Pls o prev.kontr.logu

Zpráva

volodja23 · #1 Příspěvek od **volodja23** » 01 lis 2011 10:59

Logfile of random's system information tool 1.09 (written by random/random)
Run by Vladimir at 2011-11-01 10:53:22
Microsoft Windows 7 Ultimate
System drive C: has 113 GB (47%) free of 238 GB
Total RAM: 2047 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:53:40, on 1.11.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Java\jre7\launch4j-tmp\frd.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Vladimir\Downloads\RSIT.exe
C:\Program Files\trend micro\Vladimir.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {5786d022-540e-4699-b350-b4be0ae94b79} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-3786599678-3196244946-1610063088-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-3786599678-3196244946-1610063088-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Startup: OpenOffice.org 3.3.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Aktivátor Správce výběru OS Acronis (Správce výběru OS) - Unknown owner - C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 5487 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\ofescmbg.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\ofescmbg.default\extensions\
{1018e4d6-728f-4b20-ad56-37578a4de76b}
{5786d022-540e-4699-b350-b4be0ae94b79}

C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\ofescmbg.default\searchplugins\
conduit.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2011-10-29 57224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-09-06 3722416]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2011-08-16 10820200]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-05-04 252136]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-08-02 4910912]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1173504]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Vladimir^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Registrace FIFA 11.lnk]
C:\PROGRA~1\EASPOR~1\FIFA11~1\Support\EAREGI~1.EXE [2010-09-23 4407808]

