kontrola logu po vymazani trojanu

Zpráva

Venca B. · #16 Příspěvek od **Venca B.** » 21 zář 2010 21:34

OK, díky

#17 Příspěvek od **motji** » 21 zář 2010 21:35

Není zač

Venca B. · #18 Příspěvek od **Venca B.** » 14 říj 2010 18:13

Dobrý večer, posílám log OTL.

OTL logfile created on: 14.10.2010 19:07:03 - Run 3
OTL by OldTimer - Version 3.2.14.1 Folder = C:\Users\Venda\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 62,00% Memory free
8,00 Gb Paging File | 6,00 Gb Available in Paging File | 79,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 29,20 Gb Total Space | 3,40 Gb Free Space | 11,65% Space Free | Partition Type: NTFS
Drive D: | 436,46 Gb Total Space | 95,58 Gb Free Space | 21,90% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: VENDA-PC
Current User Name: Venda
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010.09.21 18:10:07 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Venda\Desktop\OTL.exe
PRC - [2010.09.19 21:02:09 | 000,910,296 | ---- | M] (Mozilla Corporation) -- D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\firefox.exe
PRC - [2010.02.12 20:23:32 | 000,148,744 | ---- | M] (COMODO) -- C:\Program Files (x86)\COMODO\COMODO livePCsupport\CLPSLS.exe
PRC - [2010.01.07 17:11:28 | 000,140,520 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
PRC - [2009.11.25 01:51:40 | 000,081,000 | ---- | M] (ALWIL Software) -- D:\programy\systemove_programy\Avast\prog_Avast\ashDisp.exe
PRC - [2009.11.25 01:51:35 | 000,138,680 | ---- | M] (ALWIL Software) -- D:\programy\systemove_programy\Avast\prog_Avast\ashServ.exe
PRC - [2009.11.25 01:51:21 | 000,254,040 | ---- | M] (ALWIL Software) -- D:\programy\systemove_programy\Avast\prog_Avast\ashMaiSv.exe
PRC - [2009.11.25 01:48:48 | 000,352,920 | ---- | M] (ALWIL Software) -- D:\programy\systemove_programy\Avast\prog_Avast\ashWebSv.exe
PRC - [2009.11.25 01:43:56 | 000,018,752 | ---- | M] (ALWIL Software) -- D:\programy\systemove_programy\Avast\prog_Avast\aswUpdSv.exe
PRC - [2009.09.20 12:15:26 | 000,116,280 | ---- | M] (Hewlett-Packard Co.) -- D:\programy\HP_ALL-in-one-series\Digital Imaging\smart web printing\hpswp_clipbook.exe
PRC - [2009.05.14 18:07:12 | 000,759,048 | ---- | M] (ABBYY) -- D:\programy\PDF\program\NetworkLicenseServer.exe
PRC - [2008.07.22 18:33:36 | 000,150,528 | ---- | M] (Hewlett-Packard) -- D:\programy\HP_ALL-in-one-series\Digital Imaging\bin\HpqSRmon.exe

========== Modules (SafeList) ==========

MOD - [2010.10.02 14:14:25 | 000,285,480 | ---- | M] (COMODO) -- C:\Windows\SysWOW64\guard32.dll
MOD - [2010.09.21 18:10:07 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Venda\Desktop\OTL.exe
MOD - [2009.07.14 03:15:21 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\fltLib.dll
MOD - [2009.07.14 03:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2009.07.14 03:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll

========== Win32 Services (SafeList) ==========

SRV:64bit: - [2010.08.03 20:51:20 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2010.02.26 02:03:00 | 000,244,736 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\stacsv64.exe -- (STacSV)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.03.03 02:42:58 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\AESTSr64.exe -- (AESTFilters)
SRV - [2010.10.02 14:10:38 | 002,528,856 | ---- | M] (COMODO) [Auto | Running] -- D:\programy\systemove_programy\firewall\Comodo\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV - [2010.09.21 16:02:48 | 001,033,255 | ---- | M] (Xacti LLC) [Auto | Running] -- D:\programy\systemove_programy\Spyware Terminator\sp_rsser.exe -- (sp_rssrv)
SRV - [2010.06.14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010.02.12 20:23:32 | 000,148,744 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files (x86)\COMODO\COMODO livePCsupport\CLPSLS.exe -- (CLPSLS)
SRV - [2009.11.25 01:51:35 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- D:\programy\systemove_programy\Avast\prog_Avast\ashServ.exe -- (avast! Antivirus)
SRV - [2009.11.25 01:51:21 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- D:\programy\systemove_programy\Avast\prog_Avast\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2009.11.25 01:48:48 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- D:\programy\systemove_programy\Avast\prog_Avast\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2009.11.25 01:43:56 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- D:\programy\systemove_programy\Avast\prog_Avast\aswUpdSv.exe -- (aswUpdSv)
SRV - [2009.09.20 12:24:02 | 000,249,344 | ---- | M] (Hewlett-Packard Co.) [On_Demand | Running] -- D:\programy\HP_ALL-in-one-series\Digital Imaging\bin\hpqcxs08.dll -- (hpqcxs08)
SRV - [2009.09.20 12:24:02 | 000,133,120 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- D:\programy\HP_ALL-in-one-series\Digital Imaging\bin\hpqddsvc.dll -- (hpqddsvc)
SRV - [2009.09.20 11:55:20 | 001,037,824 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- D:\programy\HP_ALL-in-one-series\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2009.05.14 18:07:12 | 000,759,048 | ---- | M] (ABBYY) [Auto | Running] -- D:\programy\PDF\program\NetworkLicenseServer.exe -- (ABBYY.Licensing.PDFTransformer.Classic.3.0)

========== Driver Services (SafeList) ==========

DRV:64bit: - File not found [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV:64bit: - [2010.10.01 23:17:16 | 000,033,344 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2010.08.16 22:26:16 | 000,828,912 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010.08.16 05:42:00 | 000,116,240 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2010.08.03 21:22:36 | 007,451,648 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2010.08.03 21:22:36 | 007,451,648 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2010.08.03 20:15:44 | 000,268,288 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2010.07.14 12:42:58 | 007,821,312 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETwNs64.sys -- (NETwNs64) ___ Ovladač adaptéru řady Intel(R)
DRV:64bit: - [2010.07.07 11:26:46 | 000,050,696 | ---- | M] (Windows (R) Win 7 DDK provider) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\stflt.sys -- (sp_rsdrv2)
DRV:64bit: - [2010.06.08 10:33:14 | 000,540,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010.06.01 06:58:50 | 007,533,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NETw5v64.sys -- (netw5v64) Ovladač adaptéru řady Intel(R)
DRV:64bit: - [2010.05.06 05:21:46 | 000,125,456 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2010.04.08 09:42:32 | 007,680,512 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NETw5s64.sys -- (NETw5s64) Ovladač adaptéru řady Intel(R)
DRV:64bit: - [2010.03.15 14:35:24 | 000,384,552 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\k57nd60a.sys -- (k57nd60a) Broadcom NetLink (TM)
DRV:64bit: - [2010.02.26 14:33:40 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64j.sys -- (UsbserFilt)
DRV:64bit: - [2010.02.26 14:33:24 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2010.02.26 14:33:22 | 000,025,088 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdcx64)
DRV:64bit: - [2010.02.26 14:33:22 | 000,019,456 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcdx64)
DRV:64bit: - [2010.02.26 14:21:22 | 000,173,056 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nmwcdnsux64.sys -- (nmwcdnsux64)
DRV:64bit: - [2010.02.26 14:21:20 | 000,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nmwcdnsucx64.sys -- (nmwcdnsucx64)
DRV:64bit: - [2010.02.26 02:03:00 | 000,505,856 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2009.11.25 01:50:05 | 000,022,096 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2009.11.25 01:49:56 | 000,065,616 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2009.08.24 11:20:22 | 000,285,744 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2009.07.14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.14 02:06:32 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2009.07.14 01:31:10 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2009.06.25 18:04:20 | 000,067,584 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rimmpx64.sys -- (rimmptsk)
DRV:64bit: - [2009.06.25 17:38:52 | 000,057,856 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rixdpx64.sys -- (rismxdp)
DRV:64bit: - [2009.06.25 16:13:44 | 000,055,296 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rimspx64.sys -- (rimsptsk)
DRV:64bit: - [2009.06.10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008.10.28 11:48:20 | 000,160,704 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:64bit: - [2008.08.28 12:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:64bit: - [2005.04.04 12:45:03 | 000,065,536 | ---- | M] (Protection Technology) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV:64bit: - [2005.02.23 18:00:19 | 000,007,168 | ---- | M] (Protection Technology) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2010.01.07 17:11:30 | 000,146,928 | ---- | M] (CyberLink Corp.) [2010/07/10 00:49:12] [Kernel | Auto | Running] -- C:\Program Files (x86)\CyberLink\PowerDVD DX\000.fcl -- ({1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7})

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1270551171-3976107745-765880178-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = C7 C7 24 31 EC 33 CB 01 [binary data]
IE - HKU\S-1-5-21-1270551171-3976107745-765880178-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2
FF - prefs.js..extensions.enabledItems: {097d3191-e6fa-4728-9826-b533d755359d}:0.7.11
FF - prefs.js..extensions.enabledItems: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.7.2
FF - prefs.js..extensions.enabledItems: smarterwiki@wikiatic.com:4.1.7
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {ea614400-e918-4741-9a97-7a972ff7c30b}:2.0.10
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: smartwebprinting@hp.com:4.51
FF - prefs.js..extensions.enabledItems: {43c35458-c907-439b-bcfd-07d373834689}:2.2.1
FF - prefs.js..extensions.enabledItems: {003D3EDC-99B9-4a34-9C20-60CB94F7E829}:2009

FF - HKLM\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: D:\programy\Nokia_program\Nokia PC Suite 7\bkmrksync\ [2010.07.26 02:01:59 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010.08.30 13:53:16 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}: C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\ [2010.09.09 13:38:13 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions\\Components: D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\components [2010.09.19 21:02:10 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions\\Plugins: D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\plugins [2010.10.13 21:40:31 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2010.09.09 13:38:13 | 000,000,000 | ---D | M]

[2010.03.13 18:43:32 | 000,000,000 | ---D | M] -- C:\Users\Venda\AppData\Roaming\Mozilla\Extensions
[2010.10.13 21:09:40 | 000,000,000 | ---D | M] -- C:\Users\Venda\AppData\Roaming\Mozilla\Firefox\Profiles\er4gj12s.default\extensions
[2010.09.20 23:26:46 | 000,000,000 | ---D | M] (WebTran) -- C:\Users\Venda\AppData\Roaming\Mozilla\Firefox\Profiles\er4gj12s.default\extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
[2010.03.15 17:01:46 | 000,000,000 | ---D | M] (All-in-One Sidebar) -- C:\Users\Venda\AppData\Roaming\Mozilla\Firefox\Profiles\er4gj12s.default\extensions\{097d3191-e6fa-4728-9826-b533d755359d}
[2010.10.10 16:48:51 | 000,000,000 | ---D | M] (Flashblock) -- C:\Users\Venda\AppData\Roaming\Mozilla\Firefox\Profiles\er4gj12s.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}
[2010.09.15 18:21:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Venda\AppData\Roaming\Mozilla\Firefox\Profiles\er4gj12s.default\extensions\{43c35458-c907-439b-bcfd-07d373834689}
[2010.08.18 21:27:46 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Venda\AppData\Roaming\Mozilla\Firefox\Profiles\er4gj12s.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010.10.10 16:48:51 | 000,000,000 | ---D | M] (Download Statusbar) -- C:\Users\Venda\AppData\Roaming\Mozilla\Firefox\Profiles\er4gj12s.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
[2010.08.05 16:02:49 | 000,000,000 | ---D | M] (Seznam liĹˇtiÄŤka) -- C:\Users\Venda\AppData\Roaming\Mozilla\Firefox\Profiles\er4gj12s.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2010.09.15 18:22:11 | 000,000,000 | ---D | M] -- C:\Users\Venda\AppData\Roaming\Mozilla\Firefox\Profiles\er4gj12s.default\extensions\smarterwiki@wikiatic.com

