Prosím o kontrolu logu - potvora psswcore v mém PC

[Antusek]

Dobrý večer,
mám takový problém. Při spuštění PC a naběhnutí plochy se objevuje okno s požadavkem na vložení instalačního CD (DVD) psswcore Googlováním bylo zjištěno, že se jedná o součást k multifunkčnímu zařízení All in one od HP. Mám HP Deskjet F4210. Dále bylo zjištěno že je to nějaká potvora. Když tam vložím to instalační CD, cosi se nahraje pak to dá pokoj. To bylo ještě před tím, než jsem zjistil další informaci, že je to nějaká potvora. Dále jsem si všiml, že mi to vypne během práce Firewall Zone Alarm. Mám tam verzi 9 a musel jsem u ní po instalaci vypnout automatické spuštění, neb vše strašně dlouho nábíhalo. Spouštím ho ihned po naběhnutí PC. S vyšší verzí byly problémy. Ještě je zarážející, že Avast (ver. 5.1.889 i starší 5) i když tam mám zapnutý alarm (zvukový i informační) nic nehlásí. Všechny štíty má zapnutý
Posílám log z programu Combofix a děkuji za další rady. Log bude rozdělen na dvě části, neb najednou to nejde vložit.

ComboFix 11-01-23.07 - User 24.01.2011 18:45:51.5.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2038.1367 [GMT 1:00]
Spuštěný z: c:\aviry\ComboFix\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: ZoneAlarm Firewall *Enabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-12-24 do 2011-01-24 )))))))))))))))))))))))))))))))
.

2011-01-18 10:17 . 2010-02-11 12:02 226880 -c----w- c:\windows\system32\dllcache\tcpip6.sys
2011-01-12 09:50 . 2011-01-12 09:50 -------- d-----w- C:\stati2011
2011-01-04 08:53 . 2011-01-21 14:14 -------- d-----w- C:\Prezentace 2011
2011-01-04 08:52 . 2011-01-04 08:52 -------- d-----w- C:\Nová složka
2011-01-01 17:29 . 2011-01-01 17:29 -------- d-----w- c:\documents and settings\LocalService\Data aplikací\McAfee
2010-12-27 13:49 . 2010-03-03 16:18 10624 ----a-w- c:\windows\system32\drivers\sam_miniusb.sys
2010-12-27 13:48 . 2010-03-03 16:20 12160 ----a-w- c:\windows\system32\sam_minidisplay.dll
2010-12-27 13:48 . 2010-03-03 16:18 14720 ----a-w- c:\windows\system32\drivers\sam_miniport.sys
2010-12-27 13:47 . 2010-12-27 13:47 -------- d-----w- c:\program files\Samsung

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-01-13 08:47 . 2010-10-12 07:26 38848 ----a-w- c:\windows\avastSS.scr
2011-01-13 08:47 . 2008-05-10 08:43 188216 ----a-w- c:\windows\system32\aswBoot.exe
2011-01-13 08:41 . 2008-05-10 08:59 294608 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-01-13 08:40 . 2008-05-10 08:44 47440 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-01-13 08:40 . 2008-05-10 08:43 100176 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-01-13 08:39 . 2008-05-10 08:43 94544 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-01-13 08:37 . 2008-05-10 08:44 23632 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-01-13 08:37 . 2008-05-10 08:44 29392 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-01-13 08:37 . 2008-05-10 08:59 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-12-04 10:23 . 2010-12-04 10:22 1342752 ----a-w- C:\VideosSetup.exe
2010-12-02 03:35 . 2010-12-02 03:35 4280320 ----a-w- c:\windows\system32\GPhotos.scr
2010-11-29 16:38 . 2010-11-29 16:38 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2010-11-29 16:38 . 2010-11-29 16:38 69632 ----a-w- c:\windows\system32\QuickTime.qts
2010-11-18 18:15 . 2008-04-08 18:20 81920 ----a-w- c:\windows\system32\isign32.dll
2010-11-10 10:18 . 2010-11-10 10:18 98392 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2010-11-09 14:52 . 2004-08-18 12:00 249856 ----a-w- c:\windows\system32\odbc32.dll
2010-11-06 00:23 . 2004-08-18 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2010-11-06 00:23 . 2004-08-18 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2010-11-06 00:23 . 2004-08-18 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2010-11-03 12:25 . 2004-08-18 12:00 385024 ------w- c:\windows\system32\html.iec
2010-11-02 15:17 . 2004-08-18 12:00 40960 ----a-w- c:\windows\system32\drivers\ndproxy.sys
2010-10-28 13:09 . 2004-08-18 12:00 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-08-31 08:20 . 2010-08-31 08:20 11884744 ----a-w- c:\program files\dap95upg.exe
.