C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OpenOffice.org 3.3.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2011-11-01 10:53:22 ----D---- C:\rsit
2011-11-01 10:53:22 ----D---- C:\Program Files\trend micro
2011-10-31 07:54:13 ----D---- C:\Windows\pss
2011-10-30 21:00:22 ----D---- C:\FreeRapid-0.86
2011-10-30 16:38:32 ----D---- C:\Program Files\uTorrent
2011-10-30 16:37:15 ----D---- C:\Users\Vladimir\AppData\Roaming\uTorrent
2011-10-30 16:22:15 ----D---- C:\Program Files\FinalWire
2011-10-30 08:29:43 ----D---- C:\Program Files\Microsoft Silverlight
2011-10-30 06:38:08 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2011-10-30 06:32:47 ----A---- C:\Windows\system32\shell32.dll
2011-10-30 06:32:45 ----A---- C:\Windows\system32\DWrite.dll
2011-10-30 06:32:44 ----A---- C:\Windows\system32\FntCache.dll
2011-10-30 06:32:44 ----A---- C:\Windows\system32\d2d1.dll
2011-10-29 18:28:49 ----D---- C:\Program Files\Common Files\Java
2011-10-29 18:28:23 ----A---- C:\Windows\system32\javaws.exe
2011-10-29 18:28:23 ----A---- C:\Windows\system32\javaw.exe
2011-10-29 18:28:23 ----A---- C:\Windows\system32\java.exe
2011-10-29 14:05:45 ----HD---- C:\ProgramData\CanonBJ
2011-10-29 14:05:18 ----A---- C:\Windows\system32\CNMLM9E.DLL
2011-10-29 09:54:13 ----A---- C:\Windows\system32\OpenCL.dll
2011-10-29 09:54:12 ----A---- C:\Windows\system32\nvoglv32.dll
2011-10-29 09:54:12 ----A---- C:\Windows\system32\nvd3dum.dll
2011-10-29 09:54:12 ----A---- C:\Windows\system32\nvcuvid.dll
2011-10-29 09:54:12 ----A---- C:\Windows\system32\nvcuvenc.dll
2011-10-29 09:54:12 ----A---- C:\Windows\system32\nvcuda.dll
2011-10-29 09:54:12 ----A---- C:\Windows\system32\nvcompiler.dll
2011-10-29 09:54:12 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2011-10-29 09:49:29 ----D---- C:\Program Files\Microsoft.NET
2011-10-29 09:29:33 ----A---- C:\Windows\system32\odbctrac.dll
2011-10-29 09:29:33 ----A---- C:\Windows\system32\odbcjt32.dll
2011-10-29 09:29:33 ----A---- C:\Windows\system32\odbccu32.dll
2011-10-29 09:29:33 ----A---- C:\Windows\system32\odbccr32.dll
2011-10-29 09:29:33 ----A---- C:\Windows\system32\odbccp32.dll
2011-10-29 08:30:56 ----D---- C:\Windows\CheckSur
2011-10-29 08:29:39 ----D---- C:\Windows\system32\Wat
2011-10-29 08:26:48 ----A---- C:\Windows\system32\drivers\nvstor.sys
2011-10-29 08:26:47 ----A---- C:\Windows\system32\esent.dll
2011-10-29 08:26:47 ----A---- C:\Windows\system32\drivers\nvraid.sys
2011-10-29 08:26:47 ----A---- C:\Windows\system32\drivers\ntfs.sys
2011-10-29 08:26:47 ----A---- C:\Windows\system32\drivers\amdsata.sys
2011-10-29 08:26:46 ----A---- C:\Windows\system32\fsutil.exe
2011-10-29 08:26:46 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2011-10-29 08:26:46 ----A---- C:\Windows\system32\drivers\storport.sys
2011-10-29 08:26:46 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2011-10-29 08:26:46 ----A---- C:\Windows\system32\drivers\amdxata.sys
2011-10-29 08:26:34 ----A---- C:\Windows\system32\drivers\usbport.sys
2011-10-29 08:26:34 ----A---- C:\Windows\system32\drivers\usbhub.sys
2011-10-29 08:26:34 ----A---- C:\Windows\system32\drivers\usbehci.sys
2011-10-29 08:26:33 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2011-10-29 08:26:33 ----A---- C:\Windows\system32\drivers\usbohci.sys
2011-10-29 08:26:33 ----A---- C:\Windows\system32\drivers\usbd.sys
2011-10-29 08:26:33 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2011-10-29 08:14:51 ----D---- C:\Users\Vladimir\AppData\Roaming\OpenOffice.org
2011-10-29 08:08:08 ----D---- C:\Program Files\OpenOffice.org 3
2011-10-29 07:32:53 ----D---- C:\Users\Vladimir\AppData\Roaming\VitySoft
2011-10-29 07:02:08 ----D---- C:\ProgramData\Codemasters
2011-10-29 06:52:16 ----A---- C:\Windows\system32\rapture3d_oal.dll
2011-10-29 06:52:16 ----A---- C:\Windows\system32\mkl_blueripple.dll
2011-10-29 06:52:14 ----D---- C:\Program Files\BRS
2011-10-29 06:52:12 ----D---- C:\Program Files\OpenAL
2011-10-29 06:52:11 ----RA---- C:\Windows\system32\tmp3959.tmp
2011-10-29 06:52:11 ----A---- C:\Windows\system32\wrap_oal.dll
2011-10-29 06:52:11 ----A---- C:\Windows\system32\OpenAL32.dll
2011-10-29 06:52:10 ----A---- C:\Windows\system32\XAudio2_7.dll
2011-10-29 06:52:10 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2011-10-29 06:52:09 ----A---- C:\Windows\system32\xactengine3_7.dll
2011-10-29 06:52:08 ----A---- C:\Windows\system32\d3dx11_43.dll
2011-10-29 06:52:08 ----A---- C:\Windows\system32\d3dx10_43.dll
2011-10-29 06:52:08 ----A---- C:\Windows\system32\d3dcsx_43.dll
2011-10-29 06:52:08 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2011-10-29 06:52:07 ----A---- C:\Windows\system32\D3DX9_43.dll
2011-10-29 06:51:34 ----A---- C:\Windows\system32\D3DX9_42.dll
2011-10-29 06:51:34 ----A---- C:\Windows\system32\d3dx10_42.dll
2011-10-29 06:51:06 ----D---- C:\Windows\system32\xlive
2011-10-29 06:50:58 ----D---- C:\Program Files\Microsoft Games for Windows - LIVE
2011-10-29 06:40:20 ----D---- C:\Program Files\Codemasters
2011-10-29 06:37:57 ----D---- C:\ProgramData\IObit
2011-10-29 06:37:51 ----D---- C:\Program Files\IObit
2011-10-29 06:35:48 ----D---- C:\Program Files\Common Files\Adobe
2011-10-29 06:35:48 ----D---- C:\Program Files\Adobe
2011-10-29 06:35:14 ----D---- C:\ProgramData\Adobe
2011-10-29 06:33:01 ----D---- C:\ProgramData\Sun
2011-10-29 06:32:38 ----A---- C:\Windows\system32\deployJava1.dll
2011-10-29 06:32:10 ----D---- C:\Program Files\Java
2011-10-29 06:21:50 ----D---- C:\Users\Vladimir\AppData\Roaming\Leadertech
2011-10-29 06:17:07 ----D---- C:\Program Files\EA Sports
2011-10-29 06:17:06 ----A---- C:\Windows\system32\XAudio2_4.dll
2011-10-29 06:17:06 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2011-10-29 06:17:06 ----A---- C:\Windows\system32\D3DX9_41.dll
2011-10-29 06:17:06 ----A---- C:\Windows\system32\d3dx10_41.dll
2011-10-29 06:17:06 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2011-10-29 06:17:05 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2011-10-29 06:17:05 ----A---- C:\Windows\system32\xactengine3_4.dll
2011-10-29 06:17:05 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2011-10-29 06:17:05 ----A---- C:\Windows\system32\D3DX9_40.dll
2011-10-29 06:17:05 ----A---- C:\Windows\system32\d3dx10_40.dll
2011-10-29 06:17:05 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2011-10-29 06:17:04 ----A---- C:\Windows\system32\XAudio2_3.dll
2011-10-29 06:17:04 ----A---- C:\Windows\system32\XAudio2_2.dll
2011-10-29 06:17:04 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2011-10-29 06:17:04 ----A---- C:\Windows\system32\xactengine3_3.dll
2011-10-29 06:17:04 ----A---- C:\Windows\system32\xactengine3_2.dll
2011-10-29 06:17:04 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2011-10-29 06:17:04 ----A---- C:\Windows\system32\d3dx10_39.dll
2011-10-29 06:17:04 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2011-10-29 06:17:03 ----A---- C:\Windows\system32\XAudio2_1.dll
2011-10-29 06:17:03 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2011-10-29 06:17:03 ----A---- C:\Windows\system32\xactengine3_1.dll
2011-10-29 06:17:03 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2011-10-29 06:17:03 ----A---- C:\Windows\system32\D3DX9_39.dll
2011-10-29 06:17:03 ----A---- C:\Windows\system32\d3dx10_38.dll
2011-10-29 06:17:03 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2011-10-29 06:17:02 ----A---- C:\Windows\system32\XAudio2_0.dll
2011-10-29 06:17:02 ----A---- C:\Windows\system32\xactengine3_0.dll
2011-10-29 06:17:02 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2011-10-29 06:17:02 ----A---- C:\Windows\system32\D3DX9_38.dll
2011-10-29 06:17:01 ----A---- C:\Windows\system32\d3dx10_37.dll
2011-10-29 06:17:01 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2011-10-29 06:16:54 ----A---- C:\Windows\system32\xactengine2_10.dll
2011-10-29 06:16:54 ----A---- C:\Windows\system32\D3DX9_37.dll
2011-10-29 06:16:53 ----A---- C:\Windows\system32\d3dx10_36.dll
2011-10-29 06:16:53 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2011-10-29 06:16:52 ----A---- C:\Windows\system32\xactengine2_9.dll
2011-10-29 06:16:52 ----A---- C:\Windows\system32\d3dx9_36.dll
2011-10-29 06:16:52 ----A---- C:\Windows\system32\d3dx9_35.dll
2011-10-29 06:16:52 ----A---- C:\Windows\system32\d3dx10_35.dll
2011-10-29 06:16:52 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2011-10-29 06:16:51 ----A---- C:\Windows\system32\xactengine2_8.dll
2011-10-29 06:16:51 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2011-10-29 06:16:51 ----A---- C:\Windows\system32\d3dx9_34.dll
2011-10-29 06:16:51 ----A---- C:\Windows\system32\d3dx10_34.dll
2011-10-29 06:16:51 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2011-10-29 06:16:50 ----A---- C:\Windows\system32\xinput1_3.dll
2011-10-29 06:16:50 ----A---- C:\Windows\system32\xactengine2_7.dll
2011-10-29 06:16:50 ----A---- C:\Windows\system32\d3dx10_33.dll
2011-10-29 06:16:50 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2011-10-29 06:16:49 ----A---- C:\Windows\system32\xactengine2_6.dll
2011-10-29 06:16:49 ----A---- C:\Windows\system32\d3dx9_33.dll
2011-10-29 06:16:48 ----A---- C:\Windows\system32\xactengine2_5.dll
2011-10-29 06:16:48 ----A---- C:\Windows\system32\d3dx10.dll
2011-10-29 06:16:47 ----A---- C:\Windows\system32\xactengine2_4.dll
2011-10-29 06:16:47 ----A---- C:\Windows\system32\x3daudio1_1.dll
2011-10-29 06:16:47 ----A---- C:\Windows\system32\d3dx9_32.dll
2011-10-29 06:16:46 ----A---- C:\Windows\system32\xinput1_2.dll
2011-10-29 06:16:46 ----A---- C:\Windows\system32\xinput1_1.dll
2011-10-29 06:16:46 ----A---- C:\Windows\system32\xactengine2_3.dll
2011-10-29 06:16:46 ----A---- C:\Windows\system32\xactengine2_2.dll
2011-10-29 06:16:46 ----A---- C:\Windows\system32\d3dx9_31.dll
2011-10-29 06:16:45 ----A---- C:\Windows\system32\xactengine2_1.dll
2011-10-29 06:16:34 ----A---- C:\Windows\system32\xactengine2_0.dll
2011-10-29 06:16:34 ----A---- C:\Windows\system32\x3daudio1_0.dll
2011-10-29 06:16:34 ----A---- C:\Windows\system32\d3dx9_30.dll
2011-10-29 06:16:34 ----A---- C:\Windows\system32\d3dx9_29.dll
2011-10-29 06:16:33 ----A---- C:\Windows\system32\d3dx9_28.dll
2011-10-29 06:16:33 ----A---- C:\Windows\system32\d3dx9_27.dll
2011-10-29 06:16:33 ----A---- C:\Windows\system32\d3dx9_26.dll
2011-10-29 06:16:32 ----A---- C:\Windows\system32\d3dx9_25.dll
2011-10-29 06:16:31 ----A---- C:\Windows\system32\d3dx9_24.dll
2011-10-28 21:42:38 ----A---- C:\Windows\system32\msv1_0.dll
2011-10-28 21:40:09 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2011-10-28 21:40:09 ----A---- C:\Windows\system32\PresentationHost.exe
2011-10-28 21:40:09 ----A---- C:\Windows\system32\netfxperf.dll
2011-10-28 21:40:09 ----A---- C:\Windows\system32\mscoree.dll
2011-10-28 21:40:09 ----A---- C:\Windows\system32\dfshim.dll
2011-10-28 21:38:23 ----D---- C:\Program Files\FileHippo.com
2011-10-28 21:36:30 ----D---- C:\Program Files\CCleaner
2011-10-28 21:33:08 ----A---- C:\Windows\system32\MRT.exe
2011-10-28 21:29:09 ----A---- C:\Windows\system32\browserchoice.exe
2011-10-28 21:27:13 ----A---- C:\Windows\system32\drivers\ks.sys
2011-10-28 21:26:44 ----A---- C:\Windows\system32\wcncsvc.dll
2011-10-28 21:25:53 ----A---- C:\Windows\system32\tzres.dll
2011-10-28 21:25:41 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-10-28 21:25:38 ----A---- C:\Windows\system32\winsrv.dll
2011-10-28 21:25:38 ----A---- C:\Windows\system32\KernelBase.dll
2011-10-28 21:25:38 ----A---- C:\Windows\system32\kernel32.dll
2011-10-28 21:25:38 ----A---- C:\Windows\system32\conhost.exe
2011-10-28 21:25:37 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-10-28 21:25:36 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-10-28 21:25:36 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2011-10-28 21:25:36 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2011-10-28 21:25:36 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2011-10-28 21:25:36 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2011-10-28 21:25:35 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-10-28 21:25:35 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2011-10-28 21:25:35 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-10-28 21:25:35 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-10-28 21:25:35 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2011-10-28 21:25:35 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2011-10-28 21:25:35 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2011-10-28 21:25:35 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2011-10-28 21:25:34 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-10-28 21:25:34 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2011-10-28 21:25:34 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2011-10-28 21:25:34 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2011-10-28 21:25:34 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2011-10-28 21:25:34 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-10-28 21:25:34 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2011-10-28 21:25:34 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2011-10-28 21:25:34 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2011-10-28 21:25:33 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-10-28 21:25:33 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-10-28 21:25:33 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-10-28 21:25:33 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2011-10-28 21:25:33 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2011-10-28 21:25:31 ----A---- C:\Windows\system32\schannel.dll
2011-10-28 21:25:29 ----A---- C:\Windows\system32\mfc40u.dll
2011-10-28 21:25:29 ----A---- C:\Windows\system32\mfc40.dll
2011-10-28 21:25:28 ----A---- C:\Windows\system32\XpsPrint.dll
2011-10-28 21:25:01 ----A---- C:\Windows\system32\msdri.dll
2011-10-28 21:24:54 ----A---- C:\Windows\system32\CertEnroll.dll
2011-10-28 21:24:52 ----A---- C:\Windows\system32\winload.exe
2011-10-28 21:24:51 ----A---- C:\Windows\system32\winresume.exe
2011-10-28 21:24:42 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-10-28 21:24:42 ----A---- C:\Windows\system32\ntkrnlpa.exe
2011-10-28 21:24:39 ----A---- C:\Windows\system32\win32k.sys
2011-10-28 21:24:35 ----A---- C:\Windows\system32\apphelp.dll
2011-10-28 21:24:32 ----A---- C:\Windows\system32\mssrch.dll
2011-10-28 21:24:31 ----A---- C:\Windows\system32\tquery.dll
2011-10-28 21:24:31 ----A---- C:\Windows\system32\SearchIndexer.exe
2011-10-28 21:24:30 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2011-10-28 21:24:30 ----A---- C:\Windows\system32\mssvp.dll
2011-10-28 21:24:30 ----A---- C:\Windows\system32\mssphtb.dll
2011-10-28 21:24:30 ----A---- C:\Windows\system32\mssph.dll
2011-10-28 21:24:29 ----A---- C:\Windows\system32\SearchFilterHost.exe
2011-10-28 21:24:29 ----A---- C:\Windows\system32\msscntrs.dll
2011-10-28 21:24:24 ----A---- C:\Windows\system32\lsasrv.dll
2011-10-28 21:24:24 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2011-10-28 21:24:22 ----A---- C:\Windows\system32\winlogon.exe
2011-10-28 21:24:15 ----A---- C:\Windows\system32\drivers\afd.sys
2011-10-28 21:24:11 ----A---- C:\Windows\system32\EncDec.dll
2011-10-28 21:24:11 ----A---- C:\Windows\system32\CPFilters.dll
2011-10-28 21:24:10 ----A---- C:\Windows\system32\sbe.dll
2011-10-28 21:24:07 ----A---- C:\Windows\system32\drivers\dfsc.sys
2011-10-28 21:23:43 ----A---- C:\Windows\system32\psisdecd.dll
2011-10-28 21:23:38 ----A---- C:\Windows\system32\wmp.dll
2011-10-28 21:23:36 ----A---- C:\Windows\system32\wmploc.DLL
2011-10-28 21:23:34 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-10-28 21:23:34 ----A---- C:\Windows\system32\drivers\srv.sys
2011-10-28 21:23:33 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-10-28 21:23:32 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-10-28 21:23:30 ----A---- C:\Windows\system32\spoolsv.exe
2011-10-28 21:23:29 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-10-28 21:23:29 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-10-28 21:23:29 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-10-28 21:23:23 ----A---- C:\Windows\system32\wmicmiplugin.dll
2011-10-28 21:23:23 ----A---- C:\Windows\system32\taskschd.dll
2011-10-28 21:23:23 ----A---- C:\Windows\system32\taskeng.exe
2011-10-28 21:23:23 ----A---- C:\Windows\system32\taskcomp.dll
2011-10-28 21:23:23 ----A---- C:\Windows\system32\schtasks.exe
2011-10-28 21:23:23 ----A---- C:\Windows\system32\schedsvc.dll
2011-10-28 21:23:19 ----A---- C:\Windows\system32\odbc32.dll
2011-10-28 21:23:13 ----A---- C:\Windows\explorer.exe
2011-10-28 21:23:11 ----A---- C:\Windows\system32\mstscax.dll
2011-10-28 21:23:11 ----A---- C:\Windows\system32\mstsc.exe
2011-10-28 21:23:10 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-10-28 21:23:08 ----A---- C:\Windows\system32\inetcomm.dll
2011-10-28 21:23:06 ----A---- C:\Windows\system32\FXSCOVER.exe
2011-10-28 21:23:02 ----A---- C:\Windows\system32\ole32.dll
2011-10-28 21:22:59 ----A---- C:\Windows\system32\comctl32.dll
2011-10-28 21:22:55 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-10-28 21:22:55 ----A---- C:\Windows\system32\dnscacheugc.exe
2011-10-28 21:22:55 ----A---- C:\Windows\system32\dnsapi.dll
2011-10-28 21:22:54 ----A---- C:\Windows\system32\atmlib.dll
2011-10-28 21:22:54 ----A---- C:\Windows\system32\atmfd.dll
2011-10-28 21:22:49 ----A---- C:\Windows\system32\kerberos.dll
2011-10-28 21:22:47 ----A---- C:\Windows\system32\asycfilt.dll
2011-10-28 21:22:45 ----A---- C:\Windows\system32\oleaut32.dll
2011-10-28 21:22:45 ----A---- C:\Windows\system32\oleacc.dll
2011-10-28 21:22:41 ----A---- C:\Windows\system32\webio.dll
2011-10-28 21:22:38 ----A---- C:\Windows\system32\quartz.dll
2011-10-28 21:22:38 ----A---- C:\Windows\system32\msyuv.dll
2011-10-28 21:22:38 ----A---- C:\Windows\system32\msvidc32.dll
2011-10-28 21:22:38 ----A---- C:\Windows\system32\msrle32.dll
2011-10-28 21:22:38 ----A---- C:\Windows\system32\mciavi32.dll
2011-10-28 21:22:38 ----A---- C:\Windows\system32\iyuv_32.dll
2011-10-28 21:22:38 ----A---- C:\Windows\system32\avifil32.dll
2011-10-28 21:22:37 ----A---- C:\Windows\system32\tsbyuv.dll
2011-10-28 21:22:37 ----A---- C:\Windows\system32\msasn1.dll
2011-10-28 21:22:35 ----A---- C:\Windows\system32\fontsub.dll
2011-10-28 21:22:33 ----A---- C:\Windows\system32\xmllite.dll
2011-10-28 21:22:32 ----A---- C:\Windows\system32\drivers\fvevol.sys
2011-10-28 21:22:31 ----A---- C:\Windows\system32\rtutils.dll
2011-10-28 21:22:31 ----A---- C:\Windows\system32\prevhost.exe
2011-10-28 21:22:25 ----A---- C:\Windows\system32\ir32_32.dll
2011-10-28 21:22:25 ----A---- C:\Windows\system32\iccvid.dll
2011-10-28 21:22:23 ----A---- C:\Windows\system32\t2embed.dll
2011-10-28 21:22:02 ----A---- C:\Windows\system32\drivers\bowser.sys
2011-10-28 21:19:03 ----D---- C:\Users\Vladimir\AppData\Roaming\Ashampoo
2011-10-28 21:17:46 ----D---- C:\ProgramData\ashampoo
2011-10-28 21:16:53 ----A---- C:\Windows\system32\upnp.dll
2011-10-28 21:16:52 ----A---- C:\Windows\system32\msxml6.dll
2011-10-28 21:16:51 ----A---- C:\Windows\system32\winhttp.dll
2011-10-28 21:16:51 ----A---- C:\Windows\system32\WebClnt.dll
2011-10-28 21:16:51 ----A---- C:\Windows\system32\msxml3.dll
2011-10-28 21:16:51 ----A---- C:\Windows\system32\davclnt.dll
2011-10-28 21:16:50 ----A---- C:\Windows\system32\wscsvc.dll
2011-10-28 21:16:50 ----A---- C:\Windows\system32\wscapi.dll
2011-10-28 21:16:50 ----A---- C:\Windows\system32\slwga.dll
2011-10-28 21:16:39 ----D---- C:\Program Files\Ashampoo
2011-10-28 21:13:18 ----A---- C:\Windows\system32\ntdll.dll
2011-10-28 21:13:09 ----A---- C:\Windows\system32\secproc_isv.dll
2011-10-28 21:13:09 ----A---- C:\Windows\system32\secproc.dll
2011-10-28 21:13:09 ----A---- C:\Windows\system32\RMActivate_isv.exe
2011-10-28 21:13:09 ----A---- C:\Windows\system32\RMActivate.exe
2011-10-28 21:13:08 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2011-10-28 21:13:08 ----A---- C:\Windows\system32\secproc_ssp.dll
2011-10-28 21:13:08 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2011-10-28 21:13:08 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2011-10-28 21:13:06 ----A---- C:\Windows\system32\mfc42.dll
2011-10-28 21:13:05 ----A---- C:\Windows\system32\mfc42u.dll
2011-10-28 21:13:01 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-10-28 21:12:59 ----A---- C:\Windows\system32\d3d10_1.dll
2011-10-28 21:12:56 ----A---- C:\Windows\system32\consent.exe
2011-10-28 21:12:52 ----A---- C:\Windows\system32\poqexec.exe
2011-10-28 21:12:51 ----A---- C:\Windows\system32\wmpmde.dll
2011-10-28 21:12:49 ----A---- C:\Windows\system32\srvsvc.dll
2011-10-28 21:12:48 ----A---- C:\Windows\system32\StructuredQuery.dll
2011-10-28 21:12:35 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-10-28 21:12:35 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-10-28 21:12:34 ----A---- C:\Windows\system32\cdd.dll
2011-10-28 21:05:27 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2011-10-28 21:05:05 ----D---- C:\Program Files\DAEMON Tools Lite
2011-10-28 21:04:34 ----D---- C:\Users\Vladimir\AppData\Roaming\DAEMON Tools Lite
2011-10-28 21:04:28 ----D---- C:\ProgramData\DAEMON Tools Lite
2011-10-28 20:35:02 ----A---- C:\Windows\system32\drivers\nvamacpi.sys
2011-10-28 20:35:01 ----A---- C:\Windows\system32\NVCOAWY.DLL
2011-10-28 20:26:04 ----D---- C:\Program Files\SlimDrivers
2011-10-28 20:25:36 ----D---- C:\Program Files\Downloaded Installers
2011-10-28 19:09:11 ----D---- C:\Windows\system32\RTCOM
2011-10-28 19:08:25 ----A---- C:\Windows\system32\WavesLib.dll
2011-10-28 19:08:25 ----A---- C:\Windows\system32\WavesGUILib.dll
2011-10-28 19:08:25 ----A---- C:\Windows\system32\SRSWOW.dll
2011-10-28 19:08:25 ----A---- C:\Windows\system32\SRSTSXT.dll
2011-10-28 19:08:25 ----A---- C:\Windows\system32\SRSTSHD.dll
2011-10-28 19:08:25 ----A---- C:\Windows\system32\SRSHP360.dll
2011-10-28 19:08:24 ----A---- C:\Windows\system32\SFNHK.dll
2011-10-28 19:08:24 ----A---- C:\Windows\system32\SFCOM.dll
2011-10-28 19:08:24 ----A---- C:\Windows\system32\SFAPO.dll
2011-10-28 19:08:24 ----A---- C:\Windows\system32\RtkPgExt.dll
2011-10-28 19:08:24 ----A---- C:\Windows\system32\RtkCoInst.dll
2011-10-28 19:08:24 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2011-10-28 19:08:23 ----A---- C:\Windows\system32\RtkApoApi.dll
2011-10-28 19:08:23 ----A---- C:\Windows\system32\RtkAPO.dll
2011-10-28 19:08:22 ----A---- C:\Windows\system32\RTEEP32A.dll
2011-10-28 19:08:22 ----A---- C:\Windows\system32\RTEEL32A.dll
2011-10-28 19:08:22 ----A---- C:\Windows\system32\RTEEG32A.dll
2011-10-28 19:08:22 ----A---- C:\Windows\system32\RTEED32A.dll
2011-10-28 19:08:22 ----A---- C:\Windows\system32\RP3DHT32.dll
2011-10-28 19:08:22 ----A---- C:\Windows\system32\RP3DAA32.dll
2011-10-28 19:08:22 ----A---- C:\Windows\system32\RCoRes.dat
2011-10-28 19:08:22 ----A---- C:\Windows\system32\R4EEP32A.dll
2011-10-28 19:08:22 ----A---- C:\Windows\system32\R4EEL32A.dll
2011-10-28 19:08:22 ----A---- C:\Windows\system32\R4EEG32A.dll
2011-10-28 19:08:22 ----A---- C:\Windows\system32\R4EED32A.dll
2011-10-28 19:08:22 ----A---- C:\Windows\system32\R4EEA32A.dll
2011-10-28 19:08:22 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2011-10-28 19:08:22 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2011-10-28 19:08:21 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2011-10-28 19:08:21 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2011-10-28 19:08:21 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2011-10-28 19:08:21 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2011-10-28 19:08:21 ----A---- C:\Windows\system32\KAAPORT.dll
2011-10-28 19:08:20 ----A---- C:\Windows\system32\FMAPO.dll
2011-10-28 19:08:20 ----A---- C:\Windows\system32\DTSVoiceClarityDLL.dll
2011-10-28 19:08:20 ----A---- C:\Windows\system32\DTSU2PREC32.dll
2011-10-28 19:08:20 ----A---- C:\Windows\system32\DTSU2PLFX32.dll
2011-10-28 19:08:20 ----A---- C:\Windows\system32\DTSU2PGFX32.dll
2011-10-28 19:08:20 ----A---- C:\Windows\system32\DTSSymmetryDLL.dll
2011-10-28 19:08:20 ----A---- C:\Windows\system32\DTSS2SpeakerDLL.dll
2011-10-28 19:08:20 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL.dll
2011-10-28 19:08:19 ----D---- C:\Program Files\Realtek
2011-10-28 19:08:19 ----A---- C:\Windows\system32\DTSNeoPCDLL.dll
2011-10-28 19:08:19 ----A---- C:\Windows\system32\DTSLimiterDLL.dll
2011-10-28 19:08:19 ----A---- C:\Windows\system32\DTSLFXAPO.dll
2011-10-28 19:08:19 ----A---- C:\Windows\system32\DTSGFXAPONS.dll
2011-10-28 19:08:19 ----A---- C:\Windows\system32\DTSGFXAPO.dll
2011-10-28 19:08:19 ----A---- C:\Windows\system32\DTSGainCompensatorDLL.dll
2011-10-28 19:08:19 ----A---- C:\Windows\system32\DTSBoostDLL.dll
2011-10-28 19:08:19 ----A---- C:\Windows\system32\DTSBassEnhancementDLL.dll
2011-10-28 19:08:19 ----A---- C:\Windows\system32\AERTARen.dll
2011-10-28 19:08:19 ----A---- C:\Windows\system32\AERTACap.dll
2011-10-28 19:08:16 ----HD---- C:\Program Files\Temp
2011-10-28 19:08:16 ----A---- C:\Windows\RtlExUpd.dll
2011-10-28 19:08:12 ----D---- C:\Program Files\Common Files\InstallShield
2011-10-28 17:55:27 ----D---- C:\Users\Vladimir\AppData\Roaming\NVIDIA
2011-10-28 17:55:04 ----D---- C:\zaloha
2011-10-28 17:24:29 ----D---- C:\Windows\Acronis
2011-10-28 17:13:33 ----D---- C:\ProgramData\Acronis
2011-10-28 17:12:48 ----A---- C:\Windows\system32\drivers\snapman.sys
2011-10-28 17:12:32 ----D---- C:\Program Files\Common Files\Acronis
2011-10-28 17:12:32 ----D---- C:\Program Files\Acronis
2011-10-28 17:10:47 ----D---- C:\Users\Vladimir\AppData\Roaming\WinRAR
2011-10-28 17:10:38 ----D---- C:\Program Files\WinRAR
2011-10-28 17:01:11 ----D---- C:\ProgramData\Comodo
2011-10-28 16:57:37 ----D---- C:\Users\Vladimir\AppData\Roaming\GHISLER
2011-10-28 16:57:37 ----D---- C:\totalcmd
2011-10-28 16:57:37 ----A---- C:\Windows\UC.PIF
2011-10-28 16:57:37 ----A---- C:\Windows\RAR.PIF
2011-10-28 16:57:37 ----A---- C:\Windows\PKZIP.PIF
2011-10-28 16:57:37 ----A---- C:\Windows\PKUNZIP.PIF
2011-10-28 16:57:37 ----A---- C:\Windows\NOCLOSE.PIF
2011-10-28 16:57:37 ----A---- C:\Windows\LHA.PIF
2011-10-28 16:57:37 ----A---- C:\Windows\ARJ.PIF
2011-10-28 16:52:30 ----D---- C:\Users\Vladimir\AppData\Roaming\Macromedia
2011-10-28 16:52:30 ----D---- C:\Users\Vladimir\AppData\Roaming\Adobe
2011-10-28 16:51:07 ----D---- C:\Windows\system32\Macromed
2011-10-28 16:45:24 ----D---- C:\Users\Vladimir\AppData\Roaming\Thunderbird
2011-10-28 16:45:19 ----D---- C:\Program Files\Mozilla Thunderbird
2011-10-28 16:35:23 ----D---- C:\Users\Vladimir\AppData\Roaming\Skype
2011-10-28 16:35:06 ----RD---- C:\Program Files\Skype
2011-10-28 16:35:04 ----D---- C:\ProgramData\Skype
2011-10-28 16:22:46 ----HD---- C:\Program Files\InstallShield Installation Information
2011-10-28 16:21:36 ----D---- C:\ProgramData\NVIDIA
2011-10-28 16:21:30 ----A---- C:\Windows\system32\nvvsvc.exe
2011-10-28 16:21:30 ----A---- C:\Windows\system32\nvsvcr.dll
2011-10-28 16:21:30 ----A---- C:\Windows\system32\nvsvc.dll
2011-10-28 16:21:30 ----A---- C:\Windows\system32\nvshext.dll
2011-10-28 16:21:30 ----A---- C:\Windows\system32\nvmctray.dll
2011-10-28 16:21:30 ----A---- C:\Windows\system32\nvcpl.dll
2011-10-28 16:21:29 ----A---- C:\Windows\system32\easyupdatusapiu.dll
2011-10-28 16:21:20 ----D---- C:\ProgramData\NVIDIA Corporation
2011-10-28 16:20:54 ----A---- C:\Windows\system32\nvgenco32.dll
2011-10-28 16:20:54 ----A---- C:\Windows\system32\nvdispco32.dll
2011-10-28 16:20:54 ----A---- C:\Windows\system32\nvapi.dll
2011-10-28 16:20:40 ----D---- C:\Program Files\NVIDIA Corporation
2011-10-28 16:20:07 ----D---- C:\NVIDIA
2011-10-28 14:41:55 ----D---- C:\Windows\Panther
2011-10-28 14:36:58 ----D---- C:\Users\Vladimir\AppData\Roaming\Mozilla
2011-10-28 14:36:52 ----D---- C:\Program Files\Mozilla Firefox
2011-10-28 14:28:01 ----N---- C:\Windows\system32\MpSigStub.exe
2011-10-28 14:23:29 ----D---- C:\Program Files\Google
2011-10-28 14:23:28 ----A---- C:\Windows\system32\drivers\aswSP.sys
2011-10-28 14:23:28 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2011-10-28 14:23:26 ----A---- C:\Windows\system32\drivers\aswRdr.sys
2011-10-28 14:23:25 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2011-10-28 14:23:24 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2011-10-28 14:23:23 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2011-10-28 14:22:22 ----SHD---- C:\Windows\Installer
2011-10-28 14:22:16 ----A---- C:\Windows\system32\aswBoot.exe
2011-10-28 14:22:16 ----A---- C:\Windows\avastSS.scr
2011-10-28 14:22:09 ----D---- C:\ProgramData\AVAST Software
2011-10-28 14:22:09 ----D---- C:\Program Files\AVAST Software
2011-10-28 14:19:28 ----A---- C:\Windows\system32\wininet.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\wextract.exe
2011-10-28 14:19:28 ----A---- C:\Windows\system32\webcheck.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\vbscript.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\urlmon.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\url.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2011-10-28 14:19:28 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2011-10-28 14:19:28 ----A---- C:\Windows\system32\pngfilt.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\occache.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\msrating.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\msls31.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\mshtmler.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\mshtmled.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\mshtml.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\mshta.exe
2011-10-28 14:19:28 ----A---- C:\Windows\system32\msfeedssync.exe
2011-10-28 14:19:28 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\msfeeds.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\licmgr10.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\jsproxy.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\jscript9.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\jscript.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\inseng.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\imgutil.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\iexpress.exe
2011-10-28 14:19:28 ----A---- C:\Windows\system32\ieUnatt.exe
2011-10-28 14:19:28 ----A---- C:\Windows\system32\ieui.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\iesysprep.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\iesetup.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\iertutil.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\iernonce.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\iepeers.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\ieframe.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\iedkcs32.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\ieapfltr.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\ieapfltr.dat
2011-10-28 14:19:28 ----A---- C:\Windows\system32\ieakui.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\ieaksie.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\ieakeng.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\IEAdvpack.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\ie4uinit.exe
2011-10-28 14:19:28 ----A---- C:\Windows\system32\icardie.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\dxtrans.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\dxtmsft.dll
2011-10-28 14:19:28 ----A---- C:\Windows\system32\admparse.dll
2011-10-28 14:17:53 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-10-28 14:17:53 ----A---- C:\Windows\system32\WMVDECOD.DLL
2011-10-28 14:17:53 ----A---- C:\Windows\system32\mfreadwrite.dll
2011-10-28 14:17:53 ----A---- C:\Windows\system32\mf.dll
2011-10-28 14:17:53 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-10-28 14:17:53 ----A---- C:\Windows\system32\d3d10warp.dll
2011-10-28 14:17:53 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-10-28 14:00:25 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-10-28 13:58:59 ----A---- C:\Windows\system32\wintrust.dll
2011-10-28 13:58:54 ----A---- C:\Windows\system32\cabview.dll
2011-10-28 13:57:44 ----D---- C:\Users\Vladimir\AppData\Roaming\Identities
2011-10-28 13:57:25 ----SD---- C:\Users\Vladimir\AppData\Roaming\Microsoft
2011-10-28 13:57:25 ----D---- C:\Users\Vladimir\AppData\Roaming\Media Center Programs
2011-10-28 13:57:08 ----SHD---- C:\Recovery
2011-10-28 13:57:08 ----SHD---- C:\ProgramData\Šablony
2011-10-28 13:57:07 ----SHD---- C:\ProgramData\Plocha
2011-10-28 13:57:07 ----SHD---- C:\ProgramData\Oblíbené položky
2011-10-28 13:57:07 ----SHD---- C:\ProgramData\Nabídka Start
2011-10-28 13:57:07 ----SHD---- C:\ProgramData\Dokumenty
2011-10-28 13:57:07 ----SHD---- C:\ProgramData\Data aplikací
2011-10-28 13:46:02 ----D---- C:\Windows\SoftwareDistribution
2011-10-28 13:43:03 ----D---- C:\Windows\Prefetch
2011-10-28 13:42:43 ----ASH---- C:\hiberfil.sys
2011-10-28 07:35:25 ----RSHD---- C:\BOOTWIZ
2011-10-28 07:35:25 ----RSH---- C:\bootwiz.sys
2011-10-20 13:41:08 ----D---- C:\games
2011-10-18 07:23:36 ----HD---- C:\msdownld.tmp
2011-10-17 09:36:56 ----H---- C:\Boot.BAK
2011-10-17 08:28:33 ----RASH---- C:\BOOTSECT.BAK
2011-10-17 08:28:24 ----SHD---- C:\Boot
2011-10-16 15:12:35 ----SHD---- C:\RECYCLER
2011-10-14 23:54:52 ----A---- C:\Windows\system32\nvStreaming.exe
2011-10-08 08:50:58 ----D---- C:\VritualRoot

