VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

vir

https://forum.viry.cz:443/viewtopic.php?t=106604

Stránka 2 z 3

Re: vir

Napsal: 17 lis 2010 23:32
od Jan Vasak
Tak jsem udělal, co jste mi řekl. Co dál?
Na disku C je 22,9 volného místa.

Re: vir

Napsal: 17 lis 2010 23:40
od Jan Vasak
Tady posílám print screen z Tempu..smazal jsem ho před hodinou.

Re: vir

Napsal: 18 lis 2010 19:28
od Rudy
Dejte log po mazání.

Re: vir

Napsal: 18 lis 2010 22:46
od Jan Vasak
Dobrý večer,
z čeho měl být ten log z rsit?
jak sám vidíte místa na C disku je polovina co byla. Novinkou je to že mě windows nenechá smazat Temp normálně a ani v CCleaneru.
Dnes jsem zkusil ještě nod a ten našel trojana win32agent a ten byl ve složce C/User/JENIK/AppData/Local/Timerlocksetup.exe-po skenu byl v karanténě a poté byl smazán. Operační pamět jede bez netu na 2,33GB.
Honza

Logfile of random's system information tool 1.08 (written by random/random)
Run by Jeník at 2009-11-18 22:36:04
Microsoft® Windows Vista™ Ultimate
System drive C: has 11 GB (23%) free of 50 GB
Total RAM: 4094 MB (44% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:27:02, on 15.11.2009
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16386)
Boot mode: Normal

Running processes:
E:\instalacky\Rainlendar2\Rainlendar2.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\RocketDock\RocketDock.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe
C:\Program Files (x86)\Adobe\Adobe Illustrator CS5\Support Files\Contents\Windows\Illustrator.exe
C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE
C:\Program Files\trend micro\Jeník.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://search.qip.ru/search?query=%s&from=IE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8080
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GRA8E1~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Rainlendar2] E:\instalacky\Rainlendar2\Rainlendar2.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Startup: Skype.lnk = ?
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: RocketDock.lnk = C:\Program Files (x86)\RocketDock\RocketDock.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GR99D3~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\guard32.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: COMODO livePCsupport Service (CLPSLS) - COMODO - C:\Program Files (x86)\COMODO\COMODO livePCsupport\CLPSLS.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - E:\instalacky\comodo\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files (x86)\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9086 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
C:\Windows\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16
wininit.exe
C:\Windows\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\COMODO\COMODO livePCsupport\CLPSLS.exe"
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
"E:\instalacky\comodo\COMODO\COMODO Internet Security\cmdagent.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
taskeng.exe {44E9C0C7-F917-47CE-BAE6-D772B4BFE937}
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
taskeng.exe {F22236FC-63D6-4D8D-89D9-20ECB20282A9}
C:\Windows\Explorer.EXE
"C:\Program Files\Windows Defender\MSASCui.exe" -hide
"C:\Windows\RAVCpl64.exe"
"E:\instalacky\comodo\COMODO\COMODO Internet Security\cfp.exe" -h
"C:\Windows\WindowsMobile\wmdSync.exe"
"E:\instalacky\Rainlendar2\Rainlendar2.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\RocketDock\RocketDock.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE" /tsr
C:\Windows\system32\svchost.exe -k WindowsMobile
C:\Windows\system32\conime.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=5092.c6fa160.517862114 "C:\Windows\system32\Macromed\Flash\NPSWF32.dll" 5092 plugin \\.\pipe\gecko-crash-server-pipe.5092
taskeng.exe {BB1144D4-4B17-4A85-910E-F07095EECD25}
"C:\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\User_Feed_Synchronization-{4FCBA629-8E8E-4492-8C0A-0DA699842C8F}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~2\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2009-05-21 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2009-05-21 41368]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2006-11-02 1579624]
"RtHDVCpl"=C:\Windows\RAVCpl64.exe [2007-10-01 5426688]
"Skytel"=C:\Windows\Skytel.exe [2007-08-03 1826816]
"COMODO Internet Security"=E:\instalacky\comodo\COMODO\COMODO Internet Security\cfp.exe [2010-03-03 7795984]
"Windows Mobile-based device management"=C:\Windows\WindowsMobile\wmdSync.exe [2006-11-02 225792]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-07-27 500208]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeBridge"= []
"Rainlendar2"=E:\instalacky\Rainlendar2\Rainlendar2.exe [2009-08-22 5148672]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2010-05-13 26192168]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
RocketDock.lnk - C:\Program Files (x86)\RocketDock\RocketDock.exe

C:\Users\Jeník\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
setup_9.0.0.722_16.11.2010_00-16.lnk - C:\Users\Jeník\Desktop\Desktop\Virus Removal Tool\setup_9.0.0.722_16.11.2010_00-16\startup.exe
Skype.lnk - C:\Windows\Installer\{D103C4BA-F905-437A-8049-DB24763BBE36}\SkypeIcon.exe
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" C:\Windows\system32\guard64.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CLPSLS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveTypeAutoRun"=95

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - open - "C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS4\Dreamweaver.exe","%1"

======List of files/folders created in the last 1 months======

2010-09-21 18:37:35 ----D---- C:\Users\Jeník\AppData\Roaming\Processing
2010-09-06 11:03:42 ----RD---- C:\Program