS\system32\mstscax.dll
2010-06-18 15:05:31 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-06-18 15:05:30 ----D---- C:\WINDOWS\system32\MsDtc

[morgothcz]

pokracovani logu:

2010-06-18 15:05:30 ----A---- C:\WINDOWS\system32\termsrv.dll
2010-06-18 15:05:30 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2010-06-18 15:05:30 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2010-06-18 15:05:30 ----A---- C:\WINDOWS\system32\rdpclip.exe
2010-06-18 15:05:30 ----A---- C:\WINDOWS\system32\qprocess.exe
2010-06-18 15:05:30 ----A---- C:\WINDOWS\system32\mtxoci.dll
2010-06-18 15:05:30 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2010-06-18 15:05:30 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2010-06-18 15:05:30 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-06-18 15:05:30 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2010-06-18 15:05:29 ----A---- C:\WINDOWS\system32\xolehlp.dll
2010-06-18 15:05:29 ----A---- C:\WINDOWS\system32\msdtctm.dll
2010-06-18 15:05:29 ----A---- C:\WINDOWS\system32\msdtclog.dll
2010-06-18 15:05:29 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-06-18 15:05:28 ----D---- C:\WINDOWS\system32\Com
2010-06-18 15:05:28 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-06-18 15:05:28 ----A---- C:\WINDOWS\system32\colbact.dll
2010-06-18 15:05:28 ----A---- C:\WINDOWS\system32\clbcatex.dll
2010-06-18 15:05:28 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-06-18 15:05:28 ----A---- C:\WINDOWS\system32\catsrvps.dll
2010-06-18 15:05:28 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-06-18 15:05:27 ----A---- C:\WINDOWS\system32\comuid.dll
2010-06-18 15:05:27 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-06-18 15:05:22 ----A---- C:\WINDOWS\system32\servdeps.dll
2010-06-18 15:05:22 ----A---- C:\WINDOWS\system32\mmfutil.dll
2010-06-18 15:05:22 ----A---- C:\WINDOWS\system32\licwmi.dll
2010-06-18 15:05:22 ----A---- C:\WINDOWS\system32\cmprops.dll
2010-06-18 15:05:16 ----A---- C:\WINDOWS\system32\drivers\termdd.sys
2010-06-18 15:05:16 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys

======List of files/folders modified in the last 1 months======

2010-07-12 19:21:41 ----A---- C:\WINDOWS\system.ini
2010-07-09 20:34:37 ----A---- C:\WINDOWS\system32\rpcss.dll
2010-06-18 17:26:48 ----A---- C:\WINDOWS\win.ini
2010-06-18 15:08:25 ----ASH---- C:\WINDOWS\fonts\desktop.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2006-03-16 99840]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2006-09-24 5248]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-06-20 691696]
R1 AmdK8;AMD Processor Driver; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 36352]
R2 irda;Protokol IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R2 NVXBAR;nVidia WDM A/V Crossbar; C:\WINDOWS\system32\DRIVERS\NVxbar.sys [2008-07-17 16496]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-04-06 4258816]
R3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-07-17 6011808]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-03-22 52736]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-03-22 18944]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 a9k4jkei;a9k4jkei; C:\WINDOWS\system32\drivers\a9k4jkei.sys []
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 ndiscm;Motorola USB Cable Modem Windows Driver; C:\WINDOWS\system32\DRIVERS\NetMotCM.sys [2003-08-10 14336]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2008-05-02 17536]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2008-05-02 20864]
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2008-05-02 8064]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\DRIVERS\usbser.sys [2008-04-13 26112]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-06-10 144176]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2010-05-18 345376]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-07-09 153376]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-07-17 159812]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-06-22 136176]
S2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2010-03-28 246520]
S2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-29 935208]
S2 spupdsvc;Windows Service Pack Installer update service; C:\WINDOWS\system32\spupdsvc.exe [2009-01-07 26144]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-06-22 182768]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2010-06-15 540472]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]

-----------------EOF-----------------

[motji]

Dobrý večer
Poprosím o tento log C:\ComboFix.txt.
A přečtěte si varování o použití combofixu v mém podpise.

[morgothcz]

dobry vecer, predem dekuji za vas cas

ComboFix 10-07-11.07 - Administrator 12.07.2010 20:45:23.2.1 - x86
Spuštěný z: F:\ComboFix.exe
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-06-12 do 2010-07-12 )))))))))))))))))))))))))))))))
.

