Nefunguje Správce úloh, chybí nabídka spustit a hláška

Zpráva

AdamDvorak · #1 Příspěvek od **AdamDvorak** » 10 úno 2012 12:43

Mám na počítači pár problémů, které mi znemožňují pořádnou práci na PC.
Konkrétně se jedná o nefunkčnost Správce úloh, opakované nervyberoucí hlášky a zablokované nabídky Spustit.
Tento problém je starý cca 4 dny.
Již jsem o něm psal na JNP.CZ http://jnp.zive.cz/nefunguje-spravce-ul ... ka-spustit a vás prosím alespoň o částečné přečtení. Moc mi nepomohli a řekli mi, ať se obrátím na vás.
Tady je můj článek:

Něco se mi z ničeho nic stalo se systémem.
Asi každých pět minut vyskočí hláška:
"Server SMTP vyžaduje zabezpečené připojení nebo klient nebyl ověřen. Odpověď serveru: 5.5.1 Authentication Required. Learn more at"
Docela mi to vadí, a tak jsem chtěl přijít pomocí Správce úloh na to, který program to je.
Ale při stisknutí Ctrl + Alt + Del se nestane vůbec nic.
Chtěl jsem pomocí nabídky Spustit otevřít nástroj ručně,
ale ona v nabídce start není!
Je to Virus?
Mám Avast! free antivirus a OS Windows XP

a k němu dodatek

Asi jsem to nenapsal dost jasně....
Když udělám Ctrl+Shift+Esc nebo Ctrl+Alt+Delete a nebo "HLAVNÍ PANEL" -} "Správce úloh"
okno se nezobrazí! Při prvním pokusu jen v Trayové liště blikne na 1 sec jeho ikona.
Spustit v nabídce Start není.
A prováděl jsem kompletní test systému, našlo mi to 50 virů a ta hláška se už nezobrazuje.

A teď asi to nejdůležitější

A opravdu za to může vir?
Abych se přiznal, na tento počítač chodí můj bratr a ten si nainstaloval crack na Game Maker 8.1.
z návodu na youtube. Když to spouštěl, jmenovalo se to nějak "Game Maker Mrs. Hasch Instaler"
Vyskočila ta hláška z Avastu, že nějaký poštovní program se chce zabezpečeně připojit na web, ale on mu o nemůže dovolit.
Chtěl jsem to smazat, ale nešlo to, protože ten proces byl otevřený. Tak jsem to chtěl pomocí správce úloh vypnout a od té doby nejede. No a taky pořád skáče ta hláška.
Asi to bude ono, ale soubor je již smazaný, i když ho v koši nemůžu najít.
Achjo, z Youtube ten odkaz už smazali a nemůžu ho najít v historii

Nevím, jestli je to ten vir, ale asi ano.
Co s tím mám dělat?
Můj log, který je ale z UPM

Kód: Vybrat vše

Windows XP SP 3 (build 2600)
Boot Mode: Normal
Ověření souborů Microsoftu: Ano
Whitelist: Ano
Internet Explorer v8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)
Log vygenerován: 10.2.2012 12:26:36
================================================================

SmallARK
================================================================
[R]NtAddBootEntry                   -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtAllocateVirtualMemory          -> C:\WINDOWS\system32\drivers\aswSP.SYS
[?]NtClose                          -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[R]NtCreateEvent                    -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtCreateEventPair                -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[?]NtCreateFile                     -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[R]NtCreateIoCompletion             -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[?]NtCreateKey                      -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[R]NtCreateMutant                   -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[?]NtCreateSection                  -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[R]NtCreateSemaphore                -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtCreateTimer                    -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtDeleteBootEntry                -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[?]NtDeleteKey                      -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtDeleteValueKey                 -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[R]NtDuplicateObject                -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtEnumerateKey                   -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtEnumerateValueKey              -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtFreeVirtualMemory              -> C:\WINDOWS\system32\drivers\aswSP.SYS
[?]NtLoadDriver                     -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[R]NtModifyBootEntry                -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtNotifyChangeKey                -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtNotifyChangeMultipleKeys       -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenEvent                      -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenEventPair                  -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[?]NtOpenFile                       -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[R]NtOpenIoCompletion               -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenKey                        -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenMutant                     -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenProcess                    -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenSection                    -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenSemaphore                  -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenThread                     -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenTimer                      -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtProtectVirtualMemory           -> C:\WINDOWS\system32\drivers\aswSP.SYS
[R]NtQueryKey                       -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtQueryObject                    -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtQueryValueKey                  -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtRenameKey                      -> C:\WINDOWS\system32\drivers\aswSP.SYS
[R]NtRestoreKey                     -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtSetBootEntryOrder              -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtSetBootOptions                 -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[?]NtSetInformationFile             -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[R]NtSetSystemInformation           -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtSetSystemPowerState            -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[?]NtSetValueKey                    -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[R]NtShutdownSystem                 -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtSystemDebugControl             -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[?]NtTerminateProcess               -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[R]NtVdmControl                     -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[?]NtWriteFile                      -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys


Běžící procesy
================================================================

C:\WINDOWS\SYSTEM32\WINLOGON.EXE
 |_ MD5: 471341D353962A35DA3C6324D59D09C4
 |_Výrobce:  Microsoft Corporation

C:\PROGRAM FILES\HEWLETT-PACKARD\DRIVE ENCRYPTION\HPFKCRYPT.EXE
 |_ MD5: FAC83C27D09DA59E9687B33BC100CF67
 |_Výrobce:  SafeBoot International

C:\PROGRAM FILES\LSI SOFTMODEM\AGRSMSVC.EXE
 |_ MD5: 9C9D3B7A05445B1AB2DF4D0C4D6B77E8
 |_Výrobce:  Agere Systems

C:\WINDOWS\EXPLORER.EXE
 |_ MD5: 1A32145EBADFE694790FB7FBC060FD37
 |_Výrobce:  Microsoft Corporation

C:\PROGRAM FILES\HEWLETT-PACKARD\IAM\BIN\ASGHOST.EXE
 |_ MD5: 3F91D1056D2CEBEF374BE0E55428190A
 |_Výrobce:  Cognizance Corporation

C:\WINDOWS\SYSTEM32\CTFMON.EXE
 |_ MD5: BD51CC12F9ACB16CBD8CD16B755E93D2
 |_Výrobce:  Microsoft Corporation

C:\PROGRAM FILES\ANALOG DEVICES\CORE\SMAX4PNP.EXE
 |_ MD5: 15D0C090E4223C68CC2DAF471584F4A8
 |_Výrobce:  Analog Devices, Inc.

C:\PROGRAM FILES\ROCKETDOCK\NEXUS.EXE
 |_ MD5: 49CDA2500790D2E8AC3EDFA1B24E79B6
 |_Výrobce:  Winstep Software Technologies

C:\PROGRAM FILES\UNLOCKER\UNLOCKERASSISTANT.EXE
 |_ MD5: 255E405D801CF01247390F38F92D8042
 |_Výrobce:  

C:\DOCUMENTS AND SETTINGS\ZASTPA.MKYJ003\PLOCHA\PROGRAMY\FLIP3D\WINFLIP.EXE
 |_ MD5: A68DC6BE5E2D179B060DA8AC3649C612
 |_Výrobce:  

C:\DOCUMENTS AND SETTINGS\ZASTPA.MKYJ003\LOCAL SETTINGS\APPS\F.LUX\FLUX.EXE
 |_ MD5: A1F86A5A0DA1BEC12B7DD19C6234BB15
 |_Výrobce:  

C:\WINDOWS\SYSTEM32\WTMKM.EXE
 |_ MD5: 542366C5659BE7E4EF3CD86415449B62
 |_Výrobce:  ?

C:\WINDOWS\SYSTEM32\MSIEXEC.EXE
 |_ MD5: 665DAE3CEA6CCCEE2D2E27B14409F9D0
 |_Výrobce:  Microsoft Corporation

C:\PROGRAM FILES\ULTIMATE PROCESS MANAGER\AVENGER.EXE
 |_ MD5: 30F3680E007D924960FD65524DE36601
 |_Výrobce:  

C:\PROGRAM FILES\ULTIMATE PROCESS MANAGER\UPM.EXE
 |_ MD5: DD42D203E3476BAD1937F0955D501F96
 |_Výrobce:  Lodus Software


Scanner
================================================================
[S, novf!] winlogon.exe                                                           
Non Microsoft v System32:                                                         
Ověřený Microsoft:          Ne
Nemá okno                                                                         
Soubor                      12%
                                                      
[?] HpFkCrypt.exe                                                                 
Nemá okno                                                                         
Soubor                      7%
                                                      
[?] agrsmsvc.exe                                                                  
Nemá okno                                                                         
                                                      
[R] IFXSPMGT.exe                                                                  
Spouští se po startu        HKLM Run [IFXSPMGT]
                                                      
[R] MDM.EXE                                                                       
Ověřený Microsoft:          Ne
                                                      
[R] MSCamS32.exe                                                                  
Ověřený Microsoft:          Ne
                                                      
[R] pdfsvc.exe                                                                    
EntryPoint v sekci:         CODE
|_ Celkový počet sekcí:     8
                                                      
[R] SeaPort.exe                                                                   
Ověřený Microsoft:          Ne
                                                      
[R] st_rsser.exe                                                                  
EntryPoint v sekci:         .ITEXT
|_ Celkový počet sekcí:     9
                                                      
[S, novf!] explorer.exe                                                           
Ověřený Microsoft:          Ne
Spouští se po startu        HKLM Winlogon [Shell]
Soubor                      25%
                                                      
[?] asghost.exe                                                                   
Soubor                      7%
                                                      
[S, novf!] ctfmon.exe                                                             
Non Microsoft v System32:                                                         
Ověřený Microsoft:          Ne
Spouští se po startu        HKCU Run [ctfmon.exe]
Soubor                      25%
                                                      
[R] AvastUI.exe                                                                   
Spouští se po startu        HKLM Run [avast]
                                                      
[R] QLBCTRL.exe                                                                   
Spouští se po startu        HKLM Run [QlbCtrl]
                                                      
[R] SynTPEnh.exe                                                                  
Spouští se po startu        HKLM Run [SynTPEnh]
                                                      
[R] igfxpers.exe                                                                  
Spouští se po startu        HKLM Run [Persistence]
                                                      
[R] jusched.exe                                                                   
Spouští se po startu        HKLM Run [SunJavaUpdateSched]
                                                      
[?] smax4pnp.exe                                                                  
Spouští se po startu        HKLM Run [SoundMAXPnP]
                                                      
[?] Nexus.exe                                                                     
Soubor                      14%
                                                      
[R] WizMouse.exe                                                                  
EntryPoint v sekci:         .ITEXT
|_ Celkový počet sekcí:     9
                                                      
[R] MSOSYNC.EXE                                                                   
Ověřený Microsoft:          Ne
                                                      
[?] UnlockerAssistant.exe                                                         
Bez výrobce                                                                       
Soubor                      12%
                                                      
[?] WinFlip.exe                                                                   
Bez výrobce                                                                       
Soubor                      12%
                                                      
[?] flux.exe                                                                      
Bez výrobce                                                                       
Soubor                      12%
                                                      
[R] Skype.exe                                                                     
Podvržená cesta modulu:     (00400000) C:\Program Files\Skype\Phone\Skype.exe
                                                      
[?] WTMKM.exe                                                                     
Bez výrobce v System32                                                            
Soubor                      25%
                                                      
[S, novf!] msiexec.exe                                                            
Non Microsoft v System32:                                                         
Ověřený Microsoft:          Ne
Nemá okno                                                                         
Soubor                      12%
                                                      
[S] searchfilterhost.exe                                                          
Proces se nepodařilo otevřít                                                      
ROOTKIT?                    Skrytá cesta
Spouští se po startu        HKCU Run [ctfmon.exe]
Nelze otevřít                                                                     
                                                      
[?] avenger.exe                                                                   
Bez výrobce                                                                       
EntryPoint v sekci:         UPX1
|_ Celkový počet sekcí:     3
Soubor                      100%
                                                      
[?] UPM.exe                                                                       
Soubor                      7%
                                                      

Po spuštění
================================================================

HKCU Run
 |_ [X][Clownfish]                    (Soubor nenalezen)
 |_ [?][ctfmon.exe]                  C:\WINDOWS\system32\ctfmon.exe
 |  |_ MD5: BD51CC12F9ACB16CBD8CD16B755E93D2
 |  |_ Výrobce:  Microsoft Corporation
 |
 |_ [?][Windows Update] C:\Documents and Settings\zastpa.MKYJ003\Local Settings\Temp\WindowsUpdate.exe
    |_ MD5: 7C5ADCFD9DE4784AAC8EE627ED57497C
    |_ Výrobce:  [Company]


HKLM Run
 |_ [R][avast]                       C:\Program Files\Avast\avastUI.exe /nogui
 |  |_ MD5: F7226AA410954185160067D5FA82F3F2
 |  |_ Výrobce:  AVAST Software
 |
 |_ [?][StartupDelayer] C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher.exe /LaunchType=Auto /LaunchApps=Common
 |  |_ MD5: B45888489B826B20AAD49408D1110BD5
 |  |_ Výrobce:  r2 Studios
 |
 |_ [R][SoundMAX]                    C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray
 |  |_ MD5: AC3197063BF23C53D5DCBA0D575FD2E9
 |  |_ Výrobce:  Analog Devices, Inc.
 |
 |_ [R][PTHOSTTR]                    C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
 |  |_ MD5: 0C2E780785B2E0CF09B439E874C50990
 |  |_ Výrobce:  Hewlett-Packard Development Company, L.P.
 |
 |_ [R][QlbCtrl]                     C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
 |  |_ MD5: 1EEA95A7483A678551108B6DCF308CC1
 |  |_ Výrobce:   Hewlett-Packard Development Company, L.P.
 |
 |_ [R][IFXSPMGT]                    C:\WINDOWS\system32\ifxspmgt.exe /NotifyLogon
 |  |_ MD5: 274F4F664F2B0BA8F97F46BE0DEEAD8D
 |  |_ Výrobce:  Infineon Technologies AG
 |
 |_ [?][CognizanceTS] C:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll ,RegisterModule
 |  |_ MD5: 09B9F07E4D91B4EC48D7271110136881
 |  |_ Výrobce:  Cognizance Corporation
 |
 |_ [?][Reloader]                    C:\WINDOWS\NiwradSoft Shell Pack\Tools\Reloader.exe /S
 |  |_ MD5: F6625774F6B3B3BE20CAEF60C28208BB
 |  |_ Výrobce:  NiwradSoft
 |
 |_ [?][QuickTime Task] C:\Program Files\QuickTime\qttask.exe -atboottime
 |  |_ MD5: 0AEE5668EB59912F32FF245BFA72465F
 |  |_ Výrobce:  Apple Inc.
 |
 |_ [?][SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
    |_ MD5: 15D0C090E4223C68CC2DAF471584F4A8
    |_ Výrobce:  Analog Devices, Inc.


HKLM ShellServiceObjectDelayLoad
 |_ [?][PostBootReminder] C:\WINDOWS\system32\SHELL32.dll
 |  |_ MD5: 7CB8B8892871754EB68479FDF922E9B1
 |  |_ Výrobce:  Microsoft Corporation
 |
 |_ [?][CDBurn]                      C:\WINDOWS\system32\SHELL32.dll
 |  |_ MD5: 7CB8B8892871754EB68479FDF922E9B1
 |  |_ Výrobce:  Microsoft Corporation
 |
 |_ [?][WebCheck]                    C:\WINDOWS\system32\webcheck.dll
 |  |_ MD5: 167254CD23D5165CADF5562339C2076E
 |  |_ Výrobce:  Microsoft Corporation
 |
 |_ [?][SysTray]                     C:\WINDOWS\system32\stobject.dll
    |_ MD5: B65B846B56B5CD3FA1EFF7AF7DF63B80
    |_ Výrobce:  Microsoft Corporation


HKU Run
 |_ [?][CTFMON.EXE]                  C:\WINDOWS\system32\CTFMON.EXE
    |_ MD5: BD51CC12F9ACB16CBD8CD16B755E93D2
    |_ Výrobce:  Microsoft Corporation


HKLM IC
 |_ [?][>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\iedkcs32.dll,BrandIEActiveSetup SIGNUP
 |  |_ MD5: 1AEDCC08E1EC64B43F8C5222FC8FE5BC
 |  |_ Výrobce:  Microsoft Corporation
 |
 |_ [X][>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP (Soubor nenalezen)
 |_ [?][{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] C:\WINDOWS\INF\msnetmtg.inf ,NetMtg.Install.PerUser.NT
 |  |_ MD5: F8995D4274D3D7E32BE7812B872BCC13
 |  |_ Výrobce:  
 |
 |_ [?][{5945c046-1e7d-11d1-bc44-00c04fd912be}] C:\WINDOWS\INF\msmsgs.inf ,BLC.QuietInstall.PerUser
 |  |_ MD5: 97BF5E6CB8D2498286096D35644517C5
 |  |_ Výrobce:  
 |
 |_ [?][{6BF52A52-394A-11d3-B153-00C04F79FAA6}] C:\WINDOWS\INF\wmp11.inf ,PerUserStub
 |  |_ MD5: C50E7DA8003BF4B222248B9DB4104290
 |  |_ Výrobce:  
 |
 |_ [?][{89820200-ECBD-11cf-8B85-00AA005B4340}] regsvr32.exe /s /n /i:U shell32.dll
    |_ MD5: 
    |_ Výrobce:  Microsoft Corporation


HKLM Winlogon
 |_ [?][Shell]                       C:\WINDOWS\Explorer.exe
    |_ MD5: 1A32145EBADFE694790FB7FBC060FD37
    |_ Výrobce:  Microsoft Corporation


HKLM Winlogon Notify
 |_ [X][!SASWinLogon] G:\First help for PC\SUPERAntiSpyware Free Edition\SASWINLO.DLL (Soubor nenalezen)
 |_ [?][cscdll]                      C:\WINDOWS\system32\cscdll.dll
 |  |_ MD5: 724145F5D2EF4BCA10EDF5E6A99558A3
 |  |_ Výrobce:  Microsoft Corporation
 |
 |_ [?][igfxcui]                     C:\WINDOWS\system32\igfxdev.dll
 |  |_ MD5: A0B342D6386A01250D35BA942B1C5A0B
 |  |_ Výrobce:  Intel Corporation
 |
 |_ [?][OneCard]                     C:\Program Files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll
    |_ MD5: 2EEDA27C19259C2340324EF7180D086B
    |_ Výrobce:  Cognizance Corporation


HKLM AppInit_DLLs
 |_ [?][AppInit_DLLs] C:\WINDOWS\system32\APSHook.dll
    |_ MD5: 26D017054EA002B6FE4E2AAA9CAE04B8
    |_ Výrobce:  Bioscrypt Inc.


