Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Zavirované PC Rootkit.Kryptik.BB, Injector.BNJ a Otlard.A

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
kulma
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 23 črc 2009 20:48
Kontaktovat uživatele:
Kontaktovat uživatele kulma

Zavirované PC Rootkit.Kryptik.BB, Injector.BNJ a Otlard.A

#1 Příspěvek od kulma »

Zdravím.
Prosím o pomoc při odstranění virů. NOD vypisuje při startuu tyto viry:
Win32/rootkit.kryptik.BB
Win32/Injector.BNJ
Win32/Otlard.A

Nod jej neodstraní :(
*kulma*
Nahoru
Uživatelský avatar
Caroprd111
VIP
VIP
Příspěvky: 13492
Registrován: 22 bře 2009 20:48
Bydliště: Třebíč
Kontaktovat uživatele:
Kontaktovat uživatele Caroprd111

Re: Zavirované PC Rootkit.Kryptik.BB, Injector.BNJ a Otlard

#2 Příspěvek od Caroprd111 »

Zdravím :)


Obrázek Dejte log z RSIT http://www.viry.cz/forum/viewtopic.php?f=13&t=82743


Obrázek Napište mi cesty souborů, které NOD32 označuje za vir.
Obrázek
Nahoru
kulma
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 23 črc 2009 20:48
Kontaktovat uživatele:
Kontaktovat uživatele kulma

Re: Zavirované PC Rootkit.Kryptik.BB, Injector.BNJ a Otlard

#3 Příspěvek od kulma »

Opravdu teďka nevím kde přesně ty soubory jsou. Většinou se to objeví po restartu počítače a myslím že to bylo někde v TEMP a chtělo se to konektit na nějaké internetové stránky. Já jsem na počítač připojen dálkově. Zjistil bych to popřípadě zítra ráno ta cesty. Ale máme noda zaheslovaného, tekže mám omezené pravomoce :-(

Tady posílám log z RSIT.
*kulma*
Nahoru
Uživatelský avatar
Caroprd111
VIP
VIP
Příspěvky: 13492
Registrován: 22 bře 2009 20:48
Bydliště: Třebíč
Kontaktovat uživatele:
Kontaktovat uživatele Caroprd111

Re: Zavirované PC Rootkit.Kryptik.BB, Injector.BNJ a Otlard

#4 Příspěvek od Caroprd111 »

Log z RSIT jste sem nevložil. :)
Obrázek
Nahoru
kulma
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 23 črc 2009 20:48
Kontaktovat uživatele:
Kontaktovat uživatele kulma

Re: Zavirované PC Rootkit.Kryptik.BB, Injector.BNJ a Otlard

#5 Příspěvek od kulma »

nejde mě to sem dát.
Vaše zpráva obsahuje 69623 znaků. Maximální povolený počet znaků je 60000. Mám to zabalit a dát jako soubor?
*kulma*
Nahoru
Uživatelský avatar
Caroprd111
VIP
VIP
Příspěvky: 13492
Registrován: 22 bře 2009 20:48
Bydliště: Třebíč
Kontaktovat uživatele:
Kontaktovat uživatele Caroprd111

Re: Zavirované PC Rootkit.Kryptik.BB, Injector.BNJ a Otlard

#6 Příspěvek od Caroprd111 »

Rozdělte log do více příspěvků.
Obrázek
Nahoru
kulma
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 23 črc 2009 20:48
Kontaktovat uživatele:
Kontaktovat uživatele kulma

Re: Zavirované PC Rootkit.Kryptik.BB, Injector.BNJ a Otlard

#7 Příspěvek od kulma »

Logfile of random's system information tool 1.06 (written by random/random)
Run by rhorsak at 2010-05-05 18:40:45
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 81 GB (81%) free of 100 GB
Total RAM: 2046 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:42:06, on 5.5.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\Canon\DIAS\CnxDIAS.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\WINDOWS\system32\regedit.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\svchost.exe
C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Seznam.cz\postak.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\DOCUME~1\rhorsak\LOCALS~1\Temp\awkvrft.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\rdpclip.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\TeamViewer\Version5\TeamViewer.exe
C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\rhorsak\Plocha\RSIT.exe
C:\WINDOWS\system32\logon.scr
C:\Program Files\trend micro\rhorsak.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DIALux 3.1 ULDBrowserHelper Class - {69AB812A-8CE4-4BF3-B49B-3B60A9F31FB2} - C:\Program Files\DIALux\DLXShellExtension.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [C6501Sound] RunDll32 c6501.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Služba Plánovač2] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [Regedit32] C:\WINDOWS\system32\regedit.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Seznam Postak] "C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Seznam.cz\postak.exe" -s
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést cíl vazby do existujícího PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Převést do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést do existujícího PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Převést vybrané vazby do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Převést vybrané vazby do existujícího PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Převést výběr do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést výběr do existujícího PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: Vytvořit mobilní oblíbenou položku - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra 'Tools' menuitem: Vytvořit mobilní oblíbenou položku… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O13 - Gopher Prefix:
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = ehv-projekt.cz
O17 - HKLM\Software\..\Telephony: DomainName = ehv-projekt.cz
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = ehv-projekt.cz
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = ehv-projekt.cz
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: Domain = ehv-projekt.cz
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - Winlogon Notify: RailNotification - C:\WINDOWS\
O23 - Service: Acronis Služba Plánovač2 (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Canon Driver Information Assist Service - CANON INC. - C:\Program Files\Canon\DIAS\CnxDIAS.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Office Source Engine (ose) - Unknown owner - C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (file missing)
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe

--
End of file - 10524 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1651790719-4201147004-1817147730-1138Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1651790719-4201147004-1817147730-1138UA.job
C:\WINDOWS\tasks\LKHLKOTX.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{2B4E2C57-8533-46BC-BE6D-BD765062400A}.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{6CD4EB02-F798-4B09-9389-69E4B92B2FA7}.job
C:\WINDOWS\tasks\{8C3FDD81-7AE0-4605-A46A-2488B179F2A3}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2005-09-24 63136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{69AB812A-8CE4-4BF3-B49B-3B60A9F31FB2}]
DIALux 3.1 ULDBrowserHelper Class - C:\Program Files\DIALux\DLXShellExtension.dll [2009-08-20 540672]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
AcroIEToolbarHelper Class - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2005-09-24 231160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-04-22 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-04-22 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2005-09-24 231160]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ATICCC"=C:\Program Files\ATI Technologies\ATI.ACE\cli.exe [2006-01-02 45056]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-05-14 2029640]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2006-12-10 49152]
"C6501Sound"=RunDll32 c6501.cpl,CMICtrlWnd []
"Acrobat Assistant 7.0"=C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe [2005-09-24 483328]
""= []
"TrueImageMonitor.exe"=C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [2009-12-14 4377960]
"AcronisTimounterMonitor"=C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe [2009-12-14 962272]
"Acronis Služba Plánovač2"=C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [2009-12-14 377600]
"Regedit32"=C:\WINDOWS\system32\regedit.exe [2010-05-05 182784]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2010-04-21 136176]
"Seznam Postak"=C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Seznam.cz\postak.exe [2010-03-01 451224]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Adobe Acrobat Speed Launcher.lnk - C:\WINDOWS\Installer\{AC76BA86-1033-C740-7760-100000000002}\SC_Acrobat.exe
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-06-07 61440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\RailNotification]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2010-01-14 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2010-01-14 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2010-01-14 304128]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoWelcomeScreen"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:*:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:*:Enabled:ActiveSync Application"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Documents and Settings\rhorsak\Local Settings\Temp\7zS7C9.tmp\setup\HPZnui01.exe"="C:\Documents and Settings\rhorsak\Local Settings\Temp\7zS7C9.tmp\setup\HPZnui01.exe:*:Enabled:hpznui01.exe"
"C:\Documents and Settings\rhorsak\Local Settings\Temp\7zS7C9.tmp\setup\hponicifs01.exe"="C:\Documents and Settings\rhorsak\Local Settings\Temp\7zS7C9.tmp\setup\hponicifs01.exe:*:Enabled:hponicifs01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\Program Files\Canon\DIAS\CnxDIAS.exe"="C:\Program Files\Canon\DIAS\CnxDIAS.exe:*:Enabled:Canon Driver Information Assist Service"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\TeamViewer\Version5\TeamViewer.exe"="C:\Program Files\TeamViewer\Version5\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TC UP\TOTALCMD.EXE"="C:\Program Files\TC UP\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"
"C:\Program Files\QIP Infium\infium.exe"="C:\Program Files\QIP Infium\infium.exe:*:Enabled:QIP Infium"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"D:\Downloads\RemoveIT-Pro-4-SE-20100418\removeit.exe"="D:\Downloads\RemoveIT-Pro-4-SE-20100418\removeit.exe:*:Enabled:removeit"
"H:\_Install\Internet\removeit_pro_portable\removeit.exe"="H:\_Install\Internet\removeit_pro_portable\removeit.exe:*:Enabled:removeit"
*kulma*
Nahoru
kulma
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 23 črc 2009 20:48
Kontaktovat uživatele:
Kontaktovat uživatele kulma

Re: Zavirované PC Rootkit.Kryptik.BB, Injector.BNJ a Otlard

#8 Příspěvek od kulma »

======File associations======

.scr - open - C:\WINDOWS\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 months======