======List of files/folders modified in the last 1 month======

2011-11-01 10:53:27 ----D---- C:\Windows\Temp
2011-11-01 10:53:22 ----RD---- C:\Program Files
2011-11-01 10:11:54 ----D---- C:\Windows\system32\Tasks
2011-11-01 09:28:14 ----D---- C:\Windows\system32\config
2011-11-01 09:17:49 ----SHD---- C:\System Volume Information
2011-11-01 08:37:52 ----D---- C:\Windows\System32
2011-11-01 08:37:52 ----D---- C:\Windows\inf
2011-10-31 07:54:13 ----D---- C:\Windows
2011-10-30 10:34:40 ----RSD---- C:\Windows\assembly
2011-10-30 10:34:40 ----D---- C:\Windows\Microsoft.NET
2011-10-30 08:30:17 ----SD---- C:\ProgramData\Microsoft
2011-10-30 08:24:57 ----D---- C:\Windows\system32\catroot2
2011-10-30 08:22:19 ----D---- C:\Windows\system32\wdi
2011-10-30 07:25:17 ----D---- C:\Windows\winsxs
2011-10-30 07:22:49 ----D---- C:\Windows\system32\DriverStore
2011-10-30 07:22:49 ----D---- C:\Windows\system32\drivers
2011-10-30 06:38:10 ----D---- C:\Windows\system32\catroot
2011-10-29 18:28:49 ----D---- C:\Program Files\Common Files
2011-10-29 14:06:26 ----RSD---- C:\Windows\Media
2011-10-29 14:06:21 ----D---- C:\Windows\twain_32
2011-10-29 14:05:45 ----HD---- C:\ProgramData
2011-10-29 14:01:07 ----D---- C:\Windows\rescache
2011-10-29 13:54:27 ----D---- C:\Windows\Logs
2011-10-29 09:59:24 ----D---- C:\Windows\debug
2011-10-29 09:52:11 ----D---- C:\Windows\system32\cs-CZ
2011-10-29 09:49:31 ----D---- C:\Windows\system32\en-US
2011-10-29 09:16:45 ----D---- C:\Windows\AppPatch
2011-10-29 08:08:58 ----RSD---- C:\Windows\Fonts
2011-10-29 06:50:47 ----D---- C:\Program Files\Common Files\microsoft shared
2011-10-28 21:44:47 ----D---- C:\Windows\ehome
2011-10-28 21:44:47 ----D---- C:\Program Files\Windows Mail
2011-10-28 21:44:46 ----D---- C:\Windows\system32\Boot
2011-10-28 21:44:45 ----D---- C:\Program Files\Windows Media Player
2011-10-28 20:52:18 ----D---- C:\Windows\system32\NDF
2011-10-28 20:43:23 ----D---- C:\Windows\Tasks
2011-10-28 20:16:55 ----SHD---- C:\$Recycle.Bin
2011-10-28 18:30:00 ----D---- C:\Hry
2011-10-28 17:28:22 ----D---- C:\Merged Volume 'Local Volume' (F)
2011-10-28 16:23:01 ----RD---- C:\Users
2011-10-28 16:21:27 ----D---- C:\Windows\Help
2011-10-28 16:11:55 ----D---- C:\Windows\system32\drivers\UMDF
2011-10-28 14:41:41 ----RASH---- C:\Boot.ini.saved
2011-10-28 14:40:11 ----D---- C:\Program Files\Internet Explorer
2011-10-28 14:40:10 ----D---- C:\Windows\system32\migration
2011-10-28 14:40:10 ----D---- C:\Windows\PolicyDefinitions
2011-10-28 14:00:15 ----D---- C:\Windows\system32\wbem
2011-10-28 13:59:01 ----D---- C:\Windows\system32\restore
2011-10-28 13:57:08 ----D---- C:\Windows\system32\Recovery
2011-10-28 13:57:08 ----D---- C:\Program Files\Windows NT
2011-10-28 13:52:37 ----D---- C:\Windows\system32\CodeIntegrity
2011-10-28 13:46:28 ----D---- C:\Windows\system32\sysprep
2011-10-28 13:43:51 ----D---- C:\Windows\CSC
2011-10-28 13:06:59 ----RASH---- C:\ntdetect.com
2011-10-15 09:53:00 ----A---- C:\Windows\system32\nvwgf2um.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvamacpi;NVIDIA Away Mode System; C:\Windows\system32\DRIVERS\NVAMACPI.sys [2000-01-01 24680]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2011-10-28 166976]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-09-06 34392]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-09-06 442200]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-09-06 320856]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-09-06 52568]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-10-28 232512]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-09-06 20568]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-09-06 54616]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2011-08-16 3648424]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-13 347264]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S4 IObitUnlocker;IObitUnlocker; \??\C:\Program Files\IObit\IObit Unlocker\IObitUnlocker.sys [2011-08-26 28016]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-09-06 44768]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-10-15 1136448]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120]
R2 Správce výběru OS;Aktivátor Správce výběru OS Acronis; C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe [2010-10-28 2156952]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-10-14 381248]
R2 wlidsvc;Windows Live ID Sign-in Assistant; c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-10-28 136176]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-10-28 136176]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-02-08 136120]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-10-29 1343400]

-----------------EOF-----------------

#2 Příspěvek od **vyosek** » 01 lis 2011 18:49

Zdravim a pekny den preji

Stahnete OTL (viz muj podpis) a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
Zaskrtnete okenko Pro vsechny uzivatele
Zaskrtnete okenko Kontrola na havet "LOP"
Zaskrtnete okenko Kontrola na havet "Purity"
Stari souboru zmente z 30 dnu na 7 dnu
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5 

*crack* /s
*keygen* /s
*loader* /s

Kliknete na tlacitko Prohledat
Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte

volodja23 · #3 Příspěvek od **volodja23** » 02 lis 2011 10:31

Zde je 1 část logu:

OTL logfile created on: 2.11.2011 9:51:40 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Vladimir\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,33 Gb Available Physical Memory | 66,78% Memory free
4,00 Gb Paging File | 2,86 Gb Available in Paging File | 71,59% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232,88 Gb Total Space | 96,98 Gb Free Space | 41,65% Space Free | Partition Type: NTFS

Computer Name: VLADIMIR-PC | User Name: Vladimir | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2011.11.02 07:55:22 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Vladimir\Desktop\OTL.exe
PRC - [2011.10.15 09:53:00 | 001,820,480 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2011.09.29 08:07:25 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011.09.06 21:45:30 | 003,722,416 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011.08.02 08:33:30 | 004,910,912 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2011.02.26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2011.01.17 15:37:42 | 011,322,880 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2011.01.17 15:37:42 | 011,314,688 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2009.07.14 02:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe

========== Modules (No Company Name) ==========

MOD - [2011.10.29 08:09:45 | 000,985,088 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxml2.dll
MOD - [2011.10.29 08:09:45 | 000,170,496 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxslt.dll
MOD - [2011.10.28 16:51:08 | 008,522,400 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
MOD - [2011.10.14 23:54:26 | 000,265,536 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll
MOD - [2011.09.29 08:07:25 | 001,833,944 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011.05.28 21:04:58 | 000,140,288 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll

========== Win32 Services (SafeList) ==========

SRV - [2011.10.29 08:29:36 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2011.10.15 09:53:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011.10.14 23:54:40 | 000,381,248 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011.09.06 21:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011.06.06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2010.10.28 18:31:58 | 002,156,952 | ---- | M] () [Auto | Running] -- C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe -- (Správce výběru OS)
SRV - [2009.07.14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)

========== Driver Services (SafeList) ==========

DRV - [2011.10.28 21:05:27 | 000,232,512 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2011.10.28 17:12:48 | 000,166,976 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\snapman.sys -- (snapman)
DRV - [2011.10.15 09:53:00 | 010,327,360 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2011.09.06 21:38:05 | 000,442,200 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011.09.06 21:37:53 | 000,320,856 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.09.06 21:36:38 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.09.06 21:36:36 | 000,052,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.09.06 21:36:26 | 000,054,616 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2011.09.06 21:36:12 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011.08.26 14:11:28 | 000,028,016 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Program Files\IObit\IObit Unlocker\IObitUnlocker.sys -- (IObitUnlocker)
DRV - [2009.07.14 02:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009.07.14 02:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt)
DRV - [2009.07.14 02:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009.07.14 00:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009.07.14 00:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2009.07.13 23:02:52 | 000,347,264 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvm62x32.sys -- (NVENETFD)
DRV - [2000.01.01 01:00:00 | 000,024,680 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\NVAMACPI.sys -- (nvamacpi)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-3786599678-3196244946-1610063088-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-3786599678-3196244946-1610063088-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-3786599678-3196244946-1610063088-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-3786599678-3196244946-1610063088-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-3786599678-3196244946-1610063088-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-3786599678-3196244946-1610063088-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-3786599678-3196244946-1610063088-1000\..\URLSearchHook: {5786d022-540e-4699-b350-b4be0ae94b79} - No CLSID value found
IE - HKU\S-1-5-21-3786599678-3196244946-1610063088-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-3786599678-3196244946-1610063088-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-3786599678-3196244946-1610063088-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultthis.engineName: "Ashampoo DE Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.as ... earchTerms}"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011.10.28 14:22:19 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.10.28 16:44:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 7.0.1\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2011.10.28 16:45:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins

[2011.10.28 14:37:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Vladimir\AppData\Roaming\Mozilla\Extensions
[2011.10.29 14:16:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\ofescmbg.default\extensions
[2011.10.29 14:16:00 | 000,000,000 | ---D | M] (Flagfox) -- C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\ofescmbg.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
[2011.10.28 21:18:26 | 000,000,000 | ---D | M] (Ashampoo DE Community Toolbar) -- C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\ofescmbg.default\extensions\{5786d022-540e-4699-b350-b4be0ae94b79}
[2011.10.25 10:18:06 | 000,000,925 | ---- | M] () -- C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\ofescmbg.default\searchplugins\conduit.xml
[2011.10.29 18:28:28 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011.10.29 06:32:40 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
[2011.10.29 18:28:28 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}
[2011.10.28 14:22:19 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
[2011.09.29 08:07:26 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.09.29 02:30:58 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2011.09.29 02:30:58 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.09.29 02:30:58 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2011.09.29 02:30:58 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.09.29 02:30:58 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - Extension: avast! WebRep = C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\

O1 HOSTS File: ([2009.06.10 22:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKU\S-1-5-21-3786599678-3196244946-1610063088-1000..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3786599678-3196244946-1610063088-1001..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 10.1.0)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0_01)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0_01)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.111.0.10 194.213.32.237
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{91C89D88-4FB5-48CA-9AA5-7840DB89F067}: DhcpNameServer = 212.111.0.10 194.213.32.237
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) -C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

CREATERESTOREPOINT
Error creating restore point.

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

volodja23 · #4 Příspěvek od **volodja23** » 02 lis 2011 10:34

Zde 2 část:

