Hlášený Trojan a pád

[Massa]

Zdravím, mám jeden problém s PC (asi vir), stáhl se mi na plochu neznámý exe soubor, když jsem jej spustil nestalo se nic jen zmizel celý ten soubor, už to se mi zdálo podezdřelé, cca asi 5 minut potom mi Avast nahlásil trojského koně v truhle, nevím co to bylo přesně zač. V ten moment se objevila modrá obrazovka a pád systému.... při náběhu se objevil problém v tom, že po načítání windows v moment když měla naskočit přihlašovací obrazovka zase modrá obrazovka a pád a pořád dokola..... systém naběhl jen v nouzáku bez sítě..... příčina?

Logfile of random's system information tool 1.09 (written by random/random)
Run by uživatel at 2011-11-15 13:25:54
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 136 GB (45%) free of 305 GB
Total RAM: 3327 MB (89% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Programy\Internet Download Manager\IDMIECC.dll [2008-01-21 95664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10 3834016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-10-18 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-10-18 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Ukazatel S-Rank - C:\Program Files\Seznam.cz\core.3.dll [2010-10-07 1164568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\WINDOWS\WebIE.dll [2008-12-02 491520]
{C55BBCD6-41AD-48AD-9953-3609C48EACC7} - Grab Pro - C:\Programy\Orbitdownloader\GrabPro.dll [2009-03-18 646264]
{327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2004-08-26 405504]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SkyTel"=C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
"Gainward"=C:\Program Files\VDOTool\TBPanel.exe [2007-11-27 2169368]
"SpywareTerminator"=C:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe [2008-04-08 2776576]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-06-28 16248320]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"LFAgent"= []
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2008-05-29 185896]
"PAC7302_Monitor"=C:\WINDOWS\PixArt\PAC7302\Monitor.exe [2006-11-03 319488]
"ioCentre"=C:\Genius\ioCentre\gTaskBar.exe [2006-12-08 241664]
"OpwareSE2"=C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe [2003-05-08 49152]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2011-01-13 3396624]
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2010-07-07 1753192]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2010-07-09 13923432]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2010-07-09 110696]
"NBAgent"=C:\Programy\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe [2010-03-14 1086760]
"QuickTime Task"=C:\WINDOWS\system32\qttask.exe [2011-04-14 98304]
"LogMeIn Hamachi Ui"=C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2011-08-04 1955208]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2007-08-23 455968]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"Net Activity Diagram"=C:\Programy\Net Activity Diagram\nad.exe [2008-10-22 1036804]
"Seznam Postak"=C:\Program Files\Seznam.cz\postak.exe [2010-10-07 488728]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AnyDVD]
C:\Programy\AnyDVD\AnyDVDtray.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
C:\Programy\Internet Download Manager\IDMan.exe [2008-05-08 2577840]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2011-08-04 1955208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
C:\Programy\CyberLink DVD Solution\PowerDVD\PDVDServ.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2011-10-13 17351304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\T-Mobile Communication Centre]
C:\Programy\T-Mobile Communication Centre\Centre.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^AVerQuick.lnk]
C:\PROGRA~1\COMMON~1\AVERME~1\AVERQU~1\AVERQU~2.EXE [2006-12-28 606208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Orbit.lnk]
C:\Programy\ORBITD~1\orbitdm.exe [2009-03-18 1719496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^uživatel^Nabídka Start^Programy^Po spuštění^hamachi.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^uživatel^Nabídka Start^Programy^Po spuštění^OpenOffice.org 2.3.lnk]
C:\PROGRA~1\OPENOF~1.3\program\QUICKS~1.EXE [2007-11-14 393216]

C:\Documents and Settings\uživatel\Nabídka Start\Programy\Po spuštění
SpeedFan.lnk - C:\Program Files\SpeedFan\speedfan.exe
Yahoo! Widget Engine.lnk - C:\Programy\Widgets\YahooWidgetEngine.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Programy\HLSW\hlsw.exe"="C:\Programy\HLSW\hlsw.exe:*:Enabled:HLSW Application"
"C:\Programy\QIP\qip.exe"="C:\Programy\QIP\qip.exe:*:Enabled:Quiet Internet Pager"
"C:\Programy\BitLord\BitLord.exe"="C:\Programy\BitLord\BitLord.exe:*:Enabled:BitLord"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Programy\BitComet\BitComet.exe"="C:\Programy\BitComet\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client"
"C:\Hry\Age of Empires II\empires2.exe"="C:\Hry\Age of Empires II\empires2.exe:*:Enabled:Age of Empires II"
"C:\Hry\Age of Empires II\age2_x1\age2_x1.exe"="C:\Hry\Age of Empires II\age2_x1\age2_x1.exe:*:Enabled:Age of Empires II Expansion"
"C:\Documents and Settings\uživatel\Dokumenty\Downloads\Compressed\Age of Empires II - The Conquerors\Age of Empires II - The Conquerors\age2_x1.exe"="C:\Documents and Settings\uživatel\Dokumenty\Downloads\Compressed\Age of Empires II - The Conquerors\Age of Empires II - The Conquerors\age2_x1.exe:*:Enabled:Age of Empires II Expansion"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Disabled:Microsoft DirectPlay Helper"
"C:\Programy\Orbitdownloader\orbitdm.exe"="C:\Programy\Orbitdownloader\orbitdm.exe:*:Enabled:Orbit"
"C:\Programy\Orbitdownloader\orbitnet.exe"="C:\Programy\Orbitdownloader\orbitnet.exe:*:Enabled:Orbit"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Hry\Metin2_TESTER\metin2.bin"="C:\Hry\Metin2_TESTER\metin2.bin:*:Enabled:metin2"
"C:\Programy\totalcmd\TOTALCMD.EXE"="C:\Programy\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Documents and Settings\uživatel\temp\TeamViewer\Version4\TeamViewer.exe"="C:\Documents and Settings\uživatel\temp\TeamViewer\Version4\TeamViewer.exe:*:Enabled:TeamViewer Remote Control Application"
"C:\Programy\FlashGet Network\FlashGet universal\flashget.exe"="C:\Programy\FlashGet Network\FlashGet universal\flashget.exe:*:Enabled:flashget"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Hry\Metin2_TESTER\metin2client.bin"="C:\Hry\Metin2_TESTER\metin2client.bin:*:Enabled:metin2client"
"C:\Hry\Command and Conquer Generals\game.dat"="C:\Hry\Command and Conquer Generals\game.dat:*:Enabled:game"
"C:\Programy\IVT Corporation\BlueSoleil\BlueSoleil_.exe"="C:\Programy\IVT Corporation\BlueSoleil\BlueSoleil_.exe:*:Enabled:BlueSoleil"
"C:\Programy\BitTorrent\bittorrent.exe"="C:\Programy\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Hry\Microsoft Games\Age of Empires III\age3x.exe"="C:\Hry\Microsoft Games\Age of Empires III\age3x.exe:*:Enabled:Age of Empires III - The WarChiefs"
"C:\Hry\THQ\Gas Powered Games\Supreme Commander\bin\SupremeCommander.exe"="C:\Hry\THQ\Gas Powered Games\Supreme Commander\bin\SupremeCommander.exe:*:Enabled:Supreme Commander"
"C:\Hry\THQ\Gas Powered Games\GPGNet\GPG.Multiplayer.Client.exe"="C:\Hry\THQ\Gas Powered Games\GPGNet\GPG.Multiplayer.Client.exe:*:Enabled:GPGNet - Supreme Commander"
"C:\Program Files\Java\jre6\launch4j-tmp\frd.exe"="C:\Program Files\Java\jre6\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Crash Time 4 - The Syndicate\CrashTime4Hi.exe"="C:\Program Files\Crash Time 4 - The Syndicate\CrashTime4Hi.exe:*:Enabled:Crash Time 4 - The Syndicate"
"C:\Program Files\Crash Time 4 - The Syndicate\CrashTime4Low.exe"="C:\Program Files\Crash Time 4 - The Syndicate\CrashTime4Low.exe:*:Enabled:Crash Time 4 - The Syndicate"
"C:\Programy\uTorrent\uTorrent.exe"="C:\Programy\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Easy Downloads\easydownloads.exe"="C:\Program Files\Easy Downloads\easydownloads.exe:*:Enabled:EasyDownloads"
"C:\Program Files\Easy Downloads\easydl.exe"="C:\Program Files\Easy Downloads\easydl.exe:*:Enabled:EasyDownloadsDL"
"C:\Program Files\Foxit Software\PDF Editor\PDFEdit.exe"="C:\Program Files\Foxit Software\PDF Editor\PDFEdit.exe:*:Enabled:Foxit PDF Editor, the first REAL editor for PDF files!"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Documents and Settings\uživatel\Plocha\AV.Voice.Changer.v7.0.33.Diamond.RetailRBC\Activation Server\hfs271.exe"="C:\Documents and Settings\uživatel\Plocha\AV.Voice.Changer.v7.0.33.Diamond.RetailRBC\Activation Server\hfs271.exe:*:Enabled:hfs271"
"C:\WINDOWS\explorer.exe"="C:\WINDOWS\explorer.exe:*:Enabled:Průzkumník Windows"
"C:\Documents and Settings\uživatel\Local Settings\Temp\Rar$EX00.375\Activation Server\hfs271.exe"="C:\Documents and Settings\uživatel\Local Settings\Temp\Rar$EX00.375\Activation Server\hfs271.exe:*:Enabled:hfs271"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"msacm.iac2"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\iac25_32.ax
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux1"=wdmaud.drv
"wave4"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux2"=wdmaud.drv
"wave5"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux3"=wdmaud.drv
"wave6"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux4"=wdmaud.drv
"vidc.avrn"=C:\PROGRA~1\ACEMEG~1\SystemS\AVIDAV~1.DLL
"vidc.advj"=C:\PROGRA~1\ACEMEG~1\SystemS\AVIDAV~1.DLL
"vidc.mszh"=C:\PROGRA~1\ACEMEG~1\SystemS\avimszh.dll
"vidc.zlib"=C:\PROGRA~1\ACEMEG~1\SystemS\avizlib.dll
"vidc.cscd"=C:\PROGRA~1\ACEMEG~1\SystemS\camcodec.dll
"vidc.cvid"=C:\PROGRA~1\ACEMEG~1\SystemS\iccvid.dll
"msacm.trspch"=C:\PROGRA~1\ACEMEG~1\SystemS\tssoft32.acm
"vidc.em2v"=C:\PROGRA~1\ACEMEG~1\SystemS\etxcodec.dll
"vidc.mkvc"=C:\PROGRA~1\ACEMEG~1\SystemS\kmvidc32.dll
"vidc.hfyu"=C:\PROGRA~1\ACEMEG~1\SystemS\huffyuv.dll
"msacm.lameacm"=C:\PROGRA~1\ACEMEG~1\SystemS\lameacm.acm
"msacm.lhacm"=C:\PROGRA~1\ACEMEG~1\SystemS\lhacm.acm
"msacm.l3acm"=C:\PROGRA~1\ACEMEG~1\SystemS\l3codecp.acm
"vidc.sjpg"=C:\PROGRA~1\ACEMEG~1\SystemS\pmjpeg32.dll
"vidc.dmb2"=C:\PROGRA~1\ACEMEG~1\SystemS\pmjpeg32.dll
"vidc.gepj"=C:\PROGRA~1\ACEMEG~1\SystemS\pmjpeg32.dll
"vidc.qpeg"=C:\PROGRA~1\ACEMEG~1\SystemS\Qpeg32.dll
"vidc.q1.0"=C:\PROGRA~1\ACEMEG~1\SystemS\Qpeg32.dll
"msacm.sl_anet"=C:\PROGRA~1\ACEMEG~1\SystemS\sl_anet.acm
"vidc.tscc"=C:\PROGRA~1\ACEMEG~1\SystemS\tsccvid.dll
"vidc.vifp"=C:\PROGRA~1\ACEMEG~1\SystemS\vfcodec.dll
"vidc.wrpr"=C:\PROGRA~1\ACEMEG~1\SystemS\aviwrap.dll
"vidc.wnv1"=C:\PROGRA~1\ACEMEG~1\SystemS\wnvplay1.dll
"vidc.advs"=C:\PROGRA~1\ACEMEG~1\SystemS\Adaptec\Dvc.dll
"vidc.aflc"=C:\PROGRA~1\ACEMEG~1\SystemS\Autodesk\FLCCOD~1.DLL
"vidc.afli"=C:\PROGRA~1\ACEMEG~1\SystemS\Autodesk\FLCCOD~1.DLL
"vidc.aasc"=C:\PROGRA~1\ACEMEG~1\SystemS\Autodesk\Aasc32.dll
"vidc.aas4"=C:\PROGRA~1\ACEMEG~1\SystemS\Autodesk\Aasc32.dll
"vidc.asv1"=C:\PROGRA~1\ACEMEG~1\SystemS\ASUS\asusasv1.dll
"vidc.asv2"=C:\PROGRA~1\ACEMEG~1\SystemS\ASUS\asusasv2.dll
"vidc.asvx"=C:\PROGRA~1\ACEMEG~1\SystemS\ASUS\asusasv2.dll
"vidc.vcr1"=C:\PROGRA~1\ACEMEG~1\SystemS\ATI\ativcr1.dll
"vidc.vcr2"=C:\PROGRA~1\ACEMEG~1\SystemS\ATI\ativcr2.dll
"vidc.yv12"=xvidvfw.dll
"vidc.mwv1"=C:\PROGRA~1\ACEMEG~1\SystemS\Aware\icmw_32.dll
"vidc.bt20"=C:\PROGRA~1\ACEMEG~1\SystemS\BROOKT~1\btvvc32.drv
"vidc.y41p"=C:\PROGRA~1\ACEMEG~1\SystemS\BROOKT~1\btvvc32.drv
"msacm.pcdv"=C:\PROGRA~1\ACEMEG~1\SystemS\Canopus\pcdv.acm
"vidc.cdvc"=C:\PROGRA~1\ACEMEG~1\SystemS\Canopus\CSCCDVC.DLL
"vidc.ddvc"=C:\PROGRA~1\ACEMEG~1\SystemS\Canopus\CSCdvsd.DLL
"vidc.png1"=C:\PROGRA~1\ACEMEG~1\SystemS\Core\COREPN~1.DLL
"msacm.CoreFLAC_ACM"=C:\PROGRA~1\ACEMEG~1\SystemS\Core\COREFL~1.ACM
"vidc.davc"=C:\PROGRA~1\ACEMEG~1\SystemS\dicas\davcvfw.dll
"vidc.div3"=C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32.dll
"vidc.div5"=C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32.dll
"vidc.mpg3"=C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32.dll
"vidc.div4"=C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32f.dll
"vidc.div6"=C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32f.dll
"vidc.ap41"=C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32f.dll
"vidc.dvx4"=C:\PROGRA~1\ACEMEG~1\SystemS\DivX\divx4.dll
"vidc.divx"=C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivX520.dll
"msacm.divxa32"=C:\PROGRA~1\ACEMEG~1\SystemS\DivX\divxa32.acm
"vidc.frwd"=C:\PROGRA~1\ACEMEG~1\SystemS\Forward\frwd.dll
"vidc.frwt"=C:\PROGRA~1\ACEMEG~1\SystemS\Forward\frwd.dll
"vidc.frwa"=C:\PROGRA~1\ACEMEG~1\SystemS\Forward\frwt.dll
"vidc.frwu"=C:\PROGRA~1\ACEMEG~1\SystemS\Forward\frwu.dll
"vidc.glzw"=C:\PROGRA~1\ACEMEG~1\SystemS\Gabest\GLZW.dll
"vidc.gpeg"=C:\PROGRA~1\ACEMEG~1\SystemS\Gabest\GPEG.dll
"vidc.i263"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\i263_32.drv
"vidc.iv30"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv31"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv32"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv33"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv34"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv35"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv36"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv37"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv38"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv39"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv40"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv41"=C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll

======List of files/folders created in the last 1 month======

2011-11-15 13:23:13 ----D---- C:\Program Files\trend micro
2011-11-14 20:00:26 ----D---- C:\rsit
2011-11-14 19:54:16 ----A---- C:\WINDOWS\ntbtlog.txt
2011-11-14 19:12:37 ----D---- C:\Documents and Settings\uživatel\Data aplikací\Avnex
2011-11-14 19:06:30 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2011-11-14 19:06:29 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2011-11-14 19:06:28 ----A---- C:\WINDOWS\system32\ksuser.dll
2011-11-14 19:06:28 ----A---- C:\WINDOWS\system32\drivers\stream.sys
2011-11-14 19:06:27 ----D---- C:\WINDOWS\LastGood.Tmp
2011-11-14 19:05:37 ----A---- C:\WINDOWS\system32\drivers\vcsvad.sys
2011-11-11 09:34:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2641690$
2011-11-10 18:48:47 ----A---- C:\Documents and Settings\uživatel\Data aplikací\steam_md4.dat
2011-11-09 22:28:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893-v2$
2011-10-25 17:18:33 ----D---- C:\WINDOWS\system32\3Planesoft
2011-10-25 17:18:33 ----D---- C:\Program Files\3Planesoft Screensaver Manager
2011-10-25 17:18:33 ----A---- C:\WINDOWS\system32\3Planesoft_Screensaver_Manager.scr
2011-10-25 17:18:30 ----A---- C:\WINDOWS\system32\Fireplace_3D_Screensaver.scr
2011-10-25 17:18:30 ----A---- C:\WINDOWS\system32\Fireplace 3D Screensaver.exe
2011-10-22 18:46:33 ----A---- C:\WINDOWS\system32\javaws.exe
2011-10-22 18:46:33 ----A---- C:\WINDOWS\system32\javaw.exe
2011-10-22 18:46:32 ----A---- C:\WINDOWS\system32\java.exe

======List of files/folders modified in the last 1 month======

2011-11-15 13:23:13 ----RD---- C:\Program Files
2011-11-15 13:07:24 ----D---- C:\Documents and Settings
2011-11-14 20:04:15 ----AD---- C:\WINDOWS
2011-11-14 19:53:11 ----D---- C:\WINDOWS\Minidump
2011-11-14 19:53:11 ----D---- C:\WINDOWS\Debug
2011-11-14 19:53:10 ----D---- C:\WINDOWS\Temp
2011-11-14 19:53:09 ----D---- C:\WINDOWS\system32
2011-11-14 19:53:07 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-11-14 19:43:47 ----D---- C:\WINDOWS\system32\drivers
2011-11-14 19:43:46 ----HD---- C:\WINDOWS\inf
2011-11-14 19:37:28 ----A---- C:\WINDOWS\DFC.INI
2011-11-14 19:26:20 ----D---- C:\Program Files\Spyware Terminator
2011-11-14 19:14:46 ----D---- C:\Documents and Settings\uživatel\Data aplikací\DMCache
2011-11-14 19:06:35 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-11-14 19:05:28 ----D---- C:\Programy
2011-11-14 17:38:30 ----D---- C:\WINDOWS\system32\CatRoot2
2011-11-14 17:33:49 ----D---- C:\WINDOWS\Prefetch
2011-11-14 17:33:05 ----D---- C:\Program Files\SpeedFan
2011-11-14 17:25:07 ----D---- C:\Hry
2011-11-14 14:54:11 ----SHD---- C:\WINDOWS\Installer
2011-11-11 08:46:14 ----HD---- C:\WINDOWS\$hf_mig$
2011-11-09 22:26:28 ----A---- C:\WINDOWS\system32\MRT.exe
2011-11-08 18:57:05 ----A---- C:\WINDOWS\NeroDigital.ini
2011-11-07 08:38:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2011-11-04 20:44:52 ----D---- C:\Xjackitis
2011-11-03 18:04:11 ----D---- C:\WINDOWS\RazorDOX
2011-10-31 19:45:28 ----D---- C:\Documents and Settings\uživatel\Data aplikací\Canon
2011-10-25 13:34:30 ----A---- C:\WINDOWS\wincmd.ini
2011-10-22 22:05:41 ----D---- C:\Documents and Settings\uživatel\Data aplikací\Skype
2011-10-22 18:46:45 ----D---- C:\Program Files\Common Files\Java
2011-10-22 18:46:29 ----D---- C:\Program Files\Java
2011-10-21 18:29:14 ----RD---- C:\Program Files\Skype
2011-10-21 18:29:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2011-10-21 18:29:03 ----D---- C:\Program Files\Common Files
2011-10-21 18:28:29 ----D---- C:\Documents and Settings\uživatel\Data aplikací\skypePM
2011-10-20 14:56:36 ----D---- C:\Program Files\Opera

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 BootScreen;BootScreen; C:\WINDOWS\System32\drivers\vidstub.sys [2008-10-01 163712]
R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2007-03-08 43528]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2006-09-24 5248]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-08-03 717296]
R0 xmasbus;xmasbus; C:\WINDOWS\system32\DRIVERS\xmasbus.sys [2003-12-21 140800]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R3 AnyDVD;AnyDVD; C:\WINDOWS\System32\Drivers\AnyDVD.sys [2008-08-01 99648]
R3 gHidPnp;USB Device Enhanced Function Driver; C:\WINDOWS\System32\Drivers\gHidPnp.Sys [2006-07-14 14848]
R3 gMouUsb;USB Mouse Device Drv; C:\WINDOWS\system32\DRIVERS\gMouUsb.sys [2006-07-14 9984]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S0 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\System32\Drivers\vbtenum.sys []
S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys []
S0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
S0 xmasscsi;xmasscsi; C:\WINDOWS\System32\Drivers\xmasscsi.sys [2003-12-20 5504]
S1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-01-13 29392]
S1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-01-13 23632]
S1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-01-13 294608]
S1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-01-13 47440]
S1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2008-07-21 24392]
S1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
S1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
S1 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2008-04-14 31744]
S1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2006-03-02 12032]
S2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-01-13 17744]
S2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-01-13 100176]
S2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-08-01 279712]
S2 Ethpdrv;Ethernet Packet Driver; C:\WINDOWS\system32\DRIVERS\ethpdrv.sys [2005-09-08 9728]
S2 LF30FS;LF30FS; \??\C:\Programy\Everstrike Software\Lock Folder XP 3.5\LF30XP.sys []
S2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-08-01 25888]
S2 Nadim;NAD Proto Driver; C:\WINDOWS\system32\DRIVERS\nadim.sys [2005-05-30 16896]
S2 TBPanel;TBPanel; C:\WINDOWS\system32\drivers\TBPanel.sys [2007-03-16 12256]
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 AVerBDA3x;AVerMedia SAA713x BDA Service; C:\WINDOWS\system32\DRIVERS\AVerBDA3x.sys [2006-12-14 1171456]
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys []
S3 Cardex;Cardex; \??\C:\WINDOWS\system32\drivers\TBPANEL.SYS []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 gMouPS2;PS2 Scroll Mouse Device; C:\WINDOWS\system32\DRIVERS\gMouPS2.sys [2006-07-12 17408]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2010-02-03 26176]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-06-28 4304384]
S3 ipw_bus;IPWireless; C:\WINDOWS\system32\DRIVERS\ipw_bus.sys [2005-09-27 58320]
S3 ipw_mdfl;Wireless Broadband Modem Filter; C:\WINDOWS\system32\DRIVERS\ipw_mdfl.sys [2005-09-27 8272]
S3 ipw_mdm;Wireless Broadband Modem (WDM); C:\WINDOWS\system32\DRIVERS\ipw_mdm.sys [2005-09-27 95440]
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-07-09 10604128]
S3 PAC7302;CANYON USB PC CAMERA; C:\WINDOWS\system32\DRIVERS\PAC7302.SYS [2007-11-08 458752]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2008-09-18 47360]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2006-03-02 5888]
S3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2005-11-16 78976]
S3 s125bus;Sony Ericsson Device 125 driver (WDM); C:\WINDOWS\system32\DRIVERS\s125bus.sys [2007-04-24 83336]
S3 s125mdfl;Sony Ericsson Device 125 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s125mdfl.sys [2007-04-24 15112]
S3 s125mdm;Sony Ericsson Device 125 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s125mdm.sys [2007-04-24 108680]
S3 s125mgmt;Sony Ericsson Device 125 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s125mgmt.sys [2007-04-24 100488]
S3 s125obex;Sony Ericsson Device 125 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s125obex.sys [2007-04-24 98696]
S3 Ser2pl;MAT Serial port driver; C:\WINDOWS\system32\DRIVERS\ser2pl.sys [2003-07-16 43264]
S3 sermouse;Ovladač sériové myši; C:\WINDOWS\system32\DRIVERS\sermouse.sys [2001-10-24 17664]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\WINDOWS\system32\DRIVERS\vcsvad.sys [2008-12-26 17792]
S3 VHidMinidrv;Bluetooth HID Device Service; C:\WINDOWS\system32\drivers\VHIDMini.sys []
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-11-01 76672]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-11-01 82560]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

S2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-01-13 40384]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-08-24 136176]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2011-08-04 1361288]
S2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-10-03 153376]
S2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-08-23 79136]
S2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-07-09 155752]
S2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-08-01 66872]
S2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\PROGRA~1\SPYWAR~1\sp_rsser.exe [2008-04-08 965632]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-08-24 136176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-10-27 657408]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[Massa]

Ahoj, díky moc zkusím to udělat...
takže jsem se díval do truhly a byl tam ze včerejška z doby kdy se to stalo vir. s názvem
80000000.@ a popis viru Win64:Sirelef-A (Trj) – můžu vir s truhly dát odstranit?