O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - D:\programy\HP_ALL-in-one-series\Digital Imaging\smart web printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll ()
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - D:\programy\HP_ALL-in-one-series\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3:64bit: - HKLM\..\Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll ()
O4:64bit: - HKLM..\Run: [COMODO Internet Security] D:\programy\systemove_programy\firewall\Comodo\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4:64bit: - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] D:\programy\AdobeReader\prog_AdobeReader\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast!] D:\programy\systemove_programy\Avast\prog_Avast\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [hpqSRMon] D:\programy\HP_ALL-in-one-series\Digital Imaging\bin\HpqSRmon.exe (Hewlett-Packard)
O4 - HKLM..\Run: [OM_Monitor] D:\programy\OLYMPUS\OlympusMaster\FirstStart.exe (OLYMPUS IMAGING CORP.)
O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1270551171-3976107745-765880178-1000..\Run: [DriverMax_RESTART] D:\programy\systemove_programy\DriverMax\prog_DriverMax\devices.exe (Innovative Solutions)
O4 - HKU\S-1-5-21-1270551171-3976107745-765880178-1000..\Run: [OM_Monitor] D:\programy\OLYMPUS\OlympusMaster\Monitor.exe (OLYMPUS IMAGING CORP.)
O4 - HKU\S-1-5-21-1270551171-3976107745-765880178-1000..\Run: [WEBTRAN] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: E&xportovat do aplikace Microsoft Excel - D:\programy\Microsoft_Office_Enterprise2007\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - D:\programy\Microsoft_Office_Enterprise2007\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra Button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - D:\programy\ICQ\prog_ICQ7.0\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - D:\programy\ICQ\prog_ICQ7.0\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\programy\Microsoft_Office_Enterprise2007\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra Button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - D:\programy\HP_ALL-in-one-series\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O13 - gopher Prefix: missing
O16 - DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} http://support.dell.com/systemprofiler/SysProExe.CAB (Reg Error: Key error.)
O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} http://support.euro.dell.com/systemprofiler/SysPro.CAB (SysProWmi Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} http://support.euro.dell.com/systemprof ... emLite.CAB (DellSystemLite.Scanner)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.168.176.3
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (systempropertiesperformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{62adf223-9829-11df-9be1-0026b900d528}\Shell - "" = AutoRun
O33 - MountPoints2\{62adf223-9829-11df-9be1-0026b900d528}\Shell\AutoRun\command - "" = G:\NokiaPCIA_Autorun.exe -- File not found
O33 - MountPoints2\{65ec5d24-2fa3-11df-9b9b-0026b900d528}\Shell - "" = AutoRun
O33 - MountPoints2\{65ec5d24-2fa3-11df-9b9b-0026b900d528}\Shell\AutoRun\command - "" = G:\SETUP.EXE -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010.10.13 23:41:45 | 000,116,240 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysNative\drivers\AtihdW76.sys
[2010.10.13 21:40:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2010.10.11 19:46:11 | 000,000,000 | ---D | C] -- C:\Users\Venda\AppData\Roaming\Ashampoo
[2010.10.11 19:46:06 | 000,000,000 | ---D | C] -- C:\Users\Venda\AppData\Local\ashampoo
[2010.10.11 19:46:06 | 000,000,000 | ---D | C] -- C:\ProgramData\ashampoo
[2010.10.11 19:04:48 | 000,000,000 | ---D | C] -- C:\Users\Venda\Desktop\nohavica
[2010.10.01 23:17:42 | 000,000,000 | ---D | C] -- C:\Users\Venda\AppData\Roaming\Hamachi
[2010.10.01 23:17:16 | 000,033,344 | ---- | C] (LogMeIn, Inc.) -- C:\Windows\SysNative\drivers\hamachi.sys
[2010.09.29 17:22:08 | 007,821,312 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\NETwNs64.sys
[2010.09.29 17:22:07 | 002,750,464 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\NETwNr64.dll
[2010.09.29 17:22:07 | 000,799,232 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\NETwNc64.dll
[2010.09.28 21:31:15 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ks.sys
[2010.09.24 23:43:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Magnus
[2010.09.24 23:41:32 | 000,000,000 | ---D | C] -- C:\Users\Venda\AppData\Local\Programs
[2010.09.24 23:41:28 | 000,000,000 | ---D | C] -- C:\Windows\lhsp
[2010.09.24 23:41:18 | 000,000,000 | ---D | C] -- C:\Windows\msagent
[2010.09.24 23:06:42 | 000,000,000 | ---D | C] -- C:\Users\Venda\Documents\Lexicon
[2010.09.21 21:42:40 | 000,000,000 | ---D | C] -- C:\_OTL
[2010.09.21 19:25:30 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2010.09.21 18:10:03 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\Venda\Desktop\OTL.exe
[2010.09.21 17:10:29 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010.09.21 16:02:48 | 000,000,000 | ---D | C] -- C:\Users\Venda\AppData\Roaming\Spyware Terminator
[2010.09.21 16:02:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Spyware Terminator
[2010.09.20 23:22:56 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Venda
[2010.09.20 23:22:56 | 000,000,000 | ---D | C] -- C:\ProgramData\LangSoft
[2010.09.20 23:16:28 | 000,000,000 | ---D | C] -- C:\Users\Venda\AppData\Roaming\LangSoft
[2010.09.15 20:57:32 | 002,441,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iertutil.dll
[2010.09.15 18:50:09 | 000,000,000 | ---D | C] -- C:\Temp
[2010.09.15 18:36:12 | 000,000,000 | ---D | C] -- C:\Users\Venda\Desktop\Nová složka
[1 C:\Users\Venda\AppData\Local\*.tmp files -> C:\Users\Venda\AppData\Local\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010.10.14 19:09:46 | 002,883,584 | -HS- | M] () -- C:\Users\Venda\ntuser.dat
[2010.10.14 18:38:26 | 000,000,950 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010.10.14 17:58:58 | 000,014,800 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010.10.14 17:58:58 | 000,014,800 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010.10.14 17:52:01 | 000,000,946 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010.10.14 17:51:50 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.10.14 17:51:42 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.10.14 17:51:34 | 3193,581,568 | -HS- | M] () -- C:\hiberfil.sys
[2010.10.14 00:22:08 | 007,035,526 | -H-- | M] () -- C:\Users\Venda\AppData\Local\IconCache.db
[2010.10.14 00:19:26 | 000,003,434 | ---- | M] () -- C:\Users\Venda\wincmd.ini
[2010.10.13 21:40:32 | 000,001,772 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010.10.13 21:22:29 | 000,773,339 | ---- | M] () -- C:\Users\Venda\Desktop\planek-SKODA.pdf
[2010.10.13 21:00:49 | 001,445,734 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010.10.13 21:00:49 | 000,622,660 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2010.10.13 21:00:49 | 000,607,190 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010.10.13 21:00:49 | 000,118,810 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2010.10.13 21:00:49 | 000,103,568 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010.10.13 14:47:02 | 000,237,773 | ---- | M] () -- C:\Users\Venda\Desktop\1098.jpg
[2010.10.11 19:46:05 | 000,000,797 | ---- | M] () -- C:\Users\Venda\Desktop\Ashampoo Burning Studio 6 FREE.lnk
[2010.10.02 14:14:28 | 000,362,784 | ---- | M] (COMODO) -- C:\Windows\SysNative\guard64.dll
[2010.10.02 14:14:25 | 000,285,480 | ---- | M] (COMODO) -- C:\Windows\SysWow64\guard32.dll
[2010.10.02 14:14:21 | 000,020,864 | ---- | M] (COMODO) -- C:\Windows\SysNative\drivers\cmderd.sys
[2010.10.02 00:55:15 | 000,000,811 | ---- | M] () -- C:\Users\Venda\Desktop\BS.Player FREE.lnk
[2010.10.01 23:17:16 | 000,033,344 | ---- | M] (LogMeIn, Inc.) -- C:\Windows\SysNative\drivers\hamachi.sys
[2010.09.28 11:58:34 | 000,092,972 | ---- | M] () -- C:\Users\Venda\Desktop\60902_1472128888698_13979
[2010.09.24 23:09:11 | 000,000,740 | ---- | M] () -- C:\Users\Venda\Desktop\Lexicon 2002.lnk
[2010.09.21 18:10:07 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Venda\Desktop\OTL.exe
[2010.09.21 16:03:06 | 000,000,903 | ---- | M] () -- C:\Users\Public\Desktop\Spyware Terminator.lnk
[2010.09.20 23:29:13 | 000,000,833 | ---- | M] () -- C:\Users\Venda\Desktop\BAKALÁŘSKÁ_PRÁCE – zástupce.lnk
[2010.09.20 23:26:05 | 000,002,686 | ---- | M] () -- C:\Windows\TRNCOM.INI
[2010.09.20 23:25:27 | 000,000,814 | ---- | M] () -- C:\Users\Venda\Desktop\Slovník.lnk
[2010.09.20 23:25:27 | 000,000,814 | ---- | M] () -- C:\Users\Venda\Desktop\PC Translator 2009.lnk
[2010.09.20 23:25:27 | 000,000,814 | ---- | M] () -- C:\Users\Venda\Desktop\DicMan.lnk
[1 C:\Users\Venda\AppData\Local\*.tmp files -> C:\Users\Venda\AppData\Local\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.10.13 21:22:29 | 000,773,339 | ---- | C] () -- C:\Users\Venda\Desktop\planek-SKODA.pdf
[2010.10.13 13:35:11 | 000,237,773 | ---- | C] () -- C:\Users\Venda\Desktop\1098.jpg
[2010.10.11 19:46:05 | 000,000,797 | ---- | C] () -- C:\Users\Venda\Desktop\Ashampoo Burning Studio 6 FREE.lnk
[2010.10.02 00:55:15 | 000,000,811 | ---- | C] () -- C:\Users\Venda\Desktop\BS.Player FREE.lnk
[2010.09.28 11:58:33 | 000,092,972 | ---- | C] () -- C:\Users\Venda\Desktop\60902_1472128888698_13979
[2010.09.24 23:07:57 | 000,026,112 | ---- | C] () -- C:\Windows\LgUninst.exe
[2010.09.24 23:07:52 | 000,000,740 | ---- | C] () -- C:\Users\Venda\Desktop\Lexicon 2002.lnk
[2010.09.21 16:03:06 | 000,000,903 | ---- | C] () -- C:\Users\Public\Desktop\Spyware Terminator.lnk
[2010.09.20 23:29:13 | 000,000,833 | ---- | C] () -- C:\Users\Venda\Desktop\BAKALÁŘSKÁ_PRÁCE – zástupce.lnk
[2010.09.20 23:26:05 | 000,002,686 | ---- | C] () -- C:\Windows\TRNCOM.INI
[2010.09.20 23:25:27 | 000,000,814 | ---- | C] () -- C:\Users\Venda\Desktop\Slovník.lnk
[2010.09.20 23:25:27 | 000,000,814 | ---- | C] () -- C:\Users\Venda\Desktop\PC Translator 2009.lnk
[2010.09.20 23:25:27 | 000,000,814 | ---- | C] () -- C:\Users\Venda\Desktop\DicMan.lnk
[2010.08.30 12:23:04 | 000,001,819 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2010.08.16 11:53:26 | 000,000,017 | ---- | C] () -- C:\Users\Venda\AppData\Local\resmon.resmoncfg
[2010.07.27 16:12:13 | 000,008,192 | ---- | C] () -- C:\Users\Venda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.04.02 17:17:34 | 000,179,091 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[1998.01.16 21:38:02 | 000,023,552 | ---- | C] () -- C:\Windows\SysWow64\EasyRegistry.dll

========== LOP Check ==========

[2010.10.11 19:46:11 | 000,000,000 | ---D | M] -- C:\Users\Venda\AppData\Roaming\Ashampoo
[2010.03.17 21:12:25 | 000,000,000 | ---D | M] -- C:\Users\Venda\AppData\Roaming\DAEMON Tools Lite
[2010.10.13 21:37:35 | 000,000,000 | ---D | M] -- C:\Users\Venda\AppData\Roaming\ICQ
[2010.09.21 15:19:50 | 000,000,000 | ---D | M] -- C:\Users\Venda\AppData\Roaming\LangSoft
[2010.06.01 13:03:59 | 000,000,000 | ---D | M] -- C:\Users\Venda\AppData\Roaming\Leadertech
[2010.08.14 21:49:58 | 000,000,000 | ---D | M] -- C:\Users\Venda\AppData\Roaming\Nokia
[2010.07.27 16:12:57 | 000,000,000 | ---D | M] -- C:\Users\Venda\AppData\Roaming\Nokia Ovi Suite
[2010.08.30 12:57:03 | 000,000,000 | ---D | M] -- C:\Users\Venda\AppData\Roaming\OLYMPUS
[2010.07.26 02:06:49 | 000,000,000 | ---D | M] -- C:\Users\Venda\AppData\Roaming\PC Suite
[2010.10.14 19:07:24 | 000,000,000 | ---D | M] -- C:\Users\Venda\AppData\Roaming\Spyware Terminator
[2010.10.06 21:22:21 | 000,000,000 | ---D | M] -- C:\Users\Venda\AppData\Roaming\uTorrent
[2010.05.04 16:20:39 | 000,000,000 | ---D | M] -- C:\Users\Venda\AppData\Roaming\XnView
[2010.09.06 17:12:44 | 000,032,620 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

< End of report >

Venca B. · #19 Příspěvek od **Venca B.** » 14 říj 2010 18:16

A Spyware Terminator mi našel toto, mohu to vymazat?