((((((((((((((((((((((((((((( SnapShot@2010-12-19_19.18.23 )))))))))))))))))))))))))))))))))))))))))
.
+ 2006-12-01 23:26 . 2006-12-01 23:26 57856 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80u.dll
+ 2006-12-01 23:25 . 2006-12-01 23:25 69632 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80.dll
- 2008-04-08 18:35 . 2009-01-07 16:20 26144 c:\windows\system32\spupdsvc.exe
+ 2008-04-08 18:35 . 2009-01-07 17:20 26144 c:\windows\system32\spupdsvc.exe
- 2008-04-30 15:08 . 2009-01-07 16:20 17952 c:\windows\system32\spmsg.dll
+ 2008-04-30 15:08 . 2009-01-07 17:20 17952 c:\windows\system32\spmsg.dll
+ 2008-05-06 20:44 . 2011-01-20 18:47 35032 c:\windows\system32\Restore\rstrlog.dat
- 2004-08-18 12:00 . 2009-03-08 02:31 46592 c:\windows\system32\pngfilt.dll
+ 2004-08-18 12:00 . 2009-03-08 03:31 46592 c:\windows\system32\pngfilt.dll
+ 2006-06-29 06:05 . 2009-01-07 17:20 23552 c:\windows\system32\normaliz.dll
- 2006-06-29 06:05 . 2009-01-07 16:20 23552 c:\windows\system32\normaliz.dll
- 2006-06-28 15:59 . 2009-01-07 16:20 24576 c:\windows\system32\nlsdl.dll
+ 2006-06-28 15:59 . 2009-01-07 17:20 24576 c:\windows\system32\nlsdl.dll
+ 2004-08-18 12:00 . 2009-03-08 03:31 48128 c:\windows\system32\mshtmler.dll
- 2004-08-18 12:00 . 2009-03-08 02:31 48128 c:\windows\system32\mshtmler.dll
+ 2004-08-18 12:00 . 2009-03-08 03:31 45568 c:\windows\system32\mshta.exe
- 2004-08-18 12:00 . 2009-03-08 02:31 45568 c:\windows\system32\mshta.exe
+ 2007-08-13 16:36 . 2009-03-08 03:31 13312 c:\windows\system32\msfeedssync.exe
- 2007-08-13 16:36 . 2009-03-08 02:31 13312 c:\windows\system32\msfeedssync.exe
+ 2004-08-18 12:00 . 2009-03-08 03:32 94720 c:\windows\system32\inseng.dll
- 2004-08-18 12:00 . 2009-03-08 02:32 94720 c:\windows\system32\inseng.dll
+ 2004-08-18 12:00 . 2009-03-08 03:31 34816 c:\windows\system32\imgutil.dll
- 2004-08-18 12:00 . 2009-03-08 02:31 34816 c:\windows\system32\imgutil.dll
- 2007-08-13 16:39 . 2009-03-08 02:32 36864 c:\windows\system32\ieudinit.exe
+ 2007-08-13 16:39 . 2009-03-08 03:32 36864 c:\windows\system32\ieudinit.exe
- 2004-08-18 12:00 . 2009-03-08 02:32 71680 c:\windows\system32\iesetup.dll
+ 2004-08-18 12:00 . 2009-03-08 03:32 71680 c:\windows\system32\iesetup.dll
+ 2004-08-18 12:00 . 2009-03-08 03:32 55808 c:\windows\system32\iernonce.dll
- 2004-08-18 12:00 . 2009-03-08 02:32 55808 c:\windows\system32\iernonce.dll
+ 2006-06-29 06:05 . 2009-01-07 17:20 26112 c:\windows\system32\idndl.dll
- 2006-06-29 06:05 . 2009-01-07 16:20 26112 c:\windows\system32\idndl.dll
- 2007-08-13 16:36 . 2009-03-08 02:31 59904 c:\windows\system32\icardie.dll
+ 2007-08-13 16:36 . 2009-03-08 03:31 59904 c:\windows\system32\icardie.dll
- 2009-06-24 06:34 . 2010-11-06 00:23 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2010-12-24 13:37 . 2010-11-06 00:23 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2010-12-24 08:54 . 2009-03-08 03:31 46592 c:\windows\system32\dllcache\pngfilt.dll
- 2004-08-18 12:00 . 2009-03-08 02:31 46592 c:\windows\system32\dllcache\pngfilt.dll
- 2004-08-18 12:00 . 2009-03-08 02:31 48128 c:\windows\system32\dllcache\mshtmler.dll
+ 2010-12-24 08:54 . 2009-03-08 03:31 48128 c:\windows\system32\dllcache\mshtmler.dll
+ 2010-12-24 08:54 . 2010-11-06 00:23 66560 c:\windows\system32\dllcache\mshtmled.dll
- 2004-08-18 12:00 . 2010-11-06 00:23 66560 c:\windows\system32\dllcache\mshtmled.dll
- 2004-08-18 12:00 . 2009-03-08 02:31 45568 c:\windows\system32\dllcache\mshta.exe
+ 2010-12-24 08:54 . 2009-03-08 03:31 45568 c:\windows\system32\dllcache\mshta.exe
- 2008-04-08 14:45 . 2010-11-06 00:23 55296 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2010-12-24 08:54 . 2010-11-06 00:23 55296 c:\windows\system32\dllcache\msfeedsbs.dll
- 2004-08-18 12:00 . 2010-11-06 00:23 43520 c:\windows\system32\dllcache\licmgr10.dll
+ 2010-12-24 08:54 . 2010-11-06 00:23 43520 c:\windows\system32\dllcache\licmgr10.dll
- 2004-08-18 12:00 . 2010-11-06 00:23 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2010-12-24 08:54 . 2010-11-06 00:23 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2010-12-24 08:54 . 2009-03-08 03:32 94720 c:\windows\system32\dllcache\inseng.dll
- 2004-08-18 12:00 . 2009-03-08 02:32 94720 c:\windows\system32\dllcache\inseng.dll
+ 2010-12-24 08:54 . 2009-03-08 03:31 34816 c:\windows\system32\dllcache\imgutil.dll
- 2004-08-18 12:00 . 2009-03-08 02:31 34816 c:\windows\system32\dllcache\imgutil.dll
+ 2010-12-24 08:54 . 2009-03-08 03:32 71680 c:\windows\system32\dllcache\iesetup.dll
- 2004-08-18 12:00 . 2009-03-08 02:32 71680 c:\windows\system32\dllcache\iesetup.dll
+ 2010-12-24 08:54 . 2009-03-08 03:32 55808 c:\windows\system32\dllcache\iernonce.dll
- 2004-08-18 12:00 . 2009-03-08 02:32 55808 c:\windows\system32\dllcache\iernonce.dll
- 2008-04-08 14:45 . 2009-03-08 02:31 59904 c:\windows\system32\dllcache\icardie.dll
+ 2010-12-24 08:54 . 2009-03-08 03:31 59904 c:\windows\system32\dllcache\icardie.dll
+ 2010-12-24 08:54 . 2009-03-08 03:24 68608 c:\windows\system32\dllcache\hmmapi.dll
- 2008-04-08 18:20 . 2009-03-08 02:24 68608 c:\windows\system32\dllcache\hmmapi.dll
+ 2009-03-08 03:33 . 2009-03-08 03:33 18944 c:\windows\system32\dllcache\corpol.dll
- 2009-03-08 02:33 . 2009-03-08 02:33 18944 c:\windows\system32\dllcache\corpol.dll
+ 2010-12-24 08:54 . 2009-03-08 03:32 72704 c:\windows\system32\dllcache\admparse.dll
- 2004-08-18 12:00 . 2009-03-08 02:32 72704 c:\windows\system32\dllcache\admparse.dll
- 2004-08-18 12:00 . 2009-03-08 02:33 18944 c:\windows\system32\corpol.dll
+ 2004-08-18 12:00 . 2009-03-08 03:33 18944 c:\windows\system32\corpol.dll
+ 2010-12-19 22:17 . 2010-12-26 08:26 32768 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
- 2008-04-08 18:25 . 2010-12-19 18:58 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2008-04-08 18:25 . 2010-12-26 08:26 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
- 2009-12-19 12:44 . 2010-12-19 18:58 16384 c:\windows\system32\config\systemprofile\IETldCache\index.dat
+ 2009-12-19 12:44 . 2010-12-26 08:26 16384 c:\windows\system32\config\systemprofile\IETldCache\index.dat
+ 2010-12-19 22:17 . 2010-12-26 08:26 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
- 2010-04-02 20:35 . 2010-12-19 18:58 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
- 2004-08-18 12:00 . 2009-03-08 02:32 72704 c:\windows\system32\admparse.dll
+ 2004-08-18 12:00 . 2009-03-08 03:32 72704 c:\windows\system32\admparse.dll
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut9.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut9.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut8.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut8.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut7.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut7.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut6.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut6.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut5.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut5.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut28.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut28.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut27.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut27.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut26.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut26.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut25.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut25.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut24.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut24.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut23.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut23.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut22.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut22.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut21.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut21.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut20.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut20.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut2_1.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut2_1.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut19.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut19.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut18.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut18.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut17.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut17.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut16.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut16.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut15.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut15.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut14.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut14.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut13.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut13.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut12.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut12.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut11.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut11.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut10.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\NewShortcut10.BCCDD171_C13C_4D41_ACA3_0E088E5E60A9.exe
- 2010-01-29 20:53 . 2010-08-03 14:23 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\ARPPRODUCTICON.exe
+ 2010-01-29 20:53 . 2010-12-25 09:14 25214 c:\windows\Installer\{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}\ARPPRODUCTICON.exe
- 2010-01-29 20:53 . 2010-01-29 20:53 25214 c:\windows\Installer\{09633A5E-3089-41A8-9FF1-382171423C5D}\ARPPRODUCTICON.exe
+ 2011-01-24 08:16 . 2011-01-24 08:16 25214 c:\windows\Installer\{09633A5E-3089-41A8-9FF1-382171423C5D}\ARPPRODUCTICON.exe
+ 2010-12-24 13:44 . 2009-03-08 03:33 12288 c:\windows\ie8updates\KB982381-IE8\xpshims.dll
+ 2010-12-24 13:44 . 2008-07-08 12:59 18296 c:\windows\ie8updates\KB982381-IE8\spmsg.dll
+ 2010-12-24 13:44 . 2008-07-08 12:59 26488 c:\windows\ie8updates\KB982381-IE8\spcustom.dll
- 2010-06-08 21:00 . 2010-02-25 06:18 55296 c:\windows\ie8updates\KB982381-IE8\msfeedsbs.dll
+ 2010-12-24 13:44 . 2009-03-08 03:31 55296 c:\windows\ie8updates\KB982381-IE8\msfeedsbs.dll
- 2010-06-08 21:00 . 2010-02-25 06:18 25600 c:\windows\ie8updates\KB982381-IE8\jsproxy.dll
+ 2010-12-24 13:44 . 2009-03-08 03:33 25600 c:\windows\ie8updates\KB982381-IE8\jsproxy.dll
+ 2010-12-26 00:00 . 2009-05-26 11:40 18296 c:\windows\ie8updates\KB981332-IE8\spmsg.dll
+ 2010-12-26 00:00 . 2009-05-26 11:40 26488 c:\windows\ie8updates\KB981332-IE8\spcustom.dll
+ 2010-12-26 00:01 . 2008-07-08 12:59 18296 c:\windows\ie8updates\KB976662-IE8\spmsg.dll
+ 2010-12-26 00:01 . 2008-07-08 12:59 26488 c:\windows\ie8updates\KB976662-IE8\spcustom.dll
+ 2010-12-26 00:00 . 2008-07-08 12:59 18296 c:\windows\ie8updates\KB971961-IE8\spmsg.dll
+ 2010-12-26 00:00 . 2008-07-08 12:59 26488 c:\windows\ie8updates\KB971961-IE8\spcustom.dll
+ 2010-12-24 13:45 . 2010-09-10 05:52 12800 c:\windows\ie8updates\KB2416400-IE8\xpshims.dll
- 2010-12-16 06:53 . 2010-09-10 05:52 12800 c:\windows\ie8updates\KB2416400-IE8\xpshims.dll
+ 2010-12-24 13:45 . 2010-02-22 14:20 18296 c:\windows\ie8updates\KB2416400-IE8\spmsg.dll
+ 2010-12-24 13:45 . 2010-02-22 14:20 26488 c:\windows\ie8updates\KB2416400-IE8\spcustom.dll
+ 2010-12-24 13:45 . 2010-09-10 05:52 66560 c:\windows\ie8updates\KB2416400-IE8\mshtmled.dll
- 2010-12-16 06:53 . 2010-09-10 05:52 66560 c:\windows\ie8updates\KB2416400-IE8\mshtmled.dll
- 2010-12-16 06:53 . 2010-09-10 05:52 55296 c:\windows\ie8updates\KB2416400-IE8\msfeedsbs.dll
+ 2010-12-24 13:45 . 2010-09-10 05:52 55296 c:\windows\ie8updates\KB2416400-IE8\msfeedsbs.dll
- 2010-12-16 06:53 . 2010-09-10 05:52 43520 c:\windows\ie8updates\KB2416400-IE8\licmgr10.dll
+ 2010-12-24 13:45 . 2010-09-10 05:52 43520 c:\windows\ie8updates\KB2416400-IE8\licmgr10.dll
- 2010-12-16 06:53 . 2010-09-10 05:52 25600 c:\windows\ie8updates\KB2416400-IE8\jsproxy.dll
+ 2010-12-24 13:45 . 2010-09-10 05:52 25600 c:\windows\ie8updates\KB2416400-IE8\jsproxy.dll
- 2010-10-14 20:53 . 2010-06-24 12:27 12800 c:\windows\ie8updates\KB2360131-IE8\xpshims.dll
+ 2010-12-24 13:45 . 2010-05-06 10:35 12800 c:\windows\ie8updates\KB2360131-IE8\xpshims.dll
+ 2010-12-24 13:45 . 2010-02-22 14:20 18296 c:\windows\ie8updates\KB2360131-IE8\spmsg.dll
+ 2010-12-24 13:45 . 2010-02-22 14:20 26488 c:\windows\ie8updates\KB2360131-IE8\spcustom.dll
+ 2010-12-24 13:45 . 2009-03-08 03:31 66560 c:\windows\ie8updates\KB2360131-IE8\mshtmled.dll
- 2010-10-14 20:53 . 2009-03-08 02:31 66560 c:\windows\ie8updates\KB2360131-IE8\mshtmled.dll
- 2010-10-14 20:53 . 2010-06-24 12:27 55296 c:\windows\ie8updates\KB2360131-IE8\msfeedsbs.dll
+ 2010-12-24 13:45 . 2010-05-06 10:35 55296 c:\windows\ie8updates\KB2360131-IE8\msfeedsbs.dll
+ 2010-12-24 13:45 . 2009-03-08 03:34 43008 c:\windows\ie8updates\KB2360131-IE8\licmgr10.dll
- 2010-10-14 20:53 . 2009-03-08 02:34 43008 c:\windows\ie8updates\KB2360131-IE8\licmgr10.dll
+ 2010-12-24 13:45 . 2010-05-06 10:35 25600 c:\windows\ie8updates\KB2360131-IE8\jsproxy.dll
- 2010-10-14 20:53 . 2010-06-24 12:27 25600 c:\windows\ie8updates\KB2360131-IE8\jsproxy.dll
+ 2010-12-24 13:42 . 2009-03-08 15:57 58448 c:\windows\ie8\spuninst\iecustom.dll
- 2009-06-23 16:59 . 2009-03-08 14:57 58448 c:\windows\ie8\spuninst\iecustom.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 44544 c:\windows\ie8\pngfilt.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 44544 c:\windows\ie8\pngfilt.dll
+ 2010-12-24 13:40 . 2007-08-13 16:01 48128 c:\windows\ie8\mshtmler.dll
- 2009-06-23 16:58 . 2007-08-13 16:01 48128 c:\windows\ie8\mshtmler.dll
+ 2010-12-24 13:40 . 2007-08-13 16:32 45568 c:\windows\ie8\mshta.exe
- 2009-06-23 16:58 . 2007-08-13 16:32 45568 c:\windows\ie8\mshta.exe
+ 2010-12-24 13:40 . 2007-08-13 16:36 12288 c:\windows\ie8\msfeedssync.exe
- 2009-06-23 16:58 . 2007-08-13 16:36 12288 c:\windows\ie8\msfeedssync.exe
- 2009-06-23 16:58 . 2009-04-29 04:47 52224 c:\windows\ie8\msfeedsbs.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 52224 c:\windows\ie8\msfeedsbs.dll
- 2009-06-23 16:58 . 2007-08-13 16:44 40960 c:\windows\ie8\licmgr10.dll
+ 2010-12-24 13:40 . 2007-08-13 16:44 40960 c:\windows\ie8\licmgr10.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 27648 c:\windows\ie8\jsproxy.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 27648 c:\windows\ie8\jsproxy.dll
+ 2010-12-24 13:40 . 2007-08-13 16:39 92672 c:\windows\ie8\inseng.dll
- 2009-06-23 16:58 . 2007-08-13 16:39 92672 c:\windows\ie8\inseng.dll
- 2009-06-23 16:58 . 2007-08-13 16:36 36352 c:\windows\ie8\imgutil.dll
+ 2010-12-24 13:40 . 2007-08-13 16:36 36352 c:\windows\ie8\imgutil.dll
+ 2010-12-24 13:40 . 2007-08-13 16:39 55296 c:\windows\ie8\iesetup.dll
- 2009-06-23 16:58 . 2007-08-13 16:39 55296 c:\windows\ie8\iesetup.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 44544 c:\windows\ie8\iernonce.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 44544 c:\windows\ie8\iernonce.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 78336 c:\windows\ie8\ieencode.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 78336 c:\windows\ie8\ieencode.dll
- 2009-06-23 16:58 . 2009-04-28 09:04 70656 c:\windows\ie8\ie4uinit.exe
+ 2010-12-24 13:40 . 2009-04-28 09:04 70656 c:\windows\ie8\ie4uinit.exe
- 2009-06-23 16:58 . 2009-04-29 04:47 63488 c:\windows\ie8\icardie.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 63488 c:\windows\ie8\icardie.dll
- 2009-06-23 16:58 . 2007-08-13 16:18 60416 c:\windows\ie8\hmmapi.dll
+ 2010-12-24 13:40 . 2007-08-13 16:18 60416 c:\windows\ie8\hmmapi.dll
+ 2010-12-24 13:40 . 2008-04-14 06:51 35328 c:\windows\ie8\corpol.dll
- 2009-06-23 16:58 . 2008-04-14 06:51 35328 c:\windows\ie8\corpol.dll
+ 2010-12-24 13:40 . 2007-08-13 16:39 71680 c:\windows\ie8\admparse.dll
- 2009-06-23 16:58 . 2007-08-13 16:39 71680 c:\windows\ie8\admparse.dll
+ 2010-03-19 16:47 . 2010-12-24 21:33 78172 c:\windows\hpqins05.dat
- 2010-03-19 16:47 . 2010-03-19 16:51 78172 c:\windows\hpqins05.dat
+ 2010-12-24 13:45 . 2010-02-22 14:20 26488 c:\windows\$hf_mig$\KB2447568-IE8\update\spcustom.dll
+ 2010-12-24 13:45 . 2010-02-22 14:20 18296 c:\windows\$hf_mig$\KB2447568-IE8\spmsg.dll
+ 2009-03-15 21:09 . 2011-01-23 21:43 4212 c:\windows\system32\zllictbl.dat
- 2009-03-15 21:09 . 2010-12-19 18:56 4212 c:\windows\system32\zllictbl.dat
+ 2010-12-24 13:37 . 2010-10-18 11:10 7680 c:\windows\system32\dllcache\iecompat.dll
+ 2011-01-20 18:45 . 2011-01-20 18:42 8530 c:\windows\pchealth\helpctr\Config\Cache\Personal_32_1029.dat
+ 2010-12-24 13:45 . 2009-03-08 03:35 2048 c:\windows\ie8updates\KB2447568-IE8\iecompat.dll
+ 2010-12-24 13:37 . 2010-10-18 10:39 7680 c:\windows\$hf_mig$\KB2447568-IE8\SP3QFE\iecompat.dll
+ 2010-12-20 21:28 . 2010-12-20 21:28 131072 c:\windows\Temporary Internet Files\Cache4\MM4096.DAT
+ 2010-12-20 21:28 . 2010-12-20 21:28 131072 c:\windows\Temporary Internet Files\Cache4\MM256.DAT
+ 2010-12-20 21:28 . 2010-12-20 21:28 131072 c:\windows\Temporary Internet Files\Cache3\MM4096.DAT
+ 2010-12-20 21:28 . 2010-12-20 21:28 131072 c:\windows\Temporary Internet Files\Cache3\MM256.DAT
+ 2010-12-20 21:28 . 2010-12-20 21:28 131072 c:\windows\Temporary Internet Files\Cache2\MM4096.DAT
+ 2010-12-20 21:28 . 2010-12-20 21:28 131072 c:\windows\Temporary Internet Files\Cache2\MM256.DAT
+ 2010-12-20 21:28 . 2010-12-20 21:28 131072 c:\windows\Temporary Internet Files\Cache1\MM4096.DAT
+ 2010-12-20 21:28 . 2010-12-20 21:28 131072 c:\windows\Temporary Internet Files\Cache1\MM256.DAT
+ 2008-04-08 14:43 . 2009-01-07 17:21 121856 c:\windows\system32\xmllite.dll
- 2008-04-08 14:43 . 2009-01-07 16:21 121856 c:\windows\system32\xmllite.dll
- 2007-08-13 16:45 . 2009-03-08 02:34 208384 c:\windows\system32\WinFXDocObj.exe
+ 2007-08-13 16:45 . 2009-03-08 03:34 208384 c:\windows\system32\WinFXDocObj.exe
+ 2004-08-18 12:00 . 2009-03-08 03:34 236544 c:\windows\system32\webcheck.dll
- 2004-08-18 12:00 . 2009-03-08 02:34 236544 c:\windows\system32\webcheck.dll
+ 2004-08-18 12:00 . 2009-03-08 03:34 105984 c:\windows\system32\url.dll
- 2004-08-18 12:00 . 2009-03-08 02:34 105984 c:\windows\system32\url.dll
- 2004-08-18 12:00 . 2009-03-08 02:34 193536 c:\windows\system32\msrating.dll
+ 2004-08-18 12:00 . 2009-03-08 03:34 193536 c:\windows\system32\msrating.dll
+ 2004-08-18 12:00 . 2009-03-08 03:22 156160 c:\windows\system32\msls31.dll
- 2004-08-18 12:00 . 2009-03-08 02:22 156160 c:\windows\system32\msls31.dll
+ 2008-08-05 15:55 . 2009-01-07 17:20 265720 c:\windows\system32\msdbg2.dll
- 2008-08-05 15:55 . 2009-01-07 16:20 265720 c:\windows\system32\msdbg2.dll
- 2007-08-13 16:54 . 2009-03-08 02:22 164352 c:\windows\system32\ieui.dll
+ 2007-08-13 16:54 . 2009-03-08 03:22 164352 c:\windows\system32\ieui.dll
+ 2007-07-11 10:27 . 2009-03-08 03:11 445952 c:\windows\system32\ieapfltr.dll
- 2007-07-11 10:27 . 2009-03-08 02:11 445952 c:\windows\system32\ieapfltr.dll
+ 2004-08-18 12:00 . 2009-03-08 03:32 163840 c:\windows\system32\ieakui.dll
- 2004-08-18 12:00 . 2009-03-08 02:32 163840 c:\windows\system32\ieakui.dll
- 2004-08-18 12:00 . 2009-03-08 02:33 229376 c:\windows\system32\ieaksie.dll
+ 2004-08-18 12:00 . 2009-03-08 03:33 229376 c:\windows\system32\ieaksie.dll
- 2004-08-18 12:00 . 2009-03-08 02:33 125952 c:\windows\system32\ieakeng.dll
+ 2004-08-18 12:00 . 2009-03-08 03:33 125952 c:\windows\system32\ieakeng.dll
+ 2008-04-17 15:17 . 2011-01-01 08:35 591392 c:\windows\system32\FNTCACHE.DAT
- 2008-04-17 15:17 . 2010-12-16 06:59 591392 c:\windows\system32\FNTCACHE.DAT
+ 2004-08-18 12:00 . 2009-03-08 03:31 216064 c:\windows\system32\dxtrans.dll
- 2004-08-18 12:00 . 2009-03-08 02:31 216064 c:\windows\system32\dxtrans.dll
+ 2004-08-18 12:00 . 2009-03-08 03:31 348160 c:\windows\system32\dxtmsft.dll
- 2004-08-18 12:00 . 2009-03-08 02:31 348160 c:\windows\system32\dxtmsft.dll
- 2004-08-18 12:00 . 2010-11-06 00:23 916480 c:\windows\system32\dllcache\wininet.dll
+ 2010-12-24 08:54 . 2010-11-06 00:23 916480 c:\windows\system32\dllcache\wininet.dll
- 2004-08-18 12:00 . 2009-03-08 02:34 236544 c:\windows\system32\dllcache\webcheck.dll
+ 2010-12-24 08:54 . 2009-03-08 03:34 236544 c:\windows\system32\dllcache\webcheck.dll
- 2008-04-08 18:20 . 2009-03-08 02:33 759296 c:\windows\system32\dllcache\VGX.dll
+ 2010-12-24 08:54 . 2009-03-08 03:33 759296 c:\windows\system32\dllcache\VGX.dll
+ 2010-12-24 08:54 . 2010-03-10 06:17 420352 c:\windows\system32\dllcache\vbscript.dll
- 2008-05-09 10:56 . 2010-03-10 06:17 420352 c:\windows\system32\dllcache\vbscript.dll
+ 2010-12-24 08:54 . 2009-03-08 03:34 105984 c:\windows\system32\dllcache\url.dll
- 2004-08-18 12:00 . 2009-03-08 02:34 105984 c:\windows\system32\dllcache\url.dll
- 2009-01-07 16:20 . 2009-01-07 16:20 134144 c:\windows\system32\dllcache\sqmapi.dll
+ 2009-01-07 17:20 . 2009-01-07 17:20 134144 c:\windows\system32\dllcache\sqmapi.dll
+ 2009-01-07 17:20 . 2009-01-07 17:20 474112 c:\windows\system32\dllcache\shlwapi.dll
- 2009-01-07 16:20 . 2009-12-08 09:25 474112 c:\windows\system32\dllcache\shlwapi.dll
+ 2010-11-09 14:52 . 2010-11-09 14:52 249856 c:\windows\system32\dllcache\odbc32.dll
- 2004-08-18 12:00 . 2010-11-06 00:23 206848 c:\windows\system32\dllcache\occache.dll
+ 2010-12-24 08:54 . 2010-11-06 00:23 206848 c:\windows\system32\dllcache\occache.dll
+ 2010-12-24 08:54 . 2010-11-06 00:23 611840 c:\windows\system32\dllcache\mstime.dll
- 2004-08-18 12:00 . 2010-11-06 00:23 611840 c:\windows\system32\dllcache\mstime.dll
- 2004-08-18 12:00 . 2009-03-08 02:34 193536 c:\windows\system32\dllcache\msrating.dll
+ 2010-12-24 08:54 . 2009-03-08 03:34 193536 c:\windows\system32\dllcache\msrating.dll
+ 2010-12-24 08:54 . 2009-03-08 03:22 156160 c:\windows\system32\dllcache\msls31.dll
- 2004-08-18 12:00 . 2009-03-08 02:22 156160 c:\windows\system32\dllcache\msls31.dll
+ 2010-11-09 14:52 . 2010-11-09 14:52 102400 c:\windows\system32\dllcache\msjro.dll
+ 2010-12-24 08:54 . 2010-11-06 00:23 602112 c:\windows\system32\dllcache\msfeeds.dll
- 2008-04-08 14:45 . 2010-11-06 00:23 602112 c:\windows\system32\dllcache\msfeeds.dll
+ 2010-11-09 14:52 . 2010-11-09 14:52 200704 c:\windows\system32\dllcache\msadox.dll
+ 2010-11-09 14:52 . 2010-11-09 14:52 180224 c:\windows\system32\dllcache\msadomd.dll
+ 2010-11-09 14:52 . 2010-11-09 14:52 536576 c:\windows\system32\dllcache\msado15.dll
+ 2010-11-09 14:52 . 2010-11-09 14:52 143360 c:\windows\system32\dllcache\msadco.dll
- 2008-05-09 10:56 . 2009-12-09 05:55 726528 c:\windows\system32\dllcache\jscript.dll
+ 2010-12-24 08:54 . 2009-12-09 05:55 726528 c:\windows\system32\dllcache\jscript.dll
- 2008-04-08 18:20 . 2009-03-08 12:09 638816 c:\windows\system32\dllcache\iexplore.exe
+ 2010-12-24 08:54 . 2009-03-08 13:09 638816 c:\windows\system32\dllcache\iexplore.exe
+ 2010-12-24 13:37 . 2010-11-06 00:23 247808 c:\windows\system32\dllcache\ieproxy.dll
- 2009-06-24 06:34 . 2010-11-06 00:23 247808 c:\windows\system32\dllcache\ieproxy.dll
- 2004-08-18 12:00 . 2010-11-06 00:23 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2010-12-24 08:54 . 2010-11-06 00:23 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2010-12-24 13:37 . 2010-11-06 00:23 743424 c:\windows\system32\dllcache\iedvtool.dll
- 2010-06-08 20:51 . 2010-11-06 00:23 743424 c:\windows\system32\dllcache\iedvtool.dll
+ 2010-12-24 08:54 . 2010-11-06 00:23 387584 c:\windows\system32\dllcache\iedkcs32.dll
- 2004-08-18 12:00 . 2010-11-06 00:23 387584 c:\windows\system32\dllcache\iedkcs32.dll
- 2008-04-08 14:45 . 2009-03-08 02:11 445952 c:\windows\system32\dllcache\ieapfltr.dll
+ 2010-12-24 08:54 . 2009-03-08 03:11 445952 c:\windows\system32\dllcache\ieapfltr.dll
+ 2010-12-24 08:54 . 2009-03-08 03:32 163840 c:\windows\system32\dllcache\ieakui.dll
- 2004-08-18 12:00 . 2009-03-08 02:32 163840

