opět prosím o kontrolu - je to nějaké zpomalené

Zpráva

ooo121 · #1 Příspěvek od **ooo121** » 26 dub 2013 08:29

Logfile of random's system information tool 1.09 (written by random/random)
Run by user at 2013-04-26 09:25:53
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 22 GB (73%) free of 30 GB
Total RAM: 502 MB (6% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:27:06, on 26.4.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\DOCUME~1\user\LOCALS~1\Temp\RtkBtMnt.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
D:\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\user.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 6747791187
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - https://www.update.microsoft.com/micros ... 6900288937
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

--
End of file - 8106 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{107B5ED5-5F2C-4666-B62C-FA9671AFA0AF}.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{3ABADDD4-12B6-481B-851A-6CC045A15E19}.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\7fm73jwx.default

prefs.js - "browser.startup.homepage" - "www.centrum.cz"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}:6.0.02, {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, jqs@sun.com:1.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.18"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.6.602.180 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.21.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\WINDOWS\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-04-23 462752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-03-07 1224568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar2.dll [2007-01-19 2403392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll [2010-09-29 842296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-04-23 171424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar2.dll [2007-01-19 2403392]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-03-07 1224568]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AzMixerSel"=C:\Program Files\Realtek\InstallShield\AzMixerSel.exe [2005-06-12 53248]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2007-03-21 174872]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-03-07 4767304]
"igfxtray"=C:\WINDOWS\system32\igfxtray.exe [2006-03-24 94208]
"igfxhkcmd"=C:\WINDOWS\system32\hkcmd.exe [2006-03-24 77824]
"igfxpers"=C:\WINDOWS\system32\igfxpers.exe [2006-03-24 118784]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-05-29 16132608]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-04 69632]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2005-12-17 761945]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DVDUpgrade]
DVDUpgrd.exe /async []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2012-10-25 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2007-08-29 68856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2006-03-24 139264]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-06-03 190464]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2012-05-22 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"vidc.divx"=divx.dll
"vidc.div4"=DivXc32f.dll
"vidc.div3"=DivXc32.dll
"vidc.xvid"=xvid.dll
"vidc.mp43"=mpg4c32.dll
"msacm.l3radius"=l3codecp.acm
"msacm.divxa"=divxa32.acm
"msacm.vorbis"=Vorbis.acm
"msacm.a3d"=a3d.dll
"msacm.ogg"=ogg.dll
"msacm.vorbisenc"=vorbisenc.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 1 month======

2013-04-26 07:01:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2712808$
2013-04-26 07:01:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2659262$
2013-04-26 07:01:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2013-04-26 07:00:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2758857$
2013-04-26 07:00:20 ----HDC---- C:\WINDOWS\$NtUninstallKB2691442$
2013-04-26 06:58:09 ----D---- C:\WINDOWS\ie7updates
2013-04-26 06:57:26 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2013-04-26 06:57:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2779562$
2013-04-26 06:57:06 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2013-04-26 06:56:59 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2013-04-26 06:56:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2655992$
2013-04-26 06:56:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2802968$
2013-04-26 06:56:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2780091$
2013-04-26 06:56:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2719985$
2013-04-26 06:56:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2753842-v2$
2013-04-26 06:55:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2770660$
2013-04-26 06:55:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2013-04-26 06:55:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2808735$
2013-04-26 06:55:02 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2013-04-26 06:54:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
2013-04-26 06:54:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2757638$
2013-04-26 06:54:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2749655$
2013-04-26 06:54:03 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2013-04-26 06:53:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2698365$
2013-04-26 06:53:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2705219-v2$
2013-04-26 06:53:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2727528$
2013-04-26 06:52:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2723135-v2$
2013-04-26 06:52:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2661254-v2$
2013-04-26 06:52:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2813170$
2013-04-26 06:51:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2813347$
2013-04-26 06:50:43 ----A---- C:\WINDOWS\imsins.BAK
2013-04-26 06:49:59 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2013-04-26 01:21:01 ----A---- C:\WINDOWS\system32\TASKMGR.COM
2013-04-26 01:21:00 ----A---- C:\WINDOWS\REGEDIT.COM
2013-04-26 00:52:09 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2013-04-25 23:40:15 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2013-04-25 23:40:14 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2013-04-25 23:02:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\McAfee
2013-04-25 23:01:00 ----D---- C:\Program Files\Adobe
2013-04-25 22:59:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\Mozilla
2013-04-25 22:59:22 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-04-25 22:54:26 ----D---- C:\WINDOWS\system32\drivers\UMDF
2013-04-25 22:54:26 ----ASH---- C:\pagefile.sys
2013-04-25 22:36:02 ----A---- C:\WINDOWS\system32\javaws.exe
2013-04-25 22:36:01 ----A---- C:\WINDOWS\system32\javaw.exe
2013-04-25 22:35:57 ----A---- C:\WINDOWS\system32\java.exe
2013-04-25 22:13:08 ----SHD---- C:\RECYCLER
2013-04-25 21:54:20 ----A---- C:\TDSSKiller.2.7.11.0_25.04.2013_21.54.20_log.txt
2013-04-25 21:51:23 ----A---- C:\AdwCleaner[S1].txt
2013-04-25 21:50:49 ----A---- C:\AdwCleaner[R1].txt
2013-04-25 21:30:05 ----A---- C:\WINDOWS\system32\igfxres.dll
2013-04-25 21:26:23 ----D---- C:\WINDOWS\Prefetch
2013-04-25 21:13:17 ----D---- C:\Program Files\Windows Media Connect 2
2013-04-25 21:05:10 ----A---- C:\WINDOWS\system32\spxcoins.dll
2013-04-25 21:05:10 ----A---- C:\WINDOWS\system32\irclass.dll
2013-04-25 21:04:48 ----RA---- C:\WINDOWS\SETCE.tmp
2013-04-25 21:04:45 ----RA---- C:\WINDOWS\SETC2.tmp
2013-04-25 21:04:43 ----RA---- C:\WINDOWS\SETBF.tmp
2013-04-25 20:25:20 ----D---- C:\WINDOWS\temp
2013-04-25 20:25:18 ----A---- C:\ComboFix.txt
2013-04-25 20:12:43 ----D---- C:\ComboFix
2013-04-25 19:40:05 ----D---- C:\a
2013-04-25 19:15:47 ----A---- C:\WINDOWS\system32\drivers\flash.sys
2013-04-25 16:28:32 ----D---- C:\Program Files\Secunia
2013-04-25 13:06:32 ----AD---- C:\Kaspersky Rescue Disk 10.0
2013-04-23 21:13:16 ----A---- C:\WINDOWS\system32\npDeployJava1.dll
2013-04-23 21:12:59 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-04-23 10:12:22 ----D---- C:\Program Files\trend micro
2013-04-23 10:12:17 ----D---- C:\rsit
2013-04-23 09:58:16 ----D---- C:\Documents and Settings\user\Data aplikací\Malwarebytes
2013-04-23 09:58:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2013-04-22 22:53:05 ----D---- C:\Program Files\CCleaner
2013-04-22 22:15:46 ----A---- C:\WINDOWS\system32\MRT.exe
2013-04-22 22:12:36 ----D---- C:\WINDOWS\ie8updates
2013-04-22 15:52:16 ----N---- C:\WINDOWS\system32\browserchoice.exe
2013-04-22 14:28:39 ----N---- C:\WINDOWS\system32\iacenc.dll
2013-04-22 14:11:58 ----A---- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2013-04-22 14:11:57 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2013-04-22 14:11:57 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2013-04-22 14:11:56 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2013-04-22 14:11:55 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2013-04-22 14:11:55 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2013-04-22 14:11:55 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2013-04-22 14:11:54 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2013-04-22 14:11:53 ----A---- C:\WINDOWS\system32\aswBoot.exe
2013-04-22 14:10:57 ----A---- C:\WINDOWS\avastSS.scr
2013-04-22 14:10:19 ----D---- C:\Program Files\AVAST Software
2013-04-22 14:08:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2013-04-22 12:56:00 ----AD---- C:\WINDOWS\VDLL.DLL
2013-04-22 12:56:00 ----AD---- C:\WINDOWS\system32\runouce.exe
2013-04-22 12:56:00 ----AD---- C:\WINDOWS\rundll16.exe
2013-04-22 12:56:00 ----AD---- C:\WINDOWS\RUNDL132.EXE
2013-04-22 12:56:00 ----AD---- C:\WINDOWS\logo1_.exe
2013-04-22 12:56:00 ----AD---- C:\WINDOWS\logo_1.exe
2013-04-22 12:03:36 ----S---- C:\Boot.bak
2013-04-22 12:03:33 ----RASD---- C:\cmdcons
2013-04-22 12:01:08 ----A---- C:\WINDOWS\zip.exe
2013-04-22 12:01:08 ----A---- C:\WINDOWS\SWXCACLS.exe
2013-04-22 12:01:08 ----A---- C:\WINDOWS\SWSC.exe
2013-04-22 12:01:08 ----A---- C:\WINDOWS\SWREG.exe
2013-04-22 12:01:08 ----A---- C:\WINDOWS\sed.exe
2013-04-22 12:01:08 ----A---- C:\WINDOWS\PEV.exe
2013-04-22 12:01:08 ----A---- C:\WINDOWS\NIRCMD.exe
2013-04-22 12:01:08 ----A---- C:\WINDOWS\MBR.exe
2013-04-22 12:01:08 ----A---- C:\WINDOWS\grep.exe
2013-04-22 11:59:49 ----D---- C:\WINDOWS\ERDNT
2013-04-22 11:59:42 ----D---- C:\Qoobox
2013-04-22 11:50:45 ----A---- C:\WINDOWS\system32\msvcr80.dll
2013-04-22 11:50:43 ----A---- C:\WINDOWS\system32\msvcp80.dll
2013-04-22 11:50:42 ----A---- C:\WINDOWS\system32\eEmpty.exe
2013-04-22 11:50:40 ----A---- C:\WINDOWS\system32\T.COM
2013-04-22 11:50:40 ----A---- C:\WINDOWS\R.COM
2013-04-22 11:50:38 ----D---- C:\Documents and Settings\All Users\Data aplikací\MicroWorld
2013-04-22 11:47:06 ----SHD---- C:\WINDOWS\CSC
2013-04-21 17:16:43 ----A---- C:\Documents and Settings\user\Data aplikací\AltShell.ini

======List of files/folders modified in the last 1 month======

2013-04-26 08:25:55 ----D---- C:\WINDOWS\system32
2013-04-26 08:09:00 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-04-26 07:18:04 ----D---- C:\WINDOWS
2013-04-26 07:17:13 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-04-26 07:17:13 ----HD---- C:\WINDOWS\inf
2013-04-26 07:17:13 ----D---- C:\WINDOWS\system32\cs-cz
2013-04-26 07:17:13 ----D---- C:\WINDOWS\Media
2013-04-26 07:17:13 ----D---- C:\WINDOWS\Help
2013-04-26 07:17:13 ----D---- C:\Program Files\Internet Explorer
2013-04-26 07:17:12 ----D---- C:\WINDOWS\AppPatch
2013-04-26 07:13:27 ----HD---- C:\WINDOWS\$hf_mig$
2013-04-26 07:10:22 ----HDC---- C:\WINDOWS\ie8
2013-04-26 07:09:16 ----D---- C:\WINDOWS\system32\CatRoot2
2013-04-26 07:04:01 ----D---- C:\WINDOWS\Debug
2013-04-26 07:03:01 ----D---- C:\WINDOWS\system32\drivers
2013-04-26 07:02:14 ----D---- C:\WINDOWS\system32\CatRoot
2013-04-26 06:57:10 ----SD---- C:\WINDOWS\Tasks
2013-04-26 02:19:00 ----D---- C:\WINDOWS\SoftwareDistribution
2013-04-26 00:49:10 ----D---- C:\Config.Msi
2013-04-26 00:46:38 ----D---- C:\WINDOWS\Minidump
2013-04-26 00:45:40 ----RD---- C:\Program Files
2013-04-25 23:28:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-04-25 23:02:08 ----D---- C:\WINDOWS\l2schemas
2013-04-25 23:02:06 ----D---- C:\WINDOWS\system32\usmt
2013-04-25 23:02:05 ----SHD---- C:\WINDOWS\Installer
2013-04-25 23:02:03 ----D---- C:\WINDOWS\system32\Setup
2013-04-25 23:01:53 ----D---- C:\WINDOWS\network diagnostic
2013-04-25 23:01:36 ----D---- C:\Program Files\Common Files\Adobe
2013-04-25 23:01:24 ----D---- C:\WINDOWS\WinSxS
2013-04-25 23:01:23 ----D---- C:\WINDOWS\PeerNet
2013-04-25 23:01:23 ----D---- C:\WINDOWS\ime
2013-04-25 23:00:45 ----D---- C:\WINDOWS\system32\npp
2013-04-25 22:59:16 ----D---- C:\Program Files\Mozilla Firefox
2013-04-25 22:58:07 ----D---- C:\WINDOWS\msagent
2013-04-25 22:57:57 ----D---- C:\WINDOWS\system32\cs
2013-04-25 22:57:20 ----D---- C:\WINDOWS\ehome
2013-04-25 22:56:57 ----RD---- C:\WINDOWS\Offline Web Pages
2013-04-25 22:56:39 ----SD---- C:\WINDOWS\Downloaded Program Files
2013-04-25 22:56:36 ----D---- C:\WINDOWS\WBEM
2013-04-25 22:56:24 ----D---- C:\WINDOWS\twain_32
2013-04-25 22:56:05 ----D---- C:\WINDOWS\system32\icsxml
2013-04-25 22:55:28 ----D---- C:\WINDOWS\system32\1033
2013-04-25 22:55:28 ----D---- C:\WINDOWS\system32\1029
2013-04-25 22:54:26 ----D---- C:\WINDOWS\Driver Cache
2013-04-25 22:40:39 ----D---- C:\Program Files\QuickTime
2013-04-25 22:39:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\Apple Computer
2013-04-25 22:39:30 ----D---- C:\Program Files\ICQLite
2013-04-25 22:35:09 ----D---- C:\Program Files\Java
2013-04-25 22:23:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-04-25 22:17:19 ----D---- C:\WINDOWS\system
2013-04-25 21:30:06 ----D---- C:\WINDOWS\Registration
2013-04-25 21:26:47 ----D---- C:\WINDOWS\system32\Restore
2013-04-25 21:26:46 ----SHD---- C:\System Volume Information
2013-04-25 21:25:37 ----D---- C:\WINDOWS\system32\config
2013-04-25 21:19:58 ----D---- C:\WINDOWS\security
2013-04-25 21:18:13 ----A---- C:\WINDOWS\win.ini
2013-04-25 21:17:59 ----A---- C:\WINDOWS\ODBCINST.INI
2013-04-25 21:17:24 ----ASH---- C:\WINDOWS\fonts\desktop.ini
2013-04-25 21:17:21 ----D---- C:\WINDOWS\system32\ias
2013-04-25 21:16:50 ----RD---- C:\WINDOWS\Web
2013-04-25 21:16:43 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2013-04-25 21:16:25 ----D---- C:\WINDOWS\srchasst
2013-04-25 21:15:48 ----D---- C:\Program Files\Windows Media Player
2013-04-25 21:15:47 ----D---- C:\Program Files\NetMeeting
2013-04-25 21:15:46 ----D---- C:\Program Files\Common Files\Services
2013-04-25 21:15:42 ----D---- C:\Program Files\Outlook Express
2013-04-25 21:15:25 ----D---- C:\Program Files\Movie Maker
2013-04-25 21:15:01 ----D---- C:\WINDOWS\system32\oobe
2013-04-25 21:14:43 ----D---- C:\Program Files\Common Files\System
2013-04-25 21:13:39 ----D---- C:\WINDOWS\system32\Com
2013-04-25 21:13:06 ----D---- C:\WINDOWS\Cursors
2013-04-25 21:12:57 ----D---- C:\Program Files\Windows NT
2013-04-25 21:12:41 ----D---- C:\WINDOWS\system32\wbem
2013-04-25 21:11:50 ----SH---- C:\boot.ini
2013-04-25 21:08:18 ----D---- C:\WINDOWS\system32\ReinstallBackups
2013-04-25 21:05:42 ----A---- C:\WINDOWS\system.ini
2013-04-25 21:05:41 ----RSD---- C:\WINDOWS\Fonts
2013-04-25 21:04:59 ----ASH---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2013-04-25 20:23:55 ----D---- C:\WINDOWS\system32\drivers\etc
2013-04-25 20:21:28 ----D---- C:\Program Files\Common Files
2013-04-24 10:05:09 ----D---- C:\Documents and Settings\user\Data aplikací\vlc
2013-04-23 21:13:36 ----D---- C:\Program Files\Common Files\Java
2013-04-23 21:12:09 ----A---- C:\WINDOWS\system32\deployJava1.dll
2013-04-23 13:28:54 ----D---- C:\WINDOWS\system32\inetsrv
2013-04-23 13:15:50 ----D---- C:\WINDOWS\pss
2013-04-23 09:46:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2013-04-22 22:29:18 ----D---- C:\Program Files\Messenger
2013-04-22 14:19:47 ----D---- C:\Program Files\ESET
2013-04-22 14:14:24 ----D---- C:\Program Files\Google
2013-04-22 13:10:57 ----D---- C:\Program Files\Legion
2013-04-22 12:56:38 ----D---- C:\Program Files\ICQToolbar
2013-04-22 11:47:11 ----D---- C:\Documents and Settings
2013-04-02 16:10:13 ----D---- C:\Documents and Settings\user\Data aplikací\dvdcss

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2013-03-07 49248]
R0 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\DRIVERS\iaStor.sys [2012-06-19 305176]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2013-03-07 49760]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2013-03-07 765736]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2013-03-07 368176]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2013-03-07 62376]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2012-05-22 8832]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/07/19 10:27:05]; \??\C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2013-03-07 29816]
R2 aswMonFlt;aswMonFlt; \??\C:\WINDOWS\system32\drivers\aswMonFlt.sys []
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2008-04-14 11868]
R3 Afc;PPdus ASPI Shell; C:\WINDOWS\system32\drivers\Afc.sys [2005-02-23 11776]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2012-05-22 60800]
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2007-02-16 160256]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2006-10-12 604928]
R3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2007-03-24 539072]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2007-03-24 37424]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2007-04-01 876384]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2006-03-24 1166972]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-05-31 4424192]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2012-05-22 61824]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-14 79232]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2005-12-17 191936]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 admjoy;Aureal Game Port Enumerator; C:\WINDOWS\system32\DRIVERS\admjoy.sys [2008-04-13 10880]
S3 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2013-03-07 164736]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2007-03-24 149123]
S3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2007-04-01 55352]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 flash;flash; \??\C:\WINDOWS\system32\drivers\flash.sys []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 IpwP;IPWireless 3G Network Adapter; C:\WINDOWS\system32\DRIVERS\ipw3gnet.sys [2008-10-10 51040]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2012-05-22 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2012-05-22 10880]
S3 PAC207;Trust 100K Series Webcam; C:\WINDOWS\system32\DRIVERS\PFC027.SYS [2008-02-13 618112]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys [2007-01-25 290304]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2012-05-22 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2012-05-22 82944]
S3 ZD1211BU(TP-LINK);TP-LINK Wireless USB Adapter Driver(TP-LINK); C:\WINDOWS\system32\DRIVERS\zd1211Bu.sys [2009-01-05 500736]
S3 ZDPSp50;ZDPSp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\ZDPSp50.sys [2009-01-05 17664]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-03-07 45248]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2007-04-01 273256]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2007-03-21 355096]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-04-23 181664]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-04-22 116648]
S2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-04-26 253656]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-04-22 116648]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-08-20 138168]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-03-27 115608]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------

#2 Příspěvek od **Márty84** » 26 dub 2013 09:19

Zdravim.