Logfile of Spyware Terminator v2.8.0.18 (db:4.009.021.000)
Scan Time: 14.10.2010 19:07:29 length: 135 s
Platform: W7 (6.1.0.7600)
User: Admin
Boot Mode: Normal
Scan type: Fast_Spyware_Scan
Scanned Objects: 37822 (Critical:0)
Filter: No System items, No Safe items, No Invalid items

Running Processes
CLPSLS.exe [COMODO] : C:\Program Files (x86)\COMODO\COMODO livePCsupport\CLPSLS.exe
cmdagent.exe [COMODO] : D:\programy\systemove_programy\firewall\Comodo\COMODO\COMODO Internet Security\cmdagent.exe
atiesrxx.exe [AMD] : C:\Windows\sysnative\atiesrxx.exe
stacsv64.exe [IDT, Inc.] : C:\Windows\system32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\stacsv64.exe
atieclxx.exe [AMD] : C:\Windows\sysnative\atieclxx.exe
aswUpdSv.exe [ALWIL Software] : D:\programy\systemove_programy\Avast\prog_Avast\aswUpdSv.exe
ashServ.exe [ALWIL Software] : D:\programy\systemove_programy\Avast\prog_Avast\ashServ.exe
NetworkLicenseServer.exe [ABBYY] : D:\programy\PDF\program\NetworkLicenseServer.exe
AESTSr64.exe [Andrea Electronics Corporation] : C:\Windows\system32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\AESTSr64.exe
sp_rsser.exe [Xacti LLC] : D:\programy\systemove_programy\Spyware Terminator\sp_rsser.exe
ashWebSv.exe [ALWIL Software] : D:\programy\systemove_programy\Avast\prog_Avast\ashWebSv.exe
ashMaiSv.exe [ALWIL Software] : D:\programy\systemove_programy\Avast\prog_Avast\ashMaiSv.exe
cfp.exe [COMODO] : D:\programy\systemove_programy\firewall\Comodo\COMODO\COMODO Internet Security\cfp.exe
quickset.exe [Dell Inc.] : C:\Program Files\Dell\QuickSet\quickset.exe
SynTPEnh.exe [Synaptics Incorporated] : C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
sttray64.exe [IDT, Inc.] : C:\Program Files\IDT\WDM\sttray64.exe
SynTPHelper.exe [Synaptics Incorporated] : C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
ashDisp.exe [ALWIL Software] : D:\programy\systemove_programy\Avast\prog_Avast\ashDisp.exe
PDVDDXSrv.exe [CyberLink Corp.] : C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
HpqSRmon.exe [Hewlett-Packard] : D:\programy\HP_ALL-in-one-series\Digital Imaging\bin\HpqSRmon.exe
wmpnetwk.exe [Microsoft Corporation] : C:\Program Files\Windows Media Player\wmpnetwk.exe
firefox.exe [Mozilla Corporation] : D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\firefox.exe
hpswp_clipbook.exe [Hewlett-Packard Co.] : D:\programy\HP_ALL-in-one-series\Digital Imaging\smart web printing\hpswp_clipbook.exe
OTL.exe [OldTimer Tools] : C:\Users\Venda\Desktop\OTL.exe
SpyWareTerminator.exe [Crawler.com] : D:\programy\systemove_programy\Spyware Terminator\SpyWareTerminator.exe

Internet Settings
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain =
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 (64-bit)
R - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain = (64-bit)
R - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Telephony, DomainName = (64-bit)

BHO
02 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - [Hewlett-Packard Co.] : D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
02 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - : C:\ProgramData\LangSoft\WebIE.dll
02 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - [Hewlett-Packard Co.] : D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\hpswp_bho.dll
02 - BHO: HP Smart Web Printing - {555D4D79-4BD2-4094-A395-CFC534424A05} - [Hewlett-Packard Co.] : D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\hpswp_bho.dll
02 - BHO: HP Smart Web Printing - {555D4D79-4BD2-4094-A395-CFC534424A05} - [Hewlett-Packard Co.] : D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\hpswp_bho.dll
02 - BHO: ToolBarButton Class - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - : C:\ProgramData\LangSoft\WebIE.dll
02 - BHO: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - : C:\ProgramData\LangSoft\WebIE.dll
02 - BHO: MenuItem3 Class - {CC963627-B1DC-40E0-B52A-CF21EE748449} - : C:\ProgramData\LangSoft\WebIE.dll
02 - BHO: MenuItem4 Class - {CC963627-B1DC-40E0-B52A-CF21EE748450} - : C:\ProgramData\LangSoft\WebIE.dll
02 - BHO: MenuItem2 Class - {CC963627-B1DC-40E0-B52A-CF21EE748451} - : C:\ProgramData\LangSoft\WebIE.dll
02 - BHO: MenuItem1 Class - {CC963627-B1DC-40E0-B52A-CF21EE748452} - : C:\ProgramData\LangSoft\WebIE.dll
02 - BHO: ClipBookBtn Class - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - [Hewlett-Packard Co.] : D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\hpswp_bho.dll

Toolbars
03 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - : C:\ProgramData\LangSoft\WebIE.dll

StartUps
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, DriverMax_RESTART : [Innovative Solutions] : D:\PROGRAMY\SYSTEMOVE_PROGRAMY\DRIVERMAX\PROG_DRIVERMAX\DEVICES.EXE
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, OM_Monitor : [OLYMPUS IMAGING CORP.] : D:\PROGRAMY\OLYMPUS\OLYMPUSMASTER\MONITOR.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, avast! : [ALWIL Software] : D:\programy\systemove_programy\Avast\prog_Avast\ashDisp.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, PDVDDXSrv : [CyberLink Corp.] : C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, OM_Monitor : [OLYMPUS IMAGING CORP.] : D:\programy\OLYMPUS\OlympusMaster\FirstStart.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, hpqSRMon : [Hewlett-Packard] : D:\programy\HP_ALL-in-one-series\Digital Imaging\bin\HpqSRmon.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, Adobe Reader Speed Launcher : [Adobe Systems Incorporated] : D:\PROGRAMY\ADOBEREADER\PROG_ADOBEREADER\READER\READER_SL.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, COMODO Internet Security : [COMODO] : D:\programy\systemove_programy\firewall\Comodo\COMODO\COMODO Internet Security\cfp.exe (64-bit)
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, QuickSet : [Dell Inc.] : C:\Program Files\Dell\QuickSet\quickset.exe (64-bit)
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, SynTPEnh : [Synaptics Incorporated] : C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (64-bit)
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, SysTrayApp : [IDT, Inc.] : C:\Program Files\IDT\WDM\sttray64.exe (64-bit)

Explorer Bars
HP Smart Web Printing - {555D4D79-4BD2-4094-A395-CFC534424A05} - [Hewlett-Packard Co.] : D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\hpswp_bho.dll
HP Smart Web Printing - {555D4D79-4BD2-4094-A395-CFC534424A05} - [Hewlett-Packard Co.] : D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\hpswp_bho.dll

Shell Extensions
MF ADTS Property Handler - {80009818-f38f-4af1-87b5-eadab9433e58} - [Microsoft Corporation] : C:\Windows\system32\mf.dll
avast - {472083B0-C522-11CF-8763-00608CC02F24} - [ALWIL Software] : D:\programy\systemove_programy\Avast\prog_Avast\ashShell.dll
WinRAR - {B41DB860-8EE4-11D2-9906-E49FADC173CA} - [Alexander Roshal] : D:\programy\systemove_programy\WinRAR\prog_WinRAR\rarext.dll
- {42042206-2D85-11D3-8CFF-005004838597} - [Microsoft Corporation] : D:\programy\Microsoft_Office_Enterprise2007\Office12\msohevi.dll
Nokia Phone Browser - {416651E4-9C3C-11D9-8BDE-F66BAD1E3F3A} - [Nokia] : D:\programy\Nokia_program\Nokia PC Suite 7\PhoneBrowser.dll
PDFTransformer3.PDFTContextMenu.1 - {2DC8E5F2-C89C-4730-82C9-19120DEE5B0A} - [ABBYY] : D:\programy\PDF\program\PDFTContextMenu.dll
SPTHandler - {BD88A479-9623-4897-8546-BC62B9628F44} - [Crawler.com] : D:\programy\systemove_programy\Spyware Terminator\sptcontmenu.dll
MF ADTS Property Handler - {80009818-f38f-4af1-87b5-eadab9433e58} - [Microsoft Corporation] : C:\Windows\system32\mf.dll (64-bit)
avast - {472083B0-C522-11CF-8763-00608CC02F24} - [ALWIL Software] : D:\programy\systemove_programy\Avast\prog_Avast\ashShA64.dll (64-bit)
Comodo AntiVirus - {4255A182-CAD9-4214-A19B-7BA7FB633BBD} - [COMODO] : D:\programy\systemove_programy\firewall\Comodo\COMODO\COMODO Internet Security\cavshell.dll (64-bit)
- {42042206-2D85-11D3-8CFF-005004838597} - [Microsoft Corporation] : C:\Program Files\Microsoft Office\Office12\MSOHEVI.DLL (64-bit)
Microsoft Office Metadata Handler - {993BE281-6695-4BA5-8A2A-7AACBFAAB69E} - [Microsoft Corporation] : C:\Program Files\Common Files\Microsoft Shared\OFFICE12\msoshext.dll (64-bit)
Microsoft Office Thumbnail Handler - {C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} - [Microsoft Corporation] : C:\Program Files\Common Files\Microsoft Shared\OFFICE12\msoshext.dll (64-bit)
Nokia Phone Browser - {416651E4-9C3C-11D9-8BDE-F66BAD1E3F3A} - [Nokia] : D:\programy\Nokia_program\Nokia PC Suite 7\PhoneBrowser64.dll (64-bit)
Spyware Terminator 64bit Context Menu Extension - {1558C2A3-E0E5-4d16-89B2-7E894BD8F350} - : D:\programy\systemove_programy\Spyware Terminator\sptcontmenu64.dll (64-bit)

Protocol Filters
Microsoft Office InfoPath XML Mime Filter - {807563E5-5146-11D5-A672-00B0D022E945} - [Microsoft Corporation] : C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (64-bit)