[Antusek]

2. část.

c:\windows\system32\dllcache\ieakui.dll
+ 2010-12-24 08:54 . 2009-03-08 03:33 229376 c:\windows\system32\dllcache\ieaksie.dll
- 2004-08-18 12:00 . 2009-03-08 02:33 229376 c:\windows\system32\dllcache\ieaksie.dll
+ 2010-12-24 08:54 . 2009-03-08 03:33 125952 c:\windows\system32\dllcache\ieakeng.dll
- 2004-08-18 12:00 . 2009-03-08 02:33 125952 c:\windows\system32\dllcache\ieakeng.dll
+ 2010-12-24 08:54 . 2010-11-03 12:26 173568 c:\windows\system32\dllcache\ie4uinit.exe
- 2004-08-18 12:00 . 2010-11-03 12:26 173568 c:\windows\system32\dllcache\ie4uinit.exe
+ 2010-12-24 08:54 . 2009-03-08 03:31 216064 c:\windows\system32\dllcache\dxtrans.dll
- 2004-08-18 12:00 . 2009-03-08 02:31 216064 c:\windows\system32\dllcache\dxtrans.dll
- 2004-08-18 12:00 . 2009-03-08 02:31 348160 c:\windows\system32\dllcache\dxtmsft.dll
+ 2010-12-24 08:54 . 2009-03-08 03:31 348160 c:\windows\system32\dllcache\dxtmsft.dll
- 2004-08-18 12:00 . 2009-03-08 02:32 128512 c:\windows\system32\dllcache\advpack.dll
+ 2010-12-24 08:54 . 2009-03-08 03:32 128512 c:\windows\system32\dllcache\advpack.dll
+ 2004-08-18 12:00 . 2008-04-14 06:51 116224 c:\windows\system32\dllcache\aclui.dll
+ 2008-04-08 18:19 . 2008-04-14 06:52 185856 c:\windows\system32\dllcache\accwiz.exe
+ 2008-06-12 09:31 . 2008-04-14 06:51 136192 c:\windows\system32\dllcache\aaclient.dll
+ 2004-08-18 12:00 . 2010-02-12 04:35 100864 c:\windows\system32\dllcache\6to4svc.dll
- 2010-02-12 04:35 . 2010-02-12 04:35 100864 c:\windows\system32\dllcache\6to4svc.dll
+ 2004-08-18 12:00 . 2009-03-08 03:32 128512 c:\windows\system32\advpack.dll
- 2004-08-18 12:00 . 2009-03-08 02:32 128512 c:\windows\system32\advpack.dll
+ 2010-12-24 21:32 . 2010-12-24 21:32 577024 c:\windows\Installer\978dc.msi
+ 2010-12-24 21:32 . 2010-12-24 21:32 279040 c:\windows\Installer\978b5.msi
+ 2010-12-24 21:31 . 2010-12-24 21:31 821760 c:\windows\Installer\97896.msi
+ 2010-12-24 21:10 . 2010-12-24 21:10 121344 c:\windows\Installer\37365a.msi
+ 2010-12-20 21:04 . 2010-12-20 21:04 739840 c:\windows\Installer\12bc17.msi
+ 2010-12-27 13:48 . 2010-12-27 13:48 245760 c:\windows\Installer\10f243f.msi
+ 2010-12-24 13:44 . 2009-03-08 03:34 914944 c:\windows\ie8updates\KB982381-IE8\wininet.dll
+ 2010-12-24 13:44 . 2010-02-22 14:21 391032 c:\windows\ie8updates\KB982381-IE8\updspapi.dll
+ 2010-12-24 13:44 . 2009-05-26 11:40 759160 c:\windows\ie8updates\KB982381-IE8\update.exe
+ 2010-12-24 13:44 . 2010-02-22 14:21 391032 c:\windows\ie8updates\KB982381-IE8\spuninst\updspapi.dll
- 2010-06-08 21:00 . 2010-02-22 14:21 391032 c:\windows\ie8updates\KB982381-IE8\spuninst\updspapi.dll
- 2010-06-08 21:00 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB982381-IE8\spuninst\spuninst.exe
+ 2010-12-24 13:44 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB982381-IE8\spuninst\spuninst.exe
+ 2010-12-24 13:44 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB982381-IE8\spuninst.exe
+ 2010-12-24 13:44 . 2009-03-08 03:34 109568 c:\windows\ie8updates\KB982381-IE8\occache.dll
- 2010-06-08 21:00 . 2010-02-25 06:18 611840 c:\windows\ie8updates\KB982381-IE8\mstime.dll
+ 2010-12-24 13:44 . 2009-03-08 03:32 611840 c:\windows\ie8updates\KB982381-IE8\mstime.dll
- 2010-06-08 21:00 . 2010-02-25 06:18 594432 c:\windows\ie8updates\KB982381-IE8\msfeeds.dll
+ 2010-12-24 13:44 . 2009-03-08 03:32 594432 c:\windows\ie8updates\KB982381-IE8\msfeeds.dll
+ 2010-12-24 13:44 . 2009-03-08 03:33 246784 c:\windows\ie8updates\KB982381-IE8\ieproxy.dll
+ 2010-12-24 13:44 . 2009-03-08 03:31 183808 c:\windows\ie8updates\KB982381-IE8\iepeers.dll
- 2010-06-08 21:00 . 2009-03-08 02:35 742912 c:\windows\ie8updates\KB982381-IE8\iedvtool.dll
+ 2010-12-24 13:44 . 2009-03-08 03:35 742912 c:\windows\ie8updates\KB982381-IE8\iedvtool.dll
+ 2010-12-24 13:44 . 2009-03-08 13:09 391536 c:\windows\ie8updates\KB982381-IE8\iedkcs32.dll
- 2010-06-08 21:00 . 2010-02-24 09:53 173056 c:\windows\ie8updates\KB982381-IE8\ie4uinit.exe
+ 2010-12-24 13:44 . 2009-03-08 03:32 173056 c:\windows\ie8updates\KB982381-IE8\ie4uinit.exe
+ 2010-12-26 00:00 . 2009-03-08 03:33 420352 c:\windows\ie8updates\KB981332-IE8\vbscript.dll
- 2010-04-14 21:27 . 2009-03-08 02:33 420352 c:\windows\ie8updates\KB981332-IE8\vbscript.dll
+ 2010-12-26 00:00 . 2009-05-26 11:40 391032 c:\windows\ie8updates\KB981332-IE8\updspapi.dll
+ 2010-12-26 00:00 . 2009-05-26 11:40 759160 c:\windows\ie8updates\KB981332-IE8\update.exe
- 2010-04-14 21:27 . 2009-05-26 11:40 391032 c:\windows\ie8updates\KB981332-IE8\spuninst\updspapi.dll
+ 2010-12-26 00:00 . 2009-05-26 11:40 391032 c:\windows\ie8updates\KB981332-IE8\spuninst\updspapi.dll
- 2010-04-14 21:27 . 2009-05-26 11:40 233848 c:\windows\ie8updates\KB981332-IE8\spuninst\spuninst.exe
+ 2010-12-26 00:00 . 2009-05-26 11:40 233848 c:\windows\ie8updates\KB981332-IE8\spuninst\spuninst.exe
+ 2010-12-26 00:00 . 2009-05-26 11:40 233848 c:\windows\ie8updates\KB981332-IE8\spuninst.exe
+ 2010-12-26 00:01 . 2008-07-08 12:59 391032 c:\windows\ie8updates\KB976662-IE8\updspapi.dll
+ 2010-12-26 00:01 . 2008-07-08 12:59 759160 c:\windows\ie8updates\KB976662-IE8\update.exe
+ 2010-12-26 00:01 . 2008-07-08 12:59 391032 c:\windows\ie8updates\KB976662-IE8\spuninst\updspapi.dll
- 2010-03-19 18:33 . 2008-07-08 12:59 391032 c:\windows\ie8updates\KB976662-IE8\spuninst\updspapi.dll
+ 2010-12-26 00:01 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB976662-IE8\spuninst\spuninst.exe
- 2010-03-19 18:33 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB976662-IE8\spuninst\spuninst.exe
+ 2010-12-26 00:01 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB976662-IE8\spuninst.exe
+ 2010-12-26 00:01 . 2009-06-22 06:48 726528 c:\windows\ie8updates\KB976662-IE8\jscript.dll
- 2010-03-19 18:33 . 2009-06-22 06:48 726528 c:\windows\ie8updates\KB976662-IE8\jscript.dll
+ 2010-12-26 00:00 . 2008-07-08 12:59 391032 c:\windows\ie8updates\KB971961-IE8\updspapi.dll
+ 2010-12-26 00:00 . 2008-07-08 12:59 759160 c:\windows\ie8updates\KB971961-IE8\update.exe
- 2009-12-19 12:20 . 2008-07-08 12:59 391032 c:\windows\ie8updates\KB971961-IE8\spuninst\updspapi.dll
+ 2010-12-26 00:00 . 2008-07-08 12:59 391032 c:\windows\ie8updates\KB971961-IE8\spuninst\updspapi.dll
- 2009-12-19 12:20 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB971961-IE8\spuninst\spuninst.exe
+ 2010-12-26 00:00 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB971961-IE8\spuninst\spuninst.exe
+ 2010-12-26 00:00 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB971961-IE8\spuninst.exe
+ 2010-12-26 00:00 . 2009-03-08 03:33 726528 c:\windows\ie8updates\KB971961-IE8\jscript.dll
- 2009-12-19 12:20 . 2009-03-08 02:33 726528 c:\windows\ie8updates\KB971961-IE8\jscript.dll
+ 2010-12-24 13:45 . 2010-02-22 14:21 391032 c:\windows\ie8updates\KB2447568-IE8\spuninst\updspapi.dll
+ 2010-12-24 13:45 . 2010-02-22 14:20 233848 c:\windows\ie8updates\KB2447568-IE8\spuninst\spuninst.exe
+ 2010-12-24 13:45 . 2010-09-10 05:52 916480 c:\windows\ie8updates\KB2416400-IE8\wininet.dll
- 2010-12-16 06:53 . 2010-09-10 05:52 916480 c:\windows\ie8updates\KB2416400-IE8\wininet.dll
+ 2010-12-24 13:45 . 2010-07-05 13:13 391032 c:\windows\ie8updates\KB2416400-IE8\updspapi.dll
+ 2010-12-24 13:45 . 2010-07-05 13:13 759160 c:\windows\ie8updates\KB2416400-IE8\update.exe
- 2010-12-16 06:53 . 2010-07-05 13:13 391032 c:\windows\ie8updates\KB2416400-IE8\spuninst\updspapi.dll
+ 2010-12-24 13:46 . 2010-07-05 13:13 391032 c:\windows\ie8updates\KB2416400-IE8\spuninst\updspapi.dll
+ 2010-12-24 13:46 . 2010-02-22 14:20 233848 c:\windows\ie8updates\KB2416400-IE8\spuninst\spuninst.exe
- 2010-12-16 06:53 . 2010-02-22 14:20 233848 c:\windows\ie8updates\KB2416400-IE8\spuninst\spuninst.exe
+ 2010-12-24 13:45 . 2010-02-22 14:20 233848 c:\windows\ie8updates\KB2416400-IE8\spuninst.exe
- 2010-12-16 06:53 . 2010-09-10 05:52 206848 c:\windows\ie8updates\KB2416400-IE8\occache.dll
+ 2010-12-24 13:45 . 2010-09-10 05:52 206848 c:\windows\ie8updates\KB2416400-IE8\occache.dll
+ 2010-12-24 13:45 . 2010-09-10 05:52 611840 c:\windows\ie8updates\KB2416400-IE8\mstime.dll
- 2010-12-16 06:53 . 2010-09-10 05:52 611840 c:\windows\ie8updates\KB2416400-IE8\mstime.dll
+ 2010-12-24 13:45 . 2010-09-10 05:52 602112 c:\windows\ie8updates\KB2416400-IE8\msfeeds.dll
- 2010-12-16 06:53 . 2010-09-10 05:52 602112 c:\windows\ie8updates\KB2416400-IE8\msfeeds.dll
+ 2010-12-24 13:45 . 2010-09-10 05:52 247808 c:\windows\ie8updates\KB2416400-IE8\ieproxy.dll
- 2010-12-16 06:53 . 2010-09-10 05:52 247808 c:\windows\ie8updates\KB2416400-IE8\ieproxy.dll
+ 2010-12-24 13:45 . 2010-09-10 05:52 184320 c:\windows\ie8updates\KB2416400-IE8\iepeers.dll
- 2010-12-16 06:53 . 2010-09-10 05:52 184320 c:\windows\ie8updates\KB2416400-IE8\iepeers.dll
+ 2010-12-24 13:45 . 2010-09-10 05:52 743424 c:\windows\ie8updates\KB2416400-IE8\iedvtool.dll
- 2010-12-16 06:53 . 2010-09-10 05:52 743424 c:\windows\ie8updates\KB2416400-IE8\iedvtool.dll
- 2010-12-16 06:53 . 2010-09-10 05:52 387584 c:\windows\ie8updates\KB2416400-IE8\iedkcs32.dll
+ 2010-12-24 13:45 . 2010-09-10 05:52 387584 c:\windows\ie8updates\KB2416400-IE8\iedkcs32.dll
- 2010-12-16 06:53 . 2010-08-26 12:22 173056 c:\windows\ie8updates\KB2416400-IE8\ie4uinit.exe
+ 2010-12-24 13:45 . 2010-08-26 12:22 173056 c:\windows\ie8updates\KB2416400-IE8\ie4uinit.exe
- 2010-10-14 20:53 . 2010-06-24 12:27 916480 c:\windows\ie8updates\KB2360131-IE8\wininet.dll
+ 2010-12-24 13:45 . 2010-05-06 10:35 916480 c:\windows\ie8updates\KB2360131-IE8\wininet.dll
+ 2010-12-24 13:45 . 2010-07-05 13:13 391032 c:\windows\ie8updates\KB2360131-IE8\updspapi.dll
+ 2010-12-24 13:45 . 2010-02-22 14:21 759160 c:\windows\ie8updates\KB2360131-IE8\update.exe
+ 2010-12-24 13:45 . 2010-07-05 13:13 391032 c:\windows\ie8updates\KB2360131-IE8\spuninst\updspapi.dll
- 2010-10-14 20:53 . 2010-07-05 13:13 391032 c:\windows\ie8updates\KB2360131-IE8\spuninst\updspapi.dll
+ 2010-12-24 13:45 . 2010-02-22 14:20 233848 c:\windows\ie8updates\KB2360131-IE8\spuninst\spuninst.exe
- 2010-10-14 20:53 . 2010-02-22 14:20 233848 c:\windows\ie8updates\KB2360131-IE8\spuninst\spuninst.exe
+ 2010-12-24 13:45 . 2010-02-22 14:20 233848 c:\windows\ie8updates\KB2360131-IE8\spuninst.exe
+ 2010-12-24 13:45 . 2010-05-06 10:35 206848 c:\windows\ie8updates\KB2360131-IE8\occache.dll
- 2010-10-14 20:53 . 2010-06-24 12:27 206848 c:\windows\ie8updates\KB2360131-IE8\occache.dll
- 2010-10-14 20:53 . 2010-06-24 12:27 611840 c:\windows\ie8updates\KB2360131-IE8\mstime.dll
+ 2010-12-24 13:45 . 2010-05-06 10:35 611840 c:\windows\ie8updates\KB2360131-IE8\mstime.dll
+ 2010-12-24 13:45 . 2010-05-06 10:35 599040 c:\windows\ie8updates\KB2360131-IE8\msfeeds.dll
- 2010-10-14 20:53 . 2010-06-24 12:27 599040 c:\windows\ie8updates\KB2360131-IE8\msfeeds.dll
+ 2010-12-24 13:45 . 2010-05-06 10:35 247808 c:\windows\ie8updates\KB2360131-IE8\ieproxy.dll
- 2010-10-14 20:53 . 2010-06-24 12:27 247808 c:\windows\ie8updates\KB2360131-IE8\ieproxy.dll
+ 2010-12-24 13:45 . 2010-05-06 10:35 184320 c:\windows\ie8updates\KB2360131-IE8\iepeers.dll
- 2010-10-14 20:53 . 2010-06-24 12:27 184320 c:\windows\ie8updates\KB2360131-IE8\iepeers.dll
+ 2010-12-24 13:45 . 2010-05-06 10:35 743424 c:\windows\ie8updates\KB2360131-IE8\iedvtool.dll
- 2010-10-14 20:53 . 2010-06-24 12:27 743424 c:\windows\ie8updates\KB2360131-IE8\iedvtool.dll
- 2010-10-14 20:53 . 2010-06-24 12:27 387584 c:\windows\ie8updates\KB2360131-IE8\iedkcs32.dll
+ 2010-12-24 13:45 . 2010-05-06 10:35 387584 c:\windows\ie8updates\KB2360131-IE8\iedkcs32.dll
+ 2010-12-24 13:45 . 2010-05-05 13:30 173056 c:\windows\ie8updates\KB2360131-IE8\ie4uinit.exe
- 2010-10-14 20:53 . 2010-06-23 12:08 173056 c:\windows\ie8updates\KB2360131-IE8\ie4uinit.exe
- 2009-06-23 16:58 . 2009-04-29 04:47 827392 c:\windows\ie8\wininet.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 827392 c:\windows\ie8\wininet.dll
- 2009-06-23 16:58 . 2007-08-13 16:45 206336 c:\windows\ie8\winfxdocobj.exe
+ 2010-12-24 13:40 . 2007-08-13 16:45 206336 c:\windows\ie8\winfxdocobj.exe
+ 2010-12-24 13:40 . 2009-04-29 04:47 233472 c:\windows\ie8\webcheck.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 233472 c:\windows\ie8\webcheck.dll
- 2009-06-23 16:58 . 2007-07-12 23:32 765952 c:\windows\ie8\vgx.dll
+ 2010-12-24 13:40 . 2007-07-12 23:32 765952 c:\windows\ie8\vgx.dll
+ 2010-12-24 13:40 . 2008-05-09 10:56 430080 c:\windows\ie8\vbscript.dll
- 2009-06-23 16:58 . 2008-05-09 10:56 430080 c:\windows\ie8\vbscript.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 105984 c:\windows\ie8\url.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 105984 c:\windows\ie8\url.dll
- 2009-06-23 16:59 . 2009-01-07 16:20 390688 c:\windows\ie8\spuninst\updspapi.dll
+ 2010-12-24 13:42 . 2009-01-07 17:20 390688 c:\windows\ie8\spuninst\updspapi.dll
+ 2010-12-24 13:42 . 2009-01-07 17:20 234016 c:\windows\ie8\spuninst\spuninst.exe
- 2009-06-23 16:59 . 2009-01-07 16:20 234016 c:\windows\ie8\spuninst\spuninst.exe
+ 2010-12-24 13:40 . 2006-09-06 15:42 215776 c:\windows\ie8\spuninst.exe
- 2009-06-23 16:58 . 2006-09-06 15:42 215776 c:\windows\ie8\spuninst.exe
- 2009-06-23 16:58 . 2009-04-29 04:47 102912 c:\windows\ie8\occache.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 102912 c:\windows\ie8\occache.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 671232 c:\windows\ie8\mstime.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 671232 c:\windows\ie8\mstime.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 193024 c:\windows\ie8\msrating.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 193024 c:\windows\ie8\msrating.dll
+ 2010-12-24 13:40 . 2007-08-13 16:54 156160 c:\windows\ie8\msls31.dll
- 2009-06-23 16:58 . 2007-08-13 16:54 156160 c:\windows\ie8\msls31.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 477696 c:\windows\ie8\mshtmled.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 477696 c:\windows\ie8\mshtmled.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 459264 c:\windows\ie8\msfeeds.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 459264 c:\windows\ie8\msfeeds.dll
+ 2010-12-24 13:40 . 2008-05-09 10:56 512000 c:\windows\ie8\jscript.dll
- 2009-06-23 16:58 . 2008-05-09 10:56 512000 c:\windows\ie8\jscript.dll
- 2009-06-23 16:58 . 2009-04-25 05:27 636088 c:\windows\ie8\iexplore.exe
+ 2010-12-24 13:40 . 2009-04-25 05:27 636088 c:\windows\ie8\iexplore.exe
+ 2010-12-24 13:40 . 2007-08-13 16:54 180736 c:\windows\ie8\ieui.dll
- 2009-06-23 16:58 . 2007-08-13 16:54 180736 c:\windows\ie8\ieui.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 268288 c:\windows\ie8\iertutil.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 268288 c:\windows\ie8\iertutil.dll
- 2009-06-23 16:58 . 2007-08-13 16:54 287744 c:\windows\ie8\ieproxy.dll
+ 2010-12-24 13:40 . 2007-08-13 16:54 287744 c:\windows\ie8\ieproxy.dll
+ 2010-12-24 13:40 . 2007-08-13 16:54 191488 c:\windows\ie8\iepeers.dll
- 2009-06-23 16:58 . 2007-08-13 16:54 191488 c:\windows\ie8\iepeers.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 385024 c:\windows\ie8\iedkcs32.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 385024 c:\windows\ie8\iedkcs32.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 383488 c:\windows\ie8\ieapfltr.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 383488 c:\windows\ie8\ieapfltr.dll
- 2009-06-23 16:58 . 2009-04-25 05:26 161792 c:\windows\ie8\ieakui.dll
+ 2010-12-24 13:40 . 2009-04-25 05:26 161792 c:\windows\ie8\ieakui.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 230400 c:\windows\ie8\ieaksie.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 230400 c:\windows\ie8\ieaksie.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 153088 c:\windows\ie8\ieakeng.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 153088 c:\windows\ie8\ieakeng.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 214528 c:\windows\ie8\dxtrans.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 214528 c:\windows\ie8\dxtrans.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 347136 c:\windows\ie8\dxtmsft.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 347136 c:\windows\ie8\dxtmsft.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 124928 c:\windows\ie8\advpack.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 124928 c:\windows\ie8\advpack.dll
+ 2010-01-29 20:45 . 2010-12-24 14:14 184974 c:\windows\hpoins28.dat
+ 2010-12-24 13:45 . 2010-02-22 14:21 391032 c:\windows\$hf_mig$\KB2447568-IE8\update\updspapi.dll
+ 2010-12-24 13:45 . 2010-02-22 14:20 759160 c:\windows\$hf_mig$\KB2447568-IE8\update\update.exe
+ 2010-12-24 13:45 . 2010-02-22 14:20 233848 c:\windows\$hf_mig$\KB2447568-IE8\spuninst.exe
+ 2006-12-01 23:25 . 2006-12-01 23:25 1093120 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80u.dll
+ 2006-12-01 23:25 . 2006-12-01 23:25 1101824 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll
- 2007-02-12 14:10 . 2009-02-06 19:07 3698584 c:\windows\system32\ieapfltr.dat
+ 2007-02-12 14:10 . 2009-02-06 20:07 3698584 c:\windows\system32\ieapfltr.dat
+ 2010-12-24 08:54 . 2010-11-06 00:23 1210880 c:\windows\system32\dllcache\urlmon.dll
- 2004-08-18 12:00 . 2010-11-06 00:23 1210880 c:\windows\system32\dllcache\urlmon.dll
+ 2009-01-07 17:20 . 2009-01-07 17:20 1497600 c:\windows\system32\dllcache\shdocvw.dll
- 2009-01-07 16:20 . 2009-01-07 16:20 1497600 c:\windows\system32\dllcache\shdocvw.dll
+ 2010-12-24 08:54 . 2010-11-06 00:23 5959168 c:\windows\system32\dllcache\mshtml.dll
- 2004-08-18 12:00 . 2010-11-06 00:23 5959168 c:\windows\system32\dllcache\mshtml.dll
- 2008-04-08 14:45 . 2010-11-06 00:23 1991680 c:\windows\system32\dllcache\iertutil.dll
+ 2010-12-24 08:54 . 2010-11-06 00:23 1991680 c:\windows\system32\dllcache\iertutil.dll
- 2008-04-08 14:45 . 2009-02-06 19:07 3698584 c:\windows\system32\dllcache\ieapfltr.dat
+ 2010-12-24 08:54 . 2009-02-06 20:07 3698584 c:\windows\system32\dllcache\ieapfltr.dat
- 2009-01-07 16:20 . 2009-01-07 16:20 1022976 c:\windows\system32\dllcache\browseui.dll
+ 2009-01-07 17:20 . 2009-01-07 17:20 1022976 c:\windows\system32\dllcache\browseui.dll
+ 2010-12-24 21:10 . 2010-12-24 21:10 5652992 c:\windows\Installer\37366c.msi
+ 2010-12-24 13:44 . 2009-03-08 03:34 1206784 c:\windows\ie8updates\KB982381-IE8\urlmon.dll
+ 2010-12-24 13:44 . 2009-03-08 03:41 5937152 c:\windows\ie8updates\KB982381-IE8\mshtml.dll
+ 2010-12-24 13:44 . 2009-03-08 03:32 1985024 c:\windows\ie8updates\KB982381-IE8\iertutil.dll
+ 2010-12-24 13:45 . 2010-09-10 05:52 1210880 c:\windows\ie8updates\KB2416400-IE8\urlmon.dll
- 2010-12-16 06:53 . 2010-09-10 05:52 1210880 c:\windows\ie8updates\KB2416400-IE8\urlmon.dll
+ 2010-12-24 13:45 . 2010-09-10 05:52 5957120 c:\windows\ie8updates\KB2416400-IE8\mshtml.dll
- 2010-12-16 06:53 . 2010-09-10 05:52 5957120 c:\windows\ie8updates\KB2416400-IE8\mshtml.dll
- 2010-12-16 06:53 . 2010-09-10 05:52 1986560 c:\windows\ie8updates\KB2416400-IE8\iertutil.dll
+ 2010-12-24 13:45 . 2010-09-10 05:52 1986560 c:\windows\ie8updates\KB2416400-IE8\iertutil.dll
+ 2010-12-24 13:45 . 2010-05-06 10:35 1209344 c:\windows\ie8updates\KB2360131-IE8\urlmon.dll
+ 2010-12-24 13:45 . 2010-05-06 10:35 5950976 c:\windows\ie8updates\KB2360131-IE8\mshtml.dll
+ 2010-12-24 13:45 . 2010-05-06 10:35 1985536 c:\windows\ie8updates\KB2360131-IE8\iertutil.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 1159680 c:\windows\ie8\urlmon.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 1159680 c:\windows\ie8\urlmon.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 3596288 c:\windows\ie8\mshtml.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 3596288 c:\windows\ie8\mshtml.dll
+ 2010-12-24 13:40 . 2009-04-29 04:47 6066176 c:\windows\ie8\ieframe.dll
- 2009-06-23 16:58 . 2009-04-29 04:47 6066176 c:\windows\ie8\ieframe.dll
+ 2010-12-24 13:40 . 2008-07-09 14:25 2455488 c:\windows\ie8\ieapfltr.dat
- 2009-06-23 16:58 . 2008-07-09 14:25 2455488 c:\windows\ie8\ieapfltr.dat
+ 2008-04-08 14:20 . 2011-01-13 07:37 37403080 c:\windows\system32\MRT.exe
- 2008-04-08 14:45 . 2010-11-06 00:23 11080704 c:\windows\system32\dllcache\ieframe.dll
+ 2010-12-24 08:54 . 2010-11-06 00:23 11080704 c:\windows\system32\dllcache\ieframe.dll
+ 2010-12-24 13:44 . 2009-03-08 03:39 11063808 c:\windows\ie8updates\KB982381-IE8\ieframe.dll
+ 2010-12-24 13:45 . 2010-09-10 05:52 11080192 c:\windows\ie8updates\KB2416400-IE8\ieframe.dll
- 2010-12-16 06:53 . 2010-09-10 05:52 11080192 c:\windows\ie8updates\KB2416400-IE8\ieframe.dll
+ 2010-12-24 13:45 . 2010-05-06 10:35 11076096 c:\windows\ie8updates\KB2360131-IE8\ieframe.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{31c7d459-9cc3-44f2-9dca-fc11795309b4}"= "c:\program files\IObitCom\tbIOb1.dll" [2010-03-19 2349080]

