Logfile of random's system information tool 1.09 (written by random/random)
Run by Hanik at 2011-07-25 22:45:38
Microsoft® Windows Vista™ Home Premium
System drive C: has 249 GB (82%) free of 305 GB
Total RAM: 1919 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:45:54, on 25.7.2011
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16386)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\conime.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Java\jre6\bin\jucheck.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\_PIRI\program files\SALAMAND.EXE
C:\Users\Hanik\Downloads\RSIT.exe
C:\Users\Hanik\Downloads\RSIT.exe
C:\Program Files\trend micro\Hanik.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [CorelDRAW Graphics Suite 11b] C:\Program Files\Corel\Corel Graphics 12\Languages\CZ\Programs\Registration.exe /title="CorelDRAW Graphics Suite 12" /date=080911 serial=DR12WUX-1125505-NWX lang=CZ
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
--
End of file - 4598 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2011-07-24 321312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-07-04 820864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-07-24 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-07-04 820864]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2006-11-02 1004136]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-07-04 3493720]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2011-07-24 149280]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"CorelDRAW Graphics Suite 11b"=C:\Program Files\Corel\Corel Graphics 12\Languages\CZ\Programs\Registration.exe [2004-06-23 729088]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2006-11-02 1196032]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-06-16 221184]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
======List of files/folders created in the last 1 month======
2011-07-25 22:45:38 ----D---- C:\rsit
2011-07-25 22:45:38 ----D---- C:\Program Files\trend micro
2011-07-25 21:22:11 ----D---- C:\Users\Hanik\AppData\Roaming\PSpad
2011-07-25 21:22:04 ----D---- C:\Program Files\PSPad editor
2011-07-25 21:10:04 ----D---- C:\Users\Hanik\AppData\Roaming\Corel
2011-07-25 21:04:01 ----D---- C:\ProgramData\InstallShield
2011-07-25 20:55:01 ----D---- C:\Program Files\Common Files\Corel
2011-07-25 20:54:54 ----D---- C:\Program Files\Common Files\Designer
2011-07-25 20:53:41 ----D---- C:\Program Files\Corel
2011-07-25 18:43:08 ----D---- C:\Users\Hanik\AppData\Roaming\ZipGenius
2011-07-25 18:42:31 ----D---- C:\Program Files\ZipGenius 6
2011-07-25 18:09:47 ----D---- C:\Program Files\Common Files\InstallShield
2011-07-25 16:23:23 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-07-25 16:23:23 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-07-25 16:23:23 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-07-25 16:21:50 ----A---- C:\Windows\system32\INETRES.dll
2011-07-25 16:21:50 ----A---- C:\Windows\system32\inetcomm.dll
2011-07-25 16:20:15 ----A---- C:\Windows\system32\msasn1.dll
2011-07-25 16:18:50 ----A---- C:\Windows\system32\connect.dll
2011-07-25 16:18:32 ----A---- C:\Windows\system32\wmi.dll
2011-07-25 16:18:32 ----A---- C:\Windows\system32\imagehlp.dll
2011-07-25 16:18:32 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2011-07-25 16:17:12 ----A---- C:\Windows\system32\rpcrt4.dll
2011-07-25 16:14:16 ----A---- C:\Windows\system32\nshhttp.dll
2011-07-25 16:14:16 ----A---- C:\Windows\system32\httpapi.dll
2011-07-25 16:14:16 ----A---- C:\Windows\system32\drivers\http.sys
2011-07-25 16:11:20 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-07-25 16:11:05 ----A---- C:\Windows\system32\crypt32.dll
2011-07-25 16:10:52 ----A---- C:\Windows\system32\rastls.dll
2011-07-25 16:10:52 ----A---- C:\Windows\system32\raschap.dll
2011-07-25 16:10:30 ----A---- C:\Windows\system32\WSDApi.dll
2011-07-25 16:10:11 ----A---- C:\Windows\system32\poqexec.exe
2011-07-25 16:10:01 ----A---- C:\Windows\system32\win32k.sys
2011-07-25 16:10:01 ----A---- C:\Windows\system32\user32.dll
2011-07-25 16:09:48 ----A---- C:\Windows\system32\msxml6r.dll
2011-07-25 16:09:48 ----A---- C:\Windows\system32\msxml6.dll
2011-07-25 16:08:49 ----A---- C:\Windows\system32\msyuv.dll
2011-07-25 16:08:48 ----A---- C:\Windows\system32\tsbyuv.dll
2011-07-25 16:08:48 ----A---- C:\Windows\system32\quartz.dll
2011-07-25 16:08:48 ----A---- C:\Windows\system32\msvidc32.dll
2011-07-25 16:08:48 ----A---- C:\Windows\system32\msvfw32.dll
2011-07-25 16:08:48 ----A---- C:\Windows\system32\msrle32.dll
2011-07-25 16:08:48 ----A---- C:\Windows\system32\mciavi32.dll
2011-07-25 16:08:48 ----A---- C:\Windows\system32\iyuv_32.dll
2011-07-25 16:08:48 ----A---- C:\Windows\system32\avifil32.dll
2011-07-25 16:08:48 ----A---- C:\Windows\system32\avicap32.dll
2011-07-25 16:08:23 ----A---- C:\Windows\system32\qmgr.dll
2011-07-25 16:08:08 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2011-07-25 16:06:24 ----A---- C:\Windows\system32\wmploc.DLL
2011-07-25 16:06:24 ----A---- C:\Windows\system32\wmp.dll
2011-07-25 16:06:23 ----A---- C:\Windows\system32\spwmp.dll
2011-07-25 16:06:23 ----A---- C:\Windows\system32\dxmasf.dll
2011-07-25 16:06:20 ----A---- C:\Windows\system32\unregmp2.exe
2011-07-24 20:50:59 ----D---- C:\Windows\system32\Macromed
2011-07-24 20:14:02 ----D---- C:\Program Files\Common Files\Adobe
2011-07-24 20:14:02 ----D---- C:\Program Files\Adobe
2011-07-24 20:13:12 ----D---- C:\ProgramData\Adobe
2011-07-24 19:58:46 ----A---- C:\Windows\system32\javaws.exe
2011-07-24 19:58:46 ----A---- C:\Windows\system32\deploytk.dll
2011-07-24 19:58:45 ----A---- C:\Windows\system32\javaw.exe
2011-07-24 19:58:45 ----A---- C:\Windows\system32\java.exe
2011-07-24 19:58:22 ----D---- C:\Program Files\Java
2011-07-24 01:34:35 ----N---- C:\Windows\system32\MpSigStub.exe
2011-07-23 10:10:35 ----D---- C:\Users\Hanik\AppData\Roaming\Macromedia
2011-07-23 10:10:35 ----D---- C:\Users\Hanik\AppData\Roaming\Adobe
2011-07-23 10:01:22 ----D---- C:\Program Files\Defraggler
2011-07-23 09:28:12 ----D---- C:\Program Files\CCleaner
2011-07-23 09:02:51 ----D---- C:\Windows\Panther
2011-07-23 08:57:25 ----D---- C:\Program Files\Google
2011-07-23 08:57:24 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2011-07-23 08:57:23 ----A---- C:\Windows\system32\drivers\aswSP.sys
2011-07-23 08:57:21 ----A---- C:\Windows\system32\drivers\aswRdr.sys
2011-07-23 08:57:20 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2011-07-23 08:57:20 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2011-07-23 08:57:19 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2011-07-23 08:56:50 ----SHD---- C:\Windows\Installer
2011-07-23 08:56:45 ----A---- C:\Windows\avastSS.scr
2011-07-23 08:56:44 ----A---- C:\Windows\system32\aswBoot.exe
2011-07-23 08:56:26 ----D---- C:\ProgramData\AVAST Software
2011-07-23 08:56:26 ----D---- C:\Program Files\AVAST Software
2011-07-23 08:44:02 ----A---- C:\Windows\system32\wintrust.dll
2011-07-23 08:43:34 ----A---- C:\Windows\system32\cabview.dll
2011-07-23 08:36:03 ----D---- C:\Users\Hanik\AppData\Roaming\Identities
2011-07-23 08:35:54 ----SD---- C:\Users\Hanik\AppData\Roaming\Microsoft
2011-07-23 08:35:54 ----D---- C:\Users\Hanik\AppData\Roaming\Media Center Programs
2011-07-23 08:35:24 ----A---- C:\Windows\system32\wups2.dll
2011-07-23 08:35:24 ----A---- C:\Windows\system32\wucltux.dll
2011-07-23 08:35:24 ----A---- C:\Windows\system32\wuaueng.dll
2011-07-23 08:35:24 ----A---- C:\Windows\system32\wuauclt.exe
2011-07-23 08:34:07 ----A---- C:\Windows\system32\wups.dll
2011-07-23 08:34:07 ----A---- C:\Windows\system32\wudriver.dll
2011-07-23 08:34:07 ----A---- C:\Windows\system32\wuapi.dll
2011-07-23 08:33:00 ----A---- C:\Windows\system32\wuwebv.dll
2011-07-23 08:33:00 ----A---- C:\Windows\system32\wuapp.exe
2011-07-23 08:31:37 ----SHD---- C:\ProgramData\Šablony
2011-07-23 08:31:37 ----SHD---- C:\ProgramData\Plocha
2011-07-23 08:31:37 ----SHD---- C:\ProgramData\Oblíbené položky
2011-07-23 08:31:37 ----SHD---- C:\ProgramData\Nabídka Start
2011-07-23 08:31:37 ----SHD---- C:\ProgramData\Dokumenty
2011-07-23 08:31:37 ----SHD---- C:\ProgramData\Data aplikací
2011-07-23 08:26:53 ----ASH---- C:\hiberfil.sys
2011-07-23 08:19:08 ----D---- C:\Windows\SoftwareDistribution
2011-07-23 08:16:13 ----D---- C:\Windows\system32\catroot2
2011-07-23 08:15:53 ----D---- C:\Windows\Debug
2011-07-23 08:03:58 ----D---- C:\Windows\Prefetch
======List of files/folders modified in the last 1 month======
2011-07-25 22:45:45 ----D---- C:\Windows\Temp
2011-07-25 22:45:38 ----RD---- C:\Program Files
2011-07-25 21:04:04 ----D---- C:\Windows\System32
2011-07-25 21:04:01 ----HD---- C:\ProgramData
2011-07-25 21:04:00 ----D---- C:\Windows\winsxs
2011-07-25 20:55:25 ----RSD---- C:\Windows\Fonts
2011-07-25 20:55:01 ----D---- C:\Program Files\Common Files
2011-07-25 20:54:54 ----D---- C:\Program Files\Common Files\microsoft shared
2011-07-25 20:54:47 ----SD---- C:\Windows\Downloaded Program Files
2011-07-25 20:53:49 ----D---- C:\Windows
2011-07-25 20:53:27 ----SHD---- C:\System Volume Information
2011-07-25 20:31:40 ----D---- C:\Windows\system32\config
2011-07-25 20:30:45 ----D---- C:\Windows\inf
2011-07-25 20:30:45 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-07-25 20:22:00 ----D---- C:\Windows\system32\WDI
2011-07-25 16:35:39 ----D---- C:\Windows\rescache
2011-07-25 16:33:31 ----D---- C:\Windows\system32\drivers
2011-07-25 16:33:29 ----D---- C:\Program Files\Windows Media Player
2011-07-25 16:33:28 ----D---- C:\Windows\system32\sk-SK
2011-07-25 16:33:28 ----D---- C:\Windows\system32\cs-CZ
2011-07-25 16:33:27 ----D---- C:\Windows\ehome
2011-07-25 16:13:43 ----D---- C:\Windows\system32\catroot
2011-07-24 05:24:12 ----SD---- C:\ProgramData\Microsoft
2011-07-24 05:10:37 ----D---- C:\_PIRI
2011-07-23 09:02:37 ----RAS---- C:\BOOTSECT.BAK
2011-07-23 09:02:35 ----SHD---- C:\Boot
2011-07-23 09:02:35 ----D---- C:\Windows\system32\en-US
2011-07-23 08:57:37 ----D---- C:\Windows\Tasks
2011-07-23 08:57:37 ----D---- C:\Windows\system32\Tasks
2011-07-23 08:41:00 ----D---- C:\Windows\Logs
2011-07-23 08:36:30 ----SHD---- C:\$Recycle.Bin
2011-07-23 08:35:44 ----RD---- C:\Users
2011-07-23 08:31:37 ----D---- C:\Program Files\Windows NT
2011-07-23 08:31:26 ----D---- C:\Windows\system32\restore
2011-07-23 08:19:56 ----D---- C:\Windows\system32\drivers\UMDF
2011-07-22 17:50:18 ----RD---- C:\Program Files (x86)
2011-07-21 22:46:28 ----D---- C:\games
2011-07-21 22:46:25 ----D---- C:\CHAMP
2011-07-21 22:45:03 ----D---- C:\GameHouse Games
2011-07-21 22:44:54 ----D---- C:\BigFishGamesCache
2011-07-20 23:17:27 ----D---- C:\_HANI
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-07-04 25432]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-07-04 441176]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-07-04 309848]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-07-04 43608]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-07-04 19544]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-07-04 54104]
R2 irda;IrDA Protocol; C:\Windows\system32\DRIVERS\irda.sys [2006-11-02 95744]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
R3 irsir;Microsoft Serial Infrared Driver; C:\Windows\system32\DRIVERS\irsir.sys [2006-11-02 20992]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm60x32.sys [2006-11-02 429056]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2006-10-14 4422560]
R3 Ph3xIB32;Philips 713x VU PCI TV Card; C:\Windows\system32\DRIVERS\Ph3xIB32.sys [2007-04-03 1131136]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2006-11-02 82560]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2006-11-02 5632]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2006-11-02 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2006-11-02 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2006-11-02 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2006-11-02 6016]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-07-04 42184]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2006-11-02 22016]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-07-23 136176]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
fb vir - prosim o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
lookingbass
- Návštěvník
- Příspěvky: 10
- Registrován: 25 črc 2011 21:42
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: fb vir - prosim o kontrolu
Zdravím. 
Stáhněte OTL http://oldtimer.geekstogo.com/OTL.scr na plochu
Stáhněte OTL http://oldtimer.geekstogo.com/OTL.scr na plochu
- Spusťte, poté do spodního políčka vložte následující skript.
Kód: Vybrat vše
netsvcs
drivers32
savembr:0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
/md5start
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
hal.dll
logevent.dll
netlogon.dll
ntelogon.dll
scecli.dll
sceclt.dll
ws2_32.dll
autochk.exe
csrss.exe
explorer.exe
lsass.exe
services.exe
smss.exe
spoolsv.exe
svchost.exe
userinit.exe
winlogon.exe
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
cdrom.sys
Changer.sys
fastfat.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
mv61xx.sys
ndis.sys
ntfs.sys
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
symmpi.sys
tcpip.sys
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
/md5stop
C:\windows\system32\spool\prtprocs|dll;true;true;true /FP
%systemroot%\system32\drivers\*.sys /5
%systemroot%\system32\drivers\*.sys /X
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\system32\*.* /5
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\config\*.sav
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\*.* /U /s
%systemroot%\*. /mp /s
%ALLUSERSPROFILE%\Data Aplikací\*.*
%ALLUSERSPROFILE%\Data Aplikací\*.exe /s
%ALLUSERSPROFILE%\Dáta aplikácií\*.*
%ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s
%APPDATA%\*.