__________________________________________________________________________

OTL logfile created on: 15.11.2011 19:38:58 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\uživatel\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,25 Gb Total Physical Memory | 2,84 Gb Available Physical Memory | 87,37% Memory free
6,09 Gb Paging File | 5,84 Gb Available in Paging File | 95,80% Paging File free
Paging file location(s): C:\pagefile.sys 3070 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 298,09 Gb Total Space | 133,07 Gb Free Space | 44,64% Space Free | Partition Type: NTFS
Drive F: | 488,88 Mb Total Space | 24,60 Mb Free Space | 5,03% Space Free | Partition Type: FAT32

Computer Name: WIMMER-A39D2305 | User Name: uživatel | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2011.11.15 18:07:38 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\uživatel\Plocha\OTL.exe
PRC - [2011.10.20 14:14:20 | 000,947,056 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2003.08.06 20:24:20 | 012,037,688 | ---- | M] (Microsoft Corporation) -- C:\Programy\microsoft office\OFFICE11\WINWORD.EXE


========== Modules (No Company Name) ==========

MOD - [2009.01.10 23:17:14 | 000,536,576 | ---- | M] () -- C:\Programy\FormatFactory\FFModules\Filters\Haali\splitter.ax
MOD - [2009.01.10 23:16:56 | 000,148,480 | ---- | M] () -- C:\Programy\FormatFactory\FFModules\Filters\Haali\mkx.dll
MOD - [2009.01.10 23:15:44 | 000,159,744 | ---- | M] () -- C:\Programy\FormatFactory\FFModules\Filters\Haali\mmfinfo.dll
MOD - [2009.01.10 23:14:08 | 000,079,360 | ---- | M] () -- C:\Programy\FormatFactory\FFModules\Filters\Haali\mkzlib.dll
MOD - [2009.01.10 23:14:06 | 000,023,552 | ---- | M] () -- C:\Programy\FormatFactory\FFModules\Filters\Haali\mkunicode.dll
MOD - [2007.05.05 10:40:34 | 000,128,512 | ---- | M] () -- C:\Programy\WinRar\RarExt.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.08.04 13:34:46 | 001,361,288 | ---- | M] (LogMeIn Inc.) [Auto | Stopped] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2011.01.13 08:47:33 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Stopped] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2009.10.27 09:26:36 | 000,657,408 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008.04.08 17:47:53 | 000,965,632 | ---- | M] (Crawler.com) [Auto | Stopped] -- C:\Program Files\Spyware Terminator\sp_rsser.exe -- (sp_rssrv)


========== Driver Services (SafeList) ==========

DRV - [2011.07.15 14:29:31 | 000,456,320 | ---- | M] () [File_System | System | Stopped] -- C:\WINDOWS\system32\drivers\mrxsmb.sys -- (MRxSmb)
DRV - [2011.01.13 08:41:16 | 000,294,608 | ---- | M] (AVAST Software) [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.01.13 08:40:16 | 000,047,440 | ---- | M] (AVAST Software) [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.01.13 08:40:04 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Stopped] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011.01.13 08:37:30 | 000,023,632 | ---- | M] (AVAST Software) [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.01.13 08:37:11 | 000,029,392 | ---- | M] (AVAST Software) [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011.01.13 08:37:09 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Stopped] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010.08.03 14:31:17 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010.02.03 14:56:56 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2009.08.01 01:25:44 | 000,279,712 | ---- | M] () [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2009.08.01 01:25:44 | 000,025,888 | ---- | M] () [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2008.12.26 12:56:04 | 000,017,792 | ---- | M] (Avnex) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vcsvad.sys -- (VCSVADHWSer) Avnex Virtual Audio Device (WDM)
DRV - [2008.10.01 20:53:41 | 000,163,712 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\vidstub.sys -- (BootScreen)
DRV - [2008.08.26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.08.01 14:27:35 | 000,099,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AnyDVD.sys -- (AnyDVD)
DRV - [2008.04.13 19:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
DRV - [2008.04.13 19:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008.04.08 17:47:53 | 000,138,624 | ---- | M] () [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2007.11.08 10:29:52 | 000,458,752 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PAC7302.SYS -- (PAC7302)
DRV - [2007.04.24 11:33:46 | 000,100,488 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125mgmt.sys -- (s125mgmt) Sony Ericsson Device 125 USB WMC Device Management Drivers (WDM)
DRV - [2007.04.24 11:33:46 | 000,098,696 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125obex.sys -- (s125obex)
DRV - [2007.04.24 11:33:44 | 000,108,680 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125mdm.sys -- (s125mdm)
DRV - [2007.04.24 11:33:42 | 000,015,112 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125mdfl.sys -- (s125mdfl)
DRV - [2007.04.24 11:33:34 | 000,083,336 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125bus.sys -- (s125bus) Sony Ericsson Device 125 driver (WDM)
DRV - [2007.03.16 09:11:38 | 000,012,256 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto | Stopped] -- C:\WINDOWS\System32\drivers\TBPanel.sys -- (TBPanel)
DRV - [2007.03.16 09:11:38 | 000,012,256 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TBPanel.sys -- (Cardex)
DRV - [2006.12.14 04:34:40 | 001,171,456 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AVerBDA3x.sys -- (AVerBDA3x)
DRV - [2006.09.24 14:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2006.07.14 06:33:58 | 000,009,984 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gMouUsb.sys -- (gMouUsb)
DRV - [2006.07.14 06:30:52 | 000,014,848 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gHidPnp.sys -- (gHidPnp)
DRV - [2006.07.12 03:48:46 | 000,017,408 | ---- | M] ( Mouse Upfilter Driver ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gMouPS2.sys -- (gMouPS2)
DRV - [2006.06.28 09:25:24 | 004,304,384 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2005.11.16 09:08:16 | 000,078,976 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTL8023xp)
DRV - [2005.09.27 09:21:54 | 000,095,440 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ipw_mdm.sys -- (ipw_mdm) Wireless Broadband Modem (WDM)
DRV - [2005.09.27 09:21:50 | 000,008,272 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ipw_mdfl.sys -- (ipw_mdfl)
DRV - [2005.09.27 09:21:28 | 000,058,320 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ipw_bus.sys -- (ipw_bus)
DRV - [2005.09.08 00:18:54 | 000,009,728 | R--- | M] (Gemfor s.r.o.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\ethpdrv.sys -- (Ethpdrv)
DRV - [2005.05.30 22:27:40 | 000,016,896 | ---- | M] (MetaProducts corp.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\nadim.sys -- (Nadim)
DRV - [2004.11.19 16:07:00 | 000,101,488 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Programy\Everstrike Software\Lock Folder XP 3.5\LF30XP.sys -- (LF30FS)
DRV - [2003.12.21 16:24:22 | 000,140,800 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\xmasbus.sys -- (xmasbus)
DRV - [2003.12.20 19:03:42 | 000,005,504 | ---- | M] ( ) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\Drivers\xmasscsi.sys -- (xmasscsi)
DRV - [2003.07.16 07:27:40 | 000,043,264 | R--- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ser2pl.sys -- (Ser2pl)
DRV - [1996.04.03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


IE - HKU\S-1-5-21-1060284298-776561741-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
IE - HKU\S-1-5-21-1060284298-776561741-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
IE - HKU\S-1-5-21-1060284298-776561741-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-1060284298-776561741-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1060284298-776561741-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = plimus.com,www.plimus.com,regnow.com,www.regnow.com,
IE - HKU\S-1-5-21-1060284298-776561741-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = socks=

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2027: C:\Program Files\ACE Mega CoDecS Pack\SystemS\RealMedia\Browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.46: C:\Programy\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.3.46: C:\Programy\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1040: C:\Program Files\ACE Mega CoDecS Pack\SystemS\RealMedia\Browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.46: C:\Programy\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Programy\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Programy\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)

FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Documents and Settings\uživatel\Data aplikací\IDM\idmmzcc2 [2008.05.08 10:47:50 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\15.0.874.106\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Java Deployment Toolkit 6.0.220.4 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U22 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Programy\Real\RealPlayer\Netscape6\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Programy\Real\RealPlayer\Netscape6\nprpjplug.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\15.0.874.106\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\15.0.874.106\pdf.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Yahoo! activeX Plug-in Bridge (Enabled) = C:\Program Files\Yahoo!\Common\npyaxmpb.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Programy\Real\RealPlayer\Netscape6\nprjplug.dll
CHR - plugin: Veetle TV Player (Enabled) = C:\Programy\Veetle\Player\npvlc.dll
CHR - plugin: Veetle TV Core (Enabled) = C:\Programy\Veetle\plugins\npVeetle.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: Skype Click to Call = C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0\

O1 HOSTS File: ([2011.11.14 19:34:48 | 000,000,721 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1
O2 - BHO: (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Programy\Internet Download Manager\IDMIECC.dll (Tonec Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Ukazatel S-Rank) - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\core.3.dll ()
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\WINDOWS\WebIE.dll ()
O3 - HKLM\..\Toolbar: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Programy\Orbitdownloader\GrabPro.dll ()
O3 - HKU\S-1-5-21-1060284298-776561741-725345543-1004\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-1060284298-776561741-725345543-1004\..\Toolbar\WebBrowser: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Programy\Orbitdownloader\GrabPro.dll ()
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Gainward] C:\Program Files\VDOTool\TBPanel.exe (Palit Microsystems, Inc.)
O4 - HKLM..\Run: [ioCentre] C:\Genius\ioCentre\gTaskBar.exe (TODO: <Company name>)
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [LFAgent] File not found
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [NBAgent] C:\Programy\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKLM..\Run: [OpwareSE2] C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe (ScanSoft, Inc.)
O4 - HKLM..\Run: [PAC7302_Monitor] C:\WINDOWS\PixArt\PAC7302\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [QuickTime Task] C:\WINDOWS\System32\qttask.exe (Apple Computer, Inc.)
O4 - HKLM..\Run: [SpywareTerminator] C:\Program Files\Spyware Terminator\Spywareterminatorshield.Exe (Crawler.com)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKU\S-1-5-21-1060284298-776561741-725345543-1004..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-1060284298-776561741-725345543-1004..\Run: [Net Activity Diagram] C:\Programy\Net Activity Diagram\nad.exe (MetaProducts corp)
O4 - HKU\S-1-5-21-1060284298-776561741-725345543-1004..\Run: [Seznam Postak] C:\Program Files\Seznam.cz\postak.exe ()
O4 - Startup: C:\Documents and Settings\uživatel\Nabídka Start\Programy\Po spuštění\SpeedFan.lnk = C:\Program Files\SpeedFan\speedfan.exe (Almico Software (www.almico.com))
O4 - Startup: C:\Documents and Settings\uživatel\Nabídka Start\Programy\Po spuštění\Yahoo! Widget Engine.lnk = C:\Programy\Widgets\YahooWidgetEngine.exe (Yahoo! Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1060284298-776561741-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &Download by Orbit - C:\Programy\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: &Grab video by Orbit - C:\Programy\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Add to AMV Converter... - C:\Programy\MP3Software\AMVConverter\grab.html ()
O8 - Extra context menu item: Baixar com o Rapidown... - C:\Program Files\Rapidown\RapidownGet.htm File not found
O8 - Extra context menu item: Baixar tudo com o Rapidown... - C:\Program Files\Rapidown\RapidownGetAll.htm File not found
O8 - Extra context menu item: Do&wnload selected by Orbit - C:\Programy\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Down&load all by Orbit - C:\Programy\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - C:\Programy\microsoft office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Easy-WebPrint Add To Print List - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint High Speed Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Preview - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Stáhnout obsah FLV videa s IDM - C:\Programy\Internet Download Manager\IEGetVL.htm ()
O8 - Extra context menu item: Stáhnout s IDM - C:\Programy\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: Stáhnout všechny odkazy s IDM - C:\Programy\Internet Download Manager\IEGetAll.htm ()
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll ()
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programy\microsoft office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll ()
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\Yinsthelper.dll (Installation Support)
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{95D2C9BD-68BC-4D69-900F-D90522CFAA39}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKU\S-1-5-21-1060284298-776561741-725345543-1004 Winlogon: Shell - (C:\Documents and Settings\uživatel\Local Settings\Data aplikací\46c59570\X) -C:\Documents and Settings\uživatel\Local Settings\Data aplikací\46c59570\X ()
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.04.04 14:45:06 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{cb79baba-9f03-11df-9e9f-00158315a270}\Shell - "" = AutoRun
O33 - MountPoints2\{cb79baba-9f03-11df-9e9f-00158315a270}\Shell\AutoRun\command - "" = E:\Autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.at3 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\SONY\atrac3.acm ()
Drivers32: msacm.CoreFLAC_ACM - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Core\CoreFLAC_ACM.acm ()
Drivers32: msacm.divxa32 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxa32.acm (Kristal StudioDFileDescription)
Drivers32: msacm.iac2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\iac25_32.ax (Intel Corporation)
Drivers32: msacm.imaadpcm - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\imaadp32.acm (Microsoft Corporation)
Drivers32: msacm.imc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\imc32.acm (Intel Corporation)
Drivers32: msacm.l3acm - C:\Program Files\ACE Mega CoDecS Pack\SystemS\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\Program Files\ACE Mega CoDecS Pack\SystemS\lameacm.acm (http://www.mp3dev.org/)
Drivers32: msacm.lhacm - C:\Program Files\ACE Mega CoDecS Pack\SystemS\lhacm.acm (Microsoft Corporation)
Drivers32: msacm.msadpcm - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msadp32.acm (Microsoft Corporation)
Drivers32: msacm.msaudio1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msaud32.acm (Microsoft Corporation)
Drivers32: msacm.msg711 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msg711.acm (Microsoft Corporation)
Drivers32: msacm.msg723 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msg723.acm (Microsoft Corporation)
Drivers32: msacm.msgsm610 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msgsm32.acm (Microsoft Corporation)
Drivers32: msacm.pcdv - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Canopus\pcdv.acm (Canopus Co., Ltd.)
Drivers32: msacm.qmpeg - C:\Program Files\ACE Mega CoDecS Pack\SystemS\QDesign\qmpeg.acm (QDesign Corporation)
Drivers32: msacm.sl_anet - C:\Program Files\ACE Mega CoDecS Pack\SystemS\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\Program Files\ACE Mega CoDecS Pack\SystemS\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.vorbis - C:\Program Files\ACE Mega CoDecS Pack\SystemS\OGG\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: msacm.voxacm160 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\VoxWare\vct3216.acm (Voxware, Inc.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.aas4 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Autodesk\aasc32.dll (Autodesk, Inc.)
Drivers32: vidc.aasc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Autodesk\aasc32.dll (Autodesk, Inc.)
Drivers32: vidc.advj - C:\Program Files\ACE Mega CoDecS Pack\SystemS\avidavicodec.dll (Avid Technology, Inc)
Drivers32: vidc.advs - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Adaptec\dvc.dll (Adaptec)
Drivers32: vidc.aflc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Autodesk\flccodec32.dll (Autodesk, Inc.)
Drivers32: vidc.afli - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Autodesk\flccodec32.dll (Autodesk, Inc.)
Drivers32: vidc.ap41 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32f.dll (Hacked with Joy !)
Drivers32: vidc.asv1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\ASUS\asusasv1.dll ()
Drivers32: vidc.asv2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\ASUS\asusasv2.dll ()
Drivers32: vidc.asvx - C:\Program Files\ACE Mega CoDecS Pack\SystemS\ASUS\asusasv2.dll ()
Drivers32: vidc.avi1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MainConcept\mcmjpg32.dll (MainConcept)
Drivers32: vidc.avi2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MainConcept\mcmjpg32.dll (MainConcept)
Drivers32: vidc.avrn - C:\Program Files\ACE Mega CoDecS Pack\SystemS\avidavicodec.dll (Avid Technology, Inc)
Drivers32: vidc.bt20 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Brooktree\btvvc32.drv (Brooktree Corporation)
Drivers32: vidc.cdvc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Canopus\csccdvc.dll (Canopus Co., Ltd.)
Drivers32: vidc.cram - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msvidc32.dll (Microsoft Corporation)
Drivers32: vidc.cscd - C:\Program Files\ACE Mega CoDecS Pack\SystemS\camcodec.dll (RenderSoft Software.)
Drivers32: vidc.cvid - C:\Program Files\ACE Mega CoDecS Pack\SystemS\iccvid.dll (Compression Technologies, Inc.)
Drivers32: vidc.davc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\dicas\davcvfw.dll (dicas)
Drivers32: vidc.dcap - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pinnacle\mirodv2avi.dll (Pinnacle Systems)
Drivers32: vidc.dcmj - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MainConcept\mcmjpg32.dll (MainConcept)
Drivers32: vidc.ddvc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Canopus\cscdvsd.dll (Canopus Co., Ltd.)
Drivers32: vidc.div3 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32.dll (Hacked with Joy !)
Drivers32: vidc.div4 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32f.dll (Hacked with Joy !)
Drivers32: vidc.div5 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32.dll (Hacked with Joy !)
Drivers32: vidc.div6 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32f.dll (Hacked with Joy !)
Drivers32: vidc.divx - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\DivX520.dll (DivXNetworks, Inc.)
Drivers32: vidc.dmb2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\pmjpeg32.dll (White Pine Software and Paradigm Matrix)
Drivers32: vidc.dv25 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.dv50 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.dvc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MainConcept\mcdvd_32.dll (MainConcept)
Drivers32: vidc.dvcp - C:\Program Files\ACE Mega CoDecS Pack\SystemS\SONY\sonydv.dll (Sony Corporation)
Drivers32: vidc.dvcs - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MainConcept\mcdvd_32.dll (MainConcept)
Drivers32: vidc.dvsd - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MainConcept\mcdvd_32.dll (MainConcept)
Drivers32: vidc.dvx4 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\DivX4.dll (DivXNetworks, Inc.)
Drivers32: vidc.em2v - C:\Program Files\ACE Mega CoDecS Pack\SystemS\etxcodec.dll (Etymonix Inc.)
Drivers32: VIDC.FPS1 - C:\WINDOWS\System32\frapsvid.dll (Beepa P/L)
Drivers32: vidc.frwa - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Forward\frwt.dll (Darim Vision Co.)
Drivers32: vidc.frwd - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Forward\frwd.dll (Darim Vision Co.)
Drivers32: vidc.frwt - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Forward\frwd.dll (Darim Vision Co.)
Drivers32: vidc.frwu - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Forward\frwu.dll (Darim Vision Co.)
Drivers32: vidc.gepj - C:\Program Files\ACE Mega CoDecS Pack\SystemS\pmjpeg32.dll (White Pine Software and Paradigm Matrix)
Drivers32: vidc.glzw - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Gabest\glzw.dll (Gabest)
Drivers32: vidc.gpeg - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Gabest\gpeg.dll (Gabest)
Drivers32: vidc.gpjm - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pinnacle\rtmjpgcdc.dll (Pinnacle Systems)
Drivers32: vidc.hfyu - C:\Program Files\ACE Mega CoDecS Pack\SystemS\huffyuv.dll (Disappearing Inc.)
Drivers32: vidc.i263 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\i263_32.drv (Intel Corporation)
Drivers32: vidc.i420 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msh263.drv (Microsoft Corporation)
Drivers32: vidc.ipdv - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Panasonic\idvcodec.dll (Matsushita Electric Industrial Co., Ltd. I-O DATA DEVICE,INC.)
Drivers32: vidc.ir21 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir21_r.dll ()
Drivers32: vidc.iv30 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv31 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv33 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv34 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv35 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv36 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv37 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv38 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv39 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv40 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv41 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv42 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv43 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv44 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv45 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv46 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv47 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv48 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv49 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv50 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir50_32.dll (Intel Corporation)
Drivers32: vidc.iyuv - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\iyuv_32.dll (Microsoft Corporation)
Drivers32: vidc.lead - C:\Program Files\ACE Mega CoDecS Pack\SystemS\LEAD\lcodccmp.dll (LEAD Technologies, Inc.)
Drivers32: vidc.m261 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msh261.drv (Microsoft Corporation)
Drivers32: vidc.m263 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msh263.drv (Microsoft Corporation)
Drivers32: vidc.miro - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pinnacle\mirodv2avi.dll (Pinnacle Systems)
Drivers32: vidc.mjpa - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pinnacle\rtmjpgcdc.dll (Pinnacle Systems)
Drivers32: vidc.mjpx - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pegasus\pvmjpg21.dll (Pegasus Imaging Corporation)
Drivers32: vidc.mkvc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\kmvidc32.dll ()
Drivers32: vidc.mmes - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mmjp - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mp41 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\mpg4c32.dll ()
Drivers32: vidc.mp42 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\mpg4c32.dll ()
Drivers32: vidc.mp43 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\mpg4c32.dll ()
Drivers32: vidc.mp4s - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\mpg4c32.dll ()
Drivers32: vidc.mp4v - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\mpg4c32.dll ()
Drivers32: vidc.mpg3 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32.dll (Hacked with Joy !)
Drivers32: vidc.mpg4 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\mpg4c32.dll ()
Drivers32: vidc.mrle - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msrle32.dll (Microsoft Corporation)
Drivers32: vidc.msmc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.msvc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msvidc32.dll (Microsoft Corporation)
Drivers32: vidc.mszh - C:\Program Files\ACE Mega CoDecS Pack\SystemS\avimszh.dll ()
Drivers32: vidc.mtx1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx3 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx4 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx5 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx6 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx7 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx8 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx9 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mwv1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Aware\icmw_32.dll (Aware Inc.)
Drivers32: vidc.nt00 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Newtek\ntcodec.dll (NewTek, Inc)
Drivers32: vidc.pdvc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Panasonic\idvcodec.dll (Matsushita Electric Industrial Co., Ltd. I-O DATA DEVICE,INC.)
Drivers32: vidc.pim1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pinnacle\pclepim1.dll (Pinnacle Systems)
Drivers32: vidc.pimj - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pegasus\pvljpg20.dll (Pegasus Imaging Corporation)
Drivers32: vidc.png1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Core\CorePNG_vfw.dll ()
Drivers32: vidc.pvw2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pegasus\pvwv220.dll (Pegasus Imaging Corporation)
Drivers32: vidc.q1.0 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\qpeg32.dll (Q-Team Dr. Knabe GmbH, Korschenbroich, Germany)
Drivers32: vidc.qpeg - C:\Program Files\ACE Mega CoDecS Pack\SystemS\qpeg32.dll (Q-Team Dr. Knabe GmbH, Korschenbroich, Germany)
Drivers32: vidc.rmp4 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\REALmagic\rmp4.dll ()
Drivers32: vidc.rt21 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir21_r.dll ()
Drivers32: vidc.rud0 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Rududu\rududu.dll (nico)
Drivers32: vidc.s422 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Tekram\tekyuv.dll ()
Drivers32: vidc.sjpg - C:\Program Files\ACE Mega CoDecS Pack\SystemS\pmjpeg32.dll (White Pine Software and Paradigm Matrix)
Drivers32: vidc.sony - C:\Program Files\ACE Mega CoDecS Pack\SystemS\SONY\sonydv.dll (Sony Corporation)
Drivers32: vidc.t420 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Toshiba\tsbyuv.dll (Microsoft Corporation)
Drivers32: vidc.tscc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\tsccvid.dll (TechSmith Corporation)
Drivers32: vidc.uyvy - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.vcr1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\ATI\ativcr1.dll (ATI Technologies, Inc.)
Drivers32: vidc.vcr2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\ATI\ativcr2.dll (ATI Technologies, Inc.)
Drivers32: vidc.vifp - C:\Program Files\ACE Mega CoDecS Pack\SystemS\vfcodec.dll ()
Drivers32: vidc.vixl - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MIRO\miroxl32.dll (Pinnacle Systems)
Drivers32: vidc.vp30 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\On2 Technologies\vp31vfw.dll (On2.com)
Drivers32: vidc.vp31 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\On2 Technologies\vp31vfw.dll (On2.com)
Drivers32: vidc.vp60 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\On2 Technologies\vp6vfw.dll (On2.com)
Drivers32: vidc.vp61 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\On2 Technologies\vp6vfw.dll (On2.com)
Drivers32: vidc.vssv - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Vanguard Software Sollutions\vsscodec.dll (Vanguard Software Solutions, Inc.)
Drivers32: vidc.wmv3 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\wmv9vcm.dll (Microsoft Corporation)
Drivers32: vidc.wnv1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\wnvplay1.dll (Winnov)
Drivers32: vidc.wrpr - C:\Program Files\ACE Mega CoDecS Pack\SystemS\aviwrap.dll ()
Drivers32: vidc.xvid - C:\Program Files\ACE Mega CoDecS Pack\SystemS\XviD\xvidvfw.dll ()
Drivers32: vidc.y411 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Toshiba\tsbyuv.dll (Microsoft Corporation)
Drivers32: vidc.y41p - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Brooktree\btvvc32.drv (Brooktree Corporation)
Drivers32: vidc.yuy2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: vidc.yvu9 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\iyvu9_32.dll ()
Drivers32: vidc.yvyu - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.zlib - C:\Program Files\ACE Mega CoDecS Pack\SystemS\avizlib.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

CREATERESTOREPOINT
Error creating restore point.

========== Files/Folders - Created Within 7 Days ==========

File not found -- C:\Documents and Settings\uživatel\Plocha\CARMI13R.
[2011.11.15 18:20:47 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\uživatel\Plocha\OTL.exe
[2011.11.15 18:20:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Plocha\lečení
[2011.11.15 13:23:13 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.11.14 20:00:26 | 000,000,000 | ---D | C] -- C:\rsit
[2011.11.14 19:53:10 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\uživatel\Recent
[2011.11.14 19:24:37 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\uživatel\Local Settings\Data aplikací\46c59570
[2011.11.14 19:12:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Data aplikací\Avnex
[2011.11.14 19:06:30 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys
[2011.11.14 19:06:29 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2011.11.14 19:06:28 | 000,048,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\stream.sys
[2011.11.14 19:06:28 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2011.11.14 19:06:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Nabídka Start\Programy\Voice Changer Software DIAMOND
[2011.11.14 19:05:37 | 000,017,792 | ---- | C] (Avnex) -- C:\WINDOWS\System32\drivers\vcsvad.sys
[2011.11.10 18:48:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Local Settings\Data aplikací\CrashRpt
[2011.08.26 09:28:13 | 003,325,832 | ---- | C] (Ask) -- C:\Program Files\Common Files\APNToolbarInstaller.exe
[2011.08.26 09:28:13 | 000,108,424 | ---- | C] (Ask.com) -- C:\Program Files\Common Files\APNStub.exe
[2008.09.18 14:42:25 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\uživatel\Data aplikací\pcouffin.sys
[2008.04.15 16:16:58 | 000,140,800 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\xmasbus.sys
[2008.04.15 16:16:58 | 000,005,504 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\xmasscsi.sys
[4 C:\Documents and Settings\uživatel\Plocha\*.tmp files -> C:\Documents and Settings\uživatel\Plocha\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[142 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

File not found -- C:\Documents and Settings\uživatel\Plocha\CARMI13R.
[2011.11.15 19:40:19 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.11.15 19:31:26 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.11.15 18:07:38 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\uživatel\Plocha\OTL.exe
[2011.11.15 13:29:27 | 000,000,552 | ---- | M] () -- C:\WINDOWS\System32\d3d8caps.dat
[2011.11.14 20:22:10 | 000,212,480 | ---- | M] () -- C:\Documents and Settings\uživatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.11.14 19:53:09 | 000,565,998 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011.11.14 19:53:09 | 000,557,830 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2011.11.14 19:53:09 | 000,134,550 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2011.11.14 19:53:09 | 000,113,416 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011.11.14 19:38:09 | 025,147,432 | ---- | M] () -- C:\Documents and Settings\uživatel\Plocha\Trucky-na-ledě-3.serie-6.díl.avi
[2011.11.14 19:37:28 | 000,000,558 | ---- | M] () -- C:\WINDOWS\DFC.INI
[2011.11.14 19:36:00 | 000,000,944 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.11.14 19:36:00 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.11.13 21:49:46 | 369,108,992 | ---- | M] () -- C:\Documents and Settings\uživatel\Plocha\Trucky-na-ledě-3.serie-5.díl.avi
[2011.11.13 14:24:39 | 590,984,210 | ---- | M] () -- C:\Documents and Settings\uživatel\Plocha\counter-strike-source-texture-pack.rar
[2011.11.12 10:36:57 | 000,001,819 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2011.11.10 18:48:47 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\steam_md4.dat
[4 C:\Documents and Settings\uživatel\Plocha\*.tmp files -> C:\Documents and Settings\uživatel\Plocha\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[142 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.11.15 19:40:19 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.11.15 13:29:27 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2011.11.14 19:38:09 | 025,147,432 | ---- | C] () -- C:\Documents and Settings\uživatel\Plocha\Trucky-na-ledě-3.serie-6.díl.avi
[2011.11.13 20:27:01 | 369,108,992 | ---- | C] () -- C:\Documents and Settings\uživatel\Plocha\Trucky-na-ledě-3.serie-5.díl.avi
[2011.11.13 12:54:13 | 590,984,210 | ---- | C] () -- C:\Documents and Settings\uživatel\Plocha\counter-strike-source-texture-pack.rar
[2011.11.10 18:48:47 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\uživatel\Data aplikací\steam_md4.dat
[2011.09.22 17:35:10 | 000,000,464 | ---- | C] () -- C:\Documents and Settings\uživatel\Data aplikací\AutoGK.ini
[2011.08.26 09:28:13 | 000,444,283 | ---- | C] () -- C:\Program Files\Common Files\WinPcapNmap.exe
[2011.07.02 10:04:49 | 000,000,014 | ---- | C] () -- C:\WINDOWS\System32\SystemInfo32.sys
[2011.06.16 21:00:31 | 000,000,281 | ---- | C] () -- C:\WINDOWS\EReg072.dat
[2011.06.10 11:36:25 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011.04.14 21:18:34 | 000,000,702 | ---- | C] () -- C:\WINDOWS\mmtvmj.ini
[2011.04.14 21:18:33 | 000,000,761 | ---- | C] () -- C:\WINDOWS\m3jp2k.ini
[2011.04.14 21:18:33 | 000,000,714 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini
[2011.04.14 21:18:29 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll
[2011.04.14 21:18:26 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011.01.20 00:00:03 | 000,912,968 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2011.01.15 12:45:12 | 000,024,576 | ---- | C] () -- C:\WINDOWS\UniFISH.exe
[2010.12.05 12:49:35 | 000,000,394 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2010.10.13 16:53:58 | 000,000,037 | ---- | C] () -- C:\WINDOWS\Viewer.ini
[2010.08.29 13:31:28 | 000,232,968 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2010.08.29 13:31:26 | 000,232,968 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2010.08.29 13:31:26 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2010.08.29 13:30:12 | 002,195,030 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2010.04.03 13:52:38 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
[2010.04.02 17:17:34 | 000,179,091 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2010.02.01 17:27:26 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009.12.29 18:14:46 | 000,000,059 | ---- | C] () -- C:\WINDOWS\LTRDF14N.INI
[2009.12.29 13:21:23 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009.12.07 22:35:25 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2009.11.02 18:42:52 | 000,000,532 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
[2009.08.01 03:26:39 | 000,138,464 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.08.01 03:26:21 | 000,111,928 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2009.08.01 03:26:16 | 000,066,872 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2009.08.01 03:26:15 | 002,250,024 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe
[2009.08.01 01:25:44 | 000,279,712 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2009.08.01 01:25:44 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2009.07.08 16:33:38 | 000,014,848 | ---- | C] () -- C:\WINDOWS\System32\drivers\gHidPnp.sys
[2009.07.08 16:33:38 | 000,009,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\gMouUsb.sys
[2009.05.27 16:26:19 | 000,000,447 | ---- | C] () -- C:\WINDOWS\ff.INI
[2009.05.27 16:25:29 | 000,056,320 | ---- | C] () -- C:\WINDOWS\gendel32.exe
[2009.05.11 11:03:46 | 000,000,083 | ---- | C] () -- C:\WINDOWS\wwp.INI
[2009.04.23 18:49:05 | 000,000,023 | ---- | C] () -- C:\WINDOWS\BlendSettings.ini
[2009.01.15 16:28:16 | 000,000,030 | ---- | C] () -- C:\WINDOWS\System32\winitn.dll
[2009.01.15 16:28:10 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2009.01.04 17:23:15 | 000,000,240 | ---- | C] () -- C:\WINDOWS\IfoEdit.INI
[2009.01.04 16:16:54 | 000,000,133 | ---- | C] () -- C:\WINDOWS\VobEdit.INI
[2009.01.03 18:44:07 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\uživatel\Data aplikací\PnkBstrK.sys
[2008.12.21 14:20:01 | 000,000,048 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2008.12.02 10:58:31 | 000,491,520 | ---- | C] () -- C:\WINDOWS\WebIE.dll
[2008.12.02 10:58:07 | 000,000,047 | ---- | C] () -- C:\WINDOWS\WTRDCTM.INI
[2008.12.02 10:57:12 | 000,516,096 | ---- | C] () -- C:\WINDOWS\UN32.EXE
[2008.12.02 10:57:12 | 000,003,957 | ---- | C] () -- C:\WINDOWS\UN32P.INI
[2008.12.02 10:56:27 | 000,001,788 | ---- | C] () -- C:\WINDOWS\MAILTRAN.INI
[2008.12.02 10:56:26 | 000,002,510 | ---- | C] () -- C:\WINDOWS\TRNCOM.INI
[2008.12.02 10:56:18 | 000,004,192 | ---- | C] () -- C:\WINDOWS\WTRAN32.INI
[2008.12.02 10:56:18 | 000,001,873 | ---- | C] () -- C:\WINDOWS\WDICT32.INI
[2008.11.27 22:04:10 | 000,000,323 | ---- | C] () -- C:\WINDOWS\System32\Remover.ini
[2008.11.27 22:04:05 | 000,000,566 | ---- | C] () -- C:\WINDOWS\System32\SP7302.INI
[2008.11.27 17:55:28 | 000,000,620 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2008.11.17 18:02:28 | 000,000,525 | ---- | C] () -- C:\WINDOWS\QIII.INI
[2008.10.05 19:59:37 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\CNMVS7K.DLL
[2008.09.18 14:42:25 | 000,081,920 | ---- | C] () -- C:\Documents and Settings\uživatel\Data aplikací\ezpinst.exe
[2008.09.18 14:42:25 | 000,007,176 | ---- | C] () -- C:\Documents and Settings\uživatel\Data aplikací\pcouffin.cat
[2008.09.18 14:42:25 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\uživatel\Data aplikací\pcouffin.inf
[2008.09.17 12:01:16 | 002,392,064 | ---- | C] () -- C:\WINDOWS\System32\videotrans.dll
[2008.09.17 12:01:16 | 000,215,040 | ---- | C] () -- C:\WINDOWS\System32\videoformat.dll
[2008.09.17 12:01:16 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\imgscaler.dll
[2008.09.17 12:01:16 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\img_utils.dll
[2008.08.08 17:43:02 | 000,000,035 | ---- | C] () -- C:\WINDOWS\Worldbuilder.INI
[2008.07.19 01:54:27 | 000,000,066 | ---- | C] () -- C:\WINDOWS\Power Video Converter.INI
[2008.07.14 13:11:30 | 000,001,290 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2008.06.29 10:47:15 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2008.06.27 18:15:12 | 000,225,280 | R--- | C] () -- C:\WINDOWS\USB3220phmgunin.exe
[2008.06.16 18:47:28 | 000,163,712 | ---- | C] () -- C:\WINDOWS\System32\drivers\vidstub.sys
[2008.05.29 13:00:07 | 000,000,218 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2008.04.30 20:01:49 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2008.04.21 21:22:25 | 000,003,994 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2008.04.15 18:54:32 | 000,000,072 | ---- | C] () -- C:\WINDOWS\MediaManager.INI
[2008.04.11 16:58:20 | 000,000,064 | ---- | C] () -- C:\WINDOWS\AVerText.ini
[2008.04.09 13:51:35 | 000,135,168 | R--- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2008.04.09 13:37:55 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\ezsid.dat
[2008.04.08 21:19:17 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008.04.08 19:20:27 | 000,000,068 | ---- | C] () -- C:\WINDOWS\IDMan.INI
[2008.04.08 17:47:53 | 000,138,624 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2008.04.08 17:24:40 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008.04.08 17:17:50 | 000,212,480 | ---- | C] () -- C:\Documents and Settings\uživatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.04.04 16:27:24 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008.04.04 16:26:29 | 000,282,928 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008.04.04 15:20:31 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2008.04.04 15:20:26 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\34CoInstaller.dll
[2008.04.04 15:20:01 | 000,003,456 | R--- | C] () -- C:\WINDOWS\System32\AVerIO.sys
[2008.04.04 15:20:00 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\AVerIO.dll
[2008.04.04 15:19:57 | 000,262,144 | R--- | C] () -- C:\WINDOWS\System32\sptlib01.dll
[2008.04.04 15:19:57 | 000,249,856 | R--- | C] () -- C:\WINDOWS\System32\sptlib02.dll
[2008.04.04 14:59:32 | 000,000,558 | ---- | C] () -- C:\WINDOWS\DFC.INI
[2008.04.04 14:54:51 | 000,040,960 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2008.04.04 14:50:23 | 000,004,991 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2008.04.04 14:50:22 | 000,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2008.04.04 14:46:23 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2008.04.04 14:43:16 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2007.11.28 09:45:31 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006.03.06 09:41:02 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\AMV_DecDLL.dll
[2006.03.02 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2006.03.02 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2006.03.02 13:00:00 | 000,565,998 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2006.03.02 13:00:00 | 000,557,830 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2006.03.02 13:00:00 | 000,456,320 | ---- | C] () -- C:\WINDOWS\System32\drivers\mrxsmb.sys
[2006.03.02 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2006.03.02 13:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2006.03.02 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2006.03.02 13:00:00 | 000,134,550 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2006.03.02 13:00:00 | 000,113,416 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2006.03.02 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2006.03.02 13:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2006.03.02 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2006.03.02 13:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2006.03.02 13:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2006.03.02 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2006.03.02 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2005.10.14 10:56:50 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2005.10.14 10:56:50 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2005.10.14 10:56:50 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2005.10.14 10:56:50 | 000,128,512 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005.10.14 10:56:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2004.09.16 12:26:40 | 000,012,634 | ---- | C] () -- C:\WINDOWS\System32\drivers\ADFUUD.SYS
[2003.04.09 14:38:04 | 000,005,664 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002.10.15 23:54:04 | 000,152,064 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[1997.06.14 01:56:08 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll
[1996.04.03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