[HKEY_CLASSES_ROOT\clsid\{31c7d459-9cc3-44f2-9dca-fc11795309b4}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{31c7d459-9cc3-44f2-9dca-fc11795309b4}]
2010-03-19 16:43 2349080 ----a-w- c:\program files\IObitCom\tbIOb1.dll

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{31C7D459-9CC3-44F2-9DCA-FC11795309B4}"= "c:\program files\IObitCom\tbIOb1.dll" [2010-03-19 2349080]

[HKEY_CLASSES_ROOT\clsid\{31c7d459-9cc3-44f2-9dca-fc11795309b4}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-06-27 152872]
"Google Update"="c:\documents and settings\User\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" [2009-03-04 133104]
"Advanced SystemCare 3"="c:\čističe\Advanced SystemCare 3\AWC.exe" [2010-12-16 2402512]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-12-19 39408]
"AROReminder"="c:\program files\Advanced Registry Optimizer\ARO.exe" [2010-10-18 2215944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2007-04-12 16132608]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-09-05 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-09-05 166424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-09-05 137752]
"WinFastDTV"="c:\program files\WinFast\WFDTV\DTVSchdl.exe" [2007-11-16 90112]
"SMSTray"="c:\disková media\MP3 přehrávač Samsung\Samsung Media Studio 5\SMSTray.exe" [2007-02-23 126976]
"MAAgent"="c:\program files\MarkAny\ContentSafer\MAAgent.exe" [2007-01-30 57344]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"ISW"="c:\program files\CheckPoint\ZAForceField\ForceField.exe" [2010-05-26 730600]
"avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2011-01-13 3396624]
"TkBellExe"="c:\media\players\real player\update\realsched.exe" [2010-11-21 274608]
"QuickTime Task"="c:\přehrávače\QuickTime 6\QTTask.exe" [2010-11-29 421888]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2010-10-08 47904]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-11-17 421160]
"hpqSRMon"="c:\tiskárna\Digital Imaging\bin\hpqSRMon.exe" [2008-03-13 81920]
"FrameManager"="c:\program files\Samsung\FrameManager\FrameManager.exe" [2010-03-03 512000]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\User\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Secunia PSI.lnk - c:\aviry\Secunia\PSI\psi.exe [2010-7-21 965176]

c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Acrobat Assistant.lnk - c:\programy\Adobe\Distillr\AcroTray.exe [2008-4-11 49254]
HP Digital Imaging Monitor.lnk - c:\tisk rna\Digital Imaging\bin\hpqtra08.exe [2008-3-25 214360]
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-1-15 255536]

c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\AutorunsDisabled
Corel MEDIA FOLDERS INDEXER 8.LNK - c:\grafika\Programs\MFIndexer.exe [2008-5-1 83456]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Windows Search.lnk]
backup=c:\windows\pss\Windows Search.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^User^Nabídka Start^Programy^Po spuštění^OpenOffice.org 3.0.lnk]
backup=c:\windows\pss\OpenOffice.org 3.0.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-01-11 20:16 39792 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
2010-10-08 16:04 47904 ----a-w- c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
2007-06-25 06:47 1057064 ----a-w- c:\program files\Nero\Nero 7\InCD\InCD.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2010-11-17 19:59 421160 ----a-w- c:\program files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
2007-08-23 15:36 455968 ----a-w- c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2007-03-01 13:57 153136 ----a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-11-29 16:38 421888 ----a-w- c:\přehrávače\QuickTime 6\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SecurDisc]
2007-06-25 06:47 1629480 ----a-w- c:\program files\Nero\Nero 7\InCD\NBHGui.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinFast Schedule]
2007-11-15 13:55 2850816 ----a-w- c:\program files\WinFast\WFDTV\WFWIZ.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Nero\\Nero 7\\Nero Home\\NeroHome.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Komunikace\\Avant Browser\\avant.exe"=
"c:\\Program Files\\WinFast\\WFDTV\\DVBTAP.exe"=
"c:\\Aviry\\EMCO Malware Destroyer\\MalwareDestroyer.exe"=
"c:\\Komunikace\\ICQ6.5\\ICQ.exe"=
"c:\\Tiskárna\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Tiskárna\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Tiskárna\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Tiskárna\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Tiskárna\\Digital Imaging\\bin\\hpiscnapp.exe"=
"c:\\Program Files\\Common Files\\HP\\Digital Imaging\\bin\\hpqPhotoCrm.exe"=
"c:\\Tiskárna\\Digital Imaging\\bin\\hpqpsapp.exe"=
"c:\\Tiskárna\\Digital Imaging\\bin\\hpqpse.exe"=
"c:\\Tiskárna\\Digital Imaging\\bin\\hpqsudi.exe"=
"c:\\Tiskárna\\Digital Imaging\\bin\\hpqgplgtupl.exe"=
"c:\\Tiskárna\\Digital Imaging\\bin\\hpqgpc01.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Komunikace\\opera.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\WINDOWS\\system32\\ZoneLabs\\vsmon.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowOutboundPacketTooBig"= 1 (0x1)