%APPDATA%\*.*
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\BITS /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5 - Označte položku Pro všechny uživatele.
- Označte položky Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
- Po dokončení, sem vložte logy OTL.Txt a Extras.txt
-
lookingbass
- Návštěvník
- Příspěvky: 10
- Registrován: 25 črc 2011 21:42
Re: fb vir - prosim o kontrolu
scan probiha, cekam 
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
-
lookingbass
- Návštěvník
- Příspěvky: 10
- Registrován: 25 črc 2011 21:42
Re: fb vir - prosim o kontrolu
OTL logfile created on: 25.7.2011 22:57:46 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Users\Hanik\Desktop
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16386)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,87 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 46,83% Memory free
3,96 Gb Paging File | 2,77 Gb Available in Paging File | 69,92% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 298,09 Gb Total Space | 243,48 Gb Free Space | 81,68% Space Free | Partition Type: NTFS
Computer Name: HANIK-PC | User Name: Hanik | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011.07.25 22:54:35 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Hanik\Desktop\OTL.scr
PRC - [2011.07.24 19:58:30 | 000,386,872 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jucheck.exe
PRC - [2011.07.09 06:51:19 | 001,012,792 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2011.07.04 13:43:54 | 003,493,720 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2006.11.02 14:34:32 | 001,004,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2006.11.02 11:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2006.11.02 11:44:59 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
PRC - [1999.05.15 09:12:26 | 000,351,232 | ---- | M] () -- C:\_PIRI\program files\SALAMAND.EXE
========== Modules (SafeList) ==========
MOD - [2011.07.25 22:54:35 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Hanik\Desktop\OTL.scr
MOD - [2011.07.04 13:43:51 | 000,199,792 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\snxhk.dll
MOD - [2006.11.02 11:38:57 | 001,648,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV - [2011.07.04 13:43:51 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011.06.06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2006.11.02 14:34:32 | 000,263,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
========== Driver Services (SafeList) ==========
DRV - [2011.07.04 13:36:43 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011.07.04 13:36:32 | 000,309,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.07.04 13:35:23 | 000,043,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.07.04 13:32:32 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.07.04 13:32:20 | 000,054,104 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2011.07.04 13:32:12 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2007.04.03 10:43:28 | 001,131,136 | ---- | M] (Philips Semiconductors GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Ph3xIB32.sys -- (Ph3xIB32)
DRV - [2006.11.02 10:57:06 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\irsir.sys -- (irsir)
DRV - [2006.11.02 09:30:56 | 000,429,056 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvm60x32.sys -- (NVENETFD)
DRV - [2006.10.14 05:04:33 | 004,422,560 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-617503589-927058738-2358854330-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-617503589-927058738-2358854330-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
O1 HOSTS File: ([2006.09.18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CorelDRAW Graphics Suite 11b] C:\Program Files\Corel\Corel Graphics 12\Languages\CZ\Programs\Registration.exe (Corel Corporation)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://active.macromedia.com/flash2/cabs/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 88.81.64.1 88.81.92.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img6.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img6.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{a458396e-b4f7-11e0-95a7-00196654c307}\Shell - "" = AutoRun
O33 - MountPoints2\{a458396e-b4f7-11e0-95a7-00196654c307}\Shell\AutoRun\command - "" = J:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - File not found
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2011.07.25 22:54:32 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Users\Hanik\Desktop\OTL.scr
[2011.07.25 22:45:38 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.07.25 22:45:38 | 000,000,000 | ---D | C] -- C:\rsit
[2011.07.25 21:22:11 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Roaming\PSpad
[2011.07.25 21:22:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSPad editor
[2011.07.25 21:22:04 | 000,000,000 | ---D | C] -- C:\Program Files\PSPad editor
[2011.07.25 21:10:04 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Roaming\Corel
[2011.07.25 21:04:01 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallShield
[2011.07.25 20:55:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite 12
[2011.07.25 20:55:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Corel
[2011.07.25 20:54:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Designer
[2011.07.25 20:53:41 | 000,000,000 | ---D | C] -- C:\Program Files\Corel
[2011.07.25 18:43:08 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Roaming\ZipGenius
[2011.07.25 18:42:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZipGenius 6
[2011.07.25 18:42:31 | 000,000,000 | ---D | C] -- C:\Program Files\ZipGenius 6
[2011.07.25 18:09:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2011.07.25 16:21:50 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\INETRES.dll
[2011.07.25 16:18:50 | 001,645,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2011.07.25 16:14:16 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[2011.07.25 16:14:16 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2011.07.25 16:10:52 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\raschap.dll
[2011.07.25 16:10:52 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2011.07.25 16:10:30 | 000,321,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll
[2011.07.25 16:10:11 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2011.07.25 16:10:01 | 002,026,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011.07.25 16:09:48 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll
[2011.07.25 16:08:48 | 001,327,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2011.07.25 16:08:48 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2011.07.25 16:08:48 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2011.07.25 16:08:48 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2011.07.25 16:08:48 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avicap32.dll
[2011.07.25 16:08:08 | 000,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2011.07.25 16:06:24 | 008,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2011.07.25 16:06:23 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2011.07.25 16:06:23 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll
[2011.07.25 16:06:22 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2011.07.25 16:06:20 | 000,311,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe
[2011.07.24 20:50:59 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011.07.24 20:50:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2011.07.24 20:16:26 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Local\Adobe
[2011.07.24 20:14:02 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2011.07.24 20:14:02 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2011.07.24 20:13:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2011.07.24 20:00:22 | 000,000,000 | ---D | C] -- C:\Users\Hanik\kbpki
[2011.07.24 19:58:46 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\deploytk.dll
[2011.07.24 19:58:46 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011.07.24 19:58:45 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011.07.24 19:58:45 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011.07.24 19:58:22 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011.07.24 01:34:35 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2011.07.23 10:10:35 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Roaming\Macromedia
[2011.07.23 10:10:35 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Roaming\Adobe
[2011.07.23 10:01:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
[2011.07.23 10:01:22 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler
[2011.07.23 09:28:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2011.07.23 09:28:12 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011.07.23 09:02:51 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2011.07.23 08:58:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2011.07.23 08:57:25 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Local\Google
[2011.07.23 08:57:25 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2011.07.23 08:57:24 | 000,019,544 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2011.07.23 08:57:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2011.07.23 08:57:23 | 000,309,848 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2011.07.23 08:57:21 | 000,025,432 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2011.07.23 08:57:20 | 000,441,176 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2011.07.23 08:57:20 | 000,043,608 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2011.07.23 08:57:19 | 000,054,104 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2011.07.23 08:56:50 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2011.07.23 08:56:45 | 000,040,112 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2011.07.23 08:56:44 | 000,199,304 | ---- | C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2011.07.23 08:56:26 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2011.07.23 08:56:26 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011.07.23 08:36:22 | 000,000,000 | R--D | C] -- C:\Users\Hanik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011.07.23 08:36:22 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Searches
[2011.07.23 08:36:22 | 000,000,000 | R--D | C] -- C:\Users\Hanik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011.07.23 08:36:03 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Roaming\Identities
[2011.07.23 08:36:01 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Contacts
[2011.07.23 08:36:00 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Local\VirtualStore
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\AppData\Local\Temporary Internet Files
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Šablony
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Soubory cookie
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\SendTo
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Recent
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Okolní tiskárny
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Okolní síť
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Documents\Obrázky
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Nabídka Start
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Local Settings
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Documents\Hudba
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\AppData\Local\Historie
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Documents\Filmy
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Dokumenty
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Data aplikací
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\AppData\Local\Data aplikací
[2011.07.23 08:35:54 | 000,000,000 | --SD | C] -- C:\Users\Hanik\AppData\Roaming\Microsoft
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Videos
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Saved Games
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Pictures
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Music
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Links
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Favorites
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Downloads
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Documents
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Desktop
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011.07.23 08:35:54 | 000,000,000 | -H-D | C] -- C:\Users\Hanik\AppData
[2011.07.23 08:35:54 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Local\Temp
[2011.07.23 08:35:54 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Local\Microsoft
[2011.07.23 08:35:54 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Roaming\Media Center Programs
[2011.07.23 08:35:24 | 002,421,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2011.07.23 08:35:24 | 000,044,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2011.07.23 08:34:07 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2011.07.23 08:34:07 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2011.07.23 08:34:07 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2011.07.23 08:33:00 | 000,171,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2011.07.23 08:33:00 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2011.07.23 08:31:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Šablony
[2011.07.23 08:31:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Plocha
[2011.07.23 08:31:37 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Obrázky
[2011.07.23 08:31:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Oblíbené položky
[2011.07.23 08:31:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Nabídka Start
[2011.07.23 08:31:37 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Hudba
[2011.07.23 08:31:37 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Filmy
[2011.07.23 08:31:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2011.07.23 08:31:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Data aplikací
[2011.07.23 08:19:08 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2011.07.23 08:16:13 | 000,000,000 | ---D | C] -- C:\Windows\System32\catroot2
[2011.07.23 08:15:53 | 000,000,000 | ---D | C] -- C:\Windows\Debug
[2011.07.23 08:03:58 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2011.07.22 21:36:22 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\$$DeleteMe.poqexec.exe.01cc48c9c79bd32a.0000
========== Files - Modified Within 30 Days ==========
[2011.07.25 22:58:59 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.07.25 22:54:35 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Hanik\Desktop\OTL.scr
[2011.07.25 22:24:58 | 000,003,552 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011.07.25 22:24:58 | 000,003,552 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011.07.25 22:02:00 | 000,000,938 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.07.25 21:22:07 | 000,000,753 | ---- | M] () -- C:\Users\Hanik\Desktop\PSPad.lnk
[2011.07.25 21:08:40 | 000,001,077 | ---- | M] () -- C:\Users\Hanik\Desktop\Trace – zástupce.lnk
[2011.07.25 21:07:17 | 000,001,089 | ---- | M] () -- C:\Users\Hanik\Desktop\CorelPP – zástupce.lnk
[2011.07.25 21:07:06 | 000,001,096 | ---- | M] () -- C:\Users\Hanik\Desktop\CorelDRW – zástupce.lnk
[2011.07.25 21:06:50 | 000,001,089 | ---- | M] () -- C:\Users\Hanik\Desktop\Capture – zástupce.lnk
[2011.07.25 20:30:45 | 000,609,944 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.07.25 20:30:45 | 000,473,360 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2011.07.25 20:30:45 | 000,103,726 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.07.25 20:30:45 | 000,081,198 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2011.07.25 20:28:41 | 000,069,632 | ---- | M] () -- C:\Users\Hanik\Documents\cc_20110725_202836.reg
[2011.07.25 20:24:58 | 000,000,934 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.07.25 20:24:24 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.07.25 20:24:04 | 000,893,456 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011.07.25 20:24:02 | 2012,536,832 | -HS- | M] () -- C:\hiberfil.sys
[2011.07.25 19:20:49 | 000,000,850 | ---- | M] () -- C:\Users\Hanik\Desktop\Toolbox – zástupce.lnk
[2011.07.25 18:42:36 | 000,000,898 | ---- | M] () -- C:\Users\Public\Desktop\ZipGenius 6.lnk
[2011.07.25 16:38:00 | 000,002,604 | ---- | M] () -- C:\Users\Hanik\Documents\cc_20110725_163756.reg
[2011.07.25 16:21:50 | 000,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\INETRES.dll
[2011.07.25 16:18:50 | 001,645,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2011.07.25 16:14:16 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[2011.07.25 16:14:16 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2011.07.25 16:10:52 | 000,274,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\raschap.dll