Job
 |_ [?][OFFICE~1.JOB] C:\Documents and Settings\zastpa.MKYJ003\Plocha\Office_2010_Activation_and_Conversion_Kit_1.6_by_Raz0r.exe
    |_ MD5: C07C80EFD4A65B4EF8A9CE01A7183C36
    |_ Výrobce:  Raz0r



HKCU IE WebBrowser Toolbar
 |_ [X][{D4027C7F-154A-4066-A1AD-4243D8127440}]  (Soubor nenalezen)

HKLM IE Toolbar
 |_ [?][{D2F8F919-690B-4EA2-9FA7-A203D1E04F75}] C:\Program Files\Styler\TB\StylerTB.dll
 |  |_ MD5: A85310C1BB9F598300209B38EB10AE71
 |  |_ Výrobce:  StyleFantasist
 |
 |_ [X][{D4027C7F-154A-4066-A1AD-4243D8127440}]  (Soubor nenalezen)

Služby (Zobraz běžící: True, Zobraz zastavené: False, Zobraz i bezpečné služby: False)
================================================================
[X] SAS Core Service
 |_ Cesta: G:\First help for PC\SUPERAntiSpyware Free Edition\SASCORE.EXE
 |   |_ Výrobce:  
 |   |_ Popis: 
 |   |_ MD5: 
 |   
 |_ Jméno:  !SASCORE
 |_ StartName: LocalSystem
 |_ Typ spouštění:  Auto Start
 |_ Status: Zastaveno
 |_ Typ:  Win32 Own Process
 |_ Dependency: 

[?] Agere Modem Call Progress Audio
 |_ Cesta: C:\Program Files\LSI SoftModem\agrsmsvc.exe
 |   |_ Výrobce:  Agere Systems
 |   |_ Popis: Agere Soft Modem Call Progress Service
 |   |_ MD5: 9C9D3B7A05445B1AB2DF4D0C4D6B77E8
 |   
 |_ Jméno:  AgereModemAudio
 |_ StartName: LocalSystem
 |_ Typ spouštění:  Auto Start
 |_ Status: Spuštěno
 |_ Typ:  Win32 Own Process
 |_ Dependency: 

[?] Logon Session Broker
 |_ Cesta: C:\WINDOWS\System32\svchost.exe
 |   |_ Výrobce:  Microsoft Corporation
 |   |_ Popis: Generic Host Process for Win32 Services
 |   |_ MD5: BE4A520E29B6391F49E79CCC52044D93
 |   
 |_ ServiceDLL: C:\Program Files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll
 |   |_ Výrobce:  Cognizance Corporation
 |   |_ Popis: Winlogon notification handler
 |   |_ MD5: 2EEDA27C19259C2340324EF7180D086B
 |   
 |_ Jméno:  ASBroker
 |_ StartName: LocalSystem
 |_ Typ spouštění:  Auto Start
 |_ Status: Spuštěno
 |_ Typ:  Win32 Share Process
 |_ Dependency: 

[?] Local Communication Channel
 |_ Cesta: C:\WINDOWS\System32\svchost.exe
 |   |_ Výrobce:  Microsoft Corporation
 |   |_ Popis: Generic Host Process for Win32 Services
 |   |_ MD5: BE4A520E29B6391F49E79CCC52044D93
 |   
 |_ ServiceDLL: C:\Program Files\Hewlett-Packard\IAM\Bin\ASChnl.dll
 |   |_ Výrobce:  Cognizance Corporation
 |   |_ Popis: Secure Communication Channel
 |   |_ MD5: BB3C0521ECCA4BB17AC55EB640DF0FA5
 |   
 |_ Jméno:  ASChannel
 |_ StartName: LocalSystem
 |_ Typ spouštění:  Auto Start
 |_ Status: Spuštěno
 |_ Typ:  Win32 Share Process
 |_ Dependency: 

[R] Easybits GO Services for Windows
 |_ Cesta: C:\WINDOWS\system32\svchost.exe
 |   |_ Výrobce:  Microsoft Corporation
 |   |_ Popis: Generic Host Process for Win32 Services
 |   |_ MD5: BE4A520E29B6391F49E79CCC52044D93
 |   
 |_ ServiceDLL: C:\WINDOWS\system32\ezGOSvc.dll
 |   |_ Výrobce:  
 |   |_ Popis: 
 |   |_ MD5: DA7ED3A484A2A03FD8AEC1B3A0DB401C
 |   
 |_ Jméno:  ezGOSvc
 |_ StartName: LocalSystem
 |_ Typ spouštění:  Auto Start
 |_ Status: Spuštěno
 |_ Typ:  Win32 Own Process
 |_ Dependency: 

[X] Služba Google Update (gupdate)
 |_ Cesta: C:\Program Files\Google\Update\GoogleUpdate.exe /svc
 |   |_ Výrobce:  
 |   |_ Popis: 
 |   |_ MD5: 
 |   
 |_ Jméno:  gupdate
 |_ StartName: LocalSystem
 |_ Typ spouštění:  Auto Start
 |_ Status: Zastaveno
 |_ Typ:  Win32 Own Process
 |_ Dependency: RPCSS

[X] LogMeIn Hamachi Tunneling Engine
 |_ Cesta: C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -s
 |   |_ Výrobce:  
 |   |_ Popis: 
 |   |_ MD5: 
 |   
 |_ Jméno:  Hamachi2Svc
 |_ StartName: LocalSystem
 |_ Typ spouštění:  Auto Start
 |_ Status: Spuštěno
 |_ Typ:  
 |_ Dependency: 

[?] Drive Encryption Service
 |_ Cesta: C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
 |   |_ Výrobce:  SafeBoot International
 |   |_ Popis: Drive Encryption for HP ProtectTools Service
 |   |_ MD5: FAC83C27D09DA59E9687B33BC100CF67
 |   
 |_ Jméno:  HpFkCryptService
 |_ StartName: LocalSystem
 |_ Typ spouštění:  Auto Start
 |_ Status: Spuštěno
 |_ Typ:  Win32 Own Process
 |_ Dependency: 

[X] Java Quick Starter
 |_ Cesta: C:\Program Files\Java\jre6\bin\jqs.exe -service -config C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf
 |   |_ Výrobce:  
 |   |_ Popis: 
 |   |_ MD5: 
 |   
 |_ Jméno:  JavaQuickStarterService
 |_ StartName: LocalSystem
 |_ Typ spouštění:  Auto Start
 |_ Status: Spuštěno
 |_ Typ:  Win32 Own Process
 |_ Dependency: 

[?] Windows Installer
 |_ Cesta: C:\WINDOWS\system32\msiexec.exe
 |   |_ Výrobce:  Microsoft Corporation
 |   |_ Popis: Windows® installer
 |   |_ MD5: 665DAE3CEA6CCCEE2D2E27B14409F9D0
 |   
 |_ Jméno:  MSIServer
 |_ StartName: LocalSystem
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Win32 Share Process
 |_ Dependency: RpcSs

[X] Text-to-Speech system Epos
 |_ Cesta: C:\Program Files\Epos_2.4\bin\epos.exe
 |   |_ Výrobce:  
 |   |_ Popis: 
 |   |_ MD5: 
 |   
 |_ Jméno:  ttscp
 |_ StartName: LocalSystem
 |_ Typ spouštění:  Auto Start
 |_ Status: Zastaveno
 |_ Typ:  
 |_ Dependency: 

[?] WTService
 |_ Cesta: C:\WINDOWS\system32\atwtusb.exe
 |   |_ Výrobce:  ?
 |   |_ Popis: User Mode Tablet Driver
 |   |_ MD5: 325164A4B3674A17E31D0E9BE8E3E020
 |   
 |_ Jméno:  WTService
 |_ StartName: LocalSystem
 |_ Typ spouštění:  Auto Start
 |_ Status: Zastaveno
 |_ Typ:  
 |_ Dependency: 


Ovladače (Zobraz běžící: True, Zobraz zastavené: False, Zobraz i bezpečné služby: False)
================================================================
[?] ADI UAA Function Driver for High Definition Audio Service
 |_ Cesta: C:\WINDOWS\system32\drivers\ADIHdAud.sys
 |   |_ Výrobce:  Analog Devices, Inc.
 |   |_ Popis: High Definition Audio Function Driver
 |   |_ MD5: 7356EFF52AD50B8946D346002118CE62
 |   
 |_ Jméno:  ADIHdAudAddService
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] AE Audio Service
 |_ Cesta: C:\WINDOWS\system32\drivers\AEAudio.sys
 |   |_ Výrobce:  Andrea Electronics Corporation
 |   |_ Popis: Audio Noise Filtering Driver (32-bit)
 |   |_ MD5: FFF87A9B1AB36EE4B7BEC98A4CB01B79
 |   
 |_ Jméno:  AEAudio
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] Agere Systems Soft Modem
 |_ Cesta: C:\WINDOWS\system32\DRIVERS\AGRSM.sys
 |   |_ Výrobce:  Agere Systems
 |   |_ Popis: SoftModem Device Driver
 |   |_ MD5: 3712986CC3ABF0DC656B43525B9D1279
 |   
 |_ Jméno:  AgereSoftModem
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[X] BootScreen
 |_ Cesta: C:\WINDOWS\C:\WINDOWS\System32\drivers\vidstub.sys
 |   |_ Výrobce:  
 |   |_ Popis: 
 |   |_ MD5: 
 |   
 |_ Jméno:  BootScreen
 |_ StartName: 
 |_ Typ spouštění:  Boot Start
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] Bluetooth Audio Device
 |_ Cesta: C:\WINDOWS\system32\drivers\btaudio.sys
 |   |_ Výrobce:  Broadcom Corporation.
 |   |_ Popis: Bluetooth Audio Device
 |   |_ MD5: 3AA4BF555C00C5B87FD48DD7BDBD4E97
 |   
 |_ Jméno:  btaudio
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] Bluetooth Virtual Communications Driver
 |_ Cesta: C:\WINDOWS\system32\DRIVERS\btport.sys
 |   |_ Výrobce:  Broadcom Corporation.
 |   |_ Popis: Bluetooth BTPORT Driver for Windows 2000
 |   |_ MD5: 07F0A66CFA550B13AD0674AE09E3CBA0
 |   
 |_ Jméno:  BTDriver
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] Bluetooth Bus Enumerator
 |_ Cesta: C:\WINDOWS\system32\DRIVERS\btkrnl.sys
 |   |_ Výrobce:  Broadcom Corporation.
 |   |_ Popis: Bluetooth Bus Enumerator
 |   |_ MD5: BA57F31EAB93DC597D772F6F5B9ED54F
 |   
 |_ Jméno:  BTKRNL
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] WIDCOMM USB Bluetooth Driver
 |_ Cesta: C:\WINDOWS\System32\Drivers\btwusb.sys
 |   |_ Výrobce:  Broadcom Corporation.
 |   |_ Popis: Driver for Bluetooth USB Devices
 |   |_ MD5: 57E91E9925976BBC98984EEBAAF1D84C
 |   
 |_ Jméno:  BTWUSB
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] HBtnKey
 |_ Cesta: C:\WINDOWS\system32\DRIVERS\cpqbttn.sys
 |   |_ Výrobce:  Hewlett-Packard Development Company, L.P.
 |   |_ Popis: HP Tablet PC Key Button HID Driver
 |   |_ MD5: 407E41DDB2BFECE109132AEC296E0D98
 |   
 |_ Jméno:  HBtnKey
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] HpqKbFilter Driver
 |_ Cesta: C:\WINDOWS\system32\DRIVERS\HpqKbFiltr.sys
 |   |_ Výrobce:  Hewlett-Packard Development Company, L.P.
 |   |_ Popis: HpqKbFiltr Keyboard Filter Driver
 |   |_ MD5: 35956140E686D53BF676CF0C778880FC
 |   
 |_ Jméno:  HpqKbFiltr
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] ialm
 |_ Cesta: C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
 |   |_ Výrobce:  Intel Corporation
 |   |_ Popis: Intel Graphics Miniport Driver
 |   |_ MD5: 200CCA76CD0E0F7EEC78FA56C29B4D67
 |   
 |_ Jméno:  ialm
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] IFXTPM
 |_ Cesta: C:\WINDOWS\system32\DRIVERS\IFXTPM.SYS
 |   |_ Výrobce:  Infineon Technologies AG
 |   |_ Popis: Infineon Trusted Platform Module
 |   |_ MD5: 2CDF483F8FC2BF3F7B93E3BDD734CFBD
 |   
 |_ Jméno:  IFXTPM
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?]     Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows XP 32 Bit
 |_ Cesta: C:\WINDOWS\system32\DRIVERS\NETwLx32.sys
 |   |_ Výrobce:  Intel Corporation
 |   |_ Popis: Intel® Wireless WiFi Link Driver
 |   |_ MD5: 72062B53186E4A3F5FCBC41EBB62B905
 |   
 |_ Jméno:  NETwLx32
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] PxHelp20
 |_ Cesta: C:\WINDOWS\System32\Drivers\PxHelp20.sys
 |   |_ Výrobce:  Sonic Solutions
 |   |_ Popis: Px Engine Device Driver for Windows 2000/XP
 |   |_ MD5: FEFFCFDC528764A04C8ED63D5FA6E711
 |   
 |_ Jméno:  PxHelp20
 |_ StartName: 
 |_ Typ spouštění:  Boot Start
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] RsvLock
 |_ Cesta: C:\WINDOWS\system32\drivers\RsvLock.sys
 |   |_ Výrobce:  SafeBoot International
 |   |_ Popis: SafeBoot Reserved Files Lock Driver
 |   |_ MD5: 0DE27C94A562D0360FB520C42068CCA0
 |   
 |_ Jméno:  RsvLock
 |_ StartName: 
 |_ Typ spouštění:  System Start
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] SafeBoot
 |_ Cesta: C:\WINDOWS\system32\drivers\SafeBoot.sys
 |   |_ Výrobce:  
 |   |_ Popis: 
 |   |_ MD5: 
 |   
 |_ Jméno:  SafeBoot
 |_ StartName: 
 |_ Typ spouštění:  Boot Start
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] SbAlg
 |_ Cesta: C:\WINDOWS\system32\drivers\SbAlg.sys
 |   |_ Výrobce:  SafeBoot N.V.
 |   |_ Popis: SafeBoot FIPS AES Algorithm (256 bit)
 |   |_ MD5: F6367FB350F8E5D3F6DD8040E4C0E33B
 |   
 |_ Jméno:  SbAlg
 |_ StartName: 
 |_ Typ spouštění:  Boot Start
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[X] sptd
 |_ Cesta: C:\WINDOWS\C:\WINDOWS\System32\Drivers\sptd.sys
 |   |_ Výrobce:  
 |   |_ Popis: 
 |   |_ MD5: 
 |   
 |_ Jméno:  sptd
 |_ StartName: 
 |_ Typ spouštění:  Boot Start
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] Spyware Terminator 2012 Realtime Shield Driver
 |_ Cesta: C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
 |   |_ Výrobce:  ?
 |   |_ Popis: ?
 |   |_ MD5: 7B426B8E809EDF081D771EF429345528
 |   
 |_ Jméno:  sp_rsdrv2
 |_ StartName: 
 |_ Typ spouštění:  System Start
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] StarOpen
 |_ Cesta: C:\WINDOWS\system32\drivers\StarOpen.sys
 |   |_ Výrobce:  
 |   |_ Popis: 
 |   |_ MD5: E57B778208C783D8DEBAB320C16A1B82
 |   
 |_ Jméno:  StarOpen
 |_ StartName: 
 |_ Typ spouštění:  Auto Start
 |_ Status: Spuštěno
 |_ Typ:  File System Driver
 |_ Dependency: 

[?] Vcs support
 |_ Cesta: C:\WINDOWS\system32\Drivers\Vcs.sys
 |   |_ Výrobce:  
 |   |_ Popis: 
 |   |_ MD5: CE9B7DF9AF5B01884BEEAB3F703C3BF6
 |   
 |_ Jméno:  Vcs
 |_ StartName: 
 |_ Typ spouštění:  Auto Start
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 


lNetStat
================================================================
Typ:  PID       Proces              Local <-> Remote                             Status
-----------------------------------------------------------------------------------------
TCP (1192)    svchost.exe         0.0.0.0:135                                  LISTENING
TCP (4)       Systém              0.0.0.0:445                                  LISTENING
TCP (1096)    svchost.exe         0.0.0.0:3389                                 LISTENING
TCP (4)       Systém              5.54.223.240:139                             LISTENING
TCP (172)     alg.exe             127.0.0.1:1026                               LISTENING
TCP (2376)    firefox.exe         127.0.0.1:1037 <-> 127.0.0.1:1038            ESTABLISHED
TCP (2376)    firefox.exe         127.0.0.1:1038 <-> 127.0.0.1:1037            ESTABLISHED
TCP (2376)    firefox.exe         127.0.0.1:1056 <-> 127.0.0.1:1057            ESTABLISHED
TCP (2376)    firefox.exe         127.0.0.1:1057 <-> 127.0.0.1:1056            ESTABLISHED
TCP (0)       127.0.0.1:1903                               TIME_WAIT
TCP (2376)    firefox.exe         127.0.0.1:1905 <-> 127.0.0.1:12080           ESTABLISHED
TCP (4560)    UPM.exe             127.0.0.1:1907 <-> 127.0.0.1:12080           ESTABLISHED
TCP (0)       127.0.0.1:1910                               TIME_WAIT
TCP (4560)    UPM.exe             127.0.0.1:1912 <-> 127.0.0.1:12080           ESTABLISHED
TCP (2376)    firefox.exe         127.0.0.1:1916 <-> 127.0.0.1:12080           ESTABLISHED
TCP (2376)    firefox.exe         127.0.0.1:1917 <-> 127.0.0.1:12080           ESTABLISHED
TCP (2376)    firefox.exe         127.0.0.1:1920 <-> 127.0.0.1:12080           ESTABLISHED
TCP (2376)    firefox.exe         127.0.0.1:1923 <-> 127.0.0.1:12080           ESTABLISHED
TCP (2376)    firefox.exe         127.0.0.1:1955 <-> 127.0.0.1:12080           ESTABLISHED
TCP (624)     jqs.exe             127.0.0.1:5152                               LISTENING
TCP (1864)    AvastSvc.exe        127.0.0.1:12025                              LISTENING
TCP (1864)    AvastSvc.exe        127.0.0.1:12080                              LISTENING
TCP (0)       127.0.0.1:12080                              TIME_WAIT
TCP (1864)    AvastSvc.exe        127.0.0.1:12080 <-> 127.0.0.1:1905           ESTABLISHED
TCP (1864)    AvastSvc.exe        127.0.0.1:12080 <-> 127.0.0.1:1907           ESTABLISHED
TCP (1864)    AvastSvc.exe        127.0.0.1:12080 <-> 127.0.0.1:1912           ESTABLISHED
TCP (1864)    AvastSvc.exe        127.0.0.1:12080 <-> 127.0.0.1:1916           ESTABLISHED
TCP (1864)    AvastSvc.exe        127.0.0.1:12080 <-> 127.0.0.1:1917           ESTABLISHED
TCP (1864)    AvastSvc.exe        127.0.0.1:12080 <-> 127.0.0.1:1920           ESTABLISHED
TCP (1864)    AvastSvc.exe        127.0.0.1:12080 <-> 127.0.0.1:1923           ESTABLISHED
TCP (0)       127.0.0.1:12080                              TIME_WAIT
TCP (1864)    AvastSvc.exe        127.0.0.1:12080 <-> 127.0.0.1:1955           ESTABLISHED
TCP (1864)    AvastSvc.exe        127.0.0.1:12110                              LISTENING
TCP (1864)    AvastSvc.exe        127.0.0.1:12119                              LISTENING
TCP (1864)    AvastSvc.exe        127.0.0.1:12143                              LISTENING
TCP (1864)    AvastSvc.exe        127.0.0.1:12465                              LISTENING
TCP (1864)    AvastSvc.exe        127.0.0.1:12563                              LISTENING
TCP (1864)    AvastSvc.exe        127.0.0.1:12993                              LISTENING
TCP (1864)    AvastSvc.exe        127.0.0.1:12995                              LISTENING
TCP (1064)    svchost.exe         127.0.0.1:49100                              LISTENING
TCP (4)       Systém              192.168.1.102:139                            LISTENING
TCP (220)     hamachi-2.exe       192.168.1.102:1047 <-> 64.74.103.79:12975    ESTABLISHED
TCP (1864)    AvastSvc.exe        192.168.1.102:1902                           LAST_ACK
TCP (1864)    AvastSvc.exe        192.168.1.102:1908 <-> 109.123.209.238:80    ESTABLISHED
TCP (1864)    AvastSvc.exe        192.168.1.102:1909                           CLOSE_WAIT
TCP (1864)    AvastSvc.exe        192.168.1.102:1913 <-> 95.100.248.24:80      ESTABLISHED
TCP (1864)    AvastSvc.exe        192.168.1.102:1919                           CLOSE_WAIT
TCP (0)       192.168.1.102:1928                           TIME_WAIT
TCP (0)       192.168.1.102:1930                           TIME_WAIT
TCP (0)       192.168.1.102:1933                           TIME_WAIT
TCP (0)       192.168.1.102:1938                           TIME_WAIT
TCP (1864)    AvastSvc.exe        192.168.1.102:1941                           CLOSE_WAIT
TCP (0)       192.168.1.102:1943                           TIME_WAIT
TCP (1864)    AvastSvc.exe        192.168.1.102:1944 <-> 77.75.77.66:80        ESTABLISHED
TCP (0)       192.168.1.102:1946                           TIME_WAIT
TCP (0)       192.168.1.102:1948                           TIME_WAIT
TCP (0)       192.168.1.102:1952                           TIME_WAIT
TCP (0)       192.168.1.102:1953                           TIME_WAIT
TCP (0)       192.168.1.102:1954                           TIME_WAIT
UDP (4)       Systém              0.0.0.0:445 <-> 62.219.81.122:80             ESTABLISHED
UDP (884)     lsass.exe           0.0.0.0:500                                  
UDP (220)     hamachi-2.exe       0.0.0.0:1049                                 
UDP (884)     lsass.exe           0.0.0.0:4500                                 
UDP (1340)    svchost.exe         5.54.223.240:123                             
UDP (4)       Systém              5.54.223.240:137                             
UDP (4)       Systém              5.54.223.240:138                             
UDP (1608)    svchost.exe         5.54.223.240:1900                            
UDP (1340)    svchost.exe         127.0.0.1:123                                
UDP (580)     flux.exe            127.0.0.1:1033                               
UDP (4036)    Skype.exe           127.0.0.1:1034                               
UDP (1608)    svchost.exe         127.0.0.1:1900                               
UDP (1340)    svchost.exe         192.168.1.102:123                            
UDP (4)       Systém              192.168.1.102:137                            
UDP (4)       Systém              192.168.1.102:138                            
UDP (220)     hamachi-2.exe       192.168.1.102:1048                           
UDP (1608)    svchost.exe         192.168.1.102:1900