2010-07-12 17:28 . 2010-07-12 17:57 -------- d-----w- c:\program files\trend micro
2010-07-12 17:28 . 2010-07-12 17:28 -------- d-----w- C:\rsit
2010-07-12 17:04 . 2010-07-12 17:04 -------- d-----w- C:\Nová složka
2010-07-11 11:07 . 2010-07-12 17:00 -------- d-----w- c:\program files\TrojanHunter 5.3
2010-07-09 10:47 . 2010-07-09 10:47 -------- d-----w- c:\windows\Sun
2010-07-09 10:47 . 2010-07-09 10:47 -------- d-----w- c:\program files\Common Files\Java
2010-07-09 10:47 . 2010-07-09 10:46 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-07-09 10:46 . 2010-07-09 10:46 -------- d-----w- c:\program files\Java
2010-06-22 16:48 . 2003-08-10 00:32 14336 ----a-w- c:\windows\system32\drivers\NetMotCM.sys
2010-06-22 09:29 . 2010-06-22 09:29 -------- d-----w- c:\program files\ICQ6Toolbar
2010-06-22 08:22 . 2010-06-22 08:22 -------- d-----w- c:\program files\Windows Sidebar
2010-06-22 08:15 . 2010-06-22 08:29 -------- d-----w- c:\program files\Common Files\Nero
2010-06-22 08:03 . 2010-06-22 08:03 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2010-06-22 07:59 . 2010-06-22 07:59 -------- d-----w- c:\program files\Common Files\Skype
2010-06-22 07:59 . 2010-06-22 07:59 -------- d-----r- c:\program files\Skype
2010-06-22 07:46 . 2008-04-14 03:21 363520 -c--a-w- c:\windows\system32\dllcache\psisdecd.dll
2010-06-22 07:46 . 2008-04-14 03:21 363520 ----a-w- c:\windows\system32\psisdecd.dll
2010-06-22 07:46 . 2007-11-30 23:10 1645320 ----a-w- c:\windows\system32\gdiplus.dll
2010-06-22 07:39 . 2010-06-22 07:39 -------- d-----w- c:\program files\Google
2010-06-22 01:00 . 2010-06-22 01:00 -------- d-----w- c:\program files\MSXML 4.0
2010-06-20 15:36 . 2010-06-20 15:40 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2010-06-20 15:21 . 2010-06-20 15:21 86016 ----a-w- c:\windows\system32\OpenAL32.dll
2010-06-20 15:21 . 2010-06-20 15:21 262144 ----a-w- c:\windows\system32\wrap_oal.dll
2010-06-20 15:15 . 2010-06-20 15:40 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-06-20 15:14 . 2010-06-20 15:14 -------- d-----w- c:\windows\system32\Futuremark
2010-06-20 15:14 . 2004-10-25 18:02 21664 ----a-w- c:\windows\system32\drivers\Entech.sys
2010-06-20 15:14 . 2004-06-22 13:44 5632 ----a-w- c:\windows\system32\drivers\Entech64.sys
2010-06-20 15:14 . 2001-11-19 17:05 3972 ----a-w- c:\windows\system32\drivers\PciBus.sys
2010-06-20 15:00 . 2010-06-20 15:00 -------- d-----w- c:\program files\OpenOffice.org 3
2010-06-20 14:52 . 2008-08-08 05:04 545 ----a-w- c:\windows\UC.PIF
2010-06-20 14:52 . 2008-08-08 05:04 545 ----a-w- c:\windows\RAR.PIF
2010-06-20 14:52 . 2008-08-08 05:04 545 ----a-w- c:\windows\PKZIP.PIF
2010-06-20 14:52 . 2008-08-08 05:04 545 ----a-w- c:\windows\PKUNZIP.PIF
2010-06-20 14:52 . 2008-08-08 05:04 545 ----a-w- c:\windows\NOCLOSE.PIF
2010-06-20 14:52 . 2008-08-08 05:04 545 ----a-w- c:\windows\LHA.PIF
2010-06-20 14:52 . 2008-08-08 05:04 545 ----a-w- c:\windows\ARJ.PIF
2010-06-20 14:50 . 2008-04-13 18:45 26112 -c--a-w- c:\windows\system32\dllcache\usbser.sys
2010-06-20 14:50 . 2008-04-13 18:45 26112 ----a-w- c:\windows\system32\drivers\usbser.sys
2010-06-20 14:42 . 2010-06-20 14:42 -------- d-----w- c:\program files\NVIDIA
2010-06-20 13:20 . 2010-06-20 13:20 -------- d-----w- C:\XStandard
2010-06-18 18:13 . 2009-05-18 11:17 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2010-06-18 18:13 . 2008-04-17 10:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll
2010-06-18 18:12 . 2010-06-18 18:12 -------- d-----w- c:\program files\iPod
2010-06-18 18:12 . 2010-06-18 18:12 -------- d-----w- c:\program files\QuickTime
2010-06-18 18:12 . 2010-06-18 18:12 -------- d-----w- c:\program files\Apple Software Update
2010-06-18 18:12 . 2010-06-18 18:13 -------- dc----w- c:\windows\system32\DRVSTORE
2010-06-18 18:11 . 2010-06-18 18:11 -------- d-----w- c:\program files\Bonjour
2010-06-18 18:11 . 2010-06-18 18:12 -------- d-----w- c:\program files\Common Files\Apple
2010-06-18 18:08 . 2010-07-11 12:02 -------- d-----w- C:\Software
2010-06-18 18:03 . 2010-06-18 18:11 -------- d-----w- C:\Hry
2010-06-18 17:53 . 2010-06-18 17:53 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2010-06-18 17:45 . 2010-06-18 17:45 -------- d-----w- c:\windows\system32\cs
2010-06-18 17:45 . 2010-06-18 17:45 -------- d-----w- c:\windows\system32\bits
2010-06-18 17:45 . 2010-06-18 17:45 -------- d-----w- c:\windows\l2schemas
2010-06-18 17:43 . 2004-08-03 21:08 26496 -c--a-w- c:\windows\system32\dllcache\usbstor.sys
2010-06-18 17:36 . 2010-06-18 17:36 -------- d-sh--w- c:\documents and settings\Administrator\IECompatCache
2010-06-18 17:35 . 2010-06-18 17:35 -------- d-sh--w- c:\documents and settings\Administrator\PrivacIE
2010-06-18 17:19 . 2010-06-18 17:19 -------- d-sh--w- c:\documents and settings\Administrator\IETldCache
2010-06-18 17:07 . 2010-06-18 17:45 -------- d-----w- c:\windows\system32\cs-CZ
2010-06-18 17:07 . 2010-06-18 17:07 -------- dc-h--w- c:\windows\ie8
2010-06-18 16:58 . 2010-06-18 17:44 -------- d-----w- c:\windows\ServicePackFiles
2010-06-18 16:45 . 2008-04-13 18:39 5504 ----a-w- c:\windows\system32\drivers\mstee.sys
2010-06-18 16:44 . 2010-02-17 12:09 2192128 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2010-06-18 16:44 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2010-06-18 16:44 . 2009-06-25 08:27 729088 -c----w- c:\windows\system32\dllcache\lsasrv.dll
2010-06-18 16:44 . 2009-03-06 14:23 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2010-06-18 16:44 . 2009-02-09 11:25 111104 -c----w- c:\windows\system32\dllcache\services.exe
2010-06-18 16:44 . 2009-02-09 10:56 709632 -c----w- c:\windows\system32\dllcache\ntdll.dll
2010-06-18 16:44 . 2009-02-09 10:56 684032 -c----w- c:\windows\system32\dllcache\advapi32.dll
2010-06-18 16:44 . 2009-02-09 10:56 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2010-06-18 16:44 . 2009-02-09 10:56 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2010-06-18 16:44 . 2010-02-16 19:08 2148352 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2010-06-18 16:44 . 2010-02-16 19:08 2026496 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2010-06-18 16:44 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2010-06-18 16:43 . 2008-10-15 16:38 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2010-06-18 16:43 . 2008-04-21 21:15 216576 -c----w- c:\windows\system32\dllcache\wordpad.exe
2010-06-18 16:42 . 2008-04-14 03:22 54272 ----a-w- c:\windows\system32\vfwwdm32.dll
2010-06-18 16:40 . 2010-06-19 22:36 -------- d--h--w- c:\windows\$hf_mig$
2010-06-18 16:35 . 2010-06-18 16:35 -------- d-sh--w- c:\documents and settings\Administrator\UserData
2010-06-18 15:26 . 2003-06-18 23:31 18944 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\mdippr.dll
2010-06-18 15:26 . 2003-06-18 23:31 17920 ----a-w- c:\windows\system32\mdimon.dll
2010-06-18 15:26 . 2010-06-18 15:26 -------- d-----w- c:\windows\SHELLNEW
2010-06-18 15:19 . 2005-03-18 11:18 143360 ----a-r- c:\windows\apptune1020.exe
2010-06-18 15:19 . 2005-03-18 11:18 86016 ----a-r- c:\windows\system32\ZSPOOL.DLL
2010-06-18 15:19 . 2005-03-18 11:18 86016 ----a-r- c:\windows\system32\ZLhp1020.dll
2010-06-18 15:19 . 2005-03-18 11:18 28672 ----a-r- c:\windows\system32\zlm.dll
2010-06-18 15:19 . 2005-03-18 11:18 28672 ----a-r- c:\windows\system32\IMF32.DLL
2010-06-18 15:19 . 2005-03-18 11:18 24576 ----a-r- c:\windows\system32\ZTAG32.DLL
2010-06-18 15:19 . 2005-03-18 11:18 106496 ----a-r- c:\windows\system32\vshp1020.dll
2010-06-18 15:19 . 2010-06-18 15:19 -------- d-----w- c:\program files\Hewlett-Packard
2010-06-18 15:19 . 2005-03-18 11:18 49152 ----a-r- c:\windows\system32\Spool\prtprocs\w32x86\IMFPRINT.DLL
2010-06-18 15:19 . 2005-03-18 11:18 397312 ----a-r- c:\windows\system32\zshp1020.exe
2010-06-18 15:19 . 2010-06-18 15:19 -------- d--h--w- c:\program files\Zenographics

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-07-09 18:34 . 2004-08-18 12:00 1070080 ----a-w- c:\windows\system32\rpcss.dll
2010-06-22 09:29 . 2010-06-18 14:29 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-06-20 14:49 . 2010-06-20 14:49 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01005.Wdf
2010-06-20 14:49 . 2010-06-20 14:49 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2010-06-20 08:06 . 2004-08-18 12:00 46016 ----a-w- c:\windows\system32\perfc005.dat
2010-06-20 08:06 . 2004-08-18 12:00 309716 ----a-w- c:\windows\system32\perfh005.dat
2010-06-18 17:46 . 2010-06-18 13:08 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2010-06-18 17:46 . 2010-06-18 13:08 2740 ----a-w- c:\windows\pchealth\helpctr\PackageStore\SkuStore.bin
2010-06-18 14:56 . 2010-06-18 14:56 -------- d-----w- c:\program files\Common Files\Adobe
2010-06-18 14:54 . 2010-06-18 14:54 0 ----a-w- c:\windows\nsreg.dat
2010-06-18 14:35 . 2010-06-18 14:26 -------- d-----w- c:\program files\Common Files\InstallShield
2010-06-18 14:29 . 2010-06-18 14:29 -------- d-----w- c:\program files\Realtek
2010-06-18 13:27 . 2010-06-18 13:08 8972 ----a-w- c:\windows\pchealth\helpctr\Config\Cntstore.bin
2010-06-18 13:09 . 2010-06-18 13:09 -------- d-----w- c:\program files\microsoft frontpage
2010-06-18 13:06 . 2010-06-18 13:06 21812 ----a-w- c:\windows\system32\emptyregdb.dat
2010-05-18 14:35 . 2010-05-18 14:35 91424 ----a-w- c:\windows\system32\dnssd.dll
2010-05-18 14:35 . 2010-05-18 14:35 75040 ----a-w- c:\windows\system32\jdns_sd.dll
2010-05-18 14:35 . 2010-05-18 14:35 197920 ----a-w- c:\windows\system32\dnssdX.dll
2010-05-18 14:35 . 2010-05-18 14:35 107808 ----a-w- c:\windows\system32\dns-sd.exe
2010-05-06 10:35 . 2004-08-18 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2010-05-02 08:09 . 2004-08-18 12:00 1851264 ----a-w- c:\windows\system32\win32k.sys
2010-04-20 05:32 . 2004-08-18 12:00 285696 ----a-w- c:\windows\system32\atmfd.dll
.