2010-05-05 18:40:46 ----D---- C:\Program Files\trend micro
2010-05-05 18:40:45 ----D---- C:\rsit
2010-05-05 13:35:09 ----D---- C:\Program Files\CCleaner
2010-05-05 12:55:12 ----D---- C:\Program Files\Spybot - Search & Destroy
2010-05-05 12:55:12 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2010-05-05 12:33:31 ----D---- C:\WINDOWS\SxsCaPendDel
2010-05-05 10:43:29 ----D---- C:\Program Files\Lavasoft
2010-05-05 10:43:29 ----D---- C:\Documents and Settings\All Users\Data aplikací\Lavasoft
2010-05-05 10:28:47 ----A---- C:\WINDOWS\system32\wshcs.dll
2010-05-05 10:28:47 ----A---- C:\WINDOWS\system32\wmerrcsy.dll
2010-05-05 09:06:14 ----RASH---- C:\WINDOWS\system32\axaltocms.dll
2010-05-05 09:04:36 ----A---- C:\WINDOWS\system32\regedit.exe
2010-05-04 08:14:50 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\Thinstall
2010-05-03 07:51:21 ----A---- C:\WINDOWS\system32\ptpusb.dll
2010-05-03 07:51:20 ----A---- C:\WINDOWS\system32\ptpusd.dll
2010-04-29 16:17:01 ----A---- C:\DIALux Setup Information.txt
2010-04-29 16:16:55 ----A---- C:\WINDOWS\system32\cdintf251.dll
2010-04-29 16:16:50 ----A---- C:\WINDOWS\system32\cdintf300.dll
2010-04-29 16:16:50 ----A---- C:\WINDOWS\Dialux.ini
2010-04-29 16:14:22 ----D---- C:\Documents and Settings\All Users\Data aplikací\DIALux
2010-04-29 16:14:21 ----D---- C:\Program Files\Common Files\DIALux
2010-04-29 16:14:20 ----D---- C:\WINDOWS\DIALux
2010-04-29 16:14:20 ----D---- C:\Program Files\DIALux
2010-04-29 16:12:04 ----A---- C:\DIALux Setup Log.txt
2010-04-27 14:48:23 ----D---- C:\TEMP
2010-04-27 10:52:28 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\Artisteer
2010-04-27 10:49:06 ----D---- C:\Program Files\Artisteer 2
2010-04-27 09:30:22 ----D---- C:\WINDOWS\XSxS
2010-04-27 09:30:22 ----D---- C:\Program Files\Xenocode
2010-04-27 08:32:25 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\Ashampoo
2010-04-27 08:31:17 ----D---- C:\Documents and Settings\All Users\Data aplikací\ashampoo
2010-04-27 08:31:07 ----D---- C:\Program Files\Ashampoo
2010-04-26 15:12:05 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\dvdcss
2010-04-23 15:37:02 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\AdobeUM
2010-04-23 15:36:37 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\FileOpen
2010-04-23 15:36:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\FileOpen
2010-04-23 07:31:08 ----D---- C:\WINDOWS\Sun
2010-04-23 07:15:58 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\HateML
2010-04-23 07:03:56 ----D---- C:\Program Files\QIP Infium
2010-04-23 06:36:51 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\ACD Systems
2010-04-23 06:36:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\ACD Systems
2010-04-23 06:35:53 ----D---- C:\Program Files\Common Files\ACD Systems
2010-04-23 06:35:53 ----D---- C:\Program Files\ACD Systems
2010-04-22 13:42:03 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\TeamViewer
2010-04-22 13:41:52 ----D---- C:\Program Files\TeamViewer
2010-04-22 13:39:37 ----D---- C:\Program Files\DreamCom
2010-04-22 11:04:28 ----D---- C:\Program Files\Acronis
2010-04-22 10:42:49 ----A---- C:\WINDOWS\system32\auto_reactivate.exe
2010-04-22 10:42:42 ----RSHD---- C:\bootwiz
2010-04-22 10:42:09 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\Acronis
2010-04-22 09:57:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\Acronis
2010-04-22 09:48:04 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-04-22 09:47:05 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\vlc
2010-04-22 09:46:37 ----D---- C:\Program Files\VideoLAN
2010-04-22 09:36:50 ----D---- C:\Program Files\Common Files\Adobe
2010-04-22 09:35:53 ----D---- C:\Program Files\Adobe
2010-04-22 09:23:39 ----D---- C:\WINDOWS\system32\appmgmt
2010-04-22 09:16:13 ----D---- C:\Program Files\JDownloader
2010-04-22 09:16:08 ----A---- C:\WINDOWS\system32\javaws.exe
2010-04-22 09:16:08 ----A---- C:\WINDOWS\system32\javaw.exe
2010-04-22 09:16:08 ----A---- C:\WINDOWS\system32\java.exe
2010-04-22 09:16:08 ----A---- C:\WINDOWS\system32\deploytk.dll
2010-04-22 09:15:53 ----D---- C:\Program Files\Java
2010-04-22 09:13:53 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\Sun
2010-04-22 09:07:04 ----D---- C:\Program Files\Common Files\Acronis
2010-04-22 08:41:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\Canon
2010-04-22 08:40:54 ----A---- C:\WINDOWS\system32\AUCPLMNT.DLL
2010-04-22 08:38:34 ----D---- C:\Program Files\Canon
2010-04-22 08:29:03 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\AIMP
2010-04-22 08:28:20 ----D---- C:\Program Files\AIMP2
2010-04-22 08:14:20 ----A---- C:\WINDOWS\C6501.ini
2010-04-22 08:14:19 ----A---- C:\WINDOWS\system32\c6501p.dll
2010-04-22 08:14:19 ----A---- C:\WINDOWS\system32\c6501a3d.dll
2010-04-22 08:14:17 ----D---- C:\Program Files\C-Media 6501 Sound
2010-04-22 08:05:32 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\WinRAR
2010-04-22 08:05:20 ----D---- C:\Program Files\WinRAR
2010-04-22 07:41:05 ----A---- C:\WINDOWS\hpqEmlSz.INI
2010-04-22 07:24:24 ----N---- C:\WINDOWS\system32\nvuide.exe
2010-04-22 07:24:04 ----A---- C:\WINDOWS\system32\nvusmb.exe
2010-04-22 07:23:01 ----A---- C:\WINDOWS\AS_Debug.txt
2010-04-22 07:16:36 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\Skype
2010-04-22 07:16:31 ----RD---- C:\Program Files\Skype
2010-04-22 07:16:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-04-21 20:14:27 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\HP
2010-04-21 20:13:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\HPSSUPPLY
2010-04-21 20:12:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\HP
2010-04-21 20:11:43 ----D---- C:\Program Files\Common Files\HP
2010-04-21 20:11:32 ----D---- C:\Program Files\Common Files\Hewlett-Packard
2010-04-21 20:11:31 ----D---- C:\Program Files\Hewlett-Packard
2010-04-21 20:10:13 ----D---- C:\Documents and Settings\All Users\Data aplikací\Hewlett-Packard
2010-04-21 20:09:58 ----A---- C:\WINDOWS\system32\hpz3l58a.dll
2010-04-21 20:08:28 ----A---- C:\WINDOWS\system32\hpzids01.dll
2010-04-21 20:08:26 ----A---- C:\WINDOWS\system32\hpwwiax2.dll
2010-04-21 20:08:26 ----A---- C:\WINDOWS\system32\hpwtiop2.dll
2010-04-21 20:08:26 ----A---- C:\WINDOWS\system32\hppldcoi.dll
2010-04-21 20:08:26 ----A---- C:\WINDOWS\system32\hpovst11.dll
2010-04-21 20:08:26 ----A---- C:\WINDOWS\system32\difxapi.dll
2010-04-21 20:08:21 ----D---- C:\WINDOWS\carrier
2010-04-21 20:08:13 ----D---- C:\Program Files\HP
2010-04-21 20:07:35 ----HD---- C:\Config.Msi
2010-04-21 19:53:07 ----A---- C:\WINDOWS\hpzshl01.exe
2010-04-21 19:53:03 ----A---- C:\WINDOWS\hpzmsi01.exe
2010-04-21 19:50:11 ----D---- C:\Pošta
2010-04-21 19:45:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\FLEXnet
2010-04-21 19:37:18 ----D---- C:\Program Files\Common Files\Macrovision Shared
2010-04-21 19:35:20 ----D---- C:\Program Files\Common Files\Autodesk Shared
2010-04-21 19:35:20 ----D---- C:\Program Files\AutoCAD 2010
2010-04-21 19:35:20 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\Autodesk
2010-04-21 19:35:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\Autodesk
2010-04-21 19:33:39 ----D---- C:\WINDOWS\Logs
2010-04-21 15:24:02 ----A---- C:\WINDOWS\system32\wpa.bak
2010-04-21 15:23:56 ----A---- C:\WINDOWS\system32\pidgen.dll.wga
2010-04-21 15:23:56 ----A---- C:\WINDOWS\system32\dpcdll.dll.wga
2010-04-21 14:56:30 ----A---- C:\WINDOWS\system32\h323log.txt
2010-04-21 14:55:12 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-04-21 14:54:27 ----A---- C:\WINDOWS\system32\usbui.dll
2010-04-21 14:53:40 ----SHD---- C:\WINDOWS\Installer
2010-04-21 14:53:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-04-21 14:53:39 ----D---- C:\Program Files\Common Files\ODBC
2010-04-21 14:53:39 ----A---- C:\WINDOWS\ODBCINST.INI
2010-04-21 14:53:36 ----RD---- C:\Program Files
2010-04-21 14:53:36 ----D---- C:\Program Files\Common Files\SpeechEngines
2010-04-21 14:53:36 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-04-21 14:53:36 ----D---- C:\Program Files\Common Files
2010-04-21 14:53:26 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2010-04-21 14:53:26 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2010-04-21 14:53:26 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2010-04-21 14:53:24 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2010-04-21 14:53:24 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2010-04-21 14:53:24 ----RA---- C:\WINDOWS\system32\kbdur.dll
2010-04-21 14:53:24 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2010-04-21 14:53:24 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2010-04-21 14:53:24 ----RA---- C:\WINDOWS\system32\kbdru.dll
2010-04-21 14:53:24 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2010-04-21 14:53:24 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2010-04-21 14:53:24 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2010-04-21 14:53:24 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2010-04-21 14:53:23 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2010-04-21 14:53:23 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2010-04-21 14:53:22 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2010-04-21 14:53:22 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2010-04-21 14:53:22 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2010-04-21 14:53:22 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2010-04-21 14:53:22 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2010-04-21 14:53:21 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2010-04-21 14:53:21 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2010-04-21 14:53:20 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2010-04-21 14:53:20 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2010-04-21 14:53:20 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2010-04-21 14:53:20 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2010-04-21 14:53:20 ----RA---- C:\WINDOWS\system32\kbdest.dll
2010-04-21 14:53:14 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2010-04-21 14:53:14 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2010-04-21 14:53:14 ----RA---- C:\WINDOWS\system32\kbdro.dll
2010-04-21 14:53:14 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2010-04-21 14:53:14 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2010-04-21 14:53:14 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2010-04-21 14:53:13 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2010-04-21 14:53:13 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2010-04-21 14:53:13 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2010-04-21 14:53:13 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2010-04-21 14:53:11 ----A---- C:\WINDOWS\system32\spxcoins.dll
2010-04-21 14:53:11 ----A---- C:\WINDOWS\system32\irclass.dll
2010-04-21 14:53:11 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2010-04-21 14:53:11 ----A---- C:\WINDOWS\system32\dgsetup.dll
2010-04-21 14:53:11 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2010-04-21 14:53:08 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2010-04-21 14:53:08 ----A---- C:\WINDOWS\TASKMAN.EXE
2010-04-21 14:53:08 ----A---- C:\WINDOWS\system32\batt.dll
2010-04-21 14:53:07 ----A---- C:\WINDOWS\system32\storprop.dll
2010-04-21 14:53:07 ----A---- C:\WINDOWS\NOTEPAD.EXE
2010-04-21 14:53:01 ----ASH---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2010-04-21 14:52:43 ----D---- C:\WINDOWS\system32\CatRoot2
2010-04-21 14:52:43 ----D---- C:\WINDOWS\system32\CatRoot
2010-04-21 14:52:38 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-04-21 14:52:21 ----D---- C:\Documents and Settings
2010-04-21 14:52:20 ----SHD---- C:\System Volume Information
2010-04-21 14:51:34 ----A---- C:\WINDOWS\system32\hidserv.dll
2010-04-21 14:51:27 ----RSH---- C:\boot.ini
2010-04-21 14:48:59 ----SD---- C:\WINDOWS\Offline Web Pages
2010-04-21 14:48:59 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-04-21 14:48:59 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-04-21 14:48:59 ----RSD---- C:\WINDOWS\Fonts
2010-04-21 14:48:59 ----RD---- C:\WINDOWS\Web
2010-04-21 14:48:59 ----HD---- C:\WINDOWS\inf
2010-04-21 14:48:59 ----D---- C:\WINDOWS\WinSxS
2010-04-21 14:48:59 ----D---- C:\WINDOWS\WBEM
2010-04-21 14:48:59 ----D---- C:\WINDOWS\twain_32
2010-04-21 14:48:59 ----D---- C:\WINDOWS\Temp
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\wins
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\wbem
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\usmt
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\spool
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\ShellExt
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\Setup
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\ras
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\oobe
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\npp
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\mui
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\inetsrv
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\IME
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\icsxml
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\ias
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\export
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\drivers
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\dhcp
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\cs-cz
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\cs
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\config
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\3com_dmi
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\3076
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\2052
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\1054
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\1042
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\1041
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\1037
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\1033
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\1031
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\1029
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\1028
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32\1025
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system32
2010-04-21 14:48:59 ----D---- C:\WINDOWS\system
2010-04-21 14:48:59 ----D---- C:\WINDOWS\security
2010-04-21 14:48:59 ----D---- C:\WINDOWS\Resources
2010-04-21 14:48:59 ----D---- C:\WINDOWS\repair
2010-04-21 14:48:59 ----D---- C:\WINDOWS\Provisioning
2010-04-21 14:48:59 ----D---- C:\WINDOWS\pchealth
2010-04-21 14:48:59 ----D---- C:\WINDOWS\PeerNet
2010-04-21 14:48:59 ----D---- C:\WINDOWS\Network Diagnostic
2010-04-21 14:48:59 ----D---- C:\WINDOWS\mui
2010-04-21 14:48:59 ----D---- C:\WINDOWS\msapps
2010-04-21 14:48:59 ----D---- C:\WINDOWS\msagent
2010-04-21 14:48:59 ----D---- C:\WINDOWS\Media
2010-04-21 14:48:59 ----D---- C:\WINDOWS\L2Schemas
2010-04-21 14:48:59 ----D---- C:\WINDOWS\java
2010-04-21 14:48:59 ----D---- C:\WINDOWS\ime
2010-04-21 14:48:59 ----D---- C:\WINDOWS\Help
2010-04-21 14:48:59 ----D---- C:\WINDOWS\ehome
2010-04-21 14:48:59 ----D---- C:\WINDOWS\Driver Cache
2010-04-21 14:48:59 ----D---- C:\WINDOWS\Debug
2010-04-21 14:48:59 ----D---- C:\WINDOWS\Cursors
2010-04-21 14:48:59 ----D---- C:\WINDOWS\Connection Wizard
2010-04-21 14:48:59 ----D---- C:\WINDOWS\Config
2010-04-21 14:48:59 ----D---- C:\WINDOWS\AppPatch
2010-04-21 14:48:59 ----D---- C:\WINDOWS\addins
2010-04-21 14:48:59 ----D---- C:\WINDOWS
2010-04-21 14:16:41 ----A---- C:\WINDOWS\system32\mdimon.dll
2010-04-21 14:15:58 ----D---- C:\Program Files\Microsoft Works
2010-04-21 14:15:43 ----D---- C:\Program Files\Microsoft Visual Studio
2010-04-21 14:15:43 ----D---- C:\Program Files\Common Files\DESIGNER
2010-04-21 14:15:26 ----D---- C:\Program Files\Microsoft.NET
2010-04-21 14:13:48 ----D---- C:\WINDOWS\SHELLNEW
2010-04-21 14:13:38 ----D---- C:\Program Files\Microsoft Office
2010-04-21 14:13:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-04-21 14:13:36 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\Macromedia
2010-04-21 14:13:25 ----RHD---- C:\MSOCache
2010-04-21 14:02:55 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-04-21 14:02:18 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2010-04-21 14:02:11 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-04-21 14:02:07 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-04-21 14:01:58 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-04-21 14:01:52 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-04-21 14:01:24 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2010-04-21 14:01:17 ----HDC---- C:\WINDOWS\$NtUninstallKB979306$
2010-04-21 14:01:14 ----D---- C:\WINDOWS\ie8updates
2010-04-21 14:01:07 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-04-21 14:01:04 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-04-21 14:01:00 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-04-21 14:00:54 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$
2010-04-21 14:00:50 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-04-21 14:00:44 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-04-21 14:00:38 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-04-21 14:00:38 ----HD---- C:\WINDOWS\$hf_mig$
2010-04-21 13:51:31 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-04-21 13:51:30 ----D---- C:\Program Files\AMD
2010-04-21 13:51:19 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\InstallShield
2010-04-21 13:47:29 ----RSHD---- C:\RECYCLER
2010-04-21 13:45:55 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\HEXelon
2010-04-21 13:45:23 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-04-21 13:45:14 ----D---- C:\Program Files\TC UP
2010-04-21 13:37:32 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\Adobe
2010-04-21 13:36:19 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\ATI
2010-04-21 13:36:17 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\Windows Desktop Search
2010-04-21 13:35:44 ----D---- C:\Program Files\Microsoft ActiveSync
2010-04-21 13:35:44 ----A---- C:\WINDOWS\system32\rapi.dll
2010-04-21 13:35:44 ----A---- C:\WINDOWS\system32\ppcload.dll
2010-04-21 13:35:44 ----A---- C:\WINDOWS\system32\pmailext.dll
2010-04-21 13:35:44 ----A---- C:\WINDOWS\system32\MsgStRPC.dll
2010-04-21 13:35:44 ----A---- C:\WINDOWS\system32\ceutil.dll
2010-04-21 13:35:43 ----A---- C:\WINDOWS\IsUn0405.exe
2010-04-21 13:35:39 ----D---- C:\Program Files\ESET
2010-04-21 13:35:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2010-04-21 13:35:21 ----D---- C:\Documents and Settings\rhorsak\Data aplikací\Identities
2010-04-21 13:35:19 ----D---- C:\Program Files\Microsoft Windows Small Business Server
2010-04-21 13:35:14 ----SD---- C:\Documents and Settings\rhorsak\Data aplikací\Microsoft
2010-04-21 13:35:14 ----ASH---- C:\Documents and Settings\rhorsak\Data aplikací\desktop.ini
2010-04-21 13:35:07 ----D---- C:\WINDOWS\SchCache
2010-04-21 13:35:01 ----SHD---- C:\WINDOWS\CSC
2010-04-21 13:27:44 ----D---- C:\Program Files\Common Files\ATI Technologies
2010-04-21 13:25:13 ----N---- C:\WINDOWS\system32\ati2sgag.exe
2010-04-21 13:25:08 ----RA---- C:\WINDOWS\system32\atiiiexx.dll
2010-04-21 13:24:45 ----HD---- C:\Program Files\InstallShield Installation Information
2010-04-21 13:20:33 ----D---- C:\Program Files\ATI
2010-04-21 13:20:20 ----D---- C:\Program Files\ATI Technologies
2010-04-21 13:13:26 ----RA---- C:\WINDOWS\system32\a3d.dll
2010-04-21 13:13:24 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-04-21 13:11:57 ----N---- C:\WINDOWS\system32\fdco1.dll
2010-04-21 13:11:57 ----A---- C:\WINDOWS\system32\fdco1ins.dll
2010-04-21 13:11:55 ----N---- C:\WINDOWS\system32\nvconrm.dll
2010-04-21 13:11:55 ----N---- C:\WINDOWS\system32\bdco1.dll
2010-04-21 13:11:55 ----D---- C:\WINDOWS\NV34083412.TMP
2010-04-21 13:11:55 ----A---- C:\WINDOWS\system32\nvunrm.exe
2010-04-21 13:11:55 ----A---- C:\WINDOWS\system32\bdco1ins.dll
2010-04-21 13:11:41 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2010-04-21 13:11:32 ----D---- C:\Program Files\Common Files\InstallShield
2010-04-21 13:10:57 ----A---- C:\WINDOWS\Ascd_tmp.ini
2010-04-21 13:09:36 ----HD---- C:\Program Files\Uninstall Information
2010-04-21 13:08:49 ----SD---- C:\WINDOWS\system32\Microsoft
2010-04-21 13:08:49 ----D---- C:\WINDOWS\Prefetch
2010-04-21 13:08:49 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-04-21 13:06:12 ----D---- C:\WINDOWS\system32\xircom
2010-04-21 13:06:12 ----D---- C:\Program Files\xerox
2010-04-21 13:06:12 ----D---- C:\Program Files\microsoft frontpage
2010-04-21 13:05:40 ----N---- C:\WINDOWS\system32\spmsg2.dll
2010-04-21 13:05:39 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
2010-04-21 13:05:21 ----D---- C:\WINDOWS\system32\XPSViewer
2010-04-21 13:05:21 ----D---- C:\WINDOWS\system32\en-US
2010-04-21 13:05:21 ----D---- C:\Program Files\MSBuild
2010-04-21 13:05:17 ----D---- C:\Program Files\Reference Assemblies
2010-04-21 13:05:12 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-04-21 13:05:10 ----A---- C:\WINDOWS\system32\rgb9rast_2.dll
2010-04-21 13:04:00 ----A---- C:\WINDOWS\control.ini
2010-04-21 13:04:00 ----A---- C:\AUTOEXEC.BAT
2010-04-21 13:03:36 ----A---- C:\WINDOWS\system32\mapi32.dll
2010-04-21 13:03:02 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-04-21 13:03:00 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-04-21 13:02:55 ----HD---- C:\Program Files\WindowsUpdate