AdamDvorak · #2 Příspěvek od **AdamDvorak** » 10 úno 2012 13:04

Zde je log RSIT:
Logfile of random's system information tool 1.09 (written by random/random)
Run by zastpa at 2012-02-10 12:59:19
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 73 GB (30%) free of 238 GB
Total RAM: 2039 MB (26% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:59:36, on 10.2.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\SCardSvr.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\Program Files\LSI SoftModem\agrsmsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
C:\WINDOWS\system32\ifxspmgt.exe
C:\WINDOWS\system32\ifxtcs.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Microsoft LifeCam\MSCamS32.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\Program Files\PDF Complete\pdfsvc.exe
C:\WINDOWS\system32\IfxPsdSv.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\Spyware Terminator\st_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
C:\Program Files\HPQ\Shared\Sierra Wireless\Win32\Unicode\SWIHPWMI.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Hewlett-Packard\IAM\bin\asghost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Avast\avastUI.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Hewlett-Packard\Embedded Security Software\PSDrt.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\RocketDock\Nexus.exe
C:\Program Files\WizMouse\WizMouse.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\Documents and Settings\zastpa.MKYJ003\Plocha\Programy\Flip3D\WinFlip.exe
C:\Documents and Settings\zastpa.MKYJ003\Local Settings\Apps\F.lux\flux.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\system32\WTMKM.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\Miranda\Miranda packing2\miranda32.exe
C:\Program Files\Ultimate Process Manager\UPM.exe
C:\Program Files\Ultimate Process Manager\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\zastpa.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Complitly - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\Complitly\Complitly.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Avast\aswWebRepIE.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: QTTabBar AutoLoader - {d2bf470e-ed1c-487f-a777-2bd8835eb6ce} - mscoree.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Credential Manager for HP ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\core.3.dll
O2 - BHO: Kwyshell MidpX BHO - {EBE9E2B5-B526-48BC-AD46-687263EDCB0E} - C:\Program Files\Kwyshell\MidpX\JadInvoker\MidpInvoker.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Avast\aswWebRepIE.dll
O3 - Toolbar: QTTabBar - {d2bf470e-ed1c-487f-a333-2bd8835eb6ce} - mscoree.dll (file missing)
O3 - Toolbar: QTTab Standard Buttons - {d2bf470e-ed1c-487f-a666-2bd8835eb6ce} - mscoree.dll (file missing)
O3 - Toolbar: StylerToolBar - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Program Files\Styler\TB\StylerTB.dll
O3 - Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
O3 - Toolbar: Kwyshell MidpX - {EBE9E2B5-B526-48BC-AD46-687263EDCB0E} - C:\Program Files\Kwyshell\MidpX\JadInvoker\MidpInvoker.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [StartupDelayer] "C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher.exe" /LaunchType=Auto /LaunchApps=Common
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray
O4 - HKLM\..\Run: [PTHOSTTR] C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [IFXSPMGT] C:\WINDOWS\system32\ifxspmgt.exe /NotifyLogon
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [Reloader] C:\WINDOWS\NiwradSoft Shell Pack\Tools\Reloader.exe /S
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Windows Update] C:\Documents and Settings\zastpa.MKYJ003\Local Settings\Temp\WindowsUpdate.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [WizMouse] "C:\Program Files\WizMouse\WizMouse.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-796845957-776561741-725345543-500\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Administrator')
O4 - HKUS\S-1-5-21-796845957-776561741-725345543-501\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Guest')
O4 - HKUS\S-1-5-21-807471530-2265404454-1082218415-2474\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User '?')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Styler.lnk = ?
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: Download all by FlashGet3 - C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\FlashGetBHO\GetAllUrl.htm
O8 - Extra context menu item: Download by FlashGet3 - C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\FlashGetBHO\GetUrl.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Link to &MidpX - C:\Program Files\Kwyshell\MidpX\JadInvoker\Extent\jad_wrap.htm
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) - http://catalog.update.microsoft.com/v7/ ... 1750112031
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 8976101796
O17 - HKLM\System\CCS\Services\Tcpip\..\{3F2F1C24-72E1-4913-8E5B-A54E2F127103}: Domain = phiag.corp
O17 - HKLM\System\CCS\Services\Tcpip\..\{78CFDDE4-4BB4-4E1E-B9A9-A05FD2D51C65}: Domain = phiag.corp
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype4COM.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: APSHook.dll
O20 - Winlogon Notify: !SASWinLogon - G:\First help for PC\SUPERAntiSpyware Free Edition\SASWINLO.DLL (file missing)
O20 - Winlogon Notify: OneCard - C:\Program Files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - Unknown owner - G:\First help for PC\SUPERAntiSpyware Free Edition\SASCORE.EXE (file missing)
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - SafeBoot International - C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Roxio\Roxio MyDVD Basic v9\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - C:\WINDOWS\system32\ifxspmgt.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - C:\WINDOWS\system32\ifxtcs.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: Personal Secure Drive service (PersonalSecureDriveService) - Infineon Technologies AG - C:\WINDOWS\system32\IfxPsdSv.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files\Spyware Terminator\st_rsser.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: SWIHPWMI - Sierra Wireless Inc. - C:\Program Files\HPQ\Shared\Sierra Wireless\Win32\Unicode\SWIHPWMI.exe
O23 - Service: Text-to-Speech system Epos (ttscp) - Unknown owner - C:\Program Files\Epos_2.4\bin\epos.exe (file missing)
O23 - Service: WeFi Engine Service (WefiEngSvc) - WeFi - C:\Program Files\WeFi\WefiEngSvc.exe
O23 - Service: WTService - Unknown owner - C:\WINDOWS\system32\atwtusb.exe

--
End of file - 16620 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Office_2010_Activation_and_Conversion_Kit_1.6_by_Raz0r.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\Mozilla\Firefox\Profiles\34fw68tl.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/?clid=1"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, jqs@sun.com:1.0, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3, {dc572301-7619-498c-a57d-39143191b318}:0.3.8.5, {1018e4d6-728f-4b20-ad56-37578a4de76b}:4.1.1, {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.4, elemhidehelper@adblockplus.org:1.1.1, {258735dc-6743-4805-95fc-f95941fffdad}:1.3.6, personas@christopher.beard:1.6.2, printedit@DW-dev:3.5, {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.8, {9AA46F4F-4DC7-4c06-97AF-5035170634FE}:4.0, foxmarks@kei.com:3.9.5, smarterwiki@wikiatic.com:4.1.8, smartbookmarksbar@remy.juteau:1.4.3, {37fa1426-b82d-11db-8314-0800200c9a66}:2.7.5, {ada4b710-8346-4b82-8199-5de2b400a6ae}:1.9.9.3, {20a82645-c095-46ed-80e3-08825760534b}:0.0.0, {ad48108d-92a6-4eb9-87e4-978aca1dbae4}:1.1.6, add-to-searchbox@maltekraus.de:2.0, youtube2mp3@mondayx.de:1.0.7, {d47a9f51-8281-43fa-f450-f28ef8735e9a}:2.1.1, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.13, {07b2a769-ed19-4483-87ce-c643914c81b1}:2.2"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=undefined&q="

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{4B3803EA-5230-4DC3-A7FC-33638F3D3542}"=C:\Program Files\Crawler\Toolbar\firefox\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"wrc@avast.com"=C:\Program Files\Avast\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0]
"Description"=Unity Player 3.0.0f5
"Path"=C:\Program Files\Unity\WebPlayer\loader\npUnity3D32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=1.1.10]
"Description"=VLC Multimedia Plugin
"Path"=C:\Documents and Settings\zastpa.MKYJ003\Plocha\Programy\Přehrávače filmů\Vlc Compilation\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@virtools.com/3DviaPlayer]
"Description"=3Dvia Player For Mozilla Based Broswer
"Path"=C:\Program Files\Virtools\3D Life Player\npvirtools.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1]
"Description"=Yahoo! activeX Plug-in Bridge
"Path"=C:\Program Files\Yahoo!\Common\npyaxmpb.dll

C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
FlashGet3.xpi
nppl3260.xpt
nsIQTScriptablePlugin.xpt
nsJSRealPlayerPlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
exeImagine.IMD
np-mswmp.dll
npDivxPlayerPlugin.dll
npImagine.dll
NPOFF12.DLL
NPOFFICE.DLL
nppdf32.dll
nppl3260.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprpjplug.dll
nsIDivxPlayerPlugin.xpt
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
crawlersrch.xml
google.xml
heureka-cz.xml
jnpcz.xml
jyxo-cz.xml
McSiteAdvisor.xml
seznam-cz.xml
slovnk-czen.xml
slovnk-encz.xml
slunecnice-cz.xml
stahujcz.xml
vyhledvn-vide-ve-slub-youtube.xml
wikipedia-cz.xml

C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\Mozilla\Firefox\Profiles\34fw68tl.default\extensions\
add-to-searchbox@maltekraus.de
ALone-live@ya.ru
cs@dictionaries.addons.mozilla.org
jyboy.yy@gmail.com
personas@christopher.beard
staged
{1018e4d6-728f-4b20-ad56-37578a4de76b}
{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}
{258735dc-6743-4805-95fc-f95941fffdad}
{33e0daa6-3af3-d8b5-6752-10e949c61516}
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
{d47a9f51-8281-43fa-f450-f28ef8735e9a}
{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
{ea614400-e918-4741-9a97-7a972ff7c30b}

C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\Mozilla\Firefox\Profiles\34fw68tl.default\searchplugins\
doplky-pro-firefox.xml
geotool.xml
uloto.xml
wwwslovnik-cizich-slovcz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}]
Complitly - C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\Complitly\Complitly.dll [2011-10-16 139768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\Avast\aswWebRepIE.dll [2011-11-28 809040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17 3855520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2bf470e-ed1c-487f-a777-2bd8835eb6ce}]
QTTabBar AutoLoader - C:\WINDOWS\system32\mscoree.dll [2010-03-18 297808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-02-06 59272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
Credential Manager for HP ProtectTools - C:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll [2006-11-21 71192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-10-18 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Ukazatel S-Rank - C:\Program Files\Seznam.cz\core.3.dll [2011-01-19 1175152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EBE9E2B5-B526-48BC-AD46-687263EDCB0E}]
Kwyshell MidpX - C:\Program Files\Kwyshell\MidpX\JadInvoker\MidpInvoker.dll [2004-12-03 100864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Avast\aswWebRepIE.dll [2011-11-28 809040]
{d2bf470e-ed1c-487f-a333-2bd8835eb6ce} - QTTabBar - C:\WINDOWS\system32\mscoree.dll [2010-03-18 297808]
{d2bf470e-ed1c-487f-a666-2bd8835eb6ce} - QTTab Standard Buttons - C:\WINDOWS\system32\mscoree.dll [2010-03-18 297808]
{D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - StylerToolBar - C:\Program Files\Styler\TB\StylerTB.dll [2006-05-02 102400]
{D4027C7F-154A-4066-A1AD-4243D8127440}
{EBE9E2B5-B526-48BC-AD46-687263EDCB0E} - Kwyshell MidpX - C:\Program Files\Kwyshell\MidpX\JadInvoker\MidpInvoker.dll [2004-12-03 100864]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast"=C:\Program Files\Avast\avastUI.exe [2011-11-28 3744552]
"StartupDelayer"=C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher.exe [2011-12-13 978944]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2006-07-13 729088]
"PTHOSTTR"=C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE [2007-01-09 145184]
"QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2007-11-06 177456]
"IFXSPMGT"=C:\WINDOWS\system32\ifxspmgt.exe [2007-02-15 677408]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2007-05-18 138008]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2007-05-18 138008]
"CognizanceTS"=C:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll [2003-12-22 17920]
"Reloader"=C:\WINDOWS\NiwradSoft Shell Pack\Tools\Reloader.exe [2010-07-04 325046]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2010-11-29 421888]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-09-30 252296]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2007-01-05 872448]
"WatchDog"=C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2007-05-23 192512]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Clownfish"= []
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2011-02-08 40448]
"Windows Update"=C:\Documents and Settings\zastpa.MKYJ003\Local Settings\Temp\WindowsUpdate.exe [2012-02-07 189440]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-08-02 4910912]
"WizMouse"=C:\Program Files\WizMouse\WizMouse.exe [2011-09-30 121648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
C:\Program Files\Ask.com\Updater\Updater.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
C:\Program Files\Electronic Arts\EADM\Core.exe -silent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eXtra Buttons]
C:\Program Files\eXtra Buttons\xb.exe [2011-05-12 2492416]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2007-04-19 484904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ManicTime]
C:\Program Files\ManicTime\ManicTime.exe /minimized /name: []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\McAfeeUpdaterUI]
C:\Program Files\McAfee\Common Framework\udaterui.exe /StartedFromRunKey []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MuralPixAgent]
C:\Program Files\MuralPix\MpAgent.exe /r []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\pamelaPCR.exe]
C:\Program Files\Pamela\PCR\PamelaPCR.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Phone Remote Control.lnk]
C:\PROGRA~1\PHONER~1\PHONER~1.EXE [2009-06-06 565064]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^zastpa.MKYJ003^Nabídka Start^Programy^Po spuštění^ClearTemp.lnk]
C:\WINDOWS\system32\CLEART~1.EXE [2011-07-04 20992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^zastpa.MKYJ003^Nabídka Start^Programy^Po spuštění^Kopie - WeFi.lnk]
C:\PROGRA~1\WeFi\WeFi.exe [2010-11-03 1645912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^zastpa.MKYJ003^Nabídka Start^Programy^Po spuštění^Seznam Pošťák.lnk]
C:\PROGRA~1\Seznam.cz\postak.exe [2011-01-19 489584]

C:\Documents and Settings\zastpa.MKYJ003\Nabídka Start\Programy\Po spuštění
Styler.lnk - C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\Microsoft\Installer\{E9ECF354-2422-4FDB-9ABF-D8ADAC0EF941}\_585b207a.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="APSHook.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
G:\First help for PC\SUPERAntiSpyware Free Edition\SASWINLO.DLL []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2007-05-16 204800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\OneCard]
C:\Program Files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll [2007-02-07 74240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WB]
C:\Program Files\MyColors\fastload.dll [2009-06-09 30000]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 4221328]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=G:\First help for PC\SUPERAntiSpyware Free Edition\SASSEH.DLL []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=SbHpNp
scecli
ASWLNPkg

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"GreyMSIAds"=1
"NoRun"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoUserNameInStartMenu"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Microsoft Office\Office14\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office14\GROOVE.EXE:*:Enabled:Microsoft SharePoint Workspace"
"C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE:*:Enabled:Microsoft OneNote"
"C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Documents and Settings\zastpa.MKYJ003\Local Settings\Temp\KMSAct\Pack\Keygen\Keygen.exe"="C:\Documents and Settings\zastpa.MKYJ003\Local Settings\Temp\KMSAct\Pack\Keygen\Keygen.exe:*:Enabled:Keygen"
"C:\Documents and Settings\zastpa.MKYJ003\Local Settings\Temp\7ZipSfx.000\Pack\Keygen\Keygen.exe"="C:\Documents and Settings\zastpa.MKYJ003\Local Settings\Temp\7ZipSfx.000\Pack\Keygen\Keygen.exe:*:Enabled:Keygen"
"C:\Program Files\MirandaPacking\miranda32.exe"="C:\Program Files\MirandaPacking\miranda32.exe:*:Enabled:Miranda IM"
"C:\Program Files\Miranda\miranda32.exe"="C:\Program Files\Miranda\miranda32.exe:*:Enabled:Miranda IM"
"C:\Program Files\Miranda\Miranda packing2\miranda32.exe"="C:\Program Files\Miranda\Miranda packing2\miranda32.exe:*:Enabled:Miranda IM"
"C:\Program Files\Miranda\Miranda packing2\miranda322.exe"="C:\Program Files\Miranda\Miranda packing2\miranda322.exe:*:Enabled:Miranda IM"
"C:\Program Files\totalcmd\TOTALCMD.EXE"="C:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\Dropbox\bin\Dropbox.exe"="C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth"
"C:\Program Files\Electronic Arts\EADM\Core.exe"="C:\Program Files\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager"
"D:\_02_LADENI\_03_DOPLNKY\WINLIRC-0.6.5\WINLIRC.EXE"="D:\_02_LADENI\_03_DOPLNKY\WINLIRC-0.6.5\WINLIRC.EXE:*:Enabled:WINLIRC"
"C:\Program Files\Hasbro Interactive\RollerCoaster Tycoon\rct.exe"="C:\Program Files\Hasbro Interactive\RollerCoaster Tycoon\rct.exe:*:Enabled:rct"
"C:\Program Files\FreeCall.com\FreeCall\FreeCall.exe"="C:\Program Files\FreeCall.com\FreeCall\FreeCall.exe:*:Enabled:FreeCall"
"C:\Program Files\VoipDiscount.com\VoipDiscount\VoipDiscount.exe"="C:\Program Files\VoipDiscount.com\VoipDiscount\VoipDiscount.exe:*:Enabled:VoipDiscount"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Microsoft LifeCam\LifeCam.exe"="C:\Program Files\Microsoft LifeCam\LifeCam.exe:*:Enabled:LifeCam.exe"
"C:\Program Files\Microsoft LifeCam\LifeEnC2.exe"="C:\Program Files\Microsoft LifeCam\LifeEnC2.exe:*:Enabled:LifeEnC2.exe"
"C:\Program Files\Microsoft LifeCam\LifeExp.exe"="C:\Program Files\Microsoft LifeCam\LifeExp.exe:*:Enabled:LifeExp.exe"
"C:\Program Files\Microsoft LifeCam\LifeTray.exe"="C:\Program Files\Microsoft LifeCam\LifeTray.exe:*:Enabled:LifeTray.exe"
"C:\Program Files\Java\jre6\launch4j-tmp\Jubler.exe"="C:\Program Files\Java\jre6\launch4j-tmp\Jubler.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\dxdiag.exe"="C:\WINDOWS\system32\dxdiag.exe:*:Enabled:Microsoft DirectX Diagnostic Tool"
"C:\Program Files\Mozilla Firefox\plugin-container.exe"="C:\Program Files\Mozilla Firefox\plugin-container.exe:*:Enabled:Plugin Container for Firefox"
"C:\Program Files\Spyware Terminator\SpywareTerminator.exe"="C:\Program Files\Spyware Terminator\SpywareTerminator.exe:*:Enabled:Spyware Terminator 2012"
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"="C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Spyware Terminator 2012"
"C:\Program Files\Java\jre7\bin\javaw.exe"="C:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jre7\bin\java.exe"="C:\Program Files\Java\jre7\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\TeamViewer\Version7\TeamViewer.exe"="C:\Program Files\TeamViewer\Version7\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Documents and Settings\zastpa.MKYJ003\Local Settings\Temp\Rar$EX00.984\chat.exe"="C:\Documents and Settings\zastpa.MKYJ003\Local Settings\Temp\Rar$EX00.984\chat.exe:*:Enabled:chat"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\McAfee\Common Framework\FrameworkService.exe"="C:\Program Files\McAfee\Common Framework\FrameworkService.exe:*:Enabled:McAfee Framework Service"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\WINDOWS\system32\mstsc.exe"="C:\WINDOWS\system32\mstsc.exe:*:Enabled:Remote Desktop Connection"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Program Files\Axence\NetTools\3.1\nVision.exe"="C:\Program Files\Axence\NetTools\3.1\nVision.exe:*:Enabled:nVision"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=l3codecx.acm
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll
"vidc.XVID"=xvidvfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"vidc.MPG4"=MPG4c32.dll
"vidc.MP42"=MPG4c32.dll
"vidc.MP43"=MPG4c32.dll
"vidc.VP60"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.VP61"=C:\WINDOWS\system32\vp6vfw.dll
"msacm.l3fhg"=mp3fhg.acm
"msacm.divxa32"=divxa32.acm
"msacm.vorbis"=vorbis.acm
"VIDC.X264"=x264vfw.dll
"VIDC.DIV3"=DivXc32.dll
"VIDC.DIV4"=DivXc32f.dll
"VIDC.HFYU"=huffyuv.dll
"VIDC.VP70"=vp7vfw.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.YV12"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.txt - open - "C:\Program Files\Notepad++\notepad++.exe" "%1"

======List of files/folders created in the last 1 month======

2012-02-10 12:59:21 ----D---- C:\Program Files\trend micro
2012-02-10 12:59:19 ----D---- C:\rsit
2012-02-10 12:11:23 ----D---- C:\Program Files\Ultimate Process Manager
2012-02-09 16:15:13 ----D---- C:\Program Files\LogMeIn Hamachi
2012-02-07 21:07:59 ----AH---- C:\WINDOWS\system32\hamachi.sys
2012-02-07 19:44:21 ----A---- C:\WINDOWS\w32dasm8.ini
2012-02-07 14:31:11 ----A---- C:\WINDOWS\hw.ini
2012-02-06 21:06:45 ----D---- C:\Program Files\Common Files\Java
2012-02-06 21:05:58 ----A---- C:\WINDOWS\system32\npdeployJava1.dll
2012-02-06 21:05:58 ----A---- C:\WINDOWS\system32\javaws.exe
2012-02-06 21:05:58 ----A---- C:\WINDOWS\system32\javaw.exe
2012-02-06 21:05:58 ----A---- C:\WINDOWS\system32\java.exe
2012-02-06 20:23:48 ----D---- C:\Program Files\Minecraft Note Block Studio
2012-02-06 16:12:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\Google
2012-02-02 19:16:28 ----D---- C:\Program Files\SaveGameBackup
2012-02-02 10:07:58 ----D---- C:\Content
2012-01-29 21:13:00 ----D---- C:\Program Files\MuseScore
2012-01-29 18:41:54 ----D---- C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\Stykz Help
2012-01-26 15:12:02 ----D---- C:\Program Files\Imagine
2012-01-26 15:06:46 ----D---- C:\Program Files\Common Files\Imagine
2012-01-22 17:30:43 ----D---- C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\TeamViewer
2012-01-22 17:30:29 ----D---- C:\Program Files\TeamViewer
2012-01-19 22:49:18 ----D---- C:\Program Files\Notepad++
2012-01-19 22:49:18 ----D---- C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\Notepad++
2012-01-17 20:55:22 ----D---- C:\Program Files\Vlak
2012-01-11 19:36:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2646524$
2012-01-11 19:36:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$
2012-01-11 19:35:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2631813$
2012-01-11 19:32:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2598479$
2012-01-11 19:32:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2603381$
2012-01-11 19:32:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2584146$