Protocol Handler
Microsoft HTML About Pluggable Protocol - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - [Microsoft Corporation] : C:\Windows\SysWOW64\mshtml.dll
CDL: Asychronous Pluggable Protocol Handler - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - [Microsoft Corporation] : C:\Windows\SysWOW64\urlmon.dll
DVD: Pluggable Protocol - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - [Microsoft Corporation] : C:\Windows\SysWOW64\msvidctl.dll
file:, local: Asychronous Pluggable Protocol Handler - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - [Microsoft Corporation] : C:\Windows\SysWOW64\urlmon.dll
ftp: Asychronous Pluggable Protocol Handler - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - [Microsoft Corporation] : C:\Windows\SysWOW64\urlmon.dll
http: Asychronous Pluggable Protocol Handler - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - [Microsoft Corporation] : C:\Windows\SysWOW64\urlmon.dll
https: Asychronous Pluggable Protocol Handler - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - [Microsoft Corporation] : C:\Windows\SysWOW64\urlmon.dll
Microsoft HTML Javascript Pluggable Protocol - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - [Microsoft Corporation] : C:\Windows\SysWOW64\mshtml.dll
file:, local: Asychronous Pluggable Protocol Handler - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - [Microsoft Corporation] : C:\Windows\SysWOW64\urlmon.dll
Microsoft HTML Mailto Pluggable Protocol - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - [Microsoft Corporation] : C:\Windows\SysWOW64\mshtml.dll
MHTML Asynchronous Pluggable Protocol Handler - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - [Microsoft Corporation] : C:\Windows\system32\inetcomm.dll
mk: Asychronous Pluggable Protocol Handler - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - [Microsoft Corporation] : C:\Windows\SysWOW64\urlmon.dll
Microsoft HTML Resource Pluggable Protocol - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - [Microsoft Corporation] : C:\Windows\SysWOW64\mshtml.dll
TV: Pluggable Protocol - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - [Microsoft Corporation] : C:\Windows\SysWOW64\msvidctl.dll
Microsoft HTML Javascript Pluggable Protocol - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - [Microsoft Corporation] : C:\Windows\SysWOW64\mshtml.dll
MHTML Asynchronous Pluggable Protocol Handler - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - [Microsoft Corporation] : C:\Windows\system32\inetcomm.dll (64-bit)

Services
23 - [Andrea Electronics Corporation] : C:\Windows\system32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\AESTSr64.exe
23 - [AMD] : C:\Windows\sysnative\atiesrxx.exe
23 - [ATI Technologies Inc.] : C:\Windows\sysnative\DRIVERS\atikmdag.sys
23 - [Advanced Micro Devices, Inc.] : C:\Windows\sysnative\DRIVERS\atikmpag.sys
23 - [Advanced Micro Devices] : C:\Windows\sysnative\DRIVERS\amdxata.sys
23 - [ALWIL Software] : C:\Windows\sysnative\DRIVERS\aswFsBlk.sys
23 - [ALWIL Software] : C:\Windows\sysnative\DRIVERS\aswMonFlt.sys
23 - [ALWIL Software] : D:\programy\systemove_programy\Avast\prog_Avast\aswUpdSv.exe
23 - [ATI Technologies, Inc.] : C:\Windows\sysnative\drivers\AtihdW76.sys
23 - [ALWIL Software] : D:\programy\systemove_programy\Avast\prog_Avast\ashServ.exe
23 - [ALWIL Software] : D:\programy\systemove_programy\Avast\prog_Avast\ashMaiSv.exe
23 - [ALWIL Software] : D:\programy\systemove_programy\Avast\prog_Avast\ashWebSv.exe
23 - [Microsoft Corporation] : C:\Windows\sysnative\DRIVERS\bowser.sys
23 - [COMODO] : C:\Program Files (x86)\COMODO\COMODO livePCsupport\CLPSLS.exe
23 - [COMODO] : D:\programy\systemove_programy\firewall\Comodo\COMODO\COMODO Internet Security\cmdagent.exe
23 - [COMODO] : C:\Windows\sysnative\DRIVERS\cmdguard.sys
23 - [COMODO] : C:\Windows\sysnative\DRIVERS\cmdhlp.sys
23 - [Creative Technology Ltd.] : C:\Windows\sysnative\DRIVERS\CtClsFlt.sys
23 - [Microsoft Corporation] : C:\Windows\sysnative\Drivers\dfsc.sys
23 - [Microsoft Corporation] : C:\Windows\sysnative\drivers\discache.sys
23 - [LogMeIn, Inc.] : C:\Windows\sysnative\DRIVERS\hamachi.sys
23 - [Intel Corporation] : C:\Windows\sysnative\DRIVERS\iaStor.sys
23 - [COMODO] : C:\Windows\sysnative\DRIVERS\inspect.sys
23 - [Broadcom Corporation] : C:\Windows\sysnative\DRIVERS\k57nd60a.sys
23 - [Microsoft Corporation] : C:\Windows\sysnative\DRIVERS\mrxsmb10.sys
23 - [Microsoft Corporation] : C:\Windows\sysnative\DRIVERS\mssmbios.sys
23 - [Intel Corporation] : C:\Windows\sysnative\DRIVERS\NETwNs64.sys
23 - [REDC] : C:\Windows\sysnative\DRIVERS\rimmpx64.sys
23 - [REDC] : C:\Windows\sysnative\DRIVERS\rimspx64.sys
23 - [REDC] : C:\Windows\sysnative\DRIVERS\rixdpx64.sys
23 - : C:\Windows\sysnative\Drivers\sptd.sys
23 - [Windows (R) Win 7 DDK provider] : C:\Windows\sysnative\DRIVERS\stflt.sys
23 - [Xacti LLC] : D:\programy\systemove_programy\Spyware Terminator\sp_rsser.exe
23 - [IDT, Inc.] : C:\Windows\system32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\stacsv64.exe
23 - [IDT, Inc.] : C:\Windows\sysnative\DRIVERS\stwrt64.sys
23 - [Synaptics Incorporated] : C:\Windows\sysnative\DRIVERS\SynTP.sys
23 - [Microsoft Corporation] : C:\Program Files\Windows Media Player\wmpnetwk.exe
23 - [CyberLink Corp.] : C:\Program Files (x86)\CyberLink\PowerDVD DX\000.fcl

Threat Files
<Tracking Flash Shared Objects> : C:\Users\Venda\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\DX4G579C\core.mochibot.com\com.mochibot.sol
<Tracking Flash Shared Objects> : C:\Users\Venda\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\DX4G579C\flash.quantserve.com\com.quantserve.sol
<Tracking Flash Shared Objects> : C:\Users\Venda\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\DX4G579C\inplay.tubemogul.com\InPlayInfo.sol