2010-04-21 13:02:52 ----D---- C:\Program Files\Online Services
2010-04-21 13:02:43 ----D---- C:\Program Files\Windows Media Connect 2
2010-04-21 13:02:29 ----D---- C:\WINDOWS\system32\DirectX
2010-04-21 13:02:21 ----A---- C:\WINDOWS\system32\atrace.dll
2010-04-21 13:02:19 ----A---- C:\WINDOWS\system32\desktop.ini
2010-04-21 13:02:19 ----A---- C:\WINDOWS\desktop.ini
2010-04-21 13:02:12 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2010-04-21 13:02:10 ----D---- C:\Program Files\Common Files\Services
2010-04-21 13:02:10 ----A---- C:\WINDOWS\system32\acctres.dll
2010-04-21 13:02:07 ----SD---- C:\WINDOWS\Tasks
2010-04-21 13:02:07 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2010-04-21 13:02:06 ----D---- C:\Program Files\Common Files\MSSoap
2010-04-21 13:01:59 ----D---- C:\WINDOWS\srchasst
2010-04-21 13:01:58 ----D---- C:\WINDOWS\system32\Macromed
2010-04-21 13:01:55 ----A---- C:\WINDOWS\system32\wuweb.dll
2010-04-21 13:01:55 ----A---- C:\WINDOWS\system32\wups.dll
2010-04-21 13:01:55 ----A---- C:\WINDOWS\system32\wucltui.dll
2010-04-21 13:01:55 ----A---- C:\WINDOWS\system32\wuauserv.dll
2010-04-21 13:01:55 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2010-04-21 13:01:55 ----A---- C:\WINDOWS\system32\wuaueng.dll
2010-04-21 13:01:55 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2010-04-21 13:01:55 ----A---- C:\WINDOWS\system32\wuauclt.exe
2010-04-21 13:01:54 ----D---- C:\WINDOWS\system32\bits
2010-04-21 13:01:54 ----A---- C:\WINDOWS\system32\wuapi.dll
2010-04-21 13:01:54 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2010-04-21 13:01:54 ----A---- C:\WINDOWS\system32\qmgr.dll
2010-04-21 13:01:54 ----A---- C:\WINDOWS\system32\bitsprx4.dll
2010-04-21 13:01:54 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2010-04-21 13:01:54 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2010-04-21 13:01:51 ----D---- C:\Program Files\Movie Maker
2010-04-21 13:01:33 ----A---- C:\WINDOWS\system32\safrslv.dll
2010-04-21 13:01:32 ----A---- C:\WINDOWS\system32\safrdm.dll
2010-04-21 13:01:32 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2010-04-21 13:01:32 ----A---- C:\WINDOWS\system32\racpldlg.dll
2010-04-21 13:01:29 ----A---- C:\WINDOWS\system32\fltMc.exe
2010-04-21 13:01:29 ----A---- C:\WINDOWS\system32\fltlib.dll
2010-04-21 13:01:28 ----D---- C:\WINDOWS\system32\Restore
2010-04-21 13:01:28 ----A---- C:\WINDOWS\system32\srsvc.dll
2010-04-21 13:01:28 ----A---- C:\WINDOWS\system32\srrstr.dll
2010-04-21 13:01:28 ----A---- C:\WINDOWS\system32\srclient.dll
2010-04-21 13:01:28 ----A---- C:\WINDOWS\system32\ils.dll
2010-04-21 13:01:27 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2010-04-21 13:01:27 ----A---- C:\WINDOWS\system32\msconf.dll
2010-04-21 13:01:27 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-04-21 13:01:27 ----A---- C:\WINDOWS\system32\mnmdd.dll
2010-04-21 13:01:27 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2010-04-21 13:01:24 ----D---- C:\Program Files\NetMeeting
2010-04-21 13:01:24 ----A---- C:\WINDOWS\system32\msoert2.dll
2010-04-21 13:01:24 ----A---- C:\WINDOWS\system32\msoeacct.dll
2010-04-21 13:01:23 ----A---- C:\WINDOWS\system32\inetres.dll
2010-04-21 13:01:23 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-04-21 13:01:21 ----D---- C:\Program Files\Outlook Express
2010-04-21 13:01:21 ----A---- C:\WINDOWS\system32\schedsvc.dll
2010-04-21 13:01:21 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-04-21 13:01:21 ----A---- C:\WINDOWS\system32\mstask.dll
2010-04-21 13:01:20 ----A---- C:\WINDOWS\system32\isign32.dll
2010-04-21 13:01:20 ----A---- C:\WINDOWS\system32\inetcfg.dll
2010-04-21 13:01:20 ----A---- C:\WINDOWS\system32\icwphbk.dll
2010-04-21 13:01:20 ----A---- C:\WINDOWS\system32\icwdial.dll
2010-04-21 13:01:15 ----D---- C:\Program Files\Common Files\System
2010-04-21 13:00:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2010-04-21 13:00:25 ----RSD---- C:\WINDOWS\assembly
2010-04-21 13:00:17 ----D---- C:\Program Files\ComPlus Applications
2010-04-21 13:00:16 ----A---- C:\WINDOWS\vbaddin.ini
2010-04-21 13:00:16 ----A---- C:\WINDOWS\vb.ini
2010-04-21 13:00:12 ----D---- C:\WINDOWS\Registration
2010-04-21 13:00:07 ----D---- C:\Program Files\Windows Media Player
2010-04-21 13:00:02 ----A---- C:\WINDOWS\system32\xpsshhdr.dll
2010-04-21 13:00:02 ----A---- C:\WINDOWS\system32\prntvpt.dll
2010-04-21 13:00:01 ----A---- C:\WINDOWS\system32\xpssvcs.dll
2010-04-21 12:59:54 ----D---- C:\WINDOWS\BitLockerDiscoveryVolumeContents
2010-04-21 12:59:53 ----D---- C:\WINDOWS\system32\DRM
2010-04-21 12:59:51 ----A---- C:\WINDOWS\system32\WgaTray.exe
2010-04-21 12:59:51 ----A---- C:\WINDOWS\system32\WgaLogon.dll
2010-04-21 12:59:51 ----A---- C:\WINDOWS\system32\WdfCoInstaller01007.dll
2010-04-21 12:59:49 ----A---- C:\WINDOWS\system32\UncNE.dll
2010-04-21 12:59:49 ----A---- C:\WINDOWS\system32\UncDMS.dll
2010-04-21 12:59:49 ----A---- C:\WINDOWS\system32\imapi2fs.dll
2010-04-21 12:59:49 ----A---- C:\WINDOWS\system32\imapi2.dll
2010-04-21 12:59:48 ----A---- C:\WINDOWS\system32\UncRes.dll
2010-04-21 12:59:48 ----A---- C:\WINDOWS\system32\UncPH.dll
2010-04-21 12:59:48 ----A---- C:\WINDOWS\system32\oephRes.dll
2010-04-21 12:59:48 ----A---- C:\WINDOWS\system32\oeph.dll
2010-04-21 12:59:43 ----D---- C:\Program Files\Windows Desktop Search
2010-04-21 12:59:42 ----A---- C:\WINDOWS\system32\tquery.dll.mui
2010-04-21 12:59:42 ----A---- C:\WINDOWS\system32\srchadmin.dll.mui
2010-04-21 12:59:42 ----A---- C:\WINDOWS\system32\propsys.dll.mui
2010-04-21 12:59:42 ----A---- C:\WINDOWS\system32\mssrch.dll.mui
2010-04-21 12:59:42 ----A---- C:\WINDOWS\system32\mssphtb.dll.mui
2010-04-21 12:59:42 ----A---- C:\WINDOWS\system32\mssph.dll.mui
2010-04-21 12:59:41 ----A---- C:\WINDOWS\system32\xmlfilter.dll
2010-04-21 12:59:41 ----A---- C:\WINDOWS\system32\srchadmin.dll
2010-04-21 12:59:41 ----A---- C:\WINDOWS\system32\searchindexer.exe.mui
2010-04-21 12:59:41 ----A---- C:\WINDOWS\system32\rtffilt.dll
2010-04-21 12:59:41 ----A---- C:\WINDOWS\system32\propsys.dll
2010-04-21 12:59:40 ----A---- C:\WINDOWS\system32\msshsq.dll
2010-04-21 12:59:40 ----A---- C:\WINDOWS\system32\msshooks.dll
2010-04-21 12:59:40 ----A---- C:\WINDOWS\system32\idxcntrs.ini
2010-04-21 12:59:40 ----A---- C:\WINDOWS\system32\gthrctr.ini
2010-04-21 12:59:40 ----A---- C:\WINDOWS\system32\gsrvctr.ini
2010-04-21 12:59:39 ----A---- C:\WINDOWS\system32\tquery.dll
2010-04-21 12:59:39 ----A---- C:\WINDOWS\system32\propdefs.dll
2010-04-21 12:59:39 ----A---- C:\WINDOWS\system32\msstrc.dll
2010-04-21 12:59:39 ----A---- C:\WINDOWS\system32\mssrch.dll
2010-04-21 12:59:39 ----A---- C:\WINDOWS\system32\mssprxy.dll
2010-04-21 12:59:39 ----A---- C:\WINDOWS\system32\msscb.dll
2010-04-21 12:59:38 ----A---- C:\WINDOWS\system32\searchprotocolhost.exe
2010-04-21 12:59:38 ----A---- C:\WINDOWS\system32\searchindexer.exe
2010-04-21 12:59:38 ----A---- C:\WINDOWS\system32\searchfilterhost.exe
2010-04-21 12:59:38 ----A---- C:\WINDOWS\system32\mssphtb.dll
2010-04-21 12:59:38 ----A---- C:\WINDOWS\system32\mssph.dll
2010-04-21 12:59:38 ----A---- C:\WINDOWS\system32\mssitlb.dll
2010-04-21 12:59:38 ----A---- C:\WINDOWS\system32\msscntrs.dll
2010-04-21 12:59:37 ----A---- C:\WINDOWS\system32\msxml4r.dll
2010-04-21 12:59:37 ----A---- C:\WINDOWS\system32\msxml4.dll
2010-04-21 12:59:36 ----D---- C:\Program Files\MSXML 4.0
2010-04-21 12:59:29 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2010-04-21 12:59:29 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2010-04-21 12:59:29 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2010-04-21 12:59:28 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2010-04-21 12:59:28 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2010-04-21 12:59:28 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2010-04-21 12:59:28 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2010-04-21 12:59:28 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2010-04-21 12:59:28 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2010-04-21 12:59:27 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2010-04-21 12:59:27 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2010-04-21 12:59:27 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2010-04-21 12:59:27 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2010-04-21 12:59:27 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2010-04-21 12:59:27 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2010-04-21 12:59:27 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2010-04-21 12:59:27 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2010-04-21 12:59:27 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2010-04-21 12:59:26 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2010-04-21 12:59:26 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2010-04-21 12:59:26 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2010-04-21 12:59:26 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2010-04-21 12:59:26 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2010-04-21 12:59:26 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2010-04-21 12:59:26 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2010-04-21 12:59:26 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2010-04-21 12:59:26 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2010-04-21 12:59:26 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2010-04-21 12:59:26 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2010-04-21 12:59:26 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2010-04-21 12:59:25 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2010-04-21 12:59:25 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2010-04-21 12:59:25 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2010-04-21 12:59:25 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2010-04-21 12:59:25 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2010-04-21 12:59:25 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2010-04-21 12:59:25 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2010-04-21 12:59:25 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2010-04-21 12:59:25 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2010-04-21 12:59:24 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2010-04-21 12:59:23 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2010-04-21 12:59:23 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2010-04-21 12:59:22 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2010-04-21 12:59:22 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2010-04-21 12:59:21 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2010-04-21 12:59:21 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2010-04-21 12:59:20 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2010-04-21 12:59:20 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2010-04-21 12:59:19 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2010-04-21 12:59:19 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2010-04-21 12:59:19 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2010-04-21 12:59:18 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2010-04-21 12:59:18 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2010-04-21 12:59:18 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2010-04-21 12:59:17 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2010-04-21 12:59:17 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2010-04-21 12:59:16 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2010-04-21 12:59:16 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2010-04-21 12:59:16 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2010-04-21 12:59:16 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2010-04-21 12:59:16 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2010-04-21 12:59:16 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2010-04-21 12:59:16 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2010-04-21 12:59:16 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2010-04-21 12:59:16 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2010-04-21 12:59:15 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2010-04-21 12:59:15 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2010-04-21 12:59:15 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2010-04-21 12:59:13 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2010-04-21 12:59:13 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2010-04-21 12:59:12 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2010-04-21 12:59:12 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2010-04-21 12:59:11 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2010-04-21 12:59:11 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2010-04-21 12:59:11 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2010-04-21 12:59:10 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2010-04-21 12:59:10 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2010-04-21 12:59:10 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2010-04-21 12:59:10 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2010-04-21 12:59:01 ----D---- C:\WINDOWS\SoftwareDistribution
2010-04-21 12:59:01 ----D---- C:\Program Files\Microsoft Silverlight
2010-04-21 12:59:01 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2010-04-21 12:59:01 ----A---- C:\WINDOWS\system32\muweb.dll
2010-04-21 12:59:01 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2010-04-21 12:59:01 ----A---- C:\WINDOWS\system32\mucltui.dll
2010-04-21 12:59:01 ----A---- C:\WINDOWS\system32\MicrosoftUpdateCatalogWebControl.dll
2010-04-21 12:59:00 ----D---- C:\WINDOWS\system32\PreInstall
2010-04-21 12:58:57 ----A---- C:\WINDOWS\system32\pwrshplugin.dll
2010-04-21 12:58:44 ----D---- C:\WINDOWS\system32\WindowsPowerShell
2010-04-21 12:58:43 ----D---- C:\WINDOWS\system32\winrm
2010-04-21 12:58:43 ----D---- C:\WINDOWS\system32\GroupPolicy
2010-04-21 12:58:43 ----A---- C:\WINDOWS\system32\wevtfwd.dll
2010-04-21 12:58:42 ----A---- C:\WINDOWS\system32\wsmprovhost.exe
2010-04-21 12:58:42 ----A---- C:\WINDOWS\system32\wsmplpxy.dll
2010-04-21 12:58:42 ----A---- C:\WINDOWS\system32\wsmanhttpconfig.exe
2010-04-21 12:58:42 ----A---- C:\WINDOWS\system32\winrssrv.dll
2010-04-21 12:58:42 ----A---- C:\WINDOWS\system32\winrsmgr.dll
2010-04-21 12:58:42 ----A---- C:\WINDOWS\system32\winrshost.exe
2010-04-21 12:58:42 ----A---- C:\WINDOWS\system32\winrscmd.dll
2010-04-21 12:58:42 ----A---- C:\WINDOWS\system32\winrs.exe
2010-04-21 12:58:42 ----A---- C:\WINDOWS\system32\winrmprov.dll
2010-04-21 12:58:41 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2010-04-21 12:58:41 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2010-04-21 12:58:41 ----A---- C:\WINDOWS\system32\WsmRes.dll
2010-04-21 12:58:41 ----A---- C:\WINDOWS\system32\WsmAuto.dll
2010-04-21 12:58:41 ----A---- C:\WINDOWS\system32\winrm.vbs
2010-04-21 12:58:41 ----A---- C:\WINDOWS\system32\winrm.cmd
2010-04-21 12:58:33 ----A---- C:\WINDOWS\system32\netfxperf.dll
2010-04-21 12:58:31 ----D---- C:\Program Files\Internet Explorer
2010-04-21 12:58:23 ----D---- C:\WINDOWS\Microsoft.NET
2010-04-21 12:58:20 ----D---- C:\Program Files\Messenger
2010-04-21 12:58:16 ----D---- C:\Program Files\MSN Gaming Zone
2010-04-21 12:58:16 ----A---- C:\WINDOWS\system32\write.exe
2010-04-21 12:58:06 ----A---- C:\WINDOWS\system32\sndvol32.exe
2010-04-21 12:58:06 ----A---- C:\WINDOWS\system32\hticons.dll
2010-04-21 12:58:05 ----A---- C:\WINDOWS\system32\winchat.exe
2010-04-21 12:58:05 ----A---- C:\WINDOWS\system32\avwav.dll
2010-04-21 12:58:05 ----A---- C:\WINDOWS\system32\avtapi.dll
2010-04-21 12:58:05 ----A---- C:\WINDOWS\system32\avmeter.dll
2010-04-21 12:57:58 ----A---- C:\WINDOWS\system32\getuname.dll
2010-04-21 12:57:57 ----A---- C:\WINDOWS\system32\sol.exe
2010-04-21 12:57:57 ----A---- C:\WINDOWS\system32\charmap.exe
2010-04-21 12:57:57 ----A---- C:\WINDOWS\system32\calc.exe
2010-04-21 12:57:56 ----A---- C:\WINDOWS\system32\winmine.exe
2010-04-21 12:57:56 ----A---- C:\WINDOWS\system32\mshearts.exe
2010-04-21 12:57:56 ----A---- C:\WINDOWS\system32\freecell.exe
2010-04-21 12:57:55 ----A---- C:\WINDOWS\system32\winlogonnotification.dll
2010-04-21 12:57:55 ----A---- C:\WINDOWS\system32\tspubwmi.dll
2010-04-21 12:57:55 ----A---- C:\WINDOWS\system32\rdpshell.exe
2010-04-21 12:57:55 ----A---- C:\WINDOWS\system32\rdpinit.exe
2010-04-21 12:57:54 ----A---- C:\WINDOWS\system32\wksprtps.dll
2010-04-21 12:57:54 ----A---- C:\WINDOWS\system32\wksprt.exe
2010-04-21 12:57:54 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2010-04-21 12:57:54 ----A---- C:\WINDOWS\system32\tswbprxy.exe
2010-04-21 12:57:54 ----A---- C:\WINDOWS\system32\reset.exe
2010-04-21 12:57:54 ----A---- C:\WINDOWS\system32\MsRdpWebAccess.dll
2010-04-21 12:57:53 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2010-04-21 12:57:53 ----A---- C:\WINDOWS\system32\tslabels.ini
2010-04-21 12:57:53 ----A---- C:\WINDOWS\system32\tskill.exe
2010-04-21 12:57:53 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2010-04-21 12:57:53 ----A---- C:\WINDOWS\system32\tscon.exe
2010-04-21 12:57:53 ----A---- C:\WINDOWS\system32\shadow.exe
2010-04-21 12:57:53 ----A---- C:\WINDOWS\system32\rwinsta.exe
2010-04-21 12:57:53 ----A---- C:\WINDOWS\system32\regini.exe
2010-04-21 12:57:53 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2010-04-21 12:57:53 ----A---- C:\WINDOWS\system32\qwinsta.exe
2010-04-21 12:57:53 ----A---- C:\WINDOWS\system32\qappsrv.exe
2010-04-21 12:57:53 ----A---- C:\WINDOWS\system32\msg.exe
2010-04-21 12:57:53 ----A---- C:\WINDOWS\system32\logoff.exe
2010-04-21 12:57:52 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2010-04-21 12:57:52 ----A---- C:\WINDOWS\system32\cdmodem.dll
2010-04-21 12:57:46 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2010-04-21 12:57:45 ----A---- C:\WINDOWS\system32\sndrec32.exe
2010-04-21 12:57:45 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-04-21 12:57:45 ----A---- C:\WINDOWS\system32\hypertrm.dll
2010-04-21 12:57:45 ----A---- C:\WINDOWS\system32\accwiz.exe
2010-04-21 12:57:44 ----D---- C:\Program Files\Windows NT
2010-04-21 12:57:44 ----A---- C:\WINDOWS\system32\spider.exe
2010-04-21 12:57:44 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-04-21 12:57:44 ----A---- C:\WINDOWS\system32\clipbrd.exe
2010-04-21 12:57:43 ----A---- C:\WINDOWS\system32\tsgqec.dll
2010-04-21 12:57:43 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2010-04-21 12:57:42 ----A---- C:\WINDOWS\system32\rhttpaa.dll
2010-04-21 12:57:42 ----A---- C:\WINDOWS\system32\mstscax.dll
2010-04-21 12:57:42 ----A---- C:\WINDOWS\system32\aaclient.dll
2010-04-21 12:57:41 ----A---- C:\WINDOWS\system32\termsrv.dll
2010-04-21 12:57:41 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-04-21 12:57:41 ----A---- C:\WINDOWS\system32\remotepg.dll
2010-04-21 12:57:41 ----A---- C:\WINDOWS\system32\rdshost.exe
2010-04-21 12:57:41 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2010-04-21 12:57:41 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2010-04-21 12:57:41 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2010-04-21 12:57:41 ----A---- C:\WINDOWS\system32\rdchost.dll
2010-04-21 12:57:41 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-04-21 12:57:40 ----D---- C:\WINDOWS\system32\MsDtc
2010-04-21 12:57:40 ----A---- C:\WINDOWS\system32\rdpclip.exe
2010-04-21 12:57:40 ----A---- C:\WINDOWS\system32\qprocess.exe
2010-04-21 12:57:40 ----A---- C:\WINDOWS\system32\mtxoci.dll
2010-04-21 12:57:40 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2010-04-21 12:57:40 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2010-04-21 12:57:40 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-04-21 12:57:40 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2010-04-21 12:57:39 ----A---- C:\WINDOWS\system32\xolehlp.dll
2010-04-21 12:57:39 ----A---- C:\WINDOWS\system32\msdtctm.dll
2010-04-21 12:57:39 ----A---- C:\WINDOWS\system32\msdtclog.dll
2010-04-21 12:57:39 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-04-21 12:57:38 ----D---- C:\WINDOWS\system32\Com
2010-04-21 12:57:38 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2010-04-21 12:57:38 ----A---- C:\WINDOWS\system32\mtxex.dll
2010-04-21 12:57:38 ----A---- C:\WINDOWS\system32\mtxdm.dll
2010-04-21 12:57:38 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2010-04-21 12:57:38 ----A---- C:\WINDOWS\system32\comrepl.dll
2010-04-21 12:57:38 ----A---- C:\WINDOWS\system32\comaddin.dll
2010-04-21 12:57:38 ----A---- C:\WINDOWS\system32\colbact.dll
2010-04-21 12:57:37 ----A---- C:\WINDOWS\system32\stclient.dll
2010-04-21 12:57:37 ----A---- C:\WINDOWS\system32\clbcatex.dll
2010-04-21 12:57:37 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-04-21 12:57:37 ----A---- C:\WINDOWS\system32\catsrvps.dll
2010-04-21 12:57:37 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-04-21 12:57:36 ----A---- C:\WINDOWS\system32\comuid.dll
2010-04-21 12:57:36 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-04-21 12:57:36 ----A---- C:\WINDOWS\system32\comsnap.dll
2010-04-21 12:57:36 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-04-21 12:57:30 ----A---- C:\WINDOWS\system32\servdeps.dll
2010-04-21 12:57:30 ----A---- C:\WINDOWS\system32\mmfutil.dll
2010-04-21 12:57:30 ----A---- C:\WINDOWS\system32\licwmi.dll
2010-04-21 12:57:29 ----A---- C:\WINDOWS\system32\cmprops.dll