======List of files/folders modified in the last 1 month======

2012-02-10 12:59:21 ----RD---- C:\Program Files
2012-02-10 12:51:14 ----SHD---- C:\WINDOWS\Installer
2012-02-10 12:51:14 ----SHD---- C:\Config.Msi
2012-02-10 12:15:25 ----D---- C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\Skype
2012-02-10 11:44:06 ----D---- C:\WINDOWS\system32\CatRoot2
2012-02-10 11:31:38 ----D---- C:\WINDOWS\Temp
2012-02-10 11:14:49 ----D---- C:\WINDOWS\system32
2012-02-10 11:14:49 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-02-10 11:14:25 ----HD---- C:\WINDOWS\NiwradSoft Shell Pack
2012-02-10 11:13:29 ----A---- C:\WINDOWS\win.ini
2012-02-10 10:55:46 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-02-10 10:46:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2012-02-10 10:15:56 ----D---- C:\WINDOWS
2012-02-09 23:04:49 ----A---- C:\WINDOWS\nastaveni.ini
2012-02-09 21:02:41 ----D---- C:\WINDOWS\$regcmp$
2012-02-09 21:02:41 ----D---- C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\QTTabBar
2012-02-09 21:02:40 ----D---- C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\DAEMON Tools Lite
2012-02-09 20:56:58 ----D---- C:\WINDOWS\Debug
2012-02-09 20:54:07 ----D---- C:\WINDOWS\Prefetch
2012-02-09 20:48:22 ----D---- C:\Program Files\CCleaner
2012-02-09 14:22:08 ----D---- C:\Program Files\Game_Maker8
2012-02-09 09:54:07 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-02-09 09:54:02 ----D---- C:\WINDOWS\system32\drivers
2012-02-09 09:53:39 ----HD---- C:\WINDOWS\inf
2012-02-09 09:53:27 ----D---- C:\WINDOWS\system32\ReinstallBackups
2012-02-07 15:06:08 ----D---- C:\Program Files\Mozilla Firefox
2012-02-06 21:06:45 ----D---- C:\Program Files\Common Files
2012-02-06 21:05:31 ----A---- C:\WINDOWS\system32\deployJava1.dll
2012-02-06 21:05:23 ----D---- C:\Program Files\Java
2012-02-06 16:12:06 ----D---- C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\Google
2012-02-06 16:11:17 ----D---- C:\Program Files\Google
2012-02-04 20:50:03 ----D---- C:\Program Files\Miranda
2012-02-02 20:15:44 ----D---- C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\Synthesia
2012-02-01 11:50:06 ----D---- C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\Realore_Whiterra Roads Of Rome 2
2012-02-01 10:19:07 ----D---- C:\Program Files\Rio- Miny hry
2012-02-01 10:13:51 ----D---- C:\Program Files\Rio- Plážový závod
2012-01-30 16:55:38 ----D---- C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\Audacity
2012-01-29 18:43:05 ----D---- C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\Stykz
2012-01-29 15:45:22 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2012-01-29 15:45:18 ----D---- C:\Program Files\Windows Media Player
2012-01-29 15:44:16 ----D---- C:\Documents and Settings
2012-01-28 16:28:56 ----D---- C:\Program Files\FlatOut
2012-01-25 18:16:49 ----D---- C:\Program Files\CDBurnerXP
2012-01-19 22:17:15 ----RSD---- C:\WINDOWS\Fonts
2012-01-17 21:01:53 ----A---- C:\WINDOWS\WINCMD.INI
2012-01-13 20:24:22 ----D---- C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\.minecraft
2012-01-11 19:36:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2012-01-11 19:32:50 ----A---- C:\WINDOWS\system32\mrt.exe
2012-01-11 19:32:22 ----HD---- C:\WINDOWS\$hf_mig$
2012-01-11 17:59:17 ----D---- C:\Program Files\Spyware Terminator

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 BootScreen;BootScreen; C:\WINDOWS\System32\drivers\vidstub.sys [2011-07-26 163712]
R0 hpdskflt;HP Disk Filter Driver; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2008-05-23 24624]
R0 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\DRIVERS\iaStor.sys [2007-03-21 304920]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2006-07-24 36528]
R0 SafeBoot;SafeBoot; C:\WINDOWS\system32\drivers\SafeBoot.sys [2007-04-22 100095]
R0 SbAlg;SbAlg; C:\WINDOWS\system32\drivers\SbAlg.sys [2006-10-09 44720]
R0 SbFsLock;SbFsLock; C:\WINDOWS\system32\drivers\SbFsLock.sys [2007-03-29 13696]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2011-09-24 443448]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-11-28 30808]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-11-28 34392]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2011-11-28 435032]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-11-28 314456]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-11-28 52952]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 PersonalSecureDrive;PersonalSecureDrive; C:\WINDOWS\System32\drivers\psd.sys [2007-01-23 39080]
R1 RsvLock;RsvLock; C:\WINDOWS\system32\drivers\RsvLock.sys [2007-04-22 5808]
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-11-28 20568]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-11-28 111320]
R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-08-05 54752]
R2 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2009-11-12 5504]
R2 Vcs;Vcs support; \??\C:\WINDOWS\system32\Drivers\Vcs.sys []
R3 Accelerometer;HP Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2008-05-23 28592]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2007-10-01 281600]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2007-07-13 94976]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2008-11-21 1204128]
R3 ATSWPDRV;(****DEBUG****) AuthenTec TruePrint USB Driver (SwipeSensor); C:\WINDOWS\system32\DRIVERS\ATSwpDrv.sys [2007-04-10 140808]
R3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2007-02-14 530861]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2007-02-14 30459]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2007-02-14 868298]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2007-02-14 67960]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2008-04-28 9344]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\WINDOWS\system32\DRIVERS\HpqKbFiltr.sys [2007-06-18 16768]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2007-05-16 5707744]
R3 IFXTPM;IFXTPM; C:\WINDOWS\system32\DRIVERS\IFXTPM.SYS [2007-01-23 36608]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
R3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver; C:\WINDOWS\System32\Drivers\nx6000.sys [2010-12-13 30576]
R3 NETwLx32; Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETwLx32.sys [2010-10-07 6609920]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 usbvideo;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-14 121984]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2009-07-14 444136]
S1 SASDIFSV;SASDIFSV; \??\G:\First help for PC\SUPERAntiSpyware Free Edition\SASDIFSV.SYS []
S1 SASKUTIL;SASKUTIL; \??\G:\First help for PC\SUPERAntiSpyware Free Edition\SASKUTIL.SYS []
S3 a6fxfbi3;a6fxfbi3; C:\WINDOWS\system32\drivers\a6fxfbi3.sys []
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
S3 Avc;AVC Device; C:\WINDOWS\system32\DRIVERS\avc.sys [2008-04-14 38912]
S3 b57w2k;Broadcom NetLink (TM) Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2007-02-27 160256]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2007-02-14 149123]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 cpudrv;cpudrv; \??\C:\Program Files\SystemRequirementsLab\cpudrv.sys []
S3 HP24X;HP PC Card Smart Card Reader; C:\WINDOWS\system32\DRIVERS\HP24X.sys [2006-10-19 33024]
S3 i81x;i81x; C:\WINDOWS\system32\DRIVERS\i81xnt5.sys [2008-04-13 161020]
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-14 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 NETw4x32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw4x32.sys [2007-03-01 2203520]
S3 NETw5x32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw5x32.sys [2008-11-17 3636864]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 SS_ACdrv;SeeStorm; C:\WINDOWS\system32\DRIVERS\ss_acdrv.sys []
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 USB28xxBGA;USB 2863 Device; C:\WINDOWS\system32\DRIVERS\emBDA.sys [2009-12-01 579712]
S3 USB28xxOEM;USB 28xx OEM Filter; C:\WINDOWS\system32\DRIVERS\emOEM.sys [2009-12-01 543744]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\WINDOWS\system32\DRIVERS\wdcsam.sys [2011-02-17 11520]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2006-03-02 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2008-08-26 14336]
R2 ASBroker;Logon Session Broker; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 ASChannel;Local Communication Channel; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Avast\AvastSvc.exe [2011-11-28 44768]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2008-05-12 264800]
R2 ezGOSvc;Easybits GO Services for Windows; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2012-02-07 1373576]
R2 HpFkCryptService;Drive Encryption Service; C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2007-04-22 221184]
R2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2007-12-05 144688]
R2 IFXSpMgtSrv;Security Platform Management Service; C:\WINDOWS\system32\ifxspmgt.exe [2007-02-15 677408]
R2 IFXTCS;Trusted Platform Core Service; C:\WINDOWS\system32\ifxtcs.exe [2007-01-23 849440]
R2 IviRegMgr;IviRegMgr; C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-04 112152]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-10-03 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-04-19 75304]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS32.exe [2010-12-13 135536]
R2 NMSAccessU;NMSAccessU; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2009-07-13 71096]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2007-05-08 540448]
R2 PersonalSecureDriveService;Personal Secure Drive service; C:\WINDOWS\system32\IfxPsdSv.exe [2007-02-15 140832]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files\Spyware Terminator\st_rsser.exe [2011-12-23 482992]
R2 SWIHPWMI;SWIHPWMI; C:\Program Files\HPQ\Shared\Sierra Wireless\Win32\Unicode\SWIHPWMI.exe [2006-12-04 292384]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
S2 !SASCORE;SAS Core Service; G:\First help for PC\SUPERAntiSpyware Free Edition\SASCORE.EXE []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-02-21 136176]
S2 ttscp;Text-to-Speech system Epos; C:\Program Files\Epos_2.4\bin\epos.exe []
S2 WTService;WTService; C:\WINDOWS\system32\atwtusb.exe [2007-05-29 360096]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 fsssvc;Služba Windows Live Zabezpečení rodiny; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-04-28 704872]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-02-21 136176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Roxio\Roxio MyDVD Basic v9\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 idsvc;Služba Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 RoxMediaDB9;RoxMediaDB9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [2006-11-06 887544]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2006-11-01 73728]
S3 WefiEngSvc;WeFi Engine Service; C:\Program Files\WeFi\WefiEngSvc.exe [2010-11-03 120152]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 avast! Firewall;avast! Firewall; C:\Program Files\Avast\afwServ.exe []
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

#3 Příspěvek od **vyosek** » 10 úno 2012 13:12

Zdravim a pekny den preji

Nedavejte logy do code, spatne se to lusti a boli z toho oci

Problem reste na jednom foru, jinak se muzem s kolegy tlouct a mazat si stopy

Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller ... r_TEST.exe

Jedna se o testovaci verzi prelozeneho RK - proto je v nazvu ten TEST v navodu nize jsou i anglicke nazvy prikazu kdyby CZ nefungovala
Ukoncete vsechny programy
Pokud pouzivate Win Vista ci W7, kliknete na RogueKiller pravym a dejte Run As Administrator ci Spustit jako spravce
Pockejte na dokonceni PreScanu
Zvolte moznost Prohledat (scan)
Po dokonceni skenu kliknete na Zpráva (Report)- otevre se log, ten sem vlozte

AdamDvorak · #4 Příspěvek od **AdamDvorak** » 10 úno 2012 13:22

RogueKiller V7.0.4 [02/08/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Blog: http://tigzyrk.blogspot.com

Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v: Normální režim
Uživatel: zastpa [Práva Správce]
Mode: Kontrola -- Date : 02/10/2012 13:21:15

¤¤¤ Škodlivé procesy: 2 ¤¤¤
[SUSP PATH] WFHook.dll -- C:\Documents and Settings\zastpa.MKYJ003\Plocha\Programy\Flip3D\WFHook.dll -> UNLOADED
[SUSP PATH] WinFlip.exe -- C:\Documents and Settings\zastpa.MKYJ003\Plocha\Programy\Flip3D\WinFlip.exe -> KILLED [TermProc]

¤¤¤ Záznamy Registrů: 7 ¤¤¤
[SUSP PATH] HKCU\[...]\Run : Windows Update (C:\Documents and Settings\zastpa.MKYJ003\Local Settings\Temp\WindowsUpdate.exe) -> FOUND
[SUSP PATH] HKUS\S-1-5-21-796845957-776561741-725345543-1005[...]\Run : Windows Update (C:\Documents and Settings\zastpa.MKYJ003\Local Settings\Temp\WindowsUpdate.exe) -> FOUND
[SUSP PATH] Office_2010_Activation_and_Conversion_Kit_1.6_by_Raz0r.job : C:\Documents and Settings\zastpa.MKYJ003\Plocha\Office_2010_Activation_and_Conversion_Kit_1.6_by_Raz0r.exe -> FOUND
[SUSP PATH] Styler.lnk : C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\Microsoft\Installer\{E9ECF354-2422-4FDB-9ABF-D8ADAC0EF941}\_585b207a.exe -> FOUND
[SUSP PATH] Styler.lnk : C:\Documents and Settings\zastpa.MKYJ003\Data aplikací\Microsoft\Installer\{E9ECF354-2422-4FDB-9ABF-D8ADAC0EF941}\_585b207a.exe -> FOUND
[SCRSV] HKCU\[...]\Desktop : SCRNSAVE.EXE (C:\WINDOWS\avastSS.scr) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač: [NENAHRÁNO] ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
127.0.0.1 localhost

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: TOSHIBA MK2546GSX +++++
--- User ---
[MBR] fe1b108ece80fc72436a7590d57dd4ff
[BSP] b90cd450f3360b3c25670a9abc584584 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 238464 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[1].txt >>
RKreport[1].txt

#5 Příspěvek od **vyosek** » 10 úno 2012 13:24

Co udelame s temi nelegalnimi produkty od Microsoftu? Samotne windows mate legalni = zakoupena licence

AdamDvorak · #6 Příspěvek od **AdamDvorak** » 10 úno 2012 13:27

Nevím, čím to je, ale práci viru jsem dočasně pozastavil

Normálně jsem otevřel UPM, tak si listoval procesy a našel jeden označený "Systémový soubor"
No a já ho omylem vypl a teď můžu zapnout správce úloh, pomocí Win + R zapínat spustit a hláška se už nezobrazuje!

Jen mám strach, že až zase zapnu počítač, tak se spustí.

AdamDvorak · #7 Příspěvek od **AdamDvorak** » 10 úno 2012 13:29

vyosek píše: Co udelame s temi nelegalnimi produkty od Microsoftu? Samotne windows mate legalni = zakoupena licence

Jakými nelegálními produkty?

#8 Příspěvek od **vyosek** » 10 úno 2012 16:04

Co treba Microsoft Office

A co ty windows

AdamDvorak · #9 Příspěvek od **AdamDvorak** » 10 úno 2012 17:08

Windows jsou legální a office jsem už dostal. Mám notebook jako dárek.

#10 Příspěvek od **vyosek** » 10 úno 2012 17:13

Stahnete prosim tento novy RK http://www.sur-la-toile.com/RogueKiller ... r_TEST.exe a ulozte na plochu (nazev je stejny, ale byl aktualizovan)

Spustte RogueKiller

Pokud pouzivate Win Vista ci W7, kliknete na RogueKiller pravym a dejte Run As Administrator ci Spustit jako spravce
Pockejte na dokonceni PreScanu
Zvolte moznost Prohledat (Scan) a pote Smazat (Deletion) a nasledne Zprava (Report) - otevre se log, ten sem vlozte
Pak kliknete na Oprava Host(HostFix) a Zprava (Report) - otevre se log, ten sem vlozte

AdamDvorak · #11 Příspěvek od **AdamDvorak** » 10 úno 2012 17:54

RogueKiller V7.0.4 [02/08/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Blog: http://tigzyrk.blogspot.com

Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v: Normální režim
Uživatel: zastpa [Práva Správce]
Mode: Odebrat -- Date : 02/10/2012 17:53:08

¤¤¤ Škodlivé procesy: 0 ¤¤¤

¤¤¤ Záznamy Registrů: 2 ¤¤¤
[SCRSV] HKCU\[...]\Desktop : SCRNSAVE.EXE (C:\WINDOWS\avastSS.scr) -> REPLACED (c:\windows\system32\logon.scr)
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač: [NAHRÁNO] ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
127.0.0.1 localhost

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: TOSHIBA MK2546GSX +++++
--- User ---
[MBR] fe1b108ece80fc72436a7590d57dd4ff
[BSP] b90cd450f3360b3c25670a9abc584584 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 238464 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt

AdamDvorak · #12 Příspěvek od **AdamDvorak** » 10 úno 2012 17:55

RogueKiller V7.0.4 [02/08/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Blog: http://tigzyrk.blogspot.com

Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v: Normální režim
Uživatel: zastpa [Práva Správce]
Mode: Oprava HOSTS -- Date : 02/10/2012 17:54:35

¤¤¤ Škodlivé procesy: 0 ¤¤¤

¤¤¤ Ovladač: [NAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
127.0.0.1 localhost

¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost

Dokončeno : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt

AdamDvorak · #13 Příspěvek od **AdamDvorak** » 10 úno 2012 17:56

vyosek píše: Stahnete prosim tento novy RK http://www.sur-la-toile.com/RogueKiller ... r_TEST.exe a ulozte na plochu (nazev je stejny, ale byl aktualizovan)

Spustte RogueKiller
Pokud pouzivate Win Vista ci W7, kliknete na RogueKiller pravym a dejte Run As Administrator ci Spustit jako spravce

Pockejte na dokonceni PreScanu

Zvolte moznost Prohledat (Scan) a pote Smazat (Deletion) a nasledne Zprava (Report) - otevre se log, ten sem vlozte

Pak kliknete na Oprava Host(HostFix) a Zprava (Report) - otevre se log, ten sem vlozte

Co mi ten program vlastně udělá s počítačem????

#14 Příspěvek od **vyosek** » 10 úno 2012 17:58

RogueKiller je jedna z utilit, kterou pouzivame na odvirovavani a nasem forum je jejich zakladnou pro CZ podporu - autorem je Tigzy - utilita hleda skodlive soubory\zapisy v registru a pote je umi i mazat

Jdeme dal, jeste tam neco bude

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK

Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
Pokud mate Win XP spustte pod uctem Spravce\Administratora
Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