Proc zakladate nove tema? Tady uz to mate doresene?
http://forum.viry.cz/viewtopic.php?f=66&t=129829

Nebo to je jiny pc nez tam a taky zde http://forum.viry.cz/viewtopic.php?f=28&t=129806 ?

Mimochodem, kdyz uz jste si hral na doktora, mel byste si to ted pekne doresit sam. Nevsim jsem si, ze by vam nekdo radil TDSSKiller. A uz vbec ne ComboFix

Achjo

ooo121 · #3 Příspěvek od **ooo121** » 26 dub 2013 09:55

Márty84 píše:Zdravim.

Proc zakladate nove tema? Tady uz to mate doresene?
http://forum.viry.cz/viewtopic.php?f=66&t=129829

Nebo to je jiny pc nez tam a taky zde http://forum.viry.cz/viewtopic.php?f=28&t=129806 ?

Mimochodem, kdyz uz jste si hral na doktora, mel byste si to ted pekne doresit sam. Nevsim jsem si, ze by vam nekdo radil TDSSKiller. A uz vbec ne ComboFix Achjo

Ano, je to ten samý, ale zavirovaný znovu - psal jsem v tom jiném tématu, že jsem ho musel odevzdat. Takto se mi vrátil zpět. Patrně si hrál na doktora majitel, když to znovu zasekal a bylo mu trapné to přiznat. Mi pomohl zase Eset na mém notebooku a pak jsem to projel MWAV a MBAM.

#4 Příspěvek od **Márty84** » 26 dub 2013 10:07

A majitel prisel na CF jak?

Nemuzem to lecit tady i tady http://forum.viry.cz/viewtopic.php?f=66&t=129829 soucasne. To by nedopadlo dobre. Nejdrive to doreste s kolegou MiliNessem. Protoze jestli je tam opravdu nejaka zavada jak pise, pripadne odvirovani nepomuze. Az to tam uzavrete, dejte sem log z RSIT a zkusime to docistit. I kdyz, s tim co tam majitel napachal neni vysledek jisty a protahne se to, jelikoz mi tim ComboFixem smazal vsechny stopy pripadne nakazy.

ooo121 · #5 Příspěvek od **ooo121** » 26 dub 2013 10:13

Márty84 píše:A majitel prisel na CF jak?

Nemuzem to lecit tady i tady http://forum.viry.cz/viewtopic.php?f=66&t=129829 soucasne. To by nedopadlo dobre. Nejdrive to doreste s kolegou MiliNessem. Protoze jestli je tam opravdu nejaka zavada jak pise, pripadne odvirovani nepomuze. Az to tam uzavrete, dejte sem log z RSIT a zkusime to docistit. I kdyz, s tim co tam majitel napachal neni vysledek jisty a protahne se to, jelikoz mi tim ComboFixem smazal vsechny stopy pripadne nakazy.

CF - patrně vlezl tady na fórum a zkoušel všechno možné - bavili jsme se o tom, že jsem to tady řešil.

No výsledkem znovuzavirování notebooku je to, že závada s restarty a BSOD se úplně vytratila. Dělalo to při použití MBAM a to jsem v noci projel bez restartu.

takže co dál?

#6 Příspěvek od **Márty84** » 26 dub 2013 11:42

To musel byt hodne zoufaly, kdyz vam ho prinesl po 22. hodine

V tom logu z RSIT je videt, ze bezi MBAM. Pokud pri uplne kontrole nic nenajde, odinstalujte ho. RAMka je hodne mala, takze vse co nemusi bezet je treba odstranit.

Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/
Spustte ho. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)

Zkopirujte sem logy z TDSSKilleru a Combofixu (C:\TDSSKiller.2.7.11.0_25.04.2013_21.54.20_log.txt , C:\ComboFix.txt)

ooo121 · #7 Příspěvek od **ooo121** » 26 dub 2013 13:13

Márty84 píše:To musel byt hodne zoufaly, kdyz vam ho prinesl po 22. hodine

V tom logu z RSIT je videt, ze bezi MBAM. Pokud pri uplne kontrole nic nenajde, odinstalujte ho. RAMka je hodne mala, takze vse co nemusi bezet je treba odstranit.

Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/
Spustte ho. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)

Zkopirujte sem logy z TDSSKilleru a Combofixu (C:\TDSSKiller.2.7.11.0_25.04.2013_21.54.20_log.txt , C:\ComboFix.txt)

však jsem se v tom vrtal asi do 2

ooo121 · #8 Příspěvek od **ooo121** » 26 dub 2013 13:13

21:54:20.0484 1884 TDSS rootkit removing tool 2.7.11.0 Feb 9 2012 10:12:57
21:54:20.0656 1884 ============================================================
21:54:20.0656 1884 Current date / time: 2013/04/25 21:54:20.0656
21:54:20.0656 1884 SystemInfo:
21:54:20.0656 1884
21:54:20.0656 1884 OS Version: 5.1.2600 ServicePack: 3.0
21:54:20.0656 1884 Product type: Workstation
21:54:20.0656 1884 ComputerName: NOTEBOOK
21:54:20.0671 1884 UserName: Administrator
21:54:20.0671 1884 Windows directory: C:\WINDOWS
21:54:20.0671 1884 System windows directory: C:\WINDOWS
21:54:20.0671 1884 Processor architecture: Intel x86
21:54:20.0671 1884 Number of processors: 1
21:54:20.0671 1884 Page size: 0x1000
21:54:20.0671 1884 Boot type: Safe boot with network
21:54:20.0671 1884 ============================================================
21:54:21.0890 1884 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:54:21.0890 1884 \Device\Harddisk0\DR0:
21:54:21.0890 1884 MBR used
21:54:21.0890 1884 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A962B1
21:54:21.0906 1884 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3A9632F, BlocksNum 0x5A742D1
21:54:21.0984 1884 Initialize success
21:54:21.0984 1884 ============================================================
21:54:24.0500 1948 ============================================================
21:54:24.0500 1948 Scan started
21:54:24.0500 1948 Mode: Manual;
21:54:24.0500 1948 ============================================================
21:54:24.0734 1948 Abiosdsk - ok
21:54:24.0765 1948 abp480n5 - ok
21:54:24.0859 1948 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:54:24.0859 1948 ACPI - ok
21:54:24.0937 1948 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
21:54:24.0937 1948 ACPIEC - ok
21:54:25.0031 1948 admjoy (a23675760dec131b9f799b6fb038a1f0) C:\WINDOWS\system32\DRIVERS\admjoy.sys
21:54:25.0031 1948 admjoy - ok
21:54:25.0062 1948 adpu160m - ok
21:54:25.0140 1948 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:54:25.0156 1948 aec - ok
21:54:25.0218 1948 Afc (a7b8a3a79d35215d798a300df49ed23f) C:\WINDOWS\system32\drivers\Afc.sys
21:54:25.0218 1948 Afc - ok
21:54:25.0281 1948 AFD (f6b7b1ecd7b41736bdb6ff4b092bcb79) C:\WINDOWS\System32\drivers\afd.sys
21:54:25.0296 1948 AFD - ok
21:54:25.0328 1948 Aha154x - ok
21:54:25.0359 1948 aic78u2 - ok
21:54:25.0390 1948 aic78xx - ok
21:54:25.0453 1948 AliIde - ok
21:54:25.0484 1948 amsint - ok
21:54:25.0578 1948 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:54:25.0578 1948 Arp1394 - ok
21:54:25.0625 1948 asc - ok
21:54:25.0656 1948 asc3350p - ok
21:54:25.0687 1948 asc3550 - ok
21:54:25.0781 1948 aswFsBlk (ccda8d84fd02aec52e62f296433ae9dc) C:\WINDOWS\system32\drivers\aswFsBlk.sys
21:54:25.0781 1948 aswFsBlk - ok
21:54:25.0859 1948 aswMonFlt (a6e20e62871a28a0f1c05b1681848fa7) C:\WINDOWS\system32\drivers\aswMonFlt.sys
21:54:25.0859 1948 aswMonFlt - ok
21:54:25.0890 1948 AswRdr (c1a411b7ccd604554d96efdac2f83617) C:\WINDOWS\system32\drivers\AswRdr.sys
21:54:25.0906 1948 AswRdr - ok
21:54:25.0937 1948 aswRvrt (657a61979f40d67ca29716149766ffa7) C:\WINDOWS\system32\drivers\aswRvrt.sys
21:54:25.0937 1948 aswRvrt - ok
21:54:26.0015 1948 aswSnx (0e604867fc28f00d91cb0b00d2ec830d) C:\WINDOWS\system32\drivers\aswSnx.sys
21:54:26.0046 1948 aswSnx - ok
21:54:26.0078 1948 aswSP (6fc4aa106aa505394c908d37cccb9148) C:\WINDOWS\system32\drivers\aswSP.sys
21:54:26.0093 1948 aswSP - ok
21:54:26.0125 1948 aswTdi (33e21ffb063ca6c7e00d568467dc72e4) C:\WINDOWS\system32\drivers\aswTdi.sys
21:54:26.0125 1948 aswTdi - ok
21:54:26.0171 1948 aswVmm (edb0c9ba44b748e420cca989fd8b826e) C:\WINDOWS\system32\drivers\aswVmm.sys
21:54:26.0187 1948 aswVmm - ok
21:54:26.0234 1948 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:54:26.0234 1948 AsyncMac - ok
21:54:26.0312 1948 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:54:26.0312 1948 atapi - ok
21:54:26.0343 1948 Atdisk - ok
21:54:26.0406 1948 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:54:26.0406 1948 Atmarpc - ok
21:54:26.0484 1948 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:54:26.0484 1948 audstub - ok
21:54:26.0562 1948 b57w2k (f96038aa1ec4013a93d2420fc689d1e9) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
21:54:26.0562 1948 b57w2k - ok
21:54:26.0656 1948 BCM43XX (b89bcf0a25aeb3b47030ac83287f894a) C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
21:54:26.0671 1948 BCM43XX - ok
21:54:26.0703 1948 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:54:26.0718 1948 Beep - ok
21:54:26.0812 1948 btaudio (ecdc40cc54603c711e1a7a1c9255184a) C:\WINDOWS\system32\drivers\btaudio.sys
21:54:26.0812 1948 btaudio - ok
21:54:26.0890 1948 BTDriver (58a49bd10e08d3d4333a60dedcb1ced8) C:\WINDOWS\system32\DRIVERS\btport.sys
21:54:26.0890 1948 BTDriver - ok
21:54:26.0968 1948 BTKRNL (885b6d0f826a216eee4c3ad883809012) C:\WINDOWS\system32\DRIVERS\btkrnl.sys
21:54:26.0984 1948 BTKRNL - ok
21:54:27.0015 1948 BTWDNDIS (b1d350f3f13cf340fce93912d2ba1ebf) C:\WINDOWS\system32\DRIVERS\btwdndis.sys
21:54:27.0031 1948 BTWDNDIS - ok
21:54:27.0078 1948 btwhid (e48668b4a6a5cf68b33aecad18ee8e1e) C:\WINDOWS\system32\DRIVERS\btwhid.sys
21:54:27.0078 1948 btwhid - ok
21:54:27.0218 1948 catchme - ok
21:54:27.0265 1948 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:54:27.0281 1948 cbidf2k - ok
21:54:27.0312 1948 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:54:27.0312 1948 CCDECODE - ok
21:54:27.0359 1948 cd20xrnt - ok
21:54:27.0390 1948 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:54:27.0390 1948 Cdaudio - ok
21:54:27.0453 1948 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:54:27.0453 1948 Cdfs - ok
21:54:27.0500 1948 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:54:27.0500 1948 Cdrom - ok
21:54:27.0531 1948 Changer - ok
21:54:27.0640 1948 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
21:54:27.0640 1948 CmBatt - ok
21:54:27.0671 1948 CmdIde - ok
21:54:27.0734 1948 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
21:54:27.0734 1948 Compbatt - ok
21:54:27.0781 1948 Cpqarray - ok
21:54:27.0828 1948 dac2w2k - ok
21:54:27.0859 1948 dac960nt - ok
21:54:27.0937 1948 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:54:27.0937 1948 Disk - ok
21:54:28.0093 1948 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
21:54:28.0125 1948 dmboot - ok
21:54:28.0187 1948 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\DRIVERS\dmio.sys
21:54:28.0187 1948 dmio - ok
21:54:28.0234 1948 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:54:28.0234 1948 dmload - ok
21:54:28.0328 1948 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:54:28.0328 1948 DMusic - ok
21:54:28.0390 1948 dpti2o - ok
21:54:28.0437 1948 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:54:28.0437 1948 drmkaud - ok
21:54:28.0609 1948 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:54:28.0609 1948 Fastfat - ok
21:54:28.0671 1948 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
21:54:28.0671 1948 Fdc - ok
21:54:28.0718 1948 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
21:54:28.0718 1948 Fips - ok
21:54:28.0781 1948 flash (af9c417c8f6c8bf4411cb601df318c07) C:\WINDOWS\system32\drivers\flash.sys
21:54:28.0781 1948 flash - ok
21:54:28.0812 1948 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
21:54:28.0828 1948 Flpydisk - ok
21:54:28.0906 1948 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:54:28.0906 1948 FltMgr - ok
21:54:28.0968 1948 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:54:28.0968 1948 Fs_Rec - ok
21:54:29.0031 1948 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:54:29.0031 1948 Ftdisk - ok
21:54:29.0125 1948 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:54:29.0125 1948 Gpc - ok
21:54:29.0234 1948 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:54:29.0234 1948 HDAudBus - ok
21:54:29.0312 1948 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:54:29.0312 1948 HidUsb - ok
21:54:29.0359 1948 hpn - ok
21:54:29.0468 1948 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
21:54:29.0468 1948 HTTP - ok
21:54:29.0515 1948 i2omgmt - ok
21:54:29.0546 1948 i2omp - ok
21:54:29.0625 1948 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:54:29.0625 1948 i8042prt - ok
21:54:29.0750 1948 ialm (0f0194c4b635c10c3f785e4fee52d641) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
21:54:29.0796 1948 ialm - ok
21:54:29.0843 1948 iaStor (2358c53f30cb9dcd1d3843c4e2f299b2) C:\WINDOWS\system32\DRIVERS\iaStor.sys
21:54:29.0843 1948 iaStor - ok
21:54:29.0937 1948 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:54:29.0953 1948 Imapi - ok
21:54:30.0015 1948 ini910u - ok
21:54:30.0234 1948 IntcAzAudAddService (b45a576ad280dd4f605f58b24cdaafe1) C:\WINDOWS\system32\drivers\RtkHDAud.sys
21:54:30.0375 1948 IntcAzAudAddService - ok
21:54:30.0421 1948 IntelIde - ok
21:54:30.0484 1948 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:54:30.0484 1948 intelppm - ok
21:54:30.0546 1948 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:54:30.0546 1948 Ip6Fw - ok
21:54:30.0593 1948 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:54:30.0593 1948 IpFilterDriver - ok
21:54:30.0640 1948 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:54:30.0640 1948 IpInIp - ok
21:54:30.0718 1948 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:54:30.0734 1948 IpNat - ok
21:54:30.0781 1948 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:54:30.0781 1948 IPSec - ok
21:54:30.0859 1948 IpwP (d3f6df74534cfdccf49803e739acaea0) C:\WINDOWS\system32\DRIVERS\ipw3gnet.sys
21:54:30.0859 1948 IpwP - ok
21:54:31.0000 1948 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:54:31.0000 1948 IRENUM - ok
21:54:31.0203 1948 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:54:31.0203 1948 isapnp - ok
21:54:31.0406 1948 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:54:31.0406 1948 Kbdclass - ok
21:54:31.0546 1948 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:54:31.0546 1948 kmixer - ok
21:54:31.0640 1948 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINDOWS\system32\drivers\KSecDD.sys
21:54:31.0640 1948 KSecDD - ok
21:54:31.0703 1948 lbrtfdc - ok
21:54:31.0812 1948 mdmxsdk (195741aee20369980796b557358cd774) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
21:54:31.0812 1948 mdmxsdk - ok
21:54:31.0875 1948 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:54:31.0890 1948 mnmdd - ok
21:54:32.0046 1948 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
21:54:32.0062 1948 Modem - ok
21:54:32.0109 1948 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:54:32.0109 1948 Mouclass - ok
21:54:32.0171 1948 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:54:32.0187 1948 mouhid - ok
21:54:32.0218 1948 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:54:32.0218 1948 MountMgr - ok
21:54:32.0250 1948 mraid35x - ok
21:54:32.0328 1948 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:54:32.0328 1948 MRxDAV - ok
21:54:32.0421 1948 MRxSmb (fb2fccc70f7174c7bf64f48e96d3adf4) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:54:32.0437 1948 MRxSmb - ok
21:54:32.0500 1948 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:54:32.0500 1948 Msfs - ok
21:54:32.0531 1948 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:54:32.0531 1948 MSKSSRV - ok
21:54:32.0562 1948 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:54:32.0562 1948 MSPCLOCK - ok
21:54:32.0593 1948 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:54:32.0593 1948 MSPQM - ok
21:54:32.0640 1948 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:54:32.0640 1948 mssmbios - ok
21:54:32.0687 1948 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
21:54:32.0687 1948 MSTEE - ok
21:54:32.0765 1948 Mup (f7b1ad991491f02af6da70b00b8bf114) C:\WINDOWS\system32\drivers\Mup.sys
21:54:32.0765 1948 Mup - ok
21:54:32.0828 1948 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:54:32.0828 1948 NABTSFEC - ok
21:54:32.0906 1948 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:54:32.0921 1948 NDIS - ok
21:54:32.0968 1948 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:54:32.0968 1948 NdisIP - ok
21:54:33.0000 1948 NdisTapi (091735a5f20acb1dc147383a905ae002) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:54:33.0000 1948 NdisTapi - ok
21:54:33.0046 1948 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:54:33.0046 1948 Ndisuio - ok
21:54:33.0093 1948 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:54:33.0093 1948 NdisWan - ok
21:54:33.0125 1948 NDProxy (816460bd4b4acd27937d1d0813e2e9e9) C:\WINDOWS\system32\drivers\NDProxy.sys
21:54:33.0125 1948 NDProxy - ok
21:54:33.0187 1948 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:54:33.0187 1948 NetBIOS - ok
21:54:33.0234 1948 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:54:33.0234 1948 NetBT - ok
21:54:33.0359 1948 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:54:33.0359 1948 NIC1394 - ok
21:54:33.0437 1948 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:54:33.0437 1948 Npfs - ok
21:54:33.0515 1948 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:54:33.0531 1948 Ntfs - ok
21:54:33.0609 1948 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:54:33.0609 1948 Null - ok
21:54:33.0640 1948 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:54:33.0640 1948 NwlnkFlt - ok
21:54:33.0703 1948 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:54:33.0703 1948 NwlnkFwd - ok
21:54:33.0781 1948 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:54:33.0781 1948 ohci1394 - ok
21:54:33.0843 1948 PAC207 (4a410c7aea51123519c20d43a20bce96) C:\WINDOWS\system32\DRIVERS\PFC027.SYS
21:54:33.0859 1948 PAC207 - ok
21:54:33.0937 1948 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\drivers\Parport.sys
21:54:33.0937 1948 Parport - ok
21:54:34.0000 1948 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:54:34.0000 1948 PartMgr - ok
21:54:34.0062 1948 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
21:54:34.0062 1948 ParVdm - ok
21:54:34.0109 1948 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
21:54:34.0125 1948 PCI - ok
21:54:34.0156 1948 PCIDump - ok
21:54:34.0203 1948 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:54:34.0203 1948 PCIIde - ok
21:54:34.0250 1948 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
21:54:34.0250 1948 Pcmcia - ok
21:54:34.0281 1948 PDCOMP - ok
21:54:34.0312 1948 PDFRAME - ok
21:54:34.0343 1948 PDRELI - ok
21:54:34.0375 1948 PDRFRAME - ok
21:54:34.0406 1948 perc2 - ok
21:54:34.0453 1948 perc2hib - ok
21:54:34.0593 1948 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:54:34.0593 1948 PptpMiniport - ok
21:54:34.0656 1948 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:54:34.0656 1948 PSched - ok
21:54:34.0734 1948 PSI (68b57d7c11277ea89f78255480376b4d) C:\WINDOWS\system32\DRIVERS\psi_mf_x86.sys
21:54:34.0734 1948 PSI - ok
21:54:34.0781 1948 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:54:34.0796 1948 Ptilink - ok
21:54:34.0828 1948 ql1080 - ok
21:54:34.0859 1948 Ql10wnt - ok
21:54:34.0890 1948 ql12160 - ok
21:54:34.0937 1948 ql1240 - ok
21:54:34.0968 1948 ql1280 - ok
21:54:35.0015 1948 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:54:35.0015 1948 RasAcd - ok
21:54:35.0078 1948 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:54:35.0078 1948 Rasl2tp - ok
21:54:35.0140 1948 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:54:35.0140 1948 RasPppoe - ok
21:54:35.0187 1948 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:54:35.0187 1948 Raspti - ok
21:54:35.0250 1948 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:54:35.0265 1948 Rdbss - ok
21:54:35.0296 1948 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:54:35.0296 1948 RDPCDD - ok
21:54:35.0359 1948 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:54:35.0359 1948 rdpdr - ok
21:54:35.0453 1948 RDPWD (2d293b720c206473a05950ce007db12a) C:\WINDOWS\system32\drivers\RDPWD.sys
21:54:35.0468 1948 RDPWD - ok
21:54:35.0546 1948 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:54:35.0546 1948 redbook - ok
21:54:35.0765 1948 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
21:54:35.0765 1948 sdbus - ok
21:54:35.0812 1948 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:54:35.0812 1948 Secdrv - ok
21:54:35.0906 1948 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\drivers\Serial.sys
21:54:35.0906 1948 Serial - ok
21:54:35.0968 1948 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:54:35.0968 1948 Sfloppy - ok
21:54:36.0031 1948 Simbad - ok
21:54:36.0093 1948 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:54:36.0093 1948 SLIP - ok
21:54:36.0125 1948 Sparrow - ok
21:54:36.0203 1948 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:54:36.0218 1948 splitter - ok
21:54:36.0296 1948 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
21:54:36.0296 1948 sr - ok
21:54:36.0375 1948 Srv (9b390283569ea58d43d2586032b892f5) C:\WINDOWS\system32\DRIVERS\srv.sys
21:54:36.0375 1948 Srv - ok
21:54:36.0453 1948 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
21:54:36.0453 1948 streamip - ok
21:54:36.0500 1948 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
21:54:36.0500 1948 swenum - ok
21:54:36.0546 1948 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
21:54:36.0546 1948 swmidi - ok
21:54:36.0609 1948 symc810 - ok
21:54:36.0640 1948 symc8xx - ok
21:54:36.0671 1948 sym_hi - ok
21:54:36.0718 1948 sym_u3 - ok
21:54:36.0781 1948 SynTP (e295fffff3aaf9a6a40b29497901908f) C:\WINDOWS\system32\DRIVERS\SynTP.sys
21:54:36.0781 1948 SynTP - ok
21:54:36.0828 1948 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
21:54:36.0828 1948 sysaudio - ok
21:54:36.0921 1948 Tcpip (ad978a1b783b5719720cff204b666c8e) C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:54:36.0937 1948 Tcpip - ok
21:54:37.0000 1948 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
21:54:37.0000 1948 TDPIPE - ok
21:54:37.0046 1948 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
21:54:37.0046 1948 TDTCP - ok
21:54:37.0109 1948 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
21:54:37.0109 1948 TermDD - ok
21:54:37.0203 1948 tifm21 (e4c85c291ddb3dc5e4a2f227ca465ba6) C:\WINDOWS\system32\drivers\tifm21.sys
21:54:37.0218 1948 tifm21 - ok
21:54:37.0265 1948 TosIde - ok
21:54:37.0359 1948 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
21:54:37.0359 1948 Udfs - ok
21:54:37.0375 1948 ultra - ok
21:54:37.0484 1948 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
21:54:37.0484 1948 Update - ok
21:54:37.0578 1948 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:54:37.0578 1948 usbehci - ok
21:54:37.0625 1948 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:54:37.0625 1948 usbhub - ok
21:54:37.0671 1948 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:54:37.0671 1948 USBSTOR - ok
21:54:37.0718 1948 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:54:37.0718 1948 usbuhci - ok
21:54:37.0765 1948 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
21:54:37.0765 1948 VgaSave - ok
21:54:37.0796 1948 ViaIde - ok
21:54:37.0843 1948 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
21:54:37.0843 1948 VolSnap - ok
21:54:37.0921 1948 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:54:37.0921 1948 Wanarp - ok
21:54:37.0953 1948 WDICA - ok
21:54:38.0015 1948 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
21:54:38.0015 1948 wdmaud - ok
21:54:38.0171 1948 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
21:54:38.0171 1948 WmiAcpi - ok
21:54:38.0250 1948 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
21:54:38.0250 1948 WS2IFSL - ok
21:54:38.0296 1948 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
21:54:38.0312 1948 WSTCODEC - ok
21:54:38.0375 1948 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:54:38.0375 1948 WudfPf - ok
21:54:38.0421 1948 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:54:38.0421 1948 WudfRd - ok
21:54:38.0515 1948 ZD1211BU(TP-LINK) (d125e1445bb9dc951c250d4192e70841) C:\WINDOWS\system32\DRIVERS\zd1211Bu.sys
21:54:38.0531 1948 ZD1211BU(TP-LINK) - ok
21:54:38.0593 1948 ZDPSp50 (00ae175b903d45ed4a62384d3315dc2a) C:\WINDOWS\system32\Drivers\ZDPSp50.sys
21:54:38.0593 1948 ZDPSp50 - ok
21:54:38.0703 1948 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} (74ec37b9eaf9fca015b933a526825c7a) C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl
21:54:38.0718 1948 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} - ok
21:54:38.0765 1948 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
21:54:38.0968 1948 \Device\Harddisk0\DR0 - ok
21:54:39.0000 1948 Boot (0x1200) (6c61e0a79f1c474b2c16eba95776f9b0) \Device\Harddisk0\DR0\Partition0
21:54:39.0000 1948 \Device\Harddisk0\DR0\Partition0 - ok
21:54:39.0031 1948 Boot (0x1200) (905959ca327b73a5b38575c0f36c9c10) \Device\Harddisk0\DR0\Partition1
21:54:39.0031 1948 \Device\Harddisk0\DR0\Partition1 - ok
21:54:39.0046 1948 ============================================================
21:54:39.0046 1948 Scan finished
21:54:39.0046 1948 ============================================================
21:54:39.0093 1080 Detected object count: 0
21:54:39.0093 1080 Actual detected object count: 0
21:55:01.0968 1880 Deinitialize success