Advanced Files Report
%WINDIR%\sysnative\smss.exe [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=1911A3356FA3F77CCC825CCBAC038C2A SIZE=112640
%WINDIR%\sysnative\csrss.exe [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=60C2862B4BF0FD9F582EF344C2B1EC72 SIZE=7680
%WINDIR%\sysnative\csrss.exe [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=60C2862B4BF0FD9F582EF344C2B1EC72 SIZE=7680
%WINDIR%\sysnative\services.exe [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=24ACB7E5BE595468E3B9AA488B9B4FCB SIZE=328704
%WINDIR%\sysnative\lsass.exe [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=0793F40B9B8A1BDD266296409DBD91EA SIZE=31232
%WINDIR%\sysnative\lsm.exe [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=04FCA22B77A2E37332CC8226187AF87B SIZE=333312
%PROGRAMFILES%\COMODO\COMODO livePCsupport\CLPSLS.exe [COMODO] [COMODO livePCsupport] MD5=CB2D26EA66F91F88D12436F6794B2D1E SIZE=148744
%WINDIR%\SysWOW64\guard32.dll [COMODO] [COMODO Internet Security] MD5=B8D683BD1DF3B33B183338A8E16CA566 SIZE=285480
D:\programy\systemove_programy\firewall\Comodo\COMODO\COMODO Internet Security\cmdagent.exe [COMODO] [COMODO Internet Security] MD5=045A821BCCD505FE0D00EA31E0504B98 SIZE=2528856
%WINDIR%\sysnative\winlogon.exe [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=DA3E2A6FA9660CC75B471530CE88453A SIZE=389632
%WINDIR%\sysnative\atiesrxx.exe [AMD] [AMD External Events] MD5=EE048EF96EE7F7FDF1DCE45C9EBBF19A SIZE=203264
%WINDIR%\sysnative\atiesrxx.exe [AMD] [AMD External Events] MD5=EE048EF96EE7F7FDF1DCE45C9EBBF19A SIZE=203264
%SYSDIR%\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\stacsv64.exe [IDT, Inc.] [IDT PC Audio] MD5=5697FB5DCF36ADA09C153378E88AE6AD SIZE=244736
%WINDIR%\sysnative\atieclxx.exe [AMD] [AMD External Events] MD5=CA5CE31F2A7A284BABBD6E43F2FB6A60 SIZE=461824
%WINDIR%\sysnative\atieclxx.exe [AMD] [AMD External Events] MD5=CA5CE31F2A7A284BABBD6E43F2FB6A60 SIZE=461824
D:\programy\systemove_programy\Avast\prog_Avast\aswUpdSv.exe [ALWIL Software] [avast! Antivirus] MD5=5DEBC3519D489411073FA7E56FFB4A93 SIZE=18752
D:\programy\systemove_programy\Avast\prog_Avast\aswCmnS.dll [ALWIL Software] [avast! Antivirus] MD5=7D79CD441ED208D062B326145C7B3AED SIZE=192512
D:\programy\systemove_programy\Avast\prog_Avast\aswCmnOS.dll [ALWIL Software] [avast! Antivirus] MD5=6D6416FA182FA865D265DFFA5A03C3C2 SIZE=81920
D:\programy\systemove_programy\Avast\prog_Avast\aswCmnB.dll [ALWIL Software] [avast! Antivirus] MD5=F8DF17A0090F29EE330B34145152F38A SIZE=131072
D:\programy\systemove_programy\Avast\prog_Avast\ashServ.exe [ALWIL Software] [avast! Antivirus] MD5=0AAF6B848185899CF76AE04E62EAB3D2 SIZE=138680
D:\programy\systemove_programy\Avast\prog_Avast\aswAux.dll [ALWIL Software] [avast! Antivirus] MD5=8EA778943B7E155991AE9E3C818269AB SIZE=659456
D:\programy\systemove_programy\Avast\prog_Avast\aswEngin.dll [ALWIL Software] [avast! Antivirus] MD5=144137D2E91504F551E82135673D89AE SIZE=1327104
D:\programy\systemove_programy\Avast\prog_Avast\aswScan.dll [ALWIL Software] [avast! Antivirus] MD5=9FB2179200238536B788CB4046C61C24 SIZE=86016
D:\programy\systemove_programy\Avast\prog_Avast\ashBase.dll [ALWIL Software] [avast! Antivirus] MD5=E8B0EDD5C8518D9A1F73AC0C54A94D7C SIZE=225280
D:\programy\systemove_programy\Avast\prog_Avast\ashTask.dll [ALWIL Software] [avast! Antivirus] MD5=0B9DBFE71F4EB4355985EE60E6A1DC3F SIZE=118784
D:\programy\systemove_programy\Avast\prog_Avast\aswInteg.dll [ALWIL Software] [avast! Antivirus] MD5=D933B267939363888A40F86017561552 SIZE=23040
D:\programy\systemove_programy\Avast\prog_Avast\aswIdle.dll [ALWIL Software] [avast! Antivirus] MD5=C04BDF9FD9A6903FD49ECB798BD26E94 SIZE=11584
D:\programy\systemove_programy\Avast\prog_Avast\Aavm4h.dll [ALWIL Software] [avast! Antivirus] MD5=6CA1292225B47A5421E941B3CFEF48AF SIZE=225280
D:\programy\systemove_programy\Avast\prog_Avast\AavmRpch.dll [ALWIL Software] [avast! Antivirus] MD5=F3EAC60879AE425D81DBA70C3DA76D13 SIZE=20992
D:\programy\systemove_programy\Avast\prog_Avast\Czech\Base.dll [ALWIL Software] [avast! Antivirus] MD5=D846307FFBBF520F2E92F6BEBA607390 SIZE=90112
D:\programy\systemove_programy\Avast\prog_Avast\AhResMai.dll [ALWIL Software] [avast! Antivirus] MD5=60DA054E9DDFC242346B879EAAF1EBCE SIZE=35840
D:\programy\systemove_programy\Avast\prog_Avast\ahResMes.dll [ALWIL Software] [avast! Antivirus] MD5=A7469E3BE8770E7015CA499BA6729568 SIZE=32768
D:\programy\systemove_programy\Avast\prog_Avast\AhResNS.dll [ALWIL Software] [avast! Antivirus] MD5=B3840EB1F44C28CA25D304FD1DA86954 SIZE=35840
D:\programy\systemove_programy\Avast\prog_Avast\AhResOut.dll [ALWIL Software] [avast! Antivirus] MD5=D3DE25C3CA9BCE6805E028C5DD304304 SIZE=29696
D:\programy\systemove_programy\Avast\prog_Avast\ahResP2P.dll [ALWIL Software] [avast! Antivirus] MD5=6E5E0EE9C837229C26C3B53B2036E44D SIZE=33280
D:\programy\systemove_programy\Avast\prog_Avast\AhResStd.dll [ALWIL Software] [avast! Antivirus] MD5=816CAE36B3D430622EB4D40CF9CC1E82 SIZE=43008
D:\programy\systemove_programy\Avast\prog_Avast\AhResWS.dll [ALWIL Software] [avast! Antivirus] MD5=0C923A24FB7E7D6B4D210537F36E5296 SIZE=53248
D:\programy\systemove_programy\Avast\prog_Avast\ashSSqlt.dll [ALWIL Software] [avast! Antivirus] MD5=B26CF29C64FDF7876D0E81C27C80F7BF SIZE=233472
D:\programy\systemove_programy\Avast\prog_Avast\asw5Ldr2.dll [ALWIL Software] [avast! antivirus] MD5=454E1029569FB5171BAB6AF18999A8D6 SIZE=13608
D:\programy\systemove_programy\Avast\prog_Avast\aswRes.dll [ALWIL Software] [avast! Antivirus] MD5=7604EFEA62ACC8E90C8D7DCC58D577AF SIZE=147456
%WINDIR%\sysnative\spoolsv.exe [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=F8E1FA03CB70D54A9892AC88B91D1E7B SIZE=558592
D:\programy\PDF\program\NetworkLicenseServer.exe [ABBYY] [Licensing] MD5=B33CF4DE909A5B30F526D82053A63C8E SIZE=759048
D:\programy\PDF\program\FineObj.dll [ABBYY (BIT Software)] [Fine Objects Classes Library (Unicode version)] MD5=81045AFBBE1E636BADA4A4A7860EFCD9 SIZE=398600
D:\programy\PDF\program\FineNet.dll [ABBYY (BIT Software)] [FineNet Library] MD5=B68A4621086057415A615407F1941DC0 SIZE=136456
D:\programy\PDF\program\AbbyyZlib.dll [ABBYY] [Licensing] MD5=DB8AA8CCA66DBD641C2B942ED5C15CE5 SIZE=59656
d:\programy\pdf\program\productlicensingshared.dll [ABBYY] [Licensing] MD5=FD50B596A5C2FC595AAE0D5A791B939A SIZE=30984
d:\programy\pdf\program\productlicensing16.dll [ABBYY] [Licensing] MD5=08E688BEE5FEF9214B9BB15CFB36E23A SIZE=111880
%SYSDIR%\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\AESTSr64.exe [Andrea Electronics Corporation] [APO Access Service (64-bit)] MD5=A6FB9DB8F1A86861D955FD6975977AE0 SIZE=89600
d:\programy\hp_all-in-one-series\digital imaging\bin\hpqddsvc.dll [Hewlett-Packard Co.] [HP Digital Imaging] MD5=99E8EEF42FE2F4AF29B08C3355DD7685 SIZE=133120
d:\programy\hp_all-in-one-series\digital imaging\bin\hpqddcmn.dll [Hewlett-Packard Co.] [HP Digital Imaging] MD5=4909501F53DA2EB6603848944C45F524 SIZE=213504
d:\programy\hp_all-in-one-series\digital imaging\bin\hpqcxs08.dll [Hewlett-Packard Co.] [HP Digital Imaging] MD5=1DAE5C46D42B02A6D5862E1482EFB390 SIZE=249344
D:\programy\systemove_programy\Spyware Terminator\sp_rsser.exe [Xacti LLC] [Spyware Terminator] MD5=7DDBDA0DDA8BD831EE8839ADD067FA7E SIZE=1033255
D:\programy\systemove_programy\Avast\prog_Avast\ashWebSv.exe [ALWIL Software] [avast! Antivirus] MD5=D86010C96ABADDA75356834D6113D37D SIZE=352920
D:\programy\systemove_programy\Avast\prog_Avast\ashWsFtr.dll [ALWIL Software] [avast! Antivirus] MD5=35143F5555558B38EDD8FC671A828F66 SIZE=56280
D:\programy\systemove_programy\Avast\prog_Avast\ashMaiSv.exe [ALWIL Software] [avast! Antivirus] MD5=B2F564DC59B67763C73269E1A9DA7F18 SIZE=254040
D:\programy\systemove_programy\Avast\prog_Avast\Czech\Lang.dll [ALWIL Software] [avast! Antivirus] MD5=71994A422B986B54142295E08C19F2AF SIZE=2543616
D:\programy\systemove_programy\Avast\prog_Avast\Czech\langmai.dll [ALWIL Software] [avast! Antivirus] MD5=C15C1F8A15F1433B1D77096DD05A59D0 SIZE=57344
%WINDIR%\sysnative\taskhost.exe [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=3EEFB971D61EF9638FD21F14C703CA11 SIZE=69120
%WINDIR%\sysnative\dwm.exe [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=F162D5F5E845B9DC352DD1BAD8CEF1BC SIZE=120320
%SystemDiskRoot%\Program Files\Synaptics\SynTP\SynTPHelper.exe [Synaptics Incorporated] [Synaptics Pointing Device Driver] MD5=BE8DA7A8E6F3C27D57E478B5044EBD4E SIZE=121128
d:\programy\systemove_programy\avast\prog_avast\ahruimai.dll [ALWIL Software] [avast! Antivirus] MD5=02BD0FEACAA1A65F77806A3C3DEBD046 SIZE=94208
D:\programy\systemove_programy\Avast\prog_Avast\ashUInt.dll [ALWIL Software] [avast! Antivirus] MD5=FCE48F51523E38C5E74969766B353D73 SIZE=331776
D:\programy\systemove_programy\Avast\prog_Avast\uiAux2.dll [ALWIL Software] [avast! Antivirus] MD5=807C504C71812E08BC42DE212444ED2E SIZE=1317000
D:\programy\systemove_programy\Avast\prog_Avast\XT1922.dll [Codejock Software] [XTToolkit Dynamic Link Library] MD5=6C08604B5465DE19EAAC58C6A537D0BF SIZE=917504
d:\programy\systemove_programy\avast\prog_avast\ahruimes.dll [ALWIL Software] [avast! Antivirus] MD5=27BB54223D4AAEBBEB0E65DF776CF6C2 SIZE=57344
d:\programy\systemove_programy\avast\prog_avast\ahruins.dll [ALWIL Software] [avast! Antivirus] MD5=99C120153031FBD057D4FA0499FFF755 SIZE=57344
d:\programy\systemove_programy\avast\prog_avast\ahruiout.dll [ALWIL Software] [avast! Antivirus] MD5=9625471205DFC433FB73E231FC9CBB01 SIZE=118784
d:\programy\systemove_programy\avast\prog_avast\ahruip2p.dll [ALWIL Software] [avast! Antivirus] MD5=E5C7E4C34E43BFD68DE1CF2034FE9AF8 SIZE=22528
d:\programy\systemove_programy\avast\prog_avast\ahruistd.dll [ALWIL Software] [avast! Antivirus] MD5=CB39A7024BE54E75E3B696272FDC0987 SIZE=57344
d:\programy\systemove_programy\avast\prog_avast\ahruiws.dll [ALWIL Software] [avast! Antivirus] MD5=8F933065A585EAFD798DD5E49598CDCB SIZE=49152
%SYSDIR%\atiu9pag.dll [Advanced Micro Devices, Inc.] [Advanced Micro Devices, Inc PowerXpress Vista User Mode Driver] MD5=0AE1AE9D94540F2201C841835A94A9BB SIZE=27648
%PROGRAMFILES%\CyberLink\PowerDVD DX\Kernel\common\CLRCEngine3.dll [CyberLink Corp.] [Cyberlink PowerCinema] MD5=807FDF2619924509040893C61BD58DAF SIZE=74984
%SystemDiskRoot%\Program Files\Windows Media Player\wmpnetwk.exe [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=9BF014C20F91D97055532F2F5496E7BD SIZE=1525248
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\firefox.exe [Mozilla Corporation] [Firefox] MD5=A26898623D61508C2FA3F5672C11FA5D SIZE=910296
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\xul.dll [Mozilla Foundation] [Firefox] MD5=7146C9ACF989DA2E5D7B5DBC3F6F3D6C SIZE=11663832
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\sqlite3.dll [sqlite.org] [SQLite Database Library] MD5=7F6DD18A4AFAC8020FAD89631F3EED4E SIZE=467928
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\MOZCRT19.dll [Mozilla Foundation] [Mozilla Custom C Runtime] MD5=1CEAFCE0AAD2C0B5BF9F7A2ABC0AE1B4 SIZE=718296
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\js3250.dll MD5=9622610413EAABC28D2F258301E692C5 SIZE=1016280