========== LOP Check ==========

[2010.08.12 22:53:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Age of Empires 3
[2011.02.12 16:05:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AlawarWrapper
[2010.04.28 09:26:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2011.09.22 10:06:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Babylon
[2011.02.20 20:02:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Bluetooth
[2009.11.02 17:01:04 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonBJ
[2010.08.03 14:34:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2011.07.02 10:04:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DVD X Studios
[2010.04.12 13:44:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\FarmFrenzy3_America
[2011.10.14 11:22:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Iceni
[2010.01.01 02:15:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2010.12.24 20:49:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\KONAMI
[2008.04.08 17:02:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\LightScribe
[2008.07.21 21:31:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MSScanAppDataDir
[2009.09.23 15:46:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MumboJumbo
[2010.01.01 02:18:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2009.12.29 18:14:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PCStitch 9
[2008.08.08 19:11:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SlySoft
[2011.11.07 08:38:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
[2009.11.03 18:37:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SSScanAppDataDir
[2009.11.02 18:42:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SSScanWizard
[2010.12.25 20:37:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Synetic
[2009.05.28 15:21:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2009.11.17 20:39:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\VOWSoft
[2011.09.08 15:02:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Data aplikací\Canon
[2011.06.27 12:46:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Data aplikací\Opera
[2011.07.05 13:26:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Data aplikací\SodaBush
[2011.09.06 17:53:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Data aplikací\uTorrent
[2010.11.14 20:01:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\.simpleplainnote
[2009.11.17 20:20:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\avidemux
[2011.11.14 19:12:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Avnex
[2011.09.22 10:06:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Babylon
[2011.09.22 10:09:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\BabylonToolbar
[2010.03.30 15:55:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\BITS
[2010.04.25 14:56:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\BitTorrent
[2011.10.31 19:45:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Canon
[2008.05.29 19:48:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\COWON
[2011.11.14 19:14:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\DMCache
[2010.10.28 17:28:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\GrabPro
[2011.08.26 22:57:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\HLSW
[2008.07.05 19:33:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\ICQLite
[2008.09.12 10:58:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\IDM
[2009.08.18 21:34:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Leadertech
[2008.10.22 15:45:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\MetaProducts
[2008.06.27 18:14:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\MobileAction
[2010.01.01 02:18:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Nokia
[2008.05.27 20:08:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Notepad++
[2009.03.31 19:02:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Opera
[2011.10.09 18:33:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Orbit
[2010.12.02 19:44:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\PCStitch Pro
[2009.01.04 15:42:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Pegasys Inc
[2010.09.22 19:46:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Sachy
[2009.11.02 18:42:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\ScanSoft
[2011.01.17 18:13:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\SodaBush
[2008.10.13 09:56:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Student dog
[2009.09.25 19:24:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\TeamViewer
[2009.12.07 22:41:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Teleca
[2011.09.13 22:49:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\uTorrent
[2011.08.26 09:28:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\VDownloader
[2010.09.27 18:06:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\VitySoft
[2008.09.18 14:42:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Vso
[2010.11.14 19:57:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\XemiComputers

_____________________________________________________________________________

[Massa]

========== Purity Check ==========



========== Custom Scans ==========


< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 04:22:17 | 000,015,360 | ---- | M] (Microsoft Corporation)
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}" = "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" -- [2007.06.27 18:03:40 | 000,152,872 | ---- | M] (Nero AG)
"LightScribe Control Panel" = C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden -- [2007.08.23 16:36:30 | 000,455,968 | ---- | M] (Hewlett-Packard Company)
"MSMSGS" = "C:\Program Files\Messenger\msmsgs.exe" /background -- [2008.04.14 04:22:36 | 001,695,232 | ---- | M] (Microsoft Corporation)
"Net Activity Diagram" = C:\Programy\Net Activity Diagram\nad.exe -- [2008.10.22 15:46:23 | 001,036,804 | ---- | M] (MetaProducts corp)
"Seznam Postak" = "C:\Program Files\Seznam.cz\postak.exe" -s -- [2010.10.07 14:55:06 | 000,488,728 | ---- | M] ()

< >


< MD5 for: ACPI.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:acpi.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:acpi.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:acpi.sys
[2008.04.14 03:05:40 | 000,188,288 | ---- | M] (Microsoft Corporation) MD5=4FE34F1F3126B61FCC6B2043AA8112C9 -- C:\WINDOWS\ServicePackFiles\i386\acpi.sys
[2008.04.14 03:05:40 | 000,188,288 | ---- | M] (Microsoft Corporation) MD5=4FE34F1F3126B61FCC6B2043AA8112C9 -- C:\WINDOWS\system32\drivers\acpi.sys
[2006.03.02 13:00:00 | 000,188,288 | ---- | M] (Microsoft Corporation) MD5=FA2FBCDA96D2385F773B059FE5A125A6 -- C:\WINDOWS\$NtServicePackUninstall$\acpi.sys

< MD5 for: AGP440.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

< MD5 for: ATAPI.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2006.03.02 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\i386\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2006.03.02 13:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006.03.02 13:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: CMD.EXE >
[2006.03.02 13:00:00 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=4E5BE66CD70D52637589E9C3E2C1696D -- C:\WINDOWS\$NtServicePackUninstall$\cmd.exe
[2008.04.14 04:22:15 | 000,390,144 | ---- | M] (Microsoft Corporation) MD5=58A4129B7AB2CF2E7F00256F7EDAEAC2 -- C:\WINDOWS\ServicePackFiles\i386\cmd.exe
[2008.04.14 04:22:15 | 000,390,144 | ---- | M] (Microsoft Corporation) MD5=58A4129B7AB2CF2E7F00256F7EDAEAC2 -- C:\WINDOWS\system32\cmd.exe

< MD5 for: CRYPTSVC.DLL >
[2006.03.02 13:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 04:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 04:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll

< MD5 for: CSRSS.EXE >
[2006.03.02 13:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=490E6E57E54FAF5F23F658EA188405A1 -- C:\WINDOWS\$NtServicePackUninstall$\csrss.exe
[2008.04.14 04:22:17 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=628CE66E3FD35BFC7969DBAC245DC069 -- C:\WINDOWS\ServicePackFiles\i386\csrss.exe
[2008.04.14 04:22:17 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=628CE66E3FD35BFC7969DBAC245DC069 -- C:\WINDOWS\system32\csrss.exe

< MD5 for: EVENTLOG.DLL >
[2008.04.14 04:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 04:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2006.03.02 13:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2006.03.02 13:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
[2007.06.13 14:11:59 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=9B32416BD5988C97B6397CE0B02CAF97 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007.06.13 14:23:39 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=ED7B460B142A32097B8A8F6ECC941815 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: FASTFAT.SYS >
[2006.03.02 13:00:00 | 000,143,360 | ---- | M] (Microsoft Corporation) MD5=3117F595E9615E04F05A54FC15A03B20 -- C:\WINDOWS\$NtServicePackUninstall$\fastfat.sys
[2008.04.13 20:14:29 | 000,143,744 | ---- | M] (Microsoft Corporation) MD5=38D332A6D56AF32635675F132548343E -- C:\WINDOWS\ServicePackFiles\i386\fastfat.sys
[2008.04.13 20:14:29 | 000,143,744 | ---- | M] (Microsoft Corporation) MD5=38D332A6D56AF32635675F132548343E -- C:\WINDOWS\system32\drivers\fastfat.sys

< MD5 for: HAL.DLL >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 19:31:28 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 19:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2006.03.02 13:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: CHANGER.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 19:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys

< MD5 for: I8042PRT.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:i8042prt.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:i8042prt.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:i8042prt.sys
[2006.03.02 13:00:00 | 000,052,352 | ---- | M] (Microsoft Corporation) MD5=0F42DE9909B5DBF2C48DD1A79D491AF5 -- C:\WINDOWS\$NtServicePackUninstall$\i8042prt.sys
[2008.04.14 03:21:15 | 000,052,096 | ---- | M] (Microsoft Corporation) MD5=C528E27945367191E7BAE364930B6932 -- C:\WINDOWS\ServicePackFiles\i386\i8042prt.sys
[2008.04.14 03:21:15 | 000,052,096 | ---- | M] (Microsoft Corporation) MD5=C528E27945367191E7BAE364930B6932 -- C:\WINDOWS\system32\drivers\i8042prt.sys

< MD5 for: ISAPNP.SYS >
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2001.10.24 10:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2006.03.02 13:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\ReinstallBackups\0003\DriverFiles\i386\isapnp.sys
[2008.04.14 03:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 04:27:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\dllcache\isapnp.sys
[2008.04.14 04:27:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys

< MD5 for: KBDCLASS.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:kbdclass.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:kbdclass.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:kbdclass.sys
[2008.04.14 03:29:06 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=1B6162FE7F66B1A71A4B70F941C4AA9B -- C:\WINDOWS\ServicePackFiles\i386\kbdclass.sys
[2008.04.14 03:29:06 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=1B6162FE7F66B1A71A4B70F941C4AA9B -- C:\WINDOWS\system32\drivers\kbdclass.sys
[2006.03.02 13:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=6F877BF8DC01A550CD666F3BEDB2213C -- C:\WINDOWS\$NtServicePackUninstall$\kbdclass.sys

< MD5 for: LSASS.EXE >
[2006.03.02 13:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 04:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 04:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2006.03.02 13:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

< MD5 for: NETLOGON.DLL >
[2006.03.02 13:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 04:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 04:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: NTFS.SYS >
[2007.02.09 12:23:36 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=05AB81909514BFD69CBB1F2C147CF6B9 -- C:\WINDOWS\$hf_mig$\KB930916\SP2QFE\ntfs.sys
[2007.02.09 12:10:35 | 000,574,464 | ---- | M] (Microsoft Corporation) MD5=19A811EF5F1ED5C926A028CE107FF1AF -- C:\WINDOWS\$NtServicePackUninstall$\ntfs.sys
[2008.04.13 20:15:53 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\ServicePackFiles\i386\ntfs.sys
[2008.04.13 20:15:53 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\system32\drivers\ntfs.sys
[2006.03.02 13:00:00 | 000,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\WINDOWS\$NtUninstallKB930916$\ntfs.sys

< MD5 for: REGEDIT.EXE >
[2006.03.02 13:00:00 | 000,147,968 | ---- | M] (Microsoft Corporation) MD5=CB5A91928D94224E7E30EE277B45E8A3 -- C:\WINDOWS\$NtServicePackUninstall$\regedit.exe
[2008.04.14 04:22:42 | 000,147,968 | ---- | M] (Microsoft Corporation) MD5=FDEB1D02CAE38665CBF114F44E6B997E -- C:\WINDOWS\regedit.exe
[2008.04.14 04:22:42 | 000,147,968 | ---- | M] (Microsoft Corporation) MD5=FDEB1D02CAE38665CBF114F44E6B997E -- C:\WINDOWS\ServicePackFiles\i386\regedit.exe

< MD5 for: SCECLI.DLL >
[2006.03.02 13:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SERVICES.EXE >
[2009.02.09 12:18:56 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=3D107D45CCFDB266E91D84B52CD7F430 -- C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\services.exe
[2006.03.02 13:00:00 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=6E401E61F952FBBF708AFBECEFAFAE81 -- C:\WINDOWS\$NtServicePackUninstall$\services.exe
[2009.02.09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\system32\dllcache\services.exe
[2009.02.09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\system32\services.exe
[2008.04.14 04:22:45 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=F0D2AE69035092BF22DAD6B50FAB85C2 -- C:\WINDOWS\$NtUninstallKB956572$\services.exe
[2008.04.14 04:22:45 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=F0D2AE69035092BF22DAD6B50FAB85C2 -- C:\WINDOWS\ServicePackFiles\i386\services.exe

< MD5 for: SMSS.EXE >
[2006.03.02 13:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008.04.14 04:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 04:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe

< MD5 for: SPOOLSV.EXE >
[2006.03.02 13:00:00 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=21B6FAA88044A41640E03EBB68BE93E8 -- C:\WINDOWS\$NtUninstallKB896423$\spoolsv.exe
[2010.08.17 14:19:36 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=258DD5D4283FD9F9A7166BE9AE45CE73 -- C:\WINDOWS\$hf_mig$\KB2347290\SP3QFE\spoolsv.exe
[2010.08.17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=60784F891563FB1B767F70117FC2428F -- C:\WINDOWS\system32\dllcache\spoolsv.exe
[2010.08.17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=60784F891563FB1B767F70117FC2428F -- C:\WINDOWS\system32\spoolsv.exe
[2005.06.11 01:17:13 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=AD3D9D191AEA7B5445FE1D82FFBB4788 -- C:\WINDOWS\$hf_mig$\KB896423\SP2QFE\spoolsv.exe
[2008.04.14 04:22:48 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=CB1090BCA0E7B40D0B5B4E4D66531809 -- C:\WINDOWS\$NtUninstallKB2347290$\spoolsv.exe
[2008.04.14 04:22:48 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=CB1090BCA0E7B40D0B5B4E4D66531809 -- C:\WINDOWS\ServicePackFiles\i386\spoolsv.exe
[2005.06.11 00:53:32 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=DA81EC57ACD4CDC3D4C51CF3D409AF9F -- C:\WINDOWS\$NtServicePackUninstall$\spoolsv.exe

< MD5 for: SVCHOST.EXE >
[2008.04.14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2006.03.02 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.06.20 11:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2007.10.30 17:53:32 | 000,360,832 | ---- | M] (Microsoft Corporation) MD5=64798ECFA43D78C7178375FCDD16D8C8 -- C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys
[2008.06.20 11:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2007.10.30 18:20:55 | 000,360,064 | ---- | M] (Microsoft Corporation) MD5=90CAFF4B094573449A0872A0F919B178 -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008.04.13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2006.03.02 13:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB941644$\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys

< MD5 for: USER32.DLL >
[2006.03.02 13:00:00 | 000,577,024 | ---- | M] (Microsoft Corporation) MD5=1B4CCC59980DA34E75F20E42B283B027 -- C:\WINDOWS\$NtUninstallKB890859$\user32.dll
[2005.03.02 19:21:07 | 000,577,024 | ---- | M] (Microsoft Corporation) MD5=3EF380290CE2CA8598E475CEAC4ADB13 -- C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\user32.dll
[2007.03.08 16:38:40 | 000,577,536 | ---- | M] (Microsoft Corporation) MD5=43240B12D220F30C7C75EA69B2E806B0 -- C:\WINDOWS\$NtServicePackUninstall$\user32.dll
[2007.03.08 16:51:38 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=5393076FDCD6DAEB82814688DDE3E9A2 -- C:\WINDOWS\$hf_mig$\KB925902\SP2QFE\user32.dll
[2005.03.02 19:18:13 | 000,577,024 | ---- | M] (Microsoft Corporation) MD5=9267BC598E271BC3FA69F36CF1C8BD36 -- C:\WINDOWS\$NtUninstallKB925902$\user32.dll
[2008.04.14 04:22:04 | 000,578,560 | ---- | M] (Microsoft Corporation) MD5=E16E0990967374E76F3E40CACAFD3D53 -- C:\WINDOWS\ServicePackFiles\i386\user32.dll
[2008.04.14 04:22:04 | 000,578,560 | ---- | M] (Microsoft Corporation) MD5=E16E0990967374E76F3E40CACAFD3D53 -- C:\WINDOWS\system32\user32.dll

< MD5 for: USERINIT.EXE >
[2008.04.14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2006.03.02 13:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WIN32K.SYS >
[2009.04.19 20:52:07 | 001,847,168 | ---- | M] (Microsoft Corporation) MD5=0E523CA1CDAC4AA36CD797B5564AB661 -- C:\WINDOWS\$NtUninstallKB969947$\win32k.sys
[2005.03.02 19:14:22 | 001,836,288 | ---- | M] (Microsoft Corporation) MD5=0FBAA9C77453958727A917018574817E -- C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\win32k.sys
[2009.02.09 15:07:41 | 001,846,784 | ---- | M] (Microsoft Corporation) MD5=14E172AE4B8086CE6208FE62514A6727 -- C:\WINDOWS\$NtUninstallKB968537$\win32k.sys
[2008.04.14 03:15:34 | 001,845,632 | ---- | M] (Microsoft Corporation) MD5=16AA352EC7D8E6D9DE50265BF0F9E016 -- C:\WINDOWS\$NtUninstallKB954211$\win32k.sys
[2008.04.14 03:15:34 | 001,845,632 | ---- | M] (Microsoft Corporation) MD5=16AA352EC7D8E6D9DE50265BF0F9E016 -- C:\WINDOWS\ServicePackFiles\i386\win32k.sys
[2010.06.24 22:30:08 | 001,861,120 | ---- | M] (Microsoft Corporation) MD5=1D6A389B0152D2164343731F4151079F -- C:\WINDOWS\$hf_mig$\KB2160329\SP3QFE\win32k.sys
[2010.09.01 08:57:41 | 001,852,800 | ---- | M] (Microsoft Corporation) MD5=21171C673C110D875FE031908409FE23 -- C:\WINDOWS\$NtUninstallKB2436673$\win32k.sys
[2010.06.24 10:02:48 | 001,851,904 | ---- | M] (Microsoft Corporation) MD5=21A48AA96D99AEF0193526F5E762E21B -- C:\WINDOWS\$NtUninstallKB981957$\win32k.sys
[2008.09.15 16:21:44 | 001,847,040 | ---- | M] (Microsoft Corporation) MD5=43021D856B8CCB345777FA3B7149708F -- C:\WINDOWS\$hf_mig$\KB954211\SP3QFE\win32k.sys
[2011.06.06 12:36:17 | 001,867,904 | ---- | M] (Microsoft Corporation) MD5=44E7131AA0EB70AACADBA6034B443D0B -- C:\WINDOWS\$hf_mig$\KB2555917\SP3QFE\win32k.sys
[2010.10.26 15:04:46 | 001,862,272 | ---- | M] (Microsoft Corporation) MD5=470811C7406C06BAD6CCEA5445D879C9 -- C:\WINDOWS\$hf_mig$\KB2436673\SP3QFE\win32k.sys
[2010.10.26 14:58:35 | 001,853,312 | ---- | M] (Microsoft Corporation) MD5=4FF440A38D242AA40D40F990C566DF32 -- C:\WINDOWS\$NtUninstallKB2479628$\win32k.sys
[2011.06.06 12:35:21 | 001,858,944 | ---- | M] (Microsoft Corporation) MD5=5477E9351066CA7F70A92461A35F5310 -- C:\WINDOWS\$NtUninstallKB2567053$\win32k.sys
[2010.09.01 08:57:07 | 001,861,888 | ---- | M] (Microsoft Corporation) MD5=5577EC6934D639CB20EA0C90A8AF4923 -- C:\WINDOWS\$hf_mig$\KB981957\SP3QFE\win32k.sys
[2011.03.03 14:52:12 | 001,866,880 | ---- | M] (Microsoft Corporation) MD5=570FB1C8ABCF6375169E94C23537019C -- C:\WINDOWS\$hf_mig$\KB2506223\SP3QFE\win32k.sys
[2009.08.14 16:15:39 | 001,850,624 | ---- | M] (Microsoft Corporation) MD5=670C868CDBDF46269EB7CC39B05A7513 -- C:\WINDOWS\$NtUninstallKB979559$\win32k.sys
[2007.03.08 16:36:45 | 001,843,584 | ---- | M] (Microsoft Corporation) MD5=6BF9F668422633B3BEE393DF9C29FC77 -- C:\WINDOWS\$NtUninstallKB941693$\win32k.sys
[2005.03.02 19:08:50 | 001,836,288 | ---- | M] (Microsoft Corporation) MD5=7987FD715BAEF38965FE0E822957BD85 -- C:\WINDOWS\$NtUninstallKB925902$\win32k.sys
[2010.05.02 09:03:50 | 001,860,352 | ---- | M] (Microsoft Corporation) MD5=8402F80D7FCA8CD3A4BCF027773CAD34 -- C:\WINDOWS\$hf_mig$\KB979559\SP3QFE\win32k.sys
[2009.08.14 17:00:31 | 001,859,712 | ---- | M] (Microsoft Corporation) MD5=862CAA1CB5EF221C09918FF185DF14D7 -- C:\WINDOWS\$hf_mig$\KB969947\SP3QFE\win32k.sys
[2010.05.02 09:09:42 | 001,851,264 | ---- | M] (Microsoft Corporation) MD5=8DFA2A74176D58E671C7FD9F8966DE99 -- C:\WINDOWS\$NtUninstallKB2160329$\win32k.sys
[2011.03.03 14:53:33 | 001,857,920 | ---- | M] (Microsoft Corporation) MD5=958A81E06C4E3510AEA1F6BCD258EF4C -- C:\WINDOWS\$NtUninstallKB2555917$\win32k.sys
[2010.12.31 15:04:07 | 001,854,976 | ---- | M] (Microsoft Corporation) MD5=AE4BFDE8B2841CE7F6AFAB0F43435445 -- C:\WINDOWS\$NtUninstallKB2506223$\win32k.sys
[2011.09.06 15:08:32 | 001,867,904 | ---- | M] (Microsoft Corporation) MD5=B14465CDD6AFA31154396B54254F2BA8 -- C:\WINDOWS\$hf_mig$\KB2567053\SP3QFE\win32k.sys
[2009.04.19 20:44:06 | 001,847,808 | ---- | M] (Microsoft Corporation) MD5=BBD63526356719F71BFBDF691ED40DF4 -- C:\WINDOWS\$hf_mig$\KB968537\SP3QFE\win32k.sys
[2008.03.20 09:09:45 | 001,845,248 | ---- | M] (Microsoft Corporation) MD5=BD2144D30014F3DF89F7D8310B2DF70F -- C:\WINDOWS\$NtServicePackUninstall$\win32k.sys
[2007.03.08 16:49:37 | 001,843,968 | ---- | M] (Microsoft Corporation) MD5=C56939044949DB6E2E5DEDCD354572CA -- C:\WINDOWS\$hf_mig$\KB925902\SP2QFE\win32k.sys
[2009.02.09 15:01:29 | 001,847,552 | ---- | M] (Microsoft Corporation) MD5=C5EDFB7BBFE87A53F83EEC7E0E592E29 -- C:\WINDOWS\$hf_mig$\KB958690\SP3QFE\win32k.sys
[2008.03.20 09:01:01 | 001,845,888 | ---- | M] (Microsoft Corporation) MD5=CDBFAE0A8CD2515B39AE50C1365FBE63 -- C:\WINDOWS\$hf_mig$\KB941693\SP2QFE\win32k.sys
[2010.12.31 15:02:56 | 001,864,064 | ---- | M] (Microsoft Corporation) MD5=D8525ABDAFFB6F08CDEF1D87B509B17B -- C:\WINDOWS\$hf_mig$\KB2479628\SP3QFE\win32k.sys
[2011.09.06 15:10:02 | 001,858,944 | ---- | M] (Microsoft Corporation) MD5=EC7DE8AE321E0B01C23770A2AD4AA66F -- C:\WINDOWS\system32\dllcache\win32k.sys
[2011.09.06 15:10:02 | 001,858,944 | ---- | M] (Microsoft Corporation) MD5=EC7DE8AE321E0B01C23770A2AD4AA66F -- C:\WINDOWS\system32\win32k.sys
[2008.09.15 16:27:55 | 001,846,400 | ---- | M] (Microsoft Corporation) MD5=F04D91DEAD8EA9AD33223B7FECBC5B82 -- C:\WINDOWS\$NtUninstallKB958690$\win32k.sys
[2006.03.02 13:00:00 | 001,835,904 | ---- | M] (Microsoft Corporation) MD5=F935B816A5B3D08E519D9EEBD65A6672 -- C:\WINDOWS\$NtUninstallKB890859$\win32k.sys