ooo121 · #9 Příspěvek od **ooo121** » 26 dub 2013 13:15

ComboFix 13-04-25.01 - Administrator 25.04.2013 20:18:33.3.1 - x86 NETWORK
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.502.288 [GMT 2:00]
Spuštěný z: c:\documents and settings\Administrator\Plocha\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\regedit.com
c:\windows\system32\taskmgr.com
c:\windows\system32\TZLog.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-03-25 do 2013-04-25 )))))))))))))))))))))))))))))))
.
.
2013-04-25 17:40 . 2013-04-25 17:40 -------- d-----w- C:\a
2013-04-25 17:15 . 2005-11-17 13:36 8064 ----a-w- c:\windows\system32\drivers\flash.sys
2013-04-25 14:28 . 2013-04-25 14:28 -------- d-----w- c:\program files\Secunia
2013-04-25 11:06 . 2013-04-25 14:02 -------- d---a-w- C:\Kaspersky Rescue Disk 10.0
2013-04-23 19:13 . 2013-04-23 19:12 866720 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-04-23 19:12 . 2013-04-23 19:12 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-04-23 10:50 . 2013-04-23 14:35 -------- d-----w- c:\program files\Registry Easy
2013-04-23 08:12 . 2013-04-23 08:12 -------- d-----w- c:\program files\trend micro
2013-04-23 08:12 . 2013-04-23 08:12 -------- d-----w- C:\rsit
2013-04-23 07:58 . 2013-04-23 07:58 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2013-04-22 20:53 . 2013-04-25 16:06 -------- d-----w- c:\program files\CCleaner
2013-04-22 20:12 . 2013-04-22 20:25 -------- d-----w- c:\windows\ie8updates
2013-04-22 13:54 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2013-04-22 13:53 . 2013-03-02 02:08 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2013-04-22 13:53 . 2013-03-02 02:08 630272 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2013-04-22 13:53 . 2013-03-02 02:08 2004992 -c----w- c:\windows\system32\dllcache\iertutil.dll
2013-04-22 13:53 . 2013-03-02 02:08 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2013-04-22 13:53 . 2013-03-02 02:08 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2013-04-22 13:53 . 2013-03-02 02:08 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2013-04-22 13:53 . 2013-03-02 02:08 522240 -c----w- c:\windows\system32\dllcache\jsdbgui.dll
2013-04-22 13:53 . 2013-03-02 02:08 11111424 -c----w- c:\windows\system32\dllcache\ieframe.dll
2013-04-22 13:53 . 2013-02-12 00:32 12928 -c----w- c:\windows\system32\dllcache\usb8023x.sys
2013-04-22 13:53 . 2013-02-12 00:32 12928 -c----w- c:\windows\system32\dllcache\usb8023.sys
2013-04-22 13:52 . 2012-12-16 12:23 290560 -c----w- c:\windows\system32\dllcache\atmfd.dll
2013-04-22 13:52 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2013-04-22 13:52 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2013-04-22 13:52 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2013-04-22 13:52 . 2009-10-15 16:32 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2013-04-22 13:52 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2013-04-22 13:51 . 2008-05-01 14:37 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2013-04-22 13:51 . 2011-07-15 13:29 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2013-04-22 13:48 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2013-04-22 13:47 . 2009-06-21 21:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2013-04-22 13:47 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2013-04-22 13:45 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2013-04-22 12:33 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2013-04-22 12:32 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2013-04-22 12:32 . 2009-03-06 14:23 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2013-04-22 12:32 . 2009-02-09 11:25 111104 -c----w- c:\windows\system32\dllcache\services.exe
2013-04-22 12:32 . 2009-02-09 10:56 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2013-04-22 12:32 . 2009-02-09 10:56 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2013-04-22 12:32 . 2009-02-09 10:56 684032 -c----w- c:\windows\system32\dllcache\advapi32.dll
2013-04-22 12:32 . 2009-02-09 10:56 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2013-04-22 12:31 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2013-04-22 12:30 . 2012-05-28 18:16 536576 -c----w- c:\windows\system32\dllcache\msado15.dll
2013-04-22 12:30 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2013-04-22 12:30 . 2012-07-04 14:05 139784 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2013-04-22 12:28 . 2010-12-09 15:15 713216 -c----w- c:\windows\system32\dllcache\ntdll.dll
2013-04-22 12:28 . 2013-03-07 15:56 2195584 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2013-04-22 12:28 . 2013-03-07 15:56 2151936 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2013-04-22 12:28 . 2013-03-07 15:56 2030592 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2013-04-22 12:28 . 2013-03-07 15:56 2072192 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2013-04-22 12:28 . 2010-07-16 11:58 219136 -c----w- c:\windows\system32\dllcache\wordpad.exe
2013-04-22 12:28 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2013-04-22 12:28 . 2012-01-11 19:07 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2013-04-22 12:28 . 2012-01-11 19:07 3072 ------w- c:\windows\system32\iacenc.dll
2013-04-22 12:28 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2013-04-22 12:28 . 2010-08-16 08:45 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2013-04-22 12:11 . 2013-03-06 22:33 29816 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-04-22 12:11 . 2013-03-06 22:33 49760 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2013-04-22 12:11 . 2013-03-06 22:33 368176 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-04-22 12:11 . 2013-03-06 22:33 62376 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-04-22 12:11 . 2013-03-06 22:33 765736 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-04-22 12:11 . 2013-03-06 22:33 49248 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-04-22 12:11 . 2013-03-06 22:33 164736 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-04-22 12:11 . 2013-03-06 22:33 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-04-22 12:11 . 2013-03-06 22:32 228600 ----a-w- c:\windows\system32\aswBoot.exe
2013-04-22 12:10 . 2013-03-06 22:32 41664 ----a-w- c:\windows\avastSS.scr
2013-04-22 12:10 . 2013-04-22 12:10 -------- d-----w- c:\program files\AVAST Software
2013-04-22 12:08 . 2013-04-22 12:10 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVAST Software
2013-04-22 10:56 . 2013-04-22 10:56 -------- d---a-w- c:\windows\VDLL.DLL
2013-04-22 10:56 . 2013-04-22 10:56 -------- d---a-w- c:\windows\system32\runouce.exe
2013-04-22 10:56 . 2013-04-22 10:56 -------- d---a-w- c:\windows\rundll16.exe
2013-04-22 10:56 . 2013-04-22 10:56 -------- d---a-w- c:\windows\RUNDL132.EXE
2013-04-22 10:56 . 2013-04-22 10:56 -------- d---a-w- c:\windows\logo1_.exe
2013-04-22 10:56 . 2013-04-22 10:56 -------- d---a-w- c:\windows\logo_1.exe
2013-04-22 09:50 . 2013-04-22 09:50 626688 ----a-w- c:\windows\system32\msvcr80.dll
2013-04-22 09:50 . 2013-04-22 09:50 548864 ----a-w- c:\windows\system32\msvcp80.dll
2013-04-22 09:50 . 2013-04-22 09:50 28672 ----a-w- c:\windows\system32\eEmpty.exe
2013-04-22 09:50 . 2008-04-14 07:52 137216 ----a-w- c:\windows\system32\T.COM
2013-04-22 09:50 . 2008-04-14 07:52 147968 ----a-w- c:\windows\R.COM
2013-04-22 09:50 . 2013-04-22 09:50 -------- d-----w- c:\documents and settings\All Users\Data aplikací\MicroWorld
2013-04-22 09:47 . 2013-04-25 14:30 -------- d-----w- c:\documents and settings\Administrator
2013-04-02 13:42 . 2013-04-02 13:42 16856 ----a-w- c:\program files\Mozilla Firefox\plugin-container.exe
2013-04-02 13:42 . 2013-04-02 13:42 719832 ----a-w- c:\program files\Mozilla Firefox\mozcpp19.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-04-23 19:12 . 2007-08-23 09:50 144896 ----a-w- c:\windows\system32\javacpl.cpl
2013-04-23 19:12 . 2011-04-13 19:23 788896 ----a-w- c:\windows\system32\deployJava1.dll
2013-04-22 10:57 . 2013-04-22 10:56 3414233 ----a-w- c:\windows\REGBK00.ZIP
2013-03-08 08:36 . 2004-08-17 13:49 293376 ----a-w- c:\windows\system32\winsrv.dll
2013-03-07 15:56 . 2004-08-17 15:45 2072192 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-03-07 15:56 . 2004-08-17 13:45 2195584 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-02 02:08 . 2004-08-17 13:49 916480 ----a-w- c:\windows\system32\wininet.dll
2013-03-02 02:08 . 2004-08-17 13:49 43520 ----a-w- c:\windows\system32\licmgr10.dll
2013-03-02 02:08 . 2004-08-17 13:49 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2013-03-02 01:57 . 2004-08-17 13:44 1867264 ----a-w- c:\windows\system32\win32k.sys
2013-03-02 01:08 . 2004-08-17 13:44 385024 ----a-w- c:\windows\system32\html.iec
2013-02-27 07:58 . 2007-08-17 22:09 2067456 ----a-w- c:\windows\system32\mstscax.dll
2013-02-12 00:32 . 2009-12-15 13:45 12928 ------w- c:\windows\system32\drivers\usb8023x.sys
2013-02-12 00:32 . 2004-08-03 21:04 12928 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-02-07 12:15 . 2013-02-07 12:15 16024 ----a-w- c:\windows\system32\drivers\psi_mf_x86.sys
2013-01-26 03:55 . 2004-08-17 13:49 552448 ----a-w- c:\windows\system32\oleaut32.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 22:32 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AzMixerSel"="c:\program files\Realtek\InstallShield\AzMixerSel.exe" [2005-06-12 53248]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2007-03-21 174872]
"RTHDCPL"="RTHDCPL.EXE" [2007-05-29 16132608]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-06-17 282624]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Secunia PSI Tray.lnk - c:\program files\Secunia\PSI\psi_tray.exe [2013-2-7 575000]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SynTPEnh"=c:\program files\Synaptics\SynTP\SynTPEnh.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
.
R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [22.4.2013 14:11 49248]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [22.4.2013 14:11 765736]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [22.4.2013 14:11 368176]
S2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/07/19 10:27];c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl [28.6.2010 22:50 87536]
S2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [22.4.2013 14:11 29816]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [22.4.2013 14:11 66336]
S2 Secunia PSI Agent;Secunia PSI Agent;c:\program files\Secunia\PSI\psia.exe [7.2.2013 14:31 1223704]
S3 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [22.4.2013 14:11 164736]
S3 flash;flash;c:\windows\system32\drivers\flash.sys [25.4.2013 19:15 8064]
S3 IpwP;IPWireless 3G Network Adapter;c:\windows\system32\drivers\ipw3gnet.sys [23.11.2009 20:05 51040]
S3 PAC207;Trust 100K Series Webcam;c:\windows\system32\drivers\PFC027.SYS [9.1.2010 2:12 618112]
S3 PSI;PSI;c:\windows\system32\drivers\psi_mf_x86.sys [7.2.2013 14:15 16024]
S3 ZD1211BU(TP-LINK);TP-LINK Wireless USB Adapter Driver(TP-LINK);c:\windows\system32\drivers\ZD1211BU.sys [24.11.2009 18:42 500736]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-04-22 12:13 1642448 ----a-w- c:\program files\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-04-25 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2013-04-22 22:32]
.
2013-04-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-04-22 12:12]
.
2013-04-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-04-22 12:12]
.
2013-04-25 c:\windows\Tasks\User_Feed_Synchronization-{107B5ED5-5F2C-4666-B62C-FA9671AFA0AF}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 02:31]
.
2013-04-25 c:\windows\Tasks\User_Feed_Synchronization-{3ABADDD4-12B6-481B-851A-6CC045A15E19}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 02:31]
.
.
------- Doplňkový sken -------
.
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
FF - ProfilePath - c:\documents and settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\hacrkfaw.default\
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
FF - Ext: avast! WebRep: wrc@avast.com - c:\program files\AVAST Software\Avast\WebRep\FF
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-04-25 20:24
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1229272821-2052111302-682003330-500\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (Administrator)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,38,ad,34,db,45,b2,67,47,8d,ab,bf,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,38,ad,34,db,45,b2,67,47,8d,ab,bf,\
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'lsass.exe'(852)
c:\windows\system32\vorbis.dll
c:\windows\system32\ogg.dll
.
Celkový čas: 2013-04-25 20:25:18
ComboFix-quarantined-files.txt 2013-04-25 18:25
ComboFix2.txt 2013-04-22 10:16
.
Před spuštěním: Volných bajtů: 22 757 478 400
Po spuštění: Volných bajtů: 23 313 682 432
.
- - End Of File - - 1B6AE7A8242DBC11729B1FB1D2A3A945