======List of files/folders modified in the last 1 months======

2010-04-22 07:21:45 ----A---- C:\WINDOWS\system32\NVCOI.DLL
2010-04-22 07:21:44 ----A---- C:\WINDOWS\system32\idecoins.dll
2010-04-22 07:21:44 ----A---- C:\WINDOWS\system32\idecoi.dll
2010-04-21 20:14:04 ----A---- C:\WINDOWS\win.ini
2010-04-21 14:53:35 ----A---- C:\WINDOWS\system.ini
2010-04-06 10:52:56 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43008]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-05-14 107256]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-05-14 94360]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 VD_FileDisk;VD_FileDisk; C:\WINDOWS\system32\drivers\VD_FileDisk.sys [2006-01-13 15872]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-05-14 114472]
R2 rspndr;Odpovídající zařízení zjišťování topologie linkové vrstvy; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2010-01-14 62848]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2010-01-14 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-06-07 1580544]
R3 c65013264;C-Media CM6501 Like Sound UDAX Interface; C:\WINDOWS\system32\drivers\c6501.sys [2007-01-25 1305600]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2010-01-14 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2010-01-14 61824]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2010-04-22 34048]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2010-04-22 13056]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2008-05-30 7296]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2010-01-14 32384]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2010-01-14 30464]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2010-01-14 17152]
S1 DumpDrv;Crash Dump Driver; C:\WINDOWS\system32\drivers\DumpDrv.sys [2010-01-14 9472]
S3 cm102u32;C-Media CM6501 Like Sound Interface; C:\WINDOWS\system32\drivers\c6501.sys [2007-01-25 1305600]
S3 GVCplDrv;GVCplDrv; C:\WINDOWS\system32\drivers\GVCplDrv.sys [2004-05-02 23040]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2010-01-14 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2010-01-14 82944]
S4 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys [2010-01-14 133632]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AcrSch2Svc;Acronis Služba Plánovač2; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [2009-12-14 619296]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-06-07 409600]
R2 Canon Driver Information Assist Service;Canon Driver Information Assist Service; C:\Program Files\Canon\DIAS\CnxDIAS.exe [2008-07-29 3405672]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-05-14 731840]
R2 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2010-01-14 14848]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2010-01-14 14848]
R2 HPSLPSVC;HP Network Devices Support; C:\WINDOWS\system32\svchost.exe [2010-01-14 14848]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-04-22 153376]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2010-01-14 14848]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2010-01-14 14848]
R2 TeamViewer5;TeamViewer 5; C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe [2010-04-16 173352]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2010-01-14 439808]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2006-06-07 520192]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-05-14 20680]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-04-21 651720]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE []
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2010-01-14 14848]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2010-01-14 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2010-01-14 14848]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
*kulma*
Nahoru
Uživatelský avatar
Caroprd111
VIP
VIP
Příspěvky: 13492
Registrován: 22 bře 2009 20:48
Bydliště: Třebíč
Kontaktovat uživatele:
Kontaktovat uživatele Caroprd111

Re: Zavirované PC Rootkit.Kryptik.BB, Injector.BNJ a Otlard

#9 Příspěvek od Caroprd111 »

Obrázek Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
  • Spusťte, poté do spodního políčka vložte následující skript.

Kód: Vybrat vše

 netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys 
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys 
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
isapnp.sys 
cdrom.sys 
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav 
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
CREATERESTOREPOINT
  • Označte položku Pro všechny uživatele.
  • Označte položky Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
  • Klikněte na tlačítko Prohledat
  • Po dokončení, sem vložte logy OTL.Txt a Extras.txt
Obrázek
Nahoru
kulma
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 23 črc 2009 20:48
Kontaktovat uživatele:
Kontaktovat uživatele kulma

Re: Zavirované PC Rootkit.Kryptik.BB, Injector.BNJ a Otlard

#10 Příspěvek od kulma »

OTL Extras logfile created on: 5.5.2010 19:24:37 - Run 1
OTL by OldTimer - Version 3.2.4.1 Folder = C:\Documents and Settings\rhorsak\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 59,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 80,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 78,84 Gb Free Space | 80,74% Space Free | Partition Type: NTFS
Drive D: | 114,81 Gb Total Space | 100,81 Gb Free Space | 87,81% Space Free | Partition Type: NTFS
Drive E: | 74,53 Gb Total Space | 67,24 Gb Free Space | 90,22% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
Drive G: | 195,31 Gb Total Space | 26,58 Gb Free Space | 13,61% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive R: | 195,31 Gb Total Space | 26,58 Gb Free Space | 13,61% Space Free | Partition Type: NTFS
Drive Y: | 53,88 Gb Total Space | 46,96 Gb Free Space | 87,16% Space Free | Partition Type: NTFS

Computer Name: PC0011P
Current User Name: rhorsak
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.reg [@ = regfile] -- C:\WINDOWS\System32\regedit.exe ()

[HKEY_USERS\S-1-5-21-1651790719-4201147004-1817147730-1138\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [open] -- regedit.exe "%1" ()
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [ACDSee Pro 3.Manage] -- "C:\Program Files\ACD Systems\ACDSee Pro\3.0\ACDSeeQVPro3.exe" "%1" (ACD Systems International Inc.)
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Documents and Settings\rhorsak\Local Settings\Temp\7zS7C9.tmp\setup\HPZnui01.exe" = C:\Documents and Settings\rhorsak\Local Settings\Temp\7zS7C9.tmp\setup\HPZnui01.exe:*:Enabled:hpznui01.exe -- File not found
"C:\Documents and Settings\rhorsak\Local Settings\Temp\7zS7C9.tmp\setup\hponicifs01.exe" = C:\Documents and Settings\rhorsak\Local Settings\Temp\7zS7C9.tmp\setup\hponicifs01.exe:*:Enabled:hponicifs01.exe -- File not found
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" = C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\Canon\DIAS\CnxDIAS.exe" = C:\Program Files\Canon\DIAS\CnxDIAS.exe:*:Enabled:Canon Driver Information Assist Service -- (CANON INC.)
"C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Program Files\TeamViewer\Version5\TeamViewer.exe" = C:\Program Files\TeamViewer\Version5\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
"C:\Program Files\TC UP\TOTALCMD.EXE" = C:\Program Files\TC UP\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit -- (Ghisler Software GmbH)
"C:\Program Files\QIP Infium\infium.exe" = C:\Program Files\QIP Infium\infium.exe:*:Enabled:QIP Infium -- (QIP)
"D:\Downloads\RemoveIT-Pro-4-SE-20100418\removeit.exe" = D:\Downloads\RemoveIT-Pro-4-SE-20100418\removeit.exe:*:Enabled:removeit -- ()
"H:\_Install\Internet\removeit_pro_portable\removeit.exe" = H:\_Install\Internet\removeit_pro_portable\removeit.exe:*:Enabled:removeit -- File not found

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:*:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:*:Enabled:ActiveSync Application -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0A55CDBB-0566-4AA2-A15B-24C7F27C6FF4}" = BPD_Scan
"{1746EA69-DCB6-4408-B5A5-E75F55439CDF}" = Scan
"{176B7642-72A8-49D0-8EC4-26D59D8E21B2}" = Klient pro správu práv Microsoft Windows Rights Management Services s aktualizací Service Pack 2
"{179C56A4-F57F-4561-8BBF-F911D26EB435}" = WebReg
"{1B280FAF-AE10-4E31-A41A-DB3917D651DC}" = ACDSee Pro 3
"{23E5032B-56CA-4C19-A72E-B50161DB82CA}" = Klient služby Stínová kopie svazků
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17
"{324CEC09-007A-48eb-90E0-9D42D4D5EB0A}" = NetDeviceManager
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{378E39C3-92F2-4241-AC90-FAF023007D6D}" = Klient Správy přístupových práv v systému Windows s aktualizací Service Pack 2
"{3DB0E77E-7F00-0AE3-35ED-2D1B1C048E4A}" = ATI Catalyst Install Manager
"{49F2B650-2D7B-4F59-B33D-346F63776BD3}" = DocProc
"{4FB600F5-C478-4DF7-A2BC-57D3807BAC91}" = BPDSoftware_Ini
"{5104B07C-6A3D-4E7E-8BBB-960B52554BDD}" = BPD_HPSU
"{546C143E-68DC-314D-97BC-1E454E3BA429}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY
"{5783F2D7-8001-0405-0002-0060B0CE6BBA}" = AutoCAD 2010 - česky
"{5783F2D7-8001-0405-1002-0060B0CE6BBA}" = Jazykový balíček aplikace AutoCAD 2010 - čeština
"{5C474A83-A45F-470C-9AC8-2BD1C251BF9A}" = Skype™ 4.2
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{67D3F1A0-A1F2-49b7-B9EE-011277B170CD}" = HPProductAssistant
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{6FA1D6BE-12DF-4C6F-98F5-A2EFFB9893E3}" = ESET NOD32 Antivirus
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7A7DC702-DEDE-42A8-8722-B3BA724D546F}" = Fax
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{868EA922-5675-4E91-BDA6-BBD0F923C5EF}" = HP Officejet Pro All-In-One Series
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{8868D822-2CBA-46B2-A286-B400B6185769}" = 7500_7600_7700_Help
"{888C6BAB-729D-FF8A-1856-F2A58A702C1C}" = ATI Problem Report Wizard
"{8C6027FD-53DC-446D-BB75-CACD7028A134}" = HP Update
"{8D70145A-3BD3-4DBF-9CBF-223EF4A43257}" = ATI Parental Control & Encoder
"{8F968232-15C6-4872-84C2-9FCDAA1AEAB6}" = MPM
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{95D08F4E-DFC2-4ce3-ACB7-8C8E206217E9}" = MarketResearch
"{978C25EE-5777-46e4-8988-732C297CBDBD}" = Status
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B1FD9CE-0776-4f0b-A6F5-C6AB7B650CDF}" = Destinations
"{A2C9CD1B-2551-3AED-B244-6698FB929FA6}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A36CD345-625C-4d6c-B3E2-76E1248CB451}" = SolutionCenter
"{A495D4DC-4036-4914-9CB2-0FCF6A3166EF}" = L7500
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-1033-C740-7760-100000000002}" = Adobe Acrobat 7.0 Professional - Czech, Polish, Greek
"{BE77A81F-B315-4666-9BF3-AE70C0ADB057}" = BufferChm
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver
"{C716522C-3731-4667-8579-40B098294500}" = Toolbox
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D1E0E859-F46D-4708-A41D-ED90C0C1822A}" = Acronis True Image Home
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{DEB9AEF7-3ADA-40a9-9C98-546D54FE9CBD}" = ProductContext
"{E06F04B9-45E6-4AC0-8083-85F7515F40F7}" = UnloadSupport
"{EB21A812-671B-4D08-B974-2A347F0D8F70}" = HP Photosmart Essential
"{EB75DE50-5754-4F6F-875D-126EDF8E4CB3}" = HPSSupply
"{EC905264-BCFE-423B-9C42-C3A106266790}" = Klient Správy přístupových práv v systému Windows SP2, zpětná kompatibilita
"{ECAD4F6A-0BF3-4028-9C81-E5D9F9606CBA}" = BPDSoftware
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F3FD1567-FCD1-4EFF-93EC-FAE6A945A012}" = ATI Catalyst Control Center
"{FF075778-6E50-47ed-991D-3B07FD4E3250}" = TrayApp
"ACDSee Pro 3 Build 355" = ACDSee Pro 3 Build 355 - Český překlad
"Adobe Acrobat 7.0 Professional - Czech, Polish, Greek - V" = Adobe Acrobat 7.0 Professional - Czech, Polish, Greek
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AIMP2" = AIMP2
"All ATI Software" = Softarová utilita ATI - Odinstalovat
"Ashampoo Burning Studio 2009_is1" = Ashampoo Burning Studio 2009
"ATI Display Driver" = ATI Display Driver
"AutoCAD 2010 - česky" = AutoCAD 2010 - česky
"AutoCAD 2010 - česky Version 2" = AutoCAD 2010 - česky Version 2
"CCleaner" = CCleaner (remove only)
"DIALux" = DIALux 4.7
"ENTERPRISE" = Microsoft Office Enterprise 2007
"HijackThis" = HijackThis 2.0.2
"HP Imaging Device Functions" = HP Imaging Device Functions 8.0
"HP Solution Center & Imaging Support Tools" = HP Solution Center 8.0
"HPExtendedCapabilities" = HP Customer Participation Program 8.0
"HPOCR" = HP OCR Software 8.0
"JDownloader" = JDownloader
"Kubik SMS DreamCom_is1" = Kubik SMS DreamCom 5.88
"Microsoft Silverlight" = Microsoft Silverlight
"NVIDIA Drivers" = NVIDIA Drivers
"TC UP" = Total Commander Ultima Prime 5.0.0.0
"TeamViewer 5" = TeamViewer 5
"VLC media player" = VLC media player 1.0.5
"Windows CE Services" = Microsoft ActiveSync 3.8
"WinRAR archiver" = WinRAR archiver
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1651790719-4201147004-1817147730-1138\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"Qip Infium packverze: 9034 s IRC protokolem" = Qip Infium pack verze: 9034 s IRC protokolem
"szn-software-postak" = Seznam Pošťák 2 (Pouze já.)