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [10.5.2008 9:59 294608]
R1 wfcxacap;WinFast TV PCI Audio Capture Driver;c:\windows\system32\drivers\wfcxacap.sys [8.4.2008 14:26 9856]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [10.5.2008 9:59 17744]
R2 FrameManager Service;FrameManager Service;c:\program files\Samsung\FrameManager\sam_service.exe [27.12.2010 14:48 188416]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [16.7.2009 14:44 222968]
R2 ISWKL;ZoneAlarm Toolbar ISWKL;c:\program files\CheckPoint\ZAForceField\ISWKL.sys [26.5.2010 14:35 26352]
R2 IswSvc;ZoneAlarm Toolbar IswSvc;c:\program files\CheckPoint\ZAForceField\ISWSVC.exe [26.5.2010 14:35 493032]
R2 wfcxatun;WinFast TV Analog Tuner Driver;c:\windows\system32\drivers\wfcxatun.sys [8.4.2008 14:26 31744]
R2 WFCXVCAP;WinFast TV Video Capture Driver;c:\windows\system32\drivers\wfcxvcap.sys [8.4.2008 14:26 167040]
R3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\l151x86.sys [8.4.2008 19:42 39424]
R3 SODI;SODI;c:\windows\system32\drivers\sam_miniport.sys [27.12.2010 14:48 14720]
R3 wfcxdtun;WinFast DTV BDA Tuner/Demod Driver;c:\windows\system32\drivers\wfcxdtun.sys [8.4.2008 14:26 21248]
R3 wfcxtcap;WinFast DTV BDA Transport Stream Capture Driver;c:\windows\system32\drivers\wfcxtcap.sys [8.4.2008 14:26 15872]
R3 wfcxxbar;WinFast TV Crossbar Driver;c:\windows\system32\drivers\wfcxxbar.sys [8.4.2008 14:26 10496]
S0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys --> c:\windows\system32\DRIVERS\Lbd.sys [?]
S1 62304121;62304121;c:\windows\system32\DRIVERS\62304121.sys --> c:\windows\system32\DRIVERS\62304121.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18.3.2010 13:16 130384]
S2 gupdate1c99cd572e121b6;Google Update Service (gupdate1c99cd572e121b6);c:\program files\Google\Update\GoogleUpdate.exe [4.3.2009 15:28 133104]
S3 adusbmdm6501;AnyDATA CDMA USB Modem Driver (PID 6501);c:\windows\system32\drivers\adusbmdm65.sys [28.4.2008 16:12 64896]
S3 adusbser6501;AnyDATA CDMA USB Serial Port (PID 6501);c:\windows\system32\drivers\adusbser65.sys [28.4.2008 16:26 64896]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe [15.1.2010 13:49 227232]
S3 miniusb;FrameManager Display Adapter;c:\windows\system32\drivers\sam_miniusb.sys [27.12.2010 14:49 10624]
S3 nosGetPlusHelper;getPlus(R) Helper 3004;c:\windows\System32\svchost.exe -k nosGetPlusHelper [18.8.2004 13:00 14336]
S3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [7.7.2010 15:05 14904]
S3 WFIOCTL;WFIOCTL;c:\program files\WinFast\WFDTV\WFIOCTL.sys [8.4.2008 14:30 9446]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18.3.2010 13:16 753504]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
nosGetPlusHelper REG_MULTI_SZ nosGetPlusHelper

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2007-08-23 15:34 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'

2011-01-19 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]

2011-01-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-03-04 14:28]

2011-01-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-03-04 14:28]

2011-01-24 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-1993962763-884357618-839522115-1004.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-11-05 10:33]

2011-01-22 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-1993962763-884357618-839522115-1004.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-11-05 10:33]

2011-01-24 c:\windows\Tasks\User_Feed_Synchronization-{BA063BA9-0B9A-48A6-A292-BE51289F1058}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 03:31]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://search.speedbit.com
uInternet Settings,ProxyOverride = *.local
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Office Excel - c:\programy\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: WikiKomentáře Google... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

URLSearchHooks-{66f2e20d-0da8-4c11-a9c8-dd8477b88acd} - (no file)
BHO-{66f2e20d-0da8-4c11-a9c8-dd8477b88acd} - (no file)
Toolbar-{66f2e20d-0da8-4c11-a9c8-dd8477b88acd} - (no file)
WebBrowser-{66F2E20D-0DA8-4C11-A9C8-DD8477B88ACD} - (no file)



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-01-24 18:50
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(720)
c:\program files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll
c:\windows\system32\igfxdev.dll

- - - - - - - > 'lsass.exe'(776)
c:\program files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll

- - - - - - - > 'explorer.exe'(5820)
c:\program files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll
c:\program files\MarkAny\ContentSafer\MaCSProHook.DLL
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Celkový čas: 2011-01-24 18:52:49
ComboFix-quarantined-files.txt 2011-01-24 17:52
ComboFix2.txt 2010-12-19 21:32
ComboFix3.txt 2010-12-19 19:20
ComboFix4.txt 2010-04-02 20:17
ComboFix5.txt 2011-01-24 17:44

Před spuštěním: Volných bajtů: 105 298 378 752
Po spuštění: Volných bajtů: 106 051 584 000

- - End Of File - - C83DAE7E71792A00FFFD728307057D94

[Caroprd111]

Dobrý večer,
mohu se zeptat, na základě jakého podnětu či rady jste spouštěl ComboFix?

[Antusek]

Vždy, když jsem měl nějaký problém a zde jsem se zeptal, bylo mi doporučeno buď vložit log z RSIT (Hijack This), nebo Combofix a dále dle situace použít nějaký další program.
Prosím o další radu jak postupovat. Díky

[Caroprd111]

ComboFix se nedoporučuje používat bez dozoru zkušené osoby a většinou kontroly logu z jiného detekčního programu, případně spuštění CF s příslušným parametrem. Rádce ví, jak případné legitimní smazané soubory obnovit, zná příkazy, dokáže se orientovat v logu atp. Nejde jen o problém restartování PC v případě, když vir smaže knihovnu hal.dll, ale o nespočet dalších věcí, které často nelze ani předpovídat.


Stáhněte OTL http://oldtimer.geekstogo.com/OTL.exe na plochu

• Spusťte, poté do spodního políčka vložte následující skript.

Kód: Vybrat vše

 netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys 
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys 
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
isapnp.sys 
cdrom.sys 
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav 
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
CREATERESTOREPOINT 

• Označte položku Pro všechny uživatele.
• Označte položky Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
• Klikněte na tlačítko Prohledat
• Po dokončení, sem vložte logy OTL.Txt a Extras.txt

[Antusek]

Vkládám oba logy na několik částí, neb je to hodně dlouhé a nejde to najednou.

OTL Extras logfile created on: 24.1.2011 20:41:55 - Run 1
OTL by OldTimer - Version 3.2.20.5 Folder = C:\Documents and Settings\User\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 63,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 81,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149,04 Gb Total Space | 98,72 Gb Free Space | 66,24% Space Free | Partition Type: NTFS

Computer Name: USER-789264609D | User Name: User | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Programy\MICROS~1\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [ACDBrowse] -- "C:\Grafika\ACDSee32\ACDSee32.exe" "%1" (ACD Systems, Ltd.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring" = 1

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Tiskárna\Digital Imaging\bin\hpqtra08.exe" = C:\Tiskárna\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe -- (Hewlett-Packard Co.)
"C:\Tiskárna\Digital Imaging\bin\hpqste08.exe" = C:\Tiskárna\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe -- (Hewlett-Packard Co.)
"C:\Tiskárna\Digital Imaging\bin\hposid01.exe" = C:\Tiskárna\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Tiskárna\Digital Imaging\bin\hpqkygrp.exe" = C:\Tiskárna\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe -- (Hewlett-Packard)
"C:\Tiskárna\Digital Imaging\bin\hpiscnapp.exe" = C:\Tiskárna\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard)
"C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe" = C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe:*:Enabled:hpqphotocrm.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Tiskárna\Digital Imaging\bin\hpqpsapp.exe" = C:\Tiskárna\Digital Imaging\bin\hpqpsapp.exe:*:Enabled:hpqpsapp.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Tiskárna\Digital Imaging\bin\hpqpse.exe" = C:\Tiskárna\Digital Imaging\bin\hpqpse.exe:*:Enabled:hpqpse.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Tiskárna\Digital Imaging\bin\hpqsudi.exe" = C:\Tiskárna\Digital Imaging\bin\hpqsudi.exe:*:Enabled:hpqsudi.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Tiskárna\Digital Imaging\bin\hpqgplgtupl.exe" = C:\Tiskárna\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe -- (Hewlett-Packard Co.)
"C:\Tiskárna\Digital Imaging\bin\hpqgpc01.exe" = C:\Tiskárna\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe -- (Hewlett-Packard)
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe" = C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe:*:Enabled:Nero Home -- (Nero AG)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\Komunikace\Avant Browser\avant.exe" = C:\Komunikace\Avant Browser\avant.exe:*:Enabled:Avant Browser -- ()
"C:\Program Files\WinFast\WFDTV\DVBTAP.exe" = C:\Program Files\WinFast\WFDTV\DVBTAP.exe:*:Enabled:WinFast DTV Application -- (Leadtek Research Inc.)
"C:\Aviry\EMCO Malware Destroyer\MalwareDestroyer.exe" = C:\Aviry\EMCO Malware Destroyer\MalwareDestroyer.exe:*:Enabled:Malware Scanner for Home User's -- (Emco Software Ltd.)
"C:\Komunikace\ICQ6.5\ICQ.exe" = C:\Komunikace\ICQ6.5\ICQ.exe:*:Enabled:ICQ6 -- (ICQ, LLC.)
"C:\Tiskárna\Digital Imaging\bin\hpqtra08.exe" = C:\Tiskárna\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe -- (Hewlett-Packard Co.)
"C:\Tiskárna\Digital Imaging\bin\hpqste08.exe" = C:\Tiskárna\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe -- (Hewlett-Packard Co.)
"C:\Tiskárna\Digital Imaging\bin\hposid01.exe" = C:\Tiskárna\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Tiskárna\Digital Imaging\bin\hpqkygrp.exe" = C:\Tiskárna\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe -- (Hewlett-Packard)
"C:\Tiskárna\Digital Imaging\bin\hpiscnapp.exe" = C:\Tiskárna\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard)
"C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe" = C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe:*:Enabled:hpqphotocrm.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Tiskárna\Digital Imaging\bin\hpqpsapp.exe" = C:\Tiskárna\Digital Imaging\bin\hpqpsapp.exe:*:Enabled:hpqpsapp.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Tiskárna\Digital Imaging\bin\hpqpse.exe" = C:\Tiskárna\Digital Imaging\bin\hpqpse.exe:*:Enabled:hpqpse.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Tiskárna\Digital Imaging\bin\hpqsudi.exe" = C:\Tiskárna\Digital Imaging\bin\hpqsudi.exe:*:Enabled:hpqsudi.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Tiskárna\Digital Imaging\bin\hpqgplgtupl.exe" = C:\Tiskárna\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe -- (Hewlett-Packard Co.)
"C:\Tiskárna\Digital Imaging\bin\hpqgpc01.exe" = C:\Tiskárna\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe -- (Hewlett-Packard)
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)
"C:\Komunikace\opera.exe" = C:\Komunikace\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype. Take a deep breath -- (Skype Technologies S.A.)
"C:\WINDOWS\system32\ZoneLabs\vsmon.exe" = C:\WINDOWS\system32\ZoneLabs\vsmon.exe:*:Enabled:vsmon -- (Check Point Software Technologies LTD)
"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour Service -- (Apple Inc.)
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{022F6097-A053-4B1B-BE50-3AADE4116B92}" = Opera 10.50
"{0289B35E-DC07-4c7a-9710-BBD686EA4B7D}" = Status
"{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}" = VC 9.0 Runtime
"{03CDDD00-BD57-4326-9480-4C74449AF597}" = PhotoStitch
"{05121C4B-19D3-4AB8-B275-FE4B60E0C4E1}" = WinFast DTV2000 H Driver
"{068B46A0-8858-4CEB-80BC-A4AE787A05FC}" = Windows Live Sync
"{06E6E30D-B498-442F-A943-07DE41D7F785}" = Microsoft Search Enhancement Pack
"{093625E3-7B87-49D3-AA53-AD0FCFABAF49}" = Camera Window
"{09633A5E-3089-41A8-9FF1-382171423C5D}" = PSSWCORE
"{0CC89282-5DFA-44E5-83CF-F4E725CCBC4A}" = Jak věci pracují
"{10A44844-4465-456E-8C97-80BDD4F68845}" = Pomocník pro přihlášení ke službě Windows Live ID
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1D097338-B4FA-4F29-9C43-8D7A970A007E}" = Windows Live Fotogalerie
"{1EE88B84-7BE5-4FB5-8DEA-B81D5409D62E}" = Opera 11.00
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2053D8EF-796B-4D0C-9E87-ECBB9D6F5EB5}" = Lidské tělo 2.0
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Nástroj pro odesílání služby Windows Live
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{22F761D1-8063-4170-ADF7-2D2F47834CA9}" = VideoToolkit01
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216012FF}" = Java(TM) 6 Update 17
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{2AFEAA03-2DFE-4519-A629-EDAB6541ABE9}" = HPSSupply
"{308B6AEA-DE50-4666-996D-0FA461719D6B}" = Apple Mobile Device Support
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3700194C-C5DD-439A-BE06-A66960CA4C70}" = MSVCSetup
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4286E640-B5FB-11DF-AC4B-005056C00008}" = Google Earth
"{45EA11B5-874D-480E-89B9-2545505BBE3E}" = Microsoft OpenType Font File Properties Extension
"{479A749B-1684-4881-8266-BF8DD22251E7}" = Windows Live Writer
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A3D0CF8-60FF-4CEF-91A4-A1F001424602}" = DocProc
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{546C143E-68DC-314D-97BC-1E454E3BA429}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY
"{556EEE74-6788-4292-8252-8B17E2C7952A}" = Photosynth 2.0.1403.12
"{564D0000-547B-4ED8-8070-85286CC8C9BF}" = OpenOffice.org 3.0
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{5C29CB8B-AC1E-4114-8D68-9CD080140D4A}" = Sony USB Driver
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{60D4F9F1-B828-4048-A5AB-9AA2FD0C4751}" = DJ_AIO_03_F4200_Software
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{6365C963-4B72-43F8-8392-2A5441EC2A86}" = DJ_AIO_03_F4220_ProductContext
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6B9B0C6F-E5FA-4633-A640-AB98A272ECCA}" = Safari
"{6E257F26-57FA-4BC9-AE3B-D50AF937DA7F}" = Windows Live Toolbar
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}" = WinXP Manager
"{87CC8013-56D1-43E1-A0A5-AD406B4EBA95}" = Opera 10.63
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8C2690CF-5B74-4F93-8139-7B5644CD6A3B}" = MobileMe Control Panel
"{8E72B982-D54F-486F-B35A-C24B6F171029}" = Nero 7 Essentials
"{8F32C384-D237-4516-9F2B-223E8963A2FB}" = Lager
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{913A7D09-EC8B-49D2-8A58-00D004FD0CFD}" = InfoMapa - Home Edition - mapa Prahy a ČR 2009 pro PPK
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars
"{99E2EE14-31E5-40E9-8A76-53529E84854A}" = Hejbejte se kosti moje
"{9C2D4047-0E40-499a-AC7A-C4B9BB12FE03}" = TrayApp
"{9F4EE72A-C5C9-42ad-ABEF-427690843577}" = MarketResearch
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A2C9CD1B-2551-3AED-B244-6698FB929FA6}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA2E8A46-B45E-4aea-8A23-88AB57D04523}" = WebReg
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-7AD7-1029-7B44-A81200000003}" = Adobe Reader 8 - Czech
"{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}" = Microsoft Office Live Add-in 1.4
"{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}" = HP Update
"{B61A79BE-E94C-42C0-921D-8B7E5217069C}" = F4200
"{B75E9758-7E4E-4C1A-AF66-AC15C219FB91}" = ENCYKLOPEDIE VĚDY 1.DÍL
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{BE8A9C2C-8E41-445B-A746-BEB0B1F992F8}" = DJ_AIO_03_F4200_Software_Min
"{BEB03A1A-1EB6-48EB-9985-8B97315EE5C0}" = RemoteCapture 2.7.0
"{BF08AB1C-3357-4f20-A200-8EBB8EF27C59}" = BufferChm
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}" = Canon Utilities ZoomBrowser EX
"{C20CE592-B0F8-4D20-BF31-0151CA6331A6}" = Samsung Media Studio
"{C3B6AEB1-390C-4792-8677-CD87F8B2C959}" = HP Deskjet F4200 All-In-One Driver Software 11.0 Rel .3
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{C89B5E3A-690F-4CEE-909A-BF869E198B0A}" = Scan
"{C92C584E-C781-475E-A8E2-C67D993A6B95}" = WinFast PVR2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC0E1AE3-091D-4969-B151-7AC142062C28}" = SmartWebPrinting
"{CC4A73BF-938E-4C19-A553-853C035C9BA1}" = LightScribe System Software 1.10.13.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D16B4BE6-8B10-422f-8034-96D1CA9483B5}" = GPBaseService
"{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}" = HP Photosmart Essential 2.5
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E32B8C07-6FC4-40ED-9342-96215A449D33}" = FrameManager
"{E3F328E4-EB9F-4ABF-8FF3-5AD0472743D8}" = Windows Live Essentials
"{E535C94A-B87F-4182-BEA8-1E9322078D3E}" = Cards_Calendar_OrderGift_DoMorePlugout
"{E5A10EF8-DBF3-4251-A9CA-423311DBBFC8}" = Windows Live Mail
"{E96B0085-6659-486b-A221-5042A042728D}" = Toolbox
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{EF0DD8B7-471C-463B-A298-6066C2FABAF5}" = File Viewer Utility 1.2
"{EF1ADA5A-0B1A-4662-8C55-7475A61D8B65}" = DeviceDiscovery
"{EF9E56EE-0243-4BAD-88F4-5E7508AA7D96}" = Destination Component
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F7B0E599-C114-4493-BC4D-D8FC7CBBABBB}" = 32 Bit HP CIO Components Installer
"{F8A5531E-FEB4-4F7C-AF51-342E40FA7A0D}" = F4210_Help
"{FAE36873-1941-4076-A9A5-48812B5EA0B7}" = iTunes
"{FF1C31AE-0CDC-40CE-AB85-406F8B70D643}" = Bonjour
"{FF40559B-9BFA-4A93-9A7B-92F6C69BC288}" = FrameManager
"123 Free Solitaire_is1" = 123 Free Solitaire 2009 v7.0
"964DE571-3F1E-45CB-829D-648AACF33A52_is1" = Registry CleanUP 2008
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Type Manager 4.1" = Adobe Type Manager 4.1
"Advanced Registry Optimizer_is1" = Advanced Registry Optimizer
"Advanced SystemCare 3_is1" = Advanced SystemCare 3
"Applian FLV Player2.0.24" = Applian FLV Player
"Ashampoo Photo Optimizer 3_is1" = Ashampoo Photo Optimizer 3.03
"Ashampoo Photo Optimizer FREE_is1" = Ashampoo Photo Optimizer FREE
"AvantBrowser" = Avant Browser (remove only)
"avast5" = avast! Free Antivirus
"BAHN381r1_is1" = BAHN 3.81r1
"CCleaner" = CCleaner
"Corel Uninstaller" = Corel Uninstaller
"E.M. PowerPoint Video Converter_is1" = E.M. PowerPoint Video Converter 2.41
"EMCO Malware Destroyer_is1" = EMCO Malware Destroyer
"ffdshow_is1" = ffdshow [rev 3097] [2009-10-08]
"Free FLV Converter_is1" = Free FLV Converter V 6.7.4
"Free Solitaire 3D_is1" = Free Solitaire 3D 2.01
"Free Video to Mp3 Converter_is1" = Free Video to Mp3 Converter version 3.1
"Free YouTube to Mp3 Converter_is1" = Free YouTube to Mp3 Converter version 2.4
"Free YouTube Uploader_is1" = Free YouTube Uploader version 2.2
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"HijackThis" = HijackThis 2.0.2
"HP Imaging Device Functions" = HP Imaging Device Functions 11.0
"HP Photosmart Essential" = HP Photosmart Essential 3.0
"HP Smart Web Printing" = HP Smart Web Printing
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPExtendedCapabilities" = HP Customer Participation Program 11.0
"HPOCR" = OCR Software by I.R.I.S. 11.0
"ICQToolbar" = ICQ Toolbar
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"ImperialSudoku_is1" = Imperial Sudoku
"InstallShield_{03CDDD00-BD57-4326-9480-4C74449AF597}" = Canon Utilities PhotoStitch 3.1
"InstallShield_{093625E3-7B87-49D3-AA53-AD0FCFABAF49}" = Canon Camera Window for ZoomBrowser EX
"InstallShield_{BEB03A1A-1EB6-48EB-9985-8B97315EE5C0}" = Canon Utilities RemoteCapture 2.7
"InstallShield_{EF0DD8B7-471C-463B-A298-6066C2FABAF5}" = Canon Utilities File Viewer Utility 1.2
"IObitCom Toolbar" = IObitCom Toolbar
"Lame MP3 Codec (for the ACM)" = Lame ACM MP3 Codec
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Odmaturuj z IVT_is1" = Odmaturuj z IVT 0.4.8.9
"PhotoFiltre" = PhotoFiltre
"PhotoRecord" = Canon PhotoRecord
"Picasa 3" = Picasa 3
"Railroad Tycoon II" = Railroad Tycoon II
"RealPlayer 12.0" = RealPlayer
"Recepty doma_is1" = Recepty doma
"Recuva" = Recuva
"Registry Repair_is1" = Glarysoft Registry Repair 2.7
"Secunia PSI" = Secunia PSI
"Shop for HP Supplies" = Shop for HP Supplies
"Uninstall_is1" = Uninstall 1.0.0.0
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinGimp-2.0_is1" = GIMP 2.4.6
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"XviD_is1" = XviD MPEG-4 Video Codec
"ZoneAlarm" = ZoneAlarm
"ZoneAlarm Toolbar" = ZoneAlarm Toolbar
"ZoneAlarmSB Uninstall" = ZoneAlarm Spy Blocker
"Zoner Photo Studio 8_is1" = Zoner Photo Studio 8