[2011.07.25 16:10:52 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2011.07.25 16:10:30 | 000,321,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll
[2011.07.25 16:10:11 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2011.07.25 16:10:01 | 002,026,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011.07.25 16:09:48 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll
[2011.07.25 16:08:48 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2011.07.25 16:08:48 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2011.07.25 16:08:48 | 000,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2011.07.25 16:08:48 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avicap32.dll
[2011.07.25 16:08:08 | 000,604,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2011.07.25 16:06:25 | 008,147,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2011.07.25 16:06:24 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2011.07.25 16:06:22 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2011.07.25 16:06:20 | 000,311,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe
[2011.07.24 21:40:52 | 000,000,822 | ---- | M] () -- C:\Users\Hanik\Desktop\TOTALCMD – zástupce.lnk
[2011.07.24 20:50:59 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011.07.24 20:14:16 | 000,001,892 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2011.07.24 19:58:30 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deploytk.dll
[2011.07.24 19:58:30 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011.07.24 19:58:30 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011.07.24 19:58:30 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011.07.24 09:00:54 | 000,000,695 | ---- | M] () -- C:\Users\Hanik\Desktop\SALAMAND.lnk
[2011.07.24 08:57:18 | 000,001,537 | ---- | M] () -- C:\Users\Hanik\Desktop\Windows Explorer.lnk
[2011.07.24 03:44:55 | 000,011,264 | ---- | M] () -- C:\Users\Hanik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.07.23 10:01:22 | 000,001,702 | ---- | M] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2011.07.23 09:29:56 | 000,004,854 | ---- | M] () -- C:\Users\Hanik\Documents\cc_20110723_092951.reg
[2011.07.23 09:28:13 | 000,000,804 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.07.23 09:02:37 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
[2011.07.23 08:58:09 | 000,001,971 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011.07.23 08:57:24 | 000,001,829 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2011.07.23 08:57:19 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2011.07.23 08:35:24 | 002,421,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2011.07.23 08:35:24 | 000,044,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2011.07.23 08:34:07 | 000,575,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2011.07.23 08:34:07 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2011.07.23 08:34:07 | 000,035,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2011.07.23 08:33:00 | 000,171,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2011.07.23 08:33:00 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2011.07.23 08:22:40 | 000,041,176 | ---- | M] () -- C:\Windows\System32\license.rtf
[2011.07.23 08:19:56 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\UMDF\Msft_User_WpdFs_01_00_00.Wdf
[2011.07.22 21:36:22 | 000,109,568 | ---- | M] (Microsoft Corporation) -- C:\$$DeleteMe.poqexec.exe.01cc48c9c79bd32a.0000
[2011.07.04 13:43:53 | 000,040,112 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2011.07.04 13:43:51 | 000,199,304 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2011.07.04 13:36:43 | 000,441,176 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2011.07.04 13:36:32 | 000,309,848 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2011.07.04 13:35:23 | 000,043,608 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2011.07.04 13:32:32 | 000,025,432 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2011.07.04 13:32:20 | 000,054,104 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2011.07.04 13:32:12 | 000,019,544 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
========== Files Created - No Company Name ==========
[2011.07.25 22:58:59 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.07.25 21:22:07 | 000,000,753 | ---- | C] () -- C:\Users\Hanik\Desktop\PSPad.lnk
[2011.07.25 21:08:40 | 000,001,077 | ---- | C] () -- C:\Users\Hanik\Desktop\Trace – zástupce.lnk
[2011.07.25 21:07:17 | 000,001,089 | ---- | C] () -- C:\Users\Hanik\Desktop\CorelPP – zástupce.lnk
[2011.07.25 21:07:06 | 000,001,096 | ---- | C] () -- C:\Users\Hanik\Desktop\CorelDRW – zástupce.lnk
[2011.07.25 21:06:50 | 000,001,089 | ---- | C] () -- C:\Users\Hanik\Desktop\Capture – zástupce.lnk
[2011.07.25 20:28:39 | 000,069,632 | ---- | C] () -- C:\Users\Hanik\Documents\cc_20110725_202836.reg
[2011.07.25 19:20:49 | 000,000,850 | ---- | C] () -- C:\Users\Hanik\Desktop\Toolbox – zástupce.lnk
[2011.07.25 18:42:36 | 000,000,898 | ---- | C] () -- C:\Users\Public\Desktop\ZipGenius 6.lnk
[2011.07.25 16:37:59 | 000,002,604 | ---- | C] () -- C:\Users\Hanik\Documents\cc_20110725_163756.reg
[2011.07.24 21:40:52 | 000,000,822 | ---- | C] () -- C:\Users\Hanik\Desktop\TOTALCMD – zástupce.lnk
[2011.07.24 20:14:16 | 000,001,892 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2011.07.24 20:14:15 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2011.07.24 19:53:19 | 000,004,575 | ---- | C] () -- C:\Users\Hanik\Desktop\NOVÁK_PETR.p12
[2011.07.24 09:00:54 | 000,000,695 | ---- | C] () -- C:\Users\Hanik\Desktop\SALAMAND.lnk
[2011.07.24 08:57:18 | 000,001,537 | ---- | C] () -- C:\Users\Hanik\Desktop\Windows Explorer.lnk
[2011.07.23 10:01:22 | 000,001,702 | ---- | C] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2011.07.23 09:29:55 | 000,004,854 | ---- | C] () -- C:\Users\Hanik\Documents\cc_20110723_092951.reg
[2011.07.23 09:28:13 | 000,000,804 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.07.23 08:58:09 | 000,001,971 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011.07.23 08:57:37 | 000,000,938 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.07.23 08:57:36 | 000,000,934 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.07.23 08:57:24 | 000,001,829 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2011.07.23 08:39:05 | 000,011,264 | ---- | C] () -- C:\Users\Hanik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.07.23 08:36:24 | 000,000,949 | ---- | C] () -- C:\Users\Hanik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011.07.23 08:36:20 | 000,000,944 | ---- | C] () -- C:\Users\Hanik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2011.07.23 08:36:01 | 000,000,915 | ---- | C] () -- C:\Users\Hanik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
[2011.07.23 08:26:53 | 2012,536,832 | -HS- | C] () -- C:\hiberfil.sys
[2011.07.23 08:22:28 | 000,000,604 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live.lnk
[2007.01.08 23:09:29 | 000,473,360 | ---- | C] () -- C:\Windows\System32\perfh005.dat
[2007.01.08 23:09:29 | 000,286,912 | ---- | C] () -- C:\Windows\System32\perfi005.dat
[2007.01.08 23:09:29 | 000,081,198 | ---- | C] () -- C:\Windows\System32\perfc005.dat
[2007.01.08 23:09:29 | 000,034,724 | ---- | C] () -- C:\Windows\System32\perfd005.dat
[2006.11.02 14:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006.11.02 14:47:37 | 000,893,456 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006.11.02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 12:33:01 | 000,609,944 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006.11.02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006.11.02 12:33:01 | 000,103,726 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006.11.02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006.11.02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006.11.02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006.11.02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006.11.02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.11.02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006.11.02 09:22:43 | 000,099,999 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2006.11.02 09:22:43 | 000,018,271 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
========== LOP Check ==========
[2011.07.25 18:43:36 | 000,000,000 | ---D | M] -- C:\Users\Hanik\AppData\Roaming\ZipGenius
[2011.07.25 20:21:59 | 000,004,920 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2006.11.02 14:35:15 | 001,196,032 | ---- | M] (Microsoft Corporation)
"ISUSPM Startup" = C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup -- [2004.06.16 06:03:26 | 000,221,184 | ---- | M] (InstallShield Software Corporation)
< >
< MD5 for: AGP440.SYS >
[2006.11.02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\drivers\AGP440.sys
[2006.11.02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys
< MD5 for: ATAPI.SYS >
[2006.11.02 11:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\drivers\atapi.sys
[2006.11.02 11:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
[2008.01.19 07:06:48 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\SoftwareDistribution\Download\c0a17eb89d8e2d806cdee4a2d05890b4\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.16632_none_db337a442479c42c\atapi.sys
[2008.01.19 06:33:23 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36AFC7C6F -- C:\Windows\SoftwareDistribution\Download\c0a17eb89d8e2d806cdee4a2d05890b4\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20757_none_dbac78a93da31a8b\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2006.11.02 11:44:50 | 000,640,000 | ---- | M] (Microsoft Corporation) MD5=C08D1FE284C3330934E45D6E5F5B768B -- C:\Windows\System32\autochk.exe
[2006.11.02 11:44:50 | 000,640,000 | ---- | M] (Microsoft Corporation) MD5=C08D1FE284C3330934E45D6E5F5B768B -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6000.16386_none_dfbd2b4dc4d6121b\autochk.exe
< MD5 for: CDROM.SYS >
[2006.11.02 10:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5E4D303 -- C:\Windows\System32\drivers\cdrom.sys
[2006.11.02 10:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5E4D303 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_e487f727\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2006.11.02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
[2006.11.02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2006.11.02 11:46:03 | 000,123,392 | ---- | M] (Microsoft Corporation) MD5=1C26FB097170A2A91066D1E3A24366E3 -- C:\Windows\System32\cryptsvc.dll
[2006.11.02 11:46:03 | 000,123,392 | ---- | M] (Microsoft Corporation) MD5=1C26FB097170A2A91066D1E3A24366E3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6000.16386_none_73c8d7689de43d15\cryptsvc.dll
< MD5 for: CSRSS.EXE >
[2006.11.02 11:45:00 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=117B7C8A8B026A5DCE5E3180ED05E823 -- C:\Windows\System32\csrss.exe
[2006.11.02 11:45:00 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=117B7C8A8B026A5DCE5E3180ED05E823 -- C:\Windows\winsxs\x86_microsoft-windows-csrss_31bf3856ad364e35_6.0.6000.16386_none_56ad21dbe72a9d78\csrss.exe
< MD5 for: EXPLORER.EXE >
[2008.10.29 08:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\SoftwareDistribution\Download\7061d8bdfc6a60f6588941d7a2c304c7\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008.10.29 08:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\SoftwareDistribution\Download\7061d8bdfc6a60f6588941d7a2c304c7\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008.10.30 05:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\SoftwareDistribution\Download\7061d8bdfc6a60f6588941d7a2c304c7\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2007.08.27 05:10:03 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=6D06CD98D954FE87FB2DB8108793B399 -- C:\Windows\SoftwareDistribution\Download\f411dcb0df2de951a1b7d68be5b8fec7\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16549_none_4fac29707cae347a\explorer.exe
[2007.08.27 04:01:58 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=BD06F0BF753BC704B653C3A50F89D362 -- C:\Windows\SoftwareDistribution\Download\f411dcb0df2de951a1b7d68be5b8fec7\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20668_none_501f261995dcf2cf\explorer.exe
[2008.10.28 04:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\SoftwareDistribution\Download\7061d8bdfc6a60f6588941d7a2c304c7\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2006.11.02 11:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=FD8C53FB002217F6F888BCF6F5D7084D -- C:\Windows\explorer.exe
[2006.11.02 11:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=FD8C53FB002217F6F888BCF6F5D7084D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16386_none_4f7de5167cd15deb\explorer.exe
< MD5 for: FASTFAT.SYS >
[2006.11.02 10:30:49 | 000,142,336 | ---- | M] (Microsoft Corporation) MD5=84A317CB0B3954D3768CDCD018DBF670 -- C:\Windows\System32\drivers\fastfat.sys
[2006.11.02 10:30:49 | 000,142,336 | ---- | M] (Microsoft Corporation) MD5=84A317CB0B3954D3768CDCD018DBF670 -- C:\Windows\winsxs\x86_microsoft-windows-fat_31bf3856ad364e35_6.0.6000.16386_none_ac7c69845a79180b\fastfat.sys
< MD5 for: HAL.DLL >
[2006.11.02 11:51:12 | 000,160,872 | ---- | M] (Microsoft Corporation) MD5=E3A21FC3407DA84C5FF41B5088A67C3B -- C:\Windows\System32\hal.dll
< MD5 for: IASTORV.SYS >
[2006.11.02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\drivers\iaStorV.sys
[2006.11.02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2006.11.02 11:50:24 | 000,047,208 | ---- | M] (Microsoft Corporation) MD5=350FCA7E73CF65BCEF43FAE1E4E91293 -- C:\Windows\System32\drivers\isapnp.sys
[2006.11.02 11:50:24 | 000,047,208 | ---- | M] (Microsoft Corporation) MD5=350FCA7E73CF65BCEF43FAE1E4E91293 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\isapnp.sys
< MD5 for: LSASS.EXE >
[2009.06.15 14:51:56 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=203D86EBD6D8E4C8501B222421E81506 -- C:\Windows\SoftwareDistribution\Download\f0e7510dbdd98e00504ebcf9a6bc42ad\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\lsass.exe
[2009.09.10 16:44:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=2D3AC5E7AC01E905F3ABD2D745FE3A9B -- C:\Windows\SoftwareDistribution\Download\b3da37d1490a6f1e10a887a163a78ba5\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22223_none_a8a80213731ca5a7\lsass.exe
[2009.06.15 14:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\SoftwareDistribution\Download\b3da37d1490a6f1e10a887a163a78ba5\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\lsass.exe
[2009.06.15 14:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\SoftwareDistribution\Download\f0e7510dbdd98e00504ebcf9a6bc42ad\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\lsass.exe
[2009.02.13 09:26:04 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=59DE082968FDD257FFF0D209B9A5B460 -- C:\Windows\SoftwareDistribution\Download\a0f675af602fab14d8ec1c1e7e313f1d\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16820_none_a44eb0105fb4d975\lsass.exe
[2006.11.02 11:45:21 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=6A0E382E74280E4CC0DF17FE2661D003 -- C:\Windows\System32\lsass.exe
[2006.11.02 11:45:21 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=6A0E382E74280E4CC0DF17FE2661D003 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16386_none_a413c8c65fe02762\lsass.exe
[2009.06.15 15:03:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=6F1F23D3599EAE17734451936B7F17C6 -- C:\Windows\SoftwareDistribution\Download\f0e7510dbdd98e00504ebcf9a6bc42ad\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\lsass.exe
[2009.06.15 14:57:59 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A911ECAC81F94ADEAFBE8E3F7873EDB0 -- C:\Windows\SoftwareDistribution\Download\b3da37d1490a6f1e10a887a163a78ba5\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\lsass.exe
[2009.06.15 14:57:59 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A911ECAC81F94ADEAFBE8E3F7873EDB0 -- C:\Windows\SoftwareDistribution\Download\f0e7510dbdd98e00504ebcf9a6bc42ad\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\lsass.exe
[2009.02.13 06:58:37 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=AFF8A58280863629CA4FFA9E0B259F1E -- C:\Windows\SoftwareDistribution\Download\a0f675af602fab14d8ec1c1e7e313f1d\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21010_none_a4e2f4e978ca9090\lsass.exe
[2009.06.15 14:59:08 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=BA9A67672E025078C77967731BCFC560 -- C:\Windows\SoftwareDistribution\Download\f0e7510dbdd98e00504ebcf9a6bc42ad\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\lsass.exe