AdamDvorak · #15 Příspěvek od **AdamDvorak** » 10 úno 2012 19:34

ComboFix 12-02-10.02 - zastpa 10.02.2012 18:39:54.1.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2039.409 [GMT 1:00]
Spuštěný z: c:\program files\Ultimate Process Manager\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: avast! Internet Security *Enabled* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\autorun.inf
c:\documents and settings\zastpa.MKYJ003\SendTo\Přehledně zobrazit.exe
c:\documents and settings\zastpa.MKYJ003\update.exe
c:\documents and settings\zastpa.MKYJ003\Vypnout.exe.old
c:\documents and settings\zastpa.MKYJ003\WINDOWS
c:\program files\Downloaded Installers
c:\program files\Downloaded Installers\{937417dc-c013-401f-895c-ced28eb175c4}\setup.msi
c:\windows\system32\btw_ci.dll.anofp
c:\windows\system32\GroupPolicy\User\Scripts\scripts.ini
c:\windows\w32dasm8.ini
c:\windows\WINDOWS
c:\windows\WINDOWS\VC8\mesa\.gitignore
c:\windows\WINDOWS\VC8\mesa\gdi\gdi.vcproj
c:\windows\WINDOWS\VC8\mesa\glsl_apps_compile\glsl_apps_compile.vcproj
c:\windows\WINDOWS\VC8\mesa\glu\glu.vcproj
c:\windows\WINDOWS\VC8\mesa\mesa.sln
c:\windows\WINDOWS\VC8\mesa\mesa\mesa.vcproj
c:\windows\WINDOWS\VC8\mesa\osmesa\osmesa.vcproj
c:\windows\WINDOWS\VC8\progs\.gitignore
c:\windows\WINDOWS\VC8\progs\demos\gears.vcproj
c:\windows\WINDOWS\VC8\progs\glut\glut.vcproj
c:\windows\WINDOWS\VC8\progs\progs.sln
.
Nakažená kopie c:\windows\system32\midimap.dll byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\VistaMizer\old\midimap.dll
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_VCS
-------\Service_Vcs
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-01-10 do 2012-02-10 )))))))))))))))))))))))))))))))
.
.
2012-02-10 11:59 . 2012-02-10 11:59 -------- d-----w- c:\program files\trend micro
2012-02-10 11:59 . 2012-02-10 11:59 -------- d-----w- C:\rsit
2012-02-10 11:11 . 2012-02-10 17:31 -------- d-----w- c:\program files\Ultimate Process Manager
2012-02-09 15:15 . 2012-02-10 09:46 -------- d-----w- c:\program files\LogMeIn Hamachi
2012-02-09 13:22 . 2012-02-09 13:22 -------- d-----w- c:\documents and settings\zastpa.MKYJ003\Local Settings\Data aplikací\GayMaker 8.1
2012-02-09 13:07 . 2012-02-09 13:18 -------- d-----w- c:\documents and settings\zastpa.MKYJ003\Local Settings\Data aplikací\MediaGet2
2012-02-09 08:43 . 2012-02-09 08:43 -------- d-----w- c:\windows\system32\config\systemprofile\Plocha
2012-02-07 20:07 . 2009-03-18 15:35 26176 ---ha-w- c:\windows\system32\hamachi.sys
2012-02-07 17:35 . 2012-02-07 17:35 -------- d-----w- c:\documents and settings\zastpa.MKYJ003\Local Settings\Data aplikací\YoYo_Games_Ltd
2012-02-07 17:35 . 2012-02-07 17:35 -------- d-----w- c:\documents and settings\zastpa.MKYJ003\Local Settings\Data aplikací\GameMaker8.1
2012-02-06 20:06 . 2012-02-06 20:06 -------- d-----w- c:\program files\Common Files\Java
2012-02-06 20:05 . 2012-02-06 20:05 637848 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-02-06 19:23 . 2012-02-06 19:23 -------- d-----w- c:\program files\Minecraft Note Block Studio
2012-02-02 18:16 . 2012-02-02 18:17 -------- d-----w- c:\program files\SaveGameBackup
2012-02-02 09:07 . 2012-02-02 09:08 -------- d-----w- C:\Content
2012-01-29 20:13 . 2012-01-29 20:13 -------- d-----w- c:\program files\MuseScore
2012-01-29 20:12 . 2012-01-29 20:12 -------- d-----w- c:\documents and settings\zastpa.MKYJ003\Local Settings\Data aplikací\MusE
2012-01-29 17:41 . 2012-01-29 17:42 -------- d-----w- c:\documents and settings\zastpa.MKYJ003\Data aplikací\Stykz Help
2012-01-26 14:12 . 2012-01-26 14:12 -------- d-----w- c:\program files\Imagine
2012-01-26 14:06 . 2012-01-26 14:09 139776 ----a-w- c:\program files\Mozilla Firefox\plugins\npImagine.dll
2012-01-26 14:06 . 2006-07-29 12:26 2506240 ----a-w- c:\windows\system32\exeImagine.IMD
2012-01-26 14:06 . 2012-01-26 14:12 -------- d-----w- c:\program files\Common Files\Imagine
2012-01-26 14:06 . 2006-07-29 12:34 399872 ----a-w- c:\windows\system32\nxImagine.ocx
2012-01-22 16:30 . 2012-01-22 16:56 -------- d-----w- c:\documents and settings\zastpa.MKYJ003\Data aplikací\TeamViewer
2012-01-22 16:30 . 2012-01-22 16:30 -------- d-----w- c:\program files\TeamViewer
2012-01-19 21:49 . 2012-01-19 21:51 -------- d-----w- c:\documents and settings\zastpa.MKYJ003\Data aplikací\Notepad++
2012-01-19 21:49 . 2012-01-19 21:49 -------- d-----w- c:\program files\Notepad++
2012-01-17 19:55 . 2012-01-17 19:55 -------- d-----w- c:\program files\Vlak
2012-01-17 10:45 . 2012-01-17 10:45 4376224 ----a-w- c:\program files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components\SkypeFfComponent.dll
2012-01-14 13:50 . 2012-01-14 13:50 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\Adobe
2012-01-11 19:08 . 2012-02-10 17:53 -------- d-----w- c:\documents and settings\zastpa.MKYJ003\Local Settings\Data aplikací\LogMeIn Hamachi
2012-01-11 19:08 . 2012-02-10 17:56 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\LogMeIn Hamachi
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-06 20:05 . 2011-10-21 15:00 141312 ----a-w- c:\windows\system32\javacpl.cpl
2012-02-06 20:05 . 2010-11-05 16:44 567184 ----a-w- c:\windows\system32\deployJava1.dll
2012-01-27 07:41 . 2011-05-18 14:00 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-01-06 20:06 . 2012-01-06 20:06 53248 ----a-w- C:\zlib.dll
2012-01-06 20:06 . 2012-01-06 20:06 28672 ----a-w- C:\uncompress.exe
2012-01-04 19:40 . 2012-01-04 19:40 547840 ----a-w- c:\documents and settings\zastpa.MKYJ003\Data aplikací\Microsoft\Internet Explorer\Quick Launch\wise-shutdown.exe
2011-12-22 15:56 . 2011-12-22 15:56 451072 ----a-w- c:\windows\Radeon Omega Drivers v3.8.252 Uninstall.exe
2011-12-07 19:42 . 2011-12-06 20:53 232512 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-11-28 18:01 . 2011-02-05 20:36 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 18:01 . 2011-02-05 20:36 199816 ----a-w- c:\windows\system32\aswBoot.exe
2011-11-28 17:53 . 2011-04-10 11:58 435032 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-11-28 17:53 . 2011-02-05 20:36 314456 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-11-28 17:52 . 2011-02-05 20:36 34392 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-11-28 17:52 . 2011-02-05 20:36 52952 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-11-28 17:52 . 2011-02-05 20:36 111320 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-11-28 17:51 . 2011-02-05 20:36 105176 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-11-28 17:51 . 2011-02-05 20:36 20568 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-11-28 17:48 . 2011-02-05 20:36 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-11-25 21:57 . 2006-03-02 12:00 293376 ----a-w- c:\windows\system32\winsrv.dll
2011-11-23 14:40 . 2006-03-02 12:00 1859584 ----a-w- c:\windows\system32\win32k.sys
2011-11-20 06:12 . 2006-03-02 12:00 84992 ----a-w- c:\windows\system32\packager.exe
2011-11-16 14:21 . 2006-03-02 12:00 354816 ----a-w- c:\windows\system32\winhttp.dll
2011-11-16 14:21 . 2006-03-02 12:00 152064 ----a-w- c:\windows\system32\schannel.dll
2009-06-19 11:12 . 2009-06-19 11:12 1828176 ----a-w- c:\program files\Common Files\Skype4COM.dll
2011-12-24 08:24 . 2011-04-04 16:01 121816 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2011-02-08 19:00 667136 --sha-w- c:\windows\NiwradSoft Shell Pack\Backup\iexplore.exe
2009-02-04 18:06 64512 --sha-w- c:\windows\NiwradSoft Shell Pack\Backup\wmplayer.exe
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\atapi.sys
[7] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\system32\drivers\atapi.sys
[7] 2006-03-02 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0009\DriverFiles\i386\atapi.sys
[7] 2004-08-03 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\atapi.sys
.
[7] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\asyncmac.sys
[7] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\system32\drivers\asyncmac.sys
[7] 2006-03-02 . 02000ABF34AF4C218C35D257024807D6 . 14336 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\asyncmac.sys
.
[7] 2006-03-02 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\dllcache\beep.sys
[7] 2006-03-02 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\drivers\beep.sys
.
[7] 2008-04-14 . 1B6162FE7F66B1A71A4B70F941C4AA9B . 24576 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\kbdclass.sys
[7] 2008-04-14 . 1B6162FE7F66B1A71A4B70F941C4AA9B . 24576 . . [5.1.2600.5512] . . c:\windows\system32\drivers\kbdclass.sys
[7] 2006-03-02 . 6F877BF8DC01A550CD666F3BEDB2213C . 24576 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0018\DriverFiles\i386\kbdclass.sys
[7] 2004-08-17 . 6F877BF8DC01A550CD666F3BEDB2213C . 24576 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\kbdclass.sys
.
[7] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ndis.sys
[7] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ndis.sys
[7] 2006-03-02 . 558635D3AF1C7546D26067D5D9B6959E . 182912 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB912436$\ndis.sys
[-] 2006-01-10 . AA898F84D2B59129FB92E143A2C73434 . 182528 . . [5.1.2600.2824] . . c:\windows\$NtServicePackUninstall$\ndis.sys
.
[7] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntfs.sys
[7] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ntfs.sys
[7] 2006-03-02 . B78BE402C3F63DD55521F73876951CDD . 574592 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ntfs.sys
.
[7] 2006-03-02 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\dllcache\null.sys
[7] 2006-03-02 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\drivers\null.sys
.
[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys
[7] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\tcpip.sys
[7] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tcpip.sys
[7] 2006-03-02 . 9F4B36614A0FC234525BA224957DE55C . 359040 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\tcpip.sys
.
[7] 2008-04-14 . 249276D3EF1E74B992299CB96099E4D7 . 77824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\browser.dll
[7] 2008-04-14 . 249276D3EF1E74B992299CB96099E4D7 . 77824 . . [5.1.2600.5512] . . c:\windows\system32\browser.dll
[7] 2006-03-02 . F219E27E88107A50544153898DD8178E . 77312 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\browser.dll
.
[7] 2008-04-14 . ED0A176354487CEED65B80A7148AB739 . 13312 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\lsass.exe
[7] 2008-04-14 . ED0A176354487CEED65B80A7148AB739 . 13312 . . [5.1.2600.5512] . . c:\windows\system32\lsass.exe
[7] 2006-03-02 . 82A362FE1D4980B71B588D9C10748511 . 13312 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\lsass.exe
.
[7] 2008-04-14 . 72E1E9E2977BE08BDEEDB6D8FD9D4D40 . 198144 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\netman.dll
[7] 2008-04-14 . 72E1E9E2977BE08BDEEDB6D8FD9D4D40 . 198144 . . [5.1.2600.5512] . . c:\windows\system32\netman.dll
[7] 2006-03-02 . AF342D2781225A8769686E0D47E3123E . 198144 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\netman.dll
.
[-] 2011-02-08 19:01 . 3EF79D1F5B06B29B3C317DFFB8BE0F8F . 1405440 . . [2001.12.4414.700] . . c:\windows\NiwradSoft Shell Pack\Backup\comres.dll
[-] 2011-02-08 19:01 . 8F1807F7766FF1F7895499E9A67E1637 . 1533440 . . [2001.12.4414.700] . . c:\windows\ServicePackFiles\i386\comres.dll
[-] 2011-02-08 19:01 . 8F1807F7766FF1F7895499E9A67E1637 . 1533440 . . [2001.12.4414.700] . . c:\windows\system32\comres.dll
[-] 2011-02-08 19:01 . A5DED85FC02433A47A7FB8B07725C4B3 . 822272 . . [2001.12.4414.700] . . c:\windows\VistaMizer\old\comres.dll
[7] 2006-03-02 12:00 . B44F68274AB7B8A54E9AD74AFF0EFAAC . 806912 . . [2001.12.4414.258] . . c:\windows\$NtServicePackUninstall$\comres.dll
.
[7] 2008-04-14 . 19395D092FD85DDC2D9C7729CF5A2AC8 . 409088 . . [6.7.2600.5512] . . c:\windows\ServicePackFiles\i386\qmgr.dll
[7] 2008-04-14 . 19395D092FD85DDC2D9C7729CF5A2AC8 . 409088 . . [6.7.2600.5512] . . c:\windows\system32\qmgr.dll
[7] 2008-04-14 . 19395D092FD85DDC2D9C7729CF5A2AC8 . 409088 . . [6.7.2600.5512] . . c:\windows\system32\bits\qmgr.dll
[7] 2006-03-02 . E774A26610EC92674273486612C11CFC . 382464 . . [6.6.2600.2180] . . c:\windows\$NtServicePackUninstall$\qmgr.dll
.
[7] 2009-02-09 . C0BD34A62508BA68F146E22CE45919F9 . 401408 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\rpcss.dll
[7] 2009-02-09 . BE27674D1CBC3214AEC84B4336A38BBF . 401408 . . [5.1.2600.5755] . . c:\windows\system32\rpcss.dll
[7] 2009-02-09 . BE27674D1CBC3214AEC84B4336A38BBF . 401408 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\rpcss.dll
[7] 2008-04-14 . C868F3AE15CF71A93F2AA3A32856D839 . 399360 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\rpcss.dll
[7] 2008-04-14 . C868F3AE15CF71A93F2AA3A32856D839 . 399360 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\rpcss.dll
[7] 2006-03-02 . C72C15EE57E248C66E57C76CAB086CF2 . 395776 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\rpcss.dll
.
[7] 2009-02-09 . 9EF697AF07BB8DD82C3B02CA953A95B7 . 111104 . . [5.1.2600.5755] . . c:\windows\system32\services.exe
[7] 2009-02-09 . 9EF697AF07BB8DD82C3B02CA953A95B7 . 111104 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\services.exe
[7] 2009-02-09 . 3D107D45CCFDB266E91D84B52CD7F430 . 111104 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\services.exe
[7] 2008-04-14 . F0D2AE69035092BF22DAD6B50FAB85C2 . 108544 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\services.exe
[7] 2008-04-14 . F0D2AE69035092BF22DAD6B50FAB85C2 . 108544 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\services.exe
[7] 2006-03-02 . 6E401E61F952FBBF708AFBECEFAFAE81 . 108544 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\services.exe
.
[7] 2010-08-17 . 258DD5D4283FD9F9A7166BE9AE45CE73 . 58880 . . [5.1.2600.6024] . . c:\windows\$hf_mig$\KB2347290\SP3QFE\spoolsv.exe
[7] 2010-08-17 . 60784F891563FB1B767F70117FC2428F . 58880 . . [5.1.2600.6024] . . c:\windows\system32\spoolsv.exe
[7] 2010-08-17 . 60784F891563FB1B767F70117FC2428F . 58880 . . [5.1.2600.6024] . . c:\windows\system32\dllcache\spoolsv.exe
[7] 2008-04-14 . CB1090BCA0E7B40D0B5B4E4D66531809 . 57856 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB2347290$\spoolsv.exe
[7] 2008-04-14 . CB1090BCA0E7B40D0B5B4E4D66531809 . 57856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\spoolsv.exe
[7] 2006-03-02 . 21B6FAA88044A41640E03EBB68BE93E8 . 57856 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\spoolsv.exe
.
[-] 2008-04-14 . 471341D353962A35DA3C6324D59D09C4 . 547328 . . [5.1.2600.5512] . . c:\windows\NiwradSoft Shell Pack\Backup\winlogon.exe
[-] 2008-04-14 . 471341D353962A35DA3C6324D59D09C4 . 547328 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\winlogon.exe
[-] 2008-04-14 . 471341D353962A35DA3C6324D59D09C4 . 547328 . . [5.1.2600.5512] . . c:\windows\system32\winlogon.exe
[7] 2008-04-14 . CDDB1F8E1AEA356F3AD106F2CF9B7FEA . 507904 . . [5.1.2600.5512] . . c:\windows\VistaMizer\old\winlogon.exe
[7] 2006-03-02 . 221C29AE1B4CC61D11D8B27DE78B2307 . 502272 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\winlogon.exe
.
[7] 2009-08-06 . 62BB79160F86CD962F312C68C6239BFD . 53472 . . [7.4.7600.226] . . c:\windows\NiwradSoft Shell Pack\Backup\wuauclt.exe
[7] 2009-08-06 . 62BB79160F86CD962F312C68C6239BFD . 53472 . . [7.4.7600.226] . . c:\windows\system32\wuauclt.exe
[7] 2009-08-06 . 62BB79160F86CD962F312C68C6239BFD . 53472 . . [7.4.7600.226] . . c:\windows\system32\dllcache\wuauclt.exe
[7] 2009-08-06 . 62BB79160F86CD962F312C68C6239BFD . 53472 . . [7.4.7600.226] . . c:\windows\VistaMizer\old\wuauclt.exe
[7] 2008-04-14 . DF7917138B80C79D15B3E8520D565311 . 111104 . . [5.4.3790.5512] . . c:\windows\ServicePackFiles\i386\wuauclt.exe
[7] 2006-03-02 . E9F9CD3C7F2E56505A0AC166580120E3 . 111104 . . [5.4.3790.2180] . . c:\windows\$NtServicePackUninstall$\wuauclt.exe
.
[7] 2008-04-13 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ipsec.sys
[7] 2008-04-13 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ipsec.sys
[7] 2006-03-02 . 64537AA5C003A6AFEEE1DF819062D0D1 . 74752 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ipsec.sys
.
[-] 2010-08-23 . 58DB048E9B62543B70FC6487BAEC7717 . 724992 . . [5.82] . . c:\windows\NiwradSoft Shell Pack\Backup\comctl32.dll
[-] 2010-08-23 . 5CE819DCD046DE414D697CD33B1A57A1 . 694784 . . [5.82] . . c:\windows\ServicePackFiles\i386\comctl32.dll
[-] 2010-08-23 . 5CE819DCD046DE414D697CD33B1A57A1 . 694784 . . [5.82] . . c:\windows\system32\comctl32.dll
[-] 2010-08-23 . 5CE819DCD046DE414D697CD33B1A57A1 . 694784 . . [5.82] . . c:\windows\system32\dllcache\comctl32.dll
[7] 2010-08-23 . E145ADD7DAEF759C4F5FB80A180A9C30 . 617472 . . [5.82] . . c:\windows\VistaMizer\old\comctl32.dll
[7] 2010-08-23 . 8A72A30FDC803DC06755D3B36D966F31 . 1054208 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
[7] 2008-04-14 . 4F993463DC5F3F80D77A3D34D7BFBFED . 617472 . . [5.82] . . c:\windows\$NtUninstallKB2296011$\comctl32.dll
[7] 2008-04-14 . D7B7AE36A2EBA312AC4B53862019B3F5 . 1054208 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
[7] 2006-03-02 . 876C658C44F2BF4AF050E5534A9F066F . 611328 . . [5.82] . . c:\windows\$NtServicePackUninstall$\comctl32.dll
[7] 2006-03-02 . AEF3D788DBF40C7C4D204EA45EB0C505 . 921088 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a\comctl32.dll
[7] 2006-03-02 . F76B3003366A205E05AFC0D034C7D3E9 . 1050624 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
.
[7] 2008-04-14 . F3AB0933CBD166D271992F411C27CCAF . 62464 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\cryptsvc.dll
[7] 2008-04-14 . F3AB0933CBD166D271992F411C27CCAF . 62464 . . [5.1.2600.5512] . . c:\windows\system32\cryptsvc.dll
[7] 2006-03-02 . 70D2A1756F4B2067658A186C963FCABD . 60416 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\cryptsvc.dll
.
[7] 2008-07-07 20:29 . A371F11EF07653591C8DE26AFB13CE7F . 253952 . . [2001.12.4414.706] . . c:\windows\system32\es.dll
[7] 2008-07-07 20:29 . A371F11EF07653591C8DE26AFB13CE7F . 253952 . . [2001.12.4414.706] . . c:\windows\system32\dllcache\es.dll
[7] 2008-07-07 20:25 . BE68EA4457E2E5717231CF91BE5448E0 . 253952 . . [2001.12.4414.706] . . c:\windows\$hf_mig$\KB950974\SP3QFE\es.dll
[7] 2008-04-14 07:51 . 260C69FD67687B0DC062FC3D31655857 . 246272 . . [2001.12.4414.701] . . c:\windows\$NtUninstallKB950974$\es.dll
[7] 2008-04-14 07:51 . 260C69FD67687B0DC062FC3D31655857 . 246272 . . [2001.12.4414.701] . . c:\windows\ServicePackFiles\i386\es.dll
[7] 2006-03-02 12:00 . 972378B907070F64932A87C90A035487 . 243200 . . [2001.12.4414.258] . . c:\windows\$NtServicePackUninstall$\es.dll
.
[7] 2008-04-14 . 6C60CA8AC7470AC01CFD3D24C7283CD1 . 110080 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\imm32.dll
[7] 2008-04-14 . 6C60CA8AC7470AC01CFD3D24C7283CD1 . 110080 . . [5.1.2600.5512] . . c:\windows\system32\imm32.dll
[7] 2006-03-02 . 2413635113361E54B62F0C40E4E4DAE6 . 110080 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\imm32.dll
.
[7] 2009-03-21 . 545C653E8FE241CA6200798AA94FE5C7 . 988160 . . [5.1.2600.5781] . . c:\windows\system32\kernel32.dll
[7] 2009-03-21 . 545C653E8FE241CA6200798AA94FE5C7 . 988160 . . [5.1.2600.5781] . . c:\windows\system32\dllcache\kernel32.dll
[7] 2009-03-21 . 0D8F61460F84139BBE5E391D8DE18D9A . 990208 . . [5.1.2600.5781] . . c:\windows\$hf_mig$\KB959426\SP3QFE\kernel32.dll
[7] 2008-04-14 . FD91CD95A1C663DF54DD371CC8A234DE . 988160 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB959426$\kernel32.dll
[7] 2008-04-14 . FD91CD95A1C663DF54DD371CC8A234DE . 988160 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\kernel32.dll
[7] 2006-03-02 . 98DA079F61265BC26D4587E280B79F30 . 982016 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\kernel32.dll
.
[7] 2008-04-14 . 7FDE9FC15765E02B23E1756930165AD1 . 19968 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\linkinfo.dll
[7] 2008-04-14 . 7FDE9FC15765E02B23E1756930165AD1 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\linkinfo.dll
[7] 2006-03-02 . EE1F842DB2AE412136643B0814D770A6 . 18944 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\linkinfo.dll
.
[7] 2008-04-14 . C66BA7BD13C8FB8BEC4863B88641C763 . 22016 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\lpk.dll
[7] 2008-04-14 . C66BA7BD13C8FB8BEC4863B88641C763 . 22016 . . [5.1.2600.5512] . . c:\windows\system32\lpk.dll
[7] 2006-03-02 . BFE8DC7AAE7CB1C86243D77B340DC304 . 22016 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\lpk.dll
.
[7] 2011-11-04 . 824B3D28F3D10B4F18A5F842916BFDA7 . 5978112 . . [8.00.6001.19170] . . c:\windows\NiwradSoft Shell Pack\Backup\mshtml.dll
[-] 2011-11-04 . 491E21FEAF56FE3C167E7681B7F07D22 . 6139392 . . [8.00.6001.19170] . . c:\windows\ServicePackFiles\i386\mshtml.dll
[-] 2011-11-04 . 491E21FEAF56FE3C167E7681B7F07D22 . 6139392 . . [8.00.6001.19170] . . c:\windows\system32\mshtml.dll
[-] 2011-11-04 . 491E21FEAF56FE3C167E7681B7F07D22 . 6139392 . . [8.00.6001.19170] . . c:\windows\system32\dllcache\mshtml.dll
[7] 2011-11-04 . 25E90AFB26D2B7CB5A9C06F987E4B2C1 . 5978624 . . [8.00.6001.23266] . . c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\mshtml.dll
[7] 2011-10-03 . B318A4E66111332CA35A90B7F7585891 . 5971456 . . [8.00.6001.19154] . . c:\windows\ie8updates\KB2618444-IE8\mshtml.dll
[7] 2011-10-03 . E5F6F7F7531A2A8297A7F5739E30865F . 5972992 . . [8.00.6001.23250] . . c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\mshtml.dll
[-] 2011-07-25 . 683758FC8B479DE0937D277F6568FADE . 6131200 . . [8.00.6001.19120] . . c:\windows\ie8updates\KB2586448-IE8\mshtml.dll
[7] 2011-07-25 . 00533384F69D30E334BD7FD0260FC95C . 5971456 . . [8.00.6001.23216] . . c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\mshtml.dll
[7] 2011-05-30 . DCF153201CF53F9A721AFEEF43C6947D . 5964800 . . [8.00.6001.19088] . . c:\windows\ie8updates\KB2559049-IE8\mshtml.dll
[7] 2011-05-30 . 878F729E235273AAF7EE57AD15679F15 . 5967360 . . [8.00.6001.23181] . . c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\mshtml.dll
[7] 2011-02-22 . A5DF4911593299C09D92BFA3E7096F68 . 5964800 . . [8.00.6001.23141] . . c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\mshtml.dll
[7] 2011-02-22 . 3916F0BAB9666CC2F6962F69A3DB3D6B . 5962240 . . [8.00.6001.19046] . . c:\windows\ie8updates\KB2530548-IE8\mshtml.dll
[-] 2011-02-08 . D8751190ED2208F8A5F8D8BC3E56D607 . 6049792 . . [8.00.6001.18999] . . c:\windows\ie8updates\KB2482017-IE8\mshtml.dll
[7] 2010-12-20 . F41F8D25A9EC6BC64B4F081DD4AC3C7F . 5961216 . . [8.00.6001.19019] . . c:\windows\ie8updates\KB2497640-IE8\mshtml.dll
[7] 2010-12-20 . 0EB055A6E68E1855AB0AA90CDBEDBA6C . 5962240 . . [8.00.6001.23111] . . c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\mshtml.dll
[7] 2010-11-06 . 8C0B4A6F4E9C323937F44BC252747FD1 . 5960704 . . [8.00.6001.23091] . . c:\windows\$hf_mig$\KB2416400-IE8\SP3QFE\mshtml.dll
[7] 2010-09-10 . BFB18929123F545F3EAA845F912AC4BD . 5957120 . . [8.00.6001.18975] . . c:\windows\ie8updates\KB2416400-IE8\mshtml.dll
[7] 2010-09-10 . BFB18929123F545F3EAA845F912AC4BD . 5957120 . . [8.00.6001.18975] . . c:\windows\SoftwareDistribution\Download\305178da04015cd3a8ad4645941f7b2e\SP3GDR\mshtml.dll
[7] 2010-09-10 . 84BF75E7A417C4F176AEC0B4E46C104E . 5958656 . . [8.00.6001.23067] . . c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\mshtml.dll
[7] 2010-09-10 . 84BF75E7A417C4F176AEC0B4E46C104E . 5958656 . . [8.00.6001.23067] . . c:\windows\SoftwareDistribution\Download\305178da04015cd3a8ad4645941f7b2e\SP3QFE\mshtml.dll
[7] 2010-09-09 . 4A205A6973672102625707EE32AA41E5 . 3095552 . . [6.00.2900.6036] . . c:\windows\$hf_mig$\KB2360131\SP3QFE\mshtml.dll
[7] 2010-05-06 . 06B941C7749A9F071444B4C7563F36B5 . 5950976 . . [8.00.6001.18928] . . c:\windows\ie8updates\KB2360131-IE8\mshtml.dll
[7] 2010-05-06 . 06B941C7749A9F071444B4C7563F36B5 . 5950976 . . [8.00.6001.18928] . . c:\windows\SoftwareDistribution\Download\4da92e2c99b7232d7106179052438045\SP3GDR\mshtml.dll
[7] 2010-05-06 . 3F88F981AA7BC20744E0D2C699F500EF . 5953024 . . [8.00.6001.23019] . . c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\mshtml.dll
[7] 2010-05-06 . 3F88F981AA7BC20744E0D2C699F500EF . 5953024 . . [8.00.6001.23019] . . c:\windows\SoftwareDistribution\Download\4da92e2c99b7232d7106179052438045\SP3QFE\mshtml.dll
[7] 2009-03-08 . D469A0EBA2EF5C6BEE8065B7E3196E5E . 5937152 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB982381-IE8\mshtml.dll
[7] 2008-04-14 . DAF9947DE2A6EA20AE524B7C50487E57 . 3066880 . . [6.00.2900.5512] . . c:\windows\ie8\mshtml.dll
[-] 2006-03-02 . 43E8D8091527AA91EB0B2A553447B3D8 . 3070464 . . [6.00.2900.2853] . . c:\windows\$NtServicePackUninstall$\mshtml.dll
[-] 2006-02-21 . CDD766C610E7DE86CCE91CD339C79BCF . 3073024 . . [6.00.2900.2853] . . c:\windows\$hf_mig$\KB911164\SP2QFE\mshtml.dll
.
[7] 2008-04-14 . D165DFCB4EA452510E53416F573018BB . 343040 . . [7.0.2600.5512] . . c:\windows\ServicePackFiles\i386\msvcrt.dll
[7] 2008-04-14 . D165DFCB4EA452510E53416F573018BB . 343040 . . [7.0.2600.5512] . . c:\windows\system32\msvcrt.dll
[7] 2008-04-14 . EC8D5E09C6CA5F52858A5EB71F308FDF . 343040 . . [7.0.2600.5512] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.2600.5512_x-ww_3fd60d63\msvcrt.dll
[7] 2006-03-02 . 91CC3E4CCDBBF8E224182C76C87E454F . 343040 . . [7.0.2600.2180] . . c:\windows\$NtServicePackUninstall$\msvcrt.dll
[7] 2006-03-02 . 4200BE3808F6406DBE45A7B88DAE5035 . 322560 . . [7.0.2600.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.0.0_x-ww_2726e76a\msvcrt.dll
[7] 2006-03-02 . AB47015B67531572BE46C0C08222C84C . 343040 . . [7.0.2600.2180] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.2600.2180_x-ww_b2505ed9\msvcrt.dll
.
[7] 2008-06-20 . 1289B7611CCD6CB27596AE92CBF03E35 . 247296 . . [5.1.2600.5625] . . c:\windows\$NtUninstallKB2509553$\mswsock.dll
[7] 2008-06-20 . B6CEC406351EA5EF131416D5F52D006F . 247296 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB2509553\SP3QFE\mswsock.dll
[7] 2008-06-20 . B6CEC406351EA5EF131416D5F52D006F . 247296 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\mswsock.dll
[7] 2008-06-20 . 39EE7C3BFBC64BA87CC8CF67386E814C . 247296 . . [5.1.2600.5625] . . c:\windows\system32\mswsock.dll
[7] 2008-06-20 . 39EE7C3BFBC64BA87CC8CF67386E814C . 247296 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\mswsock.dll
[7] 2008-04-14 . AAC97DAB5F8A0573CF10E0EAC42A7724 . 247296 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\mswsock.dll
[7] 2008-04-14 . AAC97DAB5F8A0573CF10E0EAC42A7724 . 247296 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\mswsock.dll
[7] 2006-03-02 . 64C078BD4EFD441C3F159EDC5EA4420A . 247296 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\mswsock.dll
.
[7] 2008-04-14 . C2ED0E3408F50BBC149D4F0936E67832 . 407040 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\netlogon.dll
[7] 2008-04-14 . C2ED0E3408F50BBC149D4F0936E67832 . 407040 . . [5.1.2600.5512] . . c:\windows\system32\netlogon.dll
[7] 2006-03-02 . 2591CADAEF7D2242039255028E577688 . 407040 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\netlogon.dll
.
[7] 2008-04-14 . 9FA69781CAA7A1DA981A24F240A61A60 . 17408 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\powrprof.dll
[7] 2008-04-14 . 9FA69781CAA7A1DA981A24F240A61A60 . 17408 . . [6.00.2900.5512] . . c:\windows\system32\powrprof.dll
[7] 2006-03-02 . 134B95A1D8FAFD74A68E4B2116DEFA7D . 17408 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\powrprof.dll
.
[7] 2008-04-14 . 830CE8951C71F361D7D2F38416CC8BC1 . 185856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\scecli.dll
[7] 2008-04-14 . 830CE8951C71F361D7D2F38416CC8BC1 . 185856 . . [5.1.2600.5512] . . c:\windows\system32\scecli.dll
[7] 2006-03-02 . 07119058D451CB7EA4317BCFDA8599A6 . 184832 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\scecli.dll
.
[7] 2008-04-14 . 5EE949255BABC0B17C09DDB2E59E3878 . 5120 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\sfc.dll
[7] 2008-04-14 . 5EE949255BABC0B17C09DDB2E59E3878 . 5120 . . [5.1.2600.5512] . . c:\windows\system32\sfc.dll
[7] 2006-03-02 . 6CC2D21488333133AE0C9F44F6051CB7 . 5120 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\sfc.dll
.
[7] 2008-04-14 . BE4A520E29B6391F49E79CCC52044D93 . 14336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\svchost.exe
[7] 2008-04-14 . BE4A520E29B6391F49E79CCC52044D93 . 14336 . . [5.1.2600.5512] . . c:\windows\system32\svchost.exe
[7] 2006-03-02 . DFBA2915B0BF58ABB288CD4C9318CB3F . 14336 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\svchost.exe
.
[7] 2008-04-14 . C2546CD7A398476F9DF5614B2AE160E8 . 249856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tapisrv.dll
[7] 2008-04-14 . C2546CD7A398476F9DF5614B2AE160E8 . 249856 . . [5.1.2600.5512] . . c:\windows\system32\tapisrv.dll
[7] 2006-03-02 . 37162D29CD61519E6F5EA0DE99786FF6 . 246272 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\tapisrv.dll
.
[-] 2008-04-14 . 581480DE9C65D6BD0552E35BF17379B2 . 587776 . . [5.1.2600.5512] . . c:\windows\NiwradSoft Shell Pack\Backup\user32.dll
[-] 2008-04-14 . CCB32D10C69A89822E9134C0C4894BE1 . 578560 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\user32.dll
[-] 2008-04-14 . CCB32D10C69A89822E9134C0C4894BE1 . 578560 . . [5.1.2600.5512] . . c:\windows\system32\user32.dll
[7] 2008-04-14 . E16E0990967374E76F3E40CACAFD3D53 . 578560 . . [5.1.2600.5512] . . c:\windows\VistaMizer\old\user32.dll
[7] 2006-03-02 . 1B4CCC59980DA34E75F20E42B283B027 . 577024 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\user32.dll
.
[7] 2008-04-14 . 7DC1830F22E7D275B438127B68030239 . 26112 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\userinit.exe
[7] 2008-04-14 . 7DC1830F22E7D275B438127B68030239 . 26112 . . [5.1.2600.5512] . . c:\windows\system32\userinit.exe
[7] 2006-03-02 . 836F7960362FF95C5D49E40B891F2CFC . 24576 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\userinit.exe
.
[7] 2011-11-04 . 906D5D1E05B92716362A7B309349C2C7 . 916992 . . [8.00.6001.19165] . . c:\windows\NiwradSoft Shell Pack\Backup\wininet.dll
[-] 2011-11-04 . C809DB026053E03B2A20AD331D3BB67E . 983552 . . [8.00.6001.19165] . . c:\windows\ServicePackFiles\i386\wininet.dll
[-] 2011-11-04 . C809DB026053E03B2A20AD331D3BB67E . 983552 . . [8.00.6001.19165] . . c:\windows\system32\wininet.dll
[-] 2011-11-04 . C809DB026053E03B2A20AD331D3BB67E . 983552 . . [8.00.6001.19165] . . c:\windows\system32\dllcache\wininet.dll
[7] 2011-11-04 . 26DA5DB5586F328F2808D0776A3FC6B2 . 919552 . . [8.00.6001.23261] . . c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\wininet.dll
[7] 2011-08-22 . 5A210F47410B4829B1EF162DFF535F66 . 916480 . . [8.00.6001.19131] . . c:\windows\ie8updates\KB2618444-IE8\wininet.dll
[7] 2011-08-22 . EACC4B6D2AE03590C82808992A4F47D7 . 919552 . . [8.00.6001.23227] . . c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\wininet.dll
[-] 2011-06-23 . E8689D2B64159B31A8EED0A50E922D50 . 983040 . . [8.00.6001.19098] . . c:\windows\ie8updates\KB2586448-IE8\wininet.dll
[7] 2011-06-23 . 279B74EC9E9AC6B42344BABB9995EC41 . 919552 . . [8.00.6001.23192] . . c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\wininet.dll
[7] 2011-04-25 . ABBE4038CB5C1363B8886C525C67264C . 916480 . . [8.00.6001.19072] . . c:\windows\ie8updates\KB2559049-IE8\wininet.dll
[7] 2011-04-25 . 081237E3BE3EA0AF3B7A77F7578B7831 . 919552 . . [8.00.6001.23165] . . c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\wininet.dll
[7] 2011-02-22 . 193372CF2538E1943580C416D6DE925B . 919552 . . [8.00.6001.23139] . . c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\wininet.dll
[7] 2011-02-22 . 38F763F5829A75DB9512295BF8A0520F . 916480 . . [8.00.6001.19044] . . c:\windows\ie8updates\KB2530548-IE8\wininet.dll
[-] 2011-02-08 . C34051BBF96AE00A36C18D82625F5678 . 929792 . . [8.00.6001.18992] . . c:\windows\ie8updates\KB2482017-IE8\wininet.dll
[7] 2010-12-20 . 62709A317843B4A64C39A94354847E90 . 916480 . . [8.00.6001.19019] . . c:\windows\ie8updates\KB2497640-IE8\wininet.dll
[7] 2010-12-20 . 0EA9F77AAE38F90904E926BB73BF6D00 . 919552 . . [8.00.6001.23111] . . c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\wininet.dll
[7] 2010-11-06 . 8E5E22429507F8CF2F7B7D4F361F2827 . 919552 . . [8.00.6001.23084] . . c:\windows\$hf_mig$\KB2416400-IE8\SP3QFE\wininet.dll
[7] 2010-09-10 . 63505861F205E3835D8148811DCB56FE . 916480 . . [8.00.6001.18968] . . c:\windows\ie8updates\KB2416400-IE8\wininet.dll
[7] 2010-09-10 . 63505861F205E3835D8148811DCB56FE . 916480 . . [8.00.6001.18968] . . c:\windows\SoftwareDistribution\Download\305178da04015cd3a8ad4645941f7b2e\SP3GDR\wininet.dll
[7] 2010-09-10 . 1B2338967DABAA1B65415D355105D743 . 919552 . . [8.00.6001.23060] . . c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\wininet.dll
[7] 2010-09-10 . 1B2338967DABAA1B65415D355105D743 . 919552 . . [8.00.6001.23060] . . c:\windows\SoftwareDistribution\Download\305178da04015cd3a8ad4645941f7b2e\SP3QFE\wininet.dll
[7] 2010-09-09 . 5D64A660FF81AC5828DDD00439BEC3BA . 669696 . . [6.00.2900.6036] . . c:\windows\$hf_mig$\KB2360131\SP3QFE\wininet.dll
[7] 2010-05-06 . B7ECEF0CCF63119356E174A78C185171 . 916480 . . [8.00.6001.18923] . . c:\windows\ie8updates\KB2360131-IE8\wininet.dll
[7] 2010-05-06 . B7ECEF0CCF63119356E174A78C185171 . 916480 . . [8.00.6001.18923] . . c:\windows\SoftwareDistribution\Download\4da92e2c99b7232d7106179052438045\SP3GDR\wininet.dll
[7] 2010-05-06 . 72064DA077E9D6912F39438D97CC0C60 . 919040 . . [8.00.6001.23014] . . c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\wininet.dll
[7] 2010-05-06 . 72064DA077E9D6912F39438D97CC0C60 . 919040 . . [8.00.6001.23014] . . c:\windows\SoftwareDistribution\Download\4da92e2c99b7232d7106179052438045\SP3QFE\wininet.dll
[7] 2009-03-08 . 6CE32F7778061CCC5814D5E0F282D369 . 914944 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB982381-IE8\wininet.dll
[7] 2008-04-14 . 3FE5E65A7ED9EC98AEE9167CA07812D3 . 667136 . . [6.00.2900.5512] . . c:\windows\ie8\wininet.dll
[7] 2006-03-02 . 50D263E3454E8357D13BB598129185AD . 657408 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\wininet.dll
.
[7] 2008-04-14 . 951D473917C51F21496D914CF6E5DDD1 . 82432 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ws2_32.dll
[7] 2008-04-14 . 951D473917C51F21496D914CF6E5DDD1 . 82432 . . [5.1.2600.5512] . . c:\windows\system32\ws2_32.dll
[7] 2006-03-02 . 382E9B87F1282E697C67AF84E34E35E2 . 82944 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ws2_32.dll
.
[7] 2008-04-14 . 859F7735F199C90403340183A3DDFB78 . 19968 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ws2help.dll
[7] 2008-04-14 . 859F7735F199C90403340183A3DDFB78 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\ws2help.dll
[7] 2006-03-02 . C2B86666FC44B48903AD6016D15A23DF . 19968 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ws2help.dll
.
[-] 2011-02-08 . 1A32145EBADFE694790FB7FBC060FD37 . 1541120 . . [6.00.2900.5512] . . c:\windows\explorer.exe
[-] 2011-02-08 . 6347602C0397D969F62BB5D280A2CC8D . 1552384 . . [6.00.2900.5512] . . c:\windows\NiwradSoft Shell Pack\Backup\explorer.exe
[-] 2011-02-08 . 1A32145EBADFE694790FB7FBC060FD37 . 1541120 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\explorer.exe
[-] 2011-02-08 . 31A427B61739EC961A5CD92F4BD0EA80 . 1085952 . . [6.00.2900.5512] . . c:\windows\VistaMizer\old\explorer.exe
[-] 2009-04-07 . DC451E8EAF75B9F274E3151C2BED40DD . 3082240 . . [6.0.6001.18164] . . c:\windows\Resources\Themes\Themespack\Windows 7 Style For Vista\Windows 7 Style For Vista\Extra\x64 System Files\Explorer\explorer.exe
[-] 2009-03-22 . 84ED92280C550F1340A43A0D096CB6FF . 2928640 . . [6.0.6001.18164] . . c:\windows\Resources\Themes\Themespack\Windows 7 Style For Vista\Windows 7 Style For Vista\Extra\x86 System Files\Explorer\explorer.exe
[-] 2008-11-21 . 4815CCD3796D5B645F8FC911E3B83712 . 2925056 . . [6.0.6001.18000] . . c:\windows\Resources\Themes\Themespack\ISOTAVS\ISOTA\System Files\explorer.exe
[7] 2006-03-02 . 53114D57AB73A406AC7F602227781A99 . 1032704 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\explorer.exe
.
[-] 2011-02-08 . 357A3D34D84170AA254A0F5F56197DBC . 277504 . . [5.1.2600.5512] . . c:\windows\regedit.exe
[-] 2011-02-08 . 1E0F5A0072CD399DC0DF14FE7C7BBAAE . 268800 . . [5.1.2600.5512] . . c:\windows\NiwradSoft Shell Pack\Backup\regedit.exe
[-] 2011-02-08 . 357A3D34D84170AA254A0F5F56197DBC . 277504 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\regedit.exe
[-] 2011-02-08 . E12E4EDBAE8396845CB127C43D957CBF . 292864 . . [5.1.2600.5512] . . c:\windows\VistaMizer\old\regedit.exe
[7] 2006-03-02 . CB5A91928D94224E7E30EE277B45E8A3 . 147968 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\regedit.exe
.
[7] 2011-11-01 . ED9B683C7A8BBAAAB9B377197D20832C . 1288192 . . [5.1.2600.6168] . . c:\windows\NiwradSoft Shell Pack\Backup\ole32.dll
[-] 2011-11-01 . 2AB08107D0AEB88B6CAA786EFBB48C6B . 1313280 . . [5.1.2600.6168] . . c:\windows\ServicePackFiles\i386\ole32.dll
[-] 2011-11-01 . 2AB08107D0AEB88B6CAA786EFBB48C6B . 1313280 . . [5.1.2600.6168] . . c:\windows\system32\ole32.dll
[-] 2011-11-01 . 2AB08107D0AEB88B6CAA786EFBB48C6B . 1313280 . . [5.1.2600.6168] . . c:\windows\system32\dllcache\ole32.dll
[7] 2011-11-01 . B5EEF42BC72418EECC3DD3D93B2B5F34 . 1288704 . . [5.1.2600.6168] . . c:\windows\$hf_mig$\KB2624667\SP3QFE\ole32.dll
[-] 2010-07-16 . 81206718E930BEF6D92A64725907D973 . 1312768 . . [5.1.2600.6010] . . c:\windows\$NtUninstallKB2624667$\ole32.dll
[7] 2010-07-16 . 6D1A3A355CA2AC64D2D5BAEC25C16427 . 1287680 . . [5.1.2600.6010] . . c:\windows\VistaMizer\old\ole32.dll
[7] 2010-07-16 . C85BE0CF9C91EB64CECA1D639D71D4CC . 1288704 . . [5.1.2600.6010] . . c:\windows\$hf_mig$\KB979687\SP3QFE\ole32.dll
[7] 2008-04-14 . 21F836AAB269FF644E0E708B794B0DF7 . 1287168 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB979687$\ole32.dll
[7] 2006-03-02 . 7FE54C063DDA8EF226846510852E6B1B . 1281024 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ole32.dll
.
[7] 2010-04-16 . A0C90E01D288A618AE6B99E92B7E0115 . 406016 . . [1.0420.2600.5969] . . c:\windows\system32\usp10.dll
[7] 2010-04-16 . A0C90E01D288A618AE6B99E92B7E0115 . 406016 . . [1.0420.2600.5969] . . c:\windows\system32\dllcache\usp10.dll
[7] 2010-04-16 . 6BE004F9FCEECA6536385D5CB59BFD37 . 406016 . . [1.0420.2600.5969] . . c:\windows\$hf_mig$\KB981322\SP3QFE\usp10.dll
[7] 2008-04-14 . F5B6A143739B894BF4F488CFFC3D3015 . 406016 . . [1.0420.2600.5512] . . c:\windows\$NtUninstallKB981322$\usp10.dll
[7] 2008-04-14 . F5B6A143739B894BF4F488CFFC3D3015 . 406016 . . [1.0420.2600.5512] . . c:\windows\ServicePackFiles\i386\usp10.dll
[7] 2006-03-02 . E28340F6CB7BAC3EACDA9C74A0BE42BE . 406528 . . [1.0420.2600.2180] . . c:\windows\$NtServicePackUninstall$\usp10.dll
.
[7] 2008-04-14 . AF6A4BCDE2343E8562D3003A1740CC96 . 4096 . . [5.3.2600.5512] . . c:\windows\ServicePackFiles\i386\ksuser.dll
[7] 2008-04-14 . AF6A4BCDE2343E8562D3003A1740CC96 . 4096 . . [5.3.2600.5512] . . c:\windows\system32\ksuser.dll
[7] 2008-04-14 . AF6A4BCDE2343E8562D3003A1740CC96 . 4096 . . [5.3.2600.5512] . . c:\windows\system32\ReinstallBackups\0029\DriverFiles\i386\ksuser.dll
[7] 2008-04-14 . AF6A4BCDE2343E8562D3003A1740CC96 . 4096 . . [5.3.2600.5512] . . c:\windows\system32\ReinstallBackups\0030\DriverFiles\i386\ksuser.dll
[7] 2008-04-14 . AF6A4BCDE2343E8562D3003A1740CC96 . 4096 . . [5.3.2600.5512] . . c:\windows\system32\ReinstallBackups\0032\DriverFiles\i386\ksuser.dll
[7] 2004-08-17 . FC727882241CD48E243868DD8401AB60 . 4096 . . [5.3.2600.2180] . . c:\windows\$NtServicePackUninstall$\ksuser.dll
.
[-] 2011-02-08 . 04F020DE8F6AD9BF15946808915A5D12 . 25088 . . [5.1.2600.5512] . . c:\windows\NiwradSoft Shell Pack\Backup\ctfmon.exe
[-] 2011-02-08 . BD51CC12F9ACB16CBD8CD16B755E93D2 . 40448 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ctfmon.exe
[-] 2011-02-08 . BD51CC12F9ACB16CBD8CD16B755E93D2 . 40448 . . [5.1.2600.5512] . . c:\windows\system32\ctfmon.exe
[-] 2011-02-08 . 9467686B82BA152BCA92E7B4848B43B5 . 30208 . . [5.1.2600.5512] . . c:\windows\VistaMizer\old\ctfmon.exe
[7] 2006-03-02 . A5BAA91475167161DEA02BA3C4CA4F59 . 15360 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ctfmon.exe
.
[7] 2009-07-27 . EE9A2B9EA968A792A053C9D1A86BF870 . 135168 . . [6.00.2900.5853] . . c:\windows\system32\shsvcs.dll
[7] 2009-07-27 . EE9A2B9EA968A792A053C9D1A86BF870 . 135168 . . [6.00.2900.5853] . . c:\windows\system32\dllcache\shsvcs.dll
[7] 2009-07-27 . 54A6BF743E0517528A5064CEAEB40EA7 . 135168 . . [6.00.2900.5853] . . c:\windows\$hf_mig$\KB971029\SP3QFE\shsvcs.dll
[7] 2008-04-14 . B927443008910B412BEC72FC41C1BAD0 . 135168 . . [6.00.2900.5512] . . c:\windows\$NtUninstallKB971029$\shsvcs.dll
[7] 2008-04-14 . B927443008910B412BEC72FC41C1BAD0 . 135168 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\shsvcs.dll
[7] 2006-03-02 . 8BA76BD2A943F642F267A296A15776D2 . 134656 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\shsvcs.dll
.
[7] 2008-04-14 . 35B91147124F64AC8081A2EDB9EA4DEE . 171008 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\srsvc.dll
[7] 2008-04-14 . 35B91147124F64AC8081A2EDB9EA4DEE . 171008 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
[7] 2006-03-02 . 3CD57F31A64D32FDB28918B16D1E6AAC . 170496 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB888402$\srsvc.dll
[-] 2004-11-17 . 17C219D43024C82B25256D14CE0803EC . 171008 . . [5.1.2600.2567] . . c:\windows\$NtServicePackUninstall$\srsvc.dll
.
[7] 2008-04-14 . 278A14BEDEF58687EAF8BEC056A78D8B . 13824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\wscntfy.exe
[7] 2008-04-14 . 278A14BEDEF58687EAF8BEC056A78D8B . 13824 . . [5.1.2600.5512] . . c:\windows\system32\wscntfy.exe
[7] 2006-03-02 . 93F75FF033BAA186D08115D73BFE3D32 . 13824 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\wscntfy.exe
.
[7] 2008-04-14 . EAA4BB9EDB3FB10CF8979FE65E63658F . 129024 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\xmlprov.dll
[7] 2008-04-14 . EAA4BB9EDB3FB10CF8979FE65E63658F . 129024 . . [5.1.2600.5512] . . c:\windows\system32\xmlprov.dll
[7] 2006-03-02 . 9B835D4C64860B155A1701D5092EC9E4 . 129536 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\xmlprov.dll
.
[7] 2008-04-14 . 2EE99F67C930931EB404DADCE57E976E . 56320 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\eventlog.dll
[7] 2008-04-14 . 2EE99F67C930931EB404DADCE57E976E . 56320 . . [5.1.2600.5512] . . c:\windows\system32\eventlog.dll
[7] 2006-03-02 . 6EB66066D5C0175320CFEA0A4C74C88F . 55808 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\eventlog.dll
.
[7] 2008-04-14 . 56A6034E7764E23D9114223EB3523925 . 1571840 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\sfcfiles.dll
[7] 2008-04-14 . 56A6034E7764E23D9114223EB3523925 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
[7] 2006-03-02 . 5CA2E2BA624D6F2C7A581C91E70394CB . 1548288 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\sfcfiles.dll
.
[7] 2008-04-13 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ipsec.sys
[7] 2008-04-13 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ipsec.sys
[7] 2006-03-02 . 64537AA5C003A6AFEEE1DF819062D0D1 . 74752 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ipsec.sys
.
[7] 2008-04-14 . 8F31505484A190D5B22274708799F4EC . 59904 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\regsvc.dll
[7] 2008-04-14 . 8F31505484A190D5B22274708799F4EC . 59904 . . [5.1.2600.5512] . . c:\windows\system32\regsvc.dll
[7] 2006-03-02 . 5B21208FCF8970BB61FE98E19D828714 . 59904 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\regsvc.dll
.
[7] 2008-04-14 . 3FF232A7731621B8902D81D42418C93C . 192512 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\schedsvc.dll
[7] 2008-04-14 . 3FF232A7731621B8902D81D42418C93C . 192512 . . [5.1.2600.5512] . . c:\windows\system32\schedsvc.dll
[7] 2006-03-02 . 29AC93307C6182DBE336BCA314947F28 . 190976 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\schedsvc.dll
.
[7] 2008-04-14 . BECD5271DC4E3B7C3D035F790FCBC1E5 . 71680 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ssdpsrv.dll
[7] 2008-04-14 . BECD5271DC4E3B7C3D035F790FCBC1E5 . 71680 . . [5.1.2600.5512] . . c:\windows\system32\ssdpsrv.dll
[7] 2006-03-02 . 88C28F53F53438DAFCD95E99C837C61E . 71680 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ssdpsrv.dll
.
[7] 2008-04-14 . A75DD6FC3DBEE4FFF5EBC9F2C28BB66E . 295936 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\termsrv.dll
[7] 2008-04-14 . A75DD6FC3DBEE4FFF5EBC9F2C28BB66E . 295936 . . [5.1.2600.5512] . . c:\windows\system32\termsrv.dll
[7] 2006-03-02 . 2F5919F2F6EE7A845893D9C3AA2BC56A . 295936 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\termsrv.dll
.
[-] 2008-04-14 . FDE84E2C6D0E1F75D61D7CC111A1DA5A . 369152 . . [5.1.2600.5512] . . c:\windows\NiwradSoft Shell Pack\Backup\hnetcfg.dll
[-] 2008-04-14 . FDE84E2C6D0E1F75D61D7CC111A1DA5A . 369152 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\hnetcfg.dll
[-] 2008-04-14 . FDE84E2C6D0E1F75D61D7CC111A1DA5A . 369152 . . [5.1.2600.5512] . . c:\windows\system32\hnetcfg.dll
[7] 2008-04-14 . ED18ADEE4AA21EB26977260152D7241A . 345088 . . [5.1.2600.5512] . . c:\windows\VistaMizer\old\hnetcfg.dll
[7] 2006-03-02 . FAABA83BE47C5B15F620FAA53267A9B8 . 345088 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\hnetcfg.dll
.
[7] 2008-04-14 . 6B8E7A90E576D4FE308F97C69060A171 . 171008 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\appmgmts.dll
[7] 2008-04-14 . 6B8E7A90E576D4FE308F97C69060A171 . 171008 . . [5.1.2600.5512] . . c:\windows\system32\appmgmts.dll
[7] 2006-03-02 . 421184F91EAE5C6E78E653C6B32AAE84 . 171008 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\appmgmts.dll
.
[7] 2006-03-02 . AFDFF022A01F0B11C776F0860C3B282F . 11776 . . [5.1.2600.0] . . c:\windows\system32\drivers\acpiec.sys
.
[7] 2008-04-13 21:09 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\ServicePackFiles\i386\aec.sys
[7] 2008-04-13 21:09 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\system32\drivers\aec.sys
[7] 2004-08-03 21:39 . 841F385C6CFAF66B58FBD898722BB4F0 . 142464 . . [5.1.2601.2078] . . c:\windows\$NtServicePackUninstall$\aec.sys
.
[7] 2008-04-13 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\agp440.sys
[7] 2008-04-13 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\system32\drivers\agp440.sys
.
[7] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ip6fw.sys
[7] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ip6fw.sys
[7] 2006-03-02 . 4448006B6BC60E6C027932CFC38D6855 . 29056 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ip6fw.sys
.
[7] 2010-09-18 07:18 . 2BC3ED47ACB42F664D5D1D247F2553AA . 953856 . . [4.1.6151] . . c:\windows\$hf_mig$\KB2387149\SP3QFE\mfc40u.dll
[7] 2010-09-18 06:53 . 9BB005DF755C4EDE048221DFD4A28A87 . 953856 . . [4.1.6151] . . c:\windows\system32\mfc40u.dll
[7] 2010-09-18 06:53 . 9BB005DF755C4EDE048221DFD4A28A87 . 953856 . . [4.1.6151] . . c:\windows\system32\dllcache\mfc40u.dll
[7] 2008-04-14 07:51 . 7C3351F60B759D5D917E68342AE3307C . 927504 . . [4.1.0.61] . . c:\windows\$NtUninstallKB2387149$\mfc40u.dll
[7] 2008-04-14 07:51 . 7C3351F60B759D5D917E68342AE3307C . 927504 . . [4.1.0.61] . . c:\windows\ServicePackFiles\i386\mfc40u.dll
[-] 2006-03-02 12:00 . A9D81C87BEF253D4CE3A5F8CEE2526C4 . 924432 . . [4.1.6140] . . c:\windows\$NtServicePackUninstall$\mfc40u.dll
.
[7] 2008-04-14 . 221CD1C815B8A6B79389C3F5D1018DE8 . 33792 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\msgsvc.dll
[7] 2008-04-14 . 221CD1C815B8A6B79389C3F5D1018DE8 . 33792 . . [5.1.2600.5512] . . c:\windows\system32\msgsvc.dll
[7] 2006-03-02 . 8B2FCBD881879B55BE40B41F12FFC431 . 33792 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\msgsvc.dll
.
[7] 2009-01-30 19:33 . 051B1BDECD6DEE18C771B5D5EC7F044D . 27136 . . [11.0.5721.5262] . . c:\windows\system32\mspmsnsv.dll
[7] 2009-01-30 19:33 . 051B1BDECD6DEE18C771B5D5EC7F044D . 27136 . . [11.0.5721.5262] . . c:\windows\system32\dllcache\mspmsnsv.dll
[7] 2006-03-02 12:00 . E02E913B3841717A890A644EE167B9A5 . 52224 . . [9.0.1.56] . . c:\windows\$NtUninstallWMFDist11$\mspmsnsv.dll
.
[7] 2011-10-26 . 8AE4032D26FB72F39BEA8BB4D4F8AC30 . 2071552 . . [5.1.2600.6165] . . c:\windows\Driver Cache\i386\ntkrnlpa.exe
[7] 2011-10-26 . D0CE1AD877BDF9E6D646F789F0C711B4 . 2029056 . . [5.1.2600.6165] . . c:\windows\NiwradSoft Shell Pack\Backup\ntkrnlpa.exe
[-] 2011-10-26 . F0E6149516EE7AECE469A71F8C2479C9 . 2190336 . . [5.1.2600.6165] . . c:\windows\ServicePackFiles\i386\ntkrnlpa.exe
[-] 2011-10-26 . F0E6149516EE7AECE469A71F8C2479C9 . 2190336 . . [5.1.2600.6165] . . c:\windows\system32\ntkrnlpa.exe
[-] 2011-10-26 . F0E6149516EE7AECE469A71F8C2479C9 . 2190336 . . [5.1.2600.6165] . . c:\windows\system32\dllcache\ntkrnlpa.exe
[7] 2011-10-26 . 64201EB5A7ECB3E7203ECCDB60FBE44E . 2071552 . . [5.1.2600.6165] . . c:\windows\$hf_mig$\KB2633171\SP3QFE\ntkrnlpa.exe
[7] 2010-12-09 . 40D176442F70573DBA0E05A7E40D3EBB . 2071552 . . [5.1.2600.6055] . . c:\windows\$hf_mig$\KB2393802\SP3QFE\ntkrnlpa.exe
[-] 2010-12-09 . 436E72D2B4D8539FF2E1355E50A8B152 . 2205696 . . [5.1.2600.6055] . . c:\windows\$NtUninstallKB2633171$\ntkrnlpa.exe
[7] 2010-12-09 . 3BDF4E6E7BAA918AAA1670B7EBA505A3 . 2029056 . . [5.1.2600.6055] . . c:\windows\VistaMizer\old\ntkrnlpa.exe
[7] 2010-04-28 . 2FA1EF498F026847CF276DF9099ABE79 . 2069120 . . [5.1.2600.5973] . . c:\windows\$hf_mig$\KB981852\SP3QFE\ntkrnlpa.exe
[7] 2010-04-28 . F7648719DB795F098BA7F2AE67150182 . 2026496 . . [5.1.2600.5973] . . c:\windows\$NtUninstallKB2393802$\ntkrnlpa.exe
[7] 2009-02-09 . 6DD6966FA0FF770A3E5545875557C7F1 . 2025984 . . [5.1.2600.5755] . . c:\windows\$NtUninstallKB981852$\ntkrnlpa.exe
[7] 2009-02-09 . FF8A3F180A224AA27EBAB937CA027F4D . 2068352 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntkrnlpa.exe
[7] 2008-04-14 . 9F12E026DC0B0C43F521114EFB3A3ACC . 2025984 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\ntkrnlpa.exe
[7] 2006-03-02 . 7715EDDD01EDFEF9EF335D29C6DFE212 . 2017280 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB896256$\ntkrnlpa.exe
[-] 2005-10-12 . 69257A531B57D3FF6942032F5DD823B2 . 2017280 . . [5.1.2600.2774] . . c:\windows\$NtServicePackUninstall$\ntkrnlpa.exe
[-] 2005-09-29 . 20687432C578E59928FCA69A19D5C0DF . 2017792 . . [5.1.2600.2765] . . c:\windows\$NtUninstallKB909095$\ntkrnlpa.exe
.
[7] 2008-04-14 07:51 . 023DD70573D644F3D9C8B1258A7BFD08 . 435712 . . [5.1.2400.5512] . . c:\windows\ServicePackFiles\i386\ntmssvc.dll
[7] 2008-04-14 07:51 . 023DD70573D644F3D9C8B1258A7BFD08 . 435712 . . [5.1.2400.5512] . . c:\windows\system32\ntmssvc.dll
[7] 2006-03-02 12:00 . D8D2B13BA93AE830B1A637DF571D1195 . 435712 . . [5.1.2400.2180] . . c:\windows\$NtServicePackUninstall$\ntmssvc.dll
.
[7] 2008-04-14 . 651BD90DCEE5B7BDC74A2EB7C9266F9E . 186368 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\upnphost.dll
[7] 2008-04-14 . 651BD90DCEE5B7BDC74A2EB7C9266F9E . 186368 . . [5.1.2600.5512] . . c:\windows\system32\upnphost.dll
[7] 2006-03-02 . 984FC1518B0D5B31D76F0E63608E0500 . 185344 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\upnphost.dll
.
[7] 2008-04-14 . 8E009E7AC012823845D5F39A77F4A27F . 367616 . . [5.3.2600.5512] . . c:\windows\ServicePackFiles\i386\dsound.dll
[7] 2008-04-14 . 8E009E7AC012823845D5F39A77F4A27F . 367616 . . [5.3.2600.5512] . . c:\windows\system32\dsound.dll
[7] 2006-03-02 . 8ECC475F5BAD26DB85943F888D62E364 . 367616 . . [5.3.2600.2180] . . c:\windows\$NtServicePackUninstall$\dsound.dll
.
[7] 2008-04-14 . 3B8AE11A3419DF8239183E94888702FA . 1689088 . . [5.03.2600.5512] . . c:\windows\ServicePackFiles\i386\d3d9.dll
[7] 2008-04-14 . 3B8AE11A3419DF8239183E94888702FA . 1689088 . . [5.03.2600.5512] . . c:\windows\system32\d3d9.dll
[7] 2006-03-02 . A19F5837E52D57DB66D9DB55BFCC7796 . 1689088 . . [5.03.2600.2180] . . c:\windows\$NtServicePackUninstall$\d3d9.dll
.
[7] 2008-04-14 . EDAD701F01FFD9B5799B8FCF1CF6BDA7 . 279552 . . [5.03.2600.5512] . . c:\windows\ServicePackFiles\i386\ddraw.dll
[7] 2008-04-14 . EDAD701F01FFD9B5799B8FCF1CF6BDA7 . 279552 . . [5.03.2600.5512] . . c:\windows\system32\ddraw.dll
[7] 2006-03-02 . 0F9A5DD4503E82B085D8B1336B961A81 . 266240 . . [5.03.2600.2180] . . c:\windows\$NtServicePackUninstall$\ddraw.dll
.
[7] 2008-04-14 07:51 . 16C195EBC0A3EC35C48D0C2D9A346BAB . 84992 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\olepro32.dll
[7] 2008-04-14 07:51 . 16C195EBC0A3EC35C48D0C2D9A346BAB . 84992 . . [5.1.2600.5512] . . c:\windows\system32\olepro32.dll
[7] 2006-03-02 12:00 . 33F14F23DFAE4B43CDD4E535CD7C1963 . 83456 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\olepro32.dll
.
[7] 2008-04-14 . 1682285F7C0934C764A0EBBC568153CA . 39936 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\perfctrs.dll
[7] 2008-04-14 . 1682285F7C0934C764A0EBBC568153CA . 39936 . . [5.1.2600.5512] . . c:\windows\system32\perfctrs.dll
[7] 2006-03-02 . 6C08FF4B76506676617E03C34ECCFB11 . 39936 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\perfctrs.dll
.
[7] 2008-04-14 . 614F8186BDAB926E3B1D8927A4161B54 . 18944 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\version.dll
[7] 2008-04-14 . 614F8186BDAB926E3B1D8927A4161B54 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\version.dll
[7] 2006-03-02 . E472BDA53A4DCD2142143AF9FD25C99A . 18944 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\version.dll
.
.
.
.
[7] 2011-10-26 . 702435ABA81209767F8AADD8813A1A73 . 2194944 . . [5.1.2600.6165] . . c:\windows\Driver Cache\i386\ntoskrnl.exe
[7] 2011-10-26 . 6045926521ECB7FCD965D3589554BAAA . 2150912 . . [5.1.2600.6165] . . c:\windows\NiwradSoft Shell Pack\Backup\ntoskrnl.exe
[-] 2011-10-26 . 21C4D06AE70D3198C0A773B8786BC8FF . 2312192 . . [5.1.2600.6165] . . c:\windows\ServicePackFiles\i386\ntoskrnl.exe
[-] 2011-10-26 . 21C4D06AE70D3198C0A773B8786BC8FF . 2312192 . . [5.1.2600.6165] . . c:\windows\system32\ntoskrnl.exe
[-] 2011-10-26 . 21C4D06AE70D3198C0A773B8786BC8FF . 2312192 . . [5.1.2600.6165] . . c:\windows\system32\dllcache\ntoskrnl.exe
[7] 2011-10-26 . BCA329B5A39AB25CC2DCCB3549EE30BF . 2194944 . . [5.1.2600.6165] . . c:\windows\$hf_mig$\KB2633171\SP3QFE\ntoskrnl.exe
[7] 2010-12-09 . 8D222D8EF9B1951296F822583A044542 . 2194944 . . [5.1.2600.6055] . . c:\windows\$hf_mig$\KB2393802\SP3QFE\ntoskrnl.exe
[-] 2010-12-09 . 3777F967DA3622335AE5939EC97EC112 . 2327552 . . [5.1.2600.6055] . . c:\windows\$NtUninstallKB2633171$\ntoskrnl.exe
[7] 2010-12-09 . EB4B6B42932C180632A2C2C43F23B84C . 2150912 . . [5.1.2600.6055] . . c:\windows\VistaMizer\old\ntoskrnl.exe
[7] 2010-04-28 . 431278D0EF7518BA499720122F4ED86F . 2148352 . . [5.1.2600.5973] . . c:\windows\$NtUninstallKB2393802$\ntoskrnl.exe
[7] 2010-04-28 . 91FE668957FF51A2DBCEE0D8637BA77E . 2192256 . . [5.1.2600.5973] . . c:\windows\$hf_mig$\KB981852\SP3QFE\ntoskrnl.exe
[7] 2009-02-10 . 97480EBFE1D4B547657BAD75AAAB1325 . 2191360 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntoskrnl.exe
[7] 2009-02-09 . 6499BF91CF62B4319D6ED7E99D0B6998 . 2147328 . . [5.1.2600.5755] . . c:\windows\$NtUninstallKB981852$\ntoskrnl.exe
[7] 2008-04-14 . 27C7A7AED8A477F6A0C7D3AD00AB9419 . 2147328 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\ntoskrnl.exe
[7] 2006-03-02 . 84FEF6BE553ACC66729F5D4113F53310 . 2150400 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB896256$\ntoskrnl.exe
[-] 2005-10-12 . 3A0DCD3C8BE8423B2D5F254F4FD2C0B5 . 2138112 . . [5.1.2600.2774] . . c:\windows\$NtServicePackUninstall$\ntoskrnl.exe
[-] 2005-09-29 . DDECA52A662B26574438AB569AF18DEF . 2138112 . . [5.1.2600.2765] . . c:\windows\$NtUninstallKB909095$\ntoskrnl.exe
.
[7] 2008-04-14 . 35B91147124F64AC8081A2EDB9EA4DEE . 171008 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\srsvc.dll
[7] 2008-04-14 . 35B91147124F64AC8081A2EDB9EA4DEE . 171008 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
[7] 2006-03-02 . 3CD57F31A64D32FDB28918B16D1E6AAC . 170496 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB888402$\srsvc.dll
[-] 2004-11-17 . 17C219D43024C82B25256D14CE0803EC . 171008 . . [5.1.2600.2567] . . c:\windows\$NtServicePackUninstall$\srsvc.dll
.
[7] 2008-04-14 . FA4E1CDBA256787F2149F4AAD07BC91F . 176640 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\w32time.dll
[7] 2008-04-14 . FA4E1CDBA256787F2149F4AAD07BC91F . 176640 . . [5.1.2600.5512] . . c:\windows\system32\w32time.dll
[7] 2006-03-02 . 2CEEBB402187AE56B585701F3D191FB3 . 176128 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\w32time.dll
.
[7] 2008-04-14 . C1CDD9275F6A115BB0AE1D55D8D27BA6 . 334336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\wiaservc.dll
[7] 2008-04-14 . C1CDD9275F6A115BB0AE1D55D8D27BA6 . 334336 . . [5.1.2600.5512] . . c:\windows\system32\wiaservc.dll
[7] 2006-03-02 . 0645CCDDDD27F96EEA3534C1DEF736D9 . 333824 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\wiaservc.dll
.
[7] 2008-04-14 . 160A1500DDBE42F8793E3AD341E4BEC4 . 18944 . . [5.1.2600.5512] . . c:\windows\NiwradSoft Shell Pack\Backup\midimap.dll
[-] 2008-04-14 . 08099AB0C2874E2B6AEA6CEDA684C492 . 42496 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\midimap.dll
[7] 2008-04-14 . 160A1500DDBE42F8793E3AD341E4BEC4 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\midimap.dll
[7] 2008-04-14 . 160A1500DDBE42F8793E3AD341E4BEC4 . 18944 . . [5.1.2600.5512] . . c:\windows\VistaMizer\old\midimap.dll
[7] 2006-03-02 . B356DD67178B22A8C2FBD47316CCB43B . 18944 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\midimap.dll
.
[7] 2008-04-14 . B26098F3DC08D841DE3D79C38ACCB807 . 7680 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\rasadhlp.dll
[7] 2008-04-14 . B26098F3DC08D841DE3D79C38ACCB807 . 7680 . . [5.1.2600.5512] . . c:\windows\system32\rasadhlp.dll
[7] 2006-03-02 . 630A1012AF129918D2E2D70727D69351 . 8192 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\rasadhlp.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-11-28 18:01 122512 ----a-w- c:\program files\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\documents and settings\zastpa.MKYJ003\Data aplikací\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\documents and settings\zastpa.MKYJ003\Data aplikací\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\documents and settings\zastpa.MKYJ003\Data aplikací\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\documents and settings\zastpa.MKYJ003\Data aplikací\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
"NeXuS"="c:\program files\RocketDock\Nexus.exe" [2011-11-18 13599872]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\Avast\avastUI.exe" [2011-11-28 3744552]
"StartupDelayer"="c:\program files\r2 Studios\Startup Delayer\Startup Launcher.exe" [2011-12-13 978944]
"PTHOSTTR"="c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE" [2007-01-09 145184]
"QlbCtrl"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2007-11-06 177456]
"IFXSPMGT"="c:\windows\system32\ifxspmgt.exe" [2007-02-15 677408]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-05-18 138008]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-06-04 1791272]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-05-18 138008]
"CognizanceTS"="c:\progra~1\HEWLET~1\IAM\Bin\ASTSVCC.dll" [2003-12-22 17920]
"Reloader"="c:\windows\NiwradSoft Shell Pack\Tools\Reloader.exe" [2010-07-04 325046]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2007-01-05 872448]
"SpywareTerminatorShield"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2011-12-23 2779824]
"SpywareTerminatorUpdater"="c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe" [2011-12-23 3621040]
"WatchDog"="c:\program files\InterVideo\DVD Check\DVDCheck.exe" [2007-05-23 192512]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2011-02-08 40448]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"GreyMSIAds"= 1 (0x1)
"NoMovingBands"= 1 (0x1)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\OneCard]
2007-02-07 01:30 74240 ----a-r- c:\program files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WB]
2009-06-09 07:55 30000 ----a-w- c:\program files\MyColors\fastload.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\APSHook.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ SbHpNp scecli
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Phone Remote Control.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Phone Remote Control.lnk
backup=c:\windows\pss\Phone Remote Control.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^zastpa.MKYJ003^Nabídka Start^Programy^Po spuštění^ClearTemp.lnk]
path=c:\documents and settings\zastpa.MKYJ003\Nabídka Start\Programy\Po spuštění\ClearTemp.lnk
backup=c:\windows\pss\ClearTemp.lnkStartup
.
[HKLM\~\startupfolder\C:^Documents and Settings^zastpa.MKYJ003^Nabídka Start^Programy^Po spuštění^Kopie - WeFi.lnk]
path=c:\documents and settings\zastpa.MKYJ003\Nabídka Start\Programy\Po spuštění\Kopie - WeFi.lnk
backup=c:\windows\pss\Kopie - WeFi.lnkStartup
.
[HKLM\~\startupfolder\C:^Documents and Settings^zastpa.MKYJ003^Nabídka Start^Programy^Po spuštění^Seznam Pošťák.lnk]
path=c:\documents and settings\zastpa.MKYJ003\Nabídka Start\Programy\Po spuštění\Seznam Pošťák.lnk
backup=c:\windows\pss\Seznam Pošťák.lnkStartup
.
[HKLM\~\startupfolder\C:^Documents and Settings^zastpa.MKYJ003^Nabídka Start^Programy^Po spuštění^Styler.lnk]
path=c:\documents and settings\zastpa.MKYJ003\Nabídka Start\Programy\Po spuštění\Styler.lnk
backup=c:\windows\pss\Styler.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-01-03 07:37 843712 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
2011-12-23 02:58 3621040 ----a-w- c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2011-08-02 07:33 4910912 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eXtra Buttons]
2011-05-12 19:57 2492416 ----a-w- c:\program files\eXtra Buttons\xb.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
2007-04-19 12:26 484904 ----a-w- c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-11-29 15:38 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2011-09-30 11:19 252296 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WatchDog]
2007-05-23 10:00 192512 ----a-w- c:\program files\InterVideo\DVD Check\DVDCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WizMouse]
2011-09-30 07:51 121648 ----a-w- c:\program files\WizMouse\WizMouse.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\Miranda\\Miranda packing2\\miranda32.exe"=
"c:\\Program Files\\totalcmd\\TOTALCMD.EXE"=
"c:\\Documents and Settings\\zastpa.MKYJ003\\Data aplikací\\Dropbox\\bin\\Dropbox.exe"=
"c:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"=
"c:\\Program Files\\Google\\Google Earth\\plugin\\geplugin.exe"=
"c:\\Program Files\\Hasbro Interactive\\RollerCoaster Tycoon\\rct.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Microsoft LifeCam\\LifeCam.exe"=
"c:\\Program Files\\Microsoft LifeCam\\LifeEnC2.exe"=
"c:\\Program Files\\Microsoft LifeCam\\LifeExp.exe"=
"c:\\Program Files\\Microsoft LifeCam\\LifeTray.exe"=
"c:\\Program Files\\Java\\jre6\\launch4j-tmp\\Jubler.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\WINDOWS\\system32\\dxdiag.exe"=
"c:\\Program Files\\Mozilla Firefox\\plugin-container.exe"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminator.exe"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"=
"c:\\Program Files\\Java\\jre7\\bin\\javaw.exe"=
"c:\\Program Files\\Java\\jre7\\bin\\java.exe"=
"c:\\Program Files\\TeamViewer\\Version7\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\Version7\\TeamViewer_Service.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
.
R0 SafeBoot;SafeBoot;c:\windows\system32\drivers\SafeBoot.sys [22.4.2007 16:24 100095]
R0 SbAlg;SbAlg;c:\windows\system32\drivers\SbAlg.sys [9.10.2006 13:31 44720]
R0 SbFsLock;SbFsLock;c:\windows\system32\drivers\SbFsLock.sys [29.3.2007 16:54 13696]
R0 sptd;sptd;\SystemRoot\\SystemRoot\System32\Drivers\sptd.sys --> \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [?]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [10.4.2011 12:58 435032]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [5.2.2011 21:36 314456]
R1 PersonalSecureDrive;PersonalSecureDrive;c:\windows\system32\drivers\psd.sys [23.1.2007 21:07 39080]
R1 RsvLock;RsvLock;c:\windows\system32\drivers\rsvlock.sys [22.4.2007 16:25 5808]
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver;c:\windows\system32\drivers\sp_rsdrv2.sys [8.1.2012 16:50 32768]
R2 ASBroker;Logon Session Broker;c:\windows\System32\svchost.exe -k Cognizance [2.3.2006 13:00 14336]
R2 ASChannel;Local Communication Channel;c:\windows\System32\svchost.exe -k Cognizance [2.3.2006 13:00 14336]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [5.2.2011 21:36 20568]
R2 ezGOSvc;Easybits GO Services for Windows;c:\windows\system32\svchost.exe -k netsvcs [2.3.2006 13:00 14336]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [7.2.2012 13:18 1373576]
R2 HpFkCryptService;Drive Encryption Service;c:\program files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [22.4.2007 16:32 221184]
R2 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [5.11.2010 17:01 540448]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service;c:\program files\Spyware Terminator\st_rsser.exe [8.1.2012 16:50 482992]
R2 SWIHPWMI;SWIHPWMI;c:\program files\HPQ\Shared\Sierra Wireless\Win32\Unicode\SWIHPWMI.exe [4.12.2006 16:13 292384]
R2 WTService;WTService;c:\windows\system32\atwtusb.exe [30.6.2011 9:16 360096]
R3 IFXTPM;IFXTPM;c:\windows\system32\drivers\ifxtpm.sys [5.11.2010 16:41 36608]
R3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver;c:\windows\system32\drivers\nx6000.sys [5.11.2011 16:38 30576]
R3 NETwLx32; Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows XP 32 Bit;c:\windows\system32\drivers\NETwLx32.sys [29.11.2011 17:54 6609920]
S1 SASDIFSV;SASDIFSV;\??\g:\first help for pc\SUPERAntiSpyware Free Edition\SASDIFSV.SYS --> g:\first help for pc\SUPERAntiSpyware Free Edition\SASDIFSV.SYS [?]
S1 SASKUTIL;SASKUTIL;\??\g:\first help for pc\SUPERAntiSpyware Free Edition\SASKUTIL.SYS --> g:\first help for pc\SUPERAntiSpyware Free Edition\SASKUTIL.SYS [?]
S2 !SASCORE;SAS Core Service;"g:\first help for pc\SUPERAntiSpyware Free Edition\SASCORE.EXE" --> g:\first help for pc\SUPERAntiSpyware Free Edition\SASCORE.EXE [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18.3.2010 13:16 130384]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [21.2.2011 20:44 136176]
S2 ttscp;Text-to-Speech system Epos;c:\program files\Epos_2.4\bin\epos.exe --> c:\program files\Epos_2.4\bin\epos.exe [?]
S3 cpudrv;cpudrv;c:\program files\SystemRequirementsLab\cpudrv.sys [18.12.2009 11:58 11336]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [21.2.2011 20:44 136176]
S3 HP24X;HP PC Card Smart Card Reader;c:\windows\system32\drivers\HP24X.sys [5.11.2010 16:46 33024]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [12.6.2011 10:15 31125880]
S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [9.1.2010 21:37 4640000]
S3 PROCEXP151;PROCEXP151;\??\c:\windows\system32\Drivers\PROCEXP151.SYS --> c:\windows\system32\Drivers\PROCEXP151.SYS [?]
S3 SS_ACdrv;SeeStorm;c:\windows\system32\DRIVERS\ss_acdrv.sys --> c:\windows\system32\DRIVERS\ss_acdrv.sys [?]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [27.7.2011 14:06 11520]
S3 WefiEngSvc;WeFi Engine Service;c:\program files\WeFi\WefiEngSvc.exe [3.11.2010 10:21 120152]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18.3.2010 13:16 753504]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Cognizance REG_MULTI_SZ ASBroker ASChannel
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
ezGOSvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2007-04-19 12:23 452136 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2012-02-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-02-21 19:44]
.
2012-02-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-02-21 19:44]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: Crawler Search - tbr:iemenu
IE: Download all by FlashGet3 - c:\documents and settings\zastpa.MKYJ003\Data aplikací\FlashGetBHO\GetAllUrl.htm
IE: Download by FlashGet3 - c:\documents and settings\zastpa.MKYJ003\Data aplikací\FlashGetBHO\GetUrl.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Link to &MidpX - c:\program files\Kwyshell\MidpX\JadInvoker\Extent\jad_wrap.htm
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: ????3?? - c:\documents and settings\zastpa.MKYJ003\Data aplikací\FlashGetBHO\GetUrl.htm
IE: ????3?????? - c:\documents and settings\zastpa.MKYJ003\Data aplikací\FlashGetBHO\GetAllUrl.htm
TCP: DhcpNameServer = 192.168.21.254 81.19.33.2
FF - ProfilePath - c:\documents and settings\zastpa.MKYJ003\Data aplikací\Mozilla\Firefox\Profiles\34fw68tl.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/?clid=1
FF - prefs.js: keyword.URL - hxxp://search.seznam.cz/?sourceid=undefined&q=
FF - user.js: extentions.y2layers.installId - 967d3bfb-647f-4a10-b718-5006f5e9cf9e
FF - user.js: extentions.y2layers.defaultEnableAppsList - BestVideoDownloader,BestVideoDownloader,
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
ShellExecuteHooks-{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - g:\first help for pc\SUPERAntiSpyware Free Edition\SASSEH.DLL
Notify-!SASWinLogon - g:\first help for pc\SUPERAntiSpyware Free Edition\SASWINLO.DLL
MSConfigStartUp-ApnUpdater - c:\program files\Ask.com\Updater\Updater.exe
MSConfigStartUp-EA Core - c:\program files\Electronic Arts\EADM\Core.exe
MSConfigStartUp-ManicTime - c:\program files\ManicTime\ManicTime.exe
MSConfigStartUp-McAfeeUpdaterUI - c:\program files\McAfee\Common Framework\udaterui.exe
MSConfigStartUp-MuralPixAgent - c:\program files\MuralPix\MpAgent.exe
MSConfigStartUp-pamelaPCR - c:\program files\Pamela\PCR\PamelaPCR.exe
MSConfigStartUp-Windows Update - c:\documents and settings\zastpa.MKYJ003\Local Settings\Temp\WindowsUpdate.exe
AddRemove-Agere Systems Soft Modem - c:\windows\agrsmdel
AddRemove-HD Tune_is1 - g:\first help for pc\HD Tune\unins000.exe
AddRemove-HijackThis - g:\first help for pc\HijackThis\HijackThis.exe
AddRemove-XPv3.8.252 - c:\windows\Radeon Omega Drivers v3.8.252
AddRemove-Recuva - g:\first help for pc\Recuva\uninst.exe
AddRemove-{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA} - g:\first help for pc\SUPERAntiSpyware Free Edition\Uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-02-10 18:58
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
.
C:\## aswSnx private storage
c:\windows\system32\midimap.dll.niwrad 42496 bytes executable
.
sken byl úspešně dokončen
skryté soubory: 2
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\pdfcDispatcher]
"ImagePath"="c:\program files\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-796845957-776561741-725345543-1005\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}Ź]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
@="c:\\Documents and Settings\\zastpa.MKYJ003\\Data aplikací\\FlashGetBHO\\GetUrl.htm"
"contexts"=dword:00000022
.
[HKEY_USERS\S-1-5-21-796845957-776561741-725345543-1005\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}ŹhQčţ”Ąc]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
@="c:\\Documents and Settings\\zastpa.MKYJ003\\Data aplikací\\FlashGetBHO\\GetAllUrl.htm"
"contexts"=dword:000000f3
.
[HKEY_LOCAL_MACHINE\software\Xanthic\{EAC0842F-9764-03DD-A0B6-5FFFB48AD6EB}*_]
"fr"="078D644D405145"
"lr"="078D74475D5141"
.

VIRY.CZ

Nefunguje Správce úloh, chybí nabídka spustit a hláška

Nefunguje Správce úloh, chybí nabídka spustit a hláška

Re: Nefunguje Správce úloh, chybí nabídka spustit a hláška

Re: Nefunguje Správce úloh, chybí nabídka spustit a hláška

Re: Nefunguje Správce úloh, chybí nabídka spustit a hláška

Re: Nefunguje Správce úloh, chybí nabídka spustit a hláška

Re: Nefunguje Správce úloh, chybí nabídka spustit a hláška

Re: Nefunguje Správce úloh, chybí nabídka spustit a hláška

Re: Nefunguje Správce úloh, chybí nabídka spustit a hláška

Re: Nefunguje Správce úloh, chybí nabídka spustit a hláška

Re: Nefunguje Správce úloh, chybí nabídka spustit a hláška

Re: Nefunguje Správce úloh, chybí nabídka spustit a hláška

Re: Nefunguje Správce úloh, chybí nabídka spustit a hláška

Re: Nefunguje Správce úloh, chybí nabídka spustit a hláška

Re: Nefunguje Správce úloh, chybí nabídka spustit a hláška

Re: Nefunguje Správce úloh, chybí nabídka spustit a hláška