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\nspr4.dll [Mozilla Foundation] [Netscape Portable Runtime] MD5=9B8543DB6744B4ECABC5866A91DC03B4 SIZE=202200
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\smime3.dll [Mozilla Foundation] [Network Security Services] MD5=21C81C96FC4C2346E8EF7B3BD7824B1E SIZE=103896
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\nss3.dll [Mozilla Foundation] [Network Security Services] MD5=F15E1A8A98BBFAD60D09AC990EED67F0 SIZE=644568
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\nssutil3.dll [Mozilla Foundation] [Network Security Services] MD5=E9925EFD5D9F0B00411F2BD4A9DD5FBE SIZE=87512
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\plc4.dll [Mozilla Foundation] [Netscape Portable Runtime] MD5=E02B3140A54E0ACA6776C75E7F8EFD7F SIZE=20440
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\plds4.dll [Mozilla Foundation] [Netscape Portable Runtime] MD5=7414916F9ACF40C50D7D57B639C3AF13 SIZE=17368
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\ssl3.dll [Mozilla Foundation] [Network Security Services] MD5=BF58F3B61B448A9FF0AC30E22E104DB1 SIZE=140760
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\MOZCPP19.dll [Mozilla Foundation] [Mozilla Custom C++ Runtime] MD5=3626708288AAAC7436866041D0DF83BF SIZE=718296
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\xpcom.dll [Mozilla Foundation] [Firefox] MD5=1D8861D1BD4B25519F94077A135CFCCC SIZE=17880
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\components\browserdirprovider.dll [Mozilla Foundation] [Firefox] MD5=05A22F274A31C0503BFFA0CB700A82BF SIZE=23512
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\components\brwsrcmp.dll [Mozilla Foundation] [Firefox] MD5=F49C7149B63931934B16EBABE459FD41 SIZE=138712
D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSWPOperation.dll [Hewlett-Packard Co.] [HP ClipBook component for HP Smart Web Printing] MD5=BFF0DBA8D52D2B6F57047F352576EE17 SIZE=22016
D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPLogging.dll [Hewlett-Packard Co.] [HP XPLogging plugin for HP Smart Web Printing] MD5=43341A8C13EE343D4BBEA201701D84C4 SIZE=26168
D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpNeoLogger.dll [Hewlett-Packard Co.] [HP NeoLogger plugin for HP Smart Web Printing] MD5=777DE85051FD78C81EB9A023C5B60096 SIZE=71736
D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpClipBookDB.dll [Hewlett-Packard Co.] [HP ClipBook DB component for HP Smart Web Printing] MD5=D2940110A39423BCBAC4CD0191D24F44 SIZE=290872
D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\hpswp_Operation.dll [Hewlett-Packard Co.] [HP Smart Web Printing] MD5=20BB05C0830B552B53B11E3EEF44495E SIZE=144952
D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\RsrcLoaderLib.dll [Hewlett-Packard Co.] [HP Smart Web Printing] MD5=DCDF0E5937428700F672034F60C35DFD SIZE=30776
D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\UtilityLib.dll [Hewlett-Packard Co.] [HP Smart Web Printing] MD5=B8CD8340E03DBE6762894F3670FE7A08 SIZE=116280
D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\SatelliteCSY.dll [Hewlett-Packard Co.] [HP Smart Web Printing] MD5=975412D857974E8382FC8C560E26A7F4 SIZE=202296
D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\MozillaAddOn3\xre\components\hpNeoLogging.dll [Hewlett-Packard Co.] [HP NeoLogging plugin for HP Smart Web Printing] MD5=9D137C8732E1C9E7A95520EFF1218E20 SIZE=44032
D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\MozillaAddOn3\xre\components\hpXRE.dll [Hewlett-Packard Co.] [HP XRE plugin for HP Smart Web Printing] MD5=3030652E034822E7789770C0ED821675 SIZE=46592
D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSmartWebPrinting.dll [Hewlett-Packard Co.] [HP SmartWebPrinting component for HP Smart Web Printing] MD5=61BAE288E129738EB9DFC91F310D6EA9 SIZE=31800
D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXREStub.dll [Hewlett-Packard Co.] [HP XRE stub component for HP Smart Web Printing] MD5=E84CC939B0813798E3D6860CA74B9440 SIZE=11776
D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPMTL.dll [Hewlett-Packard Co.] [HP XPMTL component for HP Smart Web Printing] MD5=444588D1C9641D612FFA4F859A709F33 SIZE=15872
D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPMTC.dll [Hewlett-Packard Co.] [HP XPMTC component for HP Smart Web Printing] MD5=2B6667D2AE3E6023B103E5634FCF734B SIZE=43008
D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\ClipBookDBComponent.dll [Hewlett-Packard Co.] [HP Smart Web Printing] MD5=34CF9D0CBF34800D3F07F8644438BF46 SIZE=144952
D:\programy\HP_ALL-in-one-series\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSmartSelect.dll [Hewlett-Packard Co.] [HP SmartSelect component for HP Smart Web Printing] MD5=C9D1542D343D8A72060AE19D66F0A9B8 SIZE=56376
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\softokn3.dll [Mozilla Foundation] [Network Security Services] MD5=77CA7D5FE15C3C68233017C6FBE87DA0 SIZE=155648
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\nssdbm3.dll [Mozilla Foundation] [Network Security Services] MD5=46C963A1468FCDC8729555DACC83CF91 SIZE=98304
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\freebl3.dll [Mozilla Foundation] [Network Security Services] MD5=324A9275A3BA33CF77A2D8D0C67F10CF SIZE=249856
D:\programy\systemove_programy\mozilla_firefox\prog_mozilafirefox\nssckbi.dll [Mozilla Foundation] [Network Security Services] MD5=EB0E1487C12AD587A80984B85EB96AAF SIZE=333272
D:\programy\HP_ALL-in-one-series\Digital Imaging\smart web printing\hpswp_clipbook.exe [Hewlett-Packard Co.] [HP Smart Web Printing] MD5=53C62FB3B0BAD66EC2026977D707A2A4 SIZE=116280
%DESKTOP%\OTL.exe [OldTimer Tools] [OTL] MD5=02149667F3AB803FCFF765F666026BEE SIZE=575488
D:\programy\systemove_programy\Spyware Terminator\SpyWareTerminator.exe [Crawler.com] [Spyware Terminator] MD5=ADAE0273F13E3675BA5F478FD5C2A570 SIZE=15424880
%SYSDIR%\mf.dll [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=80EFBCAFBD26956B69EE9CEFC93423B0 SIZE=3177984
D:\programy\systemove_programy\Avast\prog_Avast\ashShell.dll [ALWIL Software] [avast! Antivirus] MD5=3AED3D57A27B07D017B53572CEB1A3AC SIZE=76880
D:\programy\systemove_programy\WinRAR\prog_WinRAR\rarext.dll [Alexander Roshal] [WinRAR] MD5=E0A7D542B66725FE81EB9F5AEB9B1E82 SIZE=141824
D:\programy\Microsoft_Office_Enterprise2007\Office12\msohevi.dll [Microsoft Corporation] [2007 Microsoft Office system] MD5=269552E0E5BD5BFE0DA7AD42FAC34C37 SIZE=61816
D:\programy\Nokia_program\Nokia PC Suite 7\PhoneBrowser.dll [Nokia] [Phone Browser] MD5=DDF5324E0F3065846E9B65FF3AFD379E SIZE=614400
D:\programy\PDF\program\PDFTContextMenu.dll [ABBYY] [ABBYY FineReader] MD5=41973BA4AAB1AE76119DFEBDE08EC5D4 SIZE=345352
D:\programy\systemove_programy\Spyware Terminator\sptcontmenu.dll [Crawler.com] [Spyware Terminator] MD5=A5E97B2B88CC48FC178E88BF6E02F5EC SIZE=164352
D:\programy\systemove_programy\Avast\prog_Avast\ashShA64.dll [ALWIL Software] [avast! Antivirus] MD5=69CB8F526500F99F702678135DA27452 SIZE=81072
D:\programy\systemove_programy\firewall\Comodo\COMODO\COMODO Internet Security\cavshell.dll [COMODO] [COMODO Internet Security] MD5=6974A9C6F3F6243DE8929E518BF45D51 SIZE=787400
%SystemDiskRoot%\Program Files\Microsoft Office\Office12\MSOHEVI.DLL [Microsoft Corporation] [2007 Microsoft Office system] MD5=96E5044EB7940C4FAD04891414955449 SIZE=110968
%SystemDiskRoot%\Program Files\Common Files\Microsoft Shared\OFFICE12\msoshext.dll [Microsoft Corporation] [Microsoft Office] MD5=AA6828F8062F194AA709CE425E74CAB4 SIZE=1586568
D:\programy\Nokia_program\Nokia PC Suite 7\PhoneBrowser64.dll [Nokia] [Phone Browser] MD5=8AD7DA9E93B2E18F8BCBC82D032778AF SIZE=888832
D:\programy\systemove_programy\Spyware Terminator\sptcontmenu64.dll MD5=7451630C9AEE1AD1AC4AC3CE40D76F36 SIZE=76288
%WINDIR%\sysnative\DRIVERS\1394ohci.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=1B00662092F9F9568B995902F0CC40D5 SIZE=227840
D:\programy\PDF\program\NetworkLicenseServer.exe -service
%WINDIR%\sysnative\DRIVERS\ACPI.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=6F11E88748CDEFD2F76AA215F97DDFE5 SIZE=334416
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\drivers\afd.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=B9384E03479D2506BC924C16A3DB87BC SIZE=500224
%WINDIR%\sysnative\atiesrxx.exe [AMD] [AMD External Events] MD5=EE048EF96EE7F7FDF1DCE45C9EBBF19A SIZE=203264
%WINDIR%\sysnative\atiesrxx.exe [AMD] [AMD External Events] MD5=EE048EF96EE7F7FDF1DCE45C9EBBF19A SIZE=203264
%WINDIR%\sysnative\DRIVERS\atikmdag.sys [ATI Technologies Inc.] [ATI Radeon Family] MD5=8D8D3E85EFD9DD9718F879A49F9180A4 SIZE=7451648
%WINDIR%\sysnative\DRIVERS\atikmdag.sys [ATI Technologies Inc.] [ATI Radeon Family] MD5=8D8D3E85EFD9DD9718F879A49F9180A4 SIZE=7451648
%WINDIR%\sysnative\DRIVERS\atikmpag.sys [Advanced Micro Devices, Inc.] [AMD driver] MD5=B5EC8AEF50FE15B294EBC6AA3BDA1BE6 SIZE=268288
%WINDIR%\sysnative\DRIVERS\atikmpag.sys [Advanced Micro Devices, Inc.] [AMD driver] MD5=B5EC8AEF50FE15B294EBC6AA3BDA1BE6 SIZE=268288
%WINDIR%\sysnative\DRIVERS\amdxata.sys [Advanced Micro Devices] [Storage Filter Driver] MD5=B4AD0CACBAB298671DD6F6EF7E20679D SIZE=28752
%WINDIR%\sysnative\DRIVERS\amdxata.sys [Advanced Micro Devices] [Storage Filter Driver] MD5=B4AD0CACBAB298671DD6F6EF7E20679D SIZE=28752
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\DRIVERS\aswFsBlk.sys [ALWIL Software] [avast! Antivirus System] MD5=5BAB6D80435F9DFF95A7E86C69110B32 SIZE=22096
%WINDIR%\sysnative\DRIVERS\aswFsBlk.sys [ALWIL Software] [avast! Antivirus System] MD5=5BAB6D80435F9DFF95A7E86C69110B32 SIZE=22096
%WINDIR%\sysnative\DRIVERS\aswMonFlt.sys [ALWIL Software] [avast! Antivirus System] MD5=6067EC1C153F07A9E8E76B45DF4D9F8D SIZE=65616
%WINDIR%\sysnative\DRIVERS\aswMonFlt.sys [ALWIL Software] [avast! Antivirus System] MD5=6067EC1C153F07A9E8E76B45DF4D9F8D SIZE=65616
%WINDIR%\sysnative\DRIVERS\asyncmac.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=769765CE2CC62867468CEA93969B2242 SIZE=23040
%WINDIR%\sysnative\DRIVERS\atapi.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=02062C0B390B7729EDC9E69C680A6F3C SIZE=24128
%WINDIR%\sysnative\drivers\AtihdW76.sys [ATI Technologies, Inc.] [ATI HDMI Audio Driver] MD5=FDA1E117A7E880BFF5540D180C06EA87 SIZE=116240
%WINDIR%\sysnative\drivers\AtihdW76.sys [ATI Technologies, Inc.] [ATI HDMI Audio Driver] MD5=FDA1E117A7E880BFF5540D180C06EA87 SIZE=116240
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalServiceNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalServiceNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalServiceNoNetwork
%WINDIR%\sysnative\svchost.exe -k LocalServiceNoNetwork
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\DRIVERS\blbdrive.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=61583EE3C3A17003C4ACD0475646B4D3 SIZE=45056
%WINDIR%\sysnative\DRIVERS\bowser.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=91CE0D3DC57DD377E690A2D324022B08 SIZE=90624
%WINDIR%\sysnative\DRIVERS\bowser.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]