[2009.06.15 15:10:12 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=C731B1FE449D4E9CEA358C9D55B69BE9 -- C:\Windows\SoftwareDistribution\Download\b3da37d1490a6f1e10a887a163a78ba5\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\lsass.exe
[2009.06.15 15:10:12 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=C731B1FE449D4E9CEA358C9D55B69BE9 -- C:\Windows\SoftwareDistribution\Download\f0e7510dbdd98e00504ebcf9a6bc42ad\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\lsass.exe
[2009.09.09 13:09:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=CB7E838C140B4087B2DA323F2D4523C5 -- C:\Windows\SoftwareDistribution\Download\b3da37d1490a6f1e10a887a163a78ba5\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22518_none_a6d1618975e9b345\lsass.exe
[2009.09.10 16:47:51 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=D09A5DA84B7C9CA9B02EBCD7FAE41C8D -- C:\Windows\SoftwareDistribution\Download\b3da37d1490a6f1e10a887a163a78ba5\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21125_none_a4dd285578ce285b\lsass.exe
[2008.01.19 09:33:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\SoftwareDistribution\Download\a0f675af602fab14d8ec1c1e7e313f1d\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18215_none_a644c0145ccecd28\lsass.exe
[2009.02.13 10:20:29 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=F4C62B07E5BF96F1FDCA9DB393ECED22 -- C:\Windows\SoftwareDistribution\Download\a0f675af602fab14d8ec1c1e7e313f1d\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22376_none_a68e7da1761c2def\lsass.exe
< MD5 for: NDIS.SYS >
[2006.11.02 11:51:42 | 000,500,840 | ---- | M] (Microsoft Corporation) MD5=227C11E1E7CF6EF8AFB2A238D209760C -- C:\Windows\System32\drivers\ndis.sys
[2006.11.02 11:51:42 | 000,500,840 | ---- | M] (Microsoft Corporation) MD5=227C11E1E7CF6EF8AFB2A238D209760C -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6000.16386_none_a59069cb1f23fc44\ndis.sys
< MD5 for: NETLOGON.DLL >
[2006.11.02 11:46:11 | 000,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\Windows\System32\netlogon.dll
[2006.11.02 11:46:11 | 000,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6000.16386_none_fb80f5473b0ed783\netlogon.dll
< MD5 for: NTFS.SYS >
[2007.10.26 13:12:53 | 001,060,920 | ---- | M] (Microsoft Corporation) MD5=2620822A21B76375F5FD6E0986407CD1 -- C:\Windows\SoftwareDistribution\Download\c0a17eb89d8e2d806cdee4a2d05890b4\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.16586_none_a43a6b8d2000830d\ntfs.sys
[2007.12.17 00:50:41 | 001,060,920 | ---- | M] (Microsoft Corporation) MD5=37430AA7A66D7A63407ADC2C0D05E9F6 -- C:\Windows\SoftwareDistribution\Download\42d95eaa5b801079eed08676250ce8a7\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.16615_none_a4851c9d1fc8a346\ntfs.sys
[2006.11.02 11:51:47 | 001,056,360 | ---- | M] (Společnost Microsoft) MD5=3F379380A4A2637F559444E338CF1B51 -- C:\Windows\System32\drivers\ntfs.sys
[2006.11.02 11:51:47 | 001,056,360 | ---- | M] (Microsoft Corporation) MD5=3F379380A4A2637F559444E338CF1B51 -- C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.16386_none_a43a67c1200088bf\ntfs.sys
[2007.10.26 06:22:05 | 001,061,432 | ---- | M] (Microsoft Corporation) MD5=B5BE45B1F554DF9E1976CBC855365E60 -- C:\Windows\SoftwareDistribution\Download\c0a17eb89d8e2d806cdee4a2d05890b4\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.20709_none_a51d8a7c38da8c7b\ntfs.sys
[2007.12.17 00:52:59 | 001,061,944 | ---- | M] (Microsoft Corporation) MD5=F08824715CA6076F5E73E005AB83B9C8 -- C:\Windows\SoftwareDistribution\Download\42d95eaa5b801079eed08676250ce8a7\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.20740_none_a4e9483239031830\ntfs.sys
< MD5 for: NVRAID.SYS >
[2006.11.02 11:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) MD5=E69E946F80C1C31C53003BFBF50CBB7C -- C:\Windows\System32\drivers\nvraid.sys
[2006.11.02 11:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) MD5=E69E946F80C1C31C53003BFBF50CBB7C -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2007.01.05 21:59:42 | 000,035,920 | ---- | M] (NVIDIA Corporation) MD5=4A5FCAB82D9BF6AF8A023A66802FE9E9 -- C:\Windows\System32\drivers\nvstor.sys
[2007.01.05 21:59:42 | 000,035,920 | ---- | M] (NVIDIA Corporation) MD5=4A5FCAB82D9BF6AF8A023A66802FE9E9 -- C:\Windows\System32\DriverStore\FileRepository\nvstor.inf_f48b8337\nvstor.sys
[2006.11.02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
< MD5 for: SCECLI.DLL >
[2006.11.02 11:46:12 | 000,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A08BFF61 -- C:\Windows\System32\scecli.dll
[2006.11.02 11:46:12 | 000,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A08BFF61 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6000.16386_none_35d7205fdc305e3e\scecli.dll
< MD5 for: SERVICES.EXE >
[2006.11.02 11:45:40 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=329CF3C97CE4C19375C8ABCABAE258B0 -- C:\Windows\System32\services.exe
[2006.11.02 11:45:40 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=329CF3C97CE4C19375C8ABCABAE258B0 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6000.16386_none_cd28fe6bd05df036\services.exe
< MD5 for: SMSS.EXE >
[2006.11.02 11:45:45 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=CAA75757BB3695478C23CB0624342A61 -- C:\Windows\System32\smss.exe
[2006.11.02 11:45:45 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=CAA75757BB3695478C23CB0624342A61 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6000.16386_none_aa03e6011c468ee6\smss.exe
< MD5 for: SPOOLSV.EXE >
[2006.11.02 11:45:46 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=DA612EF2556776DF2630B68BF2D48935 -- C:\Windows\System32\spoolsv.exe
[2006.11.02 11:45:46 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=DA612EF2556776DF2630B68BF2D48935 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6000.16386_none_d414e125c49db442\spoolsv.exe
< MD5 for: SVCHOST.EXE >
[2006.11.02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=10DA15933D582D2FEDCF705EFE394B09 -- C:\Windows\System32\svchost.exe
[2006.11.02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=10DA15933D582D2FEDCF705EFE394B09 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6000.16386_none_b38497a50862ad11\svchost.exe
< MD5 for: TCPIP.SYS >
[2009.08.15 23:30:53 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=2512B4D1353370D6688B1AF1F5AFA1CF -- C:\Windows\SoftwareDistribution\Download\b635b7a7651f5dd1a95f6d85f3bb620f\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\tcpip.sys
[2009.08.14 19:01:55 | 000,900,168 | ---- | M] (Microsoft Corporation) MD5=2608E71AAD54564647D4BB984E1925AA -- C:\Windows\SoftwareDistribution\Download\b635b7a7651f5dd1a95f6d85f3bb620f\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_b34d67897fc6850f\tcpip.sys
[2010.02.18 13:51:51 | 000,818,688 | ---- | M] (Microsoft Corporation) MD5=2C1F7005AA3B62721BFDB307BD5F5010 -- C:\Windows\SoftwareDistribution\Download\2e00d1ae0f234ed468fbb47c2cd92fae\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21226_none_6019359fab5bb15b\tcpip.sys
[2010.02.18 16:49:38 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=2EAE4500984C2F8DACFB977060300A15 -- C:\Windows\SoftwareDistribution\Download\2e00d1ae0f234ed468fbb47c2cd92fae\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18427_none_b30f7c1866701ed5\tcpip.sys
[2009.08.14 16:24:47 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=300208927321066EA53761FDC98747C6 -- C:\Windows\SoftwareDistribution\Download\b635b7a7651f5dd1a95f6d85f3bb620f\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\tcpip.sys
[2010.02.18 16:07:16 | 000,904,576 | ---- | M] (Microsoft Corporation) MD5=48CBE6D53632D0067C2D6B20F90D84CA -- C:\Windows\SoftwareDistribution\Download\2e00d1ae0f234ed468fbb47c2cd92fae\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18209_none_b50d905263846bec\tcpip.sys
[2010.02.18 14:05:37 | 000,815,104 | ---- | M] (Microsoft Corporation) MD5=4A82FA8F0DF67AA354580C3FAAF8BDE3 -- C:\Windows\SoftwareDistribution\Download\2e00d1ae0f234ed468fbb47c2cd92fae\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.17021_none_5f8a957c924295b7\tcpip.sys
[2008.01.14 05:16:42 | 000,806,400 | ---- | M] (Microsoft Corporation) MD5=52A8BD6294F7D1443C6184C67AE13AF4 -- C:\Windows\SoftwareDistribution\Download\c6d3c2ffe03b8796482aee1c5fc8dc7f\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.20752_none_5ff4e4f9ab7777f4\tcpip.sys
[2008.01.14 05:17:57 | 000,803,328 | ---- | M] (Microsoft Corporation) MD5=5DF77458AA92FDB36FCE79C60F74AB5D -- C:\Windows\SoftwareDistribution\Download\c6d3c2ffe03b8796482aee1c5fc8dc7f\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16627_none_5f90b964923d030a\tcpip.sys
[2009.08.14 18:27:34 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=65877AA1B6A7CB797488E831698973E9 -- C:\Windows\SoftwareDistribution\Download\b635b7a7651f5dd1a95f6d85f3bb620f\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18091_none_b4a43aea63d4a25f\tcpip.sys
[2009.08.14 19:07:56 | 000,897,608 | ---- | M] (Microsoft Corporation) MD5=8A7AD2A214233F684242F289ED83EBC3 -- C:\Windows\SoftwareDistribution\Download\b635b7a7651f5dd1a95f6d85f3bb620f\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18311_none_b3144862666d6db3\tcpip.sys
[2010.02.18 19:36:50 | 000,902,024 | ---- | M] (Microsoft Corporation) MD5=93A5655CD9CD2F080EF1CB71A3666215 -- C:\Windows\SoftwareDistribution\Download\2e00d1ae0f234ed468fbb47c2cd92fae\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys
[2006.11.02 10:58:38 | 000,802,816 | ---- | M] (Microsoft Corporation) MD5=D944522B048A5FEB7700B5170D3D9423 -- C:\Windows\System32\drivers\tcpip.sys
[2006.11.02 10:58:38 | 000,802,816 | ---- | M] (Microsoft Corporation) MD5=D944522B048A5FEB7700B5170D3D9423 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16386_none_5f4ed3e0926e99e4\tcpip.sys
[2010.02.18 16:22:11 | 000,910,216 | ---- | M] (Microsoft Corporation) MD5=D9F5DD5BBC8348E8F8220CCBF14C022E -- C:\Windows\SoftwareDistribution\Download\2e00d1ae0f234ed468fbb47c2cd92fae\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22341_none_b563eb1d7cc9b0c2\tcpip.sys
[2009.08.14 18:33:50 | 000,905,784 | ---- | M] (Microsoft Corporation) MD5=FF71856BD4CD6D4367F9FD84BE79A874 -- C:\Windows\SoftwareDistribution\Download\b635b7a7651f5dd1a95f6d85f3bb620f\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22200_none_b58e289d7caa2a80\tcpip.sys
< MD5 for: USERINIT.EXE >
[2006.11.02 11:45:50 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=22027835939F86C3E47AD8E3FBDE3D11 -- C:\Windows\System32\userinit.exe
[2006.11.02 11:45:50 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=22027835939F86C3E47AD8E3FBDE3D11 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6000.16386_none_d9f1f819d4c4e737\userinit.exe
< MD5 for: WINLOGON.EXE >
[2006.11.02 11:45:57 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=9F75392B9128A91ABAFB044EA350BAAD -- C:\Windows\System32\winlogon.exe
[2006.11.02 11:45:57 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=9F75392B9128A91ABAFB044EA350BAAD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6000.16386_none_6d8c3f1ad8066b21\winlogon.exe
< MD5 for: WS2_32.DLL >
[2006.11.02 11:46:14 | 000,178,688 | ---- | M] (Microsoft Corporation) MD5=D99A071C1018BB3D4ABAAD4B62048AC2 -- C:\Windows\System32\ws2_32.dll
[2006.11.02 11:46:14 | 000,178,688 | ---- | M] (Microsoft Corporation) MD5=D99A071C1018BB3D4ABAAD4B62048AC2 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6000.16386_none_f080eec6d16af4f0\ws2_32.dll
< >
< C:\windows\system32\spool\prtprocs|dll;true;true;true /FP >
[2006.11.02 14:35:48 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\jnwppr.dll
[2007.01.08 23:03:29 | 000,003,584 | ---- | M] (Lexmark International Inc.) -- C:\Windows\System32\spool\prtprocs\w32x86\cs-CZ\LMPRTPRC.DLL.mui
[2007.09.21 10:52:16 | 000,003,584 | ---- | M] (Lexmark International Inc.) -- C:\Windows\System32\spool\prtprocs\w32x86\en-US\LMPRTPRC.DLL.mui
< %systemroot%\system32\drivers\*.sys /5 >
[2011.07.25 16:18:32 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\fs_rec.sys
[2011.07.25 16:14:16 | 000,396,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\http.sys
[2011.07.25 16:23:23 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\mrxsmb.sys
[2011.07.25 16:23:23 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\mrxsmb20.sys
[2011.07.25 16:11:20 | 000,130,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\srv2.sys
[2011.07.25 16:23:23 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\srvnet.sys
< %systemroot%\system32\drivers\*.sys /X >
[2006.09.18 23:26:46 | 003,440,660 | ---- | M] () -- C:\Windows\system32\drivers\gm.dls
[2006.09.18 23:26:46 | 000,000,646 | ---- | M] () -- C:\Windows\system32\drivers\gmreadme.txt
[2006.09.18 23:43:14 | 000,000,003 | ---- | M] () -- C:\Windows\system32\drivers\MsftWdf_Kernel_01005_Inbox_Critical.Wdf
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\system32\*.* /5 >
[2011.07.25 22:24:58 | 000,003,552 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011.07.25 22:24:58 | 000,003,552 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011.07.25 16:08:48 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\avicap32.dll
[2011.07.25 16:08:48 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\avifil32.dll
[2011.07.23 08:43:34 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\cabview.dll
[2011.07.23 08:57:19 | 000,002,577 | ---- | M] () -- C:\Windows\system32\config.nt
[2011.07.25 16:18:50 | 001,645,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\connect.dll
[2011.07.25 16:11:05 | 000,974,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\crypt32.dll
[2011.07.24 19:58:30 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\system32\deploytk.dll
[2011.07.25 16:06:23 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\dxmasf.dll
[2011.07.24 20:50:59 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\system32\FlashPlayerCPLApp.cpl
[2011.07.25 20:24:04 | 000,893,456 | ---- | M] () -- C:\Windows\system32\FNTCACHE.DAT
[2011.07.25 16:14:16 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\httpapi.dll
[2011.07.25 16:18:32 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\imagehlp.dll
[2011.07.25 16:21:50 | 000,737,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\inetcomm.dll
[2011.07.25 16:21:50 | 000,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\INETRES.dll
[2011.07.25 16:08:49 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\iyuv_32.dll
[2011.07.24 19:58:30 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\system32\java.exe
[2011.07.24 19:58:30 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\system32\javaw.exe
[2011.07.24 19:58:30 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\system32\javaws.exe
[2011.07.23 08:22:40 | 000,041,176 | ---- | M] () -- C:\Windows\system32\license.rtf
[2011.07.25 16:08:48 | 000,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mciavi32.dll
[2011.07.25 16:20:15 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msasn1.dll
[2011.07.25 16:06:22 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msdxm.ocx
[2011.07.25 16:08:48 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msrle32.dll
[2011.07.25 16:08:48 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msvfw32.dll
[2011.07.25 16:08:48 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msvidc32.dll
[2011.07.25 16:09:48 | 001,341,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msxml6.dll
[2011.07.25 16:09:48 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msxml6r.dll
[2011.07.25 16:08:49 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msyuv.dll
[2011.07.25 16:14:16 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\nshhttp.dll
[2011.07.25 20:30:45 | 000,081,198 | ---- | M] () -- C:\Windows\system32\perfc005.dat
[2011.07.25 20:30:45 | 000,103,726 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2011.07.25 20:30:45 | 000,473,360 | ---- | M] () -- C:\Windows\system32\perfh005.dat
[2011.07.25 20:30:45 | 000,609,944 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2011.07.25 20:30:45 | 001,259,320 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
[2011.07.25 16:10:11 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\poqexec.exe
[2011.07.25 16:08:23 | 000,750,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\qmgr.dll
[2011.07.25 16:08:48 | 001,327,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\quartz.dll
[2011.07.25 16:10:52 | 000,274,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\raschap.dll
[2011.07.25 16:10:52 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\rastls.dll
[2011.07.25 16:17:12 | 000,788,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\rpcrt4.dll
[2011.07.25 16:06:24 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\spwmp.dll
[2011.07.25 16:08:48 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\tsbyuv.dll