========== Files/Folders - Created Within 7 Days ==========

[2011.11.02 07:55:17 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Vladimir\Desktop\OTL.exe
[2011.11.01 12:38:14 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\Documents\Battlefield 3
[2011.11.01 12:28:25 | 000,000,000 | -H-D | C] -- C:\Program Files\Common Files\EAInstaller
[2011.11.01 12:28:24 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_7.dll
[2011.11.01 12:28:24 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_7.dll
[2011.11.01 12:28:24 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_5.dll
[2011.11.01 12:28:23 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_43.dll
[2011.11.01 12:28:23 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_43.dll
[2011.11.01 12:28:22 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_43.dll
[2011.11.01 12:28:22 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_6.dll
[2011.11.01 12:28:22 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_43.dll
[2011.11.01 12:28:22 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_43.dll
[2011.11.01 12:28:22 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_4.dll
[2011.11.01 12:28:21 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_5.dll
[2011.11.01 12:28:21 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_6.dll
[2011.11.01 12:28:21 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_5.dll
[2011.11.01 12:28:21 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_7.dll
[2011.11.01 12:28:20 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll
[2011.11.01 12:28:18 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_42.dll
[2011.11.01 12:28:18 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_42.dll
[2011.11.01 12:28:18 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_42.dll
[2011.11.01 12:28:17 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll
[2011.11.01 12:28:16 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_41.dll
[2011.11.01 12:28:16 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_41.dll
[2011.11.01 12:28:16 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_41.dll
[2011.11.01 12:28:15 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_4.dll
[2011.11.01 12:28:15 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_4.dll
[2011.11.01 12:28:15 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll
[2011.11.01 12:28:15 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_6.dll
[2011.11.01 12:28:14 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_40.dll
[2011.11.01 12:28:14 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_40.dll
[2011.11.01 12:28:14 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_40.dll
[2011.11.01 12:28:13 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_3.dll
[2011.11.01 12:28:13 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_3.dll
[2011.11.01 12:28:13 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_2.dll
[2011.11.01 12:28:13 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_5.dll
[2011.11.01 12:28:12 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_2.dll
[2011.11.01 12:28:12 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_1.dll
[2011.11.01 12:28:11 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_2.dll
[2011.11.01 12:28:10 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_39.dll
[2011.11.01 12:28:10 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_39.dll
[2011.11.01 12:28:09 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_39.dll
[2011.11.01 12:28:08 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_1.dll
[2011.11.01 12:28:08 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_1.dll
[2011.11.01 12:28:08 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_0.dll
[2011.11.01 12:28:07 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_4.dll
[2011.11.01 12:28:06 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_38.dll
[2011.11.01 12:28:06 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_38.dll
[2011.11.01 12:28:05 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_38.dll
[2011.11.01 12:28:04 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_0.dll
[2011.11.01 12:28:04 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_0.dll
[2011.11.01 12:28:04 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_3.dll
[2011.11.01 12:28:03 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_37.dll
[2011.11.01 12:28:02 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_37.dll
[2011.11.01 12:28:00 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_37.dll
[2011.11.01 12:28:00 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_10.dll
[2011.11.01 12:27:59 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_36.dll
[2011.11.01 12:27:59 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_36.dll
[2011.11.01 12:27:58 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_36.dll
[2011.11.01 12:27:57 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_9.dll
[2011.11.01 12:27:56 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_35.dll
[2011.11.01 12:27:56 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_35.dll
[2011.11.01 12:27:55 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_35.dll
[2011.11.01 12:27:54 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_8.dll
[2011.11.01 12:27:54 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_2.dll
[2011.11.01 12:27:53 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_34.dll
[2011.11.01 12:27:53 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_34.dll
[2011.11.01 12:27:52 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_34.dll
[2011.11.01 12:27:52 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_3.dll
[2011.11.01 12:27:51 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_7.dll
[2011.11.01 12:27:50 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_33.dll
[2011.11.01 12:27:49 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_33.dll
[2011.11.01 12:27:48 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_33.dll
[2011.11.01 12:27:47 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_6.dll
[2011.11.01 12:27:47 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_5.dll
[2011.11.01 12:27:46 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10.dll
[2011.11.01 12:27:45 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_32.dll
[2011.11.01 12:27:44 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_4.dll
[2011.11.01 12:27:44 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_1.dll
[2011.11.01 12:27:43 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_31.dll
[2011.11.01 12:27:42 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_3.dll
[2011.11.01 12:27:41 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_2.dll
[2011.11.01 12:27:41 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_2.dll
[2011.11.01 12:27:41 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll
[2011.11.01 12:27:40 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll
[2011.11.01 12:27:20 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll
[2011.11.01 12:27:19 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_0.dll
[2011.11.01 12:27:19 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll
[2011.11.01 12:27:18 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_29.dll
[2011.11.01 12:27:17 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_28.dll
[2011.11.01 12:27:16 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_27.dll
[2011.11.01 12:27:15 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_26.dll
[2011.11.01 12:27:14 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll
[2011.11.01 12:27:12 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_24.dll
[2011.11.01 12:06:10 | 000,000,000 | ---D | C] -- C:\Program Files\Battlefield 3
[2011.11.01 10:53:22 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.11.01 10:53:22 | 000,000,000 | ---D | C] -- C:\rsit
[2011.10.31 08:28:07 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\kbpki
[2011.10.31 07:54:13 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2011.10.30 21:55:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
[2011.10.30 21:00:22 | 000,000,000 | ---D | C] -- C:\FreeRapid-0.86
[2011.10.30 16:38:32 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2011.10.30 16:37:15 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\uTorrent
[2011.10.30 16:37:15 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Local\uTorrent
[2011.10.30 16:22:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire
[2011.10.30 16:22:15 | 000,000,000 | ---D | C] -- C:\Program Files\FinalWire
[2011.10.30 08:30:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2011.10.30 08:29:43 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2011.10.30 06:32:45 | 001,074,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2011.10.30 06:32:44 | 000,739,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2011.10.29 18:28:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011.10.29 18:28:23 | 000,214,408 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2011.10.29 18:28:23 | 000,173,960 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2011.10.29 18:28:23 | 000,173,960 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2011.10.29 14:05:45 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonBJ
[2011.10.29 14:05:18 | 000,230,912 | ---- | C] (CANON INC.) -- C:\Windows\System32\CNMLM9E.DLL
[2011.10.29 10:24:47 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\Documents\reg. položky
[2011.10.29 10:01:24 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Local\Adobe
[2011.10.29 09:56:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2011.10.29 09:54:13 | 000,061,248 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2011.10.29 09:54:12 | 018,871,616 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2011.10.29 09:54:12 | 017,248,576 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2011.10.29 09:54:12 | 013,205,312 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2011.10.29 09:54:12 | 010,327,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2011.10.29 09:54:12 | 005,578,560 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2011.10.29 09:54:12 | 002,401,088 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2011.10.29 09:54:12 | 002,099,520 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2011.10.29 09:49:29 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2011.10.29 09:29:33 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcjt32.dll
[2011.10.29 09:29:33 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbctrac.dll
[2011.10.29 09:29:33 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll
[2011.10.29 09:29:33 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccu32.dll
[2011.10.29 09:29:33 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccr32.dll
[2011.10.29 08:30:56 | 000,000,000 | ---D | C] -- C:\Windows\CheckSur
[2011.10.29 08:29:39 | 000,000,000 | ---D | C] -- C:\Windows\System32\Wat
[2011.10.29 08:26:46 | 000,146,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\storport.sys
[2011.10.29 08:26:46 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fsutil.exe
[2011.10.29 08:26:34 | 000,284,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2011.10.29 08:26:33 | 000,005,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2011.10.29 08:14:51 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\OpenOffice.org
[2011.10.29 08:09:33 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.3
[2011.10.29 08:08:08 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3
[2011.10.29 07:32:53 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\VitySoft
[2011.10.29 07:02:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Codemasters
[2011.10.29 07:02:03 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\Documents\My Games
[2011.10.29 06:52:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blue Ripple Sound
[2011.10.29 06:52:16 | 019,087,360 | ---- | C] (Intel Corporation / Blue Ripple Sound Limited) -- C:\Windows\System32\mkl_blueripple.dll
[2011.10.29 06:52:16 | 001,302,528 | ---- | C] (Blue Ripple Sound Limited) -- C:\Windows\System32\rapture3d_oal.dll
[2011.10.29 06:52:14 | 000,000,000 | ---D | C] -- C:\Program Files\BRS
[2011.10.29 06:52:12 | 000,000,000 | ---D | C] -- C:\Program Files\OpenAL
[2011.10.29 06:52:11 | 000,445,016 | ---- | C] (Creative Labs) -- C:\Windows\System32\wrap_oal.dll
[2011.10.29 06:52:11 | 000,109,144 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\System32\OpenAL32.dll
[2011.10.29 06:51:06 | 000,000,000 | ---D | C] -- C:\Windows\System32\xlive
[2011.10.29 06:51:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
[2011.10.29 06:50:58 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games for Windows - LIVE
[2011.10.29 06:40:20 | 000,000,000 | ---D | C] -- C:\Program Files\Codemasters
[2011.10.29 06:37:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Unlocker
[2011.10.29 06:37:57 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2011.10.29 06:37:51 | 000,000,000 | ---D | C] -- C:\Program Files\IObit
[2011.10.29 06:35:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2011.10.29 06:35:48 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2011.10.29 06:35:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2011.10.29 06:33:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2011.10.29 06:32:38 | 000,544,656 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\deployJava1.dll
[2011.10.29 06:32:10 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011.10.29 06:27:00 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\Documents\FIFA 11
[2011.10.29 06:21:50 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\Leadertech
[2011.10.29 06:17:07 | 000,000,000 | ---D | C] -- C:\Program Files\EA Sports
[2011.10.28 21:40:09 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2011.10.28 21:40:09 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2011.10.28 21:40:09 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2011.10.28 21:38:23 | 000,000,000 | ---D | C] -- C:\Program Files\FileHippo.com
[2011.10.28 21:36:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2011.10.28 21:36:30 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011.10.28 21:29:09 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe
[2011.10.28 21:27:13 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ks.sys
[2011.10.28 21:25:53 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2011.10.28 21:25:41 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2011.10.28 21:25:38 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2011.10.28 21:25:38 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2011.10.28 21:25:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.10.28 21:25:36 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2011.10.28 21:25:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2011.10.28 21:25:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2011.10.28 21:25:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2011.10.28 21:25:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2011.10.28 21:25:35 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2011.10.28 21:25:35 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2011.10.28 21:25:35 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2011.10.28 21:25:35 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2011.10.28 21:25:35 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2011.10.28 21:25:35 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2011.10.28 21:25:35 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2011.10.28 21:25:35 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2011.10.28 21:25:34 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2011.10.28 21:25:34 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2011.10.28 21:25:34 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2011.10.28 21:25:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2011.10.28 21:25:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2011.10.28 21:25:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2011.10.28 21:25:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2011.10.28 21:25:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2011.10.28 21:25:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2011.10.28 21:25:33 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2011.10.28 21:25:33 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2011.10.28 21:25:33 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2011.10.28 21:25:33 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2011.10.28 21:25:33 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2011.10.28 21:25:29 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2011.10.28 21:25:29 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2011.10.28 21:25:28 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2011.10.28 21:25:01 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdri.dll
[2011.10.28 21:24:54 | 001,320,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
[2011.10.28 21:24:52 | 000,507,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2011.10.28 21:24:51 | 000,442,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2011.10.28 21:24:42 | 003,957,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2011.10.28 21:24:42 | 003,902,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2011.10.28 21:24:39 | 002,332,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011.10.28 21:24:32 | 001,401,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2011.10.28 21:24:31 | 001,553,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
[2011.10.28 21:24:30 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2011.10.28 21:24:30 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2011.10.28 21:24:30 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2011.10.28 21:24:29 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2011.10.28 21:24:11 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll
[2011.10.28 21:24:11 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2011.10.28 21:24:10 | 000,850,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2011.10.28 21:24:10 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2011.10.28 21:23:44 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2011.10.28 21:23:43 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2011.10.28 21:23:42 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2011.10.28 21:23:42 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mpeg2Data.ax
[2011.10.28 21:23:42 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSDvbNP.ax
[2011.10.28 21:23:36 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2011.10.28 21:23:23 | 000,496,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2011.10.28 21:23:23 | 000,351,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2011.10.28 21:23:23 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2011.10.28 21:23:23 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\schtasks.exe
[2011.10.28 21:23:13 | 002,614,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2011.10.28 21:23:06 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSCOVER.exe
[2011.10.28 21:22:55 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2011.10.28 21:22:54 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2011.10.28 21:22:54 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011.10.28 21:22:47 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2011.10.28 21:22:41 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\webio.dll
[2011.10.28 21:22:38 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2011.10.28 21:22:38 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2011.10.28 21:22:35 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2011.10.28 21:22:31 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prevhost.exe
[2011.10.28 21:22:25 | 000,197,632 | ---- | C] (Intel(R) Corporation) -- C:\Windows\System32\ir32_32.dll
[2011.10.28 21:22:25 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2011.10.28 21:22:23 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2011.10.28 21:19:03 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\Ashampoo
[2011.10.28 21:18:10 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Local\Conduit
[2011.10.28 21:17:46 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Local\ashampoo
[2011.10.28 21:17:46 | 000,000,000 | ---D | C] -- C:\ProgramData\ashampoo
[2011.10.28 21:17:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
[2011.10.28 21:16:50 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll
[2011.10.28 21:16:50 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slwga.dll
[2011.10.28 21:16:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ashampoo
[2011.10.28 21:13:09 | 000,369,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2011.10.28 21:13:09 | 000,365,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2011.10.28 21:13:09 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2011.10.28 21:13:09 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2011.10.28 21:13:08 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2011.10.28 21:13:08 | 000,277,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2011.10.28 21:13:08 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2011.10.28 21:13:08 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2011.10.28 21:13:06 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2011.10.28 21:13:05 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2011.10.28 21:13:01 | 000,026,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys
[2011.10.28 21:12:59 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2011.10.28 21:12:56 | 000,101,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2011.10.28 21:12:52 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2011.10.28 21:12:51 | 000,738,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2011.10.28 21:12:35 | 000,219,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys
[2011.10.28 21:12:34 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2011.10.28 21:05:27 | 000,232,512 | ---- | C] (DT Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys
[2011.10.28 21:05:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2011.10.28 21:05:05 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2011.10.28 21:04:34 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\DAEMON Tools Lite
[2011.10.28 21:04:28 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2011.10.28 20:52:20 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Local\Diagnostics
[2011.10.28 20:35:02 | 000,024,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvamacpi.sys
[2011.10.28 20:35:01 | 000,182,888 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\NVCOAWY.DLL
[2011.10.28 20:28:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers
[2011.10.28 20:26:10 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Local\SlimWare Utilities Inc
[2011.10.28 20:26:04 | 000,000,000 | ---D | C] -- C:\Program Files\SlimDrivers
[2011.10.28 20:25:36 | 000,000,000 | ---D | C] -- C:\Program Files\Downloaded Installers
[2011.10.28 19:09:11 | 000,000,000 | ---D | C] -- C:\Windows\System32\RTCOM
[2011.10.28 19:08:25 | 001,783,056 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll
[2011.10.28 19:08:25 | 001,725,784 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesGUILib.dll
[2011.10.28 19:08:25 | 000,345,328 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll
[2011.10.28 19:08:25 | 000,185,584 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll
[2011.10.28 19:08:25 | 000,173,296 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll
[2011.10.28 19:08:25 | 000,140,528 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll
[2011.10.28 19:08:24 | 002,269,288 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkPgExt.dll
[2011.10.28 19:08:24 | 001,497,704 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RTSndMgr.cpl
[2011.10.28 19:08:24 | 000,214,368 | ---- | C] (Synopsys, Inc.) -- C:\Windows\System32\SFNHK.dll
[2011.10.28 19:08:24 | 000,077,416 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkCoInst.dll
[2011.10.28 19:08:24 | 000,074,080 | ---- | C] (Synopsys, Inc.) -- C:\Windows\System32\SFCOM.dll
[2011.10.28 19:08:24 | 000,068,960 | ---- | C] (Synopsys, Inc.) -- C:\Windows\System32\SFAPO.dll
[2011.10.28 19:08:23 | 004,228,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkAPO.dll
[2011.10.28 19:08:23 | 001,272,424 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkApoApi.dll
[2011.10.28 19:08:22 | 003,327,320 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioRealtek.dll
[2011.10.28 19:08:22 | 003,296,600 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEP32A.dll
[2011.10.28 19:08:22 | 001,501,696 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RCoRes.dat
[2011.10.28 19:08:22 | 000,359,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEP32A.dll
[2011.10.28 19:08:22 | 000,345,944 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EED32A.dll
[2011.10.28 19:08:22 | 000,295,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DHT32.dll
[2011.10.28 19:08:22 | 000,295,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DAA32.dll
[2011.10.28 19:08:22 | 000,252,760 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxVolumeSDAPO.dll
[2011.10.28 19:08:22 | 000,170,840 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEED32A.dll
[2011.10.28 19:08:22 | 000,103,256 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEL32A.dll
[2011.10.28 19:08:22 | 000,088,408 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEA32A.dll
[2011.10.28 19:08:22 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEL32A.dll
[2011.10.28 19:08:22 | 000,064,856 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEG32A.dll
[2011.10.28 19:08:22 | 000,061,272 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEG32A.dll
[2011.10.28 19:08:21 | 001,836,376 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioEQ.dll
[2011.10.28 19:08:21 | 000,357,712 | ---- | C] (Knowles Acoustics ) -- C:\Windows\System32\KAAPORT.dll
[2011.10.28 19:08:21 | 000,259,928 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO30.dll
[2011.10.28 19:08:21 | 000,232,792 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll
[2011.10.28 19:08:21 | 000,132,368 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO.dll
[2011.10.28 19:08:20 | 001,740,352 | ---- | C] (Fortemedia Corporation) -- C:\Windows\System32\FMAPO.dll
[2011.10.28 19:08:20 | 001,509,480 | ---- | C] (DTS) -- C:\Windows\System32\DTSS2SpeakerDLL.dll
[2011.10.28 19:08:20 | 001,292,904 | ---- | C] (DTS) -- C:\Windows\System32\DTSS2HeadphoneDLL.dll
[2011.10.28 19:08:20 | 000,631,400 | ---- | C] (DTS) -- C:\Windows\System32\DTSSymmetryDLL.dll
[2011.10.28 19:08:20 | 000,601,704 | ---- | C] (DTS) -- C:\Windows\System32\DTSVoiceClarityDLL.dll
[2011.10.28 19:08:20 | 000,413,696 | ---- | C] (DTS) -- C:\Windows\System32\DTSU2PLFX32.dll
[2011.10.28 19:08:20 | 000,390,656 | ---- | C] (DTS) -- C:\Windows\System32\DTSU2PGFX32.dll
[2011.10.28 19:08:20 | 000,327,168 | ---- | C] (DTS) -- C:\Windows\System32\DTSU2PREC32.dll
[2011.10.28 19:08:19 | 001,220,200 | ---- | C] (DTS) -- C:\Windows\System32\DTSBoostDLL.dll
[2011.10.28 19:08:19 | 000,654,952 | ---- | C] (DTS) -- C:\Windows\System32\DTSBassEnhancementDLL.dll
[2011.10.28 19:08:19 | 000,458,344 | ---- | C] (DTS) -- C:\Windows\System32\DTSNeoPCDLL.dll
[2011.10.28 19:08:19 | 000,389,736 | ---- | C] (DTS) -- C:\Windows\System32\DTSGainCompensatorDLL.dll
[2011.10.28 19:08:19 | 000,375,400 | ---- | C] (DTS) -- C:\Windows\System32\DTSLimiterDLL.dll
[2011.10.28 19:08:19 | 000,218,728 | ---- | C] (DTS) -- C:\Windows\System32\DTSGFXAPONS.dll
[2011.10.28 19:08:19 | 000,218,728 | ---- | C] (DTS) -- C:\Windows\System32\DTSGFXAPO.dll
[2011.10.28 19:08:19 | 000,218,216 | ---- | C] (DTS) -- C:\Windows\System32\DTSLFXAPO.dll
[2011.10.28 19:08:19 | 000,175,200 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTACap.dll
[2011.10.28 19:08:19 | 000,096,160 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTARen.dll
[2011.10.28 19:08:19 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2011.10.28 19:08:16 | 001,698,408 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2011.10.28 19:08:16 | 000,000,000 | -H-D | C] -- C:\Program Files\Temp
[2011.10.28 19:08:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2011.10.28 19:02:49 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Local\ElevatedDiagnostics
[2011.10.28 18:50:38 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\Documents\PDF Dokumenty
[2011.10.28 18:50:03 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\Documents\textove dokumenty
[2011.10.28 18:31:02 | 000,000,000 | R--D | C] -- C:\Users\Vladimir\Desktop\složka Pavla
[2011.10.28 18:29:08 | 000,000,000 | R--D | C] -- C:\Users\Vladimir\Desktop\složka Pavel Ryška
[2011.10.28 17:57:29 | 000,000,000 | R--D | C] -- C:\Users\Vladimir\Desktop\složka Martina
[2011.10.28 17:57:29 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Local\GHISLER
[2011.10.28 17:55:27 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\NVIDIA
[2011.10.28 17:55:04 | 000,000,000 | ---D | C] -- C:\zaloha
[2011.10.28 17:24:29 | 000,000,000 | ---D | C] -- C:\Windows\Acronis
[2011.10.28 17:13:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Acronis
[2011.10.28 17:12:48 | 000,166,976 | ---- | C] (Acronis) -- C:\Windows\System32\drivers\snapman.sys
[2011.10.28 17:12:47 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Acronis
[2011.10.28 17:12:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Acronis
[2011.10.28 17:12:32 | 000,000,000 | ---D | C] -- C:\Program Files\Acronis
[2011.10.28 17:10:47 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\WinRAR
[2011.10.28 17:10:47 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2011.10.28 17:10:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2011.10.28 17:10:38 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2011.10.28 17:01:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo
[2011.10.28 16:57:38 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
[2011.10.28 16:57:37 | 000,000,000 | ---D | C] -- C:\totalcmd
[2011.10.28 16:57:37 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\GHISLER
[2011.10.28 16:52:30 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\Macromedia
[2011.10.28 16:52:30 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\Adobe
[2011.10.28 16:51:08 | 000,414,368 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011.10.28 16:51:07 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2011.10.28 16:45:24 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\Thunderbird
[2011.10.28 16:45:24 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Local\Thunderbird
[2011.10.28 16:45:19 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Thunderbird
[2011.10.28 16:35:23 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\Skype
[2011.10.28 16:35:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2011.10.28 16:35:06 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2011.10.28 16:35:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2011.10.28 16:22:46 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2011.10.28 16:21:36 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2011.10.28 16:21:30 | 006,350,144 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll
[2011.10.28 16:21:30 | 003,840,320 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll
[2011.10.28 16:21:30 | 003,074,368 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvcr.dll
[2011.10.28 16:21:30 | 000,203,072 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll
[2011.10.28 16:21:30 | 000,123,712 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll
[2011.10.28 16:21:29 | 000,602,432 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\easyupdatusapiu.dll
[2011.10.28 16:21:20 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2011.10.28 16:20:54 | 002,458,432 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll
[2011.10.28 16:20:54 | 000,919,872 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco32.dll
[2011.10.28 16:20:54 | 000,877,376 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvgenco32.dll
[2011.10.28 16:20:40 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2011.10.28 16:20:07 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2011.10.28 14:41:55 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2011.10.28 14:36:58 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\Mozilla
[2011.10.28 14:36:58 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Local\Mozilla
[2011.10.28 14:36:52 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011.10.28 14:28:01 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2011.10.28 14:26:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2011.10.28 14:23:29 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Local\Google
[2011.10.28 14:23:29 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2011.10.28 14:23:28 | 000,320,856 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2011.10.28 14:23:28 | 000,020,568 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2011.10.28 14:23:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2011.10.28 14:23:26 | 000,034,392 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2011.10.28 14:23:25 | 000,052,568 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2011.10.28 14:23:24 | 000,442,200 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2011.10.28 14:23:23 | 000,054,616 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2011.10.28 14:22:22 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2011.10.28 14:22:16 | 000,199,304 | ---- | C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2011.10.28 14:22:16 | 000,041,184 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2011.10.28 14:22:09 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2011.10.28 14:22:09 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011.10.28 14:19:28 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2011.10.28 14:19:28 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011.10.28 14:19:28 | 001,798,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2011.10.28 14:19:28 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2011.10.28 14:19:28 | 000,580,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011.10.28 14:19:28 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2011.10.28 14:19:28 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011.10.28 14:19:28 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2011.10.28 14:19:28 | 000,353,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2011.10.28 14:19:28 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2011.10.28 14:19:28 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2011.10.28 14:19:28 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2011.10.28 14:19:28 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011.10.28 14:19:28 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll
[2011.10.28 14:19:28 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2011.10.28 14:19:28 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2011.10.28 14:19:28 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2011.10.28 14:19:28 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2011.10.28 14:19:28 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2011.10.28 14:19:28 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll
[2011.10.28 14:19:28 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011.10.28 14:19:28 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll
[2011.10.28 14:19:28 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll
[2011.10.28 14:19:28 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2011.10.28 14:19:28 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2011.10.28 14:19:28 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2011.10.28 14:19:28 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2011.10.28 14:19:28 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2011.10.28 14:19:28 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2011.10.28 14:19:28 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011.10.28 14:19:28 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2011.10.28 14:19:28 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2011.10.28 14:19:28 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2011.10.28 14:19:28 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2011.10.28 14:19:28 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2011.10.28 14:19:28 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2011.10.28 14:19:28 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2011.10.28 14:17:53 | 003,181,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2011.10.28 14:17:53 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2011.10.28 14:17:53 | 001,495,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
[2011.10.28 14:17:53 | 001,170,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2011.10.28 14:17:53 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2011.10.28 14:17:53 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2011.10.28 14:17:53 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2011.10.28 13:57:55 | 000,000,000 | R--D | C] -- C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011.10.28 13:57:55 | 000,000,000 | R--D | C] -- C:\Users\Vladimir\Searches
[2011.10.28 13:57:55 | 000,000,000 | R--D | C] -- C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011.10.28 13:57:44 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\Identities
[2011.10.28 13:57:41 | 000,000,000 | R--D | C] -- C:\Users\Vladimir\Contacts
[2011.10.28 13:57:27 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Local\VirtualStore
[2011.10.28 13:57:25 | 000,000,000 | --SD | C] -- C:\Users\Vladimir\AppData\Roaming\Microsoft
[2011.10.28 13:57:25 | 000,000,000 | R--D | C] -- C:\Users\Vladimir\Videos
[2011.10.28 13:57:25 | 000,000,000 | R--D | C] -- C:\Users\Vladimir\Saved Games
[2011.10.28 13:57:25 | 000,000,000 | R--D | C] -- C:\Users\Vladimir\Pictures
[2011.10.28 13:57:25 | 000,000,000 | R--D | C] -- C:\Users\Vladimir\Music
[2011.10.28 13:57:25 | 000,000,000 | R--D | C] -- C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011.10.28 13:57:25 | 000,000,000 | R--D | C] -- C:\Users\Vladimir\Links
[2011.10.28 13:57:25 | 000,000,000 | R--D | C] -- C:\Users\Vladimir\Favorites
[2011.10.28 13:57:25 | 000,000,000 | R--D | C] -- C:\Users\Vladimir\Downloads
[2011.10.28 13:57:25 | 000,000,000 | R--D | C] -- C:\Users\Vladimir\Documents
[2011.10.28 13:57:25 | 000,000,000 | R--D | C] -- C:\Users\Vladimir\Desktop
[2011.10.28 13:57:25 | 000,000,000 | R--D | C] -- C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011.10.28 13:57:25 | 000,000,000 | -HSD | C] -- C:\Users\Vladimir\AppData\Local\Temporary Internet Files
[2011.10.28 13:57:25 | 000,000,000 | -HSD | C] -- C:\Users\Vladimir\Šablony
[2011.10.28 13:57:25 | 000,000,000 | -HSD | C] -- C:\Users\Vladimir\Soubory cookie
[2011.10.28 13:57:25 | 000,000,000 | -HSD | C] -- C:\Users\Vladimir\SendTo
[2011.10.28 13:57:25 | 000,000,000 | -HSD | C] -- C:\Users\Vladimir\Poslední
[2011.10.28 13:57:25 | 000,000,000 | -HSD | C] -- C:\Users\Vladimir\Okolní tiskárny
[2011.10.28 13:57:25 | 000,000,000 | -HSD | C] -- C:\Users\Vladimir\Okolní síť
[2011.10.28 13:57:25 | 000,000,000 | -HSD | C] -- C:\Users\Vladimir\Documents\Obrázky
[2011.10.28 13:57:25 | 000,000,000 | -HSD | C] -- C:\Users\Vladimir\Nabídka Start
[2011.10.28 13:57:25 | 000,000,000 | -HSD | C] -- C:\Users\Vladimir\Local Settings
[2011.10.28 13:57:25 | 000,000,000 | -HSD | C] -- C:\Users\Vladimir\Documents\Hudba
[2011.10.28 13:57:25 | 000,000,000 | -HSD | C] -- C:\Users\Vladimir\AppData\Local\History
[2011.10.28 13:57:25 | 000,000,000 | -HSD | C] -- C:\Users\Vladimir\Documents\Filmy
[2011.10.28 13:57:25 | 000,000,000 | -HSD | C] -- C:\Users\Vladimir\Dokumenty
[2011.10.28 13:57:25 | 000,000,000 | -HSD | C] -- C:\Users\Vladimir\Data aplikací
[2011.10.28 13:57:25 | 000,000,000 | -HSD | C] -- C:\Users\Vladimir\AppData\Local\Data aplikací
[2011.10.28 13:57:25 | 000,000,000 | -H-D | C] -- C:\Users\Vladimir\AppData
[2011.10.28 13:57:25 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Local\Temp
[2011.10.28 13:57:25 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Local\Microsoft
[2011.10.28 13:57:25 | 000,000,000 | ---D | C] -- C:\Users\Vladimir\AppData\Roaming\Media Center Programs
[2011.10.28 13:57:08 | 000,000,000 | -HSD | C] -- C:\ProgramData\Šablony
[2011.10.28 13:57:08 | 000,000,000 | -HSD | C] -- C:\Recovery
[2011.10.28 13:57:08 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Obrázky
[2011.10.28 13:57:08 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Hudba
[2011.10.28 13:57:08 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Filmy
[2011.10.28 13:57:07 | 000,000,000 | -HSD | C] -- C:\ProgramData\Plocha
[2011.10.28 13:57:07 | 000,000,000 | -HSD | C] -- C:\ProgramData\Oblíbené položky
[2011.10.28 13:57:07 | 000,000,000 | -HSD | C] -- C:\ProgramData\Nabídka Start
[2011.10.28 13:57:07 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2011.10.28 13:57:07 | 000,000,000 | -HSD | C] -- C:\ProgramData\Data aplikací
[2011.10.28 13:46:02 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2011.10.28 13:43:03 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2011.10.28 07:35:25 | 000,000,000 | RHSD | C] -- C:\BOOTWIZ
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]