ooo121 · #10 Příspěvek od **ooo121** » 26 dub 2013 13:40

----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows XP Professional SP3 [5.1 Build 2600] (x86)
Date : 2013/04/26 14:38:54

-- Controller Map ----------------------------------------------------------
+ Intel(R) 82801G (ICH7 Family) Ultra ATA Storage Controllers - 27DF [ATA]
+ Primární kanál IDE (0)
- HL-DT-ST DVDRAM GSA-T20N
+ Intel(R) 82801GBM SATA AHCI Controller [ATA]
- WDC WD800BEVS-22RST0

-- Disk List ---------------------------------------------------------------
(1) WDC WD800BEVS-22RST0 : 80,0 GB [0/1/0, pd1]

----------------------------------------------------------------------------
(1) WDC WD800BEVS-22RST0
----------------------------------------------------------------------------
Model : WDC WD800BEVS-22RST0
Firmware : 04.01G04
Serial Number : WD-WXE407536314
Disk Size : 80,0 GB (8,4/80,0/80,0)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 156301488
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ----
Transfer Mode : SATA/150
Power On Hours : 3516 hod.
Power On Count : 1781 krát
Temparature : 44 C (111 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0080h [ON]
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 160 159 _21 0000000003C6 Čas na roztočení ploten
04 _99 _99 __0 000000000718 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 100 253 _51 000000000000 Počet chybných hledání
09 _96 _96 __0 000000000DBC Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 _51 000000000000 Počet pokusů o překalibrování
0C _99 _99 __0 0000000006F5 Počet cyklů zapnutí zařízení
C0 200 200 __0 000000000029 Počet vypnutí disku
C1 174 174 __0 0000000131A3 Počet cyklů načítání/vymazání
C2 _99 _88 __0 00000000002C Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 100 253 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 _51 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2057 442D 5758 3037 3037 3533 3633 3134
020: 0000 4000 0032 3034 2E30 3034 3034 5744 4320 5744
030: 3830 3042 4556 532D 3232 5430 5430 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 003F 003F FC10 00FB 0110
060: F8B0 0950 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0702 0702 0000 004C 004C
080: 00FE 0000 746B 7F09 6163 BC09 BC09 6163 407F 0012
090: 0000 0080 FFFE 0000 80FE 0000 0000 0000 0000 0000
100: F8B0 0950 0000 0000 0000 0000 0000 0000 5001 4EE2
110: AAEC 3EFC 0000 0000 0000 0000 0000 0000 0000 4010
120: 4010 0000 0000 0000 0000 0000 0000 0000 0001 0000
130: 0000 0000 0000 1678 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 103F 103F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 ACA5

#11 Příspěvek od **Márty84** » 26 dub 2013 17:47

Jeste dejte aktualni log z RSIT

+

Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe , ulozte na plochu a spustte.
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

ooo121 · #12 Příspěvek od **ooo121** » 26 dub 2013 19:10

Logfile of random's system information tool 1.09 (written by random/random)
Run by user at 2013-04-26 20:08:45
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 22 GB (72%) free of 30 GB
Total RAM: 502 MB (15% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:08:59, on 26.4.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\DOCUME~1\user\LOCALS~1\Temp\RtkBtMnt.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\user\Plocha\servis\RSIT.exe
C:\Program Files\trend micro\user.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 6747791187
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - https://www.update.microsoft.com/micros ... 6900288937
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

--
End of file - 7718 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{107B5ED5-5F2C-4666-B62C-FA9671AFA0AF}.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{3ABADDD4-12B6-481B-851A-6CC045A15E19}.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\7fm73jwx.default

prefs.js - "browser.startup.homepage" - "www.centrum.cz"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}:6.0.02, {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, jqs@sun.com:1.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.18"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.169 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.21.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\WINDOWS\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-04-23 462752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-03-07 1224568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar2.dll [2007-01-19 2403392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll [2010-09-29 842296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-04-23 171424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar2.dll [2007-01-19 2403392]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-03-07 1224568]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AzMixerSel"=C:\Program Files\Realtek\InstallShield\AzMixerSel.exe [2005-06-12 53248]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2007-03-21 174872]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-03-07 4767304]
"igfxtray"=C:\WINDOWS\system32\igfxtray.exe [2006-03-24 94208]
"igfxhkcmd"=C:\WINDOWS\system32\hkcmd.exe [2006-03-24 77824]
"igfxpers"=C:\WINDOWS\system32\igfxpers.exe [2006-03-24 118784]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-05-29 16132608]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-04 69632]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2005-12-17 761945]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DVDUpgrade]
DVDUpgrd.exe /async []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2012-10-25 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2007-08-29 68856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2006-03-24 139264]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-06-03 190464]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2012-05-22 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"vidc.divx"=divx.dll
"vidc.div4"=DivXc32f.dll
"vidc.div3"=DivXc32.dll
"vidc.xvid"=xvid.dll
"vidc.mp43"=mpg4c32.dll
"msacm.l3radius"=l3codecp.acm
"msacm.divxa"=divxa32.acm
"msacm.vorbis"=Vorbis.acm
"msacm.a3d"=a3d.dll
"msacm.ogg"=ogg.dll
"msacm.vorbisenc"=vorbisenc.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 1 month======

2013-04-26 09:31:06 ----D---- C:\Documents and Settings\All Users\Data aplikací\Office Genuine Advantage
2013-04-26 09:31:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2013-04-26 07:01:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2712808$
2013-04-26 07:01:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2659262$
2013-04-26 07:01:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2013-04-26 07:00:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2758857$
2013-04-26 07:00:20 ----HDC---- C:\WINDOWS\$NtUninstallKB2691442$
2013-04-26 06:58:09 ----D---- C:\WINDOWS\ie7updates
2013-04-26 06:57:26 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2013-04-26 06:57:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2779562$
2013-04-26 06:57:06 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2013-04-26 06:56:59 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2013-04-26 06:56:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2655992$
2013-04-26 06:56:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2802968$
2013-04-26 06:56:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2780091$
2013-04-26 06:56:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2719985$
2013-04-26 06:56:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2753842-v2$
2013-04-26 06:55:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2770660$
2013-04-26 06:55:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2013-04-26 06:55:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2808735$
2013-04-26 06:55:02 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2013-04-26 06:54:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
2013-04-26 06:54:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2757638$
2013-04-26 06:54:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2749655$
2013-04-26 06:54:03 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2013-04-26 06:53:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2698365$
2013-04-26 06:53:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2705219-v2$
2013-04-26 06:53:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2727528$
2013-04-26 06:52:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2723135-v2$
2013-04-26 06:52:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2661254-v2$
2013-04-26 06:52:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2813170$
2013-04-26 06:51:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2813347$
2013-04-26 06:50:43 ----A---- C:\WINDOWS\imsins.BAK
2013-04-26 06:49:59 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2013-04-26 01:21:01 ----A---- C:\WINDOWS\system32\TASKMGR.COM
2013-04-26 01:21:00 ----A---- C:\WINDOWS\REGEDIT.COM
2013-04-26 00:52:09 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2013-04-25 23:02:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\McAfee
2013-04-25 23:01:00 ----D---- C:\Program Files\Adobe
2013-04-25 22:59:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\Mozilla
2013-04-25 22:59:22 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-04-25 22:54:26 ----D---- C:\WINDOWS\system32\drivers\UMDF
2013-04-25 22:54:26 ----ASH---- C:\pagefile.sys
2013-04-25 22:36:02 ----A---- C:\WINDOWS\system32\javaws.exe
2013-04-25 22:36:01 ----A---- C:\WINDOWS\system32\javaw.exe
2013-04-25 22:35:57 ----A---- C:\WINDOWS\system32\java.exe
2013-04-25 22:13:08 ----SHD---- C:\RECYCLER
2013-04-25 21:54:20 ----A---- C:\TDSSKiller.2.7.11.0_25.04.2013_21.54.20_log.txt
2013-04-25 21:51:23 ----A---- C:\AdwCleaner[S1].txt
2013-04-25 21:50:49 ----A---- C:\AdwCleaner[R1].txt
2013-04-25 21:30:05 ----A---- C:\WINDOWS\system32\igfxres.dll
2013-04-25 21:26:23 ----D---- C:\WINDOWS\Prefetch
2013-04-25 21:13:17 ----D---- C:\Program Files\Windows Media Connect 2
2013-04-25 21:05:10 ----A---- C:\WINDOWS\system32\spxcoins.dll
2013-04-25 21:05:10 ----A---- C:\WINDOWS\system32\irclass.dll
2013-04-25 21:04:48 ----RA---- C:\WINDOWS\SETCE.tmp
2013-04-25 21:04:45 ----RA---- C:\WINDOWS\SETC2.tmp
2013-04-25 21:04:43 ----RA---- C:\WINDOWS\SETBF.tmp
2013-04-25 20:25:20 ----D---- C:\WINDOWS\temp
2013-04-25 20:25:18 ----A---- C:\ComboFix.txt
2013-04-25 20:12:43 ----D---- C:\ComboFix
2013-04-25 19:40:05 ----D---- C:\a
2013-04-25 19:15:47 ----A---- C:\WINDOWS\system32\drivers\flash.sys
2013-04-25 16:28:32 ----D---- C:\Program Files\Secunia
2013-04-25 13:06:32 ----AD---- C:\Kaspersky Rescue Disk 10.0
2013-04-23 21:13:16 ----A---- C:\WINDOWS\system32\npDeployJava1.dll
2013-04-23 21:12:59 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-04-23 10:12:22 ----D---- C:\Program Files\trend micro
2013-04-23 10:12:17 ----D---- C:\rsit
2013-04-23 09:58:16 ----D---- C:\Documents and Settings\user\Data aplikací\Malwarebytes
2013-04-23 09:58:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2013-04-22 22:53:05 ----D---- C:\Program Files\CCleaner
2013-04-22 22:15:46 ----A---- C:\WINDOWS\system32\MRT.exe
2013-04-22 22:12:36 ----D---- C:\WINDOWS\ie8updates
2013-04-22 15:52:16 ----N---- C:\WINDOWS\system32\browserchoice.exe
2013-04-22 14:28:39 ----N---- C:\WINDOWS\system32\iacenc.dll
2013-04-22 14:11:58 ----A---- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2013-04-22 14:11:57 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2013-04-22 14:11:57 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2013-04-22 14:11:56 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2013-04-22 14:11:55 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2013-04-22 14:11:55 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2013-04-22 14:11:55 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2013-04-22 14:11:54 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2013-04-22 14:11:53 ----A---- C:\WINDOWS\system32\aswBoot.exe
2013-04-22 14:10:57 ----A---- C:\WINDOWS\avastSS.scr
2013-04-22 14:10:19 ----D---- C:\Program Files\AVAST Software
2013-04-22 14:08:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2013-04-22 12:56:00 ----AD---- C:\WINDOWS\VDLL.DLL
2013-04-22 12:56:00 ----AD---- C:\WINDOWS\system32\runouce.exe
2013-04-22 12:56:00 ----AD---- C:\WINDOWS\rundll16.exe
2013-04-22 12:56:00 ----AD---- C:\WINDOWS\RUNDL132.EXE
2013-04-22 12:56:00 ----AD---- C:\WINDOWS\logo1_.exe
2013-04-22 12:56:00 ----AD---- C:\WINDOWS\logo_1.exe
2013-04-22 12:03:36 ----S---- C:\Boot.bak
2013-04-22 12:03:33 ----RASD---- C:\cmdcons
2013-04-22 12:01:08 ----A---- C:\WINDOWS\zip.exe
2013-04-22 12:01:08 ----A---- C:\WINDOWS\SWXCACLS.exe
2013-04-22 12:01:08 ----A---- C:\WINDOWS\SWSC.exe
2013-04-22 12:01:08 ----A---- C:\WINDOWS\SWREG.exe
2013-04-22 12:01:08 ----A---- C:\WINDOWS\sed.exe
2013-04-22 12:01:08 ----A---- C:\WINDOWS\PEV.exe
2013-04-22 12:01:08 ----A---- C:\WINDOWS\NIRCMD.exe
2013-04-22 12:01:08 ----A---- C:\WINDOWS\MBR.exe
2013-04-22 12:01:08 ----A---- C:\WINDOWS\grep.exe
2013-04-22 11:59:49 ----D---- C:\WINDOWS\ERDNT
2013-04-22 11:59:42 ----D---- C:\Qoobox
2013-04-22 11:50:45 ----A---- C:\WINDOWS\system32\msvcr80.dll
2013-04-22 11:50:43 ----A---- C:\WINDOWS\system32\msvcp80.dll
2013-04-22 11:50:42 ----A---- C:\WINDOWS\system32\eEmpty.exe
2013-04-22 11:50:40 ----A---- C:\WINDOWS\system32\T.COM
2013-04-22 11:50:40 ----A---- C:\WINDOWS\R.COM
2013-04-22 11:50:38 ----D---- C:\Documents and Settings\All Users\Data aplikací\MicroWorld
2013-04-22 11:47:06 ----SHD---- C:\WINDOWS\CSC
2013-04-21 17:16:43 ----A---- C:\Documents and Settings\user\Data aplikací\AltShell.ini