[2011.07.25 16:06:20 | 000,311,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\unregmp2.exe
[2011.07.25 16:10:01 | 000,633,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\user32.dll
[2011.07.25 16:10:01 | 002,026,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\win32k.sys
[2011.07.23 08:44:02 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wintrust.dll
[2011.07.25 16:18:32 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wmi.dll
[2011.07.25 16:06:24 | 010,622,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wmp.dll
[2011.07.25 16:06:25 | 008,147,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wmploc.DLL
[2011.07.25 16:08:08 | 000,604,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\WMSPDMOD.DLL
[2011.07.25 16:10:30 | 000,321,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\WSDApi.dll
[2011.07.23 08:34:07 | 000,575,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wuapi.dll
[2011.07.23 08:33:00 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wuapp.exe
[2011.07.23 08:35:24 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wuauclt.exe
[2011.07.23 08:35:24 | 001,929,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wuaueng.dll
[2011.07.23 08:35:24 | 002,421,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wucltux.dll
[2011.07.23 08:34:07 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wudriver.dll
[2011.07.23 08:34:07 | 000,035,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wups.dll
[2011.07.23 08:35:24 | 000,044,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wups2.dll
[2011.07.23 08:33:00 | 000,171,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wuwebv.dll
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\config\*.sav >
[2006.11.02 12:34:05 | 000,008,192 | ---- | M] () -- C:\Windows\system32\config\COMPONENTS.SAV
[2006.11.02 12:34:05 | 000,020,480 | ---- | M] () -- C:\Windows\system32\config\DEFAULT.SAV
[2006.11.02 12:34:05 | 000,008,192 | ---- | M] () -- C:\Windows\system32\config\SECURITY.SAV
[2006.11.02 12:34:08 | 010,133,504 | ---- | M] () -- C:\Windows\system32\config\SOFTWARE.SAV
[2006.11.02 12:34:08 | 001,826,816 | ---- | M] () -- C:\Windows\system32\config\SYSTEM.SAV
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\*.* /U /s >
[4 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
< %systemroot%\*. /mp /s >
< %ALLUSERSPROFILE%\Data Aplikací\*.* >
< %ALLUSERSPROFILE%\Data Aplikací\*.exe /s >
< %ALLUSERSPROFILE%\Dáta aplikácií\*.* >
< %ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s >
< %APPDATA%\*. >
[2011.07.24 20:16:26 | 000,000,000 | ---D | M] -- C:\Users\Hanik\AppData\Roaming\Adobe
[2011.07.25 21:10:04 | 000,000,000 | ---D | M] -- C:\Users\Hanik\AppData\Roaming\Corel
[2011.07.23 08:36:03 | 000,000,000 | ---D | M] -- C:\Users\Hanik\AppData\Roaming\Identities
[2011.07.23 10:10:35 | 000,000,000 | ---D | M] -- C:\Users\Hanik\AppData\Roaming\Macromedia
[2006.11.02 14:37:34 | 000,000,000 | ---D | M] -- C:\Users\Hanik\AppData\Roaming\Media Center Programs
[2011.07.24 20:16:26 | 000,000,000 | --SD | M] -- C:\Users\Hanik\AppData\Roaming\Microsoft
[2011.07.25 21:22:19 | 000,000,000 | ---D | M] -- C:\Users\Hanik\AppData\Roaming\PSpad
[2011.07.25 18:43:36 | 000,000,000 | ---D | M] -- C:\Users\Hanik\AppData\Roaming\ZipGenius
< %APPDATA%\*.* >
< %APPDATA%\*.exe /s >
< %SYSTEMDRIVE%\*.exe >
< >
< >
< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s >
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-07-23 06:44:15
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\BITS /s >
"JobInactivityTimeout" = 7776000
"JobMinimumRetryDelay" = 600
"JobNoProgressTimeout" = 1209600
"LogFileFlags" = 0
"LogFileMinMemory" = 120
"LogFileSize" = 1
"TimeQuantaLength" = 300
"UseLmCompat" = 2
"IGDSearcherDLL" = bitsigd.dll -- [2006.11.02 11:46:02 | 000,031,744 | ---- | M] (Microsoft Corporation)
"StateIndex" = 1
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER
BOOTEXECUTE REG_MULTI_SZ autocheck autochk *
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c >
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.07.25 22:58:59 | 000,000,512 | ---- | M] () MD5=97E5F0C6850953E74081698232BD60F9 -- C:\PhysicalMBR.bin
< End of report >
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Users\Hanik\Desktop
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16386)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,87 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 46,83% Memory free
3,96 Gb Paging File | 2,77 Gb Available in Paging File | 69,92% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 298,09 Gb Total Space | 243,48 Gb Free Space | 81,68% Space Free | Partition Type: NTFS
Computer Name: HANIK-PC | User Name: Hanik | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011.07.25 22:54:35 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Hanik\Desktop\OTL.scr
PRC - [2011.07.24 19:58:30 | 000,386,872 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jucheck.exe
PRC - [2011.07.09 06:51:19 | 001,012,792 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2011.07.04 13:43:54 | 003,493,720 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2006.11.02 14:34:32 | 001,004,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2006.11.02 11:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2006.11.02 11:44:59 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
PRC - [1999.05.15 09:12:26 | 000,351,232 | ---- | M] () -- C:\_PIRI\program files\SALAMAND.EXE
========== Modules (SafeList) ==========
MOD - [2011.07.25 22:54:35 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Hanik\Desktop\OTL.scr
MOD - [2011.07.04 13:43:51 | 000,199,792 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\snxhk.dll
MOD - [2006.11.02 11:38:57 | 001,648,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV - [2011.07.04 13:43:51 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011.06.06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2006.11.02 14:34:32 | 000,263,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
========== Driver Services (SafeList) ==========
DRV - [2011.07.04 13:36:43 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011.07.04 13:36:32 | 000,309,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.07.04 13:35:23 | 000,043,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.07.04 13:32:32 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.07.04 13:32:20 | 000,054,104 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2011.07.04 13:32:12 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2007.04.03 10:43:28 | 001,131,136 | ---- | M] (Philips Semiconductors GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Ph3xIB32.sys -- (Ph3xIB32)
DRV - [2006.11.02 10:57:06 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\irsir.sys -- (irsir)
DRV - [2006.11.02 09:30:56 | 000,429,056 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvm60x32.sys -- (NVENETFD)
DRV - [2006.10.14 05:04:33 | 004,422,560 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-617503589-927058738-2358854330-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-617503589-927058738-2358854330-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
O1 HOSTS File: ([2006.09.18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CorelDRAW Graphics Suite 11b] C:\Program Files\Corel\Corel Graphics 12\Languages\CZ\Programs\Registration.exe (Corel Corporation)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://active.macromedia.com/flash2/cabs/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 88.81.64.1 88.81.92.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img6.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img6.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{a458396e-b4f7-11e0-95a7-00196654c307}\Shell - "" = AutoRun
O33 - MountPoints2\{a458396e-b4f7-11e0-95a7-00196654c307}\Shell\AutoRun\command - "" = J:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - File not found
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2011.07.25 22:54:32 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Users\Hanik\Desktop\OTL.scr
[2011.07.25 22:45:38 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.07.25 22:45:38 | 000,000,000 | ---D | C] -- C:\rsit
[2011.07.25 21:22:11 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Roaming\PSpad
[2011.07.25 21:22:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSPad editor
[2011.07.25 21:22:04 | 000,000,000 | ---D | C] -- C:\Program Files\PSPad editor
[2011.07.25 21:10:04 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Roaming\Corel
[2011.07.25 21:04:01 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallShield
[2011.07.25 20:55:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite 12
[2011.07.25 20:55:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Corel
[2011.07.25 20:54:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Designer
[2011.07.25 20:53:41 | 000,000,000 | ---D | C] -- C:\Program Files\Corel
[2011.07.25 18:43:08 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Roaming\ZipGenius
[2011.07.25 18:42:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZipGenius 6
[2011.07.25 18:42:31 | 000,000,000 | ---D | C] -- C:\Program Files\ZipGenius 6
[2011.07.25 18:09:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2011.07.25 16:21:50 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\INETRES.dll
[2011.07.25 16:18:50 | 001,645,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2011.07.25 16:14:16 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[2011.07.25 16:14:16 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2011.07.25 16:10:52 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\raschap.dll
[2011.07.25 16:10:52 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2011.07.25 16:10:30 | 000,321,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll
[2011.07.25 16:10:11 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2011.07.25 16:10:01 | 002,026,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011.07.25 16:09:48 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll
[2011.07.25 16:08:48 | 001,327,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2011.07.25 16:08:48 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2011.07.25 16:08:48 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2011.07.25 16:08:48 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2011.07.25 16:08:48 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avicap32.dll
[2011.07.25 16:08:08 | 000,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2011.07.25 16:06:24 | 008,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2011.07.25 16:06:23 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2011.07.25 16:06:23 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll
[2011.07.25 16:06:22 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2011.07.25 16:06:20 | 000,311,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe
[2011.07.24 20:50:59 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011.07.24 20:50:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2011.07.24 20:16:26 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Local\Adobe
[2011.07.24 20:14:02 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2011.07.24 20:14:02 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2011.07.24 20:13:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2011.07.24 20:00:22 | 000,000,000 | ---D | C] -- C:\Users\Hanik\kbpki
[2011.07.24 19:58:46 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\deploytk.dll
[2011.07.24 19:58:46 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011.07.24 19:58:45 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011.07.24 19:58:45 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011.07.24 19:58:22 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011.07.24 01:34:35 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2011.07.23 10:10:35 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Roaming\Macromedia
[2011.07.23 10:10:35 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Roaming\Adobe
[2011.07.23 10:01:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
[2011.07.23 10:01:22 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler
[2011.07.23 09:28:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2011.07.23 09:28:12 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011.07.23 09:02:51 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2011.07.23 08:58:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2011.07.23 08:57:25 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Local\Google
[2011.07.23 08:57:25 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2011.07.23 08:57:24 | 000,019,544 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2011.07.23 08:57:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2011.07.23 08:57:23 | 000,309,848 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2011.07.23 08:57:21 | 000,025,432 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2011.07.23 08:57:20 | 000,441,176 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2011.07.23 08:57:20 | 000,043,608 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2011.07.23 08:57:19 | 000,054,104 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2011.07.23 08:56:50 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2011.07.23 08:56:45 | 000,040,112 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2011.07.23 08:56:44 | 000,199,304 | ---- | C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2011.07.23 08:56:26 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2011.07.23 08:56:26 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011.07.23 08:36:22 | 000,000,000 | R--D | C] -- C:\Users\Hanik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011.07.23 08:36:22 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Searches
[2011.07.23 08:36:22 | 000,000,000 | R--D | C] -- C:\Users\Hanik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011.07.23 08:36:03 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Roaming\Identities
[2011.07.23 08:36:01 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Contacts
[2011.07.23 08:36:00 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Local\VirtualStore
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\AppData\Local\Temporary Internet Files
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Šablony
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Soubory cookie
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\SendTo
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Recent
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Okolní tiskárny
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Okolní síť
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Documents\Obrázky
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Nabídka Start
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Local Settings
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Documents\Hudba
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\AppData\Local\Historie
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Documents\Filmy
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Dokumenty
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\Data aplikací
[2011.07.23 08:35:55 | 000,000,000 | -HSD | C] -- C:\Users\Hanik\AppData\Local\Data aplikací
[2011.07.23 08:35:54 | 000,000,000 | --SD | C] -- C:\Users\Hanik\AppData\Roaming\Microsoft
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Videos
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Saved Games
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Pictures
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Music
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Links
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Favorites
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Downloads
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Documents
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\Desktop
[2011.07.23 08:35:54 | 000,000,000 | R--D | C] -- C:\Users\Hanik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011.07.23 08:35:54 | 000,000,000 | -H-D | C] -- C:\Users\Hanik\AppData
[2011.07.23 08:35:54 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Local\Temp
[2011.07.23 08:35:54 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Local\Microsoft
[2011.07.23 08:35:54 | 000,000,000 | ---D | C] -- C:\Users\Hanik\AppData\Roaming\Media Center Programs
[2011.07.23 08:35:24 | 002,421,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2011.07.23 08:35:24 | 000,044,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2011.07.23 08:34:07 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2011.07.23 08:34:07 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2011.07.23 08:34:07 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2011.07.23 08:33:00 | 000,171,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2011.07.23 08:33:00 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2011.07.23 08:31:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Šablony