< MD5 for: WINLOGON.EXE >
[2006.03.02 13:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< MD5 for: WINSRV.DLL >
[2011.04.26 12:02:48 | 000,293,376 | ---- | M] (Microsoft Corporation) MD5=169D34A85EC9E415C4C3A03AA62A34B6 -- C:\WINDOWS\$hf_mig$\KB2507938\SP3QFE\winsrv.dll
[2005.03.02 19:21:07 | 000,291,328 | ---- | M] (Microsoft Corporation) MD5=341B8F59EA856170CB0AE89D82A4885D -- C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\winsrv.dll
[2011.04.26 12:07:50 | 000,293,376 | ---- | M] (Microsoft Corporation) MD5=43B8BD54F87BFFFE5C560B2965E13C26 -- C:\WINDOWS\$NtUninstallKB2567680$\winsrv.dll
[2011.06.20 18:44:52 | 000,293,376 | ---- | M] (Microsoft Corporation) MD5=4F1340B27E7590D3E42541769ABD5872 -- C:\WINDOWS\system32\dllcache\winsrv.dll
[2011.06.20 18:44:52 | 000,293,376 | ---- | M] (Microsoft Corporation) MD5=4F1340B27E7590D3E42541769ABD5872 -- C:\WINDOWS\system32\winsrv.dll
[2007.03.17 14:45:10 | 000,292,864 | ---- | M] (Microsoft Corporation) MD5=5869828D4A83BA8F9519630C40044C87 -- C:\WINDOWS\$NtServicePackUninstall$\winsrv.dll
[2010.06.18 18:46:19 | 000,293,376 | ---- | M] (Microsoft Corporation) MD5=681CB546E0EF9C44FDE21EE0D4307DF0 -- C:\WINDOWS\$hf_mig$\KB2121546\SP3QFE\winsrv.dll
[2007.03.17 14:47:16 | 000,292,864 | ---- | M] (Microsoft Corporation) MD5=6D731741FEF45B51FCFBC5396076F561 -- C:\WINDOWS\$hf_mig$\KB930178\SP2QFE\winsrv.dll
[2008.04.14 04:22:05 | 000,293,376 | ---- | M] (Microsoft Corporation) MD5=77A41C497ADB0C96D1E8DF6F71D843C0 -- C:\WINDOWS\$NtUninstallKB2121546$\winsrv.dll
[2008.04.14 04:22:05 | 000,293,376 | ---- | M] (Microsoft Corporation) MD5=77A41C497ADB0C96D1E8DF6F71D843C0 -- C:\WINDOWS\ServicePackFiles\i386\winsrv.dll
[2005.09.01 03:28:20 | 000,291,840 | ---- | M] (Microsoft Corporation) MD5=CB00C266E0D5AEF74BFE9B5671BBF0F0 -- C:\WINDOWS\$NtUninstallKB930178$\winsrv.dll
[2005.09.01 03:54:26 | 000,291,840 | ---- | M] (Microsoft Corporation) MD5=D37449612540F888D04DAD8E6EEC6E97 -- C:\WINDOWS\$hf_mig$\KB900725\SP2QFE\winsrv.dll
[2010.06.18 18:47:41 | 000,293,376 | ---- | M] (Microsoft Corporation) MD5=D7F6130150643691D61E957A2CD48D1B -- C:\WINDOWS\$NtUninstallKB2507938$\winsrv.dll
[2006.03.02 13:00:00 | 000,290,816 | ---- | M] (Microsoft Corporation) MD5=E4E57FBA176F2752527B1D53A663D2D7 -- C:\WINDOWS\$NtUninstallKB890859$\winsrv.dll
[2005.03.02 19:18:13 | 000,291,328 | ---- | M] (Microsoft Corporation) MD5=EABB73E35AE4285A7F61C7B09BEDF36A -- C:\WINDOWS\$NtUninstallKB900725$\winsrv.dll
[2011.06.20 18:43:23 | 000,293,376 | ---- | M] (Microsoft Corporation) MD5=EF9951D90C530C39DEAB56C16160D837 -- C:\WINDOWS\$hf_mig$\KB2567680\SP3QFE\winsrv.dll

< MD5 for: WS2_32.DLL >
[2006.03.02 13:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 04:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 04:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll

< >

< C:\windows\system32\spool\prtprocs|dll;true;true;true /FP >
[2005.05.06 21:00:00 | 000,020,992 | ---- | M] (CANON INC.) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPD7K.DLL
[2005.05.06 21:00:00 | 000,059,392 | ---- | M] (CANON INC.) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPP7K.DLL
[2008.07.06 13:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
[2003.06.19 00:31:48 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll
[2008.07.06 13:06:10 | 000,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\x64\filterpipelineprintproc.dll

< %systemroot%\system32\Spool\prtprocs\*.* /s >
[2005.05.06 21:00:00 | 000,020,992 | ---- | M] (CANON INC.) -- C:\WINDOWS\system32\Spool\prtprocs\w32x86\CNMPD7K.DLL
[2005.05.06 21:00:00 | 000,059,392 | ---- | M] (CANON INC.) -- C:\WINDOWS\system32\Spool\prtprocs\w32x86\CNMPP7K.DLL
[2008.07.06 13:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
[2003.06.19 00:31:48 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Spool\prtprocs\w32x86\mdippr.dll
[2008.07.06 11:50:03 | 000,597,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
[2008.07.06 13:06:10 | 000,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Spool\prtprocs\x64\filterpipelineprintproc.dll

< %systemroot%\system32\drivers\*.sys /10 >

< %systemroot%\system32\drivers\*.sys /X >
[2008.04.14 04:21:36 | 000,004,255 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv01nt5.dll
[2008.04.14 04:21:36 | 000,003,967 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv02nt5.dll
[2008.04.14 04:21:36 | 000,003,615 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv05nt5.dll
[2008.04.14 04:21:36 | 000,003,647 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv07nt5.dll
[2008.04.14 04:21:36 | 000,003,135 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv08nt5.dll
[2008.04.14 04:21:36 | 000,003,711 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv09nt5.dll
[2008.04.14 04:21:36 | 000,003,775 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv11nt5.dll
[2004.07.17 10:36:24 | 000,064,352 | ---- | M] () -- C:\WINDOWS\system32\drivers\ativmc20.cod
[2008.04.14 04:21:37 | 000,021,183 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv01nt5.dll
[2008.04.14 04:21:37 | 000,011,359 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv02nt5.dll
[2008.04.14 04:21:37 | 000,025,471 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv04nt5.dll
[2008.04.14 04:21:37 | 000,014,143 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv06nt5.dll
[2008.04.14 04:21:37 | 000,017,279 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv10nt5.dll
[2008.04.14 04:21:38 | 000,015,423 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
[2004.07.17 21:55:24 | 000,129,045 | ---- | M] () -- C:\WINDOWS\system32\drivers\cxthsfs2.cty
[2006.03.02 13:00:00 | 003,440,660 | ---- | M] () -- C:\WINDOWS\system32\drivers\gm.dls
[2006.03.02 13:00:00 | 000,000,646 | ---- | M] () -- C:\WINDOWS\system32\drivers\gmreadme.txt
[2004.07.17 10:35:00 | 000,067,866 | ---- | M] () -- C:\WINDOWS\system32\drivers\netwlan5.img
[2008.04.14 04:21:55 | 000,003,901 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\siint5.dll
[2008.04.14 04:22:04 | 000,011,325 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\vchnt5.dll

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010.08.03 14:31:17 | 000,717,296 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys

< %systemroot%\system32\*.* /10 >
[2011.11.15 13:29:27 | 000,000,552 | ---- | M] () -- C:\WINDOWS\system32\d3d8caps.dat
[2011.11.15 19:45:26 | 000,000,302 | ---- | M] () -- C:\WINDOWS\system32\Fireplace.log
[2011.11.09 22:26:28 | 050,295,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MRT.exe
[2011.11.14 19:53:09 | 000,134,550 | ---- | M] () -- C:\WINDOWS\system32\perfc005.dat
[2011.11.14 19:53:09 | 000,113,416 | ---- | M] () -- C:\WINDOWS\system32\perfc009.dat
[2011.11.14 19:53:09 | 000,557,830 | ---- | M] () -- C:\WINDOWS\system32\perfh005.dat
[2011.11.14 19:53:09 | 000,565,998 | ---- | M] () -- C:\WINDOWS\system32\perfh009.dat
[2011.11.14 19:53:07 | 001,393,496 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI
[2011.11.15 19:45:21 | 000,001,779 | ---- | M] () -- C:\WINDOWS\system32\ScreensaverManager.log
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\*.dll /lockedfiles >
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\config\*.sav >
[2008.04.04 16:25:29 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2008.04.04 16:25:28 | 000,638,976 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2008.04.04 16:25:28 | 000,471,040 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< %systemroot%\Tasks\*.job >
[2011.11.14 19:36:00 | 000,000,940 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2011.11.14 19:36:00 | 000,000,944 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

< %systemroot%\*.* /U /s >
[142 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[24 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[344 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[1 C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\*.tmp files -> C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\*.tmp -> ]
[7 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]

< %systemroot%\*. /rp /s >

< %ALLUSERSPROFILE%\Data Aplikací\*.* >
[2008.04.04 16:27:03 | 000,000,062 | -HS- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\desktop.ini
[2008.04.09 13:37:55 | 000,000,032 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\ezsid.dat

< %ALLUSERSPROFILE%\Data Aplikací\*.exe /s >
[2011.07.25 19:43:45 | 000,002,560 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Iceni\Infix\5\Install_keyfiles.exe
[2010.01.01 01:50:08 | 034,698,816 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Nokia_PC_Suite_7_1_40_1_cze_web.exe
[2010.01.01 02:16:30 | 000,095,232 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\pcswpcsi.exe
[2010.01.01 02:16:29 | 000,008,192 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstCCD.exe
[2010.01.01 02:16:30 | 000,010,240 | ---- | M] (Nokia) -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstPCS.exe
[2010.01.01 02:16:30 | 000,061,440 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
[2010.01.21 14:21:34 | 000,214,320 | ---- | M] (Nero AG) -- C:\Documents and Settings\All Users\Data Aplikací\Nero\OnlineServices\NOS_CAExe.exe
[2008.04.08 17:46:26 | 000,005,632 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Spyware Terminator\sp_rsdel.exe

< %ALLUSERSPROFILE%\Nabídka Start\*.lnk /x >
[2008.10.12 10:20:24 | 000,000,293 | -HS- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\desktop.ini

< %ALLUSERSPROFILE%\Data Aplikácií\*.* >

< %ALLUSERSPROFILE%\Data Aplikácií\*.exe /s >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >

< %APPDATA%\*. >
[2010.11.14 20:01:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\.simpleplainnote
[2009.03.31 19:07:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Adobe
[2008.11.09 20:39:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Ahead
[2008.11.07 12:38:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\ArcSoft
[2011.10.14 11:29:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Aspell
[2009.11.17 20:20:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\avidemux
[2011.11.14 19:12:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Avnex
[2011.09.22 10:06:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Babylon
[2011.09.22 10:09:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\BabylonToolbar
[2010.03.30 15:55:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\BITS
[2010.04.25 14:56:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\BitTorrent
[2011.10.31 19:45:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Canon
[2008.05.29 19:48:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\COWON
[2011.02.10 19:34:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\CyberLink
[2011.11.14 19:14:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\DMCache
[2009.07.08 01:36:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Google
[2010.10.28 17:28:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\GrabPro
[2010.09.27 17:28:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Hamachi
[2008.10.22 15:38:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Help
[2011.08.26 22:57:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\HLSW
[2008.07.05 19:33:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\ICQLite
[2008.04.04 14:49:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Identities
[2008.09.12 10:58:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\IDM
[2010.09.10 17:07:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\InstallShield
[2009.08.18 21:34:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Leadertech
[2009.03.04 17:14:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Macromedia
[2010.01.25 19:18:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Malwarebytes
[2008.10.22 15:45:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\MetaProducts
[2011.05.29 10:23:52 | 000,000,000 | --SD | M] -- C:\Documents and Settings\uživatel\Data aplikací\Microsoft
[2008.06.27 18:14:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\MobileAction
[2011.01.19 18:12:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Nero
[2010.01.01 02:18:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Nokia
[2008.05.27 20:08:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Notepad++
[2010.08.29 13:39:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\NVIDIA
[2009.05.15 19:23:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\OpenOffice.org2
[2009.03.31 19:02:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Opera
[2011.10.09 18:33:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Orbit
[2010.12.02 19:44:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\PCStitch Pro
[2009.01.04 15:42:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Pegasys Inc
[2009.03.23 18:55:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Real
[2010.09.22 19:46:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Sachy
[2009.11.02 18:42:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\ScanSoft
[2011.10.22 22:05:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Skype
[2011.10.21 18:28:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\skypePM
[2011.01.17 18:13:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\SodaBush
[2008.10.13 09:56:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Student dog
[2009.01.01 23:34:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Sun
[2009.09.25 19:24:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\TeamViewer
[2009.12.07 22:41:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Teleca
[2011.09.13 22:49:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\uTorrent
[2011.08.26 09:28:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\VDownloader
[2010.09.27 18:06:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\VitySoft
[2008.09.18 14:42:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Vso
[2008.04.08 17:36:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Winamp
[2008.04.08 20:09:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\WinRAR
[2010.11.14 19:57:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\XemiComputers

< %APPDATA%\*.* >
[2011.09.22 17:37:47 | 000,000,464 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\AutoGK.ini
[2008.04.04 16:27:03 | 000,000,062 | -HS- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\desktop.ini
[2008.09.18 14:42:26 | 000,081,920 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\ezpinst.exe
[2008.09.18 14:42:26 | 000,007,176 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\pcouffin.cat
[2008.09.18 14:42:26 | 000,001,144 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\pcouffin.inf
[2008.09.18 14:42:28 | 000,000,034 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\pcouffin.log
[2008.09.18 14:42:26 | 000,047,360 | ---- | M] (VSO Software) -- C:\Documents and Settings\uživatel\Data aplikací\pcouffin.sys
[2009.08.01 03:26:39 | 000,022,328 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\PnkBstrK.sys
[2011.11.10 18:48:47 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\steam_md4.dat

< %APPDATA%\*.exe /s >
[2008.09.18 14:42:26 | 000,081,920 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\ezpinst.exe
[2011.10.14 11:24:36 | 000,049,535 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\Aspell\Dictionaries\Uninstall-AspellDict-cs.exe
[2008.04.15 18:53:56 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\Microsoft\Installer\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}\_55A1FAE66E55A8BC1BE320.exe
[2008.04.15 18:53:56 | 000,000,766 | R--- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\Microsoft\Installer\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}\_6FEFF9B68218417F98F549.exe
[2008.04.15 18:53:56 | 000,001,518 | R--- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\Microsoft\Installer\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}\_C27BEE651C3EE1EF20AB6A.exe
[2008.04.15 18:53:56 | 000,002,550 | R--- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\Microsoft\Installer\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}\_D0047288301C30DA811A0F.exe
[2008.04.15 18:53:56 | 000,001,078 | R--- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\Microsoft\Installer\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}\_EB66B5A478AF14DB51B289.exe
[2008.04.15 18:53:56 | 000,001,078 | R--- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\Microsoft\Installer\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}\_F42A717ADAEB1EE8514FB3.exe
[2005.05.14 09:03:50 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2009.05.29 06:27:05 | 000,390,664 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\uživatel\Data aplikací\Real\RealPlayer\Update\RealPlayer11.exe
[2010.06.24 12:27:31 | 000,439,816 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\uživatel\Data aplikací\Real\Update\setup3.10\setup.exe
[2010.09.18 21:38:02 | 000,452,104 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\uživatel\Data aplikací\Real\Update\setup3.12\setup.exe
[2010.12.12 20:19:04 | 000,506,024 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\uživatel\Data aplikací\Real\Update\setup3.13\setup.exe
[2011.01.27 20:18:58 | 000,510,120 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\uživatel\Data aplikací\Real\Update\setup3.14\setup.exe
[2011.10.30 17:32:05 | 000,315,512 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\uživatel\Data aplikací\Real\Update\UpgradeHelper\RealPlayer\9.00\rnupgagent.exe
[2011.10.20 07:38:33 | 025,881,552 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\uživatel\Data aplikací\Real\Update\UpgradeHelper\RealPlayer\9.00\stub_data\RealPlayer.exe
[2011.10.20 07:36:53 | 000,684,288 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\uživatel\Data aplikací\Real\Update\UpgradeHelper\RealPlayer\9.00\stub_exe\RealPlayer.exe

< %SYSTEMDRIVE%\*.exe >

< %systemroot%\system32|bak;true;false;false /fp >

< %PROGRAMFILES%|bak;true;false;false /fp >

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2009.03.08 13:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) MD5=B60DDDD2D63CE41CB8C487FCFBB6419E -- C:\Program Files\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >
[2011.10.20 14:14:20 | 000,947,056 | ---- | M] (Opera Software) MD5=99C904854E154E903C8EAC4329DD48C2 -- C:\Program Files\Opera\opera.exe

< %ALLUSERSPROFILE%\Data Aplikací\Google\Chrome\Application\chrome.exe /md5 >

< >

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-11-11 08:34:45

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\BITS /s >
"StateIndex" = 0

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c >
No captured output from command...

< >

< type c:\boot.ini >> test.txt /c >
No captured output from command...

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.11.15 19:40:19 | 000,000,512 | ---- | M] () MD5=E7A19195593709AA8600267FE34F0661 -- C:\PhysicalMBR.bin

< bcdedit /v >C:\boot.txt /c >
No captured output from command...

< type C:\boot.txt >> test1.txt /c >
No captured output from command...

< >

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems" /v Windows /c >
No captured output from command...

< >

========== Hard Links - Junction Points - Mount Points - Symbolic Links ==========
[C:\WINDOWS\$NtUninstallKB11338$] -> -> Unknown point type
[C:\WINDOWS\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a] -> C:\WINDOWS\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790 -> Junction
[C:\WINDOWS\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a] -> C:\WINDOWS\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e -> Junction
[C:\WINDOWS\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a] -> C:\WINDOWS\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492 -> Junction

========== Alternate Data Streams ==========

@Alternate Data Stream - 498 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:05EE1EEF
@Alternate Data Stream - 24 bytes -> C:\WINDOWS:E94F855591495B24
@Alternate Data Stream - 184 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:4BF2F6B5

< End of report >

[Massa]