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 3.5.2010 3:50:44 | Computer Name = PC0011P | Source = Application Error | ID = 1000
Description = Chybující aplikace minibrowser.exe, verze 1.0.0.1, chybující modul
minibrowser.exe, verze 1.0.0.1, adresa chyby 0x0002227b.

Error - 4.5.2010 7:48:33 | Computer Name = PC0011P | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace MiniBrowser.exe, verze 1.0.0.1, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 5.5.2010 3:54:08 | Computer Name = PC0011P | Source = Application Error | ID = 1000
Description = Chybující aplikace removeit.exe, verze 0.0.0.0, chybující modul kernel32.dll,
verze 5.1.2600.5781, adresa chyby 0x00012afb.

Error - 5.5.2010 3:54:12 | Computer Name = PC0011P | Source = Application Error | ID = 1000
Description = Chybující aplikace removeit.exe, verze 0.0.0.0, chybující modul kernel32.dll,
verze 5.1.2600.5781, adresa chyby 0x00012afb.

Error - 5.5.2010 3:54:15 | Computer Name = PC0011P | Source = Application Error | ID = 1000
Description = Chybující aplikace removeit.exe, verze 0.0.0.0, chybující modul kernel32.dll,
verze 5.1.2600.5781, adresa chyby 0x00012afb.

Error - 5.5.2010 3:54:16 | Computer Name = PC0011P | Source = Application Error | ID = 1000
Description = Chybující aplikace removeit.exe, verze 0.0.0.0, chybující modul removeit.exe,
verze 0.0.0.0, adresa chyby 0x00003080.

Error - 5.5.2010 4:43:59 | Computer Name = PC0011P | Source = Lavasoft Ad-Aware Service | ID = 0
Description =

Error - 5.5.2010 7:49:57 | Computer Name = PC0011P | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.5634, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x71a96a55.

Error - 5.5.2010 9:08:53 | Computer Name = PC0011P | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.5634, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x71a96a55.

Error - 5.5.2010 9:09:58 | Computer Name = PC0011P | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace SpybotSD.exe, verze 1.6.2.46, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

[ OSession Events ]
Error - 26.4.2010 8:40:53 | Computer Name = PC0011P | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4
seconds with 0 seconds of active time. This session ended with a crash.

Error - 5.5.2010 6:34:23 | Computer Name = PC0011P | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 3583
seconds with 180 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 5.5.2010 3:09:00 | Computer Name = PC0011P | Source = Srv | ID = 2011
Description = Konfigurační parametr Irpstacksize serveru je příliš malý a server
nemůže použít místní zařízení. Zvětšete hodnotu tohoto parametru.

Error - 5.5.2010 3:09:01 | Computer Name = PC0011P | Source = Srv | ID = 2011
Description = Konfigurační parametr Irpstacksize serveru je příliš malý a server
nemůže použít místní zařízení. Zvětšete hodnotu tohoto parametru.

Error - 5.5.2010 3:09:01 | Computer Name = PC0011P | Source = Service Control Manager | ID = 7000
Description = Služba Služba čítače výčtu IR neuspěla při spuštění v důsledku následující
chyby: %%5

Error - 5.5.2010 3:09:01 | Computer Name = PC0011P | Source = Srv | ID = 2011
Description = Konfigurační parametr Irpstacksize serveru je příliš malý a server
nemůže použít místní zařízení. Zvětšete hodnotu tohoto parametru.

Error - 5.5.2010 3:09:01 | Computer Name = PC0011P | Source = Srv | ID = 2011
Description = Konfigurační parametr Irpstacksize serveru je příliš malý a server
nemůže použít místní zařízení. Zvětšete hodnotu tohoto parametru.

Error - 5.5.2010 3:09:01 | Computer Name = PC0011P | Source = Srv | ID = 2011
Description = Konfigurační parametr Irpstacksize serveru je příliš malý a server
nemůže použít místní zařízení. Zvětšete hodnotu tohoto parametru.

Error - 5.5.2010 3:09:01 | Computer Name = PC0011P | Source = Srv | ID = 2011
Description = Konfigurační parametr Irpstacksize serveru je příliš malý a server
nemůže použít místní zařízení. Zvětšete hodnotu tohoto parametru.

Error - 5.5.2010 3:09:01 | Computer Name = PC0011P | Source = Srv | ID = 2011
Description = Konfigurační parametr Irpstacksize serveru je příliš malý a server
nemůže použít místní zařízení. Zvětšete hodnotu tohoto parametru.

Error - 5.5.2010 3:09:01 | Computer Name = PC0011P | Source = Srv | ID = 2011
Description = Konfigurační parametr Irpstacksize serveru je příliš malý a server
nemůže použít místní zařízení. Zvětšete hodnotu tohoto parametru.

Error - 5.5.2010 3:09:01 | Computer Name = PC0011P | Source = Srv | ID = 2011
Description = Konfigurační parametr Irpstacksize serveru je příliš malý a server
nemůže použít místní zařízení. Zvětšete hodnotu tohoto parametru.


< End of report >
*kulma*
Nahoru
Uživatelský avatar
Caroprd111
VIP
VIP
Příspěvky: 13492
Registrován: 22 bře 2009 20:48
Bydliště: Třebíč
Kontaktovat uživatele:
Kontaktovat uživatele Caroprd111

Re: Zavirované PC Rootkit.Kryptik.BB, Injector.BNJ a Otlard

#11 Příspěvek od Caroprd111 »

Ok, ještě log OTL.txt
Obrázek
Nahoru
kulma
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 23 črc 2009 20:48
Kontaktovat uživatele:
Kontaktovat uživatele kulma

Re: Zavirované PC Rootkit.Kryptik.BB, Injector.BNJ a Otlard

#12 Příspěvek od kulma »

OTL logfile created on: 5.5.2010 19:24:09 - Run 1
OTL by OldTimer - Version 3.2.4.1 Folder = C:\Documents and Settings\rhorsak\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 59,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 80,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 78,84 Gb Free Space | 80,74% Space Free | Partition Type: NTFS
Drive D: | 114,81 Gb Total Space | 100,81 Gb Free Space | 87,81% Space Free | Partition Type: NTFS
Drive E: | 74,53 Gb Total Space | 67,24 Gb Free Space | 90,22% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
Drive G: | 195,31 Gb Total Space | 26,58 Gb Free Space | 13,61% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive R: | 195,31 Gb Total Space | 26,58 Gb Free Space | 13,61% Space Free | Partition Type: NTFS
Drive Y: | 53,88 Gb Total Space | 46,96 Gb Free Space | 87,16% Space Free | Partition Type: NTFS

Computer Name: PC0011P
Current User Name: rhorsak
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010.05.05 19:22:21 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\rhorsak\Plocha\OTL.exe
PRC - [2010.05.05 15:14:53 | 000,182,784 | ---- | M] (Macromedia, Inc.) -- C:\Documents and Settings\rhorsak\Local Settings\Temp\awkvrft.exe
PRC - [2010.05.05 14:50:09 | 000,182,784 | ---- | M] () -- C:\WINDOWS\system32\regedit.exe
PRC - [2010.04.26 19:13:25 | 000,531,440 | ---- | M] (Google Inc.) -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2010.04.16 09:22:16 | 005,206,824 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version5\TeamViewer.exe
PRC - [2010.04.16 09:18:34 | 000,173,352 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
PRC - [2010.03.01 14:15:28 | 000,451,224 | ---- | M] () -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Seznam.cz\postak.exe
PRC - [2010.01.14 17:06:59 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Desktop Search\WindowsSearch.exe
PRC - [2010.01.14 17:00:34 | 000,220,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\logon.scr
PRC - [2010.01.14 17:00:04 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2009.12.14 14:28:48 | 000,962,272 | ---- | M] (Acronis) -- C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
PRC - [2009.12.14 14:24:24 | 000,377,600 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
PRC - [2009.12.14 14:24:18 | 000,619,296 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
PRC - [2009.12.14 14:09:32 | 004,377,960 | ---- | M] (Acronis) -- C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
PRC - [2009.08.17 22:54:54 | 012,957,536 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
PRC - [2009.05.14 15:47:54 | 000,731,840 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2009.05.14 15:47:08 | 002,029,640 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2008.07.29 16:59:38 | 003,405,672 | ---- | M] (CANON INC.) -- C:\Program Files\Canon\DIAS\CnxDIAS.exe
PRC - [2008.04.14 13:00:00 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rdpclip.exe
PRC - [2006.01.02 17:41:22 | 000,045,056 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
PRC - [2005.09.24 07:30:38 | 000,483,328 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Adobe\Acrobat 7.0\Distillr\acrotray.exe


========== Modules (SafeList) ==========

MOD - [2010.05.05 19:22:21 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\rhorsak\Plocha\OTL.exe
MOD - [2010.04.16 09:22:16 | 000,107,816 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version5\TV.dll
MOD - [2010.01.14 16:58:14 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5705_x-ww_36cfed49\comctl32.dll
MOD - [2008.04.14 13:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2008.04.14 13:00:00 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winsta.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (ose)
SRV - [2010.04.21 19:37:19 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010.04.16 09:18:34 | 000,173,352 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe -- (TeamViewer5)
SRV - [2009.12.14 14:24:18 | 000,619,296 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2009.05.14 15:54:22 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009.05.14 15:47:54 | 000,731,840 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2008.07.29 20:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2008.07.29 16:59:38 | 003,405,672 | ---- | M] (CANON INC.) [Auto | Running] -- C:\Program Files\Canon\DIAS\CnxDIAS.exe -- (Canon Driver Information Assist Service)


========== Driver Services (SafeList) ==========

DRV - [2010.04.22 11:05:00 | 000,902,432 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\tdrpm251.sys -- (tdrpman251) Acronis Try&Decide and Restore Points filter (build 251)
DRV - [2010.04.22 11:04:57 | 000,570,016 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\timntr.sys -- (timounter)
DRV - [2010.04.22 11:04:52 | 000,156,928 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\snapman.sys -- (snapman)
DRV - [2010.04.22 07:21:45 | 000,093,568 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata)
DRV - [2010.04.22 07:21:33 | 000,034,048 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2010.04.22 07:21:33 | 000,013,056 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2010.01.14 17:04:10 | 000,009,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\DumpDrv.sys -- (DumpDrv)
DRV - [2009.05.14 15:49:32 | 000,094,360 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2009.05.14 15:47:14 | 000,107,256 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2009.05.14 15:41:10 | 000,114,472 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2008.04.14 01:15:14 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Ovladač zvukové karty USB (WDM)
DRV - [2008.04.13 23:11:00 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\changer.sys -- (Changer)
DRV - [2008.04.13 23:10:28 | 000,034,688 | ---- | M] (Toshiba Corp.) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\lbrtfdc.sys -- (lbrtfdc)
DRV - [2007.01.25 15:18:04 | 001,305,600 | ---- | M] (C-Media Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\c6501.sys -- (cm102u32)
DRV - [2007.01.25 15:18:04 | 001,305,600 | ---- | M] (C-Media Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\c6501.sys -- (c65013264)
DRV - [2006.07.01 22:42:58 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006.06.07 23:08:56 | 001,580,544 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2006.01.13 15:00:52 | 000,015,872 | ---- | M] (Flint Incorporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\vd_filedisk.sys -- (VD_FileDisk)
DRV - [2004.08.13 04:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2004.05.02 10:47:08 | 000,023,040 | R--- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\GVCplDrv.sys -- (GVCplDrv)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1651790719-4201147004-1817147730-1138\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.cz/
IE - HKU\S-1-5-21-1651790719-4201147004-1817147730-1138\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = cs
IE - HKU\S-1-5-21-1651790719-4201147004-1817147730-1138\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 17 52 2E 2D AD EA CA 01 [binary data]
IE - HKU\S-1-5-21-1651790719-4201147004-1817147730-1138\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: ([2010.05.05 13:32:13 | 000,393,458 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.123topsearch.com
O1 - Hosts: 127.0.0.1 123topsearch.com
O1 - Hosts: 127.0.0.1 www.132.com
O1 - Hosts: 127.0.0.1 132.com
O1 - Hosts: 127.0.0.1 www.136136.net
O1 - Hosts: 127.0.0.1 136136.net
O1 - Hosts: 127.0.0.1 www.163ns.com
O1 - Hosts: 127.0.0.1 163ns.com
O1 - Hosts: 13589 more lines...
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (DIALux 3.1 ULDBrowserHelper Class) - {69AB812A-8CE4-4BF3-B49B-3B60A9F31FB2} - C:\Program Files\DIALux\DLXShellExtension.dll (DIAL GmbH, Germany)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (AcroIEToolbarHelper Class) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\S-1-5-21-1651790719-4201147004-1817147730-1138\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Acrobat Assistant 7.0] C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [Acronis Služba Plánovač2] C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
O4 - HKLM..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe (Acronis)
O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\cli.exe (ATI Technologies Inc.)
O4 - HKLM..\Run: [C6501Sound] File not found
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [Regedit32] C:\WINDOWS\system32\regedit.exe ()
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)
O4 - HKU\S-1-5-21-1651790719-4201147004-1817147730-1138..\Run: [Seznam Postak] C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Seznam.cz\postak.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Acrobat Speed Launcher.lnk = C:\WINDOWS\Installer\{AC76BA86-1033-C740-7760-100000000002}\SC_Acrobat.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWelcomeScreen = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1651790719-4201147004-1817147730-1138\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést cíl vazby do existujícího PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést do Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést do existujícího PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést výběr do Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést výběr do existujícího PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést vybrané vazby do Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést vybrané vazby do existujícího PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9 - Extra Button: Vytvořit mobilní oblíbenou položku - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Vytvořit mobilní oblíbenou položku… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.3.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = ehv-projekt.cz
O18 - Protocol\Handler\dialux {8352FA4C-39C6-11D3-ADBA-00A0244FB1A2} - C:\Program Files\DIALux\DLXToolBox.dll (DIAL GmbH, Germany)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\mctp {d7b95390-b1c5-11d0-b111-0080c712fe82} - C:\Program Files\Microsoft ActiveSync\aatp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: TaskMan - (C:\RECYCLER\S-1-5-21-2560505497-3135673451-148412697-0683\mgrls32.exe) - C:\RECYCLER\S-1-5-21-2560505497-3135673451-148412697-0683\mgrls32.exe ()
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\RailNotification: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.04.21 13:04:00 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (auto_reactivate C:\bootwiz\asrm.bin) - File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2010.04.21 13:03:28 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: SSHNAS - File not found

Drivers32: MSACM.CEGSM - C:\WINDOWS\System32\mobileV.acm ()
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: VIDC.ACDV - ACDV.dll File not found
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (9222804688854843392)

========== Files/Folders - Created Within 30 Days ==========

[2010.05.05 19:19:11 | 000,570,880 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\rhorsak\Plocha\OTL.exe
[2010.05.05 18:40:46 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010.05.05 18:40:45 | 000,000,000 | ---D | C] -- C:\rsit
[2010.05.05 14:49:34 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\rhorsak\Recent
[2010.05.05 13:35:09 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010.05.05 12:55:12 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2010.05.05 12:55:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
[2010.05.05 12:33:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel
[2010.05.05 11:26:28 | 000,095,024 | ---- | C] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2010.05.05 10:43:29 | 000,000,000 | ---D | C] -- C:\Program Files\Lavasoft
[2010.05.05 10:43:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Lavasoft
[2010.05.05 10:28:47 | 000,057,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wshcs.dll
[2010.05.05 10:28:47 | 000,057,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wshcs.dll
[2010.05.05 10:28:47 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmerrcsy.dll
[2010.05.05 10:28:47 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmerrcsy.dll
[2010.05.05 09:09:14 | 000,008,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\i2omgmt.sys
[2010.05.05 09:09:01 | 000,034,688 | ---- | C] (Toshiba Corp.) -- C:\WINDOWS\System32\drivers\lbrtfdc.sys
[2010.05.05 09:09:01 | 000,034,688 | ---- | C] (Toshiba Corp.) -- C:\WINDOWS\System32\dllcache\lbrtfdc.sys
[2010.05.05 09:08:51 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\Changer.sys.bak
[2010.05.05 09:08:51 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\changer.sys
[2010.05.05 09:08:51 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\changer.sys
[2010.05.05 09:03:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\ESET
[2010.05.04 08:20:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikaci
[2010.05.04 08:20:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Dokumenty\PdfGrabber
[2010.05.04 08:14:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Thinstall
[2010.05.04 08:14:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\Thinstall
[2010.05.03 07:51:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusb.dll
[2010.05.03 07:51:20 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusd.dll
[2010.04.30 07:01:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Dokumenty\My Scans
[2010.04.30 07:01:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Dokumenty\šablona_ehv_mail_soubory
[2010.04.29 16:19:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Dokumenty\DIALux
[2010.04.29 16:16:55 | 001,966,080 | ---- | C] (Amyuni Technologies
http://www.amyuni.com) -- C:\WINDOWS\System32\cdintf251.dll
[2010.04.29 16:16:50 | 003,833,856 | ---- | C] (Amyuni Technologies
http://www.amyuni.com) -- C:\WINDOWS\System32\cdintf300.dll
[2010.04.29 16:14:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\DIALux
[2010.04.29 16:14:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DIALux
[2010.04.29 16:14:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\DIALux
[2010.04.29 16:14:20 | 000,000,000 | ---D | C] -- C:\Program Files\DIALux
[2010.04.29 13:41:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Dokumenty\Moje naskenované obrázky
[2010.04.28 08:41:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ESET
[2010.04.27 14:48:23 | 000,000,000 | ---D | C] -- C:\TEMP
[2010.04.27 10:52:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\Artisteer
[2010.04.27 10:49:06 | 000,000,000 | ---D | C] -- C:\Program Files\Artisteer 2
[2010.04.27 09:30:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\XSxS
[2010.04.27 09:30:22 | 000,000,000 | ---D | C] -- C:\Program Files\Xenocode
[2010.04.27 09:30:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Xenocode
[2010.04.27 08:32:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\Ashampoo
[2010.04.27 08:31:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\ashampoo
[2010.04.27 08:31:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ashampoo
[2010.04.27 08:31:07 | 000,000,000 | ---D | C] -- C:\Program Files\Ashampoo
[2010.04.26 15:12:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\dvdcss
[2010.04.23 15:37:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\AdobeUM
[2010.04.23 15:36:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\FileOpen
[2010.04.23 15:36:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\FileOpen
[2010.04.23 07:31:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2010.04.23 07:15:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\HateML
[2010.04.23 07:03:56 | 000,000,000 | ---D | C] -- C:\Program Files\QIP Infium
[2010.04.23 06:36:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\ACD Systems
[2010.04.23 06:36:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\ACD Systems
[2010.04.23 06:36:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ACD Systems
[2010.04.23 06:35:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ACD Systems
[2010.04.23 06:35:53 | 000,000,000 | ---D | C] -- C:\Program Files\ACD Systems
[2010.04.23 06:34:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Downloaded Installations
[2010.04.22 13:42:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\TeamViewer
[2010.04.22 13:41:52 | 000,000,000 | ---D | C] -- C:\Program Files\TeamViewer
[2010.04.22 13:39:37 | 000,000,000 | ---D | C] -- C:\Program Files\DreamCom
[2010.04.22 11:04:52 | 000,156,928 | ---- | C] (Acronis) -- C:\WINDOWS\System32\drivers\snapman.sys
[2010.04.22 11:04:28 | 000,000,000 | ---D | C] -- C:\Program Files\Acronis
[2010.04.22 10:42:49 | 001,396,928 | ---- | C] (Acronis) -- C:\WINDOWS\System32\auto_reactivate.exe
[2010.04.22 10:42:42 | 000,000,000 | RHSD | C] -- C:\bootwiz
[2010.04.22 10:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\Acronis
[2010.04.22 09:57:05 | 000,902,592 | ---- | C] (Acronis) -- C:\WINDOWS\System32\drivers\tdrpm228.sys
[2010.04.22 09:57:01 | 000,570,016 | ---- | C] (Acronis) -- C:\WINDOWS\System32\drivers\timntr.sys
[2010.04.22 09:57:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Acronis
[2010.04.22 09:56:59 | 000,044,704 | ---- | C] (Acronis) -- C:\WINDOWS\System32\drivers\tifsfilt.sys
[2010.04.22 09:48:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Adobe
[2010.04.22 09:47:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\vlc
[2010.04.22 09:46:37 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2010.04.22 09:37:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Adobe
[2010.04.22 09:36:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010.04.22 09:36:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Adobe PDF
[2010.04.22 09:35:53 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010.04.22 09:23:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2010.04.22 09:16:13 | 000,000,000 | ---D | C] -- C:\Program Files\JDownloader
[2010.04.22 09:16:08 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2010.04.22 09:16:08 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010.04.22 09:16:08 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010.04.22 09:16:08 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010.04.22 09:16:08 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010.04.22 09:15:53 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010.04.22 09:13:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\Sun
[2010.04.22 09:07:35 | 000,902,432 | ---- | C] (Acronis) -- C:\WINDOWS\System32\drivers\tdrpm251.sys
[2010.04.22 09:07:04 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Acronis
[2010.04.22 08:41:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Canon
[2010.04.22 08:40:54 | 000,081,987 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\AUCPLMNT.DLL
[2010.04.22 08:38:34 | 000,000,000 | ---D | C] -- C:\Program Files\Canon
[2010.04.22 08:29:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\AIMP
[2010.04.22 08:28:20 | 000,000,000 | ---D | C] -- C:\Program Files\AIMP2
[2010.04.22 08:14:19 | 000,712,704 | ---- | C] (Sensaura Ltd) -- C:\WINDOWS\System32\c6501a3d.dll
[2010.04.22 08:14:19 | 000,032,768 | ---- | C] (C-Media Electronics Inc.) -- C:\WINDOWS\System32\c6501p.dll
[2010.04.22 08:14:17 | 005,783,552 | ---- | C] (C-Media Corporation) -- C:\WINDOWS\System\c6501.cpl
[2010.04.22 08:14:17 | 001,305,600 | ---- | C] (C-Media Inc) -- C:\WINDOWS\System32\drivers\c6501.sys
[2010.04.22 08:14:17 | 000,000,000 | ---D | C] -- C:\Program Files\C-Media 6501 Sound
[2010.04.22 08:05:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\WinRAR
[2010.04.22 08:05:20 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2010.04.22 07:24:24 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvuide.exe
[2010.04.22 07:24:04 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvusmb.exe
[2010.04.22 07:16:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\Skype
[2010.04.22 07:16:31 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2010.04.22 07:16:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Skype
[2010.04.22 07:14:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Seznam.cz
[2010.04.21 20:14:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\HP
[2010.04.21 20:13:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\HPSSUPPLY
[2010.04.21 20:12:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\HP
[2010.04.21 20:11:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2010.04.21 20:11:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2010.04.21 20:11:31 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2010.04.21 20:10:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Hewlett-Packard
[2010.04.21 20:09:58 | 000,118,272 | ---- | C] (Hewlett-Packard Company) -- C:\WINDOWS\System32\hpz3l58a.dll
[2010.04.21 20:09:19 | 000,007,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\serscan.sys
[2010.04.21 20:08:28 | 000,258,048 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpzids01.dll
[2010.04.21 20:08:26 | 000,892,928 | ---- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpwtiop2.dll
[2010.04.21 20:08:26 | 000,675,840 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpwwiax2.dll
[2010.04.21 20:08:26 | 000,364,544 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hppldcoi.dll
[2010.04.21 20:08:26 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll
[2010.04.21 20:08:26 | 000,294,912 | ---- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpovst11.dll
[2010.04.21 20:08:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\carrier
[2010.04.21 20:08:13 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2010.04.21 20:08:10 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbscan.sys.bak
[2010.04.21 20:08:10 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys
[2010.04.21 20:08:09 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbprint.sys
[2010.04.21 20:07:35 | 000,000,000 | -H-D | C] -- C:\Config.Msi
[2010.04.21 19:53:07 | 001,275,480 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\hpzshl01.exe
[2010.04.21 19:53:03 | 001,132,120 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\hpzmsi01.exe
[2010.04.21 19:50:11 | 000,000,000 | ---D | C] -- C:\Pošta
[2010.04.21 19:45:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\FLEXnet
[2010.04.21 19:37:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared
[2010.04.21 19:35:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Autodesk Shared
[2010.04.21 19:35:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Autodesk
[2010.04.21 19:35:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\Autodesk
[2010.04.21 19:35:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Autodesk
[2010.04.21 19:35:20 | 000,000,000 | ---D | C] -- C:\Program Files\AutoCAD 2010
[2010.04.21 19:33:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs
*kulma*
Nahoru
kulma
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 23 črc 2009 20:48
Kontaktovat uživatele:
Kontaktovat uživatele kulma