[2011.07.23 08:31:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Plocha
[2011.07.23 08:31:37 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Obrázky
[2011.07.23 08:31:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Oblíbené položky
[2011.07.23 08:31:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Nabídka Start
[2011.07.23 08:31:37 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Hudba
[2011.07.23 08:31:37 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Filmy
[2011.07.23 08:31:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2011.07.23 08:31:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Data aplikací
[2011.07.23 08:19:08 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2011.07.23 08:16:13 | 000,000,000 | ---D | C] -- C:\Windows\System32\catroot2
[2011.07.23 08:15:53 | 000,000,000 | ---D | C] -- C:\Windows\Debug
[2011.07.23 08:03:58 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2011.07.22 21:36:22 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\$$DeleteMe.poqexec.exe.01cc48c9c79bd32a.0000
========== Files - Modified Within 30 Days ==========
[2011.07.25 22:58:59 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.07.25 22:54:35 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Hanik\Desktop\OTL.scr
[2011.07.25 22:24:58 | 000,003,552 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011.07.25 22:24:58 | 000,003,552 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011.07.25 22:02:00 | 000,000,938 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.07.25 21:22:07 | 000,000,753 | ---- | M] () -- C:\Users\Hanik\Desktop\PSPad.lnk
[2011.07.25 21:08:40 | 000,001,077 | ---- | M] () -- C:\Users\Hanik\Desktop\Trace – zástupce.lnk
[2011.07.25 21:07:17 | 000,001,089 | ---- | M] () -- C:\Users\Hanik\Desktop\CorelPP – zástupce.lnk
[2011.07.25 21:07:06 | 000,001,096 | ---- | M] () -- C:\Users\Hanik\Desktop\CorelDRW – zástupce.lnk
[2011.07.25 21:06:50 | 000,001,089 | ---- | M] () -- C:\Users\Hanik\Desktop\Capture – zástupce.lnk
[2011.07.25 20:30:45 | 000,609,944 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.07.25 20:30:45 | 000,473,360 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2011.07.25 20:30:45 | 000,103,726 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.07.25 20:30:45 | 000,081,198 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2011.07.25 20:28:41 | 000,069,632 | ---- | M] () -- C:\Users\Hanik\Documents\cc_20110725_202836.reg
[2011.07.25 20:24:58 | 000,000,934 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.07.25 20:24:24 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.07.25 20:24:04 | 000,893,456 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011.07.25 20:24:02 | 2012,536,832 | -HS- | M] () -- C:\hiberfil.sys
[2011.07.25 19:20:49 | 000,000,850 | ---- | M] () -- C:\Users\Hanik\Desktop\Toolbox – zástupce.lnk
[2011.07.25 18:42:36 | 000,000,898 | ---- | M] () -- C:\Users\Public\Desktop\ZipGenius 6.lnk
[2011.07.25 16:38:00 | 000,002,604 | ---- | M] () -- C:\Users\Hanik\Documents\cc_20110725_163756.reg
[2011.07.25 16:21:50 | 000,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\INETRES.dll
[2011.07.25 16:18:50 | 001,645,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2011.07.25 16:14:16 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[2011.07.25 16:14:16 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2011.07.25 16:10:52 | 000,274,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\raschap.dll
[2011.07.25 16:10:52 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2011.07.25 16:10:30 | 000,321,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll
[2011.07.25 16:10:11 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2011.07.25 16:10:01 | 002,026,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011.07.25 16:09:48 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll
[2011.07.25 16:08:48 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2011.07.25 16:08:48 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2011.07.25 16:08:48 | 000,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2011.07.25 16:08:48 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avicap32.dll
[2011.07.25 16:08:08 | 000,604,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2011.07.25 16:06:25 | 008,147,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2011.07.25 16:06:24 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2011.07.25 16:06:22 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2011.07.25 16:06:20 | 000,311,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe
[2011.07.24 21:40:52 | 000,000,822 | ---- | M] () -- C:\Users\Hanik\Desktop\TOTALCMD – zástupce.lnk
[2011.07.24 20:50:59 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011.07.24 20:14:16 | 000,001,892 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2011.07.24 19:58:30 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deploytk.dll
[2011.07.24 19:58:30 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011.07.24 19:58:30 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011.07.24 19:58:30 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011.07.24 09:00:54 | 000,000,695 | ---- | M] () -- C:\Users\Hanik\Desktop\SALAMAND.lnk
[2011.07.24 08:57:18 | 000,001,537 | ---- | M] () -- C:\Users\Hanik\Desktop\Windows Explorer.lnk
[2011.07.24 03:44:55 | 000,011,264 | ---- | M] () -- C:\Users\Hanik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.07.23 10:01:22 | 000,001,702 | ---- | M] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2011.07.23 09:29:56 | 000,004,854 | ---- | M] () -- C:\Users\Hanik\Documents\cc_20110723_092951.reg
[2011.07.23 09:28:13 | 000,000,804 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.07.23 09:02:37 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
[2011.07.23 08:58:09 | 000,001,971 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011.07.23 08:57:24 | 000,001,829 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2011.07.23 08:57:19 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2011.07.23 08:35:24 | 002,421,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2011.07.23 08:35:24 | 000,044,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2011.07.23 08:34:07 | 000,575,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2011.07.23 08:34:07 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2011.07.23 08:34:07 | 000,035,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2011.07.23 08:33:00 | 000,171,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2011.07.23 08:33:00 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2011.07.23 08:22:40 | 000,041,176 | ---- | M] () -- C:\Windows\System32\license.rtf
[2011.07.23 08:19:56 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\UMDF\Msft_User_WpdFs_01_00_00.Wdf
[2011.07.22 21:36:22 | 000,109,568 | ---- | M] (Microsoft Corporation) -- C:\$$DeleteMe.poqexec.exe.01cc48c9c79bd32a.0000
[2011.07.04 13:43:53 | 000,040,112 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2011.07.04 13:43:51 | 000,199,304 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2011.07.04 13:36:43 | 000,441,176 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2011.07.04 13:36:32 | 000,309,848 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2011.07.04 13:35:23 | 000,043,608 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2011.07.04 13:32:32 | 000,025,432 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2011.07.04 13:32:20 | 000,054,104 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2011.07.04 13:32:12 | 000,019,544 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
========== Files Created - No Company Name ==========
[2011.07.25 22:58:59 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.07.25 21:22:07 | 000,000,753 | ---- | C] () -- C:\Users\Hanik\Desktop\PSPad.lnk
[2011.07.25 21:08:40 | 000,001,077 | ---- | C] () -- C:\Users\Hanik\Desktop\Trace – zástupce.lnk
[2011.07.25 21:07:17 | 000,001,089 | ---- | C] () -- C:\Users\Hanik\Desktop\CorelPP – zástupce.lnk
[2011.07.25 21:07:06 | 000,001,096 | ---- | C] () -- C:\Users\Hanik\Desktop\CorelDRW – zástupce.lnk
[2011.07.25 21:06:50 | 000,001,089 | ---- | C] () -- C:\Users\Hanik\Desktop\Capture – zástupce.lnk
[2011.07.25 20:28:39 | 000,069,632 | ---- | C] () -- C:\Users\Hanik\Documents\cc_20110725_202836.reg
[2011.07.25 19:20:49 | 000,000,850 | ---- | C] () -- C:\Users\Hanik\Desktop\Toolbox – zástupce.lnk
[2011.07.25 18:42:36 | 000,000,898 | ---- | C] () -- C:\Users\Public\Desktop\ZipGenius 6.lnk
[2011.07.25 16:37:59 | 000,002,604 | ---- | C] () -- C:\Users\Hanik\Documents\cc_20110725_163756.reg
[2011.07.24 21:40:52 | 000,000,822 | ---- | C] () -- C:\Users\Hanik\Desktop\TOTALCMD – zástupce.lnk
[2011.07.24 20:14:16 | 000,001,892 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2011.07.24 20:14:15 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2011.07.24 19:53:19 | 000,004,575 | ---- | C] () -- C:\Users\Hanik\Desktop\NOVÁK_PETR.p12
[2011.07.24 09:00:54 | 000,000,695 | ---- | C] () -- C:\Users\Hanik\Desktop\SALAMAND.lnk
[2011.07.24 08:57:18 | 000,001,537 | ---- | C] () -- C:\Users\Hanik\Desktop\Windows Explorer.lnk
[2011.07.23 10:01:22 | 000,001,702 | ---- | C] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2011.07.23 09:29:55 | 000,004,854 | ---- | C] () -- C:\Users\Hanik\Documents\cc_20110723_092951.reg
[2011.07.23 09:28:13 | 000,000,804 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.07.23 08:58:09 | 000,001,971 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011.07.23 08:57:37 | 000,000,938 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.07.23 08:57:36 | 000,000,934 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.07.23 08:57:24 | 000,001,829 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2011.07.23 08:39:05 | 000,011,264 | ---- | C] () -- C:\Users\Hanik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.07.23 08:36:24 | 000,000,949 | ---- | C] () -- C:\Users\Hanik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011.07.23 08:36:20 | 000,000,944 | ---- | C] () -- C:\Users\Hanik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2011.07.23 08:36:01 | 000,000,915 | ---- | C] () -- C:\Users\Hanik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
[2011.07.23 08:26:53 | 2012,536,832 | -HS- | C] () -- C:\hiberfil.sys
[2011.07.23 08:22:28 | 000,000,604 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live.lnk
[2007.01.08 23:09:29 | 000,473,360 | ---- | C] () -- C:\Windows\System32\perfh005.dat
[2007.01.08 23:09:29 | 000,286,912 | ---- | C] () -- C:\Windows\System32\perfi005.dat
[2007.01.08 23:09:29 | 000,081,198 | ---- | C] () -- C:\Windows\System32\perfc005.dat
[2007.01.08 23:09:29 | 000,034,724 | ---- | C] () -- C:\Windows\System32\perfd005.dat
[2006.11.02 14:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006.11.02 14:47:37 | 000,893,456 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006.11.02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 12:33:01 | 000,609,944 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006.11.02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006.11.02 12:33:01 | 000,103,726 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006.11.02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006.11.02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006.11.02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006.11.02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006.11.02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.11.02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006.11.02 09:22:43 | 000,099,999 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2006.11.02 09:22:43 | 000,018,271 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
========== LOP Check ==========
[2011.07.25 18:43:36 | 000,000,000 | ---D | M] -- C:\Users\Hanik\AppData\Roaming\ZipGenius
[2011.07.25 20:21:59 | 000,004,920 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2006.11.02 14:35:15 | 001,196,032 | ---- | M] (Microsoft Corporation)
"ISUSPM Startup" = C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup -- [2004.06.16 06:03:26 | 000,221,184 | ---- | M] (InstallShield Software Corporation)
< >
< MD5 for: AGP440.SYS >
[2006.11.02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\drivers\AGP440.sys
[2006.11.02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys
< MD5 for: ATAPI.SYS >
[2006.11.02 11:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\drivers\atapi.sys
[2006.11.02 11:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
[2008.01.19 07:06:48 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\SoftwareDistribution\Download\c0a17eb89d8e2d806cdee4a2d05890b4\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.16632_none_db337a442479c42c\atapi.sys
[2008.01.19 06:33:23 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36AFC7C6F -- C:\Windows\SoftwareDistribution\Download\c0a17eb89d8e2d806cdee4a2d05890b4\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20757_none_dbac78a93da31a8b\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2006.11.02 11:44:50 | 000,640,000 | ---- | M] (Microsoft Corporation) MD5=C08D1FE284C3330934E45D6E5F5B768B -- C:\Windows\System32\autochk.exe
[2006.11.02 11:44:50 | 000,640,000 | ---- | M] (Microsoft Corporation) MD5=C08D1FE284C3330934E45D6E5F5B768B -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6000.16386_none_dfbd2b4dc4d6121b\autochk.exe
< MD5 for: CDROM.SYS >
[2006.11.02 10:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5E4D303 -- C:\Windows\System32\drivers\cdrom.sys
[2006.11.02 10:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5E4D303 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_e487f727\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2006.11.02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
[2006.11.02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2006.11.02 11:46:03 | 000,123,392 | ---- | M] (Microsoft Corporation) MD5=1C26FB097170A2A91066D1E3A24366E3 -- C:\Windows\System32\cryptsvc.dll
[2006.11.02 11:46:03 | 000,123,392 | ---- | M] (Microsoft Corporation) MD5=1C26FB097170A2A91066D1E3A24366E3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6000.16386_none_73c8d7689de43d15\cryptsvc.dll
< MD5 for: CSRSS.EXE >
[2006.11.02 11:45:00 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=117B7C8A8B026A5DCE5E3180ED05E823 -- C:\Windows\System32\csrss.exe
[2006.11.02 11:45:00 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=117B7C8A8B026A5DCE5E3180ED05E823 -- C:\Windows\winsxs\x86_microsoft-windows-csrss_31bf3856ad364e35_6.0.6000.16386_none_56ad21dbe72a9d78\csrss.exe
< MD5 for: EXPLORER.EXE >
[2008.10.29 08:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\SoftwareDistribution\Download\7061d8bdfc6a60f6588941d7a2c304c7\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008.10.29 08:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\SoftwareDistribution\Download\7061d8bdfc6a60f6588941d7a2c304c7\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008.10.30 05:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\SoftwareDistribution\Download\7061d8bdfc6a60f6588941d7a2c304c7\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2007.08.27 05:10:03 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=6D06CD98D954FE87FB2DB8108793B399 -- C:\Windows\SoftwareDistribution\Download\f411dcb0df2de951a1b7d68be5b8fec7\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16549_none_4fac29707cae347a\explorer.exe
[2007.08.27 04:01:58 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=BD06F0BF753BC704B653C3A50F89D362 -- C:\Windows\SoftwareDistribution\Download\f411dcb0df2de951a1b7d68be5b8fec7\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20668_none_501f261995dcf2cf\explorer.exe
[2008.10.28 04:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\SoftwareDistribution\Download\7061d8bdfc6a60f6588941d7a2c304c7\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2006.11.02 11:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=FD8C53FB002217F6F888BCF6F5D7084D -- C:\Windows\explorer.exe
[2006.11.02 11:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=FD8C53FB002217F6F888BCF6F5D7084D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16386_none_4f7de5167cd15deb\explorer.exe
< MD5 for: FASTFAT.SYS >
[2006.11.02 10:30:49 | 000,142,336 | ---- | M] (Microsoft Corporation) MD5=84A317CB0B3954D3768CDCD018DBF670 -- C:\Windows\System32\drivers\fastfat.sys