19:54:29.0187 0804 TDSS rootkit removing tool 2.6.18.0 Nov 11 2011 15:47:15
19:54:29.0234 0804 ============================================================
19:54:29.0234 0804 Current date / time: 2011/11/15 19:54:29.0234
19:54:29.0234 0804 SystemInfo:
19:54:29.0234 0804
19:54:29.0234 0804 OS Version: 5.1.2600 ServicePack: 3.0
19:54:29.0234 0804 Product type: Workstation
19:54:29.0234 0804 ComputerName: WIMMER-A39D2305
19:54:29.0234 0804 UserName: uživatel
19:54:29.0234 0804 Windows directory: C:\WINDOWS
19:54:29.0234 0804 System windows directory: C:\WINDOWS
19:54:29.0234 0804 Processor architecture: Intel x86
19:54:29.0234 0804 Number of processors: 2
19:54:29.0234 0804 Page size: 0x1000
19:54:29.0234 0804 Boot type: Safe boot
19:54:29.0234 0804 ============================================================
19:54:32.0453 0804 Initialize success
19:55:08.0625 0952 ============================================================
19:55:08.0625 0952 Scan started
19:55:08.0625 0952 Mode: Manual; SigCheck; TDLFS;
19:55:08.0625 0952 ============================================================
19:55:10.0000 0952 Aavmker4 (479c9835b91147be1a92cb76fad9c6de) C:\WINDOWS\system32\drivers\Aavmker4.sys
19:55:10.0437 0952 Aavmker4 - ok
19:55:10.0734 0952 Abiosdsk - ok
19:55:10.0906 0952 abp480n5 - ok
19:55:11.0203 0952 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:55:14.0015 0952 ACPI - ok
19:55:14.0312 0952 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
19:55:14.0406 0952 ACPIEC - ok
19:55:14.0593 0952 adpu160m - ok
19:55:14.0843 0952 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
19:55:14.0921 0952 aec - ok
19:55:15.0171 0952 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
19:55:15.0203 0952 AFD - ok
19:55:15.0390 0952 Aha154x - ok
19:55:15.0562 0952 aic78u2 - ok
19:55:15.0750 0952 aic78xx - ok
19:55:15.0937 0952 AliIde - ok
19:55:16.0125 0952 amsint - ok
19:55:16.0343 0952 AnyDVD (56d390508dec076cdf57cd0e41238b8c) C:\WINDOWS\system32\Drivers\AnyDVD.sys
19:55:16.0359 0952 AnyDVD - ok
19:55:16.0578 0952 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
19:55:16.0656 0952 Arp1394 - ok
19:55:16.0828 0952 asc - ok
19:55:17.0015 0952 asc3350p - ok
19:55:17.0187 0952 asc3550 - ok
19:55:17.0453 0952 aswFsBlk (cba53c5e29ae0a0ce76f9a2be3a40d9e) C:\WINDOWS\system32\drivers\aswFsBlk.sys
19:55:17.0453 0952 aswFsBlk - ok
19:55:17.0671 0952 aswMon2 (a1c52b822b7b8a5c2162d38f579f97b7) C:\WINDOWS\system32\drivers\aswMon2.sys
19:55:17.0671 0952 aswMon2 - ok
19:55:17.0890 0952 aswRdr (b6e8c5874377a42756c282fac2e20836) C:\WINDOWS\system32\drivers\aswRdr.sys
19:55:17.0890 0952 aswRdr - ok
19:55:18.0140 0952 aswSP (b93a553c9b0f14263c8f016a44c3258c) C:\WINDOWS\system32\drivers\aswSP.sys
19:55:18.0140 0952 aswSP - ok
19:55:18.0359 0952 aswTdi (1408421505257846eb336feeef33352d) C:\WINDOWS\system32\drivers\aswTdi.sys
19:55:18.0359 0952 aswTdi - ok
19:55:18.0578 0952 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:55:18.0656 0952 AsyncMac - ok
19:55:18.0875 0952 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
19:55:18.0953 0952 atapi - ok
19:55:19.0125 0952 Atdisk - ok
19:55:19.0390 0952 atksgt (f9c24d25d9ff29f894995a64812b4d85) C:\WINDOWS\system32\DRIVERS\atksgt.sys
19:55:19.0406 0952 atksgt - ok
19:55:19.0625 0952 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:55:19.0703 0952 Atmarpc - ok
19:55:19.0921 0952 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
19:55:20.0000 0952 audstub - ok
19:55:20.0500 0952 AVerBDA3x (598aa46847c66fbcec039856a7f6a6fd) C:\WINDOWS\system32\DRIVERS\AVerBDA3x.sys
19:55:20.0812 0952 AVerBDA3x - ok
19:55:21.0031 0952 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
19:55:21.0109 0952 Beep - ok
19:55:21.0296 0952 BlueletAudio - ok
19:55:21.0500 0952 BlueletSCOAudio - ok
19:55:21.0734 0952 BootScreen (44376892fc864a5771fa4f96790c1bba) C:\WINDOWS\System32\drivers\vidstub.sys
19:55:21.0750 0952 BootScreen ( UnsignedFile.Multi.Generic ) - warning
19:55:21.0750 0952 BootScreen - detected UnsignedFile.Multi.Generic (1)
19:55:21.0921 0952 BT - ok
19:55:22.0093 0952 Btcsrusb - ok
19:55:22.0296 0952 BTHidEnum - ok
19:55:22.0468 0952 BTHidMgr - ok
19:55:22.0687 0952 Cardex (04e1c782cf14b7282ebc633b0fd3ed16) C:\WINDOWS\system32\drivers\TBPANEL.SYS
19:55:22.0703 0952 Cardex - ok
19:55:22.0906 0952 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
19:55:22.0984 0952 cbidf2k - ok
19:55:23.0187 0952 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:55:23.0265 0952 CCDECODE - ok
19:55:23.0437 0952 cd20xrnt - ok
19:55:23.0625 0952 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
19:55:23.0703 0952 Cdaudio - ok
19:55:23.0937 0952 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
19:55:24.0015 0952 Cdfs - ok
19:55:24.0218 0952 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:55:24.0296 0952 Cdrom - ok
19:55:24.0484 0952 Changer - ok
19:55:24.0687 0952 CmdIde - ok
19:55:24.0890 0952 Cpqarray - ok
19:55:25.0078 0952 dac2w2k - ok
19:55:25.0265 0952 dac960nt - ok
19:55:25.0515 0952 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
19:55:25.0593 0952 Disk - ok
19:55:25.0984 0952 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
19:55:26.0203 0952 dmboot - ok
19:55:26.0421 0952 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
19:55:26.0500 0952 dmio - ok
19:55:26.0687 0952 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
19:55:26.0765 0952 dmload - ok
19:55:26.0968 0952 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
19:55:27.0046 0952 DMusic - ok
19:55:27.0250 0952 dpti2o - ok
19:55:27.0437 0952 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
19:55:27.0500 0952 drmkaud - ok
19:55:27.0718 0952 ElbyCDIO (28cb0b64134ad62c2acf77db8501a619) C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
19:55:27.0734 0952 ElbyCDIO - ok
19:55:27.0937 0952 Ethpdrv (076b1a923259f7a10998fa234a01d629) C:\WINDOWS\system32\DRIVERS\ethpdrv.sys
19:55:27.0937 0952 Ethpdrv ( UnsignedFile.Multi.Generic ) - warning
19:55:27.0937 0952 Ethpdrv - detected UnsignedFile.Multi.Generic (1)
19:55:28.0203 0952 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
19:55:28.0281 0952 Fastfat - ok
19:55:28.0500 0952 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
19:55:28.0562 0952 Fdc - ok
19:55:28.0781 0952 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
19:55:28.0843 0952 Fips - ok
19:55:29.0046 0952 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
19:55:29.0125 0952 Flpydisk - ok
19:55:29.0375 0952 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
19:55:29.0437 0952 FltMgr - ok
19:55:29.0640 0952 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:55:29.0703 0952 Fs_Rec - ok
19:55:29.0937 0952 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:55:30.0000 0952 Ftdisk - ok
19:55:30.0218 0952 gameenum (065639773d8b03f33577f6cdaea21063) C:\WINDOWS\system32\DRIVERS\gameenum.sys
19:55:30.0296 0952 gameenum - ok
19:55:30.0500 0952 gHidPnp (6ae9d5e193ad2b2fe056a05fc4ded23f) C:\WINDOWS\system32\Drivers\gHidPnp.Sys
19:55:30.0531 0952 gHidPnp - ok
19:55:30.0718 0952 giveio (77ebf3e9386daa51551af429052d88d0) C:\WINDOWS\system32\giveio.sys
19:55:30.0734 0952 giveio ( UnsignedFile.Multi.Generic ) - warning
19:55:30.0734 0952 giveio - detected UnsignedFile.Multi.Generic (1)
19:55:30.0953 0952 gMouPS2 (9503a7ced3959cbf23bad230e05b1b73) C:\WINDOWS\system32\DRIVERS\gMouPS2.sys
19:55:30.0984 0952 gMouPS2 - ok
19:55:31.0187 0952 gMouUsb (fa468d868ffdb477e40907c1fbd57744) C:\WINDOWS\system32\DRIVERS\gMouUsb.sys
19:55:31.0203 0952 gMouUsb - ok
19:55:31.0453 0952 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:55:31.0515 0952 Gpc - ok
19:55:31.0843 0952 hamachi (833051c6c6c42117191935f734cfbd97) C:\WINDOWS\system32\DRIVERS\hamachi.sys
19:55:31.0859 0952 hamachi - ok
19:55:32.0125 0952 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:55:32.0203 0952 HDAudBus - ok
19:55:32.0437 0952 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:55:32.0500 0952 HidUsb - ok
19:55:32.0671 0952 hpn - ok
19:55:32.0953 0952 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
19:55:32.0984 0952 HTTP - ok
19:55:33.0171 0952 i2omgmt - ok
19:55:33.0343 0952 i2omp - ok
19:55:33.0593 0952 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:55:33.0656 0952 i8042prt - ok
19:55:33.0890 0952 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
19:55:33.0953 0952 Imapi - ok
19:55:34.0140 0952 ini910u - ok
19:55:35.0406 0952 IntcAzAudAddService (909d03b3b7fb7c830b74f74f4d0ea7ce) C:\WINDOWS\system32\drivers\RtkHDAud.sys
19:55:36.0500 0952 IntcAzAudAddService - ok
19:55:36.0671 0952 IntelIde - ok
19:55:36.0906 0952 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:55:36.0968 0952 intelppm - ok
19:55:37.0187 0952 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
19:55:37.0265 0952 Ip6Fw - ok
19:55:37.0437 0952 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:55:37.0515 0952 IpFilterDriver - ok
19:55:37.0687 0952 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:55:37.0765 0952 IpInIp - ok
19:55:37.0984 0952 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:55:38.0062 0952 IpNat - ok
19:55:38.0265 0952 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:55:38.0328 0952 IPSec - ok
19:55:38.0531 0952 ipw_bus (64b449fd93d0d5fbd52e4fb389386af4) C:\WINDOWS\system32\DRIVERS\ipw_bus.sys
19:55:38.0562 0952 ipw_bus - ok
19:55:38.0750 0952 ipw_mdfl (3ff9c1eeb937815bafb721645500060b) C:\WINDOWS\system32\DRIVERS\ipw_mdfl.sys
19:55:38.0765 0952 ipw_mdfl - ok
19:55:39.0000 0952 ipw_mdm (99185676893c72dfcc60b3054f08a98e) C:\WINDOWS\system32\DRIVERS\ipw_mdm.sys
19:55:39.0031 0952 ipw_mdm - ok
19:55:39.0234 0952 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
19:55:39.0312 0952 IRENUM - ok
19:55:39.0531 0952 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:55:39.0593 0952 isapnp - ok
19:55:39.0843 0952 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:55:39.0906 0952 Kbdclass - ok
19:55:40.0125 0952 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
19:55:40.0187 0952 kbdhid - ok
19:55:40.0437 0952 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
19:55:40.0515 0952 kmixer - ok
19:55:40.0750 0952 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
19:55:40.0781 0952 KSecDD - ok
19:55:40.0984 0952 lbrtfdc - ok
19:55:41.0093 0952 LF30FS (10e0d92e5b21c045e0a53befb71dc09d) C:\Programy\Everstrike Software\Lock Folder XP 3.5\LF30XP.sys
19:55:41.0125 0952 LF30FS ( UnsignedFile.Multi.Generic ) - warning
19:55:41.0125 0952 LF30FS - detected UnsignedFile.Multi.Generic (1)
19:55:41.0390 0952 lirsgt (8ccf9ed46d52af1375875f74a91ffacf) C:\WINDOWS\system32\DRIVERS\lirsgt.sys
19:55:41.0406 0952 lirsgt - ok
19:55:41.0656 0952 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
19:55:41.0718 0952 mnmdd - ok
19:55:41.0953 0952 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
19:55:42.0015 0952 Modem - ok
19:55:42.0203 0952 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:55:42.0265 0952 Mouclass - ok
19:55:42.0484 0952 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:55:42.0546 0952 mouhid - ok
19:55:42.0750 0952 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
19:55:42.0812 0952 MountMgr - ok
19:55:43.0015 0952 MPE (c0f8e0c2c3c0437cf37c6781896dc3ec) C:\WINDOWS\system32\DRIVERS\MPE.sys
19:55:43.0109 0952 MPE - ok
19:55:43.0281 0952 mraid35x - ok
19:55:43.0515 0952 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:55:43.0593 0952 MRxDAV - ok
19:55:43.0890 0952 MRxSmb (2c6599b987e7f63de062ffb5c4e8666e) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:55:43.0968 0952 MRxSmb ( UnsignedFile.Multi.Generic ) - warning
19:55:43.0968 0952 MRxSmb - detected UnsignedFile.Multi.Generic (1)
19:55:44.0203 0952 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
19:55:44.0265 0952 Msfs - ok
19:55:44.0484 0952 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:55:44.0562 0952 MSKSSRV - ok
19:55:44.0734 0952 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:55:44.0796 0952 MSPCLOCK - ok
19:55:45.0000 0952 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
19:55:45.0062 0952 MSPQM - ok
19:55:45.0281 0952 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:55:45.0359 0952 mssmbios - ok
19:55:45.0531 0952 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
19:55:45.0625 0952 MSTEE - ok
19:55:45.0859 0952 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
19:55:45.0875 0952 Mup - ok
19:55:46.0093 0952 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:55:46.0171 0952 NABTSFEC - ok
19:55:46.0390 0952 Nadim (42adefabb7fec34b4ade0f2312a6d006) C:\WINDOWS\system32\DRIVERS\nadim.sys
19:55:46.0406 0952 Nadim ( UnsignedFile.Multi.Generic ) - warning
19:55:46.0406 0952 Nadim - detected UnsignedFile.Multi.Generic (1)
19:55:46.0671 0952 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
19:55:46.0750 0952 NDIS - ok
19:55:46.0937 0952 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:55:47.0015 0952 NdisIP - ok
19:55:47.0265 0952 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:55:47.0281 0952 NdisTapi - ok
19:55:47.0484 0952 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:55:47.0562 0952 Ndisuio - ok
19:55:47.0765 0952 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:55:47.0828 0952 NdisWan - ok
19:55:48.0031 0952 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
19:55:48.0062 0952 NDProxy - ok
19:55:48.0281 0952 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
19:55:48.0359 0952 NetBIOS - ok
19:55:48.0578 0952 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
19:55:48.0640 0952 NetBT - ok
19:55:48.0937 0952 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
19:55:49.0000 0952 NIC1394 - ok
19:55:49.0234 0952 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
19:55:49.0312 0952 Npfs - ok
19:55:49.0640 0952 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
19:55:49.0781 0952 Ntfs - ok
19:55:49.0984 0952 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
19:55:50.0046 0952 Null - ok
19:55:52.0765 0952 nv (ed9816dbaf6689542ea7d022631906a1) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
19:55:55.0406 0952 nv - ok
19:55:55.0687 0952 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:55:55.0765 0952 NwlnkFlt - ok
19:55:55.0953 0952 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:55:56.0015 0952 NwlnkFwd - ok
19:55:56.0250 0952 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
19:55:56.0328 0952 ohci1394 - ok
19:55:56.0656 0952 PAC7302 (14191c739f2af6f9efeb58697535498f) C:\WINDOWS\system32\DRIVERS\PAC7302.SYS
19:55:56.0718 0952 PAC7302 ( UnsignedFile.Multi.Generic ) - warning
19:55:56.0718 0952 PAC7302 - detected UnsignedFile.Multi.Generic (1)
19:55:56.0953 0952 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\DRIVERS\parport.sys
19:55:57.0031 0952 Parport - ok
19:55:57.0218 0952 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
19:55:57.0281 0952 PartMgr - ok
19:55:57.0484 0952 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
19:55:57.0562 0952 ParVdm - ok
19:55:57.0781 0952 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
19:55:57.0796 0952 pccsmcfd - ok
19:55:58.0031 0952 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
19:55:58.0093 0952 PCI - ok
19:55:58.0281 0952 PCIDump - ok
19:55:58.0484 0952 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
19:55:58.0562 0952 PCIIde - ok
19:55:58.0796 0952 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
19:55:58.0875 0952 Pcmcia - ok
19:55:59.0109 0952 pcouffin (02aaafb7ba137ce5ddabcdf8090954d9) C:\WINDOWS\system32\Drivers\pcouffin.sys
19:55:59.0125 0952 pcouffin ( UnsignedFile.Multi.Generic ) - warning
19:55:59.0125 0952 pcouffin - detected UnsignedFile.Multi.Generic (1)
19:55:59.0312 0952 PDCOMP - ok
19:55:59.0484 0952 PDFRAME - ok
19:55:59.0671 0952 PDRELI - ok
19:55:59.0843 0952 PDRFRAME - ok
19:56:00.0031 0952 perc2 - ok
19:56:00.0218 0952 perc2hib - ok
19:56:00.0484 0952 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:56:00.0562 0952 PptpMiniport - ok
19:56:00.0765 0952 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
19:56:00.0828 0952 PSched - ok
19:56:01.0015 0952 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:56:01.0078 0952 Ptilink - ok
19:56:01.0296 0952 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
19:56:01.0312 0952 PxHelp20 - ok
19:56:01.0500 0952 ql1080 - ok
19:56:01.0703 0952 Ql10wnt - ok
19:56:01.0875 0952 ql12160 - ok
19:56:02.0062 0952 ql1240 - ok
19:56:02.0250 0952 ql1280 - ok
19:56:02.0453 0952 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:56:02.0531 0952 RasAcd - ok
19:56:02.0750 0952 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:56:02.0828 0952 Rasl2tp - ok
19:56:03.0015 0952 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:56:03.0093 0952 RasPppoe - ok
19:56:03.0281 0952 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
19:56:03.0359 0952 Raspti - ok
19:56:03.0578 0952 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:56:03.0640 0952 Rdbss - ok
19:56:03.0828 0952 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:56:03.0906 0952 RDPCDD - ok
19:56:04.0156 0952 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
19:56:04.0187 0952 RDPWD - ok
19:56:04.0406 0952 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
19:56:04.0484 0952 redbook - ok
19:56:04.0687 0952 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
19:56:04.0765 0952 ROOTMODEM - ok
19:56:05.0062 0952 RTL8023xp (d6e1b1bd04fad422af17fc4b810cb9af) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
19:56:05.0078 0952 RTL8023xp - ok
19:56:05.0312 0952 s125bus (06847aa6f3a9bf7c44134d00a2e578c0) C:\WINDOWS\system32\DRIVERS\s125bus.sys
19:56:05.0328 0952 s125bus - ok
19:56:05.0500 0952 s125mdfl (f83f88e1b125308fb5015ea0349502b0) C:\WINDOWS\system32\DRIVERS\s125mdfl.sys
19:56:05.0515 0952 s125mdfl - ok
19:56:05.0718 0952 s125mdm (402a97756c14940ad6ae5169c2fb105e) C:\WINDOWS\system32\DRIVERS\s125mdm.sys
19:56:05.0718 0952 s125mdm - ok
19:56:05.0921 0952 s125mgmt (82b14c51de76825ec769a6374e4c57d6) C:\WINDOWS\system32\DRIVERS\s125mgmt.sys
19:56:05.0921 0952 s125mgmt - ok
19:56:06.0171 0952 s125obex (bedfc5707c356fd073bf1a4afe442d91) C:\WINDOWS\system32\DRIVERS\s125obex.sys
19:56:06.0187 0952 s125obex - ok
19:56:06.0468 0952 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:56:06.0546 0952 Secdrv - ok
19:56:06.0750 0952 Ser2pl (b490ad520257dda26c1d587a71e527b5) C:\WINDOWS\system32\DRIVERS\ser2pl.sys
19:56:06.0765 0952 Ser2pl ( UnsignedFile.Multi.Generic ) - warning
19:56:06.0781 0952 Ser2pl - detected UnsignedFile.Multi.Generic (1)
19:56:06.0984 0952 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
19:56:07.0046 0952 serenum - ok
19:56:07.0250 0952 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
19:56:07.0328 0952 Serial - ok
19:56:07.0531 0952 sermouse (61490899036b14dedc24babd847d7001) C:\WINDOWS\system32\DRIVERS\sermouse.sys
19:56:07.0609 0952 sermouse - ok
19:56:07.0875 0952 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
19:56:07.0937 0952 Sfloppy - ok
19:56:08.0156 0952 Simbad - ok
19:56:08.0343 0952 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:56:08.0406 0952 SLIP - ok
19:56:08.0578 0952 Sparrow - ok
19:56:08.0781 0952 speedfan (5d6401db90ec81b71f8e2c5c8f0fef23) C:\WINDOWS\system32\speedfan.sys
19:56:08.0781 0952 speedfan ( UnsignedFile.Multi.Generic ) - warning
19:56:08.0781 0952 speedfan - detected UnsignedFile.Multi.Generic (1)
19:56:08.0953 0952 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
19:56:09.0031 0952 splitter - ok
19:56:09.0421 0952 sptd (71e276f6d189413266ea22171806597b) C:\WINDOWS\system32\Drivers\sptd.sys
19:56:09.0421 0952 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: 71e276f6d189413266ea22171806597b
19:56:09.0453 0952 sptd ( LockedFile.Multi.Generic ) - warning
19:56:09.0453 0952 sptd - detected LockedFile.Multi.Generic (1)
19:56:09.0687 0952 sp_rsdrv2 (ae296342d24296403b9d869672f2dfba) C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
19:56:09.0703 0952 sp_rsdrv2 ( UnsignedFile.Multi.Generic ) - warning
19:56:09.0703 0952 sp_rsdrv2 - detected UnsignedFile.Multi.Generic (1)
19:56:09.0906 0952 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
19:56:09.0984 0952 sr - ok
19:56:10.0281 0952 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
19:56:10.0375 0952 Srv - ok
19:56:10.0578 0952 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:56:10.0640 0952 streamip - ok
19:56:10.0812 0952 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
19:56:10.0890 0952 swenum - ok
19:56:11.0078 0952 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
19:56:11.0156 0952 swmidi - ok
19:56:11.0328 0952 symc810 - ok
19:56:11.0500 0952 symc8xx - ok
19:56:11.0671 0952 sym_hi - ok
19:56:11.0843 0952 sym_u3 - ok
19:56:12.0031 0952 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
19:56:12.0093 0952 sysaudio - ok
19:56:12.0296 0952 TBPanel (04e1c782cf14b7282ebc633b0fd3ed16) C:\WINDOWS\system32\drivers\TBPanel.sys
19:56:12.0296 0952 TBPanel - ok
19:56:12.0593 0952 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:56:12.0703 0952 Tcpip - ok
19:56:12.0906 0952 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
19:56:12.0984 0952 TDPIPE - ok
19:56:13.0171 0952 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
19:56:13.0234 0952 TDTCP - ok
19:56:13.0421 0952 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
19:56:13.0484 0952 TermDD - ok
19:56:13.0656 0952 TosIde - ok
19:56:13.0890 0952 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
19:56:13.0953 0952 Udfs - ok
19:56:14.0156 0952 ultra - ok
19:56:14.0421 0952 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
19:56:14.0562 0952 Update - ok
19:56:14.0781 0952 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
19:56:14.0859 0952 usbaudio - ok
19:56:15.0046 0952 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:56:15.0125 0952 usbccgp - ok
19:56:15.0343 0952 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:56:15.0421 0952 usbehci - ok
19:56:15.0640 0952 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:56:15.0703 0952 usbhub - ok
19:56:15.0906 0952 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:56:15.0984 0952 usbprint - ok
19:56:16.0187 0952 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:56:16.0250 0952 usbscan - ok
19:56:16.0453 0952 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:56:16.0531 0952 USBSTOR - ok
19:56:16.0734 0952 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:56:16.0812 0952 usbuhci - ok
19:56:16.0968 0952 VComm - ok
19:56:17.0140 0952 VcommMgr - ok
19:56:17.0375 0952 VCSVADHWSer (b2abab4ca46bad182e27763dc19c780f) C:\WINDOWS\system32\DRIVERS\vcsvad.sys
19:56:17.0390 0952 VCSVADHWSer ( UnsignedFile.Multi.Generic ) - warning
19:56:17.0390 0952 VCSVADHWSer - detected UnsignedFile.Multi.Generic (1)
19:56:17.0593 0952 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
19:56:17.0656 0952 VgaSave - ok
19:56:17.0828 0952 VHidMinidrv - ok
19:56:18.0000 0952 ViaIde - ok
19:56:18.0218 0952 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
19:56:18.0281 0952 VolSnap - ok
19:56:18.0468 0952 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:56:18.0546 0952 Wanarp - ok
19:56:18.0750 0952 wceusbsh (a2a8cacb5b80ac45cc69692e60621864) C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
19:56:18.0812 0952 wceusbsh - ok
19:56:18.0984 0952 WDICA - ok
19:56:19.0234 0952 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
19:56:19.0296 0952 wdmaud - ok
19:56:19.0500 0952 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:56:19.0578 0952 WS2IFSL - ok
19:56:19.0781 0952 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:56:19.0843 0952 WSTCODEC - ok
19:56:20.0062 0952 WudfPf (729f76cd53af1685ca4c4c058519c58c) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:56:20.0093 0952 WudfPf - ok
19:56:20.0312 0952 WudfRd (a2aafcc8a204736296d937c7c545b53f) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:56:20.0312 0952 WudfRd - ok
19:56:20.0531 0952 xmasbus (ddd8286b88fe764ad2a8bd171e7b569a) C:\WINDOWS\system32\DRIVERS\xmasbus.sys
19:56:20.0546 0952 xmasbus ( UnsignedFile.Multi.Generic ) - warning
19:56:20.0546 0952 xmasbus - detected UnsignedFile.Multi.Generic (1)
19:56:20.0718 0952 xmasscsi (2222677f06fb7fbe44b04316437585d2) C:\WINDOWS\system32\Drivers\xmasscsi.sys
19:56:20.0718 0952 xmasscsi ( UnsignedFile.Multi.Generic ) - warning
19:56:20.0718 0952 xmasscsi - detected UnsignedFile.Multi.Generic (1)
19:56:20.0750 0952 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
19:56:21.0078 0952 \Device\Harddisk0\DR0 - ok
19:56:21.0093 0952 MBR (0x1B8) (671b81004fdd1588fa9ed1331c9ceca9) \Device\Harddisk1\DR2
19:56:21.0875 0952 \Device\Harddisk1\DR2 - ok
19:56:21.0875 0952 Boot (0x1200) (69108fbc11d5ba49d8908494c5dd1e23) \Device\Harddisk0\DR0\Partition0
19:56:21.0875 0952 \Device\Harddisk0\DR0\Partition0 - ok
19:56:21.0875 0952 Boot (0x1200) (eeb3361cca5d99e0742cc1e051843d70) \Device\Harddisk1\DR2\Partition0
19:56:21.0890 0952 \Device\Harddisk1\DR2\Partition0 - ok
19:56:21.0890 0952 ============================================================
19:56:21.0890 0952 Scan finished
19:56:21.0890 0952 ============================================================
19:56:21.0984 0948 Detected object count: 15
19:56:21.0984 0948 Actual detected object count: 15
19:57:24.0109 0948 BootScreen ( UnsignedFile.Multi.Generic ) - skipped by user
19:57:24.0109 0948 BootScreen ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:57:24.0109 0948 Ethpdrv ( UnsignedFile.Multi.Generic ) - skipped by user
19:57:24.0109 0948 Ethpdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:57:24.0125 0948 giveio ( UnsignedFile.Multi.Generic ) - skipped by user
19:57:24.0125 0948 giveio ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:57:24.0125 0948 LF30FS ( UnsignedFile.Multi.Generic ) - skipped by user
19:57:24.0125 0948 LF30FS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:57:24.0140 0948 MRxSmb ( UnsignedFile.Multi.Generic ) - skipped by user
19:57:24.0140 0948 MRxSmb ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:57:24.0140 0948 Nadim ( UnsignedFile.Multi.Generic ) - skipped by user
19:57:24.0140 0948 Nadim ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:57:24.0140 0948 PAC7302 ( UnsignedFile.Multi.Generic ) - skipped by user
19:57:24.0140 0948 PAC7302 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:57:24.0156 0948 pcouffin ( UnsignedFile.Multi.Generic ) - skipped by user
19:57:24.0156 0948 pcouffin ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:57:24.0156 0948 Ser2pl ( UnsignedFile.Multi.Generic ) - skipped by user
19:57:24.0156 0948 Ser2pl ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:57:24.0156 0948 speedfan ( UnsignedFile.Multi.Generic ) - skipped by user
19:57:24.0156 0948 speedfan ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:57:24.0156 0948 sptd ( LockedFile.Multi.Generic ) - skipped by user
19:57:24.0156 0948 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
19:57:24.0156 0948 sp_rsdrv2 ( UnsignedFile.Multi.Generic ) - skipped by user
19:57:24.0156 0948 sp_rsdrv2 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:57:24.0156 0948 VCSVADHWSer ( UnsignedFile.Multi.Generic ) - skipped by user
19:57:24.0156 0948 VCSVADHWSer ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:57:24.0171 0948 xmasbus ( UnsignedFile.Multi.Generic ) - skipped by user
19:57:24.0171 0948 xmasbus ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:57:24.0171 0948 xmasscsi ( UnsignedFile.Multi.Generic ) - skipped by user
19:57:24.0171 0948 xmasscsi ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:57:31.0828 0772 Deinitialize success

[Massa]

Ahoj, tak jsem to udělal a PC zatím běží... tady dávám ten log
v PM jsem poslal ten odkaz
ComboFix 11-11-15.06 - uživatel 16.11.2011 14:31:30.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.3327.2909 [GMT 1:00]
Spuštěný z: c:\documents and settings\uživatel\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\uživatel\Plocha\WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: avast! Antivirus *Disabled* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
ADS - WINDOWS: deleted 24 bytes in 1 streams.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\uživatel\Local Settings\Data aplikací\46c59570\U\800000cf.@
c:\documents and settings\uživatel\Local Settings\Data aplikací\46c59570\X
C:\Thumbs.db
c:\windows\$NtUninstallKB11338$
c:\windows\$NtUninstallKB11338$\1187353968\@
c:\windows\$NtUninstallKB11338$\1187353968\L\klelmeai
c:\windows\$NtUninstallKB11338$\1187353968\U\$80000000
c:\windows\$NtUninstallKB11338$\1187353968\U\$800000c0
c:\windows\$NtUninstallKB11338$\1187353968\U\$800000cf
c:\windows\$NtUninstallKB11338$\1187353968\U\@00000001
c:\windows\$NtUninstallKB11338$\1187353968\U\@000000c0
c:\windows\$NtUninstallKB11338$\1187353968\U\@000000cb
c:\windows\$NtUninstallKB11338$\1187353968\U\@000000cf
c:\windows\$NtUninstallKB11338$\1187353968\U\@800000cb
c:\windows\$NtUninstallKB11338$\1232641866
c:\windows\gendel32.exe
c:\windows\iun6002.exe
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\RazorDOX
c:\windows\RazorDOX\RazorDOX.dll
c:\windows\RazorDOX\RazorDOX.ini
.
Nakažená kopie c:\windows\system32\drivers\mrxsmb.sys byla nalezena a vyléčena.
Obnovena kopie z - The cat found it
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NPF
-------\Legacy_VCS
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-16 do 2011-11-16 )))))))))))))))))))))))))))))))
.
.
2011-11-16 13:27 . 2011-07-15 13:29 457856 -c--a-w- c:\windows\system32\dllcache\mrxsmb.sys
2011-11-16 13:27 . 2011-07-15 13:29 457856 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-11-15 18:40 . 2011-11-15 18:40 512 ----a-w- C:\PhysicalMBR.bin
2011-11-15 12:23 . 2011-11-15 12:23 -------- d-----w- c:\program files\trend micro
2011-11-15 07:46 . 2011-11-15 07:46 -------- d-----w- c:\documents and settings\Administrator
2011-11-14 19:00 . 2011-11-15 12:27 -------- d-----w- C:\rsit
2011-11-14 18:24 . 2011-11-16 13:38 -------- d-sh--w- c:\documents and settings\uživatel\Local Settings\Data aplikací\46c59570
2011-11-14 18:12 . 2011-11-14 18:12 -------- d-----w- c:\documents and settings\uživatel\Data aplikací\Avnex
2011-11-14 18:06 . 2008-04-14 03:22 23552 ----a-w- c:\windows\system32\wdmaud.drv
2011-11-14 18:06 . 2008-04-13 20:19 146048 ----a-w- c:\windows\system32\drivers\portcls.sys
2011-11-14 18:06 . 2008-04-13 19:45 60160 ----a-w- c:\windows\system32\drivers\drmk.sys
2011-11-14 18:06 . 2004-07-09 02:27 48512 ----a-w- c:\windows\system32\drivers\stream.sys
2011-11-14 18:06 . 2002-12-11 22:14 4096 ----a-w- c:\windows\system32\ksuser.dll
2011-11-14 18:05 . 2008-12-26 11:56 17792 ----a-w- c:\windows\system32\drivers\vcsvad.sys
2011-11-10 17:48 . 2011-11-10 17:48 -------- d-----w- c:\documents and settings\uživatel\Local Settings\Data aplikací\CrashRpt
2011-11-03 16:17 . 2011-11-03 16:17 -------- d-sh--w- c:\documents and settings\Guest\IECompatCache
2011-10-25 16:18 . 2011-10-25 16:18 -------- d-----w- c:\windows\system32\3Planesoft
2011-10-25 16:18 . 2011-10-25 16:18 -------- d-----w- c:\program files\3Planesoft Screensaver Manager
2011-10-25 16:18 . 2007-02-28 10:51 772096 ----a-w- c:\windows\system32\Fireplace_3D_Screensaver.scr
2011-10-25 16:18 . 2007-02-28 10:51 3395584 ----a-w- c:\windows\system32\Fireplace 3D Screensaver.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-23 07:48 . 2011-08-24 20:14 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-10 14:22 . 2008-04-04 13:43 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-10-03 03:06 . 2010-09-27 17:04 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-10-03 00:37 . 2010-09-27 17:04 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-09-28 07:06 . 2006-03-02 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-09-26 09:41 . 2008-07-29 17:59 613376 ----a-w- c:\windows\system32\uiautomationcore.dll
2011-09-26 09:41 . 2006-03-02 12:00 22528 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-26 09:41 . 2006-03-02 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-06 14:10 . 2006-03-02 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-08-22 23:41 . 2006-03-02 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-08-22 23:41 . 2006-03-02 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-08-22 23:41 . 2006-03-02 12:00 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2006-03-02 12:00 385024 ----a-w- c:\windows\system32\html.iec
2011-03-23 11:03 . 2011-08-26 08:28 108424 ----a-w- c:\program files\Common Files\APNStub.exe
2011-03-23 10:26 . 2011-08-26 08:28 3325832 ----a-w- c:\program files\Common Files\APNToolbarInstaller.exe
2010-01-26 09:11 . 2011-08-26 08:28 444283 ----a-w- c:\program files\Common Files\WinPcapNmap.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-06-27 152872]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2007-08-23 455968]
"Net Activity Diagram"="c:\programy\Net Activity Diagram\nad.exe" [2008-10-22 1036804]
"Seznam Postak"="c:\program files\Seznam.cz\postak.exe" [2010-10-07 488728]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SkyTel"="SkyTel.EXE" [2006-05-16 2879488]
"Gainward"="c:\program files\VDOTool\TBPanel.exe" [2007-11-27 2169368]
"SpywareTerminator"="c:\progra~1\SPYWAR~1\SpywareTerminatorShield.exe" [2008-04-08 2776576]
"RTHDCPL"="RTHDCPL.EXE" [2006-06-28 16248320]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2008-05-29 185896]
"PAC7302_Monitor"="c:\windows\PixArt\PAC7302\Monitor.exe" [2006-11-03 319488]
"ioCentre"="c:\genius\ioCentre\gTaskBar.exe" [2006-12-08 241664]
"OpwareSE2"="c:\program files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" [2003-05-08 49152]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2011-01-13 3396624]
"nwiz"="c:\program files\NVIDIA Corporation\nView\nwiz.exe" [2010-07-07 1753192]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-07-09 13923432]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-07-09 110696]
"NBAgent"="c:\programy\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe" [2010-03-14 1086760]
"QuickTime Task"="c:\windows\system32\qttask.exe" [2011-04-14 98304]
"LogMeIn Hamachi Ui"="c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe" [2011-08-04 1955208]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\uživatel\Nabídka Start\Programy\Po spuštění\
SpeedFan.lnk - c:\program files\SpeedFan\speedfan.exe [2007-9-17 2902528]
Yahoo! Widget Engine.lnk - c:\programy\Widgets\YahooWidgetEngine.exe [2007-7-20 2913584]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLinkedConnections"= 1 (0x1)
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^AVerQuick.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\AVerQuick.lnk
backup=c:\windows\pss\AVerQuick.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Orbit.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Orbit.lnk
backup=c:\windows\pss\Orbit.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^uživatel^Nabídka Start^Programy^Po spuštění^hamachi.lnk]
.
[HKLM\~\startupfolder\C:^Documents and Settings^uživatel^Nabídka Start^Programy^Po spuštění^OpenOffice.org 2.3.lnk]
path=c:\documents and settings\uživatel\Nabídka Start\Programy\Po spuštění\OpenOffice.org 2.3.lnk
backup=c:\windows\pss\OpenOffice.org 2.3.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
2008-05-08 09:47 2577840 ----a-w- c:\programy\Internet Download Manager\IDMan.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
2011-08-04 12:34 1955208 ----a-w- c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2007-03-01 13:57 153136 -c--a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2011-10-13 07:27 17351304 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\Programy\\HLSW\\hlsw.exe"=
"c:\\Programy\\QIP\\qip.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Hry\\Age of Empires II\\empires2.exe"=
"c:\\Documents and Settings\\uživatel\\Dokumenty\\Downloads\\Compressed\\Age of Empires II - The Conquerors\\Age of Empires II - The Conquerors\\age2_x1.exe"=
"c:\\WINDOWS\\system32\\dplaysvr.exe"=
"c:\\Programy\\Orbitdownloader\\orbitdm.exe"=
"c:\\Programy\\Orbitdownloader\\orbitnet.exe"=
"c:\\Programy\\totalcmd\\TOTALCMD.EXE"=
"c:\\Documents and Settings\\uživatel\\temp\\TeamViewer\\Version4\\TeamViewer.exe"=
"c:\\Programy\\IVT Corporation\\BlueSoleil\\BlueSoleil_.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Hry\\THQ\\Gas Powered Games\\Supreme Commander\\bin\\SupremeCommander.exe"=
"c:\\Hry\\THQ\\Gas Powered Games\\GPGNet\\GPG.Multiplayer.Client.exe"=
"c:\\Program Files\\Java\\jre6\\launch4j-tmp\\frd.exe"=
"c:\\Program Files\\Crash Time 4 - The Syndicate\\CrashTime4Hi.exe"=
"c:\\Program Files\\Crash Time 4 - The Syndicate\\CrashTime4Low.exe"=
"c:\\Programy\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"27015:TCP"= 27015:TCP:css
"27016:TCP"= 27016:TCP:css2
"21926:TCP"= 21926:TCP:BitComet 21926 TCP
"21926:UDP"= 21926:UDP:BitComet 21926 UDP
.
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [3.8.2010 14:31 717296]
R0 xmasbus;xmasbus;c:\windows\system32\drivers\xmasbus.sys [15.4.2008 16:16 140800]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [4.4.2008 15:12 294608]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [8.4.2008 17:47 138624]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [4.4.2008 15:12 17744]
R2 Ethpdrv;Ethernet Packet Driver;c:\windows\system32\drivers\ethpdrv.sys [8.4.2008 17:49 9728]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [4.8.2011 13:34 1361288]
R2 LF30FS;LF30FS;c:\programy\Everstrike Software\Lock Folder XP 3.5\LF30XP.sys [19.11.2004 16:07 101488]
R2 Nadim;NAD Proto Driver;c:\windows\system32\drivers\nadim.sys [22.10.2008 15:45 16896]
R3 AVerBDA3x;AVerMedia SAA713x BDA Service;c:\windows\system32\drivers\AVerBDA3x.sys [4.4.2008 15:20 1171456]
R3 gHidPnp;USB Device Enhanced Function Driver;c:\windows\system32\drivers\gHidPnp.sys [8.7.2009 16:33 14848]
R3 gMouUsb;USB Mouse Device Drv;c:\windows\system32\drivers\gMouUsb.sys [8.7.2009 16:33 9984]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [18.9.2008 14:42 47360]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\drivers\vcsvad.sys [14.11.2011 19:05 17792]
S0 xmasscsi;xmasscsi;c:\windows\system32\drivers\xmasscsi.sys [15.4.2008 16:16 5504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18.3.2010 12:16 130384]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [24.8.2011 21:15 136176]
S3 gMouPS2;PS2 Scroll Mouse Device;c:\windows\system32\drivers\gMouPS2.sys [8.7.2009 16:33 17408]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [24.8.2011 21:15 136176]
S3 ipw_bus;IPWireless;c:\windows\system32\drivers\ipw_bus.sys [8.4.2008 17:49 58320]
S3 ipw_mdfl;Wireless Broadband Modem Filter;c:\windows\system32\drivers\ipw_mdfl.sys [8.4.2008 17:49 8272]
S3 ipw_mdm;Wireless Broadband Modem (WDM);c:\windows\system32\drivers\ipw_mdm.sys [8.4.2008 17:49 95440]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18.3.2010 12:16 753504]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2007-08-23 15:34 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2011-11-16 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-24 20:15]
.
2011-11-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-24 20:15]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyServer = socks=
uInternet Settings,ProxyOverride = plimus.com,www.plimus.com,regnow.com,www.regnow.com,
IE: &Download by Orbit - c:\programy\Orbitdownloader\orbitmxt.dll/201
IE: &Grab video by Orbit - c:\programy\Orbitdownloader\orbitmxt.dll/204
IE: Add to AMV Converter... - c:\programy\MP3Software\AMVConverter\grab.html
IE: Baixar com o Rapidown... - c:\program files\Rapidown\RapidownGet.htm
IE: Baixar tudo com o Rapidown... - c:\program files\Rapidown\RapidownGetAll.htm
IE: Do&wnload selected by Orbit - c:\programy\Orbitdownloader\orbitmxt.dll/203
IE: Down&load all by Orbit - c:\programy\Orbitdownloader\orbitmxt.dll/202
IE: E&xportovat do aplikace Microsoft Office Excel - c:\programy\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: Easy-WebPrint Add To Print List - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
IE: Easy-WebPrint High Speed Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
IE: Easy-WebPrint Preview - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
IE: Easy-WebPrint Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
IE: Stáhnout obsah FLV videa s IDM - c:\programy\Internet Download Manager\IEGetVL.htm
IE: Stáhnout s IDM - c:\programy\Internet Download Manager\IEExt.htm
IE: Stáhnout všechny odkazy s IDM - c:\programy\Internet Download Manager\IEGetAll.htm
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\windows\WebIE.dll
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKLM-Run-LFAgent - (no file)
MSConfigStartUp-AnyDVD - c:\programy\AnyDVD\AnyDVDtray.exe
MSConfigStartUp-RemoteControl - c:\programy\CyberLink DVD Solution\PowerDVD\PDVDServ.exe
MSConfigStartUp-T-Mobile Communication Centre - c:\programy\T-Mobile Communication Centre\Centre.exe
AddRemove-{A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1 - c:\program files\VDownloader\unins000.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-16 14:43
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
.
C:\Xjackitis
.
sken byl úspešně dokončen
skryté soubory: 1
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{501a9e5c-5f61-4c88-814d-198b1d1091d2}]
@Denied: (Full) (Everyone)
"Model"=dword:00000101
"Therad"=dword:0000001a
"MData"=hex(0):cb,9b,ad,ef,27,7d,29,69,f5,02,f0,76,aa,4a,f1,7c,d3,d9,67,7f,6a,
4b,7b,ad,99,4a,0a,5d,8a,7f,ad,42,a0,2f,d8,10,17,3c,a6,1d,ac,9b,b2,6d,0e,a0,\
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):a8,61,d8,f6,b7,05,1f,2c,c4,c5,d1,68,6a,eb,d2,02,13,cf,10,eb,9b,
fd,79,b9,93,e4,e0,cf,4e,b0,21,1a,f3,e2,46,b4,54,67,cc,43,00,00,00,00,00,00,\
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(3116)
c:\program files\ScanSoft\OmniPageSE2.0\ophookSE2.dll
c:\windows\system32\msi.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\system32\PnkBstrA.exe
c:\progra~1\SPYWAR~1\sp_rsser.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\RUNDLL32.EXE
c:\program files\Common Files\Ahead\Lib\NMIndexingService.exe
c:\program files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
.
**************************************************************************
.
Celkový čas: 2011-11-16 14:47:26 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-11-16 13:47
.
Před spuštěním: Volných bajtů: 142 604 099 584
Po spuštění: Volných bajtů: 142 700 834 816
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - F49B7A9131C663CEEF9CA429C6EDBE43