Re: Zavirované PC Rootkit.Kryptik.BB, Injector.BNJ a Otlard

#13 Příspěvek od kulma »

[2010.04.21 15:23:56 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dpcdll.dll.wga
[2010.04.21 15:23:56 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pidgen.dll.wga
[2010.04.21 14:55:40 | 000,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\aec.sys.bak
[2010.04.21 14:55:40 | 000,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys
[2010.04.21 14:55:39 | 000,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys
[2010.04.21 14:55:39 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\splitter.sys.bak
[2010.04.21 14:55:39 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys
[2010.04.21 14:55:38 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dmusic.sys.bak
[2010.04.21 14:55:38 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys
[2010.04.21 14:55:37 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys
[2010.04.21 14:55:36 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mspclock.sys.bak
[2010.04.21 14:55:36 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys
[2010.04.21 14:55:35 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmkaud.sys.bak
[2010.04.21 14:55:35 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys
[2010.04.21 14:55:34 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mspqm.sys.bak
[2010.04.21 14:55:34 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys
[2010.04.21 14:55:32 | 000,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys
[2010.04.21 14:55:12 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys
[2010.04.21 14:55:12 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys
[2010.04.21 14:55:12 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2010.04.21 14:55:12 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax
[2010.04.21 14:55:12 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2010.04.21 14:55:12 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys
[2010.04.21 14:55:12 | 000,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbaudio.sys
[2010.04.21 14:55:12 | 000,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys
[2010.04.21 14:55:12 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2010.04.21 14:55:12 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll
[2010.04.21 14:54:40 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\enum1394.sys
[2010.04.21 14:54:27 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll
[2010.04.21 14:53:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Hudba
[2010.04.21 14:53:40 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2010.04.21 14:53:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2010.04.21 14:53:38 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll
[2010.04.21 14:53:38 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll
[2010.04.21 14:53:37 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll
[2010.04.21 14:53:36 | 000,741,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.dll
[2010.04.21 14:53:36 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.cpl
[2010.04.21 14:53:36 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe
[2010.04.21 14:53:36 | 000,000,000 | R--D | C] -- C:\Program Files
[2010.04.21 14:53:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2010.04.21 14:53:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2010.04.21 14:53:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2010.04.21 14:53:28 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0408.dll
[2010.04.21 14:53:28 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt041f.dll
[2010.04.21 14:53:28 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0419.dll
[2010.04.21 14:53:26 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll
[2010.04.21 14:53:26 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll
[2010.04.21 14:53:26 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll
[2010.04.21 14:53:26 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll
[2010.04.21 14:53:26 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll
[2010.04.21 14:53:26 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll
[2010.04.21 14:53:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll
[2010.04.21 14:53:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll
[2010.04.21 14:53:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll
[2010.04.21 14:53:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll
[2010.04.21 14:53:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll
[2010.04.21 14:53:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll
[2010.04.21 14:53:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll
[2010.04.21 14:53:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll
[2010.04.21 14:53:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll
[2010.04.21 14:53:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll
[2010.04.21 14:53:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll
[2010.04.21 14:53:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll
[2010.04.21 14:53:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll
[2010.04.21 14:53:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll
[2010.04.21 14:53:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll
[2010.04.21 14:53:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll
[2010.04.21 14:53:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll
[2010.04.21 14:53:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll
[2010.04.21 14:53:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll
[2010.04.21 14:53:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll
[2010.04.21 14:53:23 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll
[2010.04.21 14:53:23 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll
[2010.04.21 14:53:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll
[2010.04.21 14:53:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll
[2010.04.21 14:53:22 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll
[2010.04.21 14:53:22 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll
[2010.04.21 14:53:22 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll
[2010.04.21 14:53:22 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll
[2010.04.21 14:53:22 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll
[2010.04.21 14:53:22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll
[2010.04.21 14:53:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll
[2010.04.21 14:53:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll
[2010.04.21 14:53:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll
[2010.04.21 14:53:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll
[2010.04.21 14:53:21 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll
[2010.04.21 14:53:21 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll
[2010.04.21 14:53:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll
[2010.04.21 14:53:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll
[2010.04.21 14:53:20 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll
[2010.04.21 14:53:20 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll
[2010.04.21 14:53:20 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll
[2010.04.21 14:53:20 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll
[2010.04.21 14:53:20 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll
[2010.04.21 14:53:20 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll
[2010.04.21 14:53:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll
[2010.04.21 14:53:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll
[2010.04.21 14:53:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll
[2010.04.21 14:53:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll
[2010.04.21 14:53:14 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll
[2010.04.21 14:53:14 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll
[2010.04.21 14:53:14 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll
[2010.04.21 14:53:14 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll
[2010.04.21 14:53:14 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll
[2010.04.21 14:53:14 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll
[2010.04.21 14:53:14 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll
[2010.04.21 14:53:14 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll
[2010.04.21 14:53:14 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll
[2010.04.21 14:53:14 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll
[2010.04.21 14:53:14 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll
[2010.04.21 14:53:14 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll
[2010.04.21 14:53:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll
[2010.04.21 14:53:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll
[2010.04.21 14:53:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll
[2010.04.21 14:53:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL
[2010.04.21 14:53:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll
[2010.04.21 14:53:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll
[2010.04.21 14:53:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll
[2010.04.21 14:53:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll
[2010.04.21 14:53:12 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040e.dll
[2010.04.21 14:53:12 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0415.dll
[2010.04.21 14:53:11 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll
[2010.04.21 14:53:11 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll
[2010.04.21 14:53:11 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll
[2010.04.21 14:53:11 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll
[2010.04.21 14:53:11 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll
[2010.04.21 14:53:11 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll
[2010.04.21 14:53:11 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2010.04.21 14:53:11 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2010.04.21 14:53:11 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0405.dll
[2010.04.21 14:53:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2010.04.21 14:53:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2010.04.21 14:53:10 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL
[2010.04.21 14:53:10 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL
[2010.04.21 14:53:10 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV
[2010.04.21 14:53:10 | 000,009,291 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL
[2010.04.21 14:53:10 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL
[2010.04.21 14:53:10 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV
[2010.04.21 14:53:10 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV
[2010.04.21 14:53:10 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV
[2010.04.21 14:53:10 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV
[2010.04.21 14:53:09 | 000,127,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL
[2010.04.21 14:53:09 | 000,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL
[2010.04.21 14:53:09 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL
[2010.04.21 14:53:09 | 000,073,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV
[2010.04.21 14:53:09 | 000,033,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL
[2010.04.21 14:53:09 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV
[2010.04.21 14:53:09 | 000,025,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV
[2010.04.21 14:53:09 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL
[2010.04.21 14:53:09 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV
[2010.04.21 14:53:09 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV
[2010.04.21 14:53:09 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK
[2010.04.21 14:53:08 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV
[2010.04.21 14:53:08 | 000,070,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL
[2010.04.21 14:53:08 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE
[2010.04.21 14:53:08 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe
[2010.04.21 14:53:08 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irenum.sys
[2010.04.21 14:53:08 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\batt.dll
[2010.04.21 14:53:08 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll
[2010.04.21 14:53:07 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll
[2010.04.21 14:53:07 | 000,069,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL
[2010.04.21 14:53:01 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Nabídka Start
[2010.04.21 14:53:01 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty
[2010.04.21 14:53:01 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Šablony
[2010.04.21 14:53:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Plocha
[2010.04.21 14:53:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Oblíbené položky
[2010.04.21 14:52:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2010.04.21 14:52:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2010.04.21 14:52:38 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Data aplikací\Microsoft
[2010.04.21 14:52:38 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Data aplikací
[2010.04.21 14:52:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2010.04.21 14:52:20 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010.04.21 14:51:34 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidserv.dll
[2010.04.21 14:51:29 | 000,014,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhid.sys
[2010.04.21 14:48:59 | 000,000,000 | --SD | C] -- C:\WINDOWS\Offline Web Pages
[2010.04.21 14:48:59 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2010.04.21 14:48:59 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2010.04.21 14:48:59 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2010.04.21 14:48:59 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2010.04.21 14:48:59 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cs-cz
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cs
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1029
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2010.04.21 14:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2010.04.21 14:16:41 | 000,030,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll
[2010.04.21 14:15:58 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2010.04.21 14:15:43 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2010.04.21 14:15:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2010.04.21 14:15:26 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2010.04.21 14:13:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Dokumenty\Downloads
[2010.04.21 14:13:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2010.04.21 14:13:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Microsoft Help
[2010.04.21 14:13:38 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010.04.21 14:13:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
[2010.04.21 14:13:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\Macromedia
[2010.04.21 14:13:25 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2010.04.21 14:05:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Temp
[2010.04.21 14:05:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Google
[2010.04.21 14:05:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Deployment
[2010.04.21 14:01:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2010.04.21 14:00:38 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2010.04.21 13:55:56 | 002,192,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2010.04.21 13:55:56 | 002,148,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2010.04.21 13:55:55 | 002,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2010.04.21 13:55:55 | 002,026,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2010.04.21 13:52:45 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2010.04.21 13:52:17 | 001,986,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2010.04.21 13:52:16 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2010.04.21 13:52:16 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2010.04.21 13:52:10 | 011,073,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2010.04.21 13:51:31 | 000,043,008 | ---- | C] (Advanced Micro Devices) -- C:\WINDOWS\System32\drivers\AmdK8.sys
[2010.04.21 13:51:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2010.04.21 13:51:30 | 000,000,000 | ---D | C] -- C:\Program Files\AMD
[2010.04.21 13:51:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\InstallShield
[2010.04.21 13:47:29 | 000,000,000 | RHSD | C] -- C:\RECYCLER
[2010.04.21 13:47:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\GHISLER
[2010.04.21 13:45:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\HEXelon
[2010.04.21 13:45:23 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2010.04.21 13:45:14 | 000,000,000 | ---D | C] -- C:\Program Files\TC UP
[2010.04.21 13:43:12 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iyuv_32.dll
[2010.04.21 13:43:12 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsbyuv.dll
[2010.04.21 13:42:11 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msyuv.dll
[2010.04.21 13:37:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\Adobe
[2010.04.21 13:37:19 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\rhorsak\IECompatCache
[2010.04.21 13:37:05 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\rhorsak\PrivacIE
[2010.04.21 13:36:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\ATI
[2010.04.21 13:36:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\ATI
[2010.04.21 13:36:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\Windows Desktop Search
[2010.04.21 13:36:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Identities
[2010.04.21 13:36:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\ApplicationHistory
[2010.04.21 13:35:44 | 000,077,899 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rapi.dll
[2010.04.21 13:35:44 | 000,065,615 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pmailext.dll
[2010.04.21 13:35:44 | 000,061,519 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MsgStRPC.dll
[2010.04.21 13:35:44 | 000,036,942 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ppcload.dll
[2010.04.21 13:35:44 | 000,024,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ceutil.dll
[2010.04.21 13:35:44 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft ActiveSync
[2010.04.21 13:35:43 | 000,327,168 | ---- | C] (InstallShield Software Corporation) -- C:\WINDOWS\IsUn0405.exe
[2010.04.21 13:35:39 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010.04.21 13:35:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2010.04.21 13:35:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\X9
[2010.04.21 13:35:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Data aplikací\Identities
[2010.04.21 13:35:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Windows Small Business Server
[2010.04.21 13:35:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\rhorsak\Dokumenty\Obrázky
[2010.04.21 13:35:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\rhorsak\Dokumenty\Hudba
[2010.04.21 13:35:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\Microsoft
[2010.04.21 13:35:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\rhorsak\Data aplikací\Microsoft
[2010.04.21 13:35:14 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\rhorsak\SendTo
[2010.04.21 13:35:14 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\rhorsak\Data aplikací
[2010.04.21 13:35:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\rhorsak\Oblíbené položky
[2010.04.21 13:35:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\rhorsak\Nabídka Start
[2010.04.21 13:35:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\rhorsak\Dokumenty
[2010.04.21 13:35:14 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\rhorsak\IETldCache
[2010.04.21 13:35:14 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\rhorsak\Cookies
[2010.04.21 13:35:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\rhorsak\Šablony
[2010.04.21 13:35:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\rhorsak\Okolní tiskárny
[2010.04.21 13:35:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\rhorsak\Okolní síť
[2010.04.21 13:35:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\rhorsak\Local Settings
[2010.04.21 13:35:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rhorsak\Plocha
[2010.04.21 13:35:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\SchCache
[2010.04.21 13:35:01 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC
[2010.04.21 13:27:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2010.04.21 13:25:08 | 000,307,200 | R--- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\atiiiexx.dll
[2010.04.21 13:24:45 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2010.04.21 13:20:33 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2010.04.21 13:20:20 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2010.04.21 13:17:01 | 000,026,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbstor.sys
[2010.04.21 13:13:26 | 000,712,704 | R--- | C] (Sensaura Ltd) -- C:\WINDOWS\System32\a3d.dll
[2010.04.21 13:13:26 | 000,712,704 | ---- | C] (Sensaura Ltd) -- C:\WINDOWS\System32\dllcache\a3d.dll
[2010.04.21 13:13:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2010.04.21 13:11:57 | 000,202,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\fdco1ins.dll
[2010.04.21 13:11:57 | 000,202,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\fdco1.dll
[2010.04.21 13:11:57 | 000,034,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\NVENETFD.sys
[2010.04.21 13:11:56 | 000,101,632 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvtcp.sys
[2010.04.21 13:11:55 | 000,301,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvnrm.sys
[2010.04.21 13:11:55 | 000,222,464 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvsnpu.sys
[2010.04.21 13:11:55 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvunrm.exe
[2010.04.21 13:11:55 | 000,034,304 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvconrm.dll
[2010.04.21 13:11:55 | 000,013,056 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvnetbus.sys
[2010.04.21 13:11:55 | 000,009,728 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\bdco1ins.dll
[2010.04.21 13:11:55 | 000,009,728 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\bdco1.dll
[2010.04.21 13:11:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\NV34083412.TMP
[2010.04.21 13:11:41 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVUNINST.EXE
[2010.04.21 13:11:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2010.04.21 13:09:36 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2010.04.21 13:08:49 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2010.04.21 13:08:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010.04.21 13:08:35 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Microsoft
[2010.04.21 13:08:35 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Data aplikací\Microsoft
[2010.04.21 13:07:31 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2010.04.21 13:07:30 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2010.04.21 13:07:30 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2010.04.21 13:07:30 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2010.04.21 13:07:30 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2010.04.21 13:07:30 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2010.04.21 13:07:29 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll
[2010.04.21 13:07:29 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2010.04.21 13:07:29 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2010.04.21 13:07:29 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll
[2010.04.21 13:07:28 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll
[2010.04.21 13:07:28 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll
[2010.04.21 13:07:28 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll
[2010.04.21 13:07:28 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2010.04.21 13:07:28 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll
[2010.04.21 13:07:28 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll
[2010.04.21 13:07:27 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2010.04.21 13:07:27 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2010.04.21 13:07:26 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll
[2010.04.21 13:07:26 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2010.04.21 13:07:26 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2010.04.21 13:07:26 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2010.04.21 13:07:25 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2010.04.21 13:07:25 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe
[2010.04.21 13:07:25 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2010.04.21 13:07:25 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe
[2010.04.21 13:07:25 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll
[2010.04.21 13:07:25 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2010.04.21 13:07:24 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2010.04.21 13:07:24 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2010.04.21 13:07:24 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2010.04.21 13:07:23 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2010.04.21 13:07:23 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll
[2010.04.21 13:07:23 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll
[2010.04.21 13:07:23 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll
[2010.04.21 13:07:23 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll
[2010.04.21 13:07:22 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2010.04.21 13:07:21 | 000,460,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll
[2010.04.21 13:07:21 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll
[2010.04.21 13:07:21 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll
[2010.04.21 13:07:21 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll
[2010.04.21 13:07:21 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll
[2010.04.21 13:07:21 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe
[2010.04.21 13:07:21 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll
[2010.04.21 13:07:21 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe
[2010.04.21 13:07:21 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll
[2010.04.21 13:07:21 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll
[2010.04.21 13:07:20 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe
[2010.04.21 13:07:20 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2010.04.21 13:07:20 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll
[2010.04.21 13:07:20 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll
[2010.04.21 13:07:20 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpapi.dll
[2010.04.21 13:07:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll
[2010.04.21 13:07:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll
[2010.04.21 13:07:19 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2010.04.21 13:07:19 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2010.04.21 13:07:19 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2010.04.21 13:07:19 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2010.04.21 13:07:19 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2010.04.21 13:07:19 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2010.04.21 13:07:19 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2010.04.21 13:07:19 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2010.04.21 13:07:19 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2010.04.21 13:07:19 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2010.04.21 13:07:19 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2010.04.21 13:07:19 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2010.04.21 13:07:18 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll
[2010.04.21 13:07:17 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seo.dll
[2010.04.21 13:07:17 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2010.04.21 13:07:17 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll
[2010.04.21 13:07:16 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2010.04.21 13:07:16 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2010.04.21 13:07:16 | 000,029,184 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2010.04.21 13:07:16 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll
[2010.04.21 13:07:16 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwnh.dll
[2010.04.21 13:07:16 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll
[2010.04.21 13:07:15 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2010.04.21 13:07:15 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2010.04.21 13:07:15 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2010.04.21 13:07:14 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2010.04.21 13:07:14 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys
[2010.04.21 13:07:14 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2010.04.21 13:07:14 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2010.04.21 13:07:13 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll
[2010.04.21 13:07:12 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2010.04.21 13:07:12 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2010.04.21 13:07:12 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2010.04.21 13:07:12 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2010.04.21 13:07:12 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2010.04.21 13:07:12 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2010.04.21 13:07:12 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2010.04.21 13:07:11 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2010.04.21 13:07:11 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2010.04.21 13:07:11 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll
[2010.04.21 13:07:11 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll
[2010.04.21 13:07:11 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2010.04.21 13:07:11 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2010.04.21 13:07:10 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2010.04.21 13:07:09 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll
[2010.04.21 13:07:09 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll
[2010.04.21 13:07:08 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2010.04.21 13:07:08 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll
[2010.04.21 13:07:07 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe
[2010.04.21 13:07:06 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiregmv.exe
[2010.04.21 13:07:05 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2010.04.21 13:07:05 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2010.04.21 13:07:01 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2010.04.21 13:07:01 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2010.04.21 13:07:01 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll
[2010.04.21 13:07:01 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll
[2010.04.21 13:07:01 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll
[2010.04.21 13:07:01 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe
[2010.04.21 13:07:00 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll
[2010.04.21 13:07:00 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll
[2010.04.21 13:07:00 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll
[2010.04.21 13:07:00 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll
[2010.04.21 13:07:00 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll
[2010.04.21 13:06:59 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2010.04.21 13:06:59 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll
[2010.04.21 13:06:58 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2010.04.21 13:06:58 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2010.04.21 13:06:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2010.04.21 13:06:58 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll
[2010.04.21 13:06:58 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll
[2010.04.21 13:06:58 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll
[2010.04.21 13:06:58 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2010.04.21 13:06:58 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll
[2010.04.21 13:06:58 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll
[2010.04.21 13:06:58 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll
[2010.04.21 13:06:58 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll
[2010.04.21 13:06:58 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll
[2010.04.21 13:06:57 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll
[2010.04.21 13:06:57 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll
[2010.04.21 13:06:57 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll
[2010.04.21 13:06:57 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll
[2010.04.21 13:06:57 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll
[2010.04.21 13:06:57 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll
[2010.04.21 13:06:57 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll
[2010.04.21 13:06:57 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll
[2010.04.21 13:06:57 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll
[2010.04.21 13:06:57 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll
[2010.04.21 13:06:57 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll
[2010.04.21 13:06:57 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll
[2010.04.21 13:06:56 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll
[2010.04.21 13:06:56 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll
[2010.04.21 13:06:56 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2010.04.21 13:06:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll
[2010.04.21 13:06:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll
[2010.04.21 13:06:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll
[2010.04.21 13:06:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll
[2010.04.21 13:06:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll
[2010.04.21 13:06:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll
[2010.04.21 13:06:56 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll
[2010.04.21 13:06:56 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll
[2010.04.21 13:06:56 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll
[2010.04.21 13:06:55 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll
[2010.04.21 13:06:55 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll
[2010.04.21 13:06:55 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2010.04.21 13:06:55 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll
[2010.04.21 13:06:55 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll
[2010.04.21 13:06:55 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll
[2010.04.21 13:06:54 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2010.04.21 13:06:54 | 000,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2010.04.21 13:06:54 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll
[2010.04.21 13:06:54 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe
[2010.04.21 13:06:54 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll
[2010.04.21 13:06:53 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe
[2010.04.21 13:06:53 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2010.04.21 13:06:53 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe
[2010.04.21 13:06:53 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe
[2010.04.21 13:06:53 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe
[2010.04.21 13:06:53 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe
[2010.04.21 13:06:53 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2010.04.21 13:06:53 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2010.04.21 13:06:53 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2010.04.21 13:06:52 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2010.04.21 13:06:52 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2010.04.21 13:06:52 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2010.04.21 13:06:52 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2010.04.21 13:06:52 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2010.04.21 13:06:52 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2010.04.21 13:06:52 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2010.04.21 13:06:52 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2010.04.21 13:06:51 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2010.04.21 13:06:51 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2010.04.21 13:06:51 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2010.04.21 13:06:51 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll
[2010.04.21 13:06:51 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll
[2010.04.21 13:06:51 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2010.04.21 13:06:51 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll
[2010.04.21 13:06:51 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll
[2010.04.21 13:06:51 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe
[2010.04.21 13:06:51 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll
[2010.04.21 13:06:50 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll
[2010.04.21 13:06:50 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll
[2010.04.21 13:06:48 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2010.04.21 13:06:46 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2010.04.21 13:06:45 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll
[2010.04.21 13:06:45 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll
[2010.04.21 13:06:45 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll
[2010.04.21 13:06:45 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll
*kulma*
Nahoru
kulma
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 23 črc 2009 20:48
Kontaktovat uživatele:
Kontaktovat uživatele kulma