------- Sigcheck -------

[-] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\atapi.sys
[-] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\system32\drivers\atapi.sys
[-] 2004-08-18 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\atapi.sys
[-] 2004-08-18 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0001\DriverFiles\i386\atapi.sys

[-] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\asyncmac.sys
[-] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\system32\drivers\asyncmac.sys
[-] 2004-08-18 . 02000ABF34AF4C218C35D257024807D6 . 14336 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\asyncmac.sys

[-] 2004-08-18 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\dllcache\beep.sys
[-] 2004-08-18 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\drivers\beep.sys

[-] 2008-04-14 . 1B6162FE7F66B1A71A4B70F941C4AA9B . 24576 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\kbdclass.sys
[-] 2008-04-14 . 1B6162FE7F66B1A71A4B70F941C4AA9B . 24576 . . [5.1.2600.5512] . . c:\windows\system32\drivers\kbdclass.sys
[-] 2004-08-18 . 6F877BF8DC01A550CD666F3BEDB2213C . 24576 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\kbdclass.sys

[-] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ndis.sys
[-] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ndis.sys
[-] 2004-08-18 . 558635D3AF1C7546D26067D5D9B6959E . 182912 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ndis.sys

[-] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntfs.sys
[-] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ntfs.sys
[-] 2004-08-18 . B78BE402C3F63DD55521F73876951CDD . 574592 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ntfs.sys

[-] 2004-08-18 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\dllcache\null.sys
[-] 2004-08-18 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\drivers\null.sys

[-] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys
[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys
[-] 2008-06-20 . 2A5554FC5B1E04E131230E3CE035C3F9 . 360320 . . [5.1.2600.3394] . . c:\windows\$NtServicePackUninstall$\tcpip.sys
[-] 2008-06-20 . 744E57C99232201AE98C49168B918F48 . 360960 . . [5.1.2600.3394] . . c:\windows\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[-] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\tcpip.sys
[-] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tcpip.sys
[-] 2004-08-18 . 9F4B36614A0FC234525BA224957DE55C . 359040 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB951748_0$\tcpip.sys

[-] 2008-04-14 . 249276D3EF1E74B992299CB96099E4D7 . 77824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\browser.dll
[-] 2008-04-14 . 249276D3EF1E74B992299CB96099E4D7 . 77824 . . [5.1.2600.5512] . . c:\windows\system32\browser.dll
[-] 2004-08-18 . F219E27E88107A50544153898DD8178E . 77312 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\browser.dll

[-] 2008-04-14 . ED0A176354487CEED65B80A7148AB739 . 13312 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\lsass.exe
[-] 2008-04-14 . ED0A176354487CEED65B80A7148AB739 . 13312 . . [5.1.2600.5512] . . c:\windows\system32\lsass.exe
[-] 2004-08-18 . 82A362FE1D4980B71B588D9C10748511 . 13312 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\lsass.exe

[-] 2008-04-14 . 72E1E9E2977BE08BDEEDB6D8FD9D4D40 . 198144 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\netman.dll
[-] 2008-04-14 . 72E1E9E2977BE08BDEEDB6D8FD9D4D40 . 198144 . . [5.1.2600.5512] . . c:\windows\system32\netman.dll
[-] 2004-08-18 . AF342D2781225A8769686E0D47E3123E . 198144 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\netman.dll

[-] 2008-04-14 . 19395D092FD85DDC2D9C7729CF5A2AC8 . 409088 . . [6.7.2600.5512] . . c:\windows\ServicePackFiles\i386\qmgr.dll
[-] 2008-04-14 . 19395D092FD85DDC2D9C7729CF5A2AC8 . 409088 . . [6.7.2600.5512] . . c:\windows\system32\qmgr.dll
[-] 2008-04-14 . 19395D092FD85DDC2D9C7729CF5A2AC8 . 409088 . . [6.7.2600.5512] . . c:\windows\system32\bits\qmgr.dll
[-] 2004-08-18 . E774A26610EC92674273486612C11CFC . 382464 . . [6.6.2600.2180] . . c:\windows\$NtServicePackUninstall$\qmgr.dll

[-] 2010-07-09 18:34 . 163679D58EDAADC28DB769011728A72C . 1070080 . . [------] . . c:\windows\system32\rpcss.dll
[-] 2009-02-09 . C0BD34A62508BA68F146E22CE45919F9 . 401408 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\rpcss.dll
[-] 2009-02-09 . C0BD34A62508BA68F146E22CE45919F9 . 401408 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP3QFE\rpcss.dll
[-] 2009-02-09 . BE27674D1CBC3214AEC84B4336A38BBF . 401408 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3GDR\rpcss.dll
[-] 2009-02-09 . BE27674D1CBC3214AEC84B4336A38BBF . 401408 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP3GDR\rpcss.dll
[-] 2009-02-09 . 2B269C916766BDB43404F043B763427D . 399360 . . [5.1.2600.3520] . . c:\windows\$NtServicePackUninstall$\rpcss.dll
[-] 2009-02-09 . 2B269C916766BDB43404F043B763427D . 399360 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP2GDR\rpcss.dll
[-] 2009-02-09 . BEF7BB41E666EAA34BE7E99C2B107DB8 . 401408 . . [5.1.2600.3520] . . c:\windows\$hf_mig$\KB956572\SP2QFE\rpcss.dll
[-] 2009-02-09 . BEF7BB41E666EAA34BE7E99C2B107DB8 . 401408 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP2QFE\rpcss.dll
[-] 2008-04-14 . C868F3AE15CF71A93F2AA3A32856D839 . 399360 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\rpcss.dll
[-] 2008-04-14 . C868F3AE15CF71A93F2AA3A32856D839 . 399360 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\rpcss.dll
[-] 2004-08-18 . C72C15EE57E248C66E57C76CAB086CF2 . 395776 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB956572_0$\rpcss.dll

[-] 2009-02-09 . 9EF697AF07BB8DD82C3B02CA953A95B7 . 111104 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3GDR\services.exe
[-] 2009-02-09 . 9EF697AF07BB8DD82C3B02CA953A95B7 . 111104 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP3GDR\services.exe
[-] 2009-02-09 . 9EF697AF07BB8DD82C3B02CA953A95B7 . 111104 . . [5.1.2600.5755] . . c:\windows\system32\services.exe
[-] 2009-02-09 . 9EF697AF07BB8DD82C3B02CA953A95B7 . 111104 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\services.exe
[-] 2009-02-09 . 3D107D45CCFDB266E91D84B52CD7F430 . 111104 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\services.exe
[-] 2009-02-09 . 3D107D45CCFDB266E91D84B52CD7F430 . 111104 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP3QFE\services.exe
[-] 2009-02-09 . 4F9F7B567970B524F31D9970A23F7C24 . 111104 . . [5.1.2600.3520] . . c:\windows\$NtServicePackUninstall$\services.exe
[-] 2009-02-09 . 4F9F7B567970B524F31D9970A23F7C24 . 111104 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP2GDR\services.exe
[-] 2009-02-09 . 33081FED75032291EE0E008D5385E86F . 111104 . . [5.1.2600.3520] . . c:\windows\$hf_mig$\KB956572\SP2QFE\services.exe
[-] 2009-02-09 . 33081FED75032291EE0E008D5385E86F . 111104 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP2QFE\services.exe
[-] 2008-04-14 . F0D2AE69035092BF22DAD6B50FAB85C2 . 108544 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\services.exe
[-] 2008-04-14 . F0D2AE69035092BF22DAD6B50FAB85C2 . 108544 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\services.exe
[-] 2004-08-18 . 6E401E61F952FBBF708AFBECEFAFAE81 . 108544 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB956572_0$\services.exe

[-] 2008-04-14 . CB1090BCA0E7B40D0B5B4E4D66531809 . 57856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\spoolsv.exe
[-] 2008-04-14 . CB1090BCA0E7B40D0B5B4E4D66531809 . 57856 . . [5.1.2600.5512] . . c:\windows\system32\spoolsv.exe
[-] 2004-08-18 . 21B6FAA88044A41640E03EBB68BE93E8 . 57856 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\spoolsv.exe