======List of files/folders modified in the last 1 month======

2013-04-26 20:04:06 ----HD---- C:\WINDOWS\inf
2013-04-26 20:04:05 ----D---- C:\WINDOWS\system32\CatRoot2
2013-04-26 19:59:00 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-04-26 14:11:01 ----RD---- C:\Program Files
2013-04-26 14:11:00 ----D---- C:\WINDOWS\system32\drivers
2013-04-26 09:32:08 ----D---- C:\WINDOWS\system32\CatRoot
2013-04-26 09:32:00 ----D---- C:\WINDOWS\system32
2013-04-26 09:30:43 ----D---- C:\WINDOWS\system32\drivers\etc
2013-04-26 07:18:04 ----D---- C:\WINDOWS
2013-04-26 07:17:13 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-04-26 07:17:13 ----D---- C:\WINDOWS\system32\cs-cz
2013-04-26 07:17:13 ----D---- C:\WINDOWS\Media
2013-04-26 07:17:13 ----D---- C:\WINDOWS\Help
2013-04-26 07:17:13 ----D---- C:\Program Files\Internet Explorer
2013-04-26 07:17:12 ----D---- C:\WINDOWS\AppPatch
2013-04-26 07:13:27 ----HD---- C:\WINDOWS\$hf_mig$
2013-04-26 07:10:22 ----HDC---- C:\WINDOWS\ie8
2013-04-26 07:04:01 ----D---- C:\WINDOWS\Debug
2013-04-26 06:57:10 ----SD---- C:\WINDOWS\Tasks
2013-04-26 02:19:00 ----D---- C:\WINDOWS\SoftwareDistribution
2013-04-26 00:49:10 ----D---- C:\Config.Msi
2013-04-26 00:46:38 ----D---- C:\WINDOWS\Minidump
2013-04-25 23:28:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-04-25 23:02:08 ----D---- C:\WINDOWS\l2schemas
2013-04-25 23:02:06 ----D---- C:\WINDOWS\system32\usmt
2013-04-25 23:02:05 ----SHD---- C:\WINDOWS\Installer
2013-04-25 23:02:03 ----D---- C:\WINDOWS\system32\Setup
2013-04-25 23:01:53 ----D---- C:\WINDOWS\network diagnostic
2013-04-25 23:01:36 ----D---- C:\Program Files\Common Files\Adobe
2013-04-25 23:01:24 ----D---- C:\WINDOWS\WinSxS
2013-04-25 23:01:23 ----D---- C:\WINDOWS\PeerNet
2013-04-25 23:01:23 ----D---- C:\WINDOWS\ime
2013-04-25 23:00:45 ----D---- C:\WINDOWS\system32\npp
2013-04-25 22:59:16 ----D---- C:\Program Files\Mozilla Firefox
2013-04-25 22:58:07 ----D---- C:\WINDOWS\msagent
2013-04-25 22:57:57 ----D---- C:\WINDOWS\system32\cs
2013-04-25 22:57:20 ----D---- C:\WINDOWS\ehome
2013-04-25 22:56:57 ----RD---- C:\WINDOWS\Offline Web Pages
2013-04-25 22:56:39 ----SD---- C:\WINDOWS\Downloaded Program Files
2013-04-25 22:56:36 ----D---- C:\WINDOWS\WBEM
2013-04-25 22:56:24 ----D---- C:\WINDOWS\twain_32
2013-04-25 22:56:05 ----D---- C:\WINDOWS\system32\icsxml
2013-04-25 22:55:28 ----D---- C:\WINDOWS\system32\1033
2013-04-25 22:55:28 ----D---- C:\WINDOWS\system32\1029
2013-04-25 22:54:26 ----D---- C:\WINDOWS\Driver Cache
2013-04-25 22:40:39 ----D---- C:\Program Files\QuickTime
2013-04-25 22:39:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\Apple Computer
2013-04-25 22:39:30 ----D---- C:\Program Files\ICQLite
2013-04-25 22:35:09 ----D---- C:\Program Files\Java
2013-04-25 22:23:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-04-25 22:17:19 ----D---- C:\WINDOWS\system
2013-04-25 21:30:06 ----D---- C:\WINDOWS\Registration
2013-04-25 21:26:47 ----D---- C:\WINDOWS\system32\Restore
2013-04-25 21:26:46 ----SHD---- C:\System Volume Information
2013-04-25 21:25:37 ----D---- C:\WINDOWS\system32\config
2013-04-25 21:19:58 ----D---- C:\WINDOWS\security
2013-04-25 21:18:13 ----A---- C:\WINDOWS\win.ini
2013-04-25 21:17:59 ----A---- C:\WINDOWS\ODBCINST.INI
2013-04-25 21:17:24 ----ASH---- C:\WINDOWS\fonts\desktop.ini
2013-04-25 21:17:21 ----D---- C:\WINDOWS\system32\ias
2013-04-25 21:16:50 ----RD---- C:\WINDOWS\Web
2013-04-25 21:16:43 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2013-04-25 21:16:25 ----D---- C:\WINDOWS\srchasst
2013-04-25 21:15:48 ----D---- C:\Program Files\Windows Media Player
2013-04-25 21:15:47 ----D---- C:\Program Files\NetMeeting
2013-04-25 21:15:46 ----D---- C:\Program Files\Common Files\Services
2013-04-25 21:15:42 ----D---- C:\Program Files\Outlook Express
2013-04-25 21:15:25 ----D---- C:\Program Files\Movie Maker
2013-04-25 21:15:01 ----D---- C:\WINDOWS\system32\oobe
2013-04-25 21:14:43 ----D---- C:\Program Files\Common Files\System
2013-04-25 21:13:39 ----D---- C:\WINDOWS\system32\Com
2013-04-25 21:13:06 ----D---- C:\WINDOWS\Cursors
2013-04-25 21:12:57 ----D---- C:\Program Files\Windows NT
2013-04-25 21:12:41 ----D---- C:\WINDOWS\system32\wbem
2013-04-25 21:11:50 ----SH---- C:\boot.ini
2013-04-25 21:08:18 ----D---- C:\WINDOWS\system32\ReinstallBackups
2013-04-25 21:05:42 ----A---- C:\WINDOWS\system.ini
2013-04-25 21:05:41 ----RSD---- C:\WINDOWS\Fonts
2013-04-25 21:04:59 ----ASH---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2013-04-25 20:21:28 ----D---- C:\Program Files\Common Files
2013-04-24 10:05:09 ----D---- C:\Documents and Settings\user\Data aplikací\vlc
2013-04-23 21:13:36 ----D---- C:\Program Files\Common Files\Java
2013-04-23 21:12:09 ----A---- C:\WINDOWS\system32\deployJava1.dll
2013-04-23 13:28:54 ----D---- C:\WINDOWS\system32\inetsrv
2013-04-23 13:15:50 ----D---- C:\WINDOWS\pss
2013-04-23 09:46:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2013-04-22 22:29:18 ----D---- C:\Program Files\Messenger
2013-04-22 14:19:47 ----D---- C:\Program Files\ESET
2013-04-22 14:14:24 ----D---- C:\Program Files\Google
2013-04-22 13:10:57 ----D---- C:\Program Files\Legion
2013-04-22 12:56:38 ----D---- C:\Program Files\ICQToolbar
2013-04-22 11:47:11 ----D---- C:\Documents and Settings
2013-04-02 16:10:13 ----D---- C:\Documents and Settings\user\Data aplikací\dvdcss

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2013-03-07 49248]
R0 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\DRIVERS\iaStor.sys [2012-06-19 305176]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2013-03-07 49760]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2013-03-07 765736]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2013-03-07 368176]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2013-03-07 62376]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2012-05-22 8832]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/07/19 10:27:05]; \??\C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2013-03-07 29816]
R2 aswMonFlt;aswMonFlt; \??\C:\WINDOWS\system32\drivers\aswMonFlt.sys []
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2008-04-14 11868]
R3 Afc;PPdus ASPI Shell; C:\WINDOWS\system32\drivers\Afc.sys [2005-02-23 11776]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2012-05-22 60800]
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2007-02-16 160256]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2006-10-12 604928]
R3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2007-03-24 539072]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2007-03-24 37424]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2007-04-01 876384]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2006-03-24 1166972]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-05-31 4424192]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2012-05-22 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2012-05-22 61824]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-14 79232]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2005-12-17 191936]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 admjoy;Aureal Game Port Enumerator; C:\WINDOWS\system32\DRIVERS\admjoy.sys [2008-04-13 10880]
S3 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2013-03-07 164736]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2007-03-24 149123]
S3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2007-04-01 55352]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 flash;flash; \??\C:\WINDOWS\system32\drivers\flash.sys []
S3 IpwP;IPWireless 3G Network Adapter; C:\WINDOWS\system32\DRIVERS\ipw3gnet.sys [2008-10-10 51040]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2012-05-22 10880]
S3 PAC207;Trust 100K Series Webcam; C:\WINDOWS\system32\DRIVERS\PFC027.SYS [2008-02-13 618112]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys [2007-01-25 290304]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2012-05-22 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2012-05-22 82944]
S3 ZD1211BU(TP-LINK);TP-LINK Wireless USB Adapter Driver(TP-LINK); C:\WINDOWS\system32\DRIVERS\zd1211Bu.sys [2009-01-05 500736]
S3 ZDPSp50;ZDPSp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\ZDPSp50.sys [2009-01-05 17664]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-03-07 45248]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2007-04-01 273256]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2007-03-21 355096]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-04-23 181664]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-04-22 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-04-26 256904]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-04-22 116648]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-08-20 138168]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-03-27 115608]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------

ooo121 · #13 Příspěvek od **ooo121** » 26 dub 2013 19:44

OTL logfile created on: 26.4.2013 20:14:05 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\user\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

502,11 Mb Total Physical Memory | 104,05 Mb Available Physical Memory | 20,72% Memory free
1,20 Gb Paging File | 0,77 Gb Available in Paging File | 64,26% Paging File free
Paging file location(s): c:\pagefile.sys 756 1512 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 29,29 Gb Total Space | 21,20 Gb Free Space | 72,37% Space Free | Partition Type: NTFS
Drive D: | 45,23 Gb Total Space | 43,99 Gb Free Space | 97,25% Space Free | Partition Type: NTFS
Drive E: | 7,79 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

Computer Name: NOTEBOOK | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013.04.26 20:11:27 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Plocha\OTL.exe
PRC - [2013.04.23 21:12:25 | 000,181,664 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2013.04.09 10:57:09 | 001,312,720 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2013.03.07 00:32:44 | 004,767,304 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2013.03.07 00:32:44 | 000,045,248 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2009.12.15 18:14:14 | 000,208,896 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Documents and Settings\user\Local Settings\Temp\RtkBtMnt.exe
PRC - [2008.04.14 10:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.03.21 13:00:04 | 000,355,096 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2007.03.21 13:00:00 | 000,174,872 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe

========== Modules (No Company Name) ==========

MOD - [2013.04.26 11:28:32 | 002,086,912 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\13042600\algo.dll
MOD - [2013.04.09 10:57:07 | 000,390,096 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\26.0.1410.64\ppgooglenaclpluginchrome.dll
MOD - [2013.04.09 10:57:06 | 013,130,704 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll
MOD - [2013.04.09 10:57:05 | 004,050,896 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\26.0.1410.64\pdf.dll
MOD - [2013.04.09 10:56:13 | 001,606,096 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\26.0.1410.64\ffmpegsumo.dll
MOD - [2008.04.14 10:51:48 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2007.05.22 10:59:22 | 000,128,512 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2002.10.05 02:04:26 | 000,092,672 | ---- | M] () -- C:\WINDOWS\system32\vorbis.dll
MOD - [2002.10.05 02:04:18 | 000,021,504 | ---- | M] () -- C:\WINDOWS\system32\ogg.dll

========== Services (SafeList) ==========

SRV - [2013.04.26 09:49:38 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.04.23 21:12:25 | 000,181,664 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2013.03.27 04:16:39 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.03.07 00:32:44 | 000,045,248 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2007.03.21 13:00:04 | 000,355,096 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2013.03.07 00:33:24 | 000,765,736 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2013.03.07 00:33:24 | 000,368,176 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2013.03.07 00:33:24 | 000,164,736 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2013.03.07 00:33:24 | 000,062,376 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2013.03.07 00:33:24 | 000,049,760 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (AswRdr)
DRV - [2013.03.07 00:33:24 | 000,049,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2013.03.07 00:33:23 | 000,066,336 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2013.03.07 00:33:22 | 000,029,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010.06.28 22:50:22 | 000,087,536 | ---- | M] (CyberLink Corp.) [2010/07/19 10:27:05] [Kernel | Auto | Running] -- C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl -- ({1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC})
DRV - [2009.01.05 15:54:56 | 000,500,736 | ---- | M] (Atheros Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZD1211BU.sys -- (ZD1211BU(TP-LINK)
DRV - [2009.01.05 15:54:56 | 000,017,664 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZDPSp50.sys -- (ZDPSp50)
DRV - [2008.10.10 10:10:26 | 000,051,040 | ---- | M] (IPWireless Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ipw3gnet.sys -- (IpwP)
DRV - [2008.04.13 23:06:02 | 000,010,880 | ---- | M] (Aureal, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\admjoy.sys -- (admjoy)
DRV - [2008.02.13 14:17:26 | 000,618,112 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PFC027.SYS -- (PAC207)
DRV - [2007.05.31 11:04:56 | 004,424,192 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2007.04.01 04:02:42 | 000,876,384 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
DRV - [2007.04.01 04:02:40 | 000,055,352 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwhid.sys -- (btwhid)
DRV - [2007.03.24 01:50:24 | 000,149,123 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwdndis.sys -- (BTWDNDIS)
DRV - [2007.03.24 01:50:08 | 000,037,424 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
DRV - [2007.03.24 01:49:54 | 000,539,072 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio)
DRV - [2007.02.16 16:46:00 | 000,160,256 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2007.01.25 05:44:06 | 000,290,304 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tifm21.sys -- (tifm21)
DRV - [2006.10.12 16:28:42 | 000,604,928 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bcmwl5.sys -- (BCM43XX)
DRV - [2005.11.17 15:36:34 | 000,008,064 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\flash.sys -- (flash)
DRV - [2005.02.23 15:58:56 | 000,011,776 | ---- | M] (Arcsoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\afc.sys -- (Afc)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7

IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-1229272821-2052111302-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Bar = http://google.icq.com/search/search_frame.php
IE - HKU\S-1-5-21-1229272821-2052111302-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-1229272821-2052111302-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-1229272821-2052111302-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-1229272821-2052111302-682003330-1003\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-21-1229272821-2052111302-682003330-1003\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-1229272821-2052111302-682003330-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... orm=IE8SRC
IE - HKU\S-1-5-21-1229272821-2052111302-682003330-1003\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... 1I7_____en
IE - HKU\S-1-5-21-1229272821-2052111302-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "www.centrum.cz"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..network.proxy.type: 4
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_169.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.6: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013.04.22 14:11:21 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013.04.25 22:59:18 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.04.25 23:01:39 | 000,000,000 | ---D | M]

[2009.12.17 17:51:49 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Extensions
[2007.08.18 21:10:52 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\7fm73jwx.default\extensions
[2013.04.25 22:59:18 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2013.04.25 22:36:06 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA}
[2013.04.25 22:35:38 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2013.03.27 04:17:36 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2013.03.27 08:00:13 | 000,002,421 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2013.03.27 08:00:13 | 000,000,851 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2013.03.27 08:00:13 | 000,001,580 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2013.03.27 08:00:13 | 000,000,867 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2013.03.27 08:00:13 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\26.0.1410.64\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll
CHR - plugin: QuickTime Plug-in 7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U21 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files\VideoLAN\VLC\npvlc.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Java Deployment Toolkit 7.0.210.11 (Enabled) = C:\WINDOWS\system32\npDeployJava1.dll
CHR - Extension: avast! WebRep = C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1483_0\