[Antusek]

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1993962763-884357618-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"PhotoFiltre" = PhotoFiltre

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 1.10.2010 14:53:29 | Computer Name = USER-789264609D | Source = avast! | ID = 33554522
Description =

Error - 1.10.2010 14:53:29 | Computer Name = USER-789264609D | Source = avast! | ID = 33554522
Description =

Error - 4.10.2010 16:32:13 | Computer Name = USER-789264609D | Source = avast! | ID = 33554522
Description =

Error - 4.10.2010 16:32:13 | Computer Name = USER-789264609D | Source = avast! | ID = 33554522
Description =

Error - 6.10.2010 13:55:04 | Computer Name = USER-789264609D | Source = avast! | ID = 33554522
Description =

Error - 6.10.2010 13:55:04 | Computer Name = USER-789264609D | Source = avast! | ID = 33554522
Description =

Error - 7.10.2010 15:37:20 | Computer Name = USER-789264609D | Source = avast! | ID = 33554522
Description =

Error - 7.10.2010 15:37:20 | Computer Name = USER-789264609D | Source = avast! | ID = 33554522
Description =

Error - 10.10.2010 18:07:51 | Computer Name = USER-789264609D | Source = avast! | ID = 33554522
Description =

Error - 10.10.2010 18:07:51 | Computer Name = USER-789264609D | Source = avast! | ID = 33554522
Description =

[ Application Events ]
Error - 23.1.2011 10:23:01 | Computer Name = USER-789264609D | Source = MsiInstaller | ID = 11706
Description = Product: PSSWCORE -- Error 1706. An installation package for the product
PSSWCORE cannot be found. Try the installation again using a valid copy of the
installation package 'PSSWCORE.msi'.

Error - 23.1.2011 11:52:43 | Computer Name = USER-789264609D | Source = Application Error | ID = 1000
Description = Chybující aplikace camerawindowcomp.exe, verze 4.1.0.15, chybující
modul unknown, verze 0.0.0.0, adresa chyby 0x00000000.

Error - 23.1.2011 11:52:59 | Computer Name = USER-789264609D | Source = Application Error | ID = 1000
Description = Chybující aplikace camerawindowcomp.exe, verze 4.1.0.15, chybující
modul unknown, verze 0.0.0.0, adresa chyby 0x00000000.

Error - 24.1.2011 4:15:54 | Computer Name = USER-789264609D | Source = MsiInstaller | ID = 11706
Description = Product: PSSWCORE -- Error 1706. An installation package for the product
PSSWCORE cannot be found. Try the installation again using a valid copy of the
installation package 'PSSWCORE.msi'.

Error - 24.1.2011 9:19:38 | Computer Name = USER-789264609D | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 24.1.2011 9:19:38 | Computer Name = USER-789264609D | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 15610

Error - 24.1.2011 9:19:38 | Computer Name = USER-789264609D | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 15610

Error - 24.1.2011 9:19:54 | Computer Name = USER-789264609D | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 24.1.2011 9:19:54 | Computer Name = USER-789264609D | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 31250

Error - 24.1.2011 9:19:54 | Computer Name = USER-789264609D | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 31250

[ System Events ]
Error - 22.1.2011 4:00:38 | Computer Name = USER-789264609D | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: 62304121 KLIF Lbd

Error - 22.1.2011 11:27:06 | Computer Name = USER-789264609D | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.

Error - 22.1.2011 11:27:06 | Computer Name = USER-789264609D | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: 62304121 KLIF Lbd

Error - 23.1.2011 10:19:25 | Computer Name = USER-789264609D | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.

Error - 23.1.2011 10:19:25 | Computer Name = USER-789264609D | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: 62304121 KLIF Lbd

Error - 23.1.2011 10:20:14 | Computer Name = USER-789264609D | Source = Windows Update Agent | ID = 20
Description = Instalace se nezdařila: Instalace následující aktualizace se nezdařila
z důvodu chyby (0x80070643): Aktualizace zabezpečení rozhraní Microsoft .NET Framework
3.5 SP1 a .NET Framework 2.0 SP2 pro Windows 2000, Windows Server 2003 a Windows
XP x86 (KB979909).

Error - 23.1.2011 10:20:35 | Computer Name = USER-789264609D | Source = Windows Update Agent | ID = 20
Description = Instalace se nezdařila: Instalace následující aktualizace se nezdařila
z důvodu chyby (0x80070643): Aktualizace rozhraní Microsoft .NET Framework 3.5
SP1 pro systémy Windows Server 2003 a Windows XP x86 (KB982168).

Error - 23.1.2011 10:20:50 | Computer Name = USER-789264609D | Source = Windows Update Agent | ID = 20
Description = Instalace se nezdařila: Instalace následující aktualizace se nezdařila
z důvodu chyby (0x80070643): Aktualizace zabezpečení pro rozhraní Microsoft .NET
Framework 2.0 SP2 a 3.5 SP1 v systémech Windows Server 2003 a Windows XP platformy
x86 (KB2418241).

Error - 24.1.2011 4:06:49 | Computer Name = USER-789264609D | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.

Error - 24.1.2011 4:06:49 | Computer Name = USER-789264609D | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: 62304121 KLIF Lbd


< End of report >

[Antusek]

OTL logfile created on: 24.1.2011 20:41:55 - Run 1
OTL by OldTimer - Version 3.2.20.5 Folder = C:\Documents and Settings\User\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 63,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 81,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149,04 Gb Total Space | 98,72 Gb Free Space | 66,24% Space Free | Partition Type: NTFS

Computer Name: USER-789264609D | User Name: User | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011.01.24 20:38:27 | 000,603,136 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Plocha\OTL.exe
PRC - [2011.01.13 09:47:34 | 003,396,624 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011.01.13 09:47:33 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010.12.16 16:19:34 | 002,402,512 | ---- | M] (IObit) -- C:\Čističe\Advanced SystemCare 3\AWC.exe
PRC - [2010.11.30 21:10:25 | 000,995,896 | ---- | M] (Google Inc.) -- C:\Documents and Settings\User\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2010.11.29 17:38:18 | 000,421,888 | ---- | M] (Apple Inc.) -- C:\Přehrávače\QuickTime 6\QTTask.exe
PRC - [2010.11.21 17:12:26 | 000,274,608 | ---- | M] (RealNetworks, Inc.) -- C:\Media\Players\real player\Update\realsched.exe
PRC - [2010.10.16 00:40:40 | 000,037,664 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010.06.23 12:52:56 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe
PRC - [2010.06.23 12:51:30 | 001,043,968 | ---- | M] (Check Point Software Technologies LTD) -- C:\Aviry\Zone Alarm\zlclient.exe
PRC - [2010.05.26 14:35:18 | 000,493,032 | ---- | M] (Check Point Software Technologies) -- C:\Program Files\CheckPoint\ZAForceField\ISWSVC.exe
PRC - [2010.05.26 14:35:14 | 000,730,600 | ---- | M] (Check Point Software Technologies) -- C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
PRC - [2010.05.14 10:00:26 | 000,249,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PRC - [2010.03.16 15:00:10 | 000,483,328 | ---- | M] (Samsung Electronics Co. Ltd.) -- C:\Program Files\Samsung\FrameManager\sam_controller.exe
PRC - [2010.03.03 17:33:12 | 000,512,000 | ---- | M] (Samsung Electronics Co. Ltd.) -- C:\Program Files\Samsung\FrameManager\FrameManager.exe
PRC - [2010.03.03 17:19:48 | 000,188,416 | ---- | M] (Samsung Electronics Co. Ltd.) -- C:\Program Files\Samsung\FrameManager\sam_service.exe
PRC - [2010.01.15 13:49:20 | 000,255,536 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
PRC - [2009.12.19 12:59:36 | 000,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2009.06.01 21:20:12 | 000,222,968 | ---- | M] () -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe
PRC - [2009.05.21 18:57:00 | 000,362,496 | ---- | M] (Hewlett-Packard) -- C:\Tiskárna\Digital Imaging\bin\hpqgpc01.exe
PRC - [2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.03.25 20:49:02 | 000,184,320 | ---- | M] (Hewlett-Packard Co.) -- C:\Tiskárna\Digital Imaging\bin\hpqste08.exe
PRC - [2008.03.25 20:49:00 | 000,569,344 | ---- | M] (Hewlett-Packard Co.) -- C:\Tiskárna\Digital Imaging\bin\hpqbam08.exe
PRC - [2008.03.25 20:40:42 | 000,214,360 | ---- | M] (Hewlett-Packard Co.) -- C:\Tiskárna\Digital Imaging\bin\hpqtra08.exe
PRC - [2007.11.16 15:13:00 | 000,090,112 | ---- | M] (Leadtek Research Inc.) -- C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
PRC - [2007.06.27 18:04:00 | 001,213,736 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2007.06.27 18:03:40 | 000,152,872 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2007.06.25 07:47:12 | 001,552,680 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
PRC - [2007.01.30 19:36:30 | 000,057,344 | ---- | M] ((주)마크애니) -- C:\Program Files\MarkAny\ContentSafer\MaAgent.exe
PRC - [2004.12.13 03:34:32 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
PRC - [2001.03.15 07:18:18 | 000,049,254 | ---- | M] (Adobe Systems Inc.) -- C:\Programy\Adobe\Distillr\AcroTray.exe


========== Modules (SafeList) ==========

MOD - [2011.01.24 20:38:27 | 000,603,136 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Plocha\OTL.exe
MOD - [2011.01.13 09:47:35 | 000,189,728 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\snxhk.dll
MOD - [2010.11.21 17:12:44 | 000,040,448 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchromebrowserrecordhelper.dll
MOD - [2010.08.23 17:12:33 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2010.05.26 14:35:24 | 000,640,488 | ---- | M] (Check Point Software Technologies) -- C:\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll
MOD - [2009.07.12 01:12:06 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll
MOD - [2009.07.12 01:09:20 | 000,554,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcp80.dll
MOD - [2009.07.11 23:02:02 | 000,653,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcr90.dll
MOD - [2009.07.11 23:02:00 | 000,569,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcp90.dll
MOD - [2004.11.24 19:58:24 | 000,163,840 | ---- | M] (MarkAny Co., Ltd.) -- C:\Program Files\MarkAny\ContentSafer\MaCSProHook.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.01.13 09:47:33 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010.11.29 10:41:26 | 000,058,944 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper_3004.dll -- (nosGetPlusHelper) getPlus(R)
SRV - [2010.10.16 00:40:40 | 000,037,664 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010.06.23 12:52:56 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) [On_Demand | Running] -- C:\WINDOWS\System32\ZoneLabs\vsmon.exe -- (vsmon)
SRV - [2010.05.26 14:35:18 | 000,493,032 | ---- | M] (Check Point Software Technologies) [Auto | Running] -- C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe -- (IswSvc)
SRV - [2010.05.14 10:00:26 | 000,249,136 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)
SRV - [2010.03.18 13:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.03.03 17:19:48 | 000,188,416 | ---- | M] (Samsung Electronics Co. Ltd.) [Auto | Running] -- C:\Program Files\Samsung\FrameManager\sam_service.exe -- (FrameManager Service)
SRV - [2010.01.15 13:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
SRV - [2009.06.01 21:20:12 | 000,222,968 | ---- | M] () [Auto | Running] -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2009.05.21 20:21:18 | 000,248,832 | ---- | M] (Hewlett-Packard Co.) [On_Demand | Running] -- C:\Tiskárna\Digital Imaging\bin\hpqcxs08.dll -- (hpqcxs08)
SRV - [2008.03.25 21:27:36 | 000,135,168 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Tiskárna\Digital Imaging\bin\hpqddsvc.dll -- (hpqddsvc)
SRV - [2007.10.25 14:27:54 | 000,266,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Live\installer\WLSetupSvc.exe -- (WLSetupSvc)
SRV - [2007.06.25 07:47:12 | 001,552,680 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe -- (InCDsrv)
SRV - [2004.12.13 03:34:32 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
SRV - [2000.05.24 14:20:36 | 000,015,360 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\WINDOWS\system32\ATMsrvc.exe -- (ATMsrvc)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Running] -- -- (catchme)
DRV - [2011.01.13 09:41:16 | 000,294,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.01.13 09:40:16 | 000,047,440 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.01.13 09:40:04 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011.01.13 09:37:30 | 000,023,632 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.01.13 09:37:11 | 000,029,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011.01.13 09:37:09 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010.07.07 15:05:32 | 000,014,904 | ---- | M] (Secunia) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\psi_mf.sys -- (PSI)
DRV - [2010.05.26 14:35:10 | 000,026,352 | ---- | M] (Check Point Software Technologies) [Kernel | Auto | Running] -- C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys -- (ISWKL)
DRV - [2010.05.13 09:02:32 | 000,532,224 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant)
DRV - [2010.03.03 17:18:12 | 000,014,720 | ---- | M] (Samsung Electronics Co. Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sam_miniport.sys -- (SODI)
DRV - [2010.03.03 17:18:04 | 000,010,624 | ---- | M] (Samsung Electronics Co. Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sam_miniusb.sys -- (miniusb)
DRV - [2008.04.13 23:16:24 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
DRV - [2008.04.13 21:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007.09.19 12:37:58 | 000,031,744 | ---- | M] (Leadtek Research Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\wfcxatun.sys -- (wfcxatun)
DRV - [2007.09.19 10:12:52 | 000,021,248 | ---- | M] (Leadtek Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wfcxdtun.sys -- (wfcxdtun)
DRV - [2007.09.19 10:10:32 | 000,167,040 | ---- | M] (Leadtek Research Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\wfcxvcap.sys -- (WFCXVCAP)
DRV - [2007.09.19 10:09:52 | 000,010,496 | ---- | M] (Leadtek Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wfcxxbar.sys -- (wfcxxbar)
DRV - [2007.09.19 10:09:42 | 000,015,872 | ---- | M] (Leadtek Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wfcxtcap.sys -- (wfcxtcap)
DRV - [2007.09.19 10:09:32 | 000,009,856 | ---- | M] (Leadtek Research Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\wfcxacap.sys -- (wfcxacap)
DRV - [2007.08.24 04:22:56 | 005,776,928 | R--- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm)
DRV - [2007.07.03 12:06:38 | 000,039,424 | R--- | M] (Atheros Communications Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l151x86.sys -- (AtcL001)
DRV - [2007.06.25 07:47:12 | 000,038,440 | ---- | M] (Nero AG) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\InCDRm.sys -- (incdrm)
DRV - [2007.06.25 07:47:12 | 000,036,776 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDPass.sys -- (InCDPass)
DRV - [2007.06.25 07:47:02 | 000,119,080 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\WINDOWS\system32\drivers\InCDfs.sys -- (InCDfs)
DRV - [2007.04.23 11:12:28 | 004,402,176 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2005.05.02 12:55:34 | 000,064,896 | R--- | M] (AnyDATA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\adusbser65.sys -- (adusbser6501) AnyDATA CDMA USB Serial Port (PID 6501)
DRV - [2005.05.02 12:55:34 | 000,064,896 | R--- | M] (AnyDATA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\adusbmdm65.sys -- (adusbmdm6501) AnyDATA CDMA USB Modem Driver (PID 6501)
DRV - [2005.01.06 15:55:38 | 000,009,446 | ---- | M] (Leadtek Research Inc.) [Kernel | On_Demand | Stopped] -- C:\Program Files\WinFast\WFDTV\WFIOCTL.sys -- (WFIOCTL)
DRV - [2004.08.13 11:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/ ... chcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1993962763-884357618-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\S-1-5-21-1993962763-884357618-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.speedbit.com
IE - HKU\S-1-5-21-1993962763-884357618-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Search,AutoSearch = http://ie.search.msn.com/{SUB_RFC1766}/ ... earch.aspx
IE - HKU\S-1-5-21-1993962763-884357618-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/ ... chcust.htm
IE - HKU\S-1-5-21-1993962763-884357618-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm
IE - HKU\S-1-5-21-1993962763-884357618-839522115-1004\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1993962763-884357618-839522115-1004\..\URLSearchHook: {31c7d459-9cc3-44f2-9dca-fc11795309b4} - C:\Program Files\IObitCom\tbIOb1.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-1993962763-884357618-839522115-1004\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-21-1993962763-884357618-839522115-1004\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-1993962763-884357618-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1993962763-884357618-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009.09.02 13:44:31 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Tiskárna\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2010.01.29 21:52:59 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}: C:\Program Files\CheckPoint\ZAForceField\TrustChecker [2011.01.11 09:49:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010.11.21 17:12:45 | 000,000,000 | ---D | M]