[-] 2008-04-14 . CDDB1F8E1AEA356F3AD106F2CF9B7FEA . 507904 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\winlogon.exe
[-] 2008-04-14 . CDDB1F8E1AEA356F3AD106F2CF9B7FEA . 507904 . . [5.1.2600.5512] . . c:\windows\system32\winlogon.exe
[-] 2004-08-18 . 221C29AE1B4CC61D11D8B27DE78B2307 . 502272 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\winlogon.exe

[-] 2008-04-14 . 4F993463DC5F3F80D77A3D34D7BFBFED . 617472 . . [5.82] . . c:\windows\ServicePackFiles\i386\comctl32.dll
[-] 2008-04-14 . 4F993463DC5F3F80D77A3D34D7BFBFED . 617472 . . [5.82] . . c:\windows\system32\comctl32.dll
[-] 2004-08-18 . 876C658C44F2BF4AF050E5534A9F066F . 611328 . . [5.82] . . c:\windows\$NtServicePackUninstall$\comctl32.dll

[-] 2008-04-14 . F3AB0933CBD166D271992F411C27CCAF . 62464 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\cryptsvc.dll
[-] 2008-04-14 . F3AB0933CBD166D271992F411C27CCAF . 62464 . . [5.1.2600.5512] . . c:\windows\system32\cryptsvc.dll
[-] 2004-08-18 . 70D2A1756F4B2067658A186C963FCABD . 60416 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\cryptsvc.dll

[-] 2008-07-07 20:32 . 398314DF0B21338C4996B469101750D1 . 253952 . . [2001.12.4414.320] . . c:\windows\$NtServicePackUninstall$\es.dll
[-] 2008-07-07 20:29 . A371F11EF07653591C8DE26AFB13CE7F . 253952 . . [2001.12.4414.706] . . c:\windows\$hf_mig$\KB950974\SP3GDR\es.dll
[-] 2008-07-07 20:29 . A371F11EF07653591C8DE26AFB13CE7F . 253952 . . [2001.12.4414.706] . . c:\windows\system32\es.dll
[-] 2008-07-07 20:29 . A371F11EF07653591C8DE26AFB13CE7F . 253952 . . [2001.12.4414.706] . . c:\windows\system32\dllcache\es.dll
[-] 2008-07-07 20:25 . BE68EA4457E2E5717231CF91BE5448E0 . 253952 . . [2001.12.4414.706] . . c:\windows\$hf_mig$\KB950974\SP3QFE\es.dll
[-] 2008-07-07 20:19 . 3440C414044935B124B5821C0994B37F . 253952 . . [2001.12.4414.320] . . c:\windows\$hf_mig$\KB950974\SP2QFE\es.dll
[-] 2008-04-14 03:21 . 260C69FD67687B0DC062FC3D31655857 . 246272 . . [2001.12.4414.701] . . c:\windows\$NtUninstallKB950974$\es.dll
[-] 2008-04-14 03:21 . 260C69FD67687B0DC062FC3D31655857 . 246272 . . [2001.12.4414.701] . . c:\windows\ServicePackFiles\i386\es.dll
[-] 2004-08-18 12:00 . 972378B907070F64932A87C90A035487 . 243200 . . [2001.12.4414.258] . . c:\windows\$NtUninstallKB950974_0$\es.dll

[-] 2008-04-14 . 6C60CA8AC7470AC01CFD3D24C7283CD1 . 110080 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\imm32.dll
[-] 2008-04-14 . 6C60CA8AC7470AC01CFD3D24C7283CD1 . 110080 . . [5.1.2600.5512] . . c:\windows\system32\imm32.dll
[-] 2004-08-18 . 2413635113361E54B62F0C40E4E4DAE6 . 110080 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\imm32.dll

[-] 2009-03-21 . 9A4D2A6C4B7BD60851553C095CD71AF8 . 984576 . . [5.1.2600.3541] . . c:\windows\$NtServicePackUninstall$\kernel32.dll
[-] 2009-03-21 . 545C653E8FE241CA6200798AA94FE5C7 . 988160 . . [5.1.2600.5781] . . c:\windows\$hf_mig$\KB959426\SP3GDR\kernel32.dll
[-] 2009-03-21 . 545C653E8FE241CA6200798AA94FE5C7 . 988160 . . [5.1.2600.5781] . . c:\windows\system32\kernel32.dll
[-] 2009-03-21 . 545C653E8FE241CA6200798AA94FE5C7 . 988160 . . [5.1.2600.5781] . . c:\windows\system32\dllcache\kernel32.dll
[-] 2009-03-21 . 0D8F61460F84139BBE5E391D8DE18D9A . 990208 . . [5.1.2600.5781] . . c:\windows\$hf_mig$\KB959426\SP3QFE\kernel32.dll
[-] 2009-03-21 . 8D18BA8E854890074B6FB92D7D0C02FA . 987648 . . [5.1.2600.3541] . . c:\windows\$hf_mig$\KB959426\SP2QFE\kernel32.dll
[-] 2008-04-14 . FD91CD95A1C663DF54DD371CC8A234DE . 988160 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB959426$\kernel32.dll
[-] 2008-04-14 . FD91CD95A1C663DF54DD371CC8A234DE . 988160 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\kernel32.dll
[-] 2004-08-18 . 98DA079F61265BC26D4587E280B79F30 . 982016 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB959426_0$\kernel32.dll

[-] 2008-04-14 . 7FDE9FC15765E02B23E1756930165AD1 . 19968 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\linkinfo.dll
[-] 2008-04-14 . 7FDE9FC15765E02B23E1756930165AD1 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\linkinfo.dll
[-] 2004-08-18 . EE1F842DB2AE412136643B0814D770A6 . 18944 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\linkinfo.dll

[-] 2008-04-14 . C66BA7BD13C8FB8BEC4863B88641C763 . 22016 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\lpk.dll
[-] 2008-04-14 . C66BA7BD13C8FB8BEC4863B88641C763 . 22016 . . [5.1.2600.5512] . . c:\windows\system32\lpk.dll
[-] 2004-08-18 . BFE8DC7AAE7CB1C86243D77B340DC304 . 22016 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\lpk.dll

[-] 2010-05-06 . 06B941C7749A9F071444B4C7563F36B5 . 5950976 . . [8.00.6001.18928] . . c:\windows\SoftwareDistribution\Download\4da92e2c99b7232d7106179052438045\SP3GDR\mshtml.dll
[-] 2010-05-06 . 06B941C7749A9F071444B4C7563F36B5 . 5950976 . . [8.00.6001.18928] . . c:\windows\system32\mshtml.dll
[-] 2010-05-06 . 06B941C7749A9F071444B4C7563F36B5 . 5950976 . . [8.00.6001.18928] . . c:\windows\system32\dllcache\mshtml.dll
[-] 2010-05-06 . 3F88F981AA7BC20744E0D2C699F500EF . 5953024 . . [8.00.6001.23019] . . c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\mshtml.dll
[-] 2010-05-06 . 3F88F981AA7BC20744E0D2C699F500EF . 5953024 . . [8.00.6001.23019] . . c:\windows\SoftwareDistribution\Download\4da92e2c99b7232d7106179052438045\SP3QFE\mshtml.dll
[-] 2010-04-16 . A8FD7D41C70CE7AFFAAF00D586DEB2FE . 3094016 . . [6.00.2900.5969] . . c:\windows\$hf_mig$\KB982381\SP3GDR\mshtml.dll
[-] 2010-04-16 . 3F79012C321EA541C458EFE797AFB822 . 3094528 . . [6.00.2900.5969] . . c:\windows\$hf_mig$\KB982381\SP3QFE\mshtml.dll
[-] 2010-04-16 . 084EF8D69026FFB75F93F00E67A66A8D . 3086336 . . [6.00.2900.3698] . . c:\windows\ie8\mshtml.dll
[-] 2010-04-16 . 318204B433A0BD37FA6B5A56877B8FB7 . 3094016 . . [6.00.2900.3698] . . c:\windows\$hf_mig$\KB982381\SP2QFE\mshtml.dll
[-] 2009-03-08 . D469A0EBA2EF5C6BEE8065B7E3196E5E . 5937152 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB982381-IE8\mshtml.dll
[-] 2008-04-14 . DAF9947DE2A6EA20AE524B7C50487E57 . 3066880 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\mshtml.dll
[-] 2004-08-18 . EF74351C9098210CC9C1A3679DB62041 . 3003392 . . [6.00.2900.2180] . . c:\windows\$NtUninstallKB982381$\mshtml.dll