Venca B. · #20 Příspěvek od **Venca B.** » 14 říj 2010 18:18

MD5=91CE0D3DC57DD377E690A2D324022B08 SIZE=90624
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\DRIVERS\cdrom.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=83D2D75E1EFB81B3450C18131443F7DB SIZE=147456
%WINDIR%\sysnative\CLFS.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=FE1EC06F2253F691FE36217C592A0206 SIZE=367696
%WINDIR%\sysnative\DRIVERS\CmBatt.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=0840155D0BDDF1190F84A663C284BD33 SIZE=17664
%WINDIR%\sysnative\DRIVERS\cmdguard.sys [COMODO] [COMODO Internet Security Sandbox Driver] MD5=BC61EEE90FCE989AB61B582B3A4B2357 SIZE=249496
%WINDIR%\sysnative\DRIVERS\cmdguard.sys [COMODO] [COMODO Internet Security Sandbox Driver] MD5=BC61EEE90FCE989AB61B582B3A4B2357 SIZE=249496
%WINDIR%\sysnative\DRIVERS\cmdhlp.sys [COMODO] [COMODO Internet Security Helper Driver] MD5=3D373D57CCAC4A46F6C7191604A5B838 SIZE=33208
%WINDIR%\sysnative\DRIVERS\cmdhlp.sys [COMODO] [COMODO Internet Security Helper Driver] MD5=3D373D57CCAC4A46F6C7191604A5B838 SIZE=33208
%WINDIR%\sysnative\Drivers\cng.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=F95FD4CB7DA00BA2A63CE9F6B5C053E1 SIZE=460504
%WINDIR%\sysnative\DRIVERS\compbatt.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=102DE219C3F61415F964C88E9085AD14 SIZE=21584
%WINDIR%\sysnative\DRIVERS\CompositeBus.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=F26B3A86F6FA87CA360B879581AB4123 SIZE=38912
%WINDIR%\sysnative\svchost.exe -k NetworkService
%WINDIR%\sysnative\svchost.exe -k NetworkService
%WINDIR%\sysnative\DRIVERS\CtClsFlt.sys [Creative Technology Ltd.] MD5=11F13042577705093612C6A123CAF12F SIZE=160704
%WINDIR%\sysnative\DRIVERS\CtClsFlt.sys [Creative Technology Ltd.] MD5=11F13042577705093612C6A123CAF12F SIZE=160704
%WINDIR%\sysnative\svchost.exe -k DcomLaunch
%WINDIR%\sysnative\svchost.exe -k DcomLaunch
%WINDIR%\sysnative\Drivers\dfsc.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=3F1DC527070ACB87E40AFE46EF6DA749 SIZE=102400
%WINDIR%\sysnative\Drivers\dfsc.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=3F1DC527070ACB87E40AFE46EF6DA749 SIZE=102400
%WINDIR%\sysnative\svchost.exe -k LocalServiceNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalServiceNetworkRestricted
%WINDIR%\sysnative\drivers\discache.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=13096B05847EC78F0977F2C0F79E9AB3 SIZE=40448
%WINDIR%\sysnative\drivers\discache.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=13096B05847EC78F0977F2C0F79E9AB3 SIZE=40448
%WINDIR%\sysnative\DRIVERS\disk.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=9819EEE8B5EA3784EC4AF3B137A5244C SIZE=73280
%WINDIR%\sysnative\svchost.exe -k NetworkService
%WINDIR%\sysnative\svchost.exe -k NetworkService
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalServiceNoNetwork
%WINDIR%\sysnative\svchost.exe -k LocalServiceNoNetwork
%WINDIR%\sysnative\drivers\dxgkrnl.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=EBCE0B0924835F635F620D19F0529DCE SIZE=982600
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k LocalServiceNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalServiceNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalService
%WINDIR%\sysnative\svchost.exe -k LocalService
%WINDIR%\sysnative\svchost.exe -k LocalService
%WINDIR%\sysnative\svchost.exe -k LocalService
%WINDIR%\sysnative\svchost.exe -k LocalServiceAndNoImpersonation
%WINDIR%\sysnative\svchost.exe -k LocalServiceAndNoImpersonation
%WINDIR%\sysnative\drivers\fileinfo.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=655661BE46B5F5F3FD454E2C3095B930 SIZE=70224
%WINDIR%\sysnative\drivers\fltmgr.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=F7866AF72ABBAF84B1FA5AA195378C59 SIZE=290368
%WINDIR%\sysnative\DRIVERS\fvevol.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=AE87BA80D0EC3B57126ED2CDC15B24ED SIZE=223448
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\DRIVERS\hamachi.sys [LogMeIn, Inc.] [Hamachi Virtual Network Interface Driver] MD5=F8F0851D336C3B88DBD7232B6348E09A SIZE=33344
%WINDIR%\sysnative\DRIVERS\hamachi.sys [LogMeIn, Inc.] [Hamachi Virtual Network Interface Driver] MD5=F8F0851D336C3B88DBD7232B6348E09A SIZE=33344
%WINDIR%\sysnative\DRIVERS\HDAudBus.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=0A49913402747A0B67DE940FB42CBDBB SIZE=122368
%WINDIR%\sysnative\DRIVERS\hidusb.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=B3BF6B5B50006DEF50B66306D99FCF6F SIZE=30208
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalServiceNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalServiceNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k hpdevmgmt
%WINDIR%\sysnative\svchost.exe -k hpdevmgmt
%WINDIR%\sysnative\svchost.exe -k hpdevmgmt
%WINDIR%\sysnative\svchost.exe -k hpdevmgmt
%WINDIR%\sysnative\svchost.exe -k HPService
%WINDIR%\sysnative\svchost.exe -k HPService
%WINDIR%\sysnative\drivers\HTTP.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=CEE049CAC4EFA7F4E1E4AD014414A5D4 SIZE=751616
%WINDIR%\sysnative\drivers\hwpolicy.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=F17766A19145F111856378DF337A5D79 SIZE=14416
%WINDIR%\sysnative\DRIVERS\i8042prt.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=FA55C73D4AFFA7EE23AC4BE53B4592D3 SIZE=105472
%WINDIR%\sysnative\DRIVERS\iaStor.sys [Intel Corporation] [Intel Rapid Storage Technology driver] MD5=2064090C9FAAD92C090D77E50E735B2E SIZE=540696
%WINDIR%\sysnative\DRIVERS\iaStor.sys [Intel Corporation] [Intel Rapid Storage Technology driver] MD5=2064090C9FAAD92C090D77E50E735B2E SIZE=540696
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\DRIVERS\inspect.sys [COMODO] [COMODO Internet Security Firewall Driver] MD5=5166C05937E2744C340E0C959754B4DC SIZE=88304
%WINDIR%\sysnative\DRIVERS\inspect.sys [COMODO] [COMODO Internet Security Firewall Driver] MD5=5166C05937E2744C340E0C959754B4DC SIZE=88304
%WINDIR%\sysnative\DRIVERS\intelppm.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=ADA036632C664CAA754079041CF1F8C1 SIZE=62464
%WINDIR%\sysnative\svchost.exe -k NetSvcs
%WINDIR%\sysnative\svchost.exe -k NetSvcs
%WINDIR%\sysnative\DRIVERS\k57nd60a.sys [Broadcom Corporation] [Broadcom NetLink (TM) Gigabit Ethernet Driver] MD5=652946E14F9014CE2C43B98EBF95E0B6 SIZE=384552
%WINDIR%\sysnative\DRIVERS\k57nd60a.sys [Broadcom Corporation] [Broadcom NetLink (TM) Gigabit Ethernet Driver] MD5=652946E14F9014CE2C43B98EBF95E0B6 SIZE=384552
%WINDIR%\sysnative\DRIVERS\kbdclass.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=BC02336F1CBA7DCC7D1213BB588A68A5 SIZE=50768
%WINDIR%\sysnative\lsass.exe [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=0793F40B9B8A1BDD266296409DBD91EA SIZE=31232
%WINDIR%\sysnative\Drivers\ksecdd.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=E8B6FCC9C83535C67F835D407620BD27 SIZE=95312
%WINDIR%\sysnative\Drivers\ksecpkg.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=A8C63880EF6F4D3FEC7B616B9C060215 SIZE=153160
%WINDIR%\sysnative\drivers\ksthunk.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=6869281E78CB31A43E969F06B57347C4 SIZE=20992
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k NetworkService
%WINDIR%\sysnative\svchost.exe -k NetworkService
%WINDIR%\sysnative\DRIVERS\lltdio.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=1538831CF8AD2979A04C423779465827 SIZE=60928
%WINDIR%\sysnative\svchost.exe -k LocalServiceNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalServiceNetworkRestricted
%WINDIR%\sysnative\drivers\luafv.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=43D0F98E1D56CCDDB0D5254CFF7B356E SIZE=113152
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\DRIVERS\monitor.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=B03D591DC7DA45ECE20B3B467E6AADAA SIZE=30208
%WINDIR%\sysnative\DRIVERS\mouclass.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=7D27EA49F3C1F687D357E77A470AEA99 SIZE=49216
%WINDIR%\sysnative\DRIVERS\mouhid.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=D3BF052C40B0C4166D9FD86A4288C1E6 SIZE=31232
%WINDIR%\sysnative\drivers\mountmgr.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=791AF66C4D0E7C90A3646066386FB571 SIZE=94784
%WINDIR%\sysnative\drivers\mpsdrv.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=6C38C9E45AE0EA2FA5E551F2ED5E978F SIZE=77312
%WINDIR%\sysnative\svchost.exe -k LocalServiceNoNetwork
%WINDIR%\sysnative\svchost.exe -k LocalServiceNoNetwork
%WINDIR%\sysnative\DRIVERS\mrxsmb.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=767A4C3BCF9410C286CED15A2DB17108 SIZE=157696
%WINDIR%\sysnative\DRIVERS\mrxsmb10.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=920EE0FF995FCFDEB08C41605A959E1C SIZE=286720
%WINDIR%\sysnative\DRIVERS\mrxsmb10.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=920EE0FF995FCFDEB08C41605A959E1C SIZE=286720
%WINDIR%\sysnative\DRIVERS\mrxsmb20.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=740D7EA9D72C981510A5292CF6ADC941 SIZE=125952
%WINDIR%\sysnative\DRIVERS\msahci.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=5C37497276E3B3A5488B23A326A754B7 SIZE=30272
%WINDIR%\sysnative\DRIVERS\msisadrv.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=D916874BBD4F8B07BFB7FA9B3CCAE29D SIZE=15424
%WINDIR%\sysnative\DRIVERS\mssmbios.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=0EED230E37515A0EAEE3C2E1BC97B288 SIZE=32320
%WINDIR%\sysnative\DRIVERS\mssmbios.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=0EED230E37515A0EAEE3C2E1BC97B288 SIZE=32320
%WINDIR%\sysnative\Drivers\mup.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=F9A18612FD3526FE473C1BDA678D61C8 SIZE=60496
%WINDIR%\sysnative\DRIVERS\nwifi.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=1EA3749C4114DB3E3161156FFFFA6B33 SIZE=318976
%WINDIR%\sysnative\drivers\ndis.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=CAD515DBD07D082BB317D9928CE8962C SIZE=947776
%WINDIR%\sysnative\DRIVERS\ndistapi.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=30639C932D9FEF22B31268FE25A1B6E5 SIZE=24064
%WINDIR%\sysnative\DRIVERS\ndisuio.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=F105BA1E22BF1F2EE8F005D4305E4BEC SIZE=56320
%WINDIR%\sysnative\DRIVERS\ndiswan.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=557DFAB9CA1FCB036AC77564C010DAD3 SIZE=164352
%WINDIR%\sysnative\svchost.exe -k HPZ12
%WINDIR%\sysnative\svchost.exe -k HPZ12
%WINDIR%\sysnative\DRIVERS\netbios.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=86743D9F5D2B1048062B14B1D84501C4 SIZE=44544
%WINDIR%\sysnative\DRIVERS\netbt.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=9162B273A44AB9DCE5B44362731D062A SIZE=259072
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalService
%WINDIR%\sysnative\svchost.exe -k LocalService
%WINDIR%\sysnative\DRIVERS\NETwNs64.sys [Intel Corporation] [Intel® Wireless WiFi Link Adapter] MD5=EB43840BABF5589E33186D094DE7381D SIZE=7821312
%WINDIR%\sysnative\DRIVERS\NETwNs64.sys [Intel Corporation] [Intel® Wireless WiFi Link Adapter] MD5=EB43840BABF5589E33186D094DE7381D SIZE=7821312
%WINDIR%\sysnative\svchost.exe -k NetworkService
%WINDIR%\sysnative\svchost.exe -k NetworkService
%WINDIR%\sysnative\svchost.exe -k LocalService
%WINDIR%\sysnative\svchost.exe -k LocalService
%WINDIR%\sysnative\drivers\nsiproxy.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=E7F5AE18AF4168178A642A9247C63001 SIZE=24576
%WINDIR%\sysnative\svchost.exe -k LocalServicePeerNet
%WINDIR%\sysnative\svchost.exe -k LocalServicePeerNet
%WINDIR%\sysnative\svchost.exe -k LocalServicePeerNet
%WINDIR%\sysnative\svchost.exe -k LocalServicePeerNet
%WINDIR%\sysnative\drivers\partmgr.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=7DAA117143316C4A1537E074A5A9EAF0 SIZE=75840