Re: Zavirované PC Rootkit.Kryptik.BB, Injector.BNJ a Otlard

#14 Příspěvek od kulma »

[2010.04.21 13:06:44 | 000,400,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll
[2010.04.21 13:06:44 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll
[2010.04.21 13:06:44 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll
[2010.04.21 13:06:44 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2010.04.21 13:06:44 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll
[2010.04.21 13:06:43 | 000,562,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll
[2010.04.21 13:06:43 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll
[2010.04.21 13:06:43 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe
[2010.04.21 13:06:43 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll
[2010.04.21 13:06:43 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe
[2010.04.21 13:06:43 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll
[2010.04.21 13:06:43 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll
[2010.04.21 13:06:43 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll
[2010.04.21 13:06:43 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll
[2010.04.21 13:06:43 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll
[2010.04.21 13:06:43 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe
[2010.04.21 13:06:43 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll
[2010.04.21 13:06:43 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll
[2010.04.21 13:06:42 | 000,451,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll
[2010.04.21 13:06:42 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll
[2010.04.21 13:06:42 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe
[2010.04.21 13:06:42 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll
[2010.04.21 13:06:42 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll
[2010.04.21 13:06:42 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll
[2010.04.21 13:06:42 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll
[2010.04.21 13:06:42 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll
[2010.04.21 13:06:42 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll
[2010.04.21 13:06:42 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2010.04.21 13:06:41 | 000,618,605 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4autl.dll
[2010.04.21 13:06:41 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe
[2010.04.21 13:06:41 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll
[2010.04.21 13:06:41 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2010.04.21 13:06:40 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll
[2010.04.21 13:06:40 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe
[2010.04.21 13:06:40 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2010.04.21 13:06:40 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2010.04.21 13:06:40 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll
[2010.04.21 13:06:40 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2010.04.21 13:06:40 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2010.04.21 13:06:40 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe
[2010.04.21 13:06:40 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll
[2010.04.21 13:06:40 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll
[2010.04.21 13:06:39 | 000,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll
[2010.04.21 13:06:37 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2010.04.21 13:06:37 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe
[2010.04.21 13:06:36 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe
[2010.04.21 13:06:36 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll
[2010.04.21 13:06:36 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2010.04.21 13:06:35 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe
[2010.04.21 13:06:35 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe
[2010.04.21 13:06:35 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll
[2010.04.21 13:06:35 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll
[2010.04.21 13:06:34 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2010.04.21 13:06:34 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2010.04.21 13:06:34 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2010.04.21 13:06:34 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2010.04.21 13:06:34 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2010.04.21 13:06:34 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2010.04.21 13:06:33 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2010.04.21 13:06:33 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2010.04.21 13:06:33 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2010.04.21 13:06:33 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2010.04.21 13:06:33 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2010.04.21 13:06:32 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll
[2010.04.21 13:06:32 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2010.04.21 13:06:32 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2010.04.21 13:06:32 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2010.04.21 13:06:27 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll
[2010.04.21 13:06:26 | 000,372,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll
[2010.04.21 13:06:26 | 000,330,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll
[2010.04.21 13:06:26 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll
[2010.04.21 13:06:26 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll
[2010.04.21 13:06:26 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll
[2010.04.21 13:06:25 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll
[2010.04.21 13:06:25 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll
[2010.04.21 13:06:25 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll
[2010.04.21 13:06:25 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll
[2010.04.21 13:06:25 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll
[2010.04.21 13:06:25 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll
[2010.04.21 13:06:25 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll
[2010.04.21 13:06:25 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll
[2010.04.21 13:06:24 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll
[2010.04.21 13:06:24 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll
[2010.04.21 13:06:24 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll
[2010.04.21 13:06:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll
[2010.04.21 13:06:22 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll
[2010.04.21 13:06:21 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsnap.dll
[2010.04.21 13:06:21 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpadm.dll
[2010.04.21 13:06:21 | 000,032,827 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe
[2010.04.21 13:06:21 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll
[2010.04.21 13:06:21 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll
[2010.04.21 13:06:20 | 000,020,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.dll
[2010.04.21 13:06:20 | 000,016,437 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe
[2010.04.21 13:06:18 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx
[2010.04.21 13:06:18 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll
[2010.04.21 13:06:18 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll
[2010.04.21 13:06:18 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll
[2010.04.21 13:06:18 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe
[2010.04.21 13:06:17 | 000,834,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll
[2010.04.21 13:06:17 | 000,171,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll
[2010.04.21 13:06:17 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll
[2010.04.21 13:06:17 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll
[2010.04.21 13:06:17 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll
[2010.04.21 13:06:17 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe
[2010.04.21 13:06:17 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe
[2010.04.21 13:06:17 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll
[2010.04.21 13:06:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll
[2010.04.21 13:06:16 | 000,598,071 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmc.dll
[2010.04.21 13:06:16 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll
[2010.04.21 13:06:16 | 000,188,494 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe
[2010.04.21 13:06:16 | 000,109,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe
[2010.04.21 13:06:16 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpexedll.dll
[2010.04.21 13:06:16 | 000,020,538 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe
[2010.04.21 13:06:16 | 000,014,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe
[2010.04.21 13:06:15 | 000,876,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awel.dll
[2010.04.21 13:06:15 | 000,184,435 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4amsft.dll
[2010.04.21 13:06:15 | 000,147,513 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4apws.dll
[2010.04.21 13:06:15 | 000,102,509 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4atxt.dll
[2010.04.21 13:06:15 | 000,082,035 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4anscp.dll
[2010.04.21 13:06:15 | 000,049,212 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awebs.dll
[2010.04.21 13:06:15 | 000,049,210 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4areg.dll
[2010.04.21 13:06:15 | 000,041,020 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avnb.dll
[2010.04.21 13:06:15 | 000,032,826 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avss.dll
[2010.04.21 13:06:14 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx
[2010.04.21 13:06:14 | 000,188,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe
[2010.04.21 13:06:14 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx
[2010.04.21 13:06:14 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx
[2010.04.21 13:06:14 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll
[2010.04.21 13:06:14 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.dll
[2010.04.21 13:06:14 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe
[2010.04.21 13:06:13 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll
[2010.04.21 13:06:13 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll
[2010.04.21 13:06:13 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.dll
[2010.04.21 13:06:13 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe
[2010.04.21 13:06:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2010.04.21 13:06:12 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2010.04.21 13:06:12 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2010.04.21 13:05:40 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll
[2010.04.21 13:05:32 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Microsoft
[2010.04.21 13:05:32 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Data aplikací\Microsoft
[2010.04.21 13:05:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2010.04.21 13:05:21 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2010.04.21 13:05:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2010.04.21 13:05:17 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2010.04.21 13:05:12 | 000,017,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2010.04.21 13:05:10 | 000,150,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rgb9rast_2.dll
[2010.04.21 13:03:36 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll
[2010.04.21 13:03:09 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2010.04.21 13:02:55 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2010.04.21 13:02:52 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services
[2010.04.21 13:02:43 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2010.04.21 13:02:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2010.04.21 13:02:21 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe
[2010.04.21 13:02:21 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe
[2010.04.21 13:02:21 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brpinfo.dll
[2010.04.21 13:02:21 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atrace.dll
[2010.04.21 13:02:21 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll
[2010.04.21 13:02:21 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hcappres.dll
[2010.04.21 13:02:12 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe
[2010.04.21 13:02:12 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll
[2010.04.21 13:02:12 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmevtmsg.dll
[2010.04.21 13:02:11 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe
[2010.04.21 13:02:11 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe
[2010.04.21 13:02:11 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe
[2010.04.21 13:02:10 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\acctres.dll
[2010.04.21 13:02:10 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll
[2010.04.21 13:02:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2010.04.21 13:02:07 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe
[2010.04.21 13:02:07 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwres.dll
[2010.04.21 13:02:07 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trialoc.dll
[2010.04.21 13:02:07 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll
[2010.04.21 13:02:07 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icfgnt5.dll
[2010.04.21 13:02:07 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2010.04.21 13:02:06 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoap1.dll
[2010.04.21 13:02:06 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wisc10.dll
[2010.04.21 13:02:06 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoapr.dll
[2010.04.21 13:02:06 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe
[2010.04.21 13:02:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2010.04.21 13:02:05 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieinfo5.ocx
[2010.04.21 13:02:00 | 003,166,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msgr3en.dll
[2010.04.21 13:02:00 | 000,726,590 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchui.dll
[2010.04.21 13:02:00 | 000,058,434 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchctls.dll
[2010.04.21 13:01:59 | 000,759,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll
[2010.04.21 13:01:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2010.04.21 13:01:58 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll
[2010.04.21 13:01:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2010.04.21 13:01:57 | 001,674,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe
[2010.04.21 13:01:57 | 000,786,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe
[2010.04.21 13:01:57 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll
[2010.04.21 13:01:57 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll
[2010.04.21 13:01:57 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll
[2010.04.21 13:01:56 | 000,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll
[2010.04.21 13:01:56 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll
[2010.04.21 13:01:56 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe
[2010.04.21 13:01:56 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll
[2010.04.21 13:01:56 | 000,004,639 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe
[2010.04.21 13:01:55 | 001,929,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll
[2010.04.21 13:01:55 | 000,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll
[2010.04.21 13:01:55 | 000,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll
[2010.04.21 13:01:55 | 000,217,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl
[2010.04.21 13:01:55 | 000,209,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll
[2010.04.21 13:01:55 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll
[2010.04.21 13:01:55 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng1.dll
[2010.04.21 13:01:55 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe
[2010.04.21 13:01:55 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt1.exe
[2010.04.21 13:01:55 | 000,053,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe
[2010.04.21 13:01:55 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll
[2010.04.21 13:01:55 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll
[2010.04.21 13:01:55 | 000,022,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauserv.dll
[2010.04.21 13:01:54 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll
[2010.04.21 13:01:54 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll
[2010.04.21 13:01:54 | 000,408,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgr.dll
[2010.04.21 13:01:54 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll
[2010.04.21 13:01:54 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgrprxy.dll
[2010.04.21 13:01:54 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx2.dll
[2010.04.21 13:01:54 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll
[2010.04.21 13:01:54 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx4.dll
[2010.04.21 13:01:54 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2010.04.21 13:01:54 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx3.dll
[2010.04.21 13:01:54 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll
[2010.04.21 13:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2010.04.21 13:01:52 | 004,263,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res.dll
[2010.04.21 13:01:52 | 000,502,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxa.dll
[2010.04.21 13:01:52 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxb.dll
[2010.04.21 13:01:52 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res2.dll
[2010.04.21 13:01:52 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2eres.dll
[2010.04.21 13:01:51 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2010.04.21 13:01:51 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2filt.dll
[2010.04.21 13:01:51 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ae.dll
[2010.04.21 13:01:51 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ext.dll
[2010.04.21 13:01:51 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2010.04.21 13:01:36 | 000,565,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobmain.dll
[2010.04.21 13:01:36 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobcomm.dll
[2010.04.21 13:01:36 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oobebaln.exe
[2010.04.21 13:01:36 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobshel.dll
[2010.04.21 13:01:36 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoobe.exe
[2010.04.21 13:01:36 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobweb.dll
[2010.04.21 13:01:36 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobdl.dll
[2010.04.21 13:01:33 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uploadm.exe
[2010.04.21 13:01:33 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll
[2010.04.21 13:01:33 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrslv.dll
[2010.04.21 13:01:32 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchshell.dll
[2010.04.21 13:01:32 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll
[2010.04.21 13:01:32 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrcdlg.dll
[2010.04.21 13:01:32 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll
[2010.04.21 13:01:32 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\racpldlg.dll
[2010.04.21 13:01:32 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchsvc.dll
[2010.04.21 13:01:32 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll
[2010.04.21 13:01:32 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrdm.dll
[2010.04.21 13:01:31 | 000,171,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconfig.exe
[2010.04.21 13:01:30 | 000,769,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpctr.exe
[2010.04.21 13:01:30 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2010.04.21 13:01:30 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hscupd.exe
[2010.04.21 13:01:29 | 000,382,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rstrui.exe
[2010.04.21 13:01:29 | 000,129,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmgr.sys
[2010.04.21 13:01:29 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltMc.exe
[2010.04.21 13:01:29 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmc.exe
[2010.04.21 13:01:29 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltlib.dll
[2010.04.21 13:01:28 | 000,240,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll
[2010.04.21 13:01:28 | 000,240,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srrstr.dll
[2010.04.21 13:01:28 | 000,171,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srsvc.dll
[2010.04.21 13:01:28 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll
[2010.04.21 13:01:28 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ils.dll
[2010.04.21 13:01:28 | 000,073,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sr.sys
[2010.04.21 13:01:28 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srclient.dll
[2010.04.21 13:01:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2010.04.21 13:01:27 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmas.dll
[2010.04.21 13:01:27 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll
[2010.04.21 13:01:27 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconf.dll
[2010.04.21 13:01:27 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcap32.dll
[2010.04.21 13:01:27 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll
[2010.04.21 13:01:27 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmdd.dll
[2010.04.21 13:01:27 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmsrvc.exe
[2010.04.21 13:01:27 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll
[2010.04.21 13:01:27 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\isrdbg32.dll
[2010.04.21 13:01:27 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll
[2010.04.21 13:01:27 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmmkcert.dll
[2010.04.21 13:01:26 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\callcont.dll
[2010.04.21 13:01:26 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nac.dll
[2010.04.21 13:01:26 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rrcm.dll
[2010.04.21 13:01:26 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\h323cc.dll
[2010.04.21 13:01:26 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\confmrsl.dll
[2010.04.21 13:01:26 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmasnt.dll
[2010.04.21 13:01:25 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst120.dll
[2010.04.21 13:01:25 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmwb.dll
[2010.04.21 13:01:25 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmoldwb.dll
[2010.04.21 13:01:25 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmft.dll
[2010.04.21 13:01:25 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmchat.dll
[2010.04.21 13:01:25 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmcom.dll
[2010.04.21 13:01:25 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst123.dll
[2010.04.21 13:01:24 | 001,032,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\conf.exe
[2010.04.21 13:01:24 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll
[2010.04.21 13:01:24 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeacct.dll
[2010.04.21 13:01:24 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll
[2010.04.21 13:01:24 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoert2.dll
[2010.04.21 13:01:24 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2010.04.21 13:01:24 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2010.04.21 13:01:23 | 000,691,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll
[2010.04.21 13:01:23 | 000,510,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32.dll
[2010.04.21 13:01:23 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32res.dll
[2010.04.21 13:01:23 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\directdb.dll
[2010.04.21 13:01:23 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabimp.dll
[2010.04.21 13:01:23 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll
[2010.04.21 13:01:23 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetres.dll
[2010.04.21 13:01:23 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabfind.dll
[2010.04.21 13:01:23 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabmig.exe
[2010.04.21 13:01:22 | 002,481,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeres.dll
[2010.04.21 13:01:22 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oeimport.dll
[2010.04.21 13:01:22 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msimn.exe
[2010.04.21 13:01:21 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstask.dll
[2010.04.21 13:01:21 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schedsvc.dll
[2010.04.21 13:01:21 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup50.exe
[2010.04.21 13:01:21 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemig50.exe
[2010.04.21 13:01:21 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemiglib.dll
[2010.04.21 13:01:21 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe
[2010.04.21 13:01:21 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstinit.exe
[2010.04.21 13:01:21 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2010.04.21 13:01:20 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll
[2010.04.21 13:01:20 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcfg.dll
[2010.04.21 13:01:20 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll
[2010.04.21 13:01:20 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isign32.dll
[2010.04.21 13:01:20 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll
[2010.04.21 13:01:20 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdial.dll
[2010.04.21 13:01:20 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll
[2010.04.21 13:01:20 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwphbk.dll
[2010.04.21 13:01:19 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwhelp.dll
[2010.04.21 13:01:19 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn2.exe
[2010.04.21 13:01:19 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn.dll
[2010.04.21 13:01:19 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwutil.dll
[2010.04.21 13:01:19 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdl.dll
[2010.04.21 13:01:19 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwrmind.exe
[2010.04.21 13:01:19 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetwiz.exe
[2010.04.21 13:01:18 | 000,554,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dao360.dll
[2010.04.21 13:01:18 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sqlxmlx.dll
[2010.04.21 13:01:18 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn1.exe
[2010.04.21 13:01:18 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32r.dll
[2010.04.21 13:01:17 | 000,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32.dll
[2010.04.21 13:01:17 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasql.dll
[2010.04.21 13:01:17 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaora.dll
[2010.04.21 13:01:17 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaps.dll
[2010.04.21 13:01:17 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll
[2010.04.21 13:01:17 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatl3.dll
[2010.04.21 13:01:17 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaosp.dll
[2010.04.21 13:01:17 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxactps.dll
[2010.04.21 13:01:17 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatt.dll
[2010.04.21 13:01:17 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasqlr.dll
[2010.04.21 13:01:17 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaorar.dll
[2010.04.21 13:01:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaurl.dll
[2010.04.21 13:01:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasc.dll
[2010.04.21 13:01:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaer.dll
[2010.04.21 13:01:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaenum.dll
[2010.04.21 13:01:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdadc.dll
[2010.04.21 13:01:16 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll
[2010.04.21 13:01:16 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll
[2010.04.21 13:01:16 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll
[2010.04.21 13:01:16 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdarem.dll
[2010.04.21 13:01:16 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb
[2010.04.21 13:01:16 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb
[2010.04.21 13:01:16 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb
[2010.04.21 13:01:16 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb
[2010.04.21 13:01:16 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb
[2010.04.21 13:01:16 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadrh15.dll
[2010.04.21 13:01:16 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msador15.dll
[2010.04.21 13:01:16 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msader15.dll
[2010.04.21 13:01:16 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaremr.dll
[2010.04.21 13:01:15 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2010.04.21 13:01:15 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprst.dll
[2010.04.21 13:01:15 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadds.dll
[2010.04.21 13:01:15 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll
[2010.04.21 13:01:15 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcf.dll
[2010.04.21 13:01:15 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcs.dll
[2010.04.21 13:01:15 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdfmap.dll
[2010.04.21 13:01:15 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaddsr.dll
[2010.04.21 13:01:15 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcer.dll
[2010.04.21 13:01:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprsr.dll
[2010.04.21 13:01:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcor.dll
[2010.04.21 13:01:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcfr.dll
[2010.04.21 13:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2010.04.21 13:01:14 | 000,638,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe
[2010.04.21 13:01:14 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hmmapi.dll
[2010.04.21 13:01:14 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedw.exe
[2010.04.21 13:01:11 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Obrázky
[2010.04.21 13:00:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
[2010.04.21 13:00:25 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2010.04.21 13:00:17 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2010.04.21 13:00:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2010.04.21 13:00:07 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2010.04.21 13:00:02 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2010.04.21 13:00:02 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2010.04.21 13:00:02 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2010.04.21 13:00:02 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2010.04.21 13:00:02 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2010.04.21 13:00:01 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2010.04.21 12:59:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\BitLockerDiscoveryVolumeContents
[2010.04.21 12:59:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRM
[2010.04.21 12:59:52 | 000,969,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\WgaTray.exe
[2010.04.21 12:59:52 | 000,265,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wgaLogon.dll
[2010.04.21 12:59:51 | 001,112,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WdfCoInstaller01007.dll
[2010.04.21 12:59:51 | 000,969,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WgaTray.exe
[2010.04.21 12:59:50 | 000,922,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imapi2fs.dll
[2010.04.21 12:59:50 | 000,426,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imapi2.dll
[2010.04.21 12:59:50 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\UMDF\wudfusbcciddriver.dll
[2010.04.21 12:59:49 | 000,922,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imapi2fs.dll
[2010.04.21 12:59:49 | 000,426,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imapi2.dll
[2010.04.21 12:59:49 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncDMS.dll
[2010.04.21 12:59:49 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncNE.dll
[2010.04.21 12:59:48 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\oeph.dll
[2010.04.21 12:59:48 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncPH.dll
[2010.04.21 12:59:48 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\oephRes.dll
[2010.04.21 12:59:48 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncRes.dll
[2010.04.21 12:59:43 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Search
[2010.04.21 12:59:42 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tquery.dll.mui
[2010.04.21 12:59:42 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\propsys.dll.mui
[2010.04.21 12:59:42 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srchadmin.dll.mui
[2010.04.21 12:59:42 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssph.dll.mui
[2010.04.21 12:59:42 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssrch.dll.mui
[2010.04.21 12:59:42 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssphtb.dll.mui
[2010.04.21 12:59:41 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srchadmin.dll
[2010.04.21 12:59:41 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xmlfilter.dll
[2010.04.21 12:59:41 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rtffilt.dll
[2010.04.21 12:59:41 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\searchindexer.exe.mui
[2010.04.21 12:59:40 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshsq.dll
[2010.04.21 12:59:40 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshooks.dll
[2010.04.21 12:59:39 | 001,589,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tquery.dll
[2010.04.21 12:59:39 | 001,418,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssrch.dll
[2010.04.21 12:59:39 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\propdefs.dll
[2010.04.21 12:59:39 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msstrc.dll
[2010.04.21 12:59:39 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msscb.dll
[2010.04.21 12:59:39 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssprxy.dll
[2010.04.21 12:59:38 | 000,350,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssph.dll
[2010.04.21 12:59:38 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssphtb.dll
[2010.04.21 12:59:38 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssitlb.dll
[2010.04.21 12:59:38 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msscntrs.dll
[2010.04.21 12:59:37 | 000,088,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml4r.dll
[2010.04.21 12:59:36 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2010.04.21 12:59:29 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_3.dll
[2010.04.21 12:59:29 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_2.dll
[2010.04.21 12:59:29 | 000,061,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput9_1_0.dll
[2010.04.21 12:59:28 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_4.dll
[2010.04.21 12:59:28 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_5.dll
[2010.04.21 12:59:28 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_3.dll
[2010.04.21 12:59:28 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_2.dll
[2010.04.21 12:59:28 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_1.dll
[2010.04.21 12:59:28 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_1.dll
[2010.04.21 12:59:27 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_0.dll
[2010.04.21 12:59:27 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_5.dll
[2010.04.21 12:59:27 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_2.dll
[2010.04.21 12:59:27 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_3.dll
[2010.04.21 12:59:27 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_4.dll
[2010.04.21 12:59:27 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_2.dll
[2010.04.21 12:59:27 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_3.dll
[2010.04.21 12:59:27 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_1.dll
[2010.04.21 12:59:27 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_0.dll
[2010.04.21 12:59:26 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_10.dll
[2010.04.21 12:59:26 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_9.dll
[2010.04.21 12:59:26 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_8.dll
[2010.04.21 12:59:26 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_7.dll
[2010.04.21 12:59:26 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_6.dll
[2010.04.21 12:59:26 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_5.dll
[2010.04.21 12:59:26 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_1.dll
[2010.04.21 12:59:26 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_0.dll
[2010.04.21 12:59:26 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_4.dll
[2010.04.21 12:59:26 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_3.dll
[2010.04.21 12:59:26 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_2.dll
[2010.04.21 12:59:26 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_1.dll
[2010.04.21 12:59:25 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_42.dll
[2010.04.21 12:59:25 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_0.dll
[2010.04.21 12:59:25 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_4.dll
[2010.04.21 12:59:25 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_3.dll
[2010.04.21 12:59:25 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_5.dll
[2010.04.21 12:59:25 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_6.dll
[2010.04.21 12:59:25 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_2.dll
[2010.04.21 12:59:25 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_1.dll
[2010.04.21 12:59:25 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_0.dll
[2010.04.21 12:59:24 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_41.dll
[2010.04.21 12:59:23 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_40.dll
[2010.04.21 12:59:23 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_39.dll
[2010.04.21 12:59:22 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_38.dll
[2010.04.21 12:59:22 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_37.dll
[2010.04.21 12:59:21 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_36.dll
[2010.04.21 12:59:21 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_35.dll
[2010.04.21 12:59:20 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_34.dll
[2010.04.21 12:59:20 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_33.dll
[2010.04.21 12:59:19 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_32.dll
[2010.04.21 12:59:19 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_31.dll
[2010.04.21 12:59:19 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll
[2010.04.21 12:59:18 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_29.dll
[2010.04.21 12:59:18 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll
[2010.04.21 12:59:18 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_27.dll
[2010.04.21 12:59:17 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_25.dll
[2010.04.21 12:59:17 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_26.dll
[2010.04.21 12:59:16 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_24.dll
[2010.04.21 12:59:16 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_39.dll
[2010.04.21 12:59:16 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_38.dll
[2010.04.21 12:59:16 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_37.dll
[2010.04.21 12:59:16 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_42.dll
[2010.04.21 12:59:16 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_41.dll
[2010.04.21 12:59:16 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_40.dll
[2010.04.21 12:59:16 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_36.dll
[2010.04.21 12:59:16 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_42.dll
[2010.04.21 12:59:15 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_35.dll
[2010.04.21 12:59:15 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_34.dll
[2010.04.21 12:59:15 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_33.dll
[2010.04.21 12:59:13 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_42.dll
[2010.04.21 12:59:13 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_42.dll
[2010.04.21 12:59:12 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_40.dll
[2010.04.21 12:59:12 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_41.dll
[2010.04.21 12:59:11 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_39.dll
[2010.04.21 12:59:11 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_38.dll
[2010.04.21 12:59:11 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_37.dll
[2010.04.21 12:59:10 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_36.dll
[2010.04.21 12:59:10 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_35.dll
[2010.04.21 12:59:10 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_34.dll
[2010.04.21 12:59:10 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_33.dll
[2010.04.21 12:59:01 | 000,274,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2010.04.21 12:59:01 | 000,145,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MicrosoftUpdateCatalogWebControl.dll
[2010.04.21 12:59:01 | 000,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2010.04.21 12:59:01 | 000,017,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2010.04.21 12:59:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2010.04.21 12:59:01 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2010.04.21 12:59:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2010.04.21 12:58:57 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pwrshplugin.dll
[2010.04.21 12:58:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\WindowsPowerShell
[2010.04.21 12:58:43 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wevtfwd.dll
[2010.04.21 12:58:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\winrm
[2010.04.21 12:58:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\GroupPolicy
[2010.04.21 12:58:42 | 000,233,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winrscmd.dll
[2010.04.21 12:58:42 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wsmanhttpconfig.exe
[2010.04.21 12:58:42 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winrs.exe
[2010.04.21 12:58:42 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winrmprov.dll
[2010.04.21 12:58:42 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winrshost.exe
[2010.04.21 12:58:42 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wsmprovhost.exe
[2010.04.21 12:58:42 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wsmplpxy.dll
[2010.04.21 12:58:42 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winrssrv.dll
[2010.04.21 12:58:42 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winrsmgr.dll
[2010.04.21 12:58:41 | 000,363,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WsmRes.dll
[2010.04.21 12:58:41 | 000,209,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WsmWmiPl.dll
[2010.04.21 12:58:41 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WsmAuto.dll
[2010.04.21 12:58:33 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netfxperf.dll
[2010.04.21 12:58:31 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2010.04.21 12:58:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2010.04.21 12:58:20 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
*kulma*
Nahoru
kulma
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 23 črc 2009 20:48
Kontaktovat uživatele:
Kontaktovat uživatele kulma