[-] 2008-04-14 . D165DFCB4EA452510E53416F573018BB . 343040 . . [7.0.2600.5512] . . c:\windows\ServicePackFiles\i386\msvcrt.dll
[-] 2008-04-14 . D165DFCB4EA452510E53416F573018BB . 343040 . . [7.0.2600.5512] . . c:\windows\system32\msvcrt.dll
[-] 2004-08-18 . 91CC3E4CCDBBF8E224182C76C87E454F . 343040 . . [7.0.2600.2180] . . c:\windows\$NtServicePackUninstall$\msvcrt.dll

[-] 2008-06-20 . 1289B7611CCD6CB27596AE92CBF03E35 . 247296 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3GDR\mswsock.dll
[-] 2008-06-20 . 1289B7611CCD6CB27596AE92CBF03E35 . 247296 . . [5.1.2600.5625] . . c:\windows\system32\mswsock.dll
[-] 2008-06-20 . 1289B7611CCD6CB27596AE92CBF03E35 . 247296 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\mswsock.dll
[-] 2008-06-20 . B6CEC406351EA5EF131416D5F52D006F . 247296 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\mswsock.dll
[-] 2008-06-20 . A6E79B60AC73241E5721AB6A573D2B24 . 247296 . . [5.1.2600.3394] . . c:\windows\$NtServicePackUninstall$\mswsock.dll
[-] 2008-06-20 . 37BABA5DBD9027837FDC27E5D6EF33E1 . 247296 . . [5.1.2600.3394] . . c:\windows\$hf_mig$\KB951748\SP2QFE\mswsock.dll
[-] 2008-04-14 . AAC97DAB5F8A0573CF10E0EAC42A7724 . 247296 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\mswsock.dll
[-] 2008-04-14 . AAC97DAB5F8A0573CF10E0EAC42A7724 . 247296 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\mswsock.dll
[-] 2004-08-18 . 64C078BD4EFD441C3F159EDC5EA4420A . 247296 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB951748_0$\mswsock.dll

[-] 2009-02-06 . 1F43B8C0F4C767FBED89711C30E704D9 . 408064 . . [5.1.2600.3520] . . c:\windows\$hf_mig$\KB968389\SP2QFE\netlogon.dll
[-] 2009-02-06 . 1F43B8C0F4C767FBED89711C30E704D9 . 408064 . . [5.1.2600.3520] . . c:\windows\$hf_mig$\KB975467\SP2QFE\netlogon.dll
[-] 2008-04-14 . C2ED0E3408F50BBC149D4F0936E67832 . 407040 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\netlogon.dll
[-] 2008-04-14 . C2ED0E3408F50BBC149D4F0936E67832 . 407040 . . [5.1.2600.5512] . . c:\windows\system32\netlogon.dll
[-] 2004-08-18 . 2591CADAEF7D2242039255028E577688 . 407040 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\netlogon.dll

[-] 2010-02-17 . 4E8268B816B2D27E711A688D6FD0E319 . 2192128 . . [5.1.2600.5938] . . c:\windows\$hf_mig$\KB979683\SP3GDR\ntoskrnl.exe
[-] 2010-02-17 . 4E8268B816B2D27E711A688D6FD0E319 . 2192128 . . [5.1.2600.5938] . . c:\windows\Driver Cache\i386\ntoskrnl.exe
[-] 2010-02-17 . 4E8268B816B2D27E711A688D6FD0E319 . 2192128 . . [5.1.2600.5938] . . c:\windows\system32\ntoskrnl.exe
[-] 2010-02-17 . 4E8268B816B2D27E711A688D6FD0E319 . 2192128 . . [5.1.2600.5938] . . c:\windows\system32\dllcache\ntoskrnl.exe
[-] 2010-02-16 . F24D47F956B2527F8771E38AFE750743 . 2183552 . . [5.1.2600.3670] . . c:\windows\$NtServicePackUninstall$\ntoskrnl.exe
[-] 2010-02-16 . AEDD2FE6BEC6FB4E3B25DB1E15C97560 . 2189056 . . [5.1.2600.3670] . . c:\windows\$hf_mig$\KB979683\SP2QFE\ntoskrnl.exe
[-] 2010-02-16 . 6B2312D847BA95F4E858CB4C3B5F51E1 . 2192256 . . [5.1.2600.5938] . . c:\windows\$hf_mig$\KB979683\SP3QFE\ntoskrnl.exe
[-] 2009-02-10 . 97480EBFE1D4B547657BAD75AAAB1325 . 2191360 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntoskrnl.exe
[-] 2009-02-10 . 97480EBFE1D4B547657BAD75AAAB1325 . 2191360 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP3QFE\ntoskrnl.exe
[-] 2009-02-09 . DF530FCAD41349C92945DF52EBA9F3E4 . 2182656 . . [5.1.2600.3520] . . c:\windows\$NtUninstallKB979683_0$\ntoskrnl.exe
[-] 2009-02-09 . DF530FCAD41349C92945DF52EBA9F3E4 . 2182656 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP2GDR\ntoskrnl.exe
[-] 2009-02-09 . C424407DDD99223BF3248044CBBE91F6 . 2188288 . . [5.1.2600.3520] . . c:\windows\$hf_mig$\KB956572\SP2QFE\ntoskrnl.exe
[-] 2009-02-09 . C424407DDD99223BF3248044CBBE91F6 . 2188288 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP2QFE\ntoskrnl.exe
[-] 2009-02-09 . F48662F55CD8DDD4DBBBCB69DE197725 . 2191232 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3GDR\ntoskrnl.exe
[-] 2009-02-09 . F48662F55CD8DDD4DBBBCB69DE197725 . 2191232 . . [5.1.2600.5755] . . c:\windows\$NtUninstallKB979683$\ntoskrnl.exe
[-] 2009-02-09 . F48662F55CD8DDD4DBBBCB69DE197725 . 2191232 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP3GDR\ntoskrnl.exe
[-] 2008-04-14 . C1536014AC1CB1D5397E31D9735E6571 . 2191104 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\ntoskrnl.exe
[-] 2008-04-14 . C1536014AC1CB1D5397E31D9735E6571 . 2191104 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntoskrnl.exe
[-] 2004-08-18 . 12C80E46DCEC9B82473D1B1B9DA1F16B . 2183168 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB956572_0$\ntoskrnl.exe

[-] 2008-04-14 . 9FA69781CAA7A1DA981A24F240A61A60 . 17408 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\powrprof.dll
[-] 2008-04-14 . 9FA69781CAA7A1DA981A24F240A61A60 . 17408 . . [6.00.2900.5512] . . c:\windows\system32\powrprof.dll
[-] 2004-08-18 . 134B95A1D8FAFD74A68E4B2116DEFA7D . 17408 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\powrprof.dll

[-] 2008-04-14 . 830CE8951C71F361D7D2F38416CC8BC1 . 185856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\scecli.dll
[-] 2008-04-14 . 830CE8951C71F361D7D2F38416CC8BC1 . 185856 . . [5.1.2600.5512] . . c:\windows\system32\scecli.dll
[-] 2004-08-18 . 07119058D451CB7EA4317BCFDA8599A6 . 184832 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\scecli.dll

[-] 2008-04-14 . 5EE949255BABC0B17C09DDB2E59E3878 . 5120 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\sfc.dll
[-] 2008-04-14 . 5EE949255BABC0B17C09DDB2E59E3878 . 5120 . . [5.1.2600.5512] . . c:\windows\system32\sfc.dll
[-] 2004-08-18 . 6CC2D21488333133AE0C9F44F6051CB7 . 5120 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\sfc.dll

[-] 2008-04-14 . BE4A520E29B6391F49E79CCC52044D93 . 14336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\svchost.exe
[-] 2008-04-14 . BE4A520E29B6391F49E79CCC52044D93 . 14336 . . [5.1.2600.5512] . . c:\windows\system32\svchost.exe
[-] 2004-08-18 . DFBA2915B0BF58ABB288CD4C9318CB3F . 14336 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\svchost.exe

[-] 2008-04-14 . C2546CD7A398476F9DF5614B2AE160E8 . 249856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tapisrv.dll
[-] 2008-04-14 . C2546CD7A398476F9DF5614B2AE160E8 . 249856 . . [5.1.2600.5512] . . c:\windows\system32\tapisrv.dll
[-] 2004-08-18 . 37162D29CD61519E6F5EA0DE99786FF6 . 246272 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\tapisrv.dll