[2006.11.02 10:30:49 | 000,142,336 | ---- | M] (Microsoft Corporation) MD5=84A317CB0B3954D3768CDCD018DBF670 -- C:\Windows\winsxs\x86_microsoft-windows-fat_31bf3856ad364e35_6.0.6000.16386_none_ac7c69845a79180b\fastfat.sys
< MD5 for: HAL.DLL >
[2006.11.02 11:51:12 | 000,160,872 | ---- | M] (Microsoft Corporation) MD5=E3A21FC3407DA84C5FF41B5088A67C3B -- C:\Windows\System32\hal.dll
< MD5 for: IASTORV.SYS >
[2006.11.02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\drivers\iaStorV.sys
[2006.11.02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2006.11.02 11:50:24 | 000,047,208 | ---- | M] (Microsoft Corporation) MD5=350FCA7E73CF65BCEF43FAE1E4E91293 -- C:\Windows\System32\drivers\isapnp.sys
[2006.11.02 11:50:24 | 000,047,208 | ---- | M] (Microsoft Corporation) MD5=350FCA7E73CF65BCEF43FAE1E4E91293 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\isapnp.sys
< MD5 for: LSASS.EXE >
[2009.06.15 14:51:56 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=203D86EBD6D8E4C8501B222421E81506 -- C:\Windows\SoftwareDistribution\Download\f0e7510dbdd98e00504ebcf9a6bc42ad\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\lsass.exe
[2009.09.10 16:44:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=2D3AC5E7AC01E905F3ABD2D745FE3A9B -- C:\Windows\SoftwareDistribution\Download\b3da37d1490a6f1e10a887a163a78ba5\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22223_none_a8a80213731ca5a7\lsass.exe
[2009.06.15 14:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\SoftwareDistribution\Download\b3da37d1490a6f1e10a887a163a78ba5\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\lsass.exe
[2009.06.15 14:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\SoftwareDistribution\Download\f0e7510dbdd98e00504ebcf9a6bc42ad\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\lsass.exe
[2009.02.13 09:26:04 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=59DE082968FDD257FFF0D209B9A5B460 -- C:\Windows\SoftwareDistribution\Download\a0f675af602fab14d8ec1c1e7e313f1d\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16820_none_a44eb0105fb4d975\lsass.exe
[2006.11.02 11:45:21 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=6A0E382E74280E4CC0DF17FE2661D003 -- C:\Windows\System32\lsass.exe
[2006.11.02 11:45:21 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=6A0E382E74280E4CC0DF17FE2661D003 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16386_none_a413c8c65fe02762\lsass.exe
[2009.06.15 15:03:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=6F1F23D3599EAE17734451936B7F17C6 -- C:\Windows\SoftwareDistribution\Download\f0e7510dbdd98e00504ebcf9a6bc42ad\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\lsass.exe
[2009.06.15 14:57:59 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A911ECAC81F94ADEAFBE8E3F7873EDB0 -- C:\Windows\SoftwareDistribution\Download\b3da37d1490a6f1e10a887a163a78ba5\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\lsass.exe
[2009.06.15 14:57:59 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A911ECAC81F94ADEAFBE8E3F7873EDB0 -- C:\Windows\SoftwareDistribution\Download\f0e7510dbdd98e00504ebcf9a6bc42ad\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\lsass.exe
[2009.02.13 06:58:37 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=AFF8A58280863629CA4FFA9E0B259F1E -- C:\Windows\SoftwareDistribution\Download\a0f675af602fab14d8ec1c1e7e313f1d\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21010_none_a4e2f4e978ca9090\lsass.exe
[2009.06.15 14:59:08 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=BA9A67672E025078C77967731BCFC560 -- C:\Windows\SoftwareDistribution\Download\f0e7510dbdd98e00504ebcf9a6bc42ad\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\lsass.exe
[2009.06.15 15:10:12 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=C731B1FE449D4E9CEA358C9D55B69BE9 -- C:\Windows\SoftwareDistribution\Download\b3da37d1490a6f1e10a887a163a78ba5\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\lsass.exe
[2009.06.15 15:10:12 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=C731B1FE449D4E9CEA358C9D55B69BE9 -- C:\Windows\SoftwareDistribution\Download\f0e7510dbdd98e00504ebcf9a6bc42ad\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\lsass.exe
[2009.09.09 13:09:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=CB7E838C140B4087B2DA323F2D4523C5 -- C:\Windows\SoftwareDistribution\Download\b3da37d1490a6f1e10a887a163a78ba5\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22518_none_a6d1618975e9b345\lsass.exe
[2009.09.10 16:47:51 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=D09A5DA84B7C9CA9B02EBCD7FAE41C8D -- C:\Windows\SoftwareDistribution\Download\b3da37d1490a6f1e10a887a163a78ba5\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21125_none_a4dd285578ce285b\lsass.exe
[2008.01.19 09:33:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\SoftwareDistribution\Download\a0f675af602fab14d8ec1c1e7e313f1d\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18215_none_a644c0145ccecd28\lsass.exe
[2009.02.13 10:20:29 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=F4C62B07E5BF96F1FDCA9DB393ECED22 -- C:\Windows\SoftwareDistribution\Download\a0f675af602fab14d8ec1c1e7e313f1d\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22376_none_a68e7da1761c2def\lsass.exe
< MD5 for: NDIS.SYS >
[2006.11.02 11:51:42 | 000,500,840 | ---- | M] (Microsoft Corporation) MD5=227C11E1E7CF6EF8AFB2A238D209760C -- C:\Windows\System32\drivers\ndis.sys
[2006.11.02 11:51:42 | 000,500,840 | ---- | M] (Microsoft Corporation) MD5=227C11E1E7CF6EF8AFB2A238D209760C -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6000.16386_none_a59069cb1f23fc44\ndis.sys
< MD5 for: NETLOGON.DLL >
[2006.11.02 11:46:11 | 000,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\Windows\System32\netlogon.dll
[2006.11.02 11:46:11 | 000,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6000.16386_none_fb80f5473b0ed783\netlogon.dll
< MD5 for: NTFS.SYS >
[2007.10.26 13:12:53 | 001,060,920 | ---- | M] (Microsoft Corporation) MD5=2620822A21B76375F5FD6E0986407CD1 -- C:\Windows\SoftwareDistribution\Download\c0a17eb89d8e2d806cdee4a2d05890b4\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.16586_none_a43a6b8d2000830d\ntfs.sys
[2007.12.17 00:50:41 | 001,060,920 | ---- | M] (Microsoft Corporation) MD5=37430AA7A66D7A63407ADC2C0D05E9F6 -- C:\Windows\SoftwareDistribution\Download\42d95eaa5b801079eed08676250ce8a7\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.16615_none_a4851c9d1fc8a346\ntfs.sys
[2006.11.02 11:51:47 | 001,056,360 | ---- | M] (Společnost Microsoft) MD5=3F379380A4A2637F559444E338CF1B51 -- C:\Windows\System32\drivers\ntfs.sys
[2006.11.02 11:51:47 | 001,056,360 | ---- | M] (Microsoft Corporation) MD5=3F379380A4A2637F559444E338CF1B51 -- C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.16386_none_a43a67c1200088bf\ntfs.sys
[2007.10.26 06:22:05 | 001,061,432 | ---- | M] (Microsoft Corporation) MD5=B5BE45B1F554DF9E1976CBC855365E60 -- C:\Windows\SoftwareDistribution\Download\c0a17eb89d8e2d806cdee4a2d05890b4\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.20709_none_a51d8a7c38da8c7b\ntfs.sys
[2007.12.17 00:52:59 | 001,061,944 | ---- | M] (Microsoft Corporation) MD5=F08824715CA6076F5E73E005AB83B9C8 -- C:\Windows\SoftwareDistribution\Download\42d95eaa5b801079eed08676250ce8a7\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.20740_none_a4e9483239031830\ntfs.sys
< MD5 for: NVRAID.SYS >
[2006.11.02 11:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) MD5=E69E946F80C1C31C53003BFBF50CBB7C -- C:\Windows\System32\drivers\nvraid.sys
[2006.11.02 11:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) MD5=E69E946F80C1C31C53003BFBF50CBB7C -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2007.01.05 21:59:42 | 000,035,920 | ---- | M] (NVIDIA Corporation) MD5=4A5FCAB82D9BF6AF8A023A66802FE9E9 -- C:\Windows\System32\drivers\nvstor.sys
[2007.01.05 21:59:42 | 000,035,920 | ---- | M] (NVIDIA Corporation) MD5=4A5FCAB82D9BF6AF8A023A66802FE9E9 -- C:\Windows\System32\DriverStore\FileRepository\nvstor.inf_f48b8337\nvstor.sys
[2006.11.02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
< MD5 for: SCECLI.DLL >
[2006.11.02 11:46:12 | 000,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A08BFF61 -- C:\Windows\System32\scecli.dll
[2006.11.02 11:46:12 | 000,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A08BFF61 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6000.16386_none_35d7205fdc305e3e\scecli.dll
< MD5 for: SERVICES.EXE >
[2006.11.02 11:45:40 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=329CF3C97CE4C19375C8ABCABAE258B0 -- C:\Windows\System32\services.exe
[2006.11.02 11:45:40 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=329CF3C97CE4C19375C8ABCABAE258B0 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6000.16386_none_cd28fe6bd05df036\services.exe
< MD5 for: SMSS.EXE >
[2006.11.02 11:45:45 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=CAA75757BB3695478C23CB0624342A61 -- C:\Windows\System32\smss.exe
[2006.11.02 11:45:45 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=CAA75757BB3695478C23CB0624342A61 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6000.16386_none_aa03e6011c468ee6\smss.exe
< MD5 for: SPOOLSV.EXE >
[2006.11.02 11:45:46 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=DA612EF2556776DF2630B68BF2D48935 -- C:\Windows\System32\spoolsv.exe
[2006.11.02 11:45:46 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=DA612EF2556776DF2630B68BF2D48935 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6000.16386_none_d414e125c49db442\spoolsv.exe
< MD5 for: SVCHOST.EXE >
[2006.11.02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=10DA15933D582D2FEDCF705EFE394B09 -- C:\Windows\System32\svchost.exe
[2006.11.02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=10DA15933D582D2FEDCF705EFE394B09 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6000.16386_none_b38497a50862ad11\svchost.exe
< MD5 for: TCPIP.SYS >
[2009.08.15 23:30:53 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=2512B4D1353370D6688B1AF1F5AFA1CF -- C:\Windows\SoftwareDistribution\Download\b635b7a7651f5dd1a95f6d85f3bb620f\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\tcpip.sys
[2009.08.14 19:01:55 | 000,900,168 | ---- | M] (Microsoft Corporation) MD5=2608E71AAD54564647D4BB984E1925AA -- C:\Windows\SoftwareDistribution\Download\b635b7a7651f5dd1a95f6d85f3bb620f\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_b34d67897fc6850f\tcpip.sys
[2010.02.18 13:51:51 | 000,818,688 | ---- | M] (Microsoft Corporation) MD5=2C1F7005AA3B62721BFDB307BD5F5010 -- C:\Windows\SoftwareDistribution\Download\2e00d1ae0f234ed468fbb47c2cd92fae\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21226_none_6019359fab5bb15b\tcpip.sys
[2010.02.18 16:49:38 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=2EAE4500984C2F8DACFB977060300A15 -- C:\Windows\SoftwareDistribution\Download\2e00d1ae0f234ed468fbb47c2cd92fae\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18427_none_b30f7c1866701ed5\tcpip.sys
[2009.08.14 16:24:47 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=300208927321066EA53761FDC98747C6 -- C:\Windows\SoftwareDistribution\Download\b635b7a7651f5dd1a95f6d85f3bb620f\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\tcpip.sys
[2010.02.18 16:07:16 | 000,904,576 | ---- | M] (Microsoft Corporation) MD5=48CBE6D53632D0067C2D6B20F90D84CA -- C:\Windows\SoftwareDistribution\Download\2e00d1ae0f234ed468fbb47c2cd92fae\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18209_none_b50d905263846bec\tcpip.sys
[2010.02.18 14:05:37 | 000,815,104 | ---- | M] (Microsoft Corporation) MD5=4A82FA8F0DF67AA354580C3FAAF8BDE3 -- C:\Windows\SoftwareDistribution\Download\2e00d1ae0f234ed468fbb47c2cd92fae\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.17021_none_5f8a957c924295b7\tcpip.sys
[2008.01.14 05:16:42 | 000,806,400 | ---- | M] (Microsoft Corporation) MD5=52A8BD6294F7D1443C6184C67AE13AF4 -- C:\Windows\SoftwareDistribution\Download\c6d3c2ffe03b8796482aee1c5fc8dc7f\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.20752_none_5ff4e4f9ab7777f4\tcpip.sys
[2008.01.14 05:17:57 | 000,803,328 | ---- | M] (Microsoft Corporation) MD5=5DF77458AA92FDB36FCE79C60F74AB5D -- C:\Windows\SoftwareDistribution\Download\c6d3c2ffe03b8796482aee1c5fc8dc7f\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16627_none_5f90b964923d030a\tcpip.sys
[2009.08.14 18:27:34 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=65877AA1B6A7CB797488E831698973E9 -- C:\Windows\SoftwareDistribution\Download\b635b7a7651f5dd1a95f6d85f3bb620f\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18091_none_b4a43aea63d4a25f\tcpip.sys
[2009.08.14 19:07:56 | 000,897,608 | ---- | M] (Microsoft Corporation) MD5=8A7AD2A214233F684242F289ED83EBC3 -- C:\Windows\SoftwareDistribution\Download\b635b7a7651f5dd1a95f6d85f3bb620f\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18311_none_b3144862666d6db3\tcpip.sys
[2010.02.18 19:36:50 | 000,902,024 | ---- | M] (Microsoft Corporation) MD5=93A5655CD9CD2F080EF1CB71A3666215 -- C:\Windows\SoftwareDistribution\Download\2e00d1ae0f234ed468fbb47c2cd92fae\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys
[2006.11.02 10:58:38 | 000,802,816 | ---- | M] (Microsoft Corporation) MD5=D944522B048A5FEB7700B5170D3D9423 -- C:\Windows\System32\drivers\tcpip.sys
[2006.11.02 10:58:38 | 000,802,816 | ---- | M] (Microsoft Corporation) MD5=D944522B048A5FEB7700B5170D3D9423 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16386_none_5f4ed3e0926e99e4\tcpip.sys
[2010.02.18 16:22:11 | 000,910,216 | ---- | M] (Microsoft Corporation) MD5=D9F5DD5BBC8348E8F8220CCBF14C022E -- C:\Windows\SoftwareDistribution\Download\2e00d1ae0f234ed468fbb47c2cd92fae\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22341_none_b563eb1d7cc9b0c2\tcpip.sys
[2009.08.14 18:33:50 | 000,905,784 | ---- | M] (Microsoft Corporation) MD5=FF71856BD4CD6D4367F9FD84BE79A874 -- C:\Windows\SoftwareDistribution\Download\b635b7a7651f5dd1a95f6d85f3bb620f\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22200_none_b58e289d7caa2a80\tcpip.sys
< MD5 for: USERINIT.EXE >
[2006.11.02 11:45:50 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=22027835939F86C3E47AD8E3FBDE3D11 -- C:\Windows\System32\userinit.exe
[2006.11.02 11:45:50 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=22027835939F86C3E47AD8E3FBDE3D11 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6000.16386_none_d9f1f819d4c4e737\userinit.exe
< MD5 for: WINLOGON.EXE >
[2006.11.02 11:45:57 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=9F75392B9128A91ABAFB044EA350BAAD -- C:\Windows\System32\winlogon.exe
[2006.11.02 11:45:57 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=9F75392B9128A91ABAFB044EA350BAAD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6000.16386_none_6d8c3f1ad8066b21\winlogon.exe
< MD5 for: WS2_32.DLL >
[2006.11.02 11:46:14 | 000,178,688 | ---- | M] (Microsoft Corporation) MD5=D99A071C1018BB3D4ABAAD4B62048AC2 -- C:\Windows\System32\ws2_32.dll
[2006.11.02 11:46:14 | 000,178,688 | ---- | M] (Microsoft Corporation) MD5=D99A071C1018BB3D4ABAAD4B62048AC2 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6000.16386_none_f080eec6d16af4f0\ws2_32.dll
< >
< C:\windows\system32\spool\prtprocs|dll;true;true;true /FP >
[2006.11.02 14:35:48 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\jnwppr.dll
[2007.01.08 23:03:29 | 000,003,584 | ---- | M] (Lexmark International Inc.) -- C:\Windows\System32\spool\prtprocs\w32x86\cs-CZ\LMPRTPRC.DLL.mui
[2007.09.21 10:52:16 | 000,003,584 | ---- | M] (Lexmark International Inc.) -- C:\Windows\System32\spool\prtprocs\w32x86\en-US\LMPRTPRC.DLL.mui
< %systemroot%\system32\drivers\*.sys /5 >
[2011.07.25 16:18:32 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\fs_rec.sys
[2011.07.25 16:14:16 | 000,396,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\http.sys
[2011.07.25 16:23:23 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\mrxsmb.sys
[2011.07.25 16:23:23 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\mrxsmb20.sys
[2011.07.25 16:11:20 | 000,130,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\srv2.sys
[2011.07.25 16:23:23 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\srvnet.sys
< %systemroot%\system32\drivers\*.sys /X >
[2006.09.18 23:26:46 | 003,440,660 | ---- | M] () -- C:\Windows\system32\drivers\gm.dls
[2006.09.18 23:26:46 | 000,000,646 | ---- | M] () -- C:\Windows\system32\drivers\gmreadme.txt
[2006.09.18 23:43:14 | 000,000,003 | ---- | M] () -- C:\Windows\system32\drivers\MsftWdf_Kernel_01005_Inbox_Critical.Wdf
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\system32\*.* /5 >
[2011.07.25 22:24:58 | 000,003,552 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011.07.25 22:24:58 | 000,003,552 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011.07.25 16:08:48 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\avicap32.dll