volodja23 · #5 Příspěvek od **volodja23** » 02 lis 2011 10:40

Zde 3 část

========== Files - Modified Within 7 Days ==========

[2011.11.02 09:53:51 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.11.02 09:33:00 | 000,000,944 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.11.02 07:55:22 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Vladimir\Desktop\OTL.exe
[2011.11.02 06:28:38 | 000,014,224 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.11.02 06:28:38 | 000,014,224 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.11.02 06:25:45 | 000,631,054 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2011.11.02 06:25:45 | 000,615,810 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.11.02 06:25:45 | 000,121,708 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2011.11.02 06:25:45 | 000,106,190 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.11.02 06:22:43 | 000,000,940 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.11.02 06:21:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.11.02 06:21:15 | 1609,474,048 | -HS- | M] () -- C:\hiberfil.sys
[2011.11.01 12:38:00 | 000,001,372 | ---- | M] () -- C:\Users\Vladimir\Desktop\bf3 – zástupce.lnk
[2011.10.30 22:15:09 | 000,005,120 | ---- | M] () -- C:\Users\Vladimir\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.10.30 21:56:07 | 000,001,068 | ---- | M] () -- C:\Users\Public\Desktop\Picasa 3.lnk
[2011.10.30 21:04:39 | 000,000,934 | ---- | M] () -- C:\Users\Vladimir\Desktop\frd – zástupce.lnk
[2011.10.30 08:59:32 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2011.10.30 06:59:48 | 000,002,515 | ---- | M] () -- C:\Users\Vladimir\Desktop\F1_2011_Launcher – zástupce.lnk
[2011.10.29 18:28:05 | 000,214,408 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2011.10.29 18:28:05 | 000,173,960 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2011.10.29 18:28:04 | 000,544,656 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\deployJava1.dll
[2011.10.29 18:28:04 | 000,173,960 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2011.10.29 18:26:34 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011.10.29 09:19:03 | 000,292,968 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011.10.29 08:15:58 | 000,001,197 | ---- | M] () -- C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
[2011.10.29 08:09:33 | 000,001,042 | ---- | M] () -- C:\Users\Public\Desktop\OpenOffice.org 3.3.lnk
[2011.10.29 06:52:11 | 000,445,016 | ---- | M] (Creative Labs) -- C:\Windows\System32\wrap_oal.dll
[2011.10.29 06:52:11 | 000,109,144 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\System32\OpenAL32.dll
[2011.10.29 06:37:57 | 000,001,142 | ---- | M] () -- C:\Users\Public\Desktop\IObit Unlocker.lnk
[2011.10.29 06:36:07 | 000,001,989 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2011.10.28 21:36:32 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.10.28 21:17:43 | 000,001,261 | ---- | M] () -- C:\Users\Public\Desktop\Ashampoo Burning Studio 10.lnk
[2011.10.28 21:05:27 | 000,232,512 | ---- | M] (DT Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys
[2011.10.28 21:05:24 | 000,001,900 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2011.10.28 20:28:20 | 000,002,455 | ---- | M] () -- C:\Users\Public\Desktop\SlimDrivers.lnk
[2011.10.28 17:24:29 | 000,000,155 | ---- | M] () -- C:\Windows\System32\autopart.opt
[2011.10.28 17:12:48 | 000,166,976 | ---- | M] (Acronis) -- C:\Windows\System32\drivers\snapman.sys
[2011.10.28 17:12:47 | 000,001,250 | ---- | M] () -- C:\Users\Vladimir\Desktop\Acronis Disk Director 11 Home.lnk
[2011.10.28 17:10:47 | 000,000,971 | ---- | M] () -- C:\Users\Public\Desktop\WinRAR.lnk
[2011.10.28 16:57:39 | 000,000,632 | ---- | M] () -- C:\Users\Vladimir\Desktop\Total Commander.lnk
[2011.10.28 16:45:21 | 000,002,040 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
[2011.10.28 16:44:07 | 000,001,100 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011.10.28 16:35:13 | 000,002,521 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2011.10.28 16:17:33 | 000,434,568 | RHS- | M] () -- C:\XTJMR
[2011.10.28 16:11:57 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2011.10.28 14:41:42 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2011.10.28 14:41:41 | 000,000,438 | RHS- | M] () -- C:\Boot.ini.saved
[2011.10.28 14:26:38 | 000,002,205 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011.10.28 14:23:28 | 000,001,998 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2011.10.28 14:19:28 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2011.10.28 14:19:28 | 002,382,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011.10.28 14:19:28 | 001,798,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2011.10.28 14:19:28 | 001,427,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2011.10.28 14:19:28 | 000,580,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011.10.28 14:19:28 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2011.10.28 14:19:28 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011.10.28 14:19:28 | 000,353,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2011.10.28 14:19:28 | 000,353,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2011.10.28 14:19:28 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2011.10.28 14:19:28 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2011.10.28 14:19:28 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2011.10.28 14:19:28 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011.10.28 14:19:28 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll
[2011.10.28 14:19:28 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2011.10.28 14:19:28 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2011.10.28 14:19:28 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2011.10.28 14:19:28 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2011.10.28 14:19:28 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2011.10.28 14:19:28 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll
[2011.10.28 14:19:28 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011.10.28 14:19:28 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll
[2011.10.28 14:19:28 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll
[2011.10.28 14:19:28 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2011.10.28 14:19:28 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2011.10.28 14:19:28 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2011.10.28 14:19:28 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2011.10.28 14:19:28 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2011.10.28 14:19:28 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2011.10.28 14:19:28 | 000,072,822 | ---- | M] () -- C:\Windows\System32\ieuinit.inf
[2011.10.28 14:19:28 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011.10.28 14:19:28 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2011.10.28 14:19:28 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2011.10.28 14:19:28 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2011.10.28 14:19:28 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2011.10.28 14:19:28 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2011.10.28 14:19:28 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2011.10.28 14:19:28 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2011.10.28 14:17:53 | 003,181,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2011.10.28 14:17:53 | 001,619,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2011.10.28 14:17:53 | 001,495,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
[2011.10.28 14:17:53 | 001,170,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2011.10.28 14:17:53 | 000,218,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2011.10.28 14:17:53 | 000,196,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2011.10.28 14:17:53 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2011.10.28 13:47:08 | 000,068,220 | ---- | M] () -- C:\Windows\System32\license.rtf
[2011.10.28 13:06:59 | 000,250,576 | RHS- | M] () -- C:\ntldr
[2011.10.28 13:06:59 | 000,047,564 | RHS- | M] () -- C:\ntdetect.com
[2011.10.28 13:06:59 | 000,004,952 | RHS- | M] () -- C:\bootfont.bin
[2011.10.28 13:06:59 | 000,000,439 | -H-- | M] () -- C:\Boot.BAK
[2011.10.28 09:47:20 | 000,024,576 | RHS- | M] () -- C:\bootwiz.sys
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.11.02 09:53:51 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.11.01 12:31:15 | 000,001,372 | ---- | C] () -- C:\Users\Vladimir\Desktop\bf3 – zástupce.lnk
[2011.10.30 22:11:06 | 000,005,120 | ---- | C] () -- C:\Users\Vladimir\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.10.30 21:56:07 | 000,001,068 | ---- | C] () -- C:\Users\Public\Desktop\Picasa 3.lnk
[2011.10.30 21:04:39 | 000,000,934 | ---- | C] () -- C:\Users\Vladimir\Desktop\frd – zástupce.lnk
[2011.10.29 08:15:58 | 000,001,197 | ---- | C] () -- C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
[2011.10.29 08:09:33 | 000,001,042 | ---- | C] () -- C:\Users\Public\Desktop\OpenOffice.org 3.3.lnk
[2011.10.29 07:01:10 | 000,002,515 | ---- | C] () -- C:\Users\Vladimir\Desktop\F1_2011_Launcher – zástupce.lnk
[2011.10.29 06:50:48 | 000,001,338 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk
[2011.10.29 06:37:57 | 000,001,142 | ---- | C] () -- C:\Users\Public\Desktop\IObit Unlocker.lnk
[2011.10.29 06:36:07 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2011.10.29 06:36:07 | 000,001,989 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2011.10.28 21:38:23 | 000,001,949 | ---- | C] () -- C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Update Checker.lnk
[2011.10.28 21:36:32 | 000,000,969 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.10.28 21:17:43 | 000,001,261 | ---- | C] () -- C:\Users\Public\Desktop\Ashampoo Burning Studio 10.lnk
[2011.10.28 21:05:24 | 000,001,900 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2011.10.28 20:26:05 | 000,002,455 | ---- | C] () -- C:\Users\Public\Desktop\SlimDrivers.lnk
[2011.10.28 17:24:29 | 000,000,155 | ---- | C] () -- C:\Windows\System32\autopart.opt
[2011.10.28 17:12:47 | 000,001,250 | ---- | C] () -- C:\Users\Vladimir\Desktop\Acronis Disk Director 11 Home.lnk
[2011.10.28 17:10:47 | 000,000,971 | ---- | C] () -- C:\Users\Public\Desktop\WinRAR.lnk
[2011.10.28 16:57:39 | 000,000,632 | ---- | C] () -- C:\Users\Vladimir\Desktop\Total Commander.lnk
[2011.10.28 16:57:37 | 000,000,545 | ---- | C] () -- C:\Windows\UC.PIF
[2011.10.28 16:57:37 | 000,000,545 | ---- | C] () -- C:\Windows\RAR.PIF
[2011.10.28 16:57:37 | 000,000,545 | ---- | C] () -- C:\Windows\PKZIP.PIF
[2011.10.28 16:57:37 | 000,000,545 | ---- | C] () -- C:\Windows\PKUNZIP.PIF
[2011.10.28 16:57:37 | 000,000,545 | ---- | C] () -- C:\Windows\NOCLOSE.PIF
[2011.10.28 16:57:37 | 000,000,545 | ---- | C] () -- C:\Windows\LHA.PIF
[2011.10.28 16:57:37 | 000,000,545 | ---- | C] () -- C:\Windows\ARJ.PIF
[2011.10.28 16:45:21 | 000,002,052 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
[2011.10.28 16:45:21 | 000,002,040 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
[2011.10.28 16:35:13 | 000,002,521 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2011.10.28 16:20:54 | 000,004,359 | ---- | C] () -- C:\Windows\System32\nvinfo.pb
[2011.10.28 16:17:33 | 000,434,568 | RHS- | C] () -- C:\XTJMR
[2011.10.28 16:11:57 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2011.10.28 14:36:54 | 000,001,112 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011.10.28 14:36:54 | 000,001,100 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011.10.28 14:26:38 | 000,002,205 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011.10.28 14:23:33 | 000,000,944 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.10.28 14:23:32 | 000,000,940 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.10.28 14:23:28 | 000,001,998 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2011.10.28 14:19:28 | 000,072,822 | ---- | C] () -- C:\Windows\System32\ieuinit.inf
[2011.10.28 13:57:57 | 000,001,417 | ---- | C] () -- C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011.10.28 13:46:49 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2011.10.28 13:46:40 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2011.10.28 13:42:43 | 1609,474,048 | -HS- | C] () -- C:\hiberfil.sys
[2011.10.28 07:35:25 | 000,024,576 | RHS- | C] () -- C:\bootwiz.sys
[2011.10.14 23:54:52 | 000,321,856 | ---- | C] () -- C:\Windows\System32\nvStreaming.exe
[2011.04.09 17:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2009.07.14 09:44:22 | 000,631,054 | ---- | C] () -- C:\Windows\System32\perfh005.dat
[2009.07.14 09:44:22 | 000,292,004 | ---- | C] () -- C:\Windows\System32\perfi005.dat
[2009.07.14 09:44:22 | 000,121,708 | ---- | C] () -- C:\Windows\System32\perfc005.dat
[2009.07.14 09:44:22 | 000,036,232 | ---- | C] () -- C:\Windows\System32\perfd005.dat
[2009.07.14 05:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 05:33:53 | 000,292,968 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009.07.14 03:05:48 | 000,615,810 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009.07.14 03:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009.07.14 03:05:48 | 000,106,190 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009.07.14 03:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009.07.14 03:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009.07.14 03:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009.07.14 01:19:49 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2009.07.14 00:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 00:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009.06.10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat

========== LOP Check ==========

[2011.10.28 21:19:23 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\Ashampoo
[2011.11.02 09:47:46 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\DAEMON Tools Lite
[2011.10.28 16:57:37 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\GHISLER
[2011.10.29 06:21:50 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\Leadertech
[2011.10.29 08:14:51 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\OpenOffice.org
[2011.10.28 16:45:24 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\Thunderbird
[2011.11.02 09:47:46 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\uTorrent
[2011.10.29 07:32:53 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\VitySoft
[2009.07.14 05:53:46 | 000,004,076 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

========== Custom Scans ==========

< >

< >

< MD5 for: AGP440.SYS >
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\AGP440.sys
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Users\Vladimir\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20111028T193007087000\internal_ide_channel\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Users\Vladimir\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20111028T193007087000\pci\cc_0101\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_f64b9c35a3a5be81\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\System32\autochk.exe
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2008.04.14 07:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2010.11.20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2009.07.14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Users\Vladimir\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20111028T193007087000\gencdrom\cdrom.sys
[2009.07.14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\System32\drivers\cdrom.sys
[2009.07.14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_db87d184bc84f910\cdrom.sys
[2009.07.14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_5f7fb206051affbb\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys

< MD5 for: CNGAUDIT.DLL >
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll

< MD5 for: CRYPTSVC.DLL >
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\System32\cryptsvc.dll
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll
[2010.11.20 13:18:24 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll

< MD5 for: EXPLORER.EXE >
[2011.02.26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2011.02.26 06:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe
[2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2011.02.26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\explorer.exe
[2011.02.26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe
[2010.11.20 13:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
[2009.08.03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2009.08.03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2009.10.31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe

< MD5 for: HAL.DLL >
[2010.11.20 13:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_ad305c8fb7ec5060\hal.dll
[2009.07.14 02:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\System32\hal.dll
[2009.07.14 02:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_aaff48c7bafdccc6\hal.dll

< MD5 for: IASTORV.SYS >
[2011.03.11 06:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_b0daddb9e6380745\iaStorV.sys
[2011.03.11 06:43:55 | 000,332,160 | ---- | M] (Intel Corporation) MD5=71F1A494FEDF4B33C02C4A6A28D6D9E9 -- C:\Windows\System32\drivers\iaStorV.sys
[2011.03.11 06:43:55 | 000,332,160 | ---- | M] (Intel Corporation) MD5=71F1A494FEDF4B33C02C4A6A28D6D9E9 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_0033117673c16921\iaStorV.sys
[2011.03.11 06:43:55 | 000,332,160 | ---- | M] (Intel Corporation) MD5=71F1A494FEDF4B33C02C4A6A28D6D9E9 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16778_none_aef580fde910b4b0\iaStorV.sys
[2011.03.11 06:28:00 | 000,332,160 | ---- | M] (Intel Corporation) MD5=778D0E6D7D9EBA0C403BADBAAD41DB20 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_b152a892ff64119f\iaStorV.sys
[2009.07.14 02:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_18cccb83b34e1453\iaStorV.sys
[2009.07.14 02:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_aee7a89be91b9000\iaStorV.sys
[2010.11.20 13:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_b118bc63e60a139a\iaStorV.sys
[2011.03.11 06:52:21 | 000,332,160 | ---- | M] (Intel Corporation) MD5=B9039A34C2F8769490DCC494E2402445 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.20921_none_afae2d45020c148b\iaStorV.sys

< MD5 for: ISAPNP.SYS >
[2009.07.14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\drivers\isapnp.sys
[2009.07.14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\isapnp.sys
[2009.07.14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\isapnp.sys
[2009.07.14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\isapnp.sys

< MD5 for: LSASS.EXE >
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\System32\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_a620e0e5be1ecda7\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_a61fe281be1fb177\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_a69eaf60d7456d32\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_a851f4adbb0d5141\lsass.exe

< MD5 for: NDIS.SYS >
[2009.07.14 02:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\System32\drivers\ndis.sys
[2009.07.14 02:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_a79d81ea7d62a289\ndis.sys
[2010.11.20 13:30:06 | 000,712,576 | ---- | M] (Microsoft Corporation) MD5=E7C54812A2AAF43316EB6930C1FFA108 -- C:\Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_a9ce95b27a512623\ndis.sys

< MD5 for: NETLOGON.DLL >
[2010.11.20 13:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_ffbf212e963c0162\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\System32\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_fd8e0d66994d7dc8\netlogon.dll

< MD5 for: NVRAID.SYS >
[2009.07.14 02:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) MD5=3F3D04B1D08D43C16EA7963954EC768D -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_5bde3fe2945bce9e\nvraid.sys
[2009.07.14 02:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) MD5=3F3D04B1D08D43C16EA7963954EC768D -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvraid.sys
[2010.11.20 13:30:06 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=AF2EEC9580C1D32FB7EAF105D9784061 -- C:\Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvraid.sys
[2011.03.11 06:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvraid.sys
[2011.03.11 06:28:10 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=E3B840350A72CA6F39BD2BEF85A2BCFB -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvraid.sys
[2011.03.11 06:44:01 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=F1B0BED906F97E16F6D0C3629D2F21C6 -- C:\Windows\System32\drivers\nvraid.sys
[2011.03.11 06:44:01 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=F1B0BED906F97E16F6D0C3629D2F21C6 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_38e464dbe521cc7f\nvraid.sys
[2011.03.11 06:44:01 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=F1B0BED906F97E16F6D0C3629D2F21C6 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_39bef1ad20475e88\nvraid.sys
[2011.03.11 06:52:25 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=FCD5C3542A85EEBA7D0833B7E5086C10 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_3a779df43942be63\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2011.03.11 06:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvstor.sys
[2011.03.11 06:44:01 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4520B63899E867F354EE012D34E11536 -- C:\Windows\System32\drivers\nvstor.sys
[2011.03.11 06:44:01 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4520B63899E867F354EE012D34E11536 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_38e464dbe521cc7f\nvstor.sys
[2011.03.11 06:44:01 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4520B63899E867F354EE012D34E11536 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_39bef1ad20475e88\nvstor.sys
[2011.03.11 06:28:10 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=66D468654A58594F5F3BA63D5AD5B1AF -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvstor.sys
[2011.03.11 06:52:25 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=8A7583A3B58D3EEB28BB26626526BC91 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_3a779df43942be63\nvstor.sys
[2010.11.20 13:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvstor.sys
[2009.07.14 02:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_5bde3fe2945bce9e\nvstor.sys
[2009.07.14 02:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvstor.sys

< MD5 for: SCECLI.DLL >
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\System32\scecli.dll
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll

< MD5 for: SMSS.EXE >
[2009.07.14 02:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=16742790895960690237A5143CEDEC8B -- C:\Windows\System32\smss.exe
[2009.07.14 02:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=16742790895960690237A5143CEDEC8B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_ac10fe207a85352b\smss.exe
[2004.08.17 14:49:28 | 000,164,864 | ---- | M] (Microsoft Corporation) MD5=3C100B7FDB179B63829103DF6541337F -- C:\cmdcons\SYSTEM32\SMSS.EXE

< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe

< MD5 for: TCPIP.SYS >
[2011.04.25 05:56:06 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=0158D5E9982E9D6A90DFC802F618E130 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16802_none_b347f075c77b9c9d\tcpip.sys
[2011.06.21 06:34:23 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=04E4A7D53A7ACE02E8C55B17A498F631 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17638_none_b513df73c4b4f466\tcpip.sys
[2011.04.25 05:31:30 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=24326784DF8F3D5F5BBB9F878CE33C14 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_b52f4dc5c4a121e0\tcpip.sys
[2009.07.14 02:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) MD5=2CC3D75488ABD3EC628BBB9A4FC84EFC -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_b2f46875c7b9d667\tcpip.sys
[2010.11.20 13:30:12 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2415949 -- C:\Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_b5257c3dc4a85a01\tcpip.sys
[2011.04.25 07:31:09 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=6D4728CFF2724FF3A4654971D61D0F1C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_b5ad1a5addc7c444\tcpip.sys
[2011.04.25 05:44:18 | 001,298,816 | ---- | M] (Microsoft Corporation) MD5=8861B9A06BA99C6E1D62D0C86DFAB86C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20951_none_b39a7d5ae0c2aec5\tcpip.sys
[2011.06.21 06:30:45 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=93C444D118B184452132357C322124CD -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20992_none_b3703df4e0e237e0\tcpip.sys
[2011.06.21 06:39:53 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=C2DAAEB48F3A47C410B041A0D2382EE1 -- C:\Windows\System32\drivers\tcpip.sys
[2011.06.21 06:39:53 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=C2DAAEB48F3A47C410B041A0D2382EE1 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16839_none_b32e82b7c78da1d1\tcpip.sys
[2011.06.21 07:54:00 | 001,303,424 | ---- | M] (Microsoft Corporation) MD5=DEC4940487050AE13C60C86F40E07E75 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21754_none_b583db3edde666b6\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\System32\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2009.10.28 07:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\System32\winlogon.exe
[2009.10.28 07:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2009.10.28 06:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe
[2010.11.20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[2009.07.14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe

< MD5 for: WS2_32.DLL >
[2010.11.20 13:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\System32\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll

< >

< %systemroot%*.* /U /s >
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2011.10.29 10:01:24 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\Adobe
[2011.10.28 21:19:23 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\Ashampoo
[2011.11.02 09:47:46 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\DAEMON Tools Lite
[2011.10.28 16:57:37 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\GHISLER
[2011.10.28 13:57:44 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\Identities
[2011.10.29 06:21:50 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\Leadertech
[2011.10.28 16:52:30 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\Macromedia
[2009.07.14 10:20:06 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\Media Center Programs
[2011.11.01 10:47:40 | 000,000,000 | --SD | M] -- C:\Users\Vladimir\AppData\Roaming\Microsoft
[2011.10.28 14:37:04 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\Mozilla
[2011.10.28 21:11:29 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\NVIDIA
[2011.10.29 08:14:51 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\OpenOffice.org
[2011.10.30 14:57:56 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\Skype
[2011.10.28 16:45:24 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\Thunderbird
[2011.11.02 09:47:46 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\uTorrent
[2011.10.29 07:32:53 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\VitySoft
[2011.10.28 17:11:18 | 000,000,000 | ---D | M] -- C:\Users\Vladimir\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2011.11.02 06:28:38 | 000,014,224 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.11.02 06:28:38 | 000,014,224 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.11.02 06:25:45 | 000,121,708 | ---- | M] () -- C:\Windows\system32\perfc005.dat
[2011.11.02 06:25:45 | 000,106,190 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2011.11.02 06:25:45 | 000,631,054 | ---- | M] () -- C:\Windows\system32\perfh005.dat
[2011.11.02 06:25:45 | 000,615,810 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2011.11.02 06:25:45 | 001,470,062 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
[2 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2011.08.02 08:33:30 | 004,910,912 | ---- | M] (DT Soft Ltd)
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2009.07.14 02:14:38 | 001,173,504 | ---- | M] (Microsoft Corporation)

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs

< >

< type c:\boot.ini >> test.txt /c >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.11.02 09:53:51 | 000,000,512 | ---- | M] () MD5=46F80F9E55B5AF11BA0B90CACA223B9C -- C:\PhysicalMBR.bin
[1 C:\*.tmp files -> C:\*.tmp -> ]

< >

< *crack* /s >

< *keygen* /s >

< *loader* /s >
[2011.08.08 09:08:30 | 000,000,115 | ---- | M] () -- \Program Files\Codemasters\F1 2011\audio\audio_loader.xml
[2011.08.08 09:18:26 | 000,000,342 | ---- | M] () -- \Program Files\Codemasters\F1 2011\scenes\garage_loader.xml
[2011.08.08 09:18:26 | 000,001,042 | ---- | M] () -- \Program Files\Codemasters\F1 2011\scenes\paddock_gameloader.xml
[2011.08.08 09:18:26 | 000,000,645 | ---- | M] () -- \Program Files\Codemasters\F1 2011\scenes\paddock_loader.xml
[2011.08.08 09:18:26 | 000,000,577 | ---- | M] () -- \Program Files\Codemasters\F1 2011\scenes\paddock_unloader.xml
[2011.08.08 09:18:26 | 000,001,796 | ---- | M] () -- \Program Files\Codemasters\F1 2011\scenes\parcferme_loader.xml
[2011.08.08 09:18:26 | 000,001,801 | ---- | M] () -- \Program Files\Codemasters\F1 2011\scenes\parcferme_loader_gaqa.xml
[2011.08.08 09:18:26 | 000,001,801 | ---- | M] () -- \Program Files\Codemasters\F1 2011\scenes\parcferme_loader_gara.xml
[2011.08.08 09:18:26 | 000,001,802 | ---- | M] () -- \Program Files\Codemasters\F1 2011\scenes\parcferme_loader_gate.xml
[2011.08.08 09:18:26 | 000,001,807 | ---- | M] () -- \Program Files\Codemasters\F1 2011\scenes\parcferme_loader_gate_nt.xml
[2011.08.08 09:18:26 | 000,001,801 | ---- | M] () -- \Program Files\Codemasters\F1 2011\scenes\parcferme_loader_gawc.xml
[2011.08.08 09:18:26 | 000,001,801 | ---- | M] () -- \Program Files\Codemasters\F1 2011\scenes\parcferme_loader_pfqa.xml
[2011.08.08 09:18:26 | 000,001,801 | ---- | M] () -- \Program Files\Codemasters\F1 2011\scenes\parcferme_loader_pfra.xml
[2011.08.08 09:18:28 | 000,001,801 | ---- | M] () -- \Program Files\Codemasters\F1 2011\scenes\parcferme_loader_pfwc.xml
[2011.08.08 09:18:28 | 000,000,619 | ---- | M] () -- \Program Files\Codemasters\F1 2011\scenes\pitstop_loader.xml
[2011.08.08 09:18:28 | 000,000,521 | ---- | M] () -- \Program Files\Codemasters\F1 2011\scenes\pitstop_unloader.xml
[2011.08.15 11:50:46 | 000,000,695 | ---- | M] () -- \Program Files\Codemasters\F1 2011\scenes\race_marshal_loader.xml
[2011.08.08 09:18:28 | 000,001,555 | ---- | M] () -- \Program Files\Codemasters\F1 2011\scenes\trackside_garage_loader.xml
[2011.08.08 09:18:28 | 000,001,578 | ---- | M] () -- \Program Files\Codemasters\F1 2011\scenes\trackside_garage_reloader.xml
[2011.08.08 09:18:30 | 000,000,149 | ---- | M] () -- \Program Files\Codemasters\F1 2011\system\osd_loader.xml
[2011.03.17 13:44:48 | 001,009,664 | ---- | M] () -- \Program Files\IObit\IObit Unlocker\Freeware\UnLock_FreeSoftwareDownloader.exe
[2009.05.31 02:21:00 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2011.01.17 15:21:04 | 000,006,263 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.py
[2011.10.29 08:09:40 | 000,021,504 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.uno.dll
[2011.01.17 16:00:08 | 000,000,171 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.uno.ini
[2011.10.29 08:09:48 | 000,029,184 | ---- | M] () -- \Program Files\OpenOffice.org 3\URE\bin\javaloader.uno.dll
[2010.11.19 11:24:20 | 000,003,689 | ---- | M] () -- \Program Files\OpenOffice.org 3\URE\java\unoloader.jar
[2011.10.28 21:06:09 | 000,057,728 | ---- | M] () -- \Users\Vladimir\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\img\dt_dadget_loader.png
[2011.10.28 21:06:10 | 000,057,728 | ---- | M] () -- \Users\Vladimir\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin1\dt_dadget_loader.png
[2011.10.28 21:06:10 | 000,057,728 | ---- | M] () -- \Users\Vladimir\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin2\dt_dadget_loader.png
[2011.10.25 10:18:06 | 000,010,144 | ---- | M] () -- \Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\ofescmbg.default\conduitCommon\modules\3.7.0.6\ExternalLibraryLoader.jsm
[2011.10.25 10:18:06 | 000,010,144 | ---- | M] () -- \Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\ofescmbg.default\extensions\{5786d022-540e-4699-b350-b4be0ae94b79}\modules\ExternalLibraryLoader.jsm
[2010.11.20 07:28:20 | 000,002,838 | ---- | M] () -- \Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_fi-fi_178685823786d34d.manifest
[2010.11.20 07:38:52 | 000,002,838 | ---- | M] () -- \Windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_d8268e5f2967c990.manifest
[2011.07.16 05:19:58 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2 \Windows\System32\*.tmp files -> \Windows\System32\*.tmp -> ]
[2009.07.14 05:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2009.07.14 09:43:57 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009.07.14 09:43:57 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winload.exe.mui_3bc5b827
[2009.07.14 09:43:57 | 000,030,272 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winresume.exe.mui_ff8b5358
[2011.10.28 21:34:43 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16411_none_5b44c087cdc549ed.manifest
[2011.10.28 21:34:43 | 000,507,568 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16411_none_5b44c087cdc549ed_winload.exe_75835076
[2011.10.28 21:34:43 | 000,442,920 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16411_none_5b44c087cdc549ed_winresume.exe_85cd1215
[2009.07.14 03:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 03:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2009.07.14 09:42:11 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009.07.14 02:47:46 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9.manifest
[2009.08.19 08:38:48 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16411_none_5b44c087cdc549ed.manifest
[2009.08.19 08:21:21 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20509_none_5be12f8ee6d3987e.manifest
[2010.11.20 05:02:40 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2009.07.14 02:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:19:58 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16850_none_0aa3bde9dd0fa7ea\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:12:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21010_none_0b587286f60d0b32\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:15:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:36:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l1-1-0.dll