[-] 2008-04-14 . E16E0990967374E76F3E40CACAFD3D53 . 578560 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\user32.dll
[-] 2008-04-14 . E16E0990967374E76F3E40CACAFD3D53 . 578560 . . [5.1.2600.5512] . . c:\windows\system32\user32.dll
[-] 2004-08-18 . 1B4CCC59980DA34E75F20E42B283B027 . 577024 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\user32.dll

[-] 2008-04-14 . 7DC1830F22E7D275B438127B68030239 . 26112 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\userinit.exe
[-] 2008-04-14 . 7DC1830F22E7D275B438127B68030239 . 26112 . . [5.1.2600.5512] . . c:\windows\system32\userinit.exe
[-] 2004-08-18 . 836F7960362FF95C5D49E40B891F2CFC . 24576 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\userinit.exe

[-] 2010-05-06 . B7ECEF0CCF63119356E174A78C185171 . 916480 . . [8.00.6001.18923] . . c:\windows\SoftwareDistribution\Download\4da92e2c99b7232d7106179052438045\SP3GDR\wininet.dll
[-] 2010-05-06 . B7ECEF0CCF63119356E174A78C185171 . 916480 . . [8.00.6001.18923] . . c:\windows\system32\wininet.dll
[-] 2010-05-06 . B7ECEF0CCF63119356E174A78C185171 . 916480 . . [8.00.6001.18923] . . c:\windows\system32\dllcache\wininet.dll
[-] 2010-05-06 . 72064DA077E9D6912F39438D97CC0C60 . 919040 . . [8.00.6001.23014] . . c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\wininet.dll
[-] 2010-05-06 . 72064DA077E9D6912F39438D97CC0C60 . 919040 . . [8.00.6001.23014] . . c:\windows\SoftwareDistribution\Download\4da92e2c99b7232d7106179052438045\SP3QFE\wininet.dll
[-] 2010-04-16 . 9D7E8909D5A4A2EADD1154CA9E098AB2 . 668160 . . [6.00.2900.5969] . . c:\windows\$hf_mig$\KB982381\SP3GDR\wininet.dll
[-] 2010-04-16 . 5429E4C33C10DA9A6BED641681B3D2BD . 669696 . . [6.00.2900.5969] . . c:\windows\$hf_mig$\KB982381\SP3QFE\wininet.dll
[-] 2010-04-16 . 8B1D8121326F8E35FE4190377277393C . 663040 . . [6.00.2900.3698] . . c:\windows\ie8\wininet.dll
[-] 2010-04-16 . 18EC32B0148FD4D0DECBEF71EF6DB626 . 669696 . . [6.00.2900.3698] . . c:\windows\$hf_mig$\KB982381\SP2QFE\wininet.dll
[-] 2009-03-08 . 6CE32F7778061CCC5814D5E0F282D369 . 914944 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB982381-IE8\wininet.dll
[-] 2008-04-14 . 3FE5E65A7ED9EC98AEE9167CA07812D3 . 667136 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\wininet.dll
[-] 2004-08-18 . 50D263E3454E8357D13BB598129185AD . 657408 . . [6.00.2900.2180] . . c:\windows\$NtUninstallKB982381$\wininet.dll

[-] 2008-04-14 . 951D473917C51F21496D914CF6E5DDD1 . 82432 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ws2_32.dll
[-] 2008-04-14 . 951D473917C51F21496D914CF6E5DDD1 . 82432 . . [5.1.2600.5512] . . c:\windows\system32\ws2_32.dll
[-] 2004-08-18 . 382E9B87F1282E697C67AF84E34E35E2 . 82944 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ws2_32.dll

[-] 2008-04-14 . 859F7735F199C90403340183A3DDFB78 . 19968 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ws2help.dll
[-] 2008-04-14 . 859F7735F199C90403340183A3DDFB78 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\ws2help.dll
[-] 2004-08-18 . C2B86666FC44B48903AD6016D15A23DF . 19968 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ws2help.dll

[-] 2008-04-14 . 27AFD587C462E280EE046B8CCA3C2CD1 . 1034240 . . [6.00.2900.5512] . . c:\windows\explorer.exe
[-] 2008-04-14 . 27AFD587C462E280EE046B8CCA3C2CD1 . 1034240 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\explorer.exe
[-] 2004-08-18 . 53114D57AB73A406AC7F602227781A99 . 1032704 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\explorer.exe

[-] 2008-04-14 . 35B91147124F64AC8081A2EDB9EA4DEE . 171008 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\srsvc.dll
[-] 2008-04-14 . 35B91147124F64AC8081A2EDB9EA4DEE . 171008 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
[-] 2004-08-18 . 3CD57F31A64D32FDB28918B16D1E6AAC . 170496 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\srsvc.dll

[-] 2008-04-14 . 278A14BEDEF58687EAF8BEC056A78D8B . 13824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\wscntfy.exe
[-] 2008-04-14 . 278A14BEDEF58687EAF8BEC056A78D8B . 13824 . . [5.1.2600.5512] . . c:\windows\system32\wscntfy.exe
[-] 2004-08-18 . 93F75FF033BAA186D08115D73BFE3D32 . 13824 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\wscntfy.exe

[-] 2008-04-14 . EAA4BB9EDB3FB10CF8979FE65E63658F . 129024 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\xmlprov.dll
[-] 2008-04-14 . EAA4BB9EDB3FB10CF8979FE65E63658F . 129024 . . [5.1.2600.5512] . . c:\windows\system32\xmlprov.dll
[-] 2004-08-18 . 9B835D4C64860B155A1701D5092EC9E4 . 129536 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\xmlprov.dll

[-] 2008-04-14 . 2EE99F67C930931EB404DADCE57E976E . 56320 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\eventlog.dll
[-] 2008-04-14 . 2EE99F67C930931EB404DADCE57E976E . 56320 . . [5.1.2600.5512] . . c:\windows\system32\eventlog.dll
[-] 2004-08-18 . 6EB66066D5C0175320CFEA0A4C74C88F . 55808 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\eventlog.dll

[-] 2008-04-14 . 56A6034E7764E23D9114223EB3523925 . 1571840 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\sfcfiles.dll
[-] 2008-04-14 . 56A6034E7764E23D9114223EB3523925 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
[-] 2004-08-18 . 5CA2E2BA624D6F2C7A581C91E70394CB . 1548288 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\sfcfiles.dll

[-] 2008-04-14 . A756B8F0F7BAFBA6DFE39F7D169F2519 . 15360 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ctfmon.exe
[-] 2008-04-14 . A756B8F0F7BAFBA6DFE39F7D169F2519 . 15360 . . [5.1.2600.5512] . . c:\windows\system32\ctfmon.exe
[-] 2004-08-18 . A5BAA91475167161DEA02BA3C4CA4F59 . 15360 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ctfmon.exe

[-] 2008-04-14 . B927443008910B412BEC72FC41C1BAD0 . 135168 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\shsvcs.dll
[-] 2008-04-14 . B927443008910B412BEC72FC41C1BAD0 . 135168 . . [6.00.2900.5512] . . c:\windows\system32\shsvcs.dll
[-] 2004-08-18 . 8BA76BD2A943F642F267A296A15776D2 . 134656 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\shsvcs.dll

[-] 2008-04-14 . 8F31505484A190D5B22274708799F4EC . 59904 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\regsvc.dll
[-] 2008-04-14 . 8F31505484A190D5B22274708799F4EC . 59904 . . [5.1.2600.5512] . . c:\windows\system32\regsvc.dll
[-] 2004-08-18 . 5B21208FCF8970BB61FE98E19D828714 . 59904 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\regsvc.dll

[-] 2008-04-14 . 3FF232A7731621B8902D81D42418C93C . 192512 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\schedsvc.dll
[-] 2008-04-14 . 3FF232A7731621B8902D81D42418C93C . 192512 . . [5.1.2600.5512] . . c:\windows\system32\schedsvc.dll
[-] 2004-08-18 . 29AC93307C6182DBE336BCA314947F28 . 190976 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\schedsvc.dll