[2011.07.25 16:08:48 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\avifil32.dll
[2011.07.23 08:43:34 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\cabview.dll
[2011.07.23 08:57:19 | 000,002,577 | ---- | M] () -- C:\Windows\system32\config.nt
[2011.07.25 16:18:50 | 001,645,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\connect.dll
[2011.07.25 16:11:05 | 000,974,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\crypt32.dll
[2011.07.24 19:58:30 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\system32\deploytk.dll
[2011.07.25 16:06:23 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\dxmasf.dll
[2011.07.24 20:50:59 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\system32\FlashPlayerCPLApp.cpl
[2011.07.25 20:24:04 | 000,893,456 | ---- | M] () -- C:\Windows\system32\FNTCACHE.DAT
[2011.07.25 16:14:16 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\httpapi.dll
[2011.07.25 16:18:32 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\imagehlp.dll
[2011.07.25 16:21:50 | 000,737,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\inetcomm.dll
[2011.07.25 16:21:50 | 000,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\INETRES.dll
[2011.07.25 16:08:49 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\iyuv_32.dll
[2011.07.24 19:58:30 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\system32\java.exe
[2011.07.24 19:58:30 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\system32\javaw.exe
[2011.07.24 19:58:30 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\system32\javaws.exe
[2011.07.23 08:22:40 | 000,041,176 | ---- | M] () -- C:\Windows\system32\license.rtf
[2011.07.25 16:08:48 | 000,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mciavi32.dll
[2011.07.25 16:20:15 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msasn1.dll
[2011.07.25 16:06:22 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msdxm.ocx
[2011.07.25 16:08:48 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msrle32.dll
[2011.07.25 16:08:48 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msvfw32.dll
[2011.07.25 16:08:48 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msvidc32.dll
[2011.07.25 16:09:48 | 001,341,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msxml6.dll
[2011.07.25 16:09:48 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msxml6r.dll
[2011.07.25 16:08:49 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msyuv.dll
[2011.07.25 16:14:16 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\nshhttp.dll
[2011.07.25 20:30:45 | 000,081,198 | ---- | M] () -- C:\Windows\system32\perfc005.dat
[2011.07.25 20:30:45 | 000,103,726 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2011.07.25 20:30:45 | 000,473,360 | ---- | M] () -- C:\Windows\system32\perfh005.dat
[2011.07.25 20:30:45 | 000,609,944 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2011.07.25 20:30:45 | 001,259,320 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
[2011.07.25 16:10:11 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\poqexec.exe
[2011.07.25 16:08:23 | 000,750,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\qmgr.dll
[2011.07.25 16:08:48 | 001,327,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\quartz.dll
[2011.07.25 16:10:52 | 000,274,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\raschap.dll
[2011.07.25 16:10:52 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\rastls.dll
[2011.07.25 16:17:12 | 000,788,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\rpcrt4.dll
[2011.07.25 16:06:24 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\spwmp.dll
[2011.07.25 16:08:48 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\tsbyuv.dll
[2011.07.25 16:06:20 | 000,311,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\unregmp2.exe
[2011.07.25 16:10:01 | 000,633,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\user32.dll
[2011.07.25 16:10:01 | 002,026,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\win32k.sys
[2011.07.23 08:44:02 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wintrust.dll
[2011.07.25 16:18:32 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wmi.dll
[2011.07.25 16:06:24 | 010,622,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wmp.dll
[2011.07.25 16:06:25 | 008,147,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wmploc.DLL
[2011.07.25 16:08:08 | 000,604,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\WMSPDMOD.DLL
[2011.07.25 16:10:30 | 000,321,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\WSDApi.dll
[2011.07.23 08:34:07 | 000,575,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wuapi.dll
[2011.07.23 08:33:00 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wuapp.exe
[2011.07.23 08:35:24 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wuauclt.exe
[2011.07.23 08:35:24 | 001,929,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wuaueng.dll
[2011.07.23 08:35:24 | 002,421,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wucltux.dll
[2011.07.23 08:34:07 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wudriver.dll
[2011.07.23 08:34:07 | 000,035,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wups.dll
[2011.07.23 08:35:24 | 000,044,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wups2.dll
[2011.07.23 08:33:00 | 000,171,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wuwebv.dll
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\config\*.sav >
[2006.11.02 12:34:05 | 000,008,192 | ---- | M] () -- C:\Windows\system32\config\COMPONENTS.SAV
[2006.11.02 12:34:05 | 000,020,480 | ---- | M] () -- C:\Windows\system32\config\DEFAULT.SAV
[2006.11.02 12:34:05 | 000,008,192 | ---- | M] () -- C:\Windows\system32\config\SECURITY.SAV
[2006.11.02 12:34:08 | 010,133,504 | ---- | M] () -- C:\Windows\system32\config\SOFTWARE.SAV
[2006.11.02 12:34:08 | 001,826,816 | ---- | M] () -- C:\Windows\system32\config\SYSTEM.SAV
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\*.* /U /s >
[4 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
< %systemroot%\*. /mp /s >
< %ALLUSERSPROFILE%\Data Aplikací\*.* >
< %ALLUSERSPROFILE%\Data Aplikací\*.exe /s >
< %ALLUSERSPROFILE%\Dáta aplikácií\*.* >
< %ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s >
< %APPDATA%\*. >
[2011.07.24 20:16:26 | 000,000,000 | ---D | M] -- C:\Users\Hanik\AppData\Roaming\Adobe
[2011.07.25 21:10:04 | 000,000,000 | ---D | M] -- C:\Users\Hanik\AppData\Roaming\Corel
[2011.07.23 08:36:03 | 000,000,000 | ---D | M] -- C:\Users\Hanik\AppData\Roaming\Identities
[2011.07.23 10:10:35 | 000,000,000 | ---D | M] -- C:\Users\Hanik\AppData\Roaming\Macromedia
[2006.11.02 14:37:34 | 000,000,000 | ---D | M] -- C:\Users\Hanik\AppData\Roaming\Media Center Programs
[2011.07.24 20:16:26 | 000,000,000 | --SD | M] -- C:\Users\Hanik\AppData\Roaming\Microsoft
[2011.07.25 21:22:19 | 000,000,000 | ---D | M] -- C:\Users\Hanik\AppData\Roaming\PSpad
[2011.07.25 18:43:36 | 000,000,000 | ---D | M] -- C:\Users\Hanik\AppData\Roaming\ZipGenius
< %APPDATA%\*.* >
< %APPDATA%\*.exe /s >
< %SYSTEMDRIVE%\*.exe >
< >
< >
< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s >
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-07-23 06:44:15
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\BITS /s >
"JobInactivityTimeout" = 7776000
"JobMinimumRetryDelay" = 600
"JobNoProgressTimeout" = 1209600
"LogFileFlags" = 0
"LogFileMinMemory" = 120
"LogFileSize" = 1
"TimeQuantaLength" = 300
"UseLmCompat" = 2
"IGDSearcherDLL" = bitsigd.dll -- [2006.11.02 11:46:02 | 000,031,744 | ---- | M] (Microsoft Corporation)
"StateIndex" = 1
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER
BOOTEXECUTE REG_MULTI_SZ autocheck autochk *
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c >
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.07.25 22:58:59 | 000,000,512 | ---- | M] () MD5=97E5F0C6850953E74081698232BD60F9 -- C:\PhysicalMBR.bin
< End of report >
-
lookingbass
- Návštěvník
- Příspěvky: 10
- Registrován: 25 črc 2011 21:42
Re: fb vir - prosim o kontrolu
OTL Extras logfile created on: 25.7.2011 22:57:46 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Users\Hanik\Desktop
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16386)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,87 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 46,83% Memory free
3,96 Gb Paging File | 2,77 Gb Available in Paging File | 69,92% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 298,09 Gb Total Space | 243,48 Gb Free Space | 81,68% Space Free | Partition Type: NTFS
Computer Name: HANIK-PC | User Name: Hanik | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_USERS\S-1-5-21-617503589-927058738-2358854330-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 16
"{505AFDC0-5E72-4928-8368-5DEA385E3647}" = CorelDRAW Graphics Suite 12
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.0) - Czech
"{EC3B598C-1151-4191-B5B4-A9072ADE6259}_is1" = ZipGenius 6.3
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"avast" = avast! Free Antivirus
"CCleaner" = CCleaner
"Defraggler" = Defraggler
"Google Chrome" = Google Chrome
"PSPad editor_is1" = PSPad editor
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 25.7.2011 12:31:39 | Computer Name = Hanik-PC | Source = MsiInstaller | ID = 11935
Description = ?
Error - 25.7.2011 13:14:56 | Computer Name = Hanik-PC | Source = MsiInstaller | ID = 11935
Description = ?
[ System Events ]
Error - 25.7.2011 14:50:45 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku SNMP-Package_sk-SK
(Language Pack) do stavu Výchozí(Default).
Error - 25.7.2011 14:50:45 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku Telnet
Client_sk-SK (Language Pack) do stavu Výchozí(Default).
Error - 25.7.2011 14:50:46 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku Telnet
Server_sk-SK (Language Pack) do stavu Výchozí(Default).
Error - 25.7.2011 14:50:46 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku Microsoft-Windows-RemovableStorageManagement_sk-SK
(Language Pack) do stavu Výchozí(Default).
Error - 25.7.2011 14:50:46 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku Microsoft-Windows-TFTP-Client-Package_sk-SK
(Language Pack) do stavu Výchozí(Default).
Error - 25.7.2011 14:50:46 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku Disk-Diagnosis-Package_sk-SK
(Language Pack) do stavu Výchozí(Default).
Error - 25.7.2011 14:50:47 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku BRCplPremium_sk-SK
(Language Pack) do stavu Výchozí(Default).
Error - 25.7.2011 14:50:47 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku WMI-SNMP-Provider-Package_sk-SK
(Language Pack) do stavu Výchozí(Default).
Error - 25.7.2011 14:50:47 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku Windows
Links_sk-SK (Language Pack) do stavu Výchozí(Default).
Error - 25.7.2011 14:50:47 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku Microsoft-Windows-RDC-Package_sk-SK
(Language Pack) do stavu Výchozí(Default).
< End of report >
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Users\Hanik\Desktop
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16386)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,87 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 46,83% Memory free
3,96 Gb Paging File | 2,77 Gb Available in Paging File | 69,92% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 298,09 Gb Total Space | 243,48 Gb Free Space | 81,68% Space Free | Partition Type: NTFS
Computer Name: HANIK-PC | User Name: Hanik | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_USERS\S-1-5-21-617503589-927058738-2358854330-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 16
"{505AFDC0-5E72-4928-8368-5DEA385E3647}" = CorelDRAW Graphics Suite 12
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.0) - Czech
"{EC3B598C-1151-4191-B5B4-A9072ADE6259}_is1" = ZipGenius 6.3
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"avast" = avast! Free Antivirus
"CCleaner" = CCleaner
"Defraggler" = Defraggler
"Google Chrome" = Google Chrome
"PSPad editor_is1" = PSPad editor
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 25.7.2011 12:31:39 | Computer Name = Hanik-PC | Source = MsiInstaller | ID = 11935
Description = ?
Error - 25.7.2011 13:14:56 | Computer Name = Hanik-PC | Source = MsiInstaller | ID = 11935
Description = ?
[ System Events ]
Error - 25.7.2011 14:50:45 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku SNMP-Package_sk-SK
(Language Pack) do stavu Výchozí(Default).
Error - 25.7.2011 14:50:45 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku Telnet
Client_sk-SK (Language Pack) do stavu Výchozí(Default).
Error - 25.7.2011 14:50:46 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku Telnet
Server_sk-SK (Language Pack) do stavu Výchozí(Default).
Error - 25.7.2011 14:50:46 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku Microsoft-Windows-RemovableStorageManagement_sk-SK
(Language Pack) do stavu Výchozí(Default).
Error - 25.7.2011 14:50:46 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku Microsoft-Windows-TFTP-Client-Package_sk-SK
(Language Pack) do stavu Výchozí(Default).
Error - 25.7.2011 14:50:46 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku Disk-Diagnosis-Package_sk-SK
(Language Pack) do stavu Výchozí(Default).
Error - 25.7.2011 14:50:47 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku BRCplPremium_sk-SK
(Language Pack) do stavu Výchozí(Default).
Error - 25.7.2011 14:50:47 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku WMI-SNMP-Provider-Package_sk-SK
(Language Pack) do stavu Výchozí(Default).
Error - 25.7.2011 14:50:47 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku Windows
Links_sk-SK (Language Pack) do stavu Výchozí(Default).
Error - 25.7.2011 14:50:47 | Computer Name = Hanik-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description = Služba Windows Servicing nedokončila proces nastavení balíčku Microsoft-Windows-RDC-Package_sk-SK
(Language Pack) do stavu Výchozí(Default).
< End of report >
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
-
lookingbass
- Návštěvník
- Příspěvky: 10
- Registrován: 25 črc 2011 21:42
Re: fb vir - prosim o kontrolu
momentalne v pohode, ale predtim dost podstatne zamrzalo u spusteni programu... klik - dlouha odezva a pak se teprve neco stalo... a tak dale. mam neco zkusit dale? restart nebo neco?
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: fb vir - prosim o kontrolu
Stáhněte TFC http://oldtimer.geekstogo.com/TFC.exe
- Spusťte.
- Klikněte na "Start". Potvrďte hlášku kliknutím na "Ok" (Bude následovat restart)
Stáhněte OTC http://oldtimer.geekstogo.com/OTC.exe
- Spusťte.
- Klikněte na "CleanUp!". Potvrďte hlášky kliknutím na "Yes" (Bude následovat restart)
Stáhněte Ccleaner http://viry.cz/forum/viewtopic.php?t=7478 Záložka Čistič
- Dejte analyzovat, po dokončení dejte Spustit Ccleaner.
Záložka Registry - Klikněte na Hledej problémy, po dokončení klikněte na Opravit problémy, zálohu dělat nemusíte, potom dejte Opravit všechny problémy.
OK Zavřít-
lookingbass
- Návštěvník
- Příspěvky: 10
- Registrován: 25 črc 2011 21:42
Re: fb vir - prosim o kontrolu
po TFC mam pc restartovat sam? napise mi to toto (dole) a pak je jen tlacitko exit.
Getting user folders.
Stopping running processes.
Emptying Temp folders.
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Hanik
->Temp folder emptied: 107580 bytes
->Temporary Internet Files folder emptied: 49554 bytes
->Java cache emptied: 1810321 bytes
->Google Chrome cache emptied: 69977743 bytes
->Flash cache emptied: 998 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 144926 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 32902 bytes
Emptying RecycleBin. Do not interrupt.
RecycleBin emptied: 0 bytes
Process complete!
Total Files Cleaned = 69,00 mb
Getting user folders.
Stopping running processes.
Emptying Temp folders.
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Hanik
->Temp folder emptied: 107580 bytes
->Temporary Internet Files folder emptied: 49554 bytes
->Java cache emptied: 1810321 bytes
->Google Chrome cache emptied: 69977743 bytes
->Flash cache emptied: 998 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 144926 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 32902 bytes
Emptying RecycleBin. Do not interrupt.
RecycleBin emptied: 0 bytes
Process complete!
Total Files Cleaned = 69,00 mb
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
-
lookingbass
- Návštěvník
- Příspěvky: 10
- Registrován: 25 črc 2011 21:42
Re: fb vir - prosim o kontrolu
ok, vse provedeno, ted restartovat? zatim jsem teda nerestartoval.
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
-
lookingbass
- Návštěvník
- Příspěvky: 10
- Registrován: 25 črc 2011 21:42
Re: fb vir - prosim o kontrolu
muzu se jeste jen zeptat, jestli tam neco bylo?
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Přispějete na provoz fóra?