O1 HOSTS File: ([2013.04.26 09:30:43 | 000,000,066 | RHS- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 mpa.one.microsoft.com
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Program Files\Google\GoogleToolbar2.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar2.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKU\S-1-5-21-1229272821-2052111302-682003330-1003\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar2.dll (Google Inc.)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe (Intel Corporation)
O4 - HKU\.DEFAULT..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 File not found
O4 - HKU\.DEFAULT..\RunOnce: [tscuninstall] C:\WINDOWS\system32\tscupgrd.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 File not found
O4 - HKU\S-1-5-18..\RunOnce: [tscuninstall] C:\WINDOWS\system32\tscupgrd.exe (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1229272821-2052111302-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1229272821-2052111302-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/windows ... 6747791187 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} https://www.update.microsoft.com/micros ... 6900288937 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 10.21.2)
O16 - DPF: {CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_45)
O16 - DPF: {CAFEEFAC-0017-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0B470500-0946-40C4-9A59-AFF8E53D160C}: DhcpNameServer = 213.46.172.36 213.46.172.37
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007.08.18 00:14:04 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.a3d - C:\WINDOWS\System32\a3d.dll (Aureal Semiconductor)
Drivers32: msacm.divxa - C:\WINDOWS\System32\divxa32.acm (build Pinky.cz)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3radius - C:\WINDOWS\System32\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.ogg - C:\WINDOWS\System32\ogg.dll ()
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.vorbis - C:\WINDOWS\System32\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: msacm.vorbisenc - C:\WINDOWS\System32\vorbisenc.dll ()
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.div3 - C:\WINDOWS\System32\divxc32.dll (build Pinky.cz)
Drivers32: vidc.div4 - C:\WINDOWS\System32\divxc32f.dll (Pinky.cz)
Drivers32: vidc.divx - C:\WINDOWS\System32\divx.dll (DivXNetworks, Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.xvid - C:\WINDOWS\System32\xvid.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2013.04.26 20:11:59 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\user\Plocha\OTL.exe
[2013.04.26 09:31:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Office Genuine Advantage
[2013.04.26 09:31:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
[2013.04.26 07:13:18 | 000,522,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll
[2013.04.26 07:10:30 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2013.04.26 06:58:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie7updates
[2013.04.26 06:57:06 | 000,691,592 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013.04.26 02:26:43 | 003,698,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dat
[2013.04.26 02:26:02 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys
[2013.04.26 02:24:38 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado28.tlb
[2013.04.26 02:24:12 | 002,195,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2013.04.26 02:24:12 | 002,030,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2013.04.26 02:24:11 | 002,151,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2013.04.26 02:24:11 | 002,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2013.04.26 01:21:01 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TASKMGR.COM
[2013.04.26 01:21:00 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\REGEDIT.COM
[2013.04.26 00:52:09 | 000,032,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys
[2013.04.26 00:46:35 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\user\Recent
[2013.04.25 23:39:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Data aplikací\McAfee
[2013.04.25 23:02:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\McAfee
[2013.04.25 23:01:00 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2013.04.25 22:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Mozilla
[2013.04.25 22:59:22 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2013.04.25 22:54:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2013.04.25 22:40:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\QuickTime
[2013.04.25 22:36:02 | 000,263,584 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2013.04.25 22:36:01 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2013.04.25 22:35:57 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2013.04.25 22:25:56 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013.04.25 22:20:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Local Settings\Data aplikací\Secunia PSI
[2013.04.25 22:13:08 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2013.04.25 21:30:05 | 000,143,360 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxres.dll
[2013.04.25 21:26:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2013.04.25 21:23:50 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2013.04.25 21:23:49 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2013.04.25 21:23:49 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2013.04.25 21:23:48 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2013.04.25 21:23:48 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2013.04.25 21:23:47 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2013.04.25 21:23:46 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2013.04.25 21:23:46 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2013.04.25 21:23:44 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll
[2013.04.25 21:23:44 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll
[2013.04.25 21:23:44 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll
[2013.04.25 21:23:43 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll
[2013.04.25 21:23:43 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll
[2013.04.25 21:23:43 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll
[2013.04.25 21:23:43 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll
[2013.04.25 21:23:42 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2013.04.25 21:23:42 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2013.04.25 21:23:42 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2013.04.25 21:23:37 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll
[2013.04.25 21:23:37 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2013.04.25 21:23:37 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2013.04.25 21:23:36 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2013.04.25 21:23:34 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe
[2013.04.25 21:23:34 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe
[2013.04.25 21:23:34 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll
[2013.04.25 21:23:34 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2013.04.25 21:23:33 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2013.04.25 21:23:33 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2013.04.25 21:23:32 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2013.04.25 21:23:32 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2013.04.25 21:23:32 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2013.04.25 21:23:30 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll
[2013.04.25 21:23:29 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll
[2013.04.25 21:23:29 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll
[2013.04.25 21:23:28 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2013.04.25 21:23:28 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll
[2013.04.25 21:23:25 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2013.04.25 21:23:24 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll
[2013.04.25 21:23:24 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll
[2013.04.25 21:23:24 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll
[2013.04.25 21:23:24 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll
[2013.04.25 21:23:24 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe
[2013.04.25 21:23:24 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll
[2013.04.25 21:23:24 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll
[2013.04.25 21:23:23 | 000,460,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll
[2013.04.25 21:23:23 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll
[2013.04.25 21:23:23 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe
[2013.04.25 21:23:22 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll
[2013.04.25 21:23:22 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpapi.dll
[2013.04.25 21:23:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll
[2013.04.25 21:23:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll
[2013.04.25 21:23:21 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe
[2013.04.25 21:23:21 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2013.04.25 21:23:21 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2013.04.25 21:23:21 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2013.04.25 21:23:21 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2013.04.25 21:23:21 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll
[2013.04.25 21:23:20 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2013.04.25 21:23:20 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2013.04.25 21:23:20 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2013.04.25 21:23:20 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2013.04.25 21:23:20 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2013.04.25 21:23:20 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2013.04.25 21:23:20 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2013.04.25 21:23:20 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2013.04.25 21:23:19 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2013.04.25 21:23:19 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll
[2013.04.25 21:23:14 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seo.dll
[2013.04.25 21:23:14 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll
[2013.04.25 21:23:12 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2013.04.25 21:23:11 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwnh.dll
[2013.04.25 21:23:10 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2013.04.25 21:23:10 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2013.04.25 21:23:10 | 000,029,184 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2013.04.25 21:23:10 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll
[2013.04.25 21:23:09 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll
[2013.04.25 21:23:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2013.04.25 21:23:07 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2013.04.25 21:23:06 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2013.04.25 21:23:04 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys
[2013.04.25 21:23:04 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2013.04.25 21:23:03 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2013.04.25 21:23:03 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2013.04.25 21:23:02 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll
[2013.04.25 21:23:00 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2013.04.25 21:22:59 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2013.04.25 21:22:59 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2013.04.25 21:22:59 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2013.04.25 21:22:59 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2013.04.25 21:22:58 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2013.04.25 21:22:58 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2013.04.25 21:22:58 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2013.04.25 21:22:57 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll
[2013.04.25 21:22:56 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2013.04.25 21:22:56 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll
[2013.04.25 21:22:56 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2013.04.25 21:22:56 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2013.04.25 21:22:55 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2013.04.25 21:22:51 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll
[2013.04.25 21:22:50 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll
[2013.04.25 21:22:48 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll
[2013.04.25 21:22:45 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2013.04.25 21:22:44 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe
[2013.04.25 21:22:37 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2013.04.25 21:22:37 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2013.04.25 21:22:25 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe
[2013.04.25 21:22:24 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2013.04.25 21:22:24 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2013.04.25 21:22:24 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll
[2013.04.25 21:22:23 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll
[2013.04.25 21:22:23 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll
[2013.04.25 21:22:22 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll
[2013.04.25 21:22:21 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll
[2013.04.25 21:22:20 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll
[2013.04.25 21:22:20 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll
[2013.04.25 21:22:20 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll
[2013.04.25 21:22:19 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll
[2013.04.25 21:22:17 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2013.04.25 21:22:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll
[2013.04.25 21:22:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2013.04.25 21:22:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll
[2013.04.25 21:22:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll
[2013.04.25 21:22:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll
[2013.04.25 21:22:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll
[2013.04.25 21:22:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll
[2013.04.25 21:22:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll
[2013.04.25 21:22:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll
[2013.04.25 21:22:14 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2013.04.25 21:22:14 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2013.04.25 21:22:14 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2013.04.25 21:22:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll
[2013.04.25 21:22:13 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll
[2013.04.25 21:22:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll
[2013.04.25 21:22:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll
[2013.04.25 21:22:12 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll
[2013.04.25 21:22:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll
[2013.04.25 21:22:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll
[2013.04.25 21:22:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll
[2013.04.25 21:22:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll
[2013.04.25 21:22:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll
[2013.04.25 21:22:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll
[2013.04.25 21:22:11 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll
[2013.04.25 21:22:11 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll
[2013.04.25 21:22:11 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll
[2013.04.25 21:22:10 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll
[2013.04.25 21:22:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll
[2013.04.25 21:22:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll
[2013.04.25 21:22:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll
[2013.04.25 21:22:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2013.04.25 21:22:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll
[2013.04.25 21:22:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll
[2013.04.25 21:22:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll
[2013.04.25 21:22:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll
[2013.04.25 21:22:09 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll
[2013.04.25 21:22:09 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll
[2013.04.25 21:22:08 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll
[2013.04.25 21:22:08 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2013.04.25 21:22:08 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll
[2013.04.25 21:22:07 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll
[2013.04.25 21:22:06 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll
[2013.04.25 21:22:05 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll
[2013.04.25 21:22:05 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll
[2013.04.25 21:22:04 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe
[2013.04.25 21:22:03 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2013.04.25 21:22:03 | 000,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2013.04.25 21:22:02 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2013.04.25 21:22:02 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe
[2013.04.25 21:22:02 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe
[2013.04.25 21:22:02 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2013.04.25 21:22:02 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2013.04.25 21:22:02 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2013.04.25 21:22:01 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe
[2013.04.25 21:22:01 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe
[2013.04.25 21:22:01 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe
[2013.04.25 21:22:01 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2013.04.25 21:22:00 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2013.04.25 21:22:00 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2013.04.25 21:22:00 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2013.04.25 21:22:00 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2013.04.25 21:21:59 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2013.04.25 21:21:59 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2013.04.25 21:21:59 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2013.04.25 21:21:59 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2013.04.25 21:21:59 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2013.04.25 21:21:58 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2013.04.25 21:21:58 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2013.04.25 21:21:58 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe
[2013.04.25 21:21:57 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll
[2013.04.25 21:21:57 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll
[2013.04.25 21:21:57 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll
[2013.04.25 21:21:57 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll
[2013.04.25 21:21:57 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll
[2013.04.25 21:21:57 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll
[2013.04.25 21:21:57 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll
[2013.04.25 21:21:49 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2013.04.25 21:21:38 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2013.04.25 21:21:37 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll
[2013.04.25 21:21:37 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll
[2013.04.25 21:21:37 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll
[2013.04.25 21:21:36 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll
[2013.04.25 21:21:34 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2013.04.25 21:21:33 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll
[2013.04.25 21:21:32 | 000,400,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll
[2013.04.25 21:21:31 | 000,562,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll
[2013.04.25 21:21:31 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll
[2013.04.25 21:21:31 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe
[2013.04.25 21:21:31 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll
[2013.04.25 21:21:31 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll
[2013.04.25 21:21:31 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll
[2013.04.25 21:21:30 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll
[2013.04.25 21:21:30 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll
[2013.04.25 21:21:30 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll
[2013.04.25 21:21:30 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll
[2013.04.25 21:21:30 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe
[2013.04.25 21:21:30 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll
[2013.04.25 21:21:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll
[2013.04.25 21:21:29 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll
[2013.04.25 21:21:29 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe
[2013.04.25 21:21:29 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe
[2013.04.25 21:21:29 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll
[2013.04.25 21:21:29 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll
[2013.04.25 21:21:29 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll
[2013.04.25 21:21:29 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll
[2013.04.25 21:21:28 | 000,451,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll
[2013.04.25 21:21:28 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll
[2013.04.25 21:21:28 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll
[2013.04.25 21:21:28 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll
[2013.04.25 21:21:28 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2013.04.25 21:21:27 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll
[2013.04.25 21:21:25 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe
[2013.04.25 21:21:24 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2013.04.25 21:21:23 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll
[2013.04.25 21:21:23 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll
[2013.04.25 21:21:22 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll
[2013.04.25 21:21:22 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe
[2013.04.25 21:21:22 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe
[2013.04.25 21:21:22 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll
[2013.04.25 21:21:21 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2013.04.25 21:21:21 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2013.04.25 21:21:21 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2013.04.25 21:21:21 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2013.04.25 21:21:09 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2013.04.25 21:21:08 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe
[2013.04.25 21:21:06 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe
[2013.04.25 21:21:06 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe
[2013.04.25 21:21:06 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll
[2013.04.25 21:21:06 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2013.04.25 21:21:05 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll
[2013.04.25 21:21:04 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll
[2013.04.25 21:21:02 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe
[2013.04.25 21:21:02 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2013.04.25 21:21:01 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2013.04.25 21:21:01 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2013.04.25 21:21:01 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2013.04.25 21:21:00 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2013.04.25 21:20:59 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2013.04.25 21:20:59 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2013.04.25 21:20:59 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2013.04.25 21:20:59 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2013.04.25 21:20:58 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2013.04.25 21:20:58 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2013.04.25 21:20:56 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2013.04.25 21:20:56 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2013.04.25 21:20:56 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2013.04.25 21:20:55 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll
[2013.04.25 21:20:45 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll
[2013.04.25 21:20:42 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll
[2013.04.25 21:20:39 | 000,372,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll
[2013.04.25 21:20:39 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll
[2013.04.25 21:20:39 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll
[2013.04.25 21:20:38 | 000,330,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll
[2013.04.25 21:20:38 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll
[2013.04.25 21:20:38 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll
[2013.04.25 21:20:37 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll
[2013.04.25 21:20:37 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll
[2013.04.25 21:20:37 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll
[2013.04.25 21:20:37 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll
[2013.04.25 21:20:36 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll
[2013.04.25 21:20:36 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll
[2013.04.25 21:20:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll
[2013.04.25 21:20:34 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll
[2013.04.25 21:20:34 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll
[2013.04.25 21:20:34 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll
[2013.04.25 21:20:26 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll
[2013.04.25 21:20:26 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll
[2013.04.25 21:20:25 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpadm.dll
[2013.04.25 21:20:25 | 000,032,827 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe
[2013.04.25 21:20:25 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll
[2013.04.25 21:20:24 | 000,020,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.dll
[2013.04.25 21:20:24 | 000,016,437 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe
[2013.04.25 21:20:18 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx
[2013.04.25 21:20:18 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll
[2013.04.25 21:20:17 | 000,834,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll
[2013.04.25 21:20:17 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll
[2013.04.25 21:20:17 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll
[2013.04.25 21:20:17 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe
[2013.04.25 21:20:16 | 000,171,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll
[2013.04.25 21:20:16 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll
[2013.04.25 21:20:16 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll
[2013.04.25 21:20:16 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll
[2013.04.25 21:20:16 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe
[2013.04.25 21:20:16 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe
[2013.04.25 21:20:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll
[2013.04.25 21:20:15 | 000,598,071 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmc.dll
[2013.04.25 21:20:15 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll
[2013.04.25 21:20:15 | 000,020,538 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe
[2013.04.25 21:20:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll
[2013.04.25 21:20:14 | 000,876,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awel.dll
[2013.04.25 21:20:14 | 000,188,494 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe
[2013.04.25 21:20:14 | 000,109,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe
[2013.04.25 21:20:14 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpexedll.dll
[2013.04.25 21:20:14 | 000,014,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe
[2013.04.25 21:20:13 | 000,147,513 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4apws.dll
[2013.04.25 21:20:13 | 000,102,509 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4atxt.dll
[2013.04.25 21:20:13 | 000,082,035 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4anscp.dll
[2013.04.25 21:20:13 | 000,049,212 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awebs.dll
[2013.04.25 21:20:13 | 000,049,210 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4areg.dll
[2013.04.25 21:20:13 | 000,041,020 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avnb.dll
[2013.04.25 21:20:13 | 000,032,826 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avss.dll
[2013.04.25 21:20:12 | 000,184,435 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4amsft.dll
[2013.04.25 21:20:11 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx
[2013.04.25 21:20:11 | 000,188,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe
[2013.04.25 21:20:11 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx
[2013.04.25 21:20:11 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx
[2013.04.25 21:20:11 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll
[2013.04.25 21:20:10 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.dll
[2013.04.25 21:20:10 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe
[2013.04.25 21:20:09 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll
[2013.04.25 21:20:09 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll
[2013.04.25 21:20:09 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe
[2013.04.25 21:20:07 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.dll
[2013.04.25 21:19:40 | 000,804,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jntfiltr.dll
[2013.04.25 21:19:40 | 000,773,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jnwdrv.dll
[2013.04.25 21:19:07 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsvc2.dll
[2013.04.25 21:15:41 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe
[2013.04.25 21:13:17 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2013.04.25 21:05:10 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2013.04.25 21:05:10 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2013.04.25 21:05:10 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2013.04.25 21:05:10 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2013.04.25 20:25:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2013.04.25 20:12:43 | 000,000,000 | ---D | C] -- C:\ComboFix
[2013.04.25 19:40:05 | 000,000,000 | ---D | C] -- C:\a
[2013.04.25 16:28:32 | 000,000,000 | ---D | C] -- C:\Program Files\Secunia
[2013.04.25 13:06:32 | 000,000,000 | ---D | C] -- C:\Kaspersky Rescue Disk 10.0
[2013.04.24 20:54:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Local Settings\Data aplikací\Sun
[2013.04.24 10:04:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\VideoLAN
[2013.04.23 21:13:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Local Settings\Data aplikací\Apple Computer
[2013.04.23 21:13:16 | 000,866,720 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll
[2013.04.23 21:12:59 | 000,094,112 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll
[2013.04.23 13:33:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Plocha\servis
[2013.04.23 10:12:22 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2013.04.23 10:12:17 | 000,000,000 | ---D | C] -- C:\rsit
[2013.04.23 09:58:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Data aplikací\Malwarebytes
[2013.04.23 09:58:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2013.04.22 22:53:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
[2013.04.22 22:53:05 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2013.04.22 22:37:16 | 000,000,000 | ---D | C] -- D:\Dokumenty\Downloads
[2013.04.22 22:12:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2013.04.22 19:39:44 | 000,000,000 | R--D | C] -- D:\Dokumenty\Filmy
[2013.04.22 15:52:16 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2013.04.22 14:14:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
[2013.04.22 14:11:58 | 000,029,816 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2013.04.22 14:11:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\avast! Free Antivirus
[2013.04.22 14:11:57 | 000,368,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2013.04.22 14:11:57 | 000,049,760 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2013.04.22 14:11:56 | 000,062,376 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2013.04.22 14:11:55 | 000,765,736 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2013.04.22 14:11:54 | 000,066,336 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys
[2013.04.22 14:11:53 | 000,228,600 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2013.04.22 14:10:57 | 000,041,664 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2013.04.22 14:10:19 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2013.04.22 14:08:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2013.04.22 12:56:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\VDLL.DLL
[2013.04.22 12:56:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\runouce.exe
[2013.04.22 12:56:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\rundll16.exe
[2013.04.22 12:56:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\RUNDL132.EXE
[2013.04.22 12:56:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\logo1_.exe
[2013.04.22 12:56:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\logo_1.exe
[2013.04.22 12:03:33 | 000,000,000 | R-SD | C] -- C:\cmdcons
[2013.04.22 12:01:08 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2013.04.22 12:01:08 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2013.04.22 12:01:08 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2013.04.22 12:01:08 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2013.04.22 11:59:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2013.04.22 11:59:42 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013.04.22 11:50:45 | 000,626,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr80.dll
[2013.04.22 11:50:43 | 000,548,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp80.dll
[2013.04.22 11:50:42 | 000,028,672 | ---- | C] (MicroWorld Technologies Inc.) -- C:\WINDOWS\System32\eEmpty.exe
[2013.04.22 11:50:40 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\R.COM
[2013.04.22 11:50:40 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\T.COM
[2013.04.22 11:50:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\MicroWorld
[2013.04.22 11:47:06 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