[-] 2008-04-14 . BECD5271DC4E3B7C3D035F790FCBC1E5 . 71680 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ssdpsrv.dll
[-] 2008-04-14 . BECD5271DC4E3B7C3D035F790FCBC1E5 . 71680 . . [5.1.2600.5512] . . c:\windows\system32\ssdpsrv.dll
[-] 2004-08-18 . 88C28F53F53438DAFCD95E99C837C61E . 71680 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ssdpsrv.dll

[-] 2008-04-14 . A75DD6FC3DBEE4FFF5EBC9F2C28BB66E . 295936 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\termsrv.dll
[-] 2008-04-14 . A75DD6FC3DBEE4FFF5EBC9F2C28BB66E . 295936 . . [5.1.2600.5512] . . c:\windows\system32\termsrv.dll
[-] 2004-08-18 . 2F5919F2F6EE7A845893D9C3AA2BC56A . 295936 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\termsrv.dll

[-] 2008-04-14 . 6B8E7A90E576D4FE308F97C69060A171 . 171008 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\appmgmts.dll
[-] 2008-04-14 . 6B8E7A90E576D4FE308F97C69060A171 . 171008 . . [5.1.2600.5512] . . c:\windows\system32\appmgmts.dll
[-] 2004-08-18 . 421184F91EAE5C6E78E653C6B32AAE84 . 171008 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\appmgmts.dll

[-] 2004-08-18 . AFDFF022A01F0B11C776F0860C3B282F . 11776 . . [5.1.2600.0] . . c:\windows\system32\drivers\acpiec.sys

[-] 2008-04-13 16:39 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\ServicePackFiles\i386\aec.sys
[-] 2008-04-13 16:39 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\system32\drivers\aec.sys
[-] 2004-08-03 20:39 . 841F385C6CFAF66B58FBD898722BB4F0 . 142464 . . [5.1.2601.2078] . . c:\windows\$NtServicePackUninstall$\aec.sys

[-] 2008-04-13 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\agp440.sys
[-] 2008-04-13 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\system32\drivers\agp440.sys

[-] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ip6fw.sys
[-] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ip6fw.sys
[-] 2004-08-18 . 4448006B6BC60E6C027932CFC38D6855 . 29056 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ip6fw.sys

[-] 2008-04-14 03:21 . 7C3351F60B759D5D917E68342AE3307C . 927504 . . [4.1.0.61] . . c:\windows\ServicePackFiles\i386\mfc40u.dll
[-] 2008-04-14 03:21 . 7C3351F60B759D5D917E68342AE3307C . 927504 . . [4.1.0.61] . . c:\windows\system32\mfc40u.dll
[-] 2004-08-18 12:00 . A9D81C87BEF253D4CE3A5F8CEE2526C4 . 924432 . . [4.1.6140] . . c:\windows\$NtServicePackUninstall$\mfc40u.dll

[-] 2008-04-14 . 221CD1C815B8A6B79389C3F5D1018DE8 . 33792 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\msgsvc.dll
[-] 2008-04-14 . 221CD1C815B8A6B79389C3F5D1018DE8 . 33792 . . [5.1.2600.5512] . . c:\windows\system32\msgsvc.dll
[-] 2004-08-18 . 8B2FCBD881879B55BE40B41F12FFC431 . 33792 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\msgsvc.dll

[-] 2008-04-14 03:21 . 6199B2AE3F9DB9CB6DB230471A1DC601 . 52224 . . [9.0.1.56] . . c:\windows\system32\mspmsnsv.dll
[-] 2008-04-14 03:21 . 6199B2AE3F9DB9CB6DB230471A1DC601 . 52224 . . [9.0.1.56] . . c:\windows\system32\dllcache\mspmsnsv.dll
[-] 2004-08-18 12:00 . E02E913B3841717A890A644EE167B9A5 . 52224 . . [9.0.1.56] . . c:\windows\$NtServicePackUninstall$\mspmsnsv.dll

[-] 2010-02-17 . 7F87EDF3C7C626D336533D2580940A00 . 2065920 . . [5.1.2600.3670] . . c:\windows\$hf_mig$\KB979683\SP2QFE\ntkrnlpa.exe
[-] 2010-02-16 . 27DE458FE1E1A618836ADB61873BC9E8 . 2060544 . . [5.1.2600.3670] . . c:\windows\$NtServicePackUninstall$\ntkrnlpa.exe
[-] 2010-02-16 . 6C31566C176BC28C7D73BC6332642A58 . 2068992 . . [5.1.2600.5938] . . c:\windows\$hf_mig$\KB979683\SP3GDR\ntkrnlpa.exe
[-] 2010-02-16 . 6C31566C176BC28C7D73BC6332642A58 . 2068992 . . [5.1.2600.5938] . . c:\windows\Driver Cache\i386\ntkrnlpa.exe
[-] 2010-02-16 . 6C31566C176BC28C7D73BC6332642A58 . 2068992 . . [5.1.2600.5938] . . c:\windows\system32\ntkrnlpa.exe
[-] 2010-02-16 . 6C31566C176BC28C7D73BC6332642A58 . 2068992 . . [5.1.2600.5938] . . c:\windows\system32\dllcache\ntkrnlpa.exe
[-] 2010-02-16 . DCC3D91A3DEDBBA9ECFFA6028D872CF5 . 2069120 . . [5.1.2600.5938] . . c:\windows\$hf_mig$\KB979683\SP3QFE\ntkrnlpa.exe
[-] 2009-02-10 . D721665942F74CA7FF4162A0761CBB0A . 2068224 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3GDR\ntkrnlpa.exe
[-] 2009-02-10 . D721665942F74CA7FF4162A0761CBB0A . 2068224 . . [5.1.2600.5755] . . c:\windows\$NtUninstallKB979683$\ntkrnlpa.exe
[-] 2009-02-10 . D721665942F74CA7FF4162A0761CBB0A . 2068224 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP3GDR\ntkrnlpa.exe
[-] 2009-02-09 . 73A13AA10E146A3E2B4AC6D007953A74 . 2059904 . . [5.1.2600.3520] . . c:\windows\$NtUninstallKB979683_0$\ntkrnlpa.exe
[-] 2009-02-09 . 73A13AA10E146A3E2B4AC6D007953A74 . 2059904 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP2GDR\ntkrnlpa.exe
[-] 2009-02-09 . BB64DC108F8C4EE4D4B7998AA19E5FA7 . 2065152 . . [5.1.2600.3520] . . c:\windows\$hf_mig$\KB956572\SP2QFE\ntkrnlpa.exe
[-] 2009-02-09 . BB64DC108F8C4EE4D4B7998AA19E5FA7 . 2065152 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP2QFE\ntkrnlpa.exe
[-] 2009-02-09 . FF8A3F180A224AA27EBAB937CA027F4D . 2068352 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntkrnlpa.exe
[-] 2009-02-09 . FF8A3F180A224AA27EBAB937CA027F4D . 2068352 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP3QFE\ntkrnlpa.exe
[-] 2008-04-14 . 4DEE41C45E803DB91A72FD1BA69C05EE . 2067968 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\ntkrnlpa.exe
[-] 2008-04-14 . 4DEE41C45E803DB91A72FD1BA69C05EE . 2067968 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntkrnlpa.exe
[-] 2004-08-18 . E86DD06F2B8F919DDF23F78A3BF2AA23 . 2059008 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB956572_0$\ntkrnlpa.exe

[-] 2008-04-14 03:21 . 023DD70573D644F3D9C8B1258A7BFD08 . 435712 . . [5.1.2400.5512] . . c:\windows\ServicePackFiles\i386\ntmssvc.dll
[-] 2008-04-14 03:21 . 023DD70573D644F3D9C8B1258A7BFD08 . 435712 . . [5.1.2400.5512] . . c:\windows\system32\ntmssvc.dll
[-] 2004-08-18 12:00 . D8D2B13BA93AE830B1A637DF571D1195 . 435712 . . [5.1.2400.2180] . . c:\windows\$NtServicePackUninstall$\ntmssvc.dll

[-] 2008-04-14 . 651BD90DCEE5B7BDC74A2EB7C9266F9E . 186368 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\upnphost.dll
[-] 2008-04-14 . 651BD90DCEE5B7BDC74A2EB7C9266F9E . 186368 . . [5.1.2600.5512] . . c:\windows\system32\upnphost.dll
[-] 2004-08-18 . 984FC1518B0D5B31D76F0E63608E0500 . 185344 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\upnphost.dll