O1 HOSTS File: ([2010.12.19 20:18:14 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Tiskárna\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (IObitCom Toolbar) - {31c7d459-9cc3-44f2-9dca-fc11795309b4} - C:\Program Files\IObitCom\tbIOb1.dll (Conduit Ltd.)
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (ZoneAlarm Security Engine Registrar) - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
O2 - BHO: (Pomocná služba pro přihlášení ke službě Windows Live ID) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O2 - BHO: (ZoneAlarm Spy Blocker BHO) - {F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\ZoneAlarmSB\bar\1.bin\SPYBLOCK.DLL (ZoneAlarm)
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Tiskárna\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (ZoneAlarm Security Engine) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
O3 - HKLM\..\Toolbar: (ZoneAlarm Spy Blocker) - {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\ZoneAlarmSB\bar\1.bin\SPYBLOCK.DLL (ZoneAlarm)
O3 - HKU\S-1-5-21-1993962763-884357618-839522115-1004\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKU\S-1-5-21-1993962763-884357618-839522115-1004\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKU\S-1-5-21-1993962763-884357618-839522115-1004\..\Toolbar\WebBrowser: (IObitCom Toolbar) - {31C7D459-9CC3-44F2-9DCA-FC11795309B4} - C:\Program Files\IObitCom\tbIOb1.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-1993962763-884357618-839522115-1004\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKU\S-1-5-21-1993962763-884357618-839522115-1004\..\Toolbar\WebBrowser: (ZoneAlarm Security Engine) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
O3 - HKU\S-1-5-21-1993962763-884357618-839522115-1004\..\Toolbar\WebBrowser: (ZoneAlarm Spy Blocker) - {F0D4B239-DA4B-4DAF-81E4-DFEE4931A4AA} - C:\Program Files\ZoneAlarmSB\bar\1.bin\SPYBLOCK.DLL (ZoneAlarm)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [FrameManager] C:\Program Files\Samsung\FrameManager\FrameManager.exe (Samsung Electronics Co. Ltd.)
O4 - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [hpqSRMon] C:\Tiskárna\Digital Imaging\bin\HpqSRmon.exe (Hewlett-Packard)
O4 - HKLM..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe (Intel Corporation)
O4 - HKLM..\Run: [ISW] C:\Program Files\CheckPoint\ZAForceField\ForceField.exe (Check Point Software Technologies)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [MAAgent] C:\Program Files\MarkAny\ContentSafer\MaAgent.exe ((주)마크애니)
O4 - HKLM..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [QuickTime Task] C:\přehrávače\QuickTime 6\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SMSTray] C:\Disková media\MP3 přehrávač Samsung\Samsung Media Studio 5\SMSTray.exe (SAMSUNG ELECTRONICS)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\media\players\real player\update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [WinFastDTV] C:\Program Files\WinFast\WFDTV\DTVSchdl.exe (Leadtek Research Inc.)
O4 - HKU\.DEFAULT..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1993962763-884357618-839522115-1004..\Run: [Advanced SystemCare 3] C:\Čističe\Advanced SystemCare 3\AWC.exe (IObit)
O4 - HKU\S-1-5-21-1993962763-884357618-839522115-1004..\Run: [AROReminder] C:\Program Files\Advanced Registry Optimizer\ARO.exe (Sammsoft)
O4 - HKU\S-1-5-21-1993962763-884357618-839522115-1004..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-1993962763-884357618-839522115-1004..\Run: [Google Update] C:\Documents and Settings\User\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe (Google Inc.)
O4 - HKU\S-1-5-21-1993962763-884357618-839522115-1004..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Acrobat Assistant.lnk = C:\Programy\Adobe\Distillr\AcroTray.exe (Adobe Systems Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\AutorunsDisabled [2010.02.03 10:32:55 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk = C:\Tiskárna\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.)
O4 - Startup: C:\Documents and Settings\User\Nabídka Start\Programy\Po spuštění\Secunia PSI.lnk = C:\Aviry\Secunia\PSI\psi.exe (Secunia)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1993962763-884357618-839522115-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1993962763-884357618-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1993962763-884357618-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O7 - HKU\S-1-5-21-1993962763-884357618-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1993962763-884357618-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - C:\Programy\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: WikiKomentáře Google... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll (Google Inc.)
O9 - Extra Button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programy\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: #48005000200043006800790074007200FD0020007600FD0062001B017200 - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Tiskárna\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Komunikace\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Komunikace\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/microsoftup ... 1224740859 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftup ... 1224714906 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Value error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (get_atlcom Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\crypt32chain: DllName - crypt32.dll - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - cryptnet.dll - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - cscdll.dll - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - %SystemRoot%\System32\dimsntfy.dll - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - sclgntfy.dll - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Proces mezipaměti kategorií součástí - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\User\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\User\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {88485281-8b4b-4f8d-9ede-82e29a064277} - C:\Program Files\MarkAny\ContentSafer\MACSMANAGER.dll (MarkAny Cooperation.)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.04.08 19:21:58 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (67567605161918464)

========== Files/Folders - Created Within 30 Days ==========

[2011.01.24 20:38:22 | 000,603,136 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\User\Plocha\OTL.exe
[2011.01.24 18:43:48 | 000,000,000 | ---D | C] -- C:\ComboFix
[2011.01.24 15:49:49 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\User\Recent
[2011.01.21 19:53:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Nabídka Start\Programy\PhotoFiltre
[2011.01.18 11:17:41 | 000,226,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcpip6.sys
[2011.01.12 10:50:19 | 000,000,000 | ---D | C] -- C:\stati2011
[2011.01.04 09:53:05 | 000,000,000 | ---D | C] -- C:\Prezentace 2011
[2011.01.04 09:52:18 | 000,000,000 | ---D | C] -- C:\Nová složka
[2011.01.01 18:29:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Data aplikací\McAfee
[2011.01.01 18:29:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\McAfee Security Scan Plus
[2010.12.27 14:49:15 | 000,010,624 | ---- | C] (Samsung Electronics Co. Ltd.) -- C:\WINDOWS\System32\drivers\sam_miniusb.sys
[2010.12.27 14:48:15 | 000,014,720 | ---- | C] (Samsung Electronics Co. Ltd.) -- C:\WINDOWS\System32\drivers\sam_miniport.sys
[2010.12.27 14:48:15 | 000,012,160 | ---- | C] (Samsung Electronics Co. Ltd.) -- C:\WINDOWS\System32\sam_minidisplay.dll
[2010.12.27 14:47:48 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung
[2010.12.25 20:50:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Zoner Photo Studio 8
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\Documents and Settings\User\Dokumenty\*.tmp files -> C:\Documents and Settings\User\Dokumenty\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011.01.24 20:38:27 | 000,603,136 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Plocha\OTL.exe
[2011.01.24 20:00:00 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.01.24 19:15:15 | 000,004,212 | -H-- | M] () -- C:\WINDOWS\System32\zllictbl.dat
[2011.01.24 18:18:02 | 000,000,464 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{BA063BA9-0B9A-48A6-A292-BE51289F1058}.job
[2011.01.24 10:00:00 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.01.24 09:04:54 | 000,000,276 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1993962763-884357618-839522115-1004.job
[2011.01.24 09:04:45 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.01.23 16:51:54 | 000,002,429 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\ZoomBrowser EX.lnk
[2011.01.22 21:48:47 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-1993962763-884357618-839522115-1004.job
[2011.01.22 12:56:54 | 000,000,198 | ---- | M] () -- C:\WINDOWS\QTW.INI
[2011.01.21 19:53:37 | 000,000,688 | ---- | M] () -- C:\Documents and Settings\User\Plocha\PhotoFiltre.lnk
[2011.01.20 19:35:17 | 000,000,281 | RHS- | M] () -- C:\boot.ini
[2011.01.20 13:41:38 | 000,002,553 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011.01.20 09:17:15 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.01.19 17:50:00 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011.01.14 21:06:08 | 000,192,512 | ---- | M] () -- C:\Documents and Settings\User\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.01.14 19:56:04 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011.01.13 09:47:35 | 000,038,848 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011.01.13 09:47:32 | 000,188,216 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011.01.13 09:41:16 | 000,294,608 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011.01.13 09:40:16 | 000,047,440 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011.01.13 09:40:04 | 000,100,176 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011.01.13 09:39:50 | 000,094,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011.01.13 09:37:30 | 000,023,632 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011.01.13 09:37:11 | 000,029,392 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011.01.13 09:37:09 | 000,017,744 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011.01.11 15:20:24 | 000,022,016 | ---- | M] () -- C:\Documents and Settings\User\Dokumenty\Četba.doc
[2011.01.11 10:38:59 | 000,022,016 | ---- | M] () -- C:\Documents and Settings\User\Dokumenty\Koncentrace bohatství je doprovázena chudnutím většiny.doc
[2011.01.06 23:25:04 | 000,001,469 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Recuva.lnk
[2011.01.02 20:19:50 | 000,002,339 | ---- | M] () -- C:\Documents and Settings\User\Plocha\WinXP Manager.lnk
[2011.01.01 18:29:31 | 000,001,619 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\McAfee Security Scan Plus.lnk
[2011.01.01 18:29:31 | 000,001,611 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\McAfee Security Scan Plus.lnk
[2011.01.01 09:35:21 | 000,591,392 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.12.29 11:36:04 | 000,002,250 | ---- | M] () -- C:\Documents and Settings\User\Plocha\Google Chrome.lnk
[2010.12.27 14:48:10 | 000,000,645 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Launch FrameManager.lnk
[2010.12.25 20:50:42 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Zoner Photo Studio 8.lnk
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\Documents and Settings\User\Dokumenty\*.tmp files -> C:\Documents and Settings\User\Dokumenty\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[Antusek]

========== Files Created - No Company Name ==========

[2011.01.20 19:35:16 | 000,001,611 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\McAfee Security Scan Plus.lnk
[2011.01.11 14:57:00 | 000,022,016 | ---- | C] () -- C:\Documents and Settings\User\Dokumenty\Četba.doc
[2011.01.11 10:37:14 | 000,022,016 | ---- | C] () -- C:\Documents and Settings\User\Dokumenty\Koncentrace bohatství je doprovázena chudnutím většiny.doc
[2010.12.27 14:48:10 | 000,000,645 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Launch FrameManager.lnk
[2010.12.25 20:50:42 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Zoner Photo Studio 8.lnk
[2010.08.31 09:20:15 | 011,884,744 | ---- | C] () -- C:\Program Files\dap95upg.exe
[2010.02.02 22:40:09 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010.01.29 22:39:31 | 000,000,124 | ---- | C] () -- C:\Documents and Settings\User\Local Settings\Data aplikací\fusioncache.dat
[2009.08.29 15:52:20 | 000,201,216 | ---- | C] () -- C:\WINDOWS\System32\mediarcpt.dll
[2009.05.13 15:07:51 | 000,029,178 | ---- | C] () -- C:\WINDOWS\System32\msdx92.dll
[2009.04.02 16:46:05 | 000,016,135 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\hpzinstall.log
[2009.03.14 14:10:59 | 000,003,311 | ---- | C] () -- C:\WINDOWS\GWS.INI
[2008.08.21 20:45:15 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\ezsid.dat
[2008.07.23 15:31:40 | 000,000,021 | ---- | C] () -- C:\WINDOWS\winklav.ini
[2008.05.26 21:22:14 | 000,015,552 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2008.05.26 21:22:10 | 000,021,464 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2008.05.26 21:22:04 | 000,014,910 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2008.05.17 11:58:01 | 000,299,008 | ---- | C] () -- C:\WINDOWS\System32\LAME_MP3.dll
[2008.05.17 11:53:48 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.dll
[2008.05.17 11:53:48 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2008.05.17 11:53:47 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2008.05.17 11:53:47 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\Ogg.dll
[2008.05.16 12:23:22 | 000,000,198 | ---- | C] () -- C:\WINDOWS\QTW.INI
[2008.05.04 13:27:08 | 000,192,512 | ---- | C] () -- C:\Documents and Settings\User\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.05.01 08:46:36 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\sh33w32.dll
[2008.04.17 16:34:05 | 000,003,355 | ---- | C] () -- C:\WINDOWS\wg2000.ini
[2008.04.11 16:27:09 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\adistres.dll
[2008.04.11 16:24:43 | 000,000,156 | ---- | C] () -- C:\WINDOWS\Kpcms.ini
[2008.04.11 16:24:34 | 000,210,944 | ---- | C] () -- C:\WINDOWS\System32\Msvcrt10.dll
[2008.04.11 16:17:46 | 000,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
[2008.04.11 15:56:03 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll
[2008.04.11 15:48:17 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008.04.09 16:00:15 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008.04.08 21:14:20 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008.04.08 19:37:41 | 000,147,456 | R--- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4864.dll
[2008.04.08 19:27:32 | 000,017,654 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2008.04.08 19:27:26 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2008.04.08 19:27:26 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2008.04.08 19:27:14 | 000,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2008.04.08 14:27:34 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2004.12.20 10:08:28 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2004.12.20 10:03:26 | 000,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll

========== LOP Check ==========

[2010.10.12 08:25:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2008.05.10 09:38:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Avg7
[2009.07.16 14:44:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2010.04.17 23:44:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2009.05.13 15:49:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Kristanix Games
[2008.04.09 16:07:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\LightScribe
[2009.04.16 15:01:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MailFrontier
[2009.05.13 15:07:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Software4u
[2010.12.24 09:30:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SpeedBit
[2010.12.24 09:25:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2010.03.30 13:23:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TreeCardGames
[2010.04.05 20:57:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2009.12.19 13:09:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009.06.22 14:06:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2010.12.19 19:37:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{BC9FCCF7-E686-494B-8C9B-55C9A39A7CA9}
[2010.08.22 19:04:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\CheckPoint
[2008.05.17 11:54:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\DataCast
[2010.12.09 19:18:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\FreeFLVConverter
[2008.06.16 22:09:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\GlarySoft
[2008.08.19 13:57:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\gtk-2.0
[2010.10.25 21:39:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\ICQ
[2008.04.22 14:35:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\ICQ Toolbar
[2008.04.11 16:26:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\InterTrust
[2009.12.19 12:48:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\IObit
[2008.09.14 07:55:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\LM_ML
[2009.06.06 14:02:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\OpenOffice.org
[2008.05.06 21:57:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Opera
[2010.05.10 21:53:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\PDFcreator
[2010.11.10 10:53:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Sammsoft
[2009.05.13 15:07:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Software4u
[2010.12.25 20:44:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Toolbar4
[2010.03.23 20:20:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\TreeCardGames
[2008.07.05 13:23:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Windows Desktop Search
[2008.07.05 16:08:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Windows Search
[2010.12.25 20:29:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Zoner
[2011.01.24 18:18:02 | 000,000,464 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{BA063BA9-0B9A-48A6-A292-BE51289F1058}.job

========== Purity Check ==========



========== Custom Scans ==========


< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}" = "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" -- [2007.06.27 18:03:40 | 000,152,872 | ---- | M] (Nero AG)
"Google Update" = "C:\Documents and Settings\User\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c -- [2009.03.04 15:30:47 | 000,133,104 | ---- | M] (Google Inc.)
"Advanced SystemCare 3" = "C:\Čističe\Advanced SystemCare 3\AWC.exe" /startup -- [2010.12.16 16:19:34 | 002,402,512 | ---- | M] (IObit)
"swg" = "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" -- [2009.12.19 12:59:36 | 000,039,408 | ---- | M] (Google Inc.)
"AROReminder" = C:\Program Files\Advanced Registry Optimizer\ARO.exe -rem -- [2010.10.18 12:44:06 | 002,215,944 | ---- | M] (Sammsoft)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AutorunsDisabled]
"MSMSGS" = "C:\Program Files\Messenger\msmsgs.exe" /background -- [2008.04.14 07:52:38 | 001,695,232 | ---- | M] (Microsoft Corporation)

< c:\windows\*.* /U >
[4 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >
[2010.12.04 11:23:07 | 001,342,752 | ---- | M] (Inbox.com, Inc. ) -- C:\VideosSetup.exe

< %ALLUSERSPROFILE%\Application Data\*. >
[2010.12.14 09:26:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Speedbit

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2008.05.06 21:45:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Adobe
[2009.03.15 12:42:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Ahead
[2010.04.15 19:50:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Apple Computer
[2008.05.15 10:03:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Avant Profiles
[2010.08.22 19:04:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\CheckPoint
[2008.05.06 21:57:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Corel
[2008.05.17 11:54:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\DataCast
[2010.12.09 19:18:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\FreeFLVConverter
[2008.06.16 22:09:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\GlarySoft
[2010.01.30 14:41:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Google
[2008.08.19 13:57:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\gtk-2.0
[2008.05.06 21:57:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Help
[2010.01.29 22:03:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\HP
[2010.12.24 22:33:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\HpUpdate
[2010.10.25 21:39:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\ICQ
[2008.04.22 14:35:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\ICQ Toolbar
[2008.04.08 19:26:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Identities
[2008.05.17 11:52:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\InstallShield
[2008.04.11 16:26:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\InterTrust
[2009.12.19 12:48:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\IObit
[2008.09.14 07:55:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\LM_ML
[2008.04.17 16:17:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Macromedia
[2010.01.29 22:40:16 | 000,000,000 | --SD | M] -- C:\Documents and Settings\User\Data aplikací\Microsoft
[2008.04.11 17:12:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Mozilla
[2009.06.06 14:02:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\OpenOffice.org
[2008.05.06 21:57:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Opera
[2010.05.10 21:53:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\PDFcreator
[2010.12.09 19:15:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Real
[2010.11.10 10:53:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Sammsoft
[2010.08.04 20:57:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Skype
[2010.04.05 20:46:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\skypePM
[2009.05.13 15:07:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Software4u
[2009.03.20 14:04:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Sun
[2010.12.25 20:44:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Toolbar4
[2010.03.23 20:20:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\TreeCardGames
[2008.07.05 13:23:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Windows Desktop Search
[2008.07.05 16:08:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Windows Search
[2008.10.08 09:57:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\WinRAR
[2010.12.25 20:29:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Zoner

< %APPDATA%\*.exe /s >
[2009.11.04 16:49:36 | 000,635,664 | ---- | M] (IObit) -- C:\Documents and Settings\User\Data aplikací\IObit\Common\TB_Helper.exe
[2009.03.13 19:37:12 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{45EA11B5-874D-480E-89B9-2545505BBE3E}\ARPPRODUCTICON.exe
[2010.12.20 22:05:00 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_094D2999E03AF067E6C5DD.exe
[2010.12.20 22:04:59 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_1324D739AAFBC438F5DF5F.exe
[2010.12.20 22:05:00 | 000,005,430 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_1AB13FACDDE6955FB8A230.exe
[2010.12.20 22:05:00 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_424C98A5BFF6DCA1DAE5AA.exe
[2010.12.20 22:05:00 | 000,013,262 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_468CFA8A7E114B58D146CF.exe
[2010.12.20 22:05:00 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_48052E75363D0C07BD1414.exe
[2010.12.20 22:05:00 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_498497E0B3A19E434C34D4.exe
[2010.12.20 22:05:00 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_4E163F42BA37980EA26431.exe
[2010.12.20 22:05:00 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_5136A5F2DDCC0D3A910F9D.exe
[2010.12.20 22:05:00 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_67C82776DA9B2BD2EB5CB6.exe
[2010.12.20 22:04:59 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_6FEFF9B68218417F98F549.exe
[2010.12.20 22:05:00 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_7572D79E3B577574CBB073.exe
[2010.12.20 22:04:59 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_77654C49366B8066FC67A3.exe
[2010.12.20 22:05:00 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_7E89081F3BF7470C4D96D2.exe
[2010.12.20 22:05:00 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_8B7EEDD38F13EE503C777F.exe
[2010.12.20 22:05:00 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_8FB306F005534A5F8F402B.exe
[2010.12.20 22:05:00 | 000,013,262 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_980D59E01FA54B6F16CD02.exe
[2010.12.20 22:05:00 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_993F095DA040DDF2E96980.exe
[2010.12.20 22:05:00 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_A3706132CB87E4F6FEBBC8.exe
[2010.12.20 22:05:00 | 000,009,662 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_CBE8F7724EE29FD3761298.exe
[2010.12.20 22:05:00 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_CD14D44FFAEB27F11907E1.exe
[2010.12.20 22:05:00 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_CE3B7AE2615BF6D60CFA40.exe
[2010.12.20 22:04:59 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_D8815CCC03F12BBA2E8FF2.exe
[2010.12.20 22:05:00 | 000,005,430 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_DE23B4B754846A2F62380B.exe
[2010.12.20 22:04:59 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_E3A6692DA78EA6348F46BB.exe
[2010.12.20 22:05:00 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_F4CF425756336027E951C6.exe
[2010.12.20 22:05:00 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}\_FBB40E0B40EF52A434900A.exe
[2009.05.25 16:26:41 | 000,007,168 | R--- | M] () -- C:\Documents and Settings\User\Data aplikací\Microsoft\Installer\{913A7D09-EC8B-49D2-8A58-00D004FD0CFD}\Icon913A7D09.exe
[2008.04.29 15:48:05 | 001,495,112 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\User\Data aplikací\Opera\Opera\install_flash_player.exe


< MD5 for: AGP440.SYS >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 23:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ERDNT\cache\agp440.sys
[2008.04.13 23:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 23:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

< MD5 for: ATAPI.SYS >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004.08.18 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\system32\DRIVERS\atapi.sys
[2004.08.18 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0006\DriverFiles\i386\atapi.sys

< MD5 for: CDROM.SYS >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004.08.18 13:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2004.08.18 13:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 07:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ERDNT\cache\cryptsvc.dll
[2008.04.14 07:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 07:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll

< MD5 for: EVENTLOG.DLL >
[2008.04.14 07:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2008.04.14 07:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 07:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2004.08.18 13:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2007.06.13 14:11:59 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=9B32416BD5988C97B6397CE0B02CAF97 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007.06.13 14:23:39 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=ED7B460B142A32097B8A8F6ECC941815 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: HAL.DLL >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 23:01:30 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 23:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2004.08.18 13:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: CHANGER.SYS >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 23:11:00 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys

< MD5 for: ISAPNP.SYS >
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2001.10.24 10:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2004.08.18 13:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\drivers\system32\DRIVERS\isapnp.sys
[2004.08.18 13:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386\isapnp.sys
[2008.04.14 06:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 06:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys

< MD5 for: LSASS.EXE >
[2004.08.18 13:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 07:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ERDNT\cache\lsass.exe
[2008.04.14 07:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 07:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.13 23:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2008.04.13 23:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 23:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004.08.18 13:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

< MD5 for: NETLOGON.DLL >
[2004.08.18 13:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 07:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2008.04.14 07:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 07:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: SCECLI.DLL >
[2004.08.18 13:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 07:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 07:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 07:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SMSS.EXE >
[2004.08.18 13:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2004.08.17 14:49:28 | 000,164,864 | ---- | M] (Microsoft Corporation) MD5=3C100B7FDB179B63829103DF6541337F -- C:\cmdcons\SYSTEM32\SMSS.EXE
[2008.04.14 07:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 07:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe

< MD5 for: SVCHOST.EXE >
[2008.04.14 07:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2008.04.14 07:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 07:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.18 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2007.10.30 17:53:32 | 000,360,832 | ---- | M] (Microsoft Corporation) MD5=64798ECFA43D78C7178375FCDD16D8C8 -- C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys
[2007.10.30 18:20:55 | 000,360,064 | ---- | M] (Microsoft Corporation) MD5=90CAFF4B094573449A0872A0F919B178 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.04.13 23:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\ERDNT\cache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 07:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2008.04.14 07:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 07:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.18 13:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004.08.18 13:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 07:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008.04.14 07:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 07:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< MD5 for: WS2_32.DLL >
[2004.08.18 13:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 07:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ERDNT\cache\ws2_32.dll
[2008.04.14 07:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 07:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2008.04.08 21:12:49 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2008.04.08 21:12:49 | 000,638,976 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2008.04.08 21:12:48 | 000,462,848 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2011.01.24 19:15:15 | 000,004,212 | -H-- | M] () -- C:\WINDOWS\system32\zllictbl.dat
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

========== Alternate Data Streams ==========

@Alternate Data Stream - 159 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:CD060F93
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:A9662AE0
@Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:2B11E0DF
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:010ADD2C

< End of report >

[Caroprd111]

Spusťte OTL a do spodního okna vložte následující skript.

Kód: Vybrat vše

:OTL
@Alternate Data Stream - 159 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:CD060F93
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:A9662AE0
@Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:2B11E0DF
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:010ADD2C
[2010.08.31 09:20:15 | 011,884,744 | ---- | C] () -- C:\Program Files\dap95upg.exe
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\Documents and Settings\User\Dokumenty\*.tmp files -> C:\Documents and Settings\User\Dokumenty\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Value error.)
IE - HKU\S-1-5-21-1993962763-884357618-839522115-1004\..\URLSearchHook: - Reg Error: Key error. File not found
DRV - File not found [Kernel | On_Demand | Running] -- -- (catchme)
IE - HKU\S-1-5-21-1993962763-884357618-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.speedbit.com
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Value error.)

:Commands
[EMPTYTEMP] 
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]

Klikněte na Opravit, PC se restartuje, log vložte sem.

[Antusek]

Posílám log a díky za další postup.


All processes killed
========== OTL ==========
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:CD060F93 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:A9662AE0 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:2B11E0DF deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:010ADD2C deleted successfully.
C:\Program Files\dap95upg.exe moved successfully.
C:\WINDOWS\002988_.tmp deleted successfully.
C:\WINDOWS\SET3.tmp deleted successfully.
C:\WINDOWS\SET4.tmp deleted successfully.
C:\WINDOWS\SET8.tmp deleted successfully.
C:\Documents and Settings\User\Dokumenty\~WRL0005.tmp deleted successfully.
C:\Documents and Settings\User\Dokumenty\~WRL3630.tmp deleted successfully.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
Starting removal of ActiveX control {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
C:\WINDOWS\Downloaded Program Files\erma.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_USERS\S-1-5-21-1993962763-884357618-839522115-1004\Software\Microsoft\Internet Explorer\URLSearchHooks\ deleted successfully.
Service catchme stopped successfully!
Service catchme deleted successfully!
HKU\S-1-5-21-1993962763-884357618-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 41 bytes

User: LocalService
->Temp folder emptied: 69228 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: NetworkService
->Temp folder emptied: 2508 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: User
->Temp folder emptied: 2082648 bytes
->Temporary Internet Files folder emptied: 5405821 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 53462311 bytes
->Apple Safari cache emptied: 0 bytes
->Flash cache emptied: 971 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1136728 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 92 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 59,00 mb


[EMPTYFLASH]

User: All Users

User: Default User
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

User: User
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

Restore points cleared and new OTL Restore Point set!

OTL by OldTimer - Version 3.2.20.5 log created on 01242011_214752

Files\Folders moved on Reboot...
C:\Documents and Settings\LocalService\Local Settings\Temp\IswTmp\Logs\ISWSHEX.swl moved successfully.
C:\Documents and Settings\NetworkService\Local Settings\Temp\IswTmp\Logs\ISWSHEX.swl moved successfully.
C:\Documents and Settings\User\Local Settings\Temp\IswTmp\Logs\ISWSHEX.swl moved successfully.
C:\Documents and Settings\User\Local Settings\Temp\~DFA39F.tmp moved successfully.
C:\Documents and Settings\User\Local Settings\Temporary Internet Files\Content.IE5\X5U2G034\background_banner[1].png moved successfully.
C:\Documents and Settings\User\Local Settings\Temporary Internet Files\Content.IE5\X5U2G034\background_button_green_full[1].png moved successfully.
C:\Documents and Settings\User\Local Settings\Temporary Internet Files\Content.IE5\X5U2G034\list-item-plus[1].png moved successfully.
File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.
C:\WINDOWS\temp\IswTmp\Logs\ISWDMP.swl moved successfully.
C:\WINDOWS\temp\IswTmp\Logs\ISWFWMON.swl moved successfully.
C:\WINDOWS\temp\IswTmp\Logs\ISWMENUS.swl moved successfully.
C:\WINDOWS\temp\IswTmp\Logs\ISWSHEX.swl.old moved successfully.
C:\WINDOWS\temp\IswTmp\Logs\ISWSTATS.swl moved successfully.
C:\WINDOWS\temp\IswTmp\Logs\ISWSVC.swl moved successfully.
C:\WINDOWS\temp\IswTmp\Logs\ISWUILIB.swl moved successfully.
C:\WINDOWS\temp\IswTmp\Logs\ISWUL.swl moved successfully.
C:\WINDOWS\temp\IswTmp\Logs\ISWUPD.swl moved successfully.
File\Folder C:\WINDOWS\temp\ZLT03978.TMP not found!

Registry entries deleted on Reboot...

[Caroprd111]

Jak se chová PC

[Antusek]

Dobrý večer,
po naběhnutí PC tam prý žádná tabulka již nebyla a PC pracoval normálně. I Zone Alarm zůstal zapnutý.
Díky za rady a pomoc. Jen je zarážející, že Avast 5 nic neoznámil při napadení, i když tam mám aktivované zvukové i obrazové varování. Leda, že by to nerozpoznal. Mám ho pravidelně aktualizovaný.
Hezký večer
Ivo Antušek

[Caroprd111]

Ještě dočistíme.

Odinstalujte ComboFix přes:
Start >> Spustit, zkopírujte do okénka:

ComboFix /Uninstall

stiskněte Enter



Stáhněte T-Cleaner http://sweb.cz/Marinus/T-Cleaner.exe

• Spusťte, pro potvrzení volby mačkejte klávesu A, Enter
• Po použití program vymažte. Pozor, antiviry ho mohou falešně označit za vir.

Stáhněte TFC http://oldtimer.geekstogo.com/TFC.exe

• Spusťte.
• Klikněte na "Start". Potvrďte hlášku kliknutím na "Ok" (Bude následovat restart)

Stáhněte OTC http://oldtimer.geekstogo.com/OTC.exe

• Spusťte.
• Klikněte na "CleanUp!". Potvrďte hlášky kliknutím na "Yes" (Bude následovat restart)

Stáhněte Ccleaner http://viry.cz/forum/viewtopic.php?t=7478

• Nainstalujte a v průběhu instalace odškrtněte, že chcete instalovat yahoo toolbar.
  
  Záložka Čistič
• Dejte analyzovat, po dokončení dejte Spustit Ccleaner.
  
  Záložka Registry
• Klikněte na Hledej problémy, po dokončení klikněte na Opravit problémy, zálohu dělat nemusíte, potom dejte Opravit všechny problémy.
  OK Zavřít

Dejte log z RSIT.

[Antusek]

Děkuji za další postup. Až to udělám vložím log z Rsit. CC Cleaner používám často.
Zatím hezký večer