Re: Zavirované PC Rootkit.Kryptik.BB, Injector.BNJ a Otlard

#15 Příspěvek od kulma »

[2010.04.21 12:58:19 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll
[2010.04.21 12:58:19 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll
[2010.04.21 12:58:19 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe
[2010.04.21 12:58:18 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll
[2010.04.21 12:58:18 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll
[2010.04.21 12:58:18 | 000,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll
[2010.04.21 12:58:18 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll
[2010.04.21 12:58:18 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll
[2010.04.21 12:58:18 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll
[2010.04.21 12:58:18 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll
[2010.04.21 12:58:18 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe
[2010.04.21 12:58:18 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe
[2010.04.21 12:58:18 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe
[2010.04.21 12:58:18 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe
[2010.04.21 12:58:18 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll
[2010.04.21 12:58:17 | 001,040,467 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll
[2010.04.21 12:58:17 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll
[2010.04.21 12:58:17 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll
[2010.04.21 12:58:17 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll
[2010.04.21 12:58:17 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll
[2010.04.21 12:58:16 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll
[2010.04.21 12:58:16 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll
[2010.04.21 12:58:16 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe
[2010.04.21 12:58:16 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll
[2010.04.21 12:58:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe
[2010.04.21 12:58:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe
[2010.04.21 12:58:16 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2010.04.21 12:58:06 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe
[2010.04.21 12:58:06 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe
[2010.04.21 12:58:06 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll
[2010.04.21 12:58:06 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll
[2010.04.21 12:58:05 | 000,228,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll
[2010.04.21 12:58:05 | 000,228,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll
[2010.04.21 12:58:05 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll
[2010.04.21 12:58:05 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll
[2010.04.21 12:58:05 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe
[2010.04.21 12:58:05 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe
[2010.04.21 12:58:05 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll
[2010.04.21 12:58:05 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll
[2010.04.21 12:57:58 | 000,670,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll
[2010.04.21 12:57:58 | 000,670,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll
[2010.04.21 12:57:57 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe
[2010.04.21 12:57:57 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe
[2010.04.21 12:57:57 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe
[2010.04.21 12:57:57 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe
[2010.04.21 12:57:57 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe
[2010.04.21 12:57:57 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe
[2010.04.21 12:57:56 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe
[2010.04.21 12:57:56 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe
[2010.04.21 12:57:56 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe
[2010.04.21 12:57:56 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe
[2010.04.21 12:57:56 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe
[2010.04.21 12:57:56 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe
[2010.04.21 12:57:55 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpshell.exe
[2010.04.21 12:57:55 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpinit.exe
[2010.04.21 12:57:55 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tspubwmi.dll
[2010.04.21 12:57:55 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winlogonnotification.dll
[2010.04.21 12:57:54 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wksprt.exe
[2010.04.21 12:57:54 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tswbprxy.exe
[2010.04.21 12:57:54 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MsRdpWebAccess.dll
[2010.04.21 12:57:54 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wksprtps.dll
[2010.04.21 12:57:54 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe
[2010.04.21 12:57:54 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe
[2010.04.21 12:57:53 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe
[2010.04.21 12:57:53 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe
[2010.04.21 12:57:53 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe
[2010.04.21 12:57:53 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe
[2010.04.21 12:57:53 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe
[2010.04.21 12:57:53 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe
[2010.04.21 12:57:53 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe
[2010.04.21 12:57:53 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe
[2010.04.21 12:57:53 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe
[2010.04.21 12:57:53 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe
[2010.04.21 12:57:53 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe
[2010.04.21 12:57:53 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe
[2010.04.21 12:57:53 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe
[2010.04.21 12:57:53 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe
[2010.04.21 12:57:53 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe
[2010.04.21 12:57:53 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe
[2010.04.21 12:57:53 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe
[2010.04.21 12:57:53 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe
[2010.04.21 12:57:53 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe
[2010.04.21 12:57:53 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe
[2010.04.21 12:57:53 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe
[2010.04.21 12:57:53 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe
[2010.04.21 12:57:53 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll
[2010.04.21 12:57:53 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll
[2010.04.21 12:57:52 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb
[2010.04.21 12:57:52 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll
[2010.04.21 12:57:52 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll
[2010.04.21 12:57:51 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll
[2010.04.21 12:57:48 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll
[2010.04.21 12:57:48 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll
[2010.04.21 12:57:48 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb
[2010.04.21 12:57:48 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll
[2010.04.21 12:57:48 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb
[2010.04.21 12:57:48 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll
[2010.04.21 12:57:48 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe
[2010.04.21 12:57:48 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll
[2010.04.21 12:57:47 | 000,299,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll
[2010.04.21 12:57:47 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll
[2010.04.21 12:57:47 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll
[2010.04.21 12:57:47 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll
[2010.04.21 12:57:47 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll
[2010.04.21 12:57:47 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll
[2010.04.21 12:57:47 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll
[2010.04.21 12:57:47 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe
[2010.04.21 12:57:46 | 000,282,112 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe
[2010.04.21 12:57:45 | 000,543,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dialer.exe
[2010.04.21 12:57:45 | 000,351,232 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll
[2010.04.21 12:57:45 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\accwiz.exe
[2010.04.21 12:57:45 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe
[2010.04.21 12:57:45 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe
[2010.04.21 12:57:45 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndrec32.exe
[2010.04.21 12:57:45 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe
[2010.04.21 12:57:45 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe
[2010.04.21 12:57:45 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\access.cpl
[2010.04.21 12:57:45 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl
[2010.04.21 12:57:44 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe
[2010.04.21 12:57:44 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spider.exe
[2010.04.21 12:57:44 | 000,343,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe
[2010.04.21 12:57:44 | 000,343,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe
[2010.04.21 12:57:44 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clipbrd.exe
[2010.04.21 12:57:44 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe
[2010.04.21 12:57:44 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2010.04.21 12:57:43 | 000,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys
[2010.04.21 12:57:43 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll
[2010.04.21 12:57:43 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscfgwmi.dll
[2010.04.21 12:57:43 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2010.04.21 12:57:43 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsgqec.dll
[2010.04.21 12:57:43 | 000,022,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdtcp.sys
[2010.04.21 12:57:43 | 000,012,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdpipe.sys
[2010.04.21 12:57:42 | 002,689,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll
[2010.04.21 12:57:42 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2010.04.21 12:57:42 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rhttpaa.dll
[2010.04.21 12:57:42 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aaclient.dll
[2010.04.21 12:57:42 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2010.04.21 12:57:41 | 001,033,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe
[2010.04.21 12:57:41 | 000,297,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\termsrv.dll
[2010.04.21 12:57:41 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll
[2010.04.21 12:57:41 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdchost.dll
[2010.04.21 12:57:41 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sessmgr.exe
[2010.04.21 12:57:41 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll
[2010.04.21 12:57:41 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwsx.dll
[2010.04.21 12:57:41 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe
[2010.04.21 12:57:41 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdshost.exe
[2010.04.21 12:57:41 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\remotepg.dll
[2010.04.21 12:57:41 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll
[2010.04.21 12:57:41 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpsnd.dll
[2010.04.21 12:57:41 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe
[2010.04.21 12:57:41 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdsaddin.exe
[2010.04.21 12:57:40 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll
[2010.04.21 12:57:40 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcprx.dll
[2010.04.21 12:57:40 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll
[2010.04.21 12:57:40 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll
[2010.04.21 12:57:40 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll
[2010.04.21 12:57:40 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll
[2010.04.21 12:57:40 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe
[2010.04.21 12:57:40 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpclip.exe
[2010.04.21 12:57:40 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgbkend.dll
[2010.04.21 12:57:40 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll
[2010.04.21 12:57:40 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe
[2010.04.21 12:57:40 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qprocess.exe
[2010.04.21 12:57:40 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll
[2010.04.21 12:57:40 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icaapi.dll
[2010.04.21 12:57:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2010.04.21 12:57:39 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll
[2010.04.21 12:57:39 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll
[2010.04.21 12:57:39 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll
[2010.04.21 12:57:39 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll
[2010.04.21 12:57:39 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll
[2010.04.21 12:57:39 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xolehlp.dll
[2010.04.21 12:57:39 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtc.exe
[2010.04.21 12:57:38 | 000,195,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comadmin.dll
[2010.04.21 12:57:38 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.dll
[2010.04.21 12:57:38 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll
[2010.04.21 12:57:38 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\colbact.dll
[2010.04.21 12:57:38 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll
[2010.04.21 12:57:38 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll
[2010.04.21 12:57:38 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxlegih.dll
[2010.04.21 12:57:38 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll
[2010.04.21 12:57:38 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxdm.dll
[2010.04.21 12:57:38 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comaddin.dll
[2010.04.21 12:57:38 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll
[2010.04.21 12:57:38 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.exe
[2010.04.21 12:57:38 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcomcnfg.exe
[2010.04.21 12:57:38 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe
[2010.04.21 12:57:38 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrereg.exe
[2010.04.21 12:57:38 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll
[2010.04.21 12:57:38 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxex.dll
[2010.04.21 12:57:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2010.04.21 12:57:37 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvut.dll
[2010.04.21 12:57:37 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll
[2010.04.21 12:57:37 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrv.dll
[2010.04.21 12:57:37 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll
[2010.04.21 12:57:37 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatex.dll
[2010.04.21 12:57:37 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll
[2010.04.21 12:57:37 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvps.dll
[2010.04.21 12:57:37 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll
[2010.04.21 12:57:37 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll
[2010.04.21 12:57:37 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stclient.dll
[2010.04.21 12:57:36 | 001,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsvcs.dll
[2010.04.21 12:57:36 | 001,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll
[2010.04.21 12:57:36 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comuid.dll
[2010.04.21 12:57:36 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll
[2010.04.21 12:57:36 | 000,498,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatq.dll
[2010.04.21 12:57:36 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsnap.dll
[2010.04.21 12:57:36 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll
[2010.04.21 12:57:34 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipcima.dll
[2010.04.21 12:57:34 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmisvc.dll
[2010.04.21 12:57:34 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprov.dll
[2010.04.21 12:57:34 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipdskq.dll
[2010.04.21 12:57:34 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiutils.dll
[2010.04.21 12:57:34 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipjobj.dll
[2010.04.21 12:57:34 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipiprt.dll
[2010.04.21 12:57:34 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipsess.dll
[2010.04.21 12:57:33 | 000,531,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcore.dll
[2010.04.21 12:57:33 | 000,361,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmic.exe
[2010.04.21 12:57:33 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemess.dll
[2010.04.21 12:57:33 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcomn.dll
[2010.04.21 12:57:33 | 000,198,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcntl.dll
[2010.04.21 12:57:33 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemupgd.dll
[2010.04.21 12:57:33 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiadap.exe
[2010.04.21 12:57:33 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.dll
[2010.04.21 12:57:33 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmidcprv.dll
[2010.04.21 12:57:33 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viewprov.dll
[2010.04.21 12:57:33 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapsrv.exe
[2010.04.21 12:57:33 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemtest.exe
[2010.04.21 12:57:33 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiaprpl.dll
[2010.04.21 12:57:33 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcons.dll
[2010.04.21 12:57:33 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmicookr.dll
[2010.04.21 12:57:33 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemsvc.dll
[2010.04.21 12:57:33 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemprox.dll
[2010.04.21 12:57:33 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapres.dll
[2010.04.21 12:57:32 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\provthrd.dll
[2010.04.21 12:57:32 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntevt.dll
[2010.04.21 12:57:32 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\repdrvfs.dll
[2010.04.21 12:57:32 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\policman.dll
[2010.04.21 12:57:32 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stdprov.dll
[2010.04.21 12:57:32 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ncprov.dll
[2010.04.21 12:57:32 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrcons.exe
[2010.04.21 12:57:31 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\esscli.dll
[2010.04.21 12:57:31 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\framedyn.dll
[2010.04.21 12:57:31 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofd.dll
[2010.04.21 12:57:31 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\krnlprov.dll
[2010.04.21 12:57:31 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofcomp.exe
[2010.04.21 12:57:30 | 001,358,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cimwin32.dll
[2010.04.21 12:57:30 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll
[2010.04.21 12:57:30 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licwmi.dll
[2010.04.21 12:57:30 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll
[2010.04.21 12:57:30 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\servdeps.dll
[2010.04.21 12:57:30 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll
[2010.04.21 12:57:30 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mmfutil.dll
[2010.04.21 12:57:29 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmprops.dll
[2010.04.21 12:57:29 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll
[2010.04.21 12:57:25 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdrom.sys
[2 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010.05.05 19:25:00 | 000,000,290 | -H-- | M] () -- C:\WINDOWS\tasks\{8C3FDD81-7AE0-4605-A46A-2488B179F2A3}.job
[2010.05.05 19:24:02 | 000,000,480 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{6CD4EB02-F798-4B09-9389-69E4B92B2FA7}.job
[2010.05.05 19:22:21 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\rhorsak\Plocha\OTL.exe
[2010.05.05 19:10:02 | 000,001,034 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1651790719-4201147004-1817147730-1138UA.job
[2010.05.05 18:37:43 | 000,781,909 | ---- | M] () -- C:\Documents and Settings\rhorsak\Plocha\RSIT.exe
[2010.05.05 15:16:03 | 000,000,001 | ---- | M] () -- C:\Documents and Settings\rhorsak\oashdihasidhasuidhiasdhiashdiuasdhasd
[2010.05.05 15:14:06 | 000,002,335 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Acrobat Speed Launcher.lnk
[2010.05.05 15:13:46 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.05.05 15:13:10 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.05.05 15:13:07 | 000,000,316 | -HS- | M] () -- C:\WINDOWS\tasks\LKHLKOTX.job
[2010.05.05 15:12:56 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.05.05 15:11:33 | 007,864,320 | -H-- | M] () -- C:\Documents and Settings\rhorsak\NTUSER.DAT
[2010.05.05 15:11:33 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\rhorsak\ntuser.ini
[2010.05.05 14:50:09 | 000,182,784 | ---- | M] () -- C:\WINDOWS\System32\regedit.exe
[2010.05.05 14:10:00 | 000,000,982 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1651790719-4201147004-1817147730-1138Core.job
[2010.05.05 13:46:45 | 004,814,278 | -H-- | M] () -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\IconCache.db
[2010.05.05 13:39:50 | 000,000,470 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{2B4E2C57-8533-46BC-BE6D-BD765062400A}.job
[2010.05.05 13:36:40 | 000,068,278 | ---- | M] () -- C:\Documents and Settings\rhorsak\Dokumenty\cc_20100505_133634.reg
[2010.05.05 13:35:09 | 000,001,548 | ---- | M] () -- C:\Documents and Settings\rhorsak\Plocha\CCleaner.lnk
[2010.05.05 13:32:13 | 000,393,458 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010.05.05 13:22:13 | 000,002,577 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\ACDSee Pro 3.lnk
[2010.05.05 13:20:39 | 000,032,944 | ---- | M] () -- C:\Documents and Settings\rhorsak\Plocha\Cestovní příkaz 30.5.2010.xlsx
[2010.05.05 13:03:11 | 000,249,881 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100505-133213.backup
[2010.05.05 13:02:18 | 000,249,881 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100505-130310.backup
[2010.05.05 12:31:12 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2010.05.05 11:26:19 | 000,095,024 | ---- | M] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2010.05.05 09:49:04 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2010.05.05 09:24:10 | 000,000,736 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100505-130218.backup
[2010.05.05 09:06:14 | 000,115,200 | RHS- | M] () -- C:\WINDOWS\System32\axaltocms.dll
[2010.05.03 07:55:59 | 000,003,584 | ---- | M] () -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.04.30 09:04:29 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010.04.30 08:37:35 | 000,000,095 | ---- | M] () -- C:\WINDOWS\Dialux.ini
[2010.04.29 16:17:00 | 000,001,526 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\DIALux 4.7 Light.lnk
[2010.04.29 16:17:00 | 000,001,512 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\DIALux 4.7.lnk
[2010.04.29 13:43:08 | 001,766,631 | ---- | M] () -- C:\Documents and Settings\rhorsak\Dokumenty\Kutnohorská.pdf
[2010.04.29 13:42:42 | 001,882,088 | ---- | M] () -- C:\Documents and Settings\rhorsak\Dokumenty\Křížová.pdf
[2010.04.29 08:14:40 | 000,002,273 | ---- | M] () -- C:\Documents and Settings\rhorsak\Plocha\Google Chrome.lnk
[2010.04.28 06:38:46 | 000,002,521 | ---- | M] () -- C:\Documents and Settings\rhorsak\Plocha\Microsoft Office Outlook 2007.lnk
[2010.04.27 08:31:17 | 000,000,846 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Ashampoo Burning Studio 2009.lnk
[2010.04.23 10:44:27 | 000,232,686 | ---- | M] () -- C:\Documents and Settings\rhorsak\Plocha\ELJ - značky.dwg
[2010.04.23 08:21:34 | 000,902,452 | ---- | M] () -- C:\Documents and Settings\rhorsak\Plocha\Elik - znacky.dwg
[2010.04.23 08:21:34 | 000,584,628 | ---- | M] () -- C:\Documents and Settings\rhorsak\Plocha\EL_1.pp.dwg
[2010.04.23 08:21:34 | 000,241,120 | ---- | M] () -- C:\Documents and Settings\rhorsak\Plocha\ZNACKY.dwg
[2010.04.23 07:04:02 | 000,000,684 | ---- | M] () -- C:\Documents and Settings\rhorsak\Plocha\QIP infium.lnk
[2010.04.22 14:16:39 | 000,032,256 | ---- | M] () -- C:\Documents and Settings\rhorsak\Dokumenty\pripravka_decka_kontakty.xls
[2010.04.22 13:41:58 | 000,000,885 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\TeamViewer 5.lnk
[2010.04.22 13:39:39 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\rhorsak\Plocha\Kubik SMS DreamCom.lnk
[2010.04.22 11:05:00 | 000,902,432 | ---- | M] (Acronis) -- C:\WINDOWS\System32\drivers\tdrpm251.sys
[2010.04.22 11:04:57 | 000,570,016 | ---- | M] (Acronis) -- C:\WINDOWS\System32\drivers\timntr.sys
[2010.04.22 11:04:52 | 000,156,928 | ---- | M] (Acronis) -- C:\WINDOWS\System32\drivers\snapman.sys
[2010.04.22 11:04:37 | 000,000,824 | ---- | M] () -- C:\Documents and Settings\rhorsak\Plocha\Acronis True Image Home 2009.lnk
[2010.04.22 10:42:49 | 001,396,928 | ---- | M] (Acronis) -- C:\WINDOWS\System32\auto_reactivate.exe
[2010.04.22 09:57:05 | 000,902,592 | ---- | M] (Acronis) -- C:\WINDOWS\System32\drivers\tdrpm228.sys
[2010.04.22 09:56:59 | 000,044,704 | ---- | M] (Acronis) -- C:\WINDOWS\System32\drivers\tifsfilt.sys
[2010.04.22 09:54:57 | 000,076,936 | ---- | M] () -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
[2010.04.22 09:53:17 | 000,275,760 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.04.22 09:50:35 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Adobe Acrobat 7.0 Professional.lnk
[2010.04.22 09:16:25 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\rhorsak\Plocha\JDownloader.lnk
[2010.04.22 09:15:56 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010.04.22 09:15:56 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010.04.22 09:15:55 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010.04.22 09:15:55 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010.04.22 09:15:54 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2010.04.22 08:28:34 | 000,000,638 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\AIMP2.lnk
[2010.04.22 08:14:50 | 000,000,041 | ---- | M] () -- C:\WINDOWS\System\C6501.ini
[2010.04.22 07:41:43 | 001,085,524 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.04.22 07:41:43 | 000,461,898 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.04.22 07:41:43 | 000,444,164 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.04.22 07:41:43 | 000,091,916 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.04.22 07:41:43 | 000,072,040 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.04.22 07:41:05 | 000,000,000 | ---- | M] () -- C:\WINDOWS\hpqEmlSz.INI
[2010.04.22 07:21:48 | 000,176,128 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvusmb.exe
[2010.04.22 07:21:47 | 000,001,864 | ---- | M] () -- C:\WINDOWS\System32\nvsmb.nvu
[2010.04.22 07:21:45 | 000,093,568 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvata.sys
[2010.04.22 07:21:45 | 000,033,280 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVCOI.DLL
[2010.04.22 07:21:45 | 000,001,537 | ---- | M] () -- C:\WINDOWS\System32\nvide.nvu
[2010.04.22 07:21:44 | 000,289,792 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\idecoins.dll
[2010.04.22 07:21:44 | 000,289,792 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\idecoi.dll
[2010.04.22 07:21:34 | 000,222,464 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvsnpu.sys
[2010.04.22 07:21:34 | 000,101,632 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvtcp.sys
[2010.04.22 07:21:33 | 000,301,312 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvnrm.sys
[2010.04.22 07:21:33 | 000,202,240 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\fdco1ins.dll
[2010.04.22 07:21:33 | 000,034,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\NVENETFD.sys
[2010.04.22 07:21:33 | 000,013,056 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvnetbus.sys
[2010.04.22 07:21:33 | 000,009,728 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\bdco1ins.dll
[2010.04.22 07:21:33 | 000,003,632 | ---- | M] () -- C:\WINDOWS\System32\nvnrm.nvu
[2010.04.21 20:18:50 | 000,165,437 | ---- | M] () -- C:\WINDOWS\hpwins05.dat
[2010.04.21 20:14:04 | 000,000,617 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.04.21 20:12:42 | 000,000,862 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Centrum řešení HP.lnk
[2010.04.21 20:12:11 | 000,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk
[2010.04.21 19:47:45 | 000,001,779 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk
[2010.04.21 19:36:33 | 000,001,690 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\AutoCAD 2010 - česky.lnk
[2010.04.21 15:24:01 | 000,013,588 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak
[2010.04.21 15:23:57 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2010.04.21 14:53:35 | 000,000,231 | ---- | M] () -- C:\WINDOWS\system.ini
[2010.04.21 13:51:29 | 000,000,223 | RHS- | M] () -- C:\boot.ini
[2010.04.21 13:46:48 | 000,000,642 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\TC UP.lnk
[2010.04.21 13:36:15 | 000,000,127 | ---- | M] () -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\fusioncache.dat
[2010.04.21 13:36:01 | 000,002,510 | ---- | M] () -- C:\WINDOWS\Microsoft.MIF
[2010.04.21 13:36:00 | 000,002,464 | ---- | M] () -- C:\WINDOWS\$_hpcst$.hpc
[2010.04.21 13:35:08 | 000,009,438 | RHS- | M] () -- C:\Documents and Settings\All Users\ntuser.pol
[2010.04.21 13:11:04 | 000,012,675 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini
[2010.04.21 13:08:38 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2010.04.21 13:07:44 | 000,000,266 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010.04.21 13:04:00 | 000,002,504 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010.04.21 13:04:00 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010.04.21 13:04:00 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010.04.21 13:04:00 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini
[2010.04.21 13:04:00 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010.04.21 13:04:00 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010.04.21 13:03:58 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010.04.21 13:03:58 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010.04.21 13:03:51 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010.04.21 13:03:37 | 000,004,249 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010.04.21 13:03:02 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010.04.21 13:03:02 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010.04.21 13:03:00 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010.04.21 13:03:00 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2010.04.21 13:03:00 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010.04.21 13:03:00 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010.04.21 13:03:00 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010.04.21 13:03:00 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010.04.21 13:00:23 | 000,021,812 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010.04.21 13:00:16 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini
[2010.04.21 13:00:16 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini
[2 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.05.05 18:40:38 | 000,781,909 | ---- | C] () -- C:\Documents and Settings\rhorsak\Plocha\RSIT.exe
[2010.05.05 13:36:36 | 000,068,278 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\cc_20100505_133634.reg
[2010.05.05 13:35:09 | 000,001,548 | ---- | C] () -- C:\Documents and Settings\rhorsak\Plocha\CCleaner.lnk
[2010.05.05 13:32:13 | 000,249,881 | R--- | C] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100505-133213.backup
[2010.05.05 13:20:39 | 000,032,944 | ---- | C] () -- C:\Documents and Settings\rhorsak\Plocha\Cestovní příkaz 30.5.2010.xlsx
[2010.05.05 13:03:10 | 000,249,881 | R--- | C] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100505-130310.backup
[2010.05.05 13:02:18 | 000,000,736 | ---- | C] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100505-130218.backup
[2010.05.05 10:51:14 | 000,000,472 | ---- | C] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2010.05.05 09:08:20 | 000,000,290 | -H-- | C] () -- C:\WINDOWS\tasks\{8C3FDD81-7AE0-4605-A46A-2488B179F2A3}.job
[2010.05.05 09:06:36 | 000,000,001 | ---- | C] () -- C:\Documents and Settings\rhorsak\oashdihasidhasuidhiasdhiashdiuasdhasd
[2010.05.05 09:06:14 | 000,115,200 | RHS- | C] () -- C:\WINDOWS\System32\axaltocms.dll
[2010.05.05 09:06:14 | 000,000,316 | -HS- | C] () -- C:\WINDOWS\tasks\LKHLKOTX.job
[2010.05.05 09:04:36 | 000,182,784 | ---- | C] () -- C:\WINDOWS\System32\regedit.exe
[2010.04.30 07:01:00 | 005,259,892 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\základy práce s PC.pdf
[2010.04.30 07:01:00 | 001,204,116 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\sp_panorama_km.rar
[2010.04.30 07:01:00 | 000,297,145 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\techničák.pdf
[2010.04.30 07:01:00 | 000,288,142 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\Zavody_2009.jpg
[2010.04.30 07:01:00 | 000,123,204 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\Závody_2009.pdf
[2010.04.30 07:01:00 | 000,094,995 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\wallpaper-pokoj.png
[2010.04.30 07:01:00 | 000,031,232 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\TZ_dálniční_poplatek.doc
[2010.04.30 07:01:00 | 000,030,952 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\vánoce.dwg
[2010.04.30 07:01:00 | 000,030,605 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\vánoce_zvonky.dwg
[2010.04.30 07:01:00 | 000,020,691 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\šablona_ehv_mail.mht
[2010.04.30 07:01:00 | 000,014,091 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\šablona_ehv_mail.htm
[2010.04.30 07:00:59 | 005,829,485 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\piskáč panorama.jpg
[2010.04.30 07:00:59 | 003,698,108 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\PSSX10IS_GSG_csy_toc.pdf
[2010.04.30 07:00:59 | 001,978,474 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\prihlaska.pdf
[2010.04.30 07:00:59 | 001,760,174 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\prihlaska.jpg
[2010.04.30 07:00:59 | 001,332,593 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\sp_panorama_km.exe
[2010.04.30 07:00:59 | 001,227,327 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\New panorama 1.jpg
[2010.04.30 07:00:59 | 000,675,468 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\PISKÁČ.pdf
[2010.04.30 07:00:59 | 000,540,689 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\SITUACE_DOPRAVA návrh 6.etapy.pdf
[2010.04.30 07:00:59 | 000,457,553 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\nabídka_ehv_2010.mnr
[2010.04.30 07:00:59 | 000,430,080 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\Radim 2009.mdb
[2010.04.30 07:00:59 | 000,389,684 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\smlouva internext ehv.jpg
[2010.04.30 07:00:59 | 000,300,490 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\OCR.pdf
[2010.04.30 07:00:59 | 000,174,546 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\sken_01.pdf
[2010.04.30 07:00:59 | 000,160,877 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\přihláška_MRS.pdf
[2010.04.30 07:00:59 | 000,158,006 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\objednávka_MRS_Chropyně_dárky.pdf
[2010.04.30 07:00:59 | 000,136,335 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\objednávka_MRS_Chropyně_odznaky.pdf
[2010.04.30 07:00:59 | 000,117,457 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\PŘIHLÁŠKA.pdf
[2010.04.30 07:00:59 | 000,106,872 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\prihlaska_tábor_2009.pdf
[2010.04.30 07:00:59 | 000,096,145 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\notebook EHV HP.pdf
[2010.04.30 07:00:59 | 000,085,361 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\objednávka_MRS Chropyně_razítka.pdf
[2010.04.30 07:00:59 | 000,069,154 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\SLABOPROUDÉ ZNAČKY.dwg
[2010.04.30 07:00:59 | 000,048,871 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\panoStudioViewer.jar
[2010.04.30 07:00:59 | 000,032,256 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\pripravka_decka_kontakty.xls
[2010.04.30 07:00:59 | 000,029,184 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\prihlaska_tabor_2010.doc
[2010.04.30 07:00:59 | 000,027,492 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\nabídka_ehv_2010.cuix
[2010.04.30 07:00:59 | 000,024,371 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\New panorama 1.pap
[2010.04.30 07:00:59 | 000,014,821 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\pokus.plp
[2010.04.30 07:00:59 | 000,009,721 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\Radim_retro.jpg
[2010.04.30 07:00:59 | 000,002,925 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\Radim_retro_80.jpg
[2010.04.30 07:00:59 | 000,000,592 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\New panorama 1.xml
[2010.04.30 07:00:59 | 000,000,448 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\New panorama 1.html
[2010.04.30 07:00:58 | 002,315,330 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\logo.png
[2010.04.30 07:00:58 | 001,221,077 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\Logo MO_cervena.jpg
[2010.04.30 07:00:58 | 001,090,694 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\Logo MO_zelena.jpg
[2010.04.30 07:00:58 | 000,222,096 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\logo_mrs.png
[2010.04.30 07:00:58 | 000,211,456 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\kniha_jizd_20101.xls
[2010.04.30 07:00:58 | 000,189,673 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\Michal_vyhláška_50.pdf
[2010.04.30 07:00:58 | 000,147,760 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\moje.arg
[2010.04.30 07:00:58 | 000,040,956 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\kancle.dwg
[2010.04.30 07:00:58 | 000,032,405 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\kontakty_outlook_ehv.CSV
[2010.04.30 07:00:58 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\ehv_LAN.xls
[2010.04.30 07:00:58 | 000,021,504 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\fotbal_docházka_.xls
[2010.04.30 07:00:58 | 000,010,470 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\FileZilla.xml
[2010.04.30 07:00:58 | 000,003,506 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\logo_100x.jpg
[2010.04.30 07:00:58 | 000,002,648 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\kontakty qip ru.xml
[2010.04.30 07:00:53 | 013,546,573 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\BTicino_Communication_2005.pdf
[2010.04.30 07:00:53 | 000,457,553 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\acad2008.mnr
[2010.04.30 07:00:53 | 000,245,496 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\bookmarks.html
[2010.04.30 07:00:53 | 000,143,872 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\_Seznam EHV.doc
[2010.04.30 07:00:53 | 000,122,996 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\acad2008_dom.arg
[2010.04.30 07:00:53 | 000,114,008 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\Autocad 2008.arg
[2010.04.30 07:00:53 | 000,107,992 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\acad2009.arg
[2010.04.30 07:00:53 | 000,098,291 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\acad2008.cui
[2010.04.30 07:00:53 | 000,098,291 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\acad2008.bak.cuix
[2010.04.30 07:00:53 | 000,032,679 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\ceduljky_zvonky.dwg
[2010.04.30 07:00:53 | 000,027,363 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\acad2008.cuix
[2010.04.30 07:00:53 | 000,017,878 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\acad2009.cuix
[2010.04.30 07:00:53 | 000,016,459 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\acad.pgp
[2010.04.30 07:00:53 | 000,001,718 | -H-- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\Default.rdp
[2010.04.30 07:00:53 | 000,001,692 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\2010.reg
[2010.04.30 07:00:53 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\addresses.wbx
[2010.04.29 16:17:00 | 000,001,526 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\DIALux 4.7 Light.lnk
[2010.04.29 16:17:00 | 000,001,512 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\DIALux 4.7.lnk
[2010.04.29 16:16:50 | 000,000,095 | ---- | C] () -- C:\WINDOWS\Dialux.ini
[2010.04.29 13:43:07 | 001,766,631 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\Kutnohorská.pdf
[2010.04.29 13:42:42 | 001,882,088 | ---- | C] () -- C:\Documents and Settings\rhorsak\Dokumenty\Křížová.pdf
[2010.04.27 09:31:24 | 000,003,584 | ---- | C] () -- C:\Documents and Settings\rhorsak\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.04.27 08:31:17 | 000,000,846 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Ashampoo Burning Studio 2009.lnk
[2010.04.23 08:21:34 | 000,902,452 | ---- | C] () -- C:\Documents and Settings\rhorsak\Plocha\Elik - znacky.dwg
[2010.04.23 08:21:34 | 000,584,628 | ---- | C] () -- C:\Documents and Settings\rhorsak\Plocha\EL_1.pp.dwg
[2010.04.23 08:21:34 | 000,241,120 | ---- | C] () -- C:\Documents and Settings\rhorsak\Plocha\ZNACKY.dwg
[2010.04.23 08:21:34 | 000,232,686 | ---- | C] () -- C:\Documents and Settings\rhorsak\Plocha\ELJ - značky.dwg
[2010.04.23 06:36:07 | 000,002,577 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\ACDSee Pro 3.lnk
[2010.04.22 13:41:58 | 000,000,885 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\TeamViewer 5.lnk
[2010.04.22 13:39:39 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\rhorsak\Plocha\Kubik SMS DreamCom.lnk
[2010.04.22 11:04:37 | 000,000,824 | ---- | C] () -- C:\Documents and Settings\rhorsak\Plocha\Acronis True Image Home 2009.lnk
[2010.04.22 09:36:57 | 000,002,335 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Acrobat Speed Launcher.lnk
[2010.04.22 09:36:57 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Adobe Acrobat 7.0 Professional.lnk
[2010.04.22 09:16:25 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\rhorsak\Plocha\JDownloader.lnk
[2010.04.22 08:28:26 | 000,000,638 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\AIMP2.lnk
[2010.04.22 08:14:50 | 000,000,041 | ---- | C] () -- C:\WINDOWS\System\C6501.ini
[2010.04.22 08:14:20 | 000,004,712 | ---- | C] () -- C:\WINDOWS\C6501.ini
[2010.04.22 07:41:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\hpqEmlSz.INI
[2010.04.22 07:24:25 | 000,001,537 | ---- | C] () -- C:\WINDOWS\System32\nvide.nvu
[2010.04.22 07:24:04 | 000,001,864 | ---- | C] () -- C:\WINDOWS\System32\nvsmb.nvu
[2010.04.22 07:16:33 | 000,002,265 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2010.04.21 20:12:42 | 000,000,862 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Centrum řešení HP.lnk
[2010.04.21 20:12:11 | 000,001,808 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk
*kulma*
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“