[-] 2008-04-14 . 8E009E7AC012823845D5F39A77F4A27F . 367616 . . [5.3.2600.5512] . . c:\windows\ServicePackFiles\i386\dsound.dll
[-] 2008-04-14 . 8E009E7AC012823845D5F39A77F4A27F . 367616 . . [5.3.2600.5512] . . c:\windows\system32\dsound.dll
[-] 2004-08-18 . 8ECC475F5BAD26DB85943F888D62E364 . 367616 . . [5.3.2600.2180] . . c:\windows\$NtServicePackUninstall$\dsound.dll

[-] 2008-04-14 . 3B8AE11A3419DF8239183E94888702FA . 1689088 . . [5.03.2600.5512] . . c:\windows\ServicePackFiles\i386\d3d9.dll
[-] 2008-04-14 . 3B8AE11A3419DF8239183E94888702FA . 1689088 . . [5.03.2600.5512] . . c:\windows\system32\d3d9.dll
[-] 2004-08-18 . A19F5837E52D57DB66D9DB55BFCC7796 . 1689088 . . [5.03.2600.2180] . . c:\windows\$NtServicePackUninstall$\d3d9.dll

[-] 2008-04-14 . EDAD701F01FFD9B5799B8FCF1CF6BDA7 . 279552 . . [5.03.2600.5512] . . c:\windows\ServicePackFiles\i386\ddraw.dll
[-] 2008-04-14 . EDAD701F01FFD9B5799B8FCF1CF6BDA7 . 279552 . . [5.03.2600.5512] . . c:\windows\system32\ddraw.dll
[-] 2004-08-18 . 0F9A5DD4503E82B085D8B1336B961A81 . 266240 . . [5.03.2600.2180] . . c:\windows\$NtServicePackUninstall$\ddraw.dll

[-] 2008-04-14 03:21 . 16C195EBC0A3EC35C48D0C2D9A346BAB . 84992 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\olepro32.dll
[-] 2008-04-14 03:21 . 16C195EBC0A3EC35C48D0C2D9A346BAB . 84992 . . [5.1.2600.5512] . . c:\windows\system32\olepro32.dll
[-] 2004-08-18 12:00 . 33F14F23DFAE4B43CDD4E535CD7C1963 . 83456 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\olepro32.dll

[-] 2008-04-14 . 1682285F7C0934C764A0EBBC568153CA . 39936 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\perfctrs.dll
[-] 2008-04-14 . 1682285F7C0934C764A0EBBC568153CA . 39936 . . [5.1.2600.5512] . . c:\windows\system32\perfctrs.dll
[-] 2004-08-18 . 6C08FF4B76506676617E03C34ECCFB11 . 39936 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\perfctrs.dll
.
((((((((((((((((((((((((((((( SnapShot@2010-07-12_17.21.40 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-07-12 18:43 . 2010-07-12 18:43 16384 c:\windows\Temp\Perflib_Perfdata_5c0.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-06-22 39408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2006-04-04 16120832]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-07-17 13533184]
"nwiz"="nwiz.exe" [2008-07-17 1657376]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-07-17 86016]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-06-20 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-06-09 976832]
"OrderReminder"="c:\program files\Hewlett-Packard\OrderReminder\OrderReminder.exe" [2005-03-18 98304]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-03-18 421888]
"iTunesHelper"="c:\software\iTunes\iTunesHelper.exe" [2010-06-15 141624]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Software\\iTunes\\iTunes.exe"=
"c:\\Software\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Software\\ICQ\\ICQ7.2\\ICQ.exe"=
"c:\\Software\\ICQ\\ICQ7.2\\aolload.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

R2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-06-22 136176]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [2010-03-28 246520]
R3 SetupNTGLM7X;SetupNTGLM7X;D:\NTGLM7X.sys [x]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-06-20 691696]

.
Obsah adresáře 'Naplánované úlohy'

2010-07-06 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2009-10-22 09:50]

2010-07-11 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-06-22 07:39]

2010-07-11 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-06-22 07:39]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Settings,ProxyOverride = *.local
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: WikiKomentáře Google... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
IE: {{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - c:\software\ICQ\ICQ7.2\ICQ.exe
FF - ProfilePath - c:\documents and settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\wh3yq5jo.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=2.0.0.4&q=
FF - component: c:\documents and settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\wh3yq5jo.default\extensions\DTToolbar@toolbarnet.com\components\DTToolbarFF.dll
FF - plugin: c:\program files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\software\iTunes\Mozilla Plugins\npitunes.dll
FF - plugin: c:\xstandard\Bin\NPXStandard.dll

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-07-12 20:49
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-1614895754-343818398-725345543-500\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (Administrator)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,e6,1a,c1,b7,40,ad,ac,4f,95,78,8c,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,e6,1a,c1,b7,40,ad,ac,4f,95,78,8c,\
"6256FFB019F8FDFBD36745B06F4540E9AEAF222A25"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,e6,1a,c1,b7,40,ad,ac,4f,95,78,8c,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10h_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10h_ActiveX.exe"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Celkový čas: 2010-07-12 20:50:33
ComboFix-quarantined-files.txt 2010-07-12 18:50
ComboFix2.txt 2010-07-12 17:24

Před spuštěním: Volných bajtů: 227 583 971 328
Po spuštění: Volných bajtů: 227 574 345 728

- - End Of File - - A31218CB6EC31FE38BE6BFE8711DB6CF

[motji]

doporučuji odinstalovat
c:\program files\TrojanHunter 5.3

Tuto složku nzáte?
C:\XStandard


Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

[morgothcz]

ad 1) trojanhunter jsem odinstaloval před prvním skenem, v nástroji Přidat nebo odebrat programy již není. Zdá se, že zmíněná složka obsahuje pouze zbytkové logy a konfigurační soubory. Program spustit nejde.

ad 2) XStandart je software do práce, v podstatě textový editor.

ad 3) MBAM jsem stáhnul, uspěšně stáhnul, ale spustit se mi nepodařil. Vyskočilo hlášení s hlavičkou MBAM: Run-time error '372': Failed to load control 'vbalGrid' from vbalsgrid6.ocx. Your version of vbalsgrid6.ocx may be outdated. Make sure you are using the version of the control that was probided with your application.
Uninstal, opětovné stažení a instalace nepomohla.

[motji]

Zkuste to opravit podle tohoto topicu
http://forums.malwarebytes.org/index.php?showtopic=7377

Jak to vypadá s počítačem?

[morgothcz]

Problém nastal při pokusu instalovat. Okno Windows Installer:
Instalační služba Windows Installer není dostupná. To může nastat, pokud je systém Windows spuštěn v nouzovém režimu nebo pokud není služba Windows Installer správně nainstalována. Obraťte se na pracovníky odborné pomoci.

OS v nouzovém režimu neběží, takže předpokládám, že je tato služba poškozena. S počítačem to vypadá v podstatě stejně jako nazačátku. Nemohu kopírovat soubory (vytvářet ano), IE nejde spustit, nic nejde instalovat, pokud to nemá vlastní instaler. Dalších příznaků jsem si nevšiml.

Napadlo mě zkusit opravit Windows pomocí instalačního CD a pak se pokusit zneškodnit havěť. Nebo v případně dalších komplikaci naformátovat a nahodit systém znovu. Uživatelé by měli mít všechna data na externím disku. Předem děkuji za radu.

[motji]

Zkuste tu opravu z instalačního cd .

[morgothcz]

Takže oprava dokončena, PC chodí lépe než předtím, nicméně IE stále stávkuje. Teď místo spuštění vytvoří svého zástupce. Dalších příznaků jsem si nevšiml. Nepočítám, že mi windows neobnovili původní uživatelský účet, ale vytvořili nový. Programy zřejmě zůstaly zachovány a funkční. Jdu zkusit nainstalovat NODa

[motji]

Pak spustte znovu combofix

[morgothcz]

s tím mám malý problém. combofix mi píše varovaní, že mám ukončit antivirové program AVG a ESET Smart Security. AVG by neměl být nainstalován, natož spuštěn a ESS se mi nedaří vypnout. U hodin ho nemám, proces ekrn.exe ukončit nejde, hlásí Přístup odepřen, a v Tento počítač/Spravovat/Služby mi ESS vypnout nenabízí :/

[motji]

Spustte ho i tak.
Já už dnes končím, budu tu zase zítra

[morgothcz]

Děkuji za pomoc a Váš čas, přeji dobrou noc.
Log připravuji, je trochu delší

[morgothcz]

no je to trochu moc dlouhý, tak přikládám jako soubor