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\DRIVERS\pci.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=F36F6504009F2FB0DFD1B17A116AD74B SIZE=183872
%WINDIR%\sysnative\drivers\pcw.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=D6B9C2E1A11A3A4B26A182FFEF18F603 SIZE=50768
%WINDIR%\sysnative\drivers\peauth.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=68769C3356B3BE5D1C732C97B9A80D6E SIZE=651264
%WINDIR%\sysnative\svchost.exe -k DcomLaunch
%WINDIR%\sysnative\svchost.exe -k DcomLaunch
%WINDIR%\sysnative\svchost.exe -k HPZ12
%WINDIR%\sysnative\svchost.exe -k HPZ12
%WINDIR%\sysnative\svchost.exe -k LocalServicePeerNet
%WINDIR%\sysnative\svchost.exe -k LocalServicePeerNet
%WINDIR%\sysnative\svchost.exe -k NetworkServiceNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k NetworkServiceNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k DcomLaunch
%WINDIR%\sysnative\svchost.exe -k DcomLaunch
%WINDIR%\sysnative\DRIVERS\raspptp.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=27CC19E81BA5E3403C48302127BDA717 SIZE=111616
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\DRIVERS\pacer.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=EE992183BD8EAEFD9973F352E587A299 SIZE=131584
%WINDIR%\sysnative\DRIVERS\AgileVpn.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=7ECFF9B22276B73F43A99A15A6094E90 SIZE=60416
%WINDIR%\sysnative\DRIVERS\rasl2tp.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=87A6E852A22991580D6D39ADC4790463 SIZE=130048
%WINDIR%\sysnative\DRIVERS\raspppoe.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=855C9B1CD4756C5E9A2AA58A15F58C25 SIZE=92672
%WINDIR%\sysnative\DRIVERS\rassstp.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=E8B1E447B008D07FF47D016C2B0EEECB SIZE=83968
%WINDIR%\sysnative\DRIVERS\rdbss.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=3BAC8142102C15D59A87757C1D41DCE5 SIZE=309248
%WINDIR%\sysnative\DRIVERS\RDPCDD.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=CEA6CC257FC9B7715F1C2B4849286D24 SIZE=7680
%WINDIR%\sysnative\drivers\rdpencdd.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=BB5971A4F00659529A5C44831AF22365 SIZE=7680
%WINDIR%\sysnative\drivers\rdprefmp.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=216F3FA57533D98E1F74DED70113177A SIZE=8192
%WINDIR%\sysnative\drivers\rdyboost.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=634B9A2181D98F15941236886164EC8B SIZE=214096
%WINDIR%\sysnative\DRIVERS\rimmpx64.sys [REDC] [RICOH MMC Driver] MD5=6FAF5B04BEDC66D300D9D233B2D222F0 SIZE=67584
%WINDIR%\sysnative\DRIVERS\rimmpx64.sys [REDC] [RICOH MMC Driver] MD5=6FAF5B04BEDC66D300D9D233B2D222F0 SIZE=67584
%WINDIR%\sysnative\DRIVERS\rimspx64.sys [REDC] [Ricoh Memorystick Controller] MD5=67F50C31713106FD1B0F286F86AA2B2E SIZE=55296
%WINDIR%\sysnative\DRIVERS\rimspx64.sys [REDC] [Ricoh Memorystick Controller] MD5=67F50C31713106FD1B0F286F86AA2B2E SIZE=55296
%WINDIR%\sysnative\DRIVERS\rixdpx64.sys [REDC] [R5C852 Ricoh xD Controller] MD5=4D7EF3D46346EC4C58784DB964B365DE SIZE=57856
%WINDIR%\sysnative\DRIVERS\rixdpx64.sys [REDC] [R5C852 Ricoh xD Controller] MD5=4D7EF3D46346EC4C58784DB964B365DE SIZE=57856
%WINDIR%\sysnative\svchost.exe -k RPCSS
%WINDIR%\sysnative\svchost.exe -k RPCSS
%WINDIR%\sysnative\svchost.exe -k rpcss
%WINDIR%\sysnative\svchost.exe -k rpcss
%WINDIR%\sysnative\DRIVERS\rspndr.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=DDC86E4F8E7456261E637E3552E804FF SIZE=76800
%WINDIR%\sysnative\lsass.exe [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=0793F40B9B8A1BDD266296409DBD91EA SIZE=31232
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\DRIVERS\sdbus.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=54E47AD086782D3AE9417C155CDCEB9B SIZE=109056
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\spoolsv.exe [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=F8E1FA03CB70D54A9892AC88B91D1E7B SIZE=558592
%WINDIR%\sysnative\Drivers\sptd.sys SIZE=828912
%WINDIR%\sysnative\Drivers\sptd.sys SIZE=828912
%WINDIR%\sysnative\DRIVERS\stflt.sys [Windows (R) Win 7 DDK provider] [Spyware Terminator] MD5=A340ABC480C43C30CABC943E78AC631E SIZE=50696
%WINDIR%\sysnative\DRIVERS\stflt.sys [Windows (R) Win 7 DDK provider] [Spyware Terminator] MD5=A340ABC480C43C30CABC943E78AC631E SIZE=50696
%WINDIR%\sysnative\DRIVERS\srv.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=43067A65522EAEC33D31A12D6FA8E3F4 SIZE=463360
%WINDIR%\sysnative\DRIVERS\srv2.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=03715CF9C30B563DA35FC5F2B8F7B8E0 SIZE=404992
%WINDIR%\sysnative\DRIVERS\srvnet.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=FBD09635227A8026C0F7790F604343C6 SIZE=162304
%WINDIR%\sysnative\svchost.exe -k LocalServiceAndNoImpersonation
%WINDIR%\sysnative\svchost.exe -k LocalServiceAndNoImpersonation
%WINDIR%\sysnative\DRIVERS\stwrt64.sys [IDT, Inc.] [IDT PC Audio] MD5=F3F6C17F70EBA268CDBE4F9704E3EAC5 SIZE=505856
%WINDIR%\sysnative\DRIVERS\stwrt64.sys [IDT, Inc.] [IDT PC Audio] MD5=F3F6C17F70EBA268CDBE4F9704E3EAC5 SIZE=505856
%WINDIR%\sysnative\svchost.exe -k imgsvc
%WINDIR%\sysnative\svchost.exe -k imgsvc
%WINDIR%\sysnative\DRIVERS\swenum.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=D01EC09B6711A5F8E7E6564A4D0FBC90 SIZE=12496
%WINDIR%\sysnative\DRIVERS\SynTP.sys [Synaptics Incorporated] [Synaptics Pointing Device Driver] MD5=639B57DC871BE4B86283027FAF1F4E30 SIZE=285744
%WINDIR%\sysnative\DRIVERS\SynTP.sys [Synaptics Incorporated] [Synaptics Pointing Device Driver] MD5=639B57DC871BE4B86283027FAF1F4E30 SIZE=285744
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\drivers\tcpip.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=90A2D722CF64D911879D6C4A4F802A4D SIZE=1896832
%WINDIR%\sysnative\drivers\tcpipreg.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=76D078AF6F587B162D50210F761EB9ED SIZE=44544
%WINDIR%\sysnative\DRIVERS\tdx.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=079125C4B17B01FCAEEBCE0BCB290C0F SIZE=99840
%WINDIR%\sysnative\DRIVERS\termdd.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=C448651339196C0E869A355171875522 SIZE=62544
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\DRIVERS\tunnel.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=3836171A2CDF3AF8EF10856DB9835A70 SIZE=125440
%WINDIR%\sysnative\DRIVERS\umbus.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=EAB6C35E62B1B0DB0D1B48B671D3A117 SIZE=48640
%WINDIR%\sysnative\svchost.exe -k LocalServiceAndNoImpersonation
%WINDIR%\sysnative\svchost.exe -k LocalServiceAndNoImpersonation
%WINDIR%\sysnative\DRIVERS\usbccgp.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=B26AFB54A534D634523C4FB66765B026 SIZE=98816
%WINDIR%\sysnative\DRIVERS\usbehci.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=2EA4AFF7BE7EB4632E3AA8595B0803B5 SIZE=51200
%WINDIR%\sysnative\DRIVERS\usbhub.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=4C9042B8DF86C1E8E6240C218B99B39B SIZE=343040
%WINDIR%\sysnative\DRIVERS\usbuhci.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=81FB2216D3A60D1284455D511797DB3D SIZE=30720
%WINDIR%\sysnative\Drivers\usbvideo.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=7CB8C573C6E4A2714402CC0A36EAB4FE SIZE=184832
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\DRIVERS\vdrvroot.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=C5C876CCFC083FF3B128F933823E87BD SIZE=36432
%WINDIR%\sysnative\drivers\vga.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=53E92A310193CB3C03BEA963DE7D9CFC SIZE=29184
%WINDIR%\sysnative\DRIVERS\volmgr.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=2B1A3DAE2B4E70DBBA822B7A03FBD4A3 SIZE=71760
%WINDIR%\sysnative\drivers\volmgrx.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=99B0CBB569CA79ACAED8C91461D765FB SIZE=363584
%WINDIR%\sysnative\DRIVERS\volsnap.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=58F82EED8CA24B461441F9C3E4F0BF5C SIZE=294992
%WINDIR%\sysnative\DRIVERS\vwifibus.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=36D4720B72B5C5D9CB2B9C29E9DF67A1 SIZE=24576
%WINDIR%\sysnative\DRIVERS\vwififlt.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=6A3D66263414FF0D6FA754C646612F3F SIZE=59904
%WINDIR%\sysnative\DRIVERS\wanarp.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=47CA49400643EFFD3F1C9A27E1D69324 SIZE=88576
%WINDIR%\sysnative\svchost.exe -k LocalServiceAndNoImpersonation
%WINDIR%\sysnative\svchost.exe -k LocalServiceAndNoImpersonation
%WINDIR%\sysnative\drivers\Wdf01000.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=441BD2D7B4F98134C3A4F9FA570FD250 SIZE=654928
%WINDIR%\sysnative\svchost.exe -k LocalService
%WINDIR%\sysnative\svchost.exe -k LocalService
%WINDIR%\sysnative\svchost.exe -k WerSvcGroup
%WINDIR%\sysnative\svchost.exe -k WerSvcGroup
%WINDIR%\sysnative\DRIVERS\wfplwf.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=611B23304BF067451A9FDEE01FBDD725 SIZE=12800
%WINDIR%\sysnative\svchost.exe -k secsvcs
%WINDIR%\sysnative\svchost.exe -k secsvcs
%WINDIR%\sysnative\svchost.exe -k LocalService
%WINDIR%\sysnative\svchost.exe -k LocalService
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\DRIVERS\wmiacpi.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=F6FF8944478594D0E414D3F048F0D778 SIZE=14336
%WINDIR%\sysnative\svchost.exe -k LocalServiceNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalServiceNetworkRestricted
%WINDIR%\sysnative\SearchIndexer.exe \Embedding
%WINDIR%\sysnative\SearchIndexer.exe \Embedding
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\svchost.exe -k netsvcs
%WINDIR%\sysnative\drivers\WudfPf.sys [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=7CADC74271DD6461C452C271B30BD378 SIZE=112128
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalSystemNetworkRestricted
%WINDIR%\sysnative\svchost.exe -k LocalServiceNoNetwork
%WINDIR%\sysnative\svchost.exe -k LocalServiceNoNetwork
%PROGRAMFILES%\CyberLink\PowerDVD DX\000.fcl [CyberLink Corp.] MD5=74983ADDCA2D9618512C088D856D6615 SIZE=146928
%SYSDIR%\mscoree.dll [Microsoft Corporation] [Microsoft® .NET Framework] MD5=128DD9AF8640DBCC711940903C8B554F SIZE=297808
%WINDIR%\SysWOW64\urlmon.dll [Microsoft Corporation] [Windows® Internet Explorer] MD5=E0FFE169FD5B43CB6025FF2AECBF2EBB SIZE=1226240
%SystemDiskRoot%\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL [Microsoft Corporation] [Microsoft Office InfoPath] MD5=6BA50216EFD0B2AFA4DC2D60EDF606F4 SIZE=108920
%WINDIR%\SysWOW64\mshtml.dll [Microsoft Corporation] [Windows® Internet Explorer] MD5=BDFD710842C8A25DD27254D91DE60AC6 SIZE=5971456
%WINDIR%\SysWOW64\msvidctl.dll [Microsoft Corporation] [DirectShow] MD5=BE21C5C05E5E8536F1385100CC8EAFA5 SIZE=2291712
%SYSDIR%\inetcomm.dll [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=2F1379FEB2798A5708CD157836B4E9CC SIZE=740864
%SystemDiskRoot%\Program Files\Windows Sidebar\sidebar.exe [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=8FC6C4EE0A2D3EBAA70FA38F99141BCE SIZE=1475072

End of Report

#21 Příspěvek od **motji** » 14 říj 2010 21:18

Otestujte na www.virustotal.com
C:\Windows\sysnative\DRIVERS\stwrt64.sys

To je nějaký log ze Spyware terminátora, nicméně tam nic podezdřelého nevidím

Venca B. · #22 Příspěvek od **Venca B.** » 14 říj 2010 21:34

http://www.virustotal.com/file-scan/rep ... 1287088238

Děkuji

#23 Příspěvek od **motji** » 14 říj 2010 22:29

To jsou jen cookies, pokud používáte CCleaner, ten je maže také

VIRY.CZ

kontrola logu po vymazani trojanu

Re: kontrola logu po vymazani trojanu

Re: kontrola logu po vymazani trojanu

Re: kontrola logu po vymazani trojanu

Re: kontrola logu po vymazani trojanu

Re: kontrola logu po vymazani trojanu

Re: kontrola logu po vymazani trojanu

Re: kontrola logu po vymazani trojanu

Re: kontrola logu po vymazani trojanu