< End of report >

volodja23 · #6 Příspěvek od **volodja23** » 02 lis 2011 10:42

A zde je Extras

OTL Extras logfile created on: 2.11.2011 9:51:40 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Vladimir\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,33 Gb Available Physical Memory | 66,78% Memory free
4,00 Gb Paging File | 2,86 Gb Available in Paging File | 71,59% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232,88 Gb Total Space | 96,98 Gb Free Space | 41,65% Space Free | Partition Type: NTFS

Computer Name: VLADIMIR-PC | User Name: Vladimir | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-3786599678-3196244946-1610063088-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{06E34C00-0446-4176-81C8-A5DAFE53CA36}" = Acronis Disk Director
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID Sign-in Assistant
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216029FF}" = Java(TM) 6 Update 29
"{26A24AE4-039D-4CA4-87B4-2F83217001FF}" = Java(TM) 7 Update 1
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}" = FIFA 11
"{434D0FA1-3E0C-4D03-A5D4-5E1000008100}" = F1 2011
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{67CDD5A0-C572-4D2C-A354-6492B51F4138}" = SlimDrivers
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™
"{7F6D7FD9-648D-4DD9-BB6E-3990C675ECA4}" = NVIDIA PhysX
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.1) - Czech
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovladač 3D Vision 285.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 285.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 285.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Ovladač řídící jednotky 3D Vision 285.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.11.0621
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.5.20
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.4.9 Game
"{D5B94160-4A07-4956-9C73-8C5EEFEF180F}" = OpenOffice.org 3.3
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"AIDA64 Extreme Edition_is1" = AIDA64 Extreme Edition v2.00
"Ashampoo Burning Studio 10_is1" = Ashampoo Burning Studio 10 v.10.0.15
"avast" = avast! Free Antivirus
"CCleaner" = CCleaner
"DAEMON Tools Lite" = DAEMON Tools Lite
"FileHippo.com" = FileHippo.com Update Checker
"GFWL_{434D0FA1-3E0C-4D03-A5D4-5E1000008100}" = F1 2011
"Google Chrome" = Google Chrome
"IObit Unlocker_is1" = IObit Unlocker
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Mozilla Firefox 7.0.1 (x86 cs)" = Mozilla Firefox 7.0.1 (x86 cs)
"Mozilla Thunderbird (7.0.1)" = Mozilla Thunderbird (7.0.1)
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OpenAL" = OpenAL
"Picasa 3" = Picasa 3
"Totalcmd" = Total Commander (Remove or Repair)
"uTorrent" = µTorrent
"WinRAR archiver" = WinRAR 4.01 (32-bit)

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 31.10.2011 4:29:29 | Computer Name = Vladimir-PC | Source = SideBySide | ID = 16842827
Description = Selhalo generování kontextu aktivace pro: C:\Program Files\Codemasters\F1
2011\CustomActionOnFinishInst.exe. Chyba v souboru manifestu nebo zásad C:\Program
Files\Codemasters\F1 2011\CustomActionOnFinishInst.exe na řádku 1. V manifestu není
povoleno více prvků requestedPrivileges.

Error - 31.10.2011 5:46:44 | Computer Name = Vladimir-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: iexplore.exe, verze: 9.0.8112.16421, časové
razítko: 0x4d76255d Název chybujícího modulu: msxml3.dll, verze: 8.110.7600.16723,
časové razítko: 0x4d103aab Kód výjimky: 0xc0000005 Posun chyby: 0x0002e64f ID chybujícího
procesu: 0xf48 Čas spuštění chybující aplikace: 0x01cc97b1fe290b10 Cesta k chybující
aplikaci: C:\Program Files\Internet Explorer\iexplore.exe Cesta k chybujícímu modulu:
C:\Windows\System32\msxml3.dll ID zprávy: 3d9c3c90-03a5-11e1-aa4a-001d7d922e91

Error - 1.11.2011 4:07:39 | Computer Name = Vladimir-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\Common Files\Acronis\DiskDirector\WinPE\Files\systeminfo.exe
se nezdařilo. Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 1.11.2011 4:07:42 | Computer Name = Vladimir-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\Common Files\Acronis\DiskDirector\WinPE\Files\RecoveryExpert.exe
se nezdařilo. Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 1.11.2011 4:07:43 | Computer Name = Vladimir-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\Common Files\Acronis\DiskDirector\WinPE\Files\ManagementConsole.exe
se nezdařilo. Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 1.11.2011 4:07:44 | Computer Name = Vladimir-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\Common Files\Acronis\DiskDirector\WinPE\Files\mmsBundle.dll
se nezdařilo. Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 1.11.2011 4:08:57 | Computer Name = Vladimir-PC | Source = SideBySide | ID = 16842827
Description = Selhalo generování kontextu aktivace pro: C:\Program Files\Codemasters\F1
2011\CustomActionOnFinishInst.exe. Chyba v souboru manifestu nebo zásad C:\Program
Files\Codemasters\F1 2011\CustomActionOnFinishInst.exe na řádku 1. V manifestu není
povoleno více prvků requestedPrivileges.

Error - 1.11.2011 7:31:34 | Computer Name = Vladimir-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: bf3.exe, verze: 1.0.0.0, časové razítko:
0x4e9d3315 Název chybujícího modulu: bf3.exe, verze: 1.0.0.0, časové razítko: 0x4e9d3315
Kód
výjimky: 0xc0000005 Posun chyby: 0x0000ab3d ID chybujícího procesu: 0xa4c Čas spuštění
chybující aplikace: 0x01cc9889cd67fee0 Cesta k chybující aplikaci: C:\Program Files\Battlefield
3™\bf3.exe Cesta k chybujícímu modulu: C:\Program Files\Battlefield 3™\bf3.exe ID
zprávy: 0d128c40-047d-11e1-a83a-001d7d922e91

Error - 2.11.2011 3:02:40 | Computer Name = Vladimir-PC | Source = System Restore | ID = 8193
Description = Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\wbem\wmiprvse.exe;
Popis = OTL Restore Point - 2.11.2011 8:02:35; Chyba = 0x80070514).

Error - 2.11.2011 4:53:46 | Computer Name = Vladimir-PC | Source = System Restore | ID = 8193
Description = Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\wbem\wmiprvse.exe;
Popis = OTL Restore Point - 2.11.2011 9:53:46; Chyba = 0x80070514).

[ System Events ]
Error - 30.10.2011 0:54:38 | Computer Name = Vladimir-PC | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Služba Google Update (gupdate) bylo
dosaženo časového limitu (30000 ms).

Error - 30.10.2011 0:54:38 | Computer Name = Vladimir-PC | Source = Service Control Manager | ID = 7000
Description = Služba Služba Google Update (gupdate) neuspěla při spuštění v důsledku
následující chyby: %%1053

Error - 30.10.2011 2:27:18 | Computer Name = Vladimir-PC | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Služba Google Update (gupdate) bylo
dosaženo časového limitu (30000 ms).

Error - 30.10.2011 2:27:18 | Computer Name = Vladimir-PC | Source = Service Control Manager | ID = 7000
Description = Služba Služba Google Update (gupdate) neuspěla při spuštění v důsledku
následující chyby: %%1053

Error - 31.10.2011 2:26:32 | Computer Name = Vladimir-PC | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Služba Google Update (gupdate) bylo
dosaženo časového limitu (30000 ms).

Error - 31.10.2011 2:26:32 | Computer Name = Vladimir-PC | Source = Service Control Manager | ID = 7000
Description = Služba Služba Google Update (gupdate) neuspěla při spuštění v důsledku
následující chyby: %%1053

Error - 1.11.2011 2:03:29 | Computer Name = Vladimir-PC | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Služba Google Update (gupdate) bylo
dosaženo časového limitu (30000 ms).

Error - 1.11.2011 2:03:29 | Computer Name = Vladimir-PC | Source = Service Control Manager | ID = 7000
Description = Služba Služba Google Update (gupdate) neuspěla při spuštění v důsledku
následující chyby: %%1053

Error - 2.11.2011 1:23:34 | Computer Name = Vladimir-PC | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Služba Google Update (gupdate) bylo
dosaženo časového limitu (30000 ms).

Error - 2.11.2011 1:23:34 | Computer Name = Vladimir-PC | Source = Service Control Manager | ID = 7000
Description = Služba Služba Google Update (gupdate) neuspěla při spuštění v důsledku
následující chyby: %%1053

< End of report >

#7 Příspěvek od **vyosek** » 02 lis 2011 11:29

Spustte znovu OTL

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

:otl
IE - HKU\S-1-5-21-3786599678-3196244946-1610063088-1000\..\URLSearchHook: {5786d022-540e-4699-b350-b4be0ae94b79} - No CLSID value found
FF - prefs.js..browser.search.defaultthis.engineName: "Ashampoo DE Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2481020&SearchSource=3&q={searchTerms}"
[2011.10.28 21:18:26 | 000,000,000 | ---D | M] (Ashampoo DE Community Toolbar) -- C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\ofescmbg.default\extensions\{5786d022-540e-4699-b350-b4be0ae94b79}
O13 - gopher Prefix: missing
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]

:services
gupdate
gupdatem
gusvc

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=-
"SunJavaUpdateSched"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=-

:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]

Nasledne kliknete na Opravit
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

volodja23 · #8 Příspěvek od **volodja23** » 02 lis 2011 12:35

All processes killed
========== OTL ==========
Registry value HKEY_USERS\S-1-5-21-3786599678-3196244946-1610063088-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{5786d022-540e-4699-b350-b4be0ae94b79} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5786d022-540e-4699-b350-b4be0ae94b79}\ not found.
Prefs.js: "Ashampoo DE Customized Web Search" removed from browser.search.defaultthis.engineName
Prefs.js: "http://search.conduit.com/ResultsExt.as ... earchTerms}" removed from browser.search.defaulturl
C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\ofescmbg.default\extensions\{5786d022-540e-4699-b350-b4be0ae94b79}\searchplugin folder moved successfully.
C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\ofescmbg.default\extensions\{5786d022-540e-4699-b350-b4be0ae94b79}\modules folder moved successfully.
C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\ofescmbg.default\extensions\{5786d022-540e-4699-b350-b4be0ae94b79}\META-INF folder moved successfully.
C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\ofescmbg.default\extensions\{5786d022-540e-4699-b350-b4be0ae94b79}\defaults folder moved successfully.
C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\ofescmbg.default\extensions\{5786d022-540e-4699-b350-b4be0ae94b79}\components folder moved successfully.
C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\ofescmbg.default\extensions\{5786d022-540e-4699-b350-b4be0ae94b79}\chrome folder moved successfully.
C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\ofescmbg.default\extensions\{5786d022-540e-4699-b350-b4be0ae94b79} folder moved successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet:/pagefile deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5E64.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8545.tmp folder deleted successfully.
C:\Windows\System32\tmp3958.tmp deleted successfully.
C:\Windows\System32\tmp3959.tmp deleted successfully.
C:\Windows\Temp\sig85A4.tmp deleted successfully.
C:\Windows\Temp\sigBAE6.tmp deleted successfully.
========== SERVICES/DRIVERS ==========
Error: No service named gupdate was found to stop!
Service\Driver key gupdate not found.
Error: No service named gupdatem was found to stop!
Service\Driver key gupdatem not found.
Error: No service named gusvc was found to stop!
Service\Driver key gusvc not found.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite deleted successfully.
========== FILES ==========
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Vladimir
->Temp folder emptied: 32958 bytes
->Temporary Internet Files folder emptied: 213662 bytes
->Java cache emptied: 2649931 bytes
->FireFox cache emptied: 67724998 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 615 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 67,00 mb

[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Public

User: UpdatusUser

User: Vladimir
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

OTL by OldTimer - Version 3.2.31.0 log created on 11022011_123051

Files\Folders moved on Reboot...
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

#9 Příspěvek od **vyosek** » 02 lis 2011 13:42

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner (viz muj podpis)
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Napiste jak se chova PC

volodja23 · #10 Příspěvek od **volodja23** » 04 lis 2011 08:05

PC se chová O.K.

Děkuji Vám mnohokrát

#11 Příspěvek od **vyosek** » 04 lis 2011 12:27

Nemate zac, rad jsem pomohl

Zase nekdy Obrázek

VIRY.CZ

Pls o prev.kontr.logu

Pls o prev.kontr.logu

Re: Pls o prev.kontr.logu

Re: Pls o prev.kontr.logu

Re: Pls o prev.kontr.logu

Re: Pls o prev.kontr.logu

Re: Pls o prev.kontr.logu

Re: Pls o prev.kontr.logu

Re: Pls o prev.kontr.logu

Re: Pls o prev.kontr.logu

Re: Pls o prev.kontr.logu

Re: Pls o prev.kontr.logu