[Massa]

doufám, že to byl správný odkaz....... co se týče PC běží naprosto normálně, žádné abnormality se neprojevují

tady jsou odkazy na ty testované soubory:
http://www.virustotal.com/file-scan/rep ... 1321459140

http://www.virustotal.com/file-scan/rep ... 1321459344

http://www.virustotal.com/file-scan/rep ... 1321459560

========== OTL ==========
HKU\S-1-5-21-1060284298-776561741-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride| /E : value set successfully!
========== COMMANDS ==========

OTL by OldTimer - Version 3.2.31.0 log created on 11162011_170024



OTL logfile created on: 16.11.2011 17:04:31 - Run 3
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\uživatel\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,25 Gb Total Physical Memory | 2,65 Gb Available Physical Memory | 81,56% Memory free
6,09 Gb Paging File | 5,68 Gb Available in Paging File | 93,19% Paging File free
Paging file location(s): C:\pagefile.sys 3070 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 298,09 Gb Total Space | 132,92 Gb Free Space | 44,59% Space Free | Partition Type: NTFS

Computer Name: WIMMER-A39D2305 | User Name: uživatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2011.11.16 16:44:28 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\uživatel\Plocha\OTL.exe
PRC - [2011.08.04 13:34:46 | 001,361,288 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2011.04.14 21:20:10 | 000,098,304 | ---- | M] (Apple Computer, Inc.) -- C:\WINDOWS\system32\qttask.exe
PRC - [2011.01.13 08:47:34 | 003,396,624 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011.01.13 08:47:33 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010.10.07 14:55:06 | 000,488,728 | ---- | M] () -- C:\Program Files\Seznam.cz\postak.exe
PRC - [2008.05.29 12:59:12 | 000,185,896 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.04.08 17:47:53 | 000,965,632 | ---- | M] (Crawler.com) -- C:\Program Files\Spyware Terminator\sp_rsser.exe
PRC - [2008.04.08 17:46:26 | 002,776,576 | ---- | M] (Crawler.com) -- C:\Program Files\Spyware Terminator\Spywareterminatorshield.Exe
PRC - [2007.11.27 13:36:54 | 002,169,368 | ---- | M] (Palit Microsystems, Inc.) -- C:\Program Files\VDOTool\TBPANEL.exe
PRC - [2007.09.17 18:04:02 | 002,902,528 | ---- | M] (Almico Software (www.almico.com)) -- C:\Program Files\SpeedFan\speedfan.exe
PRC - [2007.07.20 18:57:16 | 002,913,584 | ---- | M] (Yahoo! Inc.) -- C:\Programy\Widgets\YahooWidgetEngine.exe
PRC - [2007.06.27 18:04:00 | 001,213,736 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2007.06.27 18:03:40 | 000,152,872 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2006.12.15 09:15:36 | 000,417,792 | ---- | M] (TODO: <Company name>) -- C:\Genius\ioCentre\gKbdTask.exe
PRC - [2006.12.14 12:43:30 | 000,331,776 | ---- | M] () -- C:\Genius\ioCentre\gAutoScroll.exe
PRC - [2006.12.08 20:09:56 | 000,241,664 | ---- | M] (TODO: <Company name>) -- C:\Genius\ioCentre\gTaskBar.exe
PRC - [2006.12.04 18:36:24 | 000,630,784 | ---- | M] (TODO: <Company name>) -- C:\Genius\ioCentre\gMouseTask.exe
PRC - [2006.12.04 17:24:56 | 000,409,600 | ---- | M] (TODO: <Company name>) -- C:\Genius\ioCentre\gDeskMgm.exe
PRC - [2006.11.10 09:40:24 | 000,491,520 | ---- | M] (TODO: <Company name>) -- C:\Genius\ioCentre\gZoom.exe
PRC - [2006.11.10 09:06:18 | 000,315,392 | ---- | M] (TODO: <Company name>) -- C:\Genius\ioCentre\gTaskSwitch.exe
PRC - [2006.11.09 17:29:26 | 000,229,376 | ---- | M] (TODO: <Company name>) -- C:\Genius\ioCentre\gMGlass.exe
PRC - [2006.11.09 16:56:38 | 000,315,392 | ---- | M] (TODO: <Company name>) -- C:\Genius\ioCentre\gIMMgm.exe
PRC - [2006.11.09 16:12:42 | 000,487,424 | ---- | M] (TODO: <Company name>) -- C:\Genius\ioCentre\gAutoPan.exe
PRC - [2006.11.03 11:01:16 | 000,319,488 | ---- | M] (PixArt Imaging Incorporation) -- C:\WINDOWS\PixArt\PAC7302\Monitor.exe
PRC - [2003.05.08 11:00:58 | 000,049,152 | ---- | M] (ScanSoft, Inc.) -- C:\Program Files\ScanSoft\OmniPageSE2.0\opwareSE2.exe


========== Modules (No Company Name) ==========

MOD - [2011.11.16 10:39:10 | 001,616,896 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\11111600\algo.dll
MOD - [2011.11.15 12:59:54 | 000,241,528 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\11111600\aswRep.dll
MOD - [2011.01.13 08:47:29 | 000,142,872 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\aswDld.dll
MOD - [2010.10.07 14:55:06 | 000,488,728 | ---- | M] () -- C:\Program Files\Seznam.cz\postak.exe
MOD - [2010.10.07 14:54:58 | 000,849,176 | ---- | M] () -- C:\Program Files\Seznam.cz\email.3.dll
MOD - [2010.10.07 14:54:40 | 001,164,568 | ---- | M] () -- C:\Program Files\Seznam.cz\core.3.dll
MOD - [2009.01.10 23:15:44 | 000,159,744 | ---- | M] () -- C:\Programy\FormatFactory\FFModules\Filters\Haali\mmfinfo.dll
MOD - [2009.01.10 23:14:06 | 000,023,552 | ---- | M] () -- C:\Programy\FormatFactory\FFModules\Filters\Haali\mkunicode.dll
MOD - [2007.07.18 17:14:40 | 000,364,544 | ---- | M] () -- C:\Programy\Widgets\js32.dll
MOD - [2007.07.16 19:18:02 | 000,349,147 | ---- | M] () -- C:\Programy\Widgets\sqlite3.dll
MOD - [2007.05.05 10:40:34 | 000,128,512 | ---- | M] () -- C:\Programy\WinRar\RarExt.dll
MOD - [2006.12.14 12:43:30 | 000,331,776 | ---- | M] () -- C:\Genius\ioCentre\gAutoScroll.exe
MOD - [1998.10.31 03:55:56 | 000,005,120 | ---- | M] () -- C:\Program Files\VDOTool\TBMANAGE.DLL


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.08.04 13:34:46 | 001,361,288 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2011.01.13 08:47:33 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2009.10.27 09:26:36 | 000,657,408 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008.04.08 17:47:53 | 000,965,632 | ---- | M] (Crawler.com) [Auto | Running] -- C:\Program Files\Spyware Terminator\sp_rsser.exe -- (sp_rssrv)


========== Driver Services (SafeList) ==========

DRV - [2011.01.13 08:41:16 | 000,294,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.01.13 08:40:16 | 000,047,440 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.01.13 08:40:04 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011.01.13 08:37:30 | 000,023,632 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.01.13 08:37:11 | 000,029,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011.01.13 08:37:09 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010.08.03 14:31:17 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010.02.03 14:56:56 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2009.08.01 01:25:44 | 000,279,712 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2009.08.01 01:25:44 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2008.12.26 12:56:04 | 000,017,792 | ---- | M] (Avnex) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vcsvad.sys -- (VCSVADHWSer) Avnex Virtual Audio Device (WDM)
DRV - [2008.10.01 20:53:41 | 000,163,712 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\vidstub.sys -- (BootScreen)
DRV - [2008.08.26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.08.01 14:27:35 | 000,099,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AnyDVD.sys -- (AnyDVD)
DRV - [2008.04.13 19:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
DRV - [2008.04.13 19:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008.04.08 17:47:53 | 000,138,624 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2007.11.08 10:29:52 | 000,458,752 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PAC7302.SYS -- (PAC7302)
DRV - [2007.04.24 11:33:46 | 000,100,488 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125mgmt.sys -- (s125mgmt) Sony Ericsson Device 125 USB WMC Device Management Drivers (WDM)
DRV - [2007.04.24 11:33:46 | 000,098,696 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125obex.sys -- (s125obex)
DRV - [2007.04.24 11:33:44 | 000,108,680 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125mdm.sys -- (s125mdm)
DRV - [2007.04.24 11:33:42 | 000,015,112 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125mdfl.sys -- (s125mdfl)
DRV - [2007.04.24 11:33:34 | 000,083,336 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125bus.sys -- (s125bus) Sony Ericsson Device 125 driver (WDM)
DRV - [2007.03.16 09:11:38 | 000,012,256 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\TBPanel.sys -- (TBPanel)
DRV - [2007.03.16 09:11:38 | 000,012,256 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TBPanel.sys -- (Cardex)
DRV - [2006.12.14 04:34:40 | 001,171,456 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVerBDA3x.sys -- (AVerBDA3x)
DRV - [2006.09.24 14:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2006.07.14 06:33:58 | 000,009,984 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gMouUsb.sys -- (gMouUsb)
DRV - [2006.07.14 06:30:52 | 000,014,848 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gHidPnp.sys -- (gHidPnp)
DRV - [2006.07.12 03:48:46 | 000,017,408 | ---- | M] ( Mouse Upfilter Driver ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gMouPS2.sys -- (gMouPS2)
DRV - [2006.06.28 09:25:24 | 004,304,384 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2005.11.16 09:08:16 | 000,078,976 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTL8023xp)
DRV - [2005.09.27 09:21:54 | 000,095,440 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ipw_mdm.sys -- (ipw_mdm) Wireless Broadband Modem (WDM)
DRV - [2005.09.27 09:21:50 | 000,008,272 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ipw_mdfl.sys -- (ipw_mdfl)
DRV - [2005.09.27 09:21:28 | 000,058,320 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ipw_bus.sys -- (ipw_bus)
DRV - [2005.09.08 00:18:54 | 000,009,728 | R--- | M] (Gemfor s.r.o.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ethpdrv.sys -- (Ethpdrv)
DRV - [2005.05.30 22:27:40 | 000,016,896 | ---- | M] (MetaProducts corp.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nadim.sys -- (Nadim)
DRV - [2004.11.19 16:07:00 | 000,101,488 | ---- | M] () [Kernel | Auto | Running] -- C:\Programy\Everstrike Software\Lock Folder XP 3.5\LF30XP.sys -- (LF30FS)
DRV - [2003.12.21 16:24:22 | 000,140,800 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\xmasbus.sys -- (xmasbus)
DRV - [2003.12.20 19:03:42 | 000,005,504 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\xmasscsi.sys -- (xmasscsi)
DRV - [2003.07.16 07:27:40 | 000,043,264 | R--- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ser2pl.sys -- (Ser2pl)
DRV - [1996.04.03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1060284298-776561741-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-1060284298-776561741-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1060284298-776561741-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = socks=

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2027: C:\Program Files\ACE Mega CoDecS Pack\SystemS\RealMedia\Browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.46: C:\Programy\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.3.46: C:\Programy\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1040: C:\Program Files\ACE Mega CoDecS Pack\SystemS\RealMedia\Browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.46: C:\Programy\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Programy\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Programy\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)

FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Documents and Settings\uživatel\Data aplikací\IDM\idmmzcc2 [2008.05.08 10:47:50 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\15.0.874.106\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Java Deployment Toolkit 6.0.220.4 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U22 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Programy\Real\RealPlayer\Netscape6\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Programy\Real\RealPlayer\Netscape6\nprpjplug.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\15.0.874.106\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\15.0.874.106\pdf.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Yahoo! activeX Plug-in Bridge (Enabled) = C:\Program Files\Yahoo!\Common\npyaxmpb.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Programy\Real\RealPlayer\Netscape6\nprjplug.dll
CHR - plugin: Veetle TV Player (Enabled) = C:\Programy\Veetle\Player\npvlc.dll
CHR - plugin: Veetle TV Core (Enabled) = C:\Programy\Veetle\plugins\npVeetle.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: Skype Click to Call = C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0\

O1 HOSTS File: ([2011.11.16 14:42:05 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Programy\Internet Download Manager\IDMIECC.dll (Tonec Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Ukazatel S-Rank) - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\core.3.dll ()
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\WINDOWS\WebIE.dll ()
O3 - HKLM\..\Toolbar: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Programy\Orbitdownloader\GrabPro.dll ()
O3 - HKU\S-1-5-21-1060284298-776561741-725345543-1004\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-1060284298-776561741-725345543-1004\..\Toolbar\WebBrowser: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Programy\Orbitdownloader\GrabPro.dll ()
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Gainward] C:\Program Files\VDOTool\TBPanel.exe (Palit Microsystems, Inc.)
O4 - HKLM..\Run: [ioCentre] C:\Genius\ioCentre\gTaskBar.exe (TODO: <Company name>)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [NBAgent] C:\Programy\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKLM..\Run: [OpwareSE2] C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe (ScanSoft, Inc.)
O4 - HKLM..\Run: [PAC7302_Monitor] C:\WINDOWS\PixArt\PAC7302\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [QuickTime Task] C:\WINDOWS\System32\qttask.exe (Apple Computer, Inc.)
O4 - HKLM..\Run: [SpywareTerminator] C:\Program Files\Spyware Terminator\Spywareterminatorshield.Exe (Crawler.com)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKU\S-1-5-21-1060284298-776561741-725345543-1004..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-1060284298-776561741-725345543-1004..\Run: [Net Activity Diagram] C:\Programy\Net Activity Diagram\nad.exe (MetaProducts corp)
O4 - HKU\S-1-5-21-1060284298-776561741-725345543-1004..\Run: [Seznam Postak] C:\Program Files\Seznam.cz\postak.exe ()
O4 - Startup: C:\Documents and Settings\uživatel\Nabídka Start\Programy\Po spuštění\SpeedFan.lnk = C:\Program Files\SpeedFan\speedfan.exe (Almico Software (www.almico.com))
O4 - Startup: C:\Documents and Settings\uživatel\Nabídka Start\Programy\Po spuštění\Yahoo! Widget Engine.lnk = C:\Programy\Widgets\YahooWidgetEngine.exe (Yahoo! Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1060284298-776561741-725345543-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1060284298-776561741-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1060284298-776561741-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1060284298-776561741-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: &Download by Orbit - C:\Programy\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: &Grab video by Orbit - C:\Programy\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Add to AMV Converter... - C:\Programy\MP3Software\AMVConverter\grab.html ()
O8 - Extra context menu item: Baixar com o Rapidown... - C:\Program Files\Rapidown\RapidownGet.htm File not found
O8 - Extra context menu item: Baixar tudo com o Rapidown... - C:\Program Files\Rapidown\RapidownGetAll.htm File not found
O8 - Extra context menu item: Do&wnload selected by Orbit - C:\Programy\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Down&load all by Orbit - C:\Programy\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - C:\Programy\microsoft office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Easy-WebPrint Add To Print List - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint High Speed Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Preview - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Stáhnout obsah FLV videa s IDM - C:\Programy\Internet Download Manager\IEGetVL.htm ()
O8 - Extra context menu item: Stáhnout s IDM - C:\Programy\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: Stáhnout všechny odkazy s IDM - C:\Programy\Internet Download Manager\IEGetAll.htm ()
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll ()
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programy\microsoft office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll ()
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\Yinsthelper.dll (Installation Support)
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{95D2C9BD-68BC-4D69-900F-D90522CFAA39}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.04.04 14:45:06 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.at3 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\SONY\atrac3.acm ()
Drivers32: msacm.CoreFLAC_ACM - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Core\CoreFLAC_ACM.acm ()
Drivers32: msacm.divxa32 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxa32.acm (Kristal StudioD
FileDescription)
Drivers32: msacm.iac2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\iac25_32.ax (Intel Corporation)
Drivers32: msacm.imaadpcm - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\imaadp32.acm (Microsoft Corporation)
Drivers32: msacm.imc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\imc32.acm (Intel Corporation)
Drivers32: msacm.l3acm - C:\Program Files\ACE Mega CoDecS Pack\SystemS\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\Program Files\ACE Mega CoDecS Pack\SystemS\lameacm.acm (http://www.mp3dev.org/)
Drivers32: msacm.lhacm - C:\Program Files\ACE Mega CoDecS Pack\SystemS\lhacm.acm (Microsoft Corporation)
Drivers32: msacm.msadpcm - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msadp32.acm (Microsoft Corporation)
Drivers32: msacm.msaudio1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msaud32.acm (Microsoft Corporation)
Drivers32: msacm.msg711 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msg711.acm (Microsoft Corporation)
Drivers32: msacm.msg723 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msg723.acm (Microsoft Corporation)
Drivers32: msacm.msgsm610 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msgsm32.acm (Microsoft Corporation)
Drivers32: msacm.pcdv - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Canopus\pcdv.acm (Canopus Co., Ltd.)
Drivers32: msacm.qmpeg - C:\Program Files\ACE Mega CoDecS Pack\SystemS\QDesign\qmpeg.acm (QDesign Corporation)
Drivers32: msacm.sl_anet - C:\Program Files\ACE Mega CoDecS Pack\SystemS\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\Program Files\ACE Mega CoDecS Pack\SystemS\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.vorbis - C:\Program Files\ACE Mega CoDecS Pack\SystemS\OGG\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: msacm.voxacm160 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\VoxWare\vct3216.acm (Voxware, Inc.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.aas4 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Autodesk\aasc32.dll (Autodesk, Inc.)
Drivers32: vidc.aasc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Autodesk\aasc32.dll (Autodesk, Inc.)
Drivers32: vidc.advj - C:\Program Files\ACE Mega CoDecS Pack\SystemS\avidavicodec.dll (Avid Technology, Inc)
Drivers32: vidc.advs - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Adaptec\dvc.dll (Adaptec)
Drivers32: vidc.aflc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Autodesk\flccodec32.dll (Autodesk, Inc.)
Drivers32: vidc.afli - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Autodesk\flccodec32.dll (Autodesk, Inc.)
Drivers32: vidc.ap41 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32f.dll (Hacked with Joy !)
Drivers32: vidc.asv1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\ASUS\asusasv1.dll ()
Drivers32: vidc.asv2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\ASUS\asusasv2.dll ()
Drivers32: vidc.asvx - C:\Program Files\ACE Mega CoDecS Pack\SystemS\ASUS\asusasv2.dll ()
Drivers32: vidc.avi1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MainConcept\mcmjpg32.dll (MainConcept)
Drivers32: vidc.avi2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MainConcept\mcmjpg32.dll (MainConcept)
Drivers32: vidc.avrn - C:\Program Files\ACE Mega CoDecS Pack\SystemS\avidavicodec.dll (Avid Technology, Inc)
Drivers32: vidc.bt20 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Brooktree\btvvc32.drv (Brooktree Corporation)
Drivers32: vidc.cdvc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Canopus\csccdvc.dll (Canopus Co., Ltd.)
Drivers32: vidc.cram - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msvidc32.dll (Microsoft Corporation)
Drivers32: vidc.cscd - C:\Program Files\ACE Mega CoDecS Pack\SystemS\camcodec.dll (RenderSoft Software.)
Drivers32: vidc.cvid - C:\Program Files\ACE Mega CoDecS Pack\SystemS\iccvid.dll (Compression Technologies, Inc.)
Drivers32: vidc.davc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\dicas\davcvfw.dll (dicas)
Drivers32: vidc.dcap - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pinnacle\mirodv2avi.dll (Pinnacle Systems)
Drivers32: vidc.dcmj - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MainConcept\mcmjpg32.dll (MainConcept)
Drivers32: vidc.ddvc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Canopus\cscdvsd.dll (Canopus Co., Ltd.)
Drivers32: vidc.div3 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32.dll (Hacked with Joy !)
Drivers32: vidc.div4 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32f.dll (Hacked with Joy !)
Drivers32: vidc.div5 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32.dll (Hacked with Joy !)
Drivers32: vidc.div6 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32f.dll (Hacked with Joy !)
Drivers32: vidc.divx - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\DivX520.dll (DivXNetworks, Inc.)
Drivers32: vidc.dmb2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\pmjpeg32.dll (White Pine Software and Paradigm Matrix)
Drivers32: vidc.dv25 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.dv50 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.dvc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MainConcept\mcdvd_32.dll (MainConcept)
Drivers32: vidc.dvcp - C:\Program Files\ACE Mega CoDecS Pack\SystemS\SONY\sonydv.dll (Sony Corporation)
Drivers32: vidc.dvcs - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MainConcept\mcdvd_32.dll (MainConcept)
Drivers32: vidc.dvsd - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MainConcept\mcdvd_32.dll (MainConcept)
Drivers32: vidc.dvx4 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\DivX4.dll (DivXNetworks, Inc.)
Drivers32: vidc.em2v - C:\Program Files\ACE Mega CoDecS Pack\SystemS\etxcodec.dll (Etymonix Inc.)
Drivers32: VIDC.FPS1 - C:\WINDOWS\System32\frapsvid.dll (Beepa P/L)
Drivers32: vidc.frwa - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Forward\frwt.dll (Darim Vision Co.)
Drivers32: vidc.frwd - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Forward\frwd.dll (Darim Vision Co.)
Drivers32: vidc.frwt - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Forward\frwd.dll (Darim Vision Co.)
Drivers32: vidc.frwu - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Forward\frwu.dll (Darim Vision Co.)
Drivers32: vidc.gepj - C:\Program Files\ACE Mega CoDecS Pack\SystemS\pmjpeg32.dll (White Pine Software and Paradigm Matrix)
Drivers32: vidc.glzw - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Gabest\glzw.dll (Gabest)
Drivers32: vidc.gpeg - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Gabest\gpeg.dll (Gabest)
Drivers32: vidc.gpjm - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pinnacle\rtmjpgcdc.dll (Pinnacle Systems)
Drivers32: vidc.hfyu - C:\Program Files\ACE Mega CoDecS Pack\SystemS\huffyuv.dll (Disappearing Inc.)
Drivers32: vidc.i263 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\i263_32.drv (Intel Corporation)
Drivers32: vidc.i420 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msh263.drv (Microsoft Corporation)
Drivers32: vidc.ipdv - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Panasonic\idvcodec.dll (Matsushita Electric Industrial Co., Ltd. I-O DATA DEVICE,INC.)
Drivers32: vidc.ir21 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir21_r.dll ()
Drivers32: vidc.iv30 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv31 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv33 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv34 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv35 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv36 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv37 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv38 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv39 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv40 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv41 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv42 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv43 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv44 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv45 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv46 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv47 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv48 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv49 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv50 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir50_32.dll (Intel Corporation)
Drivers32: vidc.iyuv - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\iyuv_32.dll (Microsoft Corporation)
Drivers32: vidc.lead - C:\Program Files\ACE Mega CoDecS Pack\SystemS\LEAD\lcodccmp.dll (LEAD Technologies, Inc.)
Drivers32: vidc.m261 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msh261.drv (Microsoft Corporation)
Drivers32: vidc.m263 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msh263.drv (Microsoft Corporation)
Drivers32: vidc.miro - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pinnacle\mirodv2avi.dll (Pinnacle Systems)
Drivers32: vidc.mjpa - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pinnacle\rtmjpgcdc.dll (Pinnacle Systems)
Drivers32: vidc.mjpx - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pegasus\pvmjpg21.dll (Pegasus Imaging Corporation)
Drivers32: vidc.mkvc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\kmvidc32.dll ()
Drivers32: vidc.mmes - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mmjp - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mp41 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\mpg4c32.dll ()
Drivers32: vidc.mp42 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\mpg4c32.dll ()
Drivers32: vidc.mp43 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\mpg4c32.dll ()
Drivers32: vidc.mp4s - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\mpg4c32.dll ()
Drivers32: vidc.mp4v - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\mpg4c32.dll ()
Drivers32: vidc.mpg3 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32.dll (Hacked with Joy !)
Drivers32: vidc.mpg4 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\mpg4c32.dll ()
Drivers32: vidc.mrle - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msrle32.dll (Microsoft Corporation)
Drivers32: vidc.msmc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.msvc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msvidc32.dll (Microsoft Corporation)
Drivers32: vidc.mszh - C:\Program Files\ACE Mega CoDecS Pack\SystemS\avimszh.dll ()
Drivers32: vidc.mtx1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx3 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx4 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx5 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx6 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx7 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx8 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx9 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mwv1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Aware\icmw_32.dll (Aware Inc.)
Drivers32: vidc.nt00 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Newtek\ntcodec.dll (NewTek, Inc)
Drivers32: vidc.pdvc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Panasonic\idvcodec.dll (Matsushita Electric Industrial Co., Ltd. I-O DATA DEVICE,INC.)
Drivers32: vidc.pim1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pinnacle\pclepim1.dll (Pinnacle Systems)
Drivers32: vidc.pimj - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pegasus\pvljpg20.dll (Pegasus Imaging Corporation)
Drivers32: vidc.png1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Core\CorePNG_vfw.dll ()
Drivers32: vidc.pvw2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pegasus\pvwv220.dll (Pegasus Imaging Corporation)
Drivers32: vidc.q1.0 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\qpeg32.dll (Q-Team Dr. Knabe GmbH, Korschenbroich, Germany)
Drivers32: vidc.qpeg - C:\Program Files\ACE Mega CoDecS Pack\SystemS\qpeg32.dll (Q-Team Dr. Knabe GmbH, Korschenbroich, Germany)
Drivers32: vidc.rmp4 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\REALmagic\rmp4.dll ()
Drivers32: vidc.rt21 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir21_r.dll ()
Drivers32: vidc.rud0 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Rududu\rududu.dll (nico)
Drivers32: vidc.s422 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Tekram\tekyuv.dll ()
Drivers32: vidc.sjpg - C:\Program Files\ACE Mega CoDecS Pack\SystemS\pmjpeg32.dll (White Pine Software and Paradigm Matrix)
Drivers32: vidc.sony - C:\Program Files\ACE Mega CoDecS Pack\SystemS\SONY\sonydv.dll (Sony Corporation)
Drivers32: vidc.t420 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Toshiba\tsbyuv.dll (Microsoft Corporation)
Drivers32: vidc.tscc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\tsccvid.dll (TechSmith Corporation)
Drivers32: vidc.uyvy - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.vcr1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\ATI\ativcr1.dll (ATI Technologies, Inc.)
Drivers32: vidc.vcr2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\ATI\ativcr2.dll (ATI Technologies, Inc.)
Drivers32: vidc.vifp - C:\Program Files\ACE Mega CoDecS Pack\SystemS\vfcodec.dll ()
Drivers32: vidc.vixl - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MIRO\miroxl32.dll (Pinnacle Systems)
Drivers32: vidc.vp30 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\On2 Technologies\vp31vfw.dll (On2.com)
Drivers32: vidc.vp31 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\On2 Technologies\vp31vfw.dll (On2.com)
Drivers32: vidc.vp60 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\On2 Technologies\vp6vfw.dll (On2.com)
Drivers32: vidc.vp61 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\On2 Technologies\vp6vfw.dll (On2.com)
Drivers32: vidc.vssv - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Vanguard Software Sollutions\vsscodec.dll (Vanguard Software Solutions, Inc.)
Drivers32: vidc.wmv3 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\wmv9vcm.dll (Microsoft Corporation)
Drivers32: vidc.wnv1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\wnvplay1.dll (Winnov)
Drivers32: vidc.wrpr - C:\Program Files\ACE Mega CoDecS Pack\SystemS\aviwrap.dll ()
Drivers32: vidc.xvid - C:\Program Files\ACE Mega CoDecS Pack\SystemS\XviD\xvidvfw.dll ()
Drivers32: vidc.y411 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Toshiba\tsbyuv.dll (Microsoft Corporation)
Drivers32: vidc.y41p - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Brooktree\btvvc32.drv (Brooktree Corporation)
Drivers32: vidc.yuy2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: vidc.yvu9 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\iyvu9_32.dll ()
Drivers32: vidc.yvyu - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.zlib - C:\Program Files\ACE Mega CoDecS Pack\SystemS\avizlib.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 7 Days ==========