ooo121 · #14 Příspěvek od **ooo121** » 26 dub 2013 19:45

========== Files - Modified Within 30 Days ==========

[2013.04.26 20:20:00 | 000,000,464 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{3ABADDD4-12B6-481B-851A-6CC045A15E19}.job
[2013.04.26 20:19:00 | 000,000,482 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{107B5ED5-5F2C-4666-B62C-FA9671AFA0AF}.job
[2013.04.26 20:16:51 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013.04.26 20:11:27 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Plocha\OTL.exe
[2013.04.26 19:58:54 | 000,000,360 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2013.04.26 19:58:20 | 000,002,228 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013.04.26 19:58:18 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013.04.26 14:25:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013.04.26 09:49:37 | 000,691,592 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013.04.26 09:49:37 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013.04.26 09:30:43 | 000,000,066 | RHS- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2013.04.26 07:17:17 | 000,103,824 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013.04.26 07:13:54 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2013.04.26 02:32:43 | 000,000,000 | ---- | M] () -- C:\23990098.$$$
[2013.04.26 01:26:25 | 000,000,054 | ---- | M] () -- C:\WINDOWS\Lic.xxx
[2013.04.26 00:54:16 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013.04.26 00:54:13 | 000,000,932 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013.04.25 23:01:40 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader XI.lnk
[2013.04.25 22:59:26 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
[2013.04.25 22:40:48 | 000,001,604 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\QuickTime Player.lnk
[2013.04.25 22:38:42 | 000,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for
[2013.04.25 22:38:40 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2013.04.25 22:23:40 | 000,311,802 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013.04.25 22:23:40 | 000,309,954 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2013.04.25 22:23:40 | 000,046,214 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2013.04.25 22:23:40 | 000,040,190 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013.04.25 22:02:43 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\AltShell.ini
[2013.04.25 21:40:33 | 000,000,019 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts1.bak
[2013.04.25 21:24:15 | 000,000,288 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2013.04.25 21:18:07 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2013.04.25 21:18:07 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2013.04.25 21:17:59 | 000,004,249 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2013.04.25 21:13:37 | 000,022,916 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2013.04.25 21:11:50 | 000,000,282 | -HS- | M] () -- C:\boot.ini
[2013.04.25 21:09:32 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2013.04.25 19:15:15 | 000,006,829 | ---- | M] () -- C:\WINDOWS\setupapi.old
[2013.04.25 18:06:07 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2013.04.24 10:04:54 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\VLC media player.lnk
[2013.04.23 21:12:33 | 000,094,112 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll
[2013.04.23 21:12:19 | 000,263,584 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2013.04.23 21:12:19 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2013.04.23 21:12:18 | 000,144,896 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[2013.04.23 21:12:17 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2013.04.23 21:12:11 | 000,866,720 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll
[2013.04.23 21:12:09 | 000,788,896 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll
[2013.04.23 12:57:04 | 000,000,042 | ---- | M] () -- C:\WINDOWS\System32\RegistryEasy.lie
[2013.04.22 14:14:20 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2013.04.22 14:11:59 | 000,001,689 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2013.04.22 14:11:54 | 000,002,504 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2013.04.22 14:09:33 | 000,000,012 | ---- | M] () -- C:\WINDOWS\System32\mapisvc.inf
[2013.04.22 12:57:00 | 003,414,233 | ---- | M] () -- C:\WINDOWS\REGBK00.ZIP
[2013.04.22 11:50:44 | 000,626,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr80.dll
[2013.04.22 11:50:42 | 000,548,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp80.dll
[2013.04.22 11:50:41 | 000,028,672 | ---- | M] (MicroWorld Technologies Inc.) -- C:\WINDOWS\System32\eEmpty.exe
[2013.04.02 15:45:43 | 000,002,020 | ---- | M] () -- C:\Documents and Settings\user\Plocha\DPH HH I.Q.ics
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013.04.26 20:16:51 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013.04.26 06:57:10 | 000,000,914 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013.04.26 06:50:43 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2013.04.26 02:32:43 | 000,000,000 | ---- | C] () -- C:\23990098.$$$
[2013.04.25 23:01:40 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader XI.lnk
[2013.04.25 23:01:39 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Adobe Reader XI.lnk
[2013.04.25 22:59:26 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Mozilla Firefox.lnk
[2013.04.25 22:40:47 | 000,001,604 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\QuickTime Player.lnk
[2013.04.25 22:38:41 | 000,001,409 | ---- | C] () -- C:\WINDOWS\QTFont.for
[2013.04.25 22:38:40 | 000,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn
[2013.04.25 21:22:58 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2013.04.25 21:22:17 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2013.04.25 21:22:03 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2013.04.25 21:22:01 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2013.04.25 21:21:58 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2013.04.25 21:21:42 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2013.04.25 21:21:34 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2013.04.25 21:21:27 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll
[2013.04.25 21:21:01 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2013.04.25 21:19:40 | 001,023,488 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nbdoc.dll
[2013.04.25 21:09:32 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2013.04.25 21:04:52 | 000,809,394 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2013.04.25 21:04:52 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2013.04.25 21:04:52 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2013.04.25 21:04:52 | 000,105,628 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2013.04.25 21:04:52 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2013.04.25 21:04:52 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2013.04.25 21:04:52 | 000,033,765 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2013.04.25 21:04:52 | 000,016,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2013.04.25 21:04:52 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2013.04.25 21:04:52 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2013.04.25 21:04:52 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2013.04.25 21:04:52 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2013.04.25 21:04:52 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2013.04.25 21:04:51 | 002,033,597 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2013.04.25 21:04:51 | 001,246,067 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT
[2013.04.25 21:04:51 | 000,631,112 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2013.04.25 19:15:47 | 000,008,064 | ---- | C] () -- C:\WINDOWS\System32\drivers\flash.sys
[2013.04.25 18:06:07 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2013.04.25 18:01:37 | 000,130,499 | ---- | C] () -- C:\WINDOWS\.NET Framework 2.0Readme.rtf
[2013.04.25 16:30:38 | 000,000,482 | -H-- | C] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{107B5ED5-5F2C-4666-B62C-FA9671AFA0AF}.job
[2013.04.25 16:28:34 | 000,006,829 | ---- | C] () -- C:\WINDOWS\setupapi.old
[2013.04.24 10:04:54 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\VLC media player.lnk
[2013.04.23 12:57:04 | 000,000,042 | ---- | C] () -- C:\WINDOWS\System32\RegistryEasy.lie
[2013.04.22 14:28:39 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2013.04.22 14:14:19 | 000,001,813 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2013.04.22 14:12:04 | 000,000,936 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013.04.22 14:12:04 | 000,000,932 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013.04.22 14:11:59 | 000,001,689 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2013.04.22 14:11:55 | 000,164,736 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2013.04.22 14:11:55 | 000,049,248 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys
[2013.04.22 14:11:55 | 000,000,360 | -H-- | C] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2013.04.22 12:56:38 | 003,414,233 | ---- | C] () -- C:\WINDOWS\REGBK00.ZIP
[2013.04.22 12:03:36 | 000,000,211 | --S- | C] () -- C:\Boot.bak
[2013.04.22 12:03:33 | 000,261,312 | R-S- | C] () -- C:\cmldr
[2013.04.22 12:01:08 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2013.04.22 12:01:08 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2013.04.22 12:01:08 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2013.04.22 12:01:08 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2013.04.22 12:01:08 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2013.04.22 11:50:59 | 000,000,054 | ---- | C] () -- C:\WINDOWS\Lic.xxx
[2013.04.21 17:16:43 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\user\Data aplikací\AltShell.ini
[2013.04.01 17:10:09 | 000,002,020 | ---- | C] () -- C:\Documents and Settings\user\Plocha\DPH HH I.Q.ics
[2008.05.01 20:00:12 | 000,006,144 | ---- | C] () -- C:\Documents and Settings\user\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.01.28 19:51:37 | 000,735,744 | ---- | C] () -- C:\Program Files\Cesta smrti-Bolivia.pps
[2008.01.21 10:57:36 | 001,050,624 | ---- | C] () -- C:\Program Files\Russia.pps
[2007.12.07 18:52:04 | 000,493,717 | ---- | C] () -- C:\Program Files\vypln zabradli.pdf
[2007.10.05 14:59:41 | 001,085,526 | ---- | C] () -- C:\Program Files\Smlouva o dilo.pdf

========== ZeroAccess Check ==========

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2012.05.22 19:15:52 | 001,510,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2012.05.22 19:10:20 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008.04.14 10:52:06 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2013.04.22 14:10:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2010.01.09 01:21:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Gemfor
[2013.04.22 11:50:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MicroWorld
[2010.07.19 10:25:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Temp
[2007.08.18 21:16:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2010.02.10 06:58:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\EurekaLog
[2008.06.17 22:12:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Graphisoft
[2007.08.20 09:34:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ICQ Toolbar
[2007.08.18 21:16:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\TuneUp Software

========== Purity Check ==========

========== Custom Scans ==========

< >
[2007.08.18 00:11:56 | 000,000,065 | RH-- | C] () -- C:\WINDOWS\Tasks\desktop.ini
[2007.08.18 00:17:56 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2012.07.03 07:47:32 | 000,000,464 | -H-- | C] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{3ABADDD4-12B6-481B-851A-6CC045A15E19}.job
[2013.04.22 14:11:55 | 000,000,360 | -H-- | C] () -- C:\WINDOWS\Tasks\avast! Emergency Update.job
[2013.04.22 14:12:04 | 000,000,932 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2013.04.22 14:12:04 | 000,000,936 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2013.04.25 16:30:38 | 000,000,482 | -H-- | C] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{107B5ED5-5F2C-4666-B62C-FA9671AFA0AF}.job
[2013.04.26 06:57:10 | 000,000,914 | ---- | C] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

< >

< MD5 for: AGP440.SYS >
[2012.05.22 19:23:06 | 017,827,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.04.14 01:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ERDNT\cache\agp440.sys
[2008.04.14 01:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

< MD5 for: ATAPI.SYS >
[2012.05.22 19:23:06 | 017,827,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.13 22:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 09:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 10:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2008.04.14 10:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\dllcache\autochk.exe

< MD5 for: CDROM.SYS >
[2012.05.22 19:23:06 | 017,827,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 02:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2008.04.14 09:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ERDNT\cache\cryptsvc.dll
[2008.04.14 10:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
[2008.04.14 10:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\dllcache\cryptsvc.dll

< MD5 for: EVENTLOG.DLL >
[2008.04.14 09:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2008.04.14 10:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2008.04.14 10:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 09:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008.04.14 10:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 10:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\system32\dllcache\explorer.exe

< MD5 for: HAL.DLL >
[2012.05.22 19:23:06 | 017,827,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 02:01:30 | 000,131,840 | ---- | M] (Microsoft Corporation) MD5=6F61D3287A6A15A08A9433222C09D17F -- C:\WINDOWS\system32\hal.dll

< MD5 for: CHANGER.SYS >
[2012.05.22 19:23:06 | 017,827,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys

< MD5 for: IASTOR.SYS >
[2012.06.19 23:56:28 | 000,305,176 | ---- | M] (Intel Corporation) MD5=2358C53F30CB9DCD1D3843C4E2F299B2 -- C:\WINDOWS\NLDRV\001\iastor.sys
[2012.06.19 23:56:28 | 000,305,176 | ---- | M] (Intel Corporation) MD5=2358C53F30CB9DCD1D3843C4E2F299B2 -- C:\WINDOWS\system32\drivers\iaStor.sys
[2012.06.19 23:56:32 | 000,305,176 | ---- | M] (Intel Corporation) MD5=2358C53F30CB9DCD1D3843C4E2F299B2 -- C:\WINDOWS\system32\ReinstallBackups\0013\DriverFiles\iaStor.sys
[2007.03.21 12:58:56 | 000,304,920 | ---- | M] (Intel Corporation) MD5=997E8F5939F2D12CD9F2E6B395724C16 -- C:\Program Files\Intel\Intel Matrix Storage Manager\Driver\IaStor.sys
[2007.03.21 12:59:30 | 000,381,720 | ---- | M] (Intel Corporation) MD5=9D7ED4275702E2FC409F2CC563245740 -- C:\Program Files\Intel\Intel Matrix Storage Manager\Driver64\IaStor.sys

< MD5 for: ISAPNP.SYS >
[2012.05.22 19:23:06 | 017,827,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 09:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys

< MD5 for: LSASS.EXE >
[2008.04.14 09:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ERDNT\cache\lsass.exe
[2008.04.14 10:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\dllcache\lsass.exe
[2008.04.14 10:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.14 01:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2008.04.14 02:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys
[2008.04.14 02:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys

< MD5 for: NETLOGON.DLL >
[2008.04.14 09:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2008.04.14 10:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2008.04.14 10:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: SCECLI.DLL >
[2008.04.14 09:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 10:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\dllcache\scecli.dll
[2008.04.14 10:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SMSS.EXE >
[2004.08.17 15:49:28 | 000,164,864 | ---- | M] (Microsoft Corporation) MD5=3C100B7FDB179B63829103DF6541337F -- C:\cmdcons\SYSTEM32\SMSS.EXE
[2008.04.14 10:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\dllcache\smss.exe
[2008.04.14 10:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe

< MD5 for: SVCHOST.EXE >
[2008.04.14 09:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2008.04.14 10:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\dllcache\svchost.exe
[2008.04.14 10:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\ERDNT\cache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\SoftwareDistribution\Download\fe608cd8d2b8f77abaee7a69a696bcf7\sp3gdr\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\SoftwareDistribution\Download\fe608cd8d2b8f77abaee7a69a696bcf7\sp3qfe\tcpip.sys
[2012.05.22 19:14:20 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2012.05.22 19:14:20 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\system32\drivers\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 09:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2008.04.14 10:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\dllcache\userinit.exe
[2008.04.14 10:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe

< MD5 for: WINLOGON.EXE >
[2008.04.14 09:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008.04.14 10:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2008.04.14 10:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< MD5 for: WS2_32.DLL >
[2008.04.14 09:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ERDNT\cache\ws2_32.dll
[2008.04.14 10:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\dllcache\ws2_32.dll
[2008.04.14 10:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll

< >

< %systemroot%*.* /U /s >
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\CSC\*.tmp files -> C:\WINDOWS\CSC\*.tmp -> ]
[25 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2007.09.25 09:05:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Adobe
[2007.08.19 21:20:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Ahead
[2010.01.09 02:14:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ArcSoft
[2010.07.19 10:29:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\CyberLink
[2013.04.02 16:10:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\dvdcss
[2010.02.10 06:58:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\EurekaLog
[2007.08.20 09:34:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Google
[2008.06.17 22:12:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Graphisoft
[2007.08.20 09:34:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ICQ Toolbar
[2007.08.18 00:18:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Identities
[2007.08.18 01:44:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\InstallShield
[2007.08.19 12:18:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Macromedia
[2013.04.23 09:58:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Malwarebytes
[2007.08.23 12:19:06 | 000,000,000 | --SD | M] -- C:\Documents and Settings\user\Data aplikací\Microsoft
[2009.12.17 17:51:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Mozilla
[2012.09.13 07:47:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\OpenOffice.org2
[2007.08.23 11:39:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Sun
[2007.08.18 21:16:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\TuneUp Software
[2013.04.24 10:05:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\vlc
[2007.08.18 21:35:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\WinRAR

< %APPDATA%\*.exe /s >
[2012.10.05 20:59:01 | 009,573,296 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\user\Data aplikací\Macromedia\Flash Player\www.macromedia.com\bin\fpupdateax\fpupdateax.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2013.04.25 23:02:42 | 000,524,288 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2013.04.25 20:26:29 | 000,262,144 | ---- | M] () -- C:\WINDOWS\System32\config\security.sav
[2013.04.25 23:02:42 | 015,466,496 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2013.04.25 23:02:42 | 006,029,312 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2013.04.25 21:24:15 | 000,000,288 | ---- | M] () -- C:\WINDOWS\system32\$winnt$.inf
[2013.04.25 21:18:07 | 000,016,832 | ---- | M] () -- C:\WINDOWS\system32\amcompat.tlb
[2013.04.25 21:16:43 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\system32\cdplayer.exe.manifest
[2013.04.23 21:12:09 | 000,788,896 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\system32\deployJava1.dll
[2013.04.25 21:13:37 | 000,022,916 | ---- | M] () -- C:\WINDOWS\system32\emptyregdb.dat
[2013.04.26 09:49:37 | 000,691,592 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\system32\FlashPlayerApp.exe
[2013.04.26 09:49:37 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
[2013.04.26 07:17:17 | 000,103,824 | ---- | M] () -- C:\WINDOWS\system32\FNTCACHE.DAT
[2013.04.23 21:12:17 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\system32\java.exe
[2013.04.23 21:12:18 | 000,144,896 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\system32\javacpl.cpl
[2013.04.23 21:12:19 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\system32\javaw.exe
[2013.04.23 21:12:19 | 000,263,584 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\system32\javaws.exe
[2013.04.25 21:16:47 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\system32\logonui.exe.manifest
[2013.04.25 21:16:43 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\system32\ncpa.cpl.manifest
[2013.04.23 21:12:11 | 000,866,720 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\system32\npDeployJava1.dll
[2013.04.25 21:18:07 | 000,023,392 | ---- | M] () -- C:\WINDOWS\system32\nscompat.tlb
[2013.04.25 21:16:43 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\system32\nwc.cpl.manifest
[2013.04.25 22:23:40 | 000,046,214 | ---- | M] () -- C:\WINDOWS\system32\perfc005.dat
[2013.04.25 22:23:40 | 000,040,190 | ---- | M] () -- C:\WINDOWS\system32\perfc009.dat
[2013.04.25 22:23:40 | 000,309,954 | ---- | M] () -- C:\WINDOWS\system32\perfh005.dat
[2013.04.25 22:23:40 | 000,311,802 | ---- | M] () -- C:\WINDOWS\system32\perfh009.dat
[2013.04.25 22:23:40 | 000,714,818 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI
[2013.04.25 21:09:32 | 000,004,444 | ---- | M] () -- C:\WINDOWS\system32\pid.PNF
[2013.04.25 21:16:43 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\system32\sapi.cpl.manifest
[2013.04.26 06:57:18 | 000,009,900 | ---- | M] () -- C:\WINDOWS\system32\TZLog.log
[2013.04.23 21:12:33 | 000,094,112 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\system32\WindowsAccessBridge.dll
[2013.04.25 21:16:47 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\system32\WindowsLogon.manifest
[2013.04.26 19:58:20 | 000,002,228 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[2013.04.25 21:16:43 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\system32\wuaucpl.cpl.manifest
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs

< >

< type c:\boot.ini >> test.txt /c >
[boot loader]
timeout=30
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013.04.26 20:16:51 | 000,000,512 | ---- | M] () MD5=E18588958871BF4933E9389D31FF3974 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2013.04.26 09:41:52 | 000,000,629 | ---- | M] () -- \Documents and Settings\user\Recent\Genuine Windows XP License Keys + WGA crack.lnk

< *keygen* /s >

< *loader* /s >
[2007.03.20 17:04:50 | 000,184,320 | ---- | M] () -- \Documents and Settings\user\Local Settings\Temp\prLoader.dll
[24 \Documents and Settings\user\Local Settings\Temp\*.tmp files -> \Documents and Settings\user\Local Settings\Temp\*.tmp -> ]
[2010.06.30 09:01:50 | 000,058,664 | ---- | M] () -- \Program Files\CyberLink\PowerDVD10\PK\Koan\pyloader.dll
[2010.06.30 09:01:50 | 000,026,016 | ---- | M] () -- \Program Files\CyberLink\PowerDVD10\PK\subsys\PyImpLoader\PyImpLoader.kc
[2010.06.30 09:01:50 | 000,107,816 | ---- | M] () -- \Program Files\CyberLink\PowerDVD10\PK\subsys\PyImpLoader\_PyImpLoader.pyd
[2010.06.28 21:40:04 | 000,010,781 | ---- | M] () -- \Program Files\CyberLink\PowerDVD10\PowerDVD Cinema\mm\MediaCtrl\ImageLoader.kc
[2010.06.28 21:40:22 | 000,003,492 | ---- | M] () -- \Program Files\CyberLink\PowerDVD10\PowerDVD Cinema\widget\langloader.kc
[2010.06.28 21:40:24 | 000,013,453 | ---- | M] () -- \Program Files\CyberLink\PowerDVD10\PowerDVD Cinema\widget\layoutloader.kc
[2010.05.24 09:08:10 | 000,010,775 | ---- | M] () -- \Program Files\CyberLink\PowerDVD10\PowerDVD Cox\mm\MediaCtrl\ImageLoader.kc
[2010.05.24 09:08:12 | 000,003,567 | ---- | M] () -- \Program Files\CyberLink\PowerDVD10\PowerDVD Cox\widget\langloader.kc
[2010.05.24 09:08:12 | 000,013,369 | ---- | M] () -- \Program Files\CyberLink\PowerDVD10\PowerDVD Cox\widget\layoutloader.kc
[2007.12.31 12:45:02 | 000,000,561 | ---- | M] () -- \Program Files\ICTS-WinTrader\client_loader_settings.xml
[2004.09.16 11:28:50 | 000,000,165 | ---- | M] () -- \Program Files\ICTS-WinTrader\client_loader_settings.xml.cache#00000001
[2004.09.16 11:28:50 | 000,000,165 | ---- | M] () -- \Program Files\ICTS-WinTrader\client_loader_settings.xml.cache#00000002
[2006.12.26 16:15:20 | 000,000,675 | ---- | M] () -- \Program Files\ICTS-WinTrader\client_loader_settings.xml.cache#00000003
[2007.10.14 18:47:02 | 000,000,615 | ---- | M] () -- \Program Files\ICTS-WinTrader\client_loader_settings.xml.cache#00000005
[2007.10.14 17:47:02 | 000,000,615 | ---- | M] () -- \Program Files\ICTS-WinTrader\client_loader_settings.xml.cache#00000006
[2007.12.24 12:59:26 | 000,000,562 | ---- | M] () -- \Program Files\ICTS-WinTrader\client_loader_settings.xml.cache#00000007
[2007.12.31 11:45:02 | 000,000,561 | ---- | M] () -- \Program Files\ICTS-WinTrader\client_loader_settings.xml.cache#0000000E
[2006.03.17 11:19:28 | 000,257,024 | ---- | M] () -- \Program Files\ICTS-WinTrader\fx_loader.exe
[2006.03.17 11:19:28 | 000,288,748 | ---- | M] () -- \Program Files\ICTS-WinTrader\fx_loader.map
[2006.08.11 07:21:52 | 000,000,963 | ---- | M] () -- \Program Files\ICTS-WinTrader\main_loader_settings.xml
[2010.02.10 06:58:15 | 000,000,303 | ---- | M] () -- \Program Files\ICTS-WinTrader\user_loader_settings.xml
[2006.12.01 18:32:10 | 000,023,552 | ---- | M] () -- \Program Files\OpenOffice.org 2.1\program\javaloader.uno.dll
[2006.12.02 13:23:50 | 000,005,226 | ---- | M] () -- \Program Files\OpenOffice.org 2.1\program\pythonloader.py
[2006.12.01 23:19:20 | 000,015,872 | ---- | M] () -- \Program Files\OpenOffice.org 2.1\program\pythonloader.uno.dll
[2006.12.02 14:13:08 | 000,000,145 | ---- | M] () -- \Program Files\OpenOffice.org 2.1\program\pythonloader.uno.ini
[2006.12.01 18:32:10 | 000,018,432 | ---- | M] () -- \Program Files\OpenOffice.org 2.1\program\shlibloader.uno.dll
[2006.12.01 23:02:36 | 000,003,198 | ---- | M] () -- \Program Files\OpenOffice.org 2.1\program\classes\unoloader.jar
[2006.12.23 17:37:56 | 000,044,032 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2008.04.14 10:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[1 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2008.04.14 10:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dllcache\dmloader.dll

< *minodlogin* /s >

< *tnod* /s >

< *AutoKMS* /s >

< *activator* /s >

< *serial* /s >
[2004.08.17 15:44:16 | 000,030,301 | ---- | M] () -- \cmdcons\SERIAL.SY_
[2013.04.22 11:50:45 | 000,000,415 | ---- | M] () -- \Documents and Settings\Administrator\Recent\MWAV + serial.lnk
[2006.12.01 21:27:22 | 000,188,993 | ---- | M] () -- \Program Files\OpenOffice.org 2.1\program\classes\serializer.jar
[2001.10.25 15:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2001.10.25 15:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[1 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2001.10.25 15:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2001.10.25 15:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 09:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys

< *w7lxe* /s >

< End of report >

ooo121 · #15 Příspěvek od **ooo121** » 26 dub 2013 19:46

OTL Extras logfile created on: 26.4.2013 20:14:05 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\user\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

502,11 Mb Total Physical Memory | 104,05 Mb Available Physical Memory | 20,72% Memory free
1,20 Gb Paging File | 0,77 Gb Available in Paging File | 64,26% Paging File free
Paging file location(s): c:\pagefile.sys 756 1512 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 29,29 Gb Total Space | 21,20 Gb Free Space | 72,37% Space Free | Partition Type: NTFS
Drive D: | 45,23 Gb Total Space | 43,99 Gb Free Space | 97,25% Space Free | Partition Type: NTFS
Drive E: | 7,79 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

Computer Name: NOTEBOOK | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)

[HKEY_USERS\S-1-5-21-1229272821-2052111302-682003330-1003\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- Reg Error: Key error.
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002
"3389:TCP" = 3389:TCP:*:Disabled:@xpsp2res.dll,-22009

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{244E21B9-164C-4EC1-AED8-9BD64161E66D}" = ArcSoft VideoImpression 2
"{26A24AE4-039D-4CA4-87B4-2F83216045FF}" = Java(TM) 6 Update 45
"{26A24AE4-039D-4CA4-87B4-2F83217021FF}" = Java 7 Update 21
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3D5E5C0A-5B36-4F98-99A7-287F7DBDCE03}" = Skype Plugin Manager
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{6C28B15F-B09D-407E-BE92-AC928E1CE4E2}_is1" = Kodek 0.16 CZ
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7CB9546E-BF2C-47DE-9DB4-C4364FBE57EC}" = Broadcom Wireless LAN Driver 4.100.15.7_Negative_Foxconn
"{84814E6B-2581-46EC-926A-823BD1C670F6}" = WIDCOMM Bluetooth Software
"{8A708DD8-A5E6-11D4-A706-000629E95E20}" = Intel(R) Graphics Media Accelerator Driver
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel(R) Matrix Storage Manager
"{91D77E9E-A69B-4B7A-9E8B-22861AAEBF5C}" = OpenOffice.org 2.1
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI - Czech
"{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{C679F9B9-C65D-4C65-BD6C-BF90B859E281}" = Trust 100K Series Webcam
"{D3B3B9B2-FE73-44CB-8C0A-F737D92F991B}" = Broadcom Gigabit Integrated Controller
"{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = CyberLink PowerDVD 10
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"09DE32C4F7BD75AFC4FD14FE55D82891A5C397E0" = Windows Driver Package - Intel net (04/30/2007 11.1.1.11)
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"avast" = avast! Free Antivirus
"CCleaner" = CCleaner
"Google Chrome" = Google Chrome
"ICTS-WinTrader" = ICTS-WinTrader (remove only)
"ie8" = Windows Internet Explorer 8
"InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = CyberLink PowerDVD 10
"Mozilla Firefox 20.0 (x86 cs)" = Mozilla Firefox 20.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"VLC media player" = VLC media player 2.0.6
"VorbisCodec" = Ogg Vorbis ACM Codec
"WinRAR archiver" = WinRAR archiver

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 25.4.2013 10:34:14 | Computer Name = NOTEBOOK | Source = MsiInstaller | ID = 1008
Description = Instalace d:\7dc00b83f248f337da35315a1877\vs_setup.msi není povolena
z důvodu chyby při zpracování zásad omezení softwaru. Objekt není důvěryhodný

Error - 25.4.2013 10:34:14 | Computer Name = NOTEBOOK | Source = MsiInstaller | ID = 1008
Description = Instalace d:\7dc00b83f248f337da35315a1877\vs_setup.msi není povolena
z důvodu chyby při zpracování zásad omezení softwaru. Objekt není důvěryhodný

Error - 25.4.2013 10:34:14 | Computer Name = NOTEBOOK | Source = MsiInstaller | ID = 1008
Description = Instalace d:\7dc00b83f248f337da35315a1877\vs_setup.msi není povolena
z důvodu chyby při zpracování zásad omezení softwaru. Objekt není důvěryhodný

Error - 25.4.2013 10:34:14 | Computer Name = NOTEBOOK | Source = MsiInstaller | ID = 1008
Description = Instalace d:\7dc00b83f248f337da35315a1877\vs_setup.msi není povolena
z důvodu chyby při zpracování zásad omezení softwaru. Objekt není důvěryhodný

Error - 25.4.2013 10:34:14 | Computer Name = NOTEBOOK | Source = MsiInstaller | ID = 1008
Description = Instalace d:\7dc00b83f248f337da35315a1877\vs_setup.msi není povolena
z důvodu chyby při zpracování zásad omezení softwaru. Objekt není důvěryhodný

Error - 25.4.2013 10:34:14 | Computer Name = NOTEBOOK | Source = MsiInstaller | ID = 1008
Description = Instalace d:\7dc00b83f248f337da35315a1877\vs_setup.msi není povolena
z důvodu chyby při zpracování zásad omezení softwaru. Objekt není důvěryhodný

Error - 25.4.2013 10:34:14 | Computer Name = NOTEBOOK | Source = MsiInstaller | ID = 1008
Description = Instalace d:\7dc00b83f248f337da35315a1877\vs_setup.msi není povolena
z důvodu chyby při zpracování zásad omezení softwaru. Objekt není důvěryhodný

Error - 25.4.2013 10:34:14 | Computer Name = NOTEBOOK | Source = MsiInstaller | ID = 1008
Description = Instalace d:\7dc00b83f248f337da35315a1877\vs_setup.msi není povolena
z důvodu chyby při zpracování zásad omezení softwaru. Objekt není důvěryhodný

Error - 25.4.2013 14:21:44 | Computer Name = NOTEBOOK | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: The server name or address could not be resolved

Error - 25.4.2013 14:21:44 | Computer Name = NOTEBOOK | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: Takové síťové připojení neexistuje.

[ System Events ]
Error - 22.4.2013 16:34:15 | Computer Name = NOTEBOOK | Source = System Error | ID = 1003
Description = Kód chyby 00000077, parametr1 c0000056, parametr2 c0000056, parametr3
00000000, parametr4 06d79000.

Error - 23.4.2013 15:25:52 | Computer Name = NOTEBOOK | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1053 při pokusu o spuštění služby gupdate
s argumenty /comsvc za účelem spuštění serveru: {4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error - 23.4.2013 15:26:22 | Computer Name = NOTEBOOK | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
Služba Google Update (gupdate).

Error - 23.4.2013 15:26:22 | Computer Name = NOTEBOOK | Source = Service Control Manager | ID = 7000
Description = Služba Služba Google Update (gupdate) neuspěla při spuštění v důsledku
následující chyby: %%1053

Error - 25.4.2013 14:03:08 | Computer Name = NOTEBOOK | Source = SRService | ID = 104
Description = Proces inicializace nástroje Obnovení systému se nezdařil.

Error - 25.4.2013 14:03:38 | Computer Name = NOTEBOOK | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 25.4.2013 14:04:36 | Computer Name = NOTEBOOK | Source = Service Control Manager | ID = 7023
Description = Služba Služba obnovení systému byla ukončena s následující chybou:
%%2

Error - 25.4.2013 14:04:36 | Computer Name = NOTEBOOK | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: aswSnx aswSP aswTdi Fips intelppm

Error - 25.4.2013 14:08:25 | Computer Name = NOTEBOOK | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 25.4.2013 14:12:46 | Computer Name = NOTEBOOK | Source = SRService | ID = 104
Description = Proces inicializace nástroje Obnovení systému se nezdařil.

< End of report >

VIRY.CZ

opět prosím o kontrolu - je to nějaké zpomalené

opět prosím o kontrolu - je to nějaké zpomalené

Re: opět prosím o kontrolu - je to nějaké zpomalené

Re: opět prosím o kontrolu - je to nějaké zpomalené

Re: opět prosím o kontrolu - je to nějaké zpomalené

Re: opět prosím o kontrolu - je to nějaké zpomalené

Re: opět prosím o kontrolu - je to nějaké zpomalené

Re: opět prosím o kontrolu - je to nějaké zpomalené

Re: opět prosím o kontrolu - je to nějaké zpomalené

Re: opět prosím o kontrolu - je to nějaké zpomalené

Re: opět prosím o kontrolu - je to nějaké zpomalené

Re: opět prosím o kontrolu - je to nějaké zpomalené

Re: opět prosím o kontrolu - je to nějaké zpomalené

Re: opět prosím o kontrolu - je to nějaké zpomalené

Re: opět prosím o kontrolu - je to nějaké zpomalené

Re: opět prosím o kontrolu - je to nějaké zpomalené