File not found -- C:\Documents and Settings\uživatel\Plocha\CARMI13R.
[2011.11.16 16:44:25 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\uživatel\Plocha\OTL.exe
[2011.11.16 15:47:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\RazorDOX
[2011.11.16 14:52:27 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011.11.16 14:27:11 | 000,457,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2011.11.16 14:22:41 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011.11.16 14:09:49 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011.11.16 14:09:49 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011.11.16 14:09:49 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011.11.16 14:09:49 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011.11.16 14:09:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011.11.16 14:07:42 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011.11.15 13:23:13 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.11.14 20:00:26 | 000,000,000 | ---D | C] -- C:\rsit
[2011.11.14 19:53:10 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\uživatel\Recent
[2011.11.14 19:24:37 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\uživatel\Local Settings\Data aplikací\46c59570
[2011.11.14 19:12:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Data aplikací\Avnex
[2011.11.14 19:06:30 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys
[2011.11.14 19:06:29 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2011.11.14 19:06:28 | 000,048,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\stream.sys
[2011.11.14 19:06:28 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2011.11.14 19:06:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Nabídka Start\Programy\Voice Changer Software DIAMOND
[2011.11.14 19:05:37 | 000,017,792 | ---- | C] (Avnex) -- C:\WINDOWS\System32\drivers\vcsvad.sys
[2011.11.10 18:48:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Local Settings\Data aplikací\CrashRpt
[2011.08.26 09:28:13 | 003,325,832 | ---- | C] (Ask) -- C:\Program Files\Common Files\APNToolbarInstaller.exe
[2011.08.26 09:28:13 | 000,108,424 | ---- | C] (Ask.com) -- C:\Program Files\Common Files\APNStub.exe
[2008.09.18 14:42:25 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\uživatel\Data aplikací\pcouffin.sys
[2008.04.15 16:16:58 | 000,140,800 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\xmasbus.sys
[2008.04.15 16:16:58 | 000,005,504 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\xmasscsi.sys
[4 C:\Documents and Settings\uživatel\Plocha\*.tmp files -> C:\Documents and Settings\uživatel\Plocha\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[141 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

File not found -- C:\Documents and Settings\uživatel\Plocha\CARMI13R.
[2011.11.16 17:07:00 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.11.16 17:06:47 | 000,000,558 | ---- | M] () -- C:\WINDOWS\DFC.INI
[2011.11.16 17:01:33 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.11.16 17:01:26 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.11.16 16:44:28 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\uživatel\Plocha\OTL.exe
[2011.11.16 16:10:23 | 000,211,456 | ---- | M] () -- C:\Documents and Settings\uživatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.11.16 14:42:05 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011.11.16 14:34:49 | 000,566,142 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011.11.16 14:34:49 | 000,558,112 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2011.11.16 14:34:49 | 000,134,738 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2011.11.16 14:34:49 | 000,113,560 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011.11.16 14:22:50 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2011.11.15 13:29:27 | 000,000,552 | ---- | M] () -- C:\WINDOWS\System32\d3d8caps.dat
[2011.11.14 19:38:09 | 025,147,432 | ---- | M] () -- C:\Documents and Settings\uživatel\Plocha\Trucky-na-ledě-3.serie-6.díl.avi
[2011.11.14 19:36:00 | 000,000,944 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.11.13 21:49:46 | 369,108,992 | ---- | M] () -- C:\Documents and Settings\uživatel\Plocha\Trucky-na-ledě-3.serie-5.díl.avi
[2011.11.13 14:24:39 | 590,984,210 | ---- | M] () -- C:\Documents and Settings\uživatel\Plocha\counter-strike-source-texture-pack.rar
[2011.11.12 10:36:57 | 000,001,819 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2011.11.10 18:48:47 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\steam_md4.dat
[4 C:\Documents and Settings\uživatel\Plocha\*.tmp files -> C:\Documents and Settings\uživatel\Plocha\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[141 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.11.16 14:22:50 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2011.11.16 14:22:45 | 000,261,312 | RHS- | C] () -- C:\cmldr
[2011.11.16 14:09:49 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2011.11.16 14:09:49 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2011.11.16 14:09:49 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2011.11.16 14:09:49 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2011.11.16 14:09:49 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2011.11.15 19:40:19 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.11.15 13:29:27 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2011.11.14 19:38:09 | 025,147,432 | ---- | C] () -- C:\Documents and Settings\uživatel\Plocha\Trucky-na-ledě-3.serie-6.díl.avi
[2011.11.13 20:27:01 | 369,108,992 | ---- | C] () -- C:\Documents and Settings\uživatel\Plocha\Trucky-na-ledě-3.serie-5.díl.avi
[2011.11.13 12:54:13 | 590,984,210 | ---- | C] () -- C:\Documents and Settings\uživatel\Plocha\counter-strike-source-texture-pack.rar
[2011.11.10 18:48:47 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\uživatel\Data aplikací\steam_md4.dat
[2011.09.22 17:35:10 | 000,000,464 | ---- | C] () -- C:\Documents and Settings\uživatel\Data aplikací\AutoGK.ini
[2011.08.26 09:28:13 | 000,444,283 | ---- | C] () -- C:\Program Files\Common Files\WinPcapNmap.exe
[2011.07.02 10:04:49 | 000,000,014 | ---- | C] () -- C:\WINDOWS\System32\SystemInfo32.sys
[2011.06.16 21:00:31 | 000,000,281 | ---- | C] () -- C:\WINDOWS\EReg072.dat
[2011.06.10 11:36:25 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011.04.14 21:18:34 | 000,000,702 | ---- | C] () -- C:\WINDOWS\mmtvmj.ini
[2011.04.14 21:18:33 | 000,000,761 | ---- | C] () -- C:\WINDOWS\m3jp2k.ini
[2011.04.14 21:18:33 | 000,000,714 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini
[2011.04.14 21:18:29 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll
[2011.04.14 21:18:26 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011.01.20 00:00:03 | 000,912,968 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2011.01.15 12:45:12 | 000,024,576 | ---- | C] () -- C:\WINDOWS\UniFISH.exe
[2010.12.05 12:49:35 | 000,000,394 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2010.10.13 16:53:58 | 000,000,037 | ---- | C] () -- C:\WINDOWS\Viewer.ini
[2010.08.29 13:31:28 | 000,232,968 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2010.08.29 13:31:26 | 000,232,968 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2010.08.29 13:31:26 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2010.08.29 13:30:12 | 002,195,030 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2010.04.03 13:52:38 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
[2010.04.02 17:17:34 | 000,179,091 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2010.02.01 17:27:26 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009.12.29 18:14:46 | 000,000,059 | ---- | C] () -- C:\WINDOWS\LTRDF14N.INI
[2009.12.29 13:21:23 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009.12.07 22:35:25 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2009.11.02 18:42:52 | 000,000,532 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
[2009.08.01 03:26:39 | 000,138,464 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.08.01 03:26:21 | 000,111,928 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2009.08.01 03:26:16 | 000,066,872 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2009.08.01 03:26:15 | 002,250,024 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe
[2009.08.01 01:25:44 | 000,279,712 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2009.08.01 01:25:44 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2009.07.08 16:33:38 | 000,014,848 | ---- | C] () -- C:\WINDOWS\System32\drivers\gHidPnp.sys
[2009.07.08 16:33:38 | 000,009,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\gMouUsb.sys
[2009.05.27 16:26:19 | 000,000,447 | ---- | C] () -- C:\WINDOWS\ff.INI
[2009.05.11 11:03:46 | 000,000,083 | ---- | C] () -- C:\WINDOWS\wwp.INI
[2009.04.23 18:49:05 | 000,000,023 | ---- | C] () -- C:\WINDOWS\BlendSettings.ini
[2009.01.15 16:28:16 | 000,000,030 | ---- | C] () -- C:\WINDOWS\System32\winitn.dll
[2009.01.15 16:28:10 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2009.01.04 17:23:15 | 000,000,240 | ---- | C] () -- C:\WINDOWS\IfoEdit.INI
[2009.01.04 16:16:54 | 000,000,133 | ---- | C] () -- C:\WINDOWS\VobEdit.INI
[2009.01.03 18:44:07 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\uživatel\Data aplikací\PnkBstrK.sys
[2008.12.21 14:20:01 | 000,000,048 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2008.12.02 10:58:31 | 000,491,520 | ---- | C] () -- C:\WINDOWS\WebIE.dll
[2008.12.02 10:58:07 | 000,000,047 | ---- | C] () -- C:\WINDOWS\WTRDCTM.INI
[2008.12.02 10:57:12 | 000,516,096 | ---- | C] () -- C:\WINDOWS\UN32.EXE
[2008.12.02 10:57:12 | 000,003,957 | ---- | C] () -- C:\WINDOWS\UN32P.INI
[2008.12.02 10:56:27 | 000,001,788 | ---- | C] () -- C:\WINDOWS\MAILTRAN.INI
[2008.12.02 10:56:26 | 000,002,510 | ---- | C] () -- C:\WINDOWS\TRNCOM.INI
[2008.12.02 10:56:18 | 000,004,192 | ---- | C] () -- C:\WINDOWS\WTRAN32.INI
[2008.12.02 10:56:18 | 000,001,873 | ---- | C] () -- C:\WINDOWS\WDICT32.INI
[2008.11.27 22:04:10 | 000,000,323 | ---- | C] () -- C:\WINDOWS\System32\Remover.ini
[2008.11.27 22:04:05 | 000,000,566 | ---- | C] () -- C:\WINDOWS\System32\SP7302.INI
[2008.11.27 17:55:28 | 000,000,620 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2008.11.17 18:02:28 | 000,000,525 | ---- | C] () -- C:\WINDOWS\QIII.INI
[2008.10.05 19:59:37 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\CNMVS7K.DLL
[2008.09.18 14:42:25 | 000,081,920 | ---- | C] () -- C:\Documents and Settings\uživatel\Data aplikací\ezpinst.exe
[2008.09.18 14:42:25 | 000,007,176 | ---- | C] () -- C:\Documents and Settings\uživatel\Data aplikací\pcouffin.cat
[2008.09.18 14:42:25 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\uživatel\Data aplikací\pcouffin.inf
[2008.09.17 12:01:16 | 002,392,064 | ---- | C] () -- C:\WINDOWS\System32\videotrans.dll
[2008.09.17 12:01:16 | 000,215,040 | ---- | C] () -- C:\WINDOWS\System32\videoformat.dll
[2008.09.17 12:01:16 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\imgscaler.dll
[2008.09.17 12:01:16 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\img_utils.dll
[2008.08.08 17:43:02 | 000,000,035 | ---- | C] () -- C:\WINDOWS\Worldbuilder.INI
[2008.07.19 01:54:27 | 000,000,066 | ---- | C] () -- C:\WINDOWS\Power Video Converter.INI
[2008.07.14 13:11:30 | 000,001,290 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2008.06.29 10:47:15 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2008.06.27 18:15:12 | 000,225,280 | R--- | C] () -- C:\WINDOWS\USB3220phmgunin.exe
[2008.06.16 18:47:28 | 000,163,712 | ---- | C] () -- C:\WINDOWS\System32\drivers\vidstub.sys
[2008.05.29 13:00:07 | 000,000,218 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2008.04.30 20:01:49 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2008.04.21 21:22:25 | 000,003,994 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2008.04.15 18:54:32 | 000,000,072 | ---- | C] () -- C:\WINDOWS\MediaManager.INI
[2008.04.11 16:58:20 | 000,000,064 | ---- | C] () -- C:\WINDOWS\AVerText.ini
[2008.04.09 13:51:35 | 000,135,168 | R--- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2008.04.09 13:37:55 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\ezsid.dat
[2008.04.08 21:19:17 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008.04.08 19:20:27 | 000,000,068 | ---- | C] () -- C:\WINDOWS\IDMan.INI
[2008.04.08 17:47:53 | 000,138,624 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2008.04.08 17:24:40 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008.04.08 17:17:50 | 000,211,456 | ---- | C] () -- C:\Documents and Settings\uživatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.04.04 16:27:24 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008.04.04 16:26:29 | 000,282,928 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008.04.04 15:20:31 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2008.04.04 15:20:26 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\34CoInstaller.dll
[2008.04.04 15:20:01 | 000,003,456 | R--- | C] () -- C:\WINDOWS\System32\AVerIO.sys
[2008.04.04 15:20:00 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\AVerIO.dll
[2008.04.04 15:19:57 | 000,262,144 | R--- | C] () -- C:\WINDOWS\System32\sptlib01.dll
[2008.04.04 15:19:57 | 000,249,856 | R--- | C] () -- C:\WINDOWS\System32\sptlib02.dll
[2008.04.04 14:59:32 | 000,000,558 | ---- | C] () -- C:\WINDOWS\DFC.INI
[2008.04.04 14:54:51 | 000,040,960 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2008.04.04 14:50:23 | 000,004,991 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2008.04.04 14:50:22 | 000,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2008.04.04 14:46:23 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2008.04.04 14:43:16 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2007.11.28 09:45:31 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006.03.06 09:41:02 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\AMV_DecDLL.dll
[2006.03.02 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2006.03.02 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2006.03.02 13:00:00 | 000,566,142 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2006.03.02 13:00:00 | 000,558,112 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2006.03.02 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2006.03.02 13:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2006.03.02 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2006.03.02 13:00:00 | 000,134,738 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2006.03.02 13:00:00 | 000,113,560 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2006.03.02 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2006.03.02 13:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2006.03.02 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2006.03.02 13:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2006.03.02 13:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2006.03.02 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2006.03.02 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2005.10.14 10:56:50 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2005.10.14 10:56:50 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2005.10.14 10:56:50 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2005.10.14 10:56:50 | 000,128,512 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005.10.14 10:56:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2004.09.16 12:26:40 | 000,012,634 | ---- | C] () -- C:\WINDOWS\System32\drivers\ADFUUD.SYS
[2003.04.09 14:38:04 | 000,005,664 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002.10.15 23:54:04 | 000,152,064 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[1997.06.14 01:56:08 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll
[1996.04.03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

========== LOP Check ==========

[2011.02.12 16:05:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AlawarWrapper
[2010.04.28 09:26:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2011.09.22 10:06:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Babylon
[2011.02.20 20:02:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Bluetooth
[2009.11.02 17:01:04 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonBJ
[2010.08.03 14:34:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2011.07.02 10:04:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DVD X Studios
[2011.10.14 11:22:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Iceni
[2010.01.01 02:15:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2010.12.24 20:49:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\KONAMI
[2008.04.08 17:02:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\LightScribe
[2008.07.21 21:31:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MSScanAppDataDir
[2009.09.23 15:46:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MumboJumbo
[2010.01.01 02:18:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2009.12.29 18:14:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PCStitch 9
[2008.08.08 19:11:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SlySoft
[2011.11.07 08:38:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
[2009.11.03 18:37:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SSScanAppDataDir
[2009.11.02 18:42:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SSScanWizard
[2009.05.28 15:21:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2009.11.17 20:39:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\VOWSoft
[2011.09.08 15:02:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Data aplikací\Canon
[2011.06.27 12:46:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Data aplikací\Opera
[2011.07.05 13:26:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Data aplikací\SodaBush
[2011.09.06 17:53:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Data aplikací\uTorrent
[2010.11.14 20:01:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\.simpleplainnote
[2009.11.17 20:20:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\avidemux
[2011.11.14 19:12:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Avnex
[2011.09.22 10:06:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Babylon
[2011.09.22 10:09:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\BabylonToolbar
[2010.03.30 15:55:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\BITS
[2010.04.25 14:56:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\BitTorrent
[2011.10.31 19:45:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Canon
[2008.05.29 19:48:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\COWON
[2011.11.16 16:44:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\DMCache
[2010.10.28 17:28:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\GrabPro
[2011.08.26 22:57:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\HLSW
[2008.07.05 19:33:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\ICQLite
[2008.09.12 10:58:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\IDM
[2009.08.18 21:34:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Leadertech
[2008.10.22 15:45:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\MetaProducts
[2008.06.27 18:14:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\MobileAction
[2010.01.01 02:18:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Nokia
[2008.05.27 20:08:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Notepad++
[2009.03.31 19:02:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Opera
[2011.10.09 18:33:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Orbit
[2010.12.02 19:44:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\PCStitch Pro
[2009.01.04 15:42:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Pegasys Inc
[2010.09.22 19:46:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Sachy
[2009.11.02 18:42:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\ScanSoft
[2011.01.17 18:13:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\SodaBush
[2008.10.13 09:56:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Student dog
[2009.09.25 19:24:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\TeamViewer
[2009.12.07 22:41:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Teleca
[2011.09.13 22:49:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\uTorrent
[2011.08.26 09:28:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\VDownloader
[2010.09.27 18:06:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\VitySoft
[2008.09.18 14:42:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Vso
[2010.11.14 19:57:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\XemiComputers

========== Purity Check ==========



========== Custom Scans ==========

[Massa]

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}" = "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" -- [2007.06.27 18:03:40 | 000,152,872 | ---- | M] (Nero AG)
"LightScribe Control Panel" = C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden -- [2007.08.23 16:36:30 | 000,455,968 | ---- | M] (Hewlett-Packard Company)
"Net Activity Diagram" = C:\Programy\Net Activity Diagram\nad.exe -- [2008.10.22 15:46:23 | 001,036,804 | ---- | M] (MetaProducts corp)
"Seznam Postak" = "C:\Program Files\Seznam.cz\postak.exe" -s -- [2010.10.07 14:55:06 | 000,488,728 | ---- | M] ()
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 04:22:17 | 000,015,360 | ---- | M] (Microsoft Corporation)

< >


< MD5 for: ACPI.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:acpi.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:acpi.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:acpi.sys
[2008.04.14 03:05:40 | 000,188,288 | ---- | M] (Microsoft Corporation) MD5=4FE34F1F3126B61FCC6B2043AA8112C9 -- C:\WINDOWS\ServicePackFiles\i386\acpi.sys
[2008.04.14 03:05:40 | 000,188,288 | ---- | M] (Microsoft Corporation) MD5=4FE34F1F3126B61FCC6B2043AA8112C9 -- C:\WINDOWS\system32\drivers\acpi.sys
[2006.03.02 13:00:00 | 000,188,288 | ---- | M] (Microsoft Corporation) MD5=FA2FBCDA96D2385F773B059FE5A125A6 -- C:\WINDOWS\$NtServicePackUninstall$\acpi.sys

< MD5 for: AGP440.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ERDNT\cache\agp440.sys
[2008.04.13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

< MD5 for: ATAPI.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2006.03.02 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\i386\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2006.03.02 13:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006.03.02 13:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: CMD.EXE >
[2006.03.02 13:00:00 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=4E5BE66CD70D52637589E9C3E2C1696D -- C:\WINDOWS\$NtServicePackUninstall$\cmd.exe
[2008.04.14 04:22:15 | 000,390,144 | ---- | M] (Microsoft Corporation) MD5=58A4129B7AB2CF2E7F00256F7EDAEAC2 -- C:\WINDOWS\ServicePackFiles\i386\cmd.exe
[2008.04.14 04:22:15 | 000,390,144 | ---- | M] (Microsoft Corporation) MD5=58A4129B7AB2CF2E7F00256F7EDAEAC2 -- C:\WINDOWS\system32\cmd.exe

< MD5 for: CRYPTSVC.DLL >
[2006.03.02 13:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 04:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ERDNT\cache\cryptsvc.dll
[2008.04.14 04:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 04:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll

< MD5 for: CSRSS.EXE >
[2006.03.02 13:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=490E6E57E54FAF5F23F658EA188405A1 -- C:\WINDOWS\$NtServicePackUninstall$\csrss.exe
[2008.04.14 04:22:17 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=628CE66E3FD35BFC7969DBAC245DC069 -- C:\WINDOWS\ServicePackFiles\i386\csrss.exe
[2008.04.14 04:22:17 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=628CE66E3FD35BFC7969DBAC245DC069 -- C:\WINDOWS\system32\csrss.exe

< MD5 for: EVENTLOG.DLL >
[2008.04.14 04:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2008.04.14 04:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 04:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2006.03.02 13:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2006.03.02 13:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
[2007.06.13 14:11:59 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=9B32416BD5988C97B6397CE0B02CAF97 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007.06.13 14:23:39 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=ED7B460B142A32097B8A8F6ECC941815 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: FASTFAT.SYS >
[2006.03.02 13:00:00 | 000,143,360 | ---- | M] (Microsoft Corporation) MD5=3117F595E9615E04F05A54FC15A03B20 -- C:\WINDOWS\$NtServicePackUninstall$\fastfat.sys
[2008.04.13 20:14:29 | 000,143,744 | ---- | M] (Microsoft Corporation) MD5=38D332A6D56AF32635675F132548343E -- C:\WINDOWS\ServicePackFiles\i386\fastfat.sys
[2008.04.13 20:14:29 | 000,143,744 | ---- | M] (Microsoft Corporation) MD5=38D332A6D56AF32635675F132548343E -- C:\WINDOWS\system32\drivers\fastfat.sys

< MD5 for: HAL.DLL >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 19:31:28 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 19:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2006.03.02 13:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: CHANGER.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 19:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys

< MD5 for: I8042PRT.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:i8042prt.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:i8042prt.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:i8042prt.sys
[2006.03.02 13:00:00 | 000,052,352 | ---- | M] (Microsoft Corporation) MD5=0F42DE9909B5DBF2C48DD1A79D491AF5 -- C:\WINDOWS\$NtServicePackUninstall$\i8042prt.sys
[2008.04.14 03:21:15 | 000,052,096 | ---- | M] (Microsoft Corporation) MD5=C528E27945367191E7BAE364930B6932 -- C:\WINDOWS\ServicePackFiles\i386\i8042prt.sys
[2008.04.14 03:21:15 | 000,052,096 | ---- | M] (Microsoft Corporation) MD5=C528E27945367191E7BAE364930B6932 -- C:\WINDOWS\system32\drivers\i8042prt.sys

< MD5 for: ISAPNP.SYS >
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2001.10.24 10:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2006.03.02 13:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\ReinstallBackups\0003\DriverFiles\i386\isapnp.sys
[2008.04.14 03:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 04:27:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\dllcache\isapnp.sys
[2008.04.14 04:27:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys

< MD5 for: KBDCLASS.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:kbdclass.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:kbdclass.sys
[2008.10.12 10:12:05 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:kbdclass.sys
[2008.04.14 03:29:06 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=1B6162FE7F66B1A71A4B70F941C4AA9B -- C:\WINDOWS\ERDNT\cache\kbdclass.sys
[2008.04.14 03:29:06 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=1B6162FE7F66B1A71A4B70F941C4AA9B -- C:\WINDOWS\ServicePackFiles\i386\kbdclass.sys
[2008.04.14 03:29:06 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=1B6162FE7F66B1A71A4B70F941C4AA9B -- C:\WINDOWS\system32\drivers\kbdclass.sys
[2006.03.02 13:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=6F877BF8DC01A550CD666F3BEDB2213C -- C:\WINDOWS\$NtServicePackUninstall$\kbdclass.sys

< MD5 for: LSASS.EXE >
[2006.03.02 13:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 04:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ERDNT\cache\lsass.exe
[2008.04.14 04:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 04:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2008.04.13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2006.03.02 13:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

< MD5 for: NETLOGON.DLL >
[2006.03.02 13:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 04:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2008.04.14 04:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 04:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: NTFS.SYS >
[2007.02.09 12:23:36 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=05AB81909514BFD69CBB1F2C147CF6B9 -- C:\WINDOWS\$hf_mig$\KB930916\SP2QFE\ntfs.sys
[2007.02.09 12:10:35 | 000,574,464 | ---- | M] (Microsoft Corporation) MD5=19A811EF5F1ED5C926A028CE107FF1AF -- C:\WINDOWS\$NtServicePackUninstall$\ntfs.sys
[2008.04.13 20:15:53 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\ERDNT\cache\ntfs.sys
[2008.04.13 20:15:53 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\ServicePackFiles\i386\ntfs.sys
[2008.04.13 20:15:53 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\system32\drivers\ntfs.sys
[2004.08.03 23:15:10 | 000,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\cmdcons\NTFS.SYS
[2006.03.02 13:00:00 | 000,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\WINDOWS\$NtUninstallKB930916$\ntfs.sys

< MD5 for: REGEDIT.EXE >
[2006.03.02 13:00:00 | 000,147,968 | ---- | M] (Microsoft Corporation) MD5=CB5A91928D94224E7E30EE277B45E8A3 -- C:\WINDOWS\$NtServicePackUninstall$\regedit.exe
[2008.04.14 04:22:42 | 000,147,968 | ---- | M] (Microsoft Corporation) MD5=FDEB1D02CAE38665CBF114F44E6B997E -- C:\WINDOWS\ERDNT\cache\regedit.exe
[2008.04.14 04:22:42 | 000,147,968 | ---- | M] (Microsoft Corporation) MD5=FDEB1D02CAE38665CBF114F44E6B997E -- C:\WINDOWS\regedit.exe
[2008.04.14 04:22:42 | 000,147,968 | ---- | M] (Microsoft Corporation) MD5=FDEB1D02CAE38665CBF114F44E6B997E -- C:\WINDOWS\ServicePackFiles\i386\regedit.exe

< MD5 for: SCECLI.DLL >
[2006.03.02 13:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SERVICES.EXE >
[2009.02.09 12:18:56 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=3D107D45CCFDB266E91D84B52CD7F430 -- C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\services.exe
[2006.03.02 13:00:00 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=6E401E61F952FBBF708AFBECEFAFAE81 -- C:\WINDOWS\$NtServicePackUninstall$\services.exe
[2009.02.09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\ERDNT\cache\services.exe
[2009.02.09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\system32\dllcache\services.exe
[2009.02.09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\system32\services.exe
[2008.04.14 04:22:45 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=F0D2AE69035092BF22DAD6B50FAB85C2 -- C:\WINDOWS\$NtUninstallKB956572$\services.exe
[2008.04.14 04:22:45 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=F0D2AE69035092BF22DAD6B50FAB85C2 -- C:\WINDOWS\ServicePackFiles\i386\services.exe

< MD5 for: SMSS.EXE >
[2006.03.02 13:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2004.08.17 15:49:28 | 000,164,864 | ---- | M] (Microsoft Corporation) MD5=3C100B7FDB179B63829103DF6541337F -- C:\cmdcons\SYSTEM32\SMSS.EXE
[2008.04.14 04:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 04:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe

< MD5 for: SPOOLSV.EXE >
[2006.03.02 13:00:00 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=21B6FAA88044A41640E03EBB68BE93E8 -- C:\WINDOWS\$NtUninstallKB896423$\spoolsv.exe
[2010.08.17 14:19:36 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=258DD5D4283FD9F9A7166BE9AE45CE73 -- C:\WINDOWS\$hf_mig$\KB2347290\SP3QFE\spoolsv.exe
[2010.08.17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=60784F891563FB1B767F70117FC2428F -- C:\WINDOWS\ERDNT\cache\spoolsv.exe
[2010.08.17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=60784F891563FB1B767F70117FC2428F -- C:\WINDOWS\system32\dllcache\spoolsv.exe
[2010.08.17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=60784F891563FB1B767F70117FC2428F -- C:\WINDOWS\system32\spoolsv.exe
[2005.06.11 01:17:13 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=AD3D9D191AEA7B5445FE1D82FFBB4788 -- C:\WINDOWS\$hf_mig$\KB896423\SP2QFE\spoolsv.exe
[2008.04.14 04:22:48 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=CB1090BCA0E7B40D0B5B4E4D66531809 -- C:\WINDOWS\$NtUninstallKB2347290$\spoolsv.exe
[2008.04.14 04:22:48 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=CB1090BCA0E7B40D0B5B4E4D66531809 -- C:\WINDOWS\ServicePackFiles\i386\spoolsv.exe
[2005.06.11 00:53:32 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=DA81EC57ACD4CDC3D4C51CF3D409AF9F -- C:\WINDOWS\$NtServicePackUninstall$\spoolsv.exe

< MD5 for: SVCHOST.EXE >
[2008.04.14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2008.04.14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2006.03.02 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.06.20 11:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2007.10.30 17:53:32 | 000,360,832 | ---- | M] (Microsoft Corporation) MD5=64798ECFA43D78C7178375FCDD16D8C8 -- C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys
[2008.06.20 11:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2007.10.30 18:20:55 | 000,360,064 | ---- | M] (Microsoft Corporation) MD5=90CAFF4B094573449A0872A0F919B178 -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008.04.13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\ERDNT\cache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2006.03.02 13:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB941644$\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys

< MD5 for: USER32.DLL >
[2006.03.02 13:00:00 | 000,577,024 | ---- | M] (Microsoft Corporation) MD5=1B4CCC59980DA34E75F20E42B283B027 -- C:\WINDOWS\$NtUninstallKB890859$\user32.dll
[2005.03.02 19:21:07 | 000,577,024 | ---- | M] (Microsoft Corporation) MD5=3EF380290CE2CA8598E475CEAC4ADB13 -- C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\user32.dll
[2007.03.08 16:38:40 | 000,577,536 | ---- | M] (Microsoft Corporation) MD5=43240B12D220F30C7C75EA69B2E806B0 -- C:\WINDOWS\$NtServicePackUninstall$\user32.dll
[2007.03.08 16:51:38 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=5393076FDCD6DAEB82814688DDE3E9A2 -- C:\WINDOWS\$hf_mig$\KB925902\SP2QFE\user32.dll
[2005.03.02 19:18:13 | 000,577,024 | ---- | M] (Microsoft Corporation) MD5=9267BC598E271BC3FA69F36CF1C8BD36 -- C:\WINDOWS\$NtUninstallKB925902$\user32.dll
[2008.04.14 04:22:04 | 000,578,560 | ---- | M] (Microsoft Corporation) MD5=E16E0990967374E76F3E40CACAFD3D53 -- C:\WINDOWS\ERDNT\cache\user32.dll
[2008.04.14 04:22:04 | 000,578,560 | ---- | M] (Microsoft Corporation) MD5=E16E0990967374E76F3E40CACAFD3D53 -- C:\WINDOWS\ServicePackFiles\i386\user32.dll
[2008.04.14 04:22:04 | 000,578,560 | ---- | M] (Microsoft Corporation) MD5=E16E0990967374E76F3E40CACAFD3D53 -- C:\WINDOWS\system32\user32.dll

< MD5 for: USERINIT.EXE >
[2008.04.14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2008.04.14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2006.03.02 13:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WIN32K.SYS >
[2009.04.19 20:52:07 | 001,847,168 | ---- | M] (Microsoft Corporation) MD5=0E523CA1CDAC4AA36CD797B5564AB661 -- C:\WINDOWS\$NtUninstallKB969947$\win32k.sys
[2005.03.02 19:14:22 | 001,836,288 | ---- | M] (Microsoft Corporation) MD5=0FBAA9C77453958727A917018574817E -- C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\win32k.sys
[2009.02.09 15:07:41 | 001,846,784 | ---- | M] (Microsoft Corporation) MD5=14E172AE4B8086CE6208FE62514A6727 -- C:\WINDOWS\$NtUninstallKB968537$\win32k.sys
[2008.04.14 03:15:34 | 001,845,632 | ---- | M] (Microsoft Corporation) MD5=16AA352EC7D8E6D9DE50265BF0F9E016 -- C:\WINDOWS\$NtUninstallKB954211$\win32k.sys
[2008.04.14 03:15:34 | 001,845,632 | ---- | M] (Microsoft Corporation) MD5=16AA352EC7D8E6D9DE50265BF0F9E016 -- C:\WINDOWS\ServicePackFiles\i386\win32k.sys
[2010.06.24 22:30:08 | 001,861,120 | ---- | M] (Microsoft Corporation) MD5=1D6A389B0152D2164343731F4151079F -- C:\WINDOWS\$hf_mig$\KB2160329\SP3QFE\win32k.sys
[2010.09.01 08:57:41 | 001,852,800 | ---- | M] (Microsoft Corporation) MD5=21171C673C110D875FE031908409FE23 -- C:\WINDOWS\$NtUninstallKB2436673$\win32k.sys
[2010.06.24 10:02:48 | 001,851,904 | ---- | M] (Microsoft Corporation) MD5=21A48AA96D99AEF0193526F5E762E21B -- C:\WINDOWS\$NtUninstallKB981957$\win32k.sys
[2008.09.15 16:21:44 | 001,847,040 | ---- | M] (Microsoft Corporation) MD5=43021D856B8CCB345777FA3B7149708F -- C:\WINDOWS\$hf_mig$\KB954211\SP3QFE\win32k.sys
[2011.06.06 12:36:17 | 001,867,904 | ---- | M] (Microsoft Corporation) MD5=44E7131AA0EB70AACADBA6034B443D0B -- C:\WINDOWS\$hf_mig$\KB2555917\SP3QFE\win32k.sys
[2010.10.26 15:04:46 | 001,862,272 | ---- | M] (Microsoft Corporation) MD5=470811C7406C06BAD6CCEA5445D879C9 -- C:\WINDOWS\$hf_mig$\KB2436673\SP3QFE\win32k.sys
[2010.10.26 14:58:35 | 001,853,312 | ---- | M] (Microsoft Corporation) MD5=4FF440A38D242AA40D40F990C566DF32 -- C:\WINDOWS\$NtUninstallKB2479628$\win32k.sys
[2011.06.06 12:35:21 | 001,858,944 | ---- | M] (Microsoft Corporation) MD5=5477E9351066CA7F70A92461A35F5310 -- C:\WINDOWS\$NtUninstallKB2567053$\win32k.sys
[2010.09.01 08:57:07 | 001,861,888 | ---- | M] (Microsoft Corporation) MD5=5577EC6934D639CB20EA0C90A8AF4923 -- C:\WINDOWS\$hf_mig$\KB981957\SP3QFE\win32k.sys
[2011.03.03 14:52:12 | 001,866,880 | ---- | M] (Microsoft Corporation) MD5=570FB1C8ABCF6375169E94C23537019C -- C:\WINDOWS\$hf_mig$\KB2506223\SP3QFE\win32k.sys
[2009.08.14 16:15:39 | 001,850,624 | ---- | M] (Microsoft Corporation) MD5=670C868CDBDF46269EB7CC39B05A7513 -- C:\WINDOWS\$NtUninstallKB979559$\win32k.sys
[2007.03.08 16:36:45 | 001,843,584 | ---- | M] (Microsoft Corporation) MD5=6BF9F668422633B3BEE393DF9C29FC77 -- C:\WINDOWS\$NtUninstallKB941693$\win32k.sys
[2005.03.02 19:08:50 | 001,836,288 | ---- | M] (Microsoft Corporation) MD5=7987FD715BAEF38965FE0E822957BD85 -- C:\WINDOWS\$NtUninstallKB925902$\win32k.sys
[2010.05.02 09:03:50 | 001,860,352 | ---- | M] (Microsoft Corporation) MD5=8402F80D7FCA8CD3A4BCF027773CAD34 -- C:\WINDOWS\$hf_mig$\KB979559\SP3QFE\win32k.sys
[2009.08.14 17:00:31 | 001,859,712 | ---- | M] (Microsoft Corporation) MD5=862CAA1CB5EF221C09918FF185DF14D7 -- C:\WINDOWS\$hf_mig$\KB969947\SP3QFE\win32k.sys
[2010.05.02 09:09:42 | 001,851,264 | ---- | M] (Microsoft Corporation) MD5=8DFA2A74176D58E671C7FD9F8966DE99 -- C:\WINDOWS\$NtUninstallKB2160329$\win32k.sys
[2011.03.03 14:53:33 | 001,857,920 | ---- | M] (Microsoft Corporation) MD5=958A81E06C4E3510AEA1F6BCD258EF4C -- C:\WINDOWS\$NtUninstallKB2555917$\win32k.sys
[2010.12.31 15:04:07 | 001,854,976 | ---- | M] (Microsoft Corporation) MD5=AE4BFDE8B2841CE7F6AFAB0F43435445 -- C:\WINDOWS\$NtUninstallKB2506223$\win32k.sys
[2011.09.06 15:08:32 | 001,867,904 | ---- | M] (Microsoft Corporation) MD5=B14465CDD6AFA31154396B54254F2BA8 -- C:\WINDOWS\$hf_mig$\KB2567053\SP3QFE\win32k.sys
[2009.04.19 20:44:06 | 001,847,808 | ---- | M] (Microsoft Corporation) MD5=BBD63526356719F71BFBDF691ED40DF4 -- C:\WINDOWS\$hf_mig$\KB968537\SP3QFE\win32k.sys
[2008.03.20 09:09:45 | 001,845,248 | ---- | M] (Microsoft Corporation) MD5=BD2144D30014F3DF89F7D8310B2DF70F -- C:\WINDOWS\$NtServicePackUninstall$\win32k.sys
[2007.03.08 16:49:37 | 001,843,968 | ---- | M] (Microsoft Corporation) MD5=C56939044949DB6E2E5DEDCD354572CA -- C:\WINDOWS\$hf_mig$\KB925902\SP2QFE\win32k.sys
[2009.02.09 15:01:29 | 001,847,552 | ---- | M] (Microsoft Corporation) MD5=C5EDFB7BBFE87A53F83EEC7E0E592E29 -- C:\WINDOWS\$hf_mig$\KB958690\SP3QFE\win32k.sys
[2008.03.20 09:01:01 | 001,845,888 | ---- | M] (Microsoft Corporation) MD5=CDBFAE0A8CD2515B39AE50C1365FBE63 -- C:\WINDOWS\$hf_mig$\KB941693\SP2QFE\win32k.sys
[2010.12.31 15:02:56 | 001,864,064 | ---- | M] (Microsoft Corporation) MD5=D8525ABDAFFB6F08CDEF1D87B509B17B -- C:\WINDOWS\$hf_mig$\KB2479628\SP3QFE\win32k.sys
[2011.09.06 15:10:02 | 001,858,944 | ---- | M] (Microsoft Corporation) MD5=EC7DE8AE321E0B01C23770A2AD4AA66F -- C:\WINDOWS\system32\dllcache\win32k.sys
[2011.09.06 15:10:02 | 001,858,944 | ---- | M] (Microsoft Corporation) MD5=EC7DE8AE321E0B01C23770A2AD4AA66F -- C:\WINDOWS\system32\win32k.sys
[2008.09.15 16:27:55 | 001,846,400 | ---- | M] (Microsoft Corporation) MD5=F04D91DEAD8EA9AD33223B7FECBC5B82 -- C:\WINDOWS\$NtUninstallKB958690$\win32k.sys
[2006.03.02 13:00:00 | 001,835,904 | ---- | M] (Microsoft Corporation) MD5=F935B816A5B3D08E519D9EEBD65A6672 -- C:\WINDOWS\$NtUninstallKB890859$\win32k.sys

< MD5 for: WINLOGON.EXE >
[2006.03.02 13:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008.04.14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< MD5 for: WINSRV.DLL >
[2011.04.26 12:02:48 | 000,293,376 | ---- | M] (Microsoft Corporation) MD5=169D34A85EC9E415C4C3A03AA62A34B6 -- C:\WINDOWS\$hf_mig$\KB2507938\SP3QFE\winsrv.dll
[2005.03.02 19:21:07 | 000,291,328 | ---- | M] (Microsoft Corporation) MD5=341B8F59EA856170CB0AE89D82A4885D -- C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\winsrv.dll
[2011.04.26 12:07:50 | 000,293,376 | ---- | M] (Microsoft Corporation) MD5=43B8BD54F87BFFFE5C560B2965E13C26 -- C:\WINDOWS\$NtUninstallKB2567680$\winsrv.dll
[2011.06.20 18:44:52 | 000,293,376 | ---- | M] (Microsoft Corporation) MD5=4F1340B27E7590D3E42541769ABD5872 -- C:\WINDOWS\system32\dllcache\winsrv.dll
[2011.06.20 18:44:52 | 000,293,376 | ---- | M] (Microsoft Corporation) MD5=4F1340B27E7590D3E42541769ABD5872 -- C:\WINDOWS\system32\winsrv.dll
[2007.03.17 14:45:10 | 000,292,864 | ---- | M] (Microsoft Corporation) MD5=5869828D4A83BA8F9519630C40044C87 -- C:\WINDOWS\$NtServicePackUninstall$\winsrv.dll
[2010.06.18 18:46:19 | 000,293,376 | ---- | M] (Microsoft Corporation) MD5=681CB546E0EF9C44FDE21EE0D4307DF0 -- C:\WINDOWS\$hf_mig$\KB2121546\SP3QFE\winsrv.dll
[2007.03.17 14:47:16 | 000,292,864 | ---- | M] (Microsoft Corporation) MD5=6D731741FEF45B51FCFBC5396076F561 -- C:\WINDOWS\$hf_mig$\KB930178\SP2QFE\winsrv.dll
[2008.04.14 04:22:05 | 000,293,376 | ---- | M] (Microsoft Corporation) MD5=77A41C497ADB0C96D1E8DF6F71D843C0 -- C:\WINDOWS\$NtUninstallKB2121546$\winsrv.dll
[2008.04.14 04:22:05 | 000,293,376 | ---- | M] (Microsoft Corporation) MD5=77A41C497ADB0C96D1E8DF6F71D843C0 -- C:\WINDOWS\ServicePackFiles\i386\winsrv.dll
[2005.09.01 03:28:20 | 000,291,840 | ---- | M] (Microsoft Corporation) MD5=CB00C266E0D5AEF74BFE9B5671BBF0F0 -- C:\WINDOWS\$NtUninstallKB930178$\winsrv.dll
[2005.09.01 03:54:26 | 000,291,840 | ---- | M] (Microsoft Corporation) MD5=D37449612540F888D04DAD8E6EEC6E97 -- C:\WINDOWS\$hf_mig$\KB900725\SP2QFE\winsrv.dll
[2010.06.18 18:47:41 | 000,293,376 | ---- | M] (Microsoft Corporation) MD5=D7F6130150643691D61E957A2CD48D1B -- C:\WINDOWS\$NtUninstallKB2507938$\winsrv.dll
[2006.03.02 13:00:00 | 000,290,816 | ---- | M] (Microsoft Corporation) MD5=E4E57FBA176F2752527B1D53A663D2D7 -- C:\WINDOWS\$NtUninstallKB890859$\winsrv.dll
[2005.03.02 19:18:13 | 000,291,328 | ---- | M] (Microsoft Corporation) MD5=EABB73E35AE4285A7F61C7B09BEDF36A -- C:\WINDOWS\$NtUninstallKB900725$\winsrv.dll
[2011.06.20 18:43:23 | 000,293,376 | ---- | M] (Microsoft Corporation) MD5=EF9951D90C530C39DEAB56C16160D837 -- C:\WINDOWS\$hf_mig$\KB2567680\SP3QFE\winsrv.dll

< MD5 for: WS2_32.DLL >
[2006.03.02 13:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 04:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ERDNT\cache\ws2_32.dll
[2008.04.14 04:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 04:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll

< >

< C:\windows\system32\spool\prtprocs|dll;true;true;true /FP >
[2005.05.06 21:00:00 | 000,020,992 | ---- | M] (CANON INC.) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPD7K.DLL
[2005.05.06 21:00:00 | 000,059,392 | ---- | M] (CANON INC.) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPP7K.DLL
[2008.07.06 13:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
[2003.06.19 00:31:48 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll
[2008.07.06 13:06:10 | 000,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\x64\filterpipelineprintproc.dll

< %systemroot%\system32\Spool\prtprocs\*.* /s >
[2005.05.06 21:00:00 | 000,020,992 | ---- | M] (CANON INC.) -- C:\WINDOWS\system32\Spool\prtprocs\w32x86\CNMPD7K.DLL
[2005.05.06 21:00:00 | 000,059,392 | ---- | M] (CANON INC.) -- C:\WINDOWS\system32\Spool\prtprocs\w32x86\CNMPP7K.DLL
[2008.07.06 13:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
[2003.06.19 00:31:48 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Spool\prtprocs\w32x86\mdippr.dll
[2008.07.06 11:50:03 | 000,597,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
[2008.07.06 13:06:10 | 000,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Spool\prtprocs\x64\filterpipelineprintproc.dll

< %systemroot%\system32\drivers\*.sys /10 >

< %systemroot%\system32\drivers\*.sys /X >
[2008.04.14 04:21:36 | 000,004,255 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv01nt5.dll
[2008.04.14 04:21:36 | 000,003,967 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv02nt5.dll
[2008.04.14 04:21:36 | 000,003,615 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv05nt5.dll
[2008.04.14 04:21:36 | 000,003,647 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv07nt5.dll
[2008.04.14 04:21:36 | 000,003,135 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv08nt5.dll
[2008.04.14 04:21:36 | 000,003,711 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv09nt5.dll
[2008.04.14 04:21:36 | 000,003,775 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv11nt5.dll
[2004.07.17 10:36:24 | 000,064,352 | ---- | M] () -- C:\WINDOWS\system32\drivers\ativmc20.cod
[2008.04.14 04:21:37 | 000,021,183 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv01nt5.dll
[2008.04.14 04:21:37 | 000,011,359 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv02nt5.dll
[2008.04.14 04:21:37 | 000,025,471 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv04nt5.dll
[2008.04.14 04:21:37 | 000,014,143 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv06nt5.dll
[2008.04.14 04:21:37 | 000,017,279 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv10nt5.dll
[2008.04.14 04:21:38 | 000,015,423 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
[2004.07.17 21:55:24 | 000,129,045 | ---- | M] () -- C:\WINDOWS\system32\drivers\cxthsfs2.cty
[2006.03.02 13:00:00 | 003,440,660 | ---- | M] () -- C:\WINDOWS\system32\drivers\gm.dls
[2006.03.02 13:00:00 | 000,000,646 | ---- | M] () -- C:\WINDOWS\system32\drivers\gmreadme.txt
[2004.07.17 10:35:00 | 000,067,866 | ---- | M] () -- C:\WINDOWS\system32\drivers\netwlan5.img
[2008.04.14 04:21:55 | 000,003,901 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\siint5.dll
[2008.04.14 04:22:04 | 000,011,325 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\vchnt5.dll

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010.08.03 14:31:17 | 000,717,296 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys

< %systemroot%\system32\*.* /10 >
[2011.11.15 13:29:27 | 000,000,552 | ---- | M] () -- C:\WINDOWS\system32\d3d8caps.dat
[2011.11.16 17:17:36 | 000,007,629 | ---- | M] () -- C:\WINDOWS\system32\Fireplace.log
[2011.11.09 22:26:28 | 050,295,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MRT.exe
[2011.11.16 14:34:49 | 000,134,738 | ---- | M] () -- C:\WINDOWS\system32\perfc005.dat
[2011.11.16 14:34:49 | 000,113,560 | ---- | M] () -- C:\WINDOWS\system32\perfc009.dat
[2011.11.16 14:34:49 | 000,558,112 | ---- | M] () -- C:\WINDOWS\system32\perfh005.dat
[2011.11.16 14:34:49 | 000,566,142 | ---- | M] () -- C:\WINDOWS\system32\perfh009.dat
[2011.11.16 14:34:47 | 001,393,496 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI
[2011.11.16 17:17:36 | 000,001,779 | ---- | M] () -- C:\WINDOWS\system32\ScreensaverManager.log
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\*.dll /lockedfiles >
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\config\*.sav >
[2008.04.04 16:25:29 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2008.04.04 16:25:28 | 000,638,976 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2008.04.04 16:25:28 | 000,471,040 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< %systemroot%\Tasks\*.job >
[2011.11.16 17:01:33 | 000,000,940 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2011.11.14 19:36:00 | 000,000,944 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

< %systemroot%\*.* /U /s >
[141 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[24 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[344 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[4 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]
[1 C:\WINDOWS\Temp\_avast5_\*.tmp files -> C:\WINDOWS\Temp\_avast5_\*.tmp -> ]

< %systemroot%\*. /rp /s >

< %ALLUSERSPROFILE%\Data Aplikací\*.* >
[2008.04.04 16:27:03 | 000,000,062 | -HS- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\desktop.ini
[2008.04.09 13:37:55 | 000,000,032 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\ezsid.dat

< %ALLUSERSPROFILE%\Data Aplikací\*.exe /s >
[2011.07.25 19:43:45 | 000,002,560 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Iceni\Infix\5\Install_keyfiles.exe
[2010.01.01 01:50:08 | 034,698,816 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Nokia_PC_Suite_7_1_40_1_cze_web.exe
[2010.01.01 02:16:30 | 000,095,232 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\pcswpcsi.exe
[2010.01.01 02:16:29 | 000,008,192 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstCCD.exe
[2010.01.01 02:16:30 | 000,010,240 | ---- | M] (Nokia) -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstPCS.exe
[2010.01.01 02:16:30 | 000,061,440 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
[2010.01.21 14:21:34 | 000,214,320 | ---- | M] (Nero AG) -- C:\Documents and Settings\All Users\Data Aplikací\Nero\OnlineServices\NOS_CAExe.exe
[2008.04.08 17:46:26 | 000,005,632 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Spyware Terminator\sp_rsdel.exe

< %ALLUSERSPROFILE%\Nabídka Start\*.lnk /x >
[2008.10.12 10:20:24 | 000,000,293 | -HS- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\desktop.ini

< %ALLUSERSPROFILE%\Data Aplikácií\*.* >

< %ALLUSERSPROFILE%\Data Aplikácií\*.exe /s >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >

< %APPDATA%\*. >
[2009.03.31 19:07:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Adobe
[2008.11.09 20:39:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Ahead
[2008.11.07 12:38:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\ArcSoft
[2011.10.14 11:29:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Aspell
[2011.11.14 19:12:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Avnex
[2011.09.22 10:06:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Babylon
[2011.09.22 10:09:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\BabylonToolbar
[2010.03.30 15:55:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\BITS
[2010.04.25 14:56:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\BitTorrent
[2011.10.31 19:45:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Canon
[2008.05.29 19:48:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\COWON
[2011.02.10 19:34:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\CyberLink
[2011.11.16 16:44:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\DMCache
[2009.07.08 01:36:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Google
[2010.10.28 17:28:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\GrabPro
[2010.09.27 17:28:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Hamachi
[2008.10.22 15:38:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Help
[2011.08.26 22:57:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\HLSW
[2008.07.05 19:33:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\ICQLite
[2008.04.04 14:49:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Identities
[2008.09.12 10:58:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\IDM
[2010.09.10 17:07:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\InstallShield
[2009.08.18 21:34:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Leadertech
[2009.03.04 17:14:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Macromedia
[2010.01.25 19:18:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Malwarebytes
[2008.10.22 15:45:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\MetaProducts
[2011.05.29 10:23:52 | 000,000,000 | --SD | M] -- C:\Documents and Settings\uživatel\Data aplikací\Microsoft
[2008.06.27 18:14:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\MobileAction
[2011.01.19 18:12:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Nero
[2010.01.01 02:18:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Nokia
[2008.05.27 20:08:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Notepad++
[2010.08.29 13:39:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\NVIDIA
[2009.05.15 19:23:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\OpenOffice.org2
[2009.03.31 19:02:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Opera
[2011.10.09 18:33:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Orbit
[2010.12.02 19:44:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\PCStitch Pro
[2009.01.04 15:42:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Pegasys Inc
[2009.03.23 18:55:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Real
[2010.09.22 19:46:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Sachy
[2009.11.02 18:42:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\ScanSoft
[2011.10.22 22:05:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Skype
[2011.10.21 18:28:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\skypePM
[2011.01.17 18:13:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\SodaBush
[2008.10.13 09:56:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Student dog
[2009.01.01 23:34:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Sun
[2009.09.25 19:24:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\TeamViewer
[2009.12.07 22:41:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Teleca
[2011.09.13 22:49:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\uTorrent
[2011.08.26 09:28:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\VDownloader
[2010.09.27 18:06:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\VitySoft
[2008.09.18 14:42:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Vso
[2008.04.08 17:36:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Winamp
[2008.04.08 20:09:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\WinRAR
[2010.11.14 19:57:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\XemiComputers

< %APPDATA%\*.* >
[2011.09.22 17:37:47 | 000,000,464 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\AutoGK.ini
[2008.04.04 16:27:03 | 000,000,062 | -HS- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\desktop.ini
[2008.09.18 14:42:26 | 000,081,920 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\ezpinst.exe
[2008.09.18 14:42:26 | 000,007,176 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\pcouffin.cat
[2008.09.18 14:42:26 | 000,001,144 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\pcouffin.inf
[2008.09.18 14:42:28 | 000,000,034 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\pcouffin.log
[2008.09.18 14:42:26 | 000,047,360 | ---- | M] (VSO Software) -- C:\Documents and Settings\uživatel\Data aplikací\pcouffin.sys
[2009.08.01 03:26:39 | 000,022,328 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\PnkBstrK.sys
[2011.11.10 18:48:47 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\steam_md4.dat

< %APPDATA%\*.exe /s >
[2008.09.18 14:42:26 | 000,081,920 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\ezpinst.exe
[2011.10.14 11:24:36 | 000,049,535 | ---- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\Aspell\Dictionaries\Uninstall-AspellDict-cs.exe
[2008.04.15 18:53:56 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\Microsoft\Installer\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}\_55A1FAE66E55A8BC1BE320.exe
[2008.04.15 18:53:56 | 000,000,766 | R--- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\Microsoft\Installer\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}\_6FEFF9B68218417F98F549.exe
[2008.04.15 18:53:56 | 000,001,518 | R--- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\Microsoft\Installer\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}\_C27BEE651C3EE1EF20AB6A.exe
[2008.04.15 18:53:56 | 000,002,550 | R--- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\Microsoft\Installer\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}\_D0047288301C30DA811A0F.exe
[2008.04.15 18:53:56 | 000,001,078 | R--- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\Microsoft\Installer\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}\_EB66B5A478AF14DB51B289.exe
[2008.04.15 18:53:56 | 000,001,078 | R--- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\Microsoft\Installer\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}\_F42A717ADAEB1EE8514FB3.exe
[2005.05.14 09:03:50 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\uživatel\Data aplikací\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2009.05.29 06:27:05 | 000,390,664 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\uživatel\Data aplikací\Real\RealPlayer\Update\RealPlayer11.exe
[2010.06.24 12:27:31 | 000,439,816 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\uživatel\Data aplikací\Real\Update\setup3.10\setup.exe
[2010.09.18 21:38:02 | 000,452,104 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\uživatel\Data aplikací\Real\Update\setup3.12\setup.exe
[2010.12.12 20:19:04 | 000,506,024 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\uživatel\Data aplikací\Real\Update\setup3.13\setup.exe
[2011.01.27 20:18:58 | 000,510,120 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\uživatel\Data aplikací\Real\Update\setup3.14\setup.exe
[2011.10.30 17:32:05 | 000,315,512 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\uživatel\Data aplikací\Real\Update\UpgradeHelper\RealPlayer\9.00\rnupgagent.exe
[2011.10.20 07:38:33 | 025,881,552 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\uživatel\Data aplikací\Real\Update\UpgradeHelper\RealPlayer\9.00\stub_data\RealPlayer.exe
[2011.10.20 07:36:53 | 000,684,288 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\uživatel\Data aplikací\Real\Update\UpgradeHelper\RealPlayer\9.00\stub_exe\RealPlayer.exe

< %SYSTEMDRIVE%\*.exe >

< %systemroot%\system32|bak;true;false;false /fp >

< %PROGRAMFILES%|bak;true;false;false /fp >

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2009.03.08 13:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) MD5=B60DDDD2D63CE41CB8C487FCFBB6419E -- C:\Program Files\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >
[2011.10.20 14:14:20 | 000,947,056 | ---- | M] (Opera Software) MD5=99C904854E154E903C8EAC4329DD48C2 -- C:\Program Files\Opera\opera.exe

< %ALLUSERSPROFILE%\Data Aplikací\Google\Chrome\Application\chrome.exe /md5 >

< >

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-11-11 08:34:45

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\BITS /s >
"StateIndex" = 0

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c >
No captured output from command...

< >

< type c:\boot.ini >> test.txt /c >
No captured output from command...

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.11.16 17:07:00 | 000,000,512 | ---- | M] () MD5=E7A19195593709AA8600267FE34F0661 -- C:\PhysicalMBR.bin

< bcdedit /v >C:\boot.txt /c >
No captured output from command...

< type C:\boot.txt >> test1.txt /c >
No captured output from command...

< >

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems" /v Windows /c >
No captured output from command...

< >

< >

========== Hard Links - Junction Points - Mount Points - Symbolic Links ==========
[C:\WINDOWS\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a] -> C:\WINDOWS\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790 -> Junction
[C:\WINDOWS\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a] -> C:\WINDOWS\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e -> Junction
[C:\WINDOWS\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a] -> C:\WINDOWS\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492 -> Junction

========== Alternate Data Streams ==========

@Alternate Data Stream - 498 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:05EE1EEF
@Alternate Data Stream - 184 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:4BF2F6B5

< End of report >

[Massa]

Ahoj,
co se týče toho Mega CoDecS tak vůbec nevím zda je aktualizován, dotet jsem neveděl, že ho má
Net Activity Diagram mi kdysi, ale uz je to dlouho přinesl tatík.... používám ho, už jsem si na něj zvykl...
pro informaci jestli zrovna probíhají nějaký data ven nebo dovnitř je dobrý, počítá počet stažených dat i odeslaných, ale často se
sám resetuje, takže na delší pozorování je nepoužitelný....kdybych ho neměl tak dlouho a nezvykl si, že mi tam dole u hodin něco pořád běhá dal bych ho pryč...

C:\Program Files\Google\Chrome\Application\chrome.exe - snad jsi myslel toto.

Co se týče těch doplňků vím, že je tam hromadu zbytečností, ale když chci pročistit PC tak nevím které se používají a které ne........

Avast jsem vypínal ve správci úloh, ale CF mi pořád hlásil, že je zapnutý...

U Start - spustit, vepiš: ComboFix /Uninstall -- Windows píše, že nemůže CF nalézt.

T- leaner jsem stáhl a složky promažu

Díky moc za pomoc.

[Massa]

já tobě děkuji za pomoc, jsem ti vděčný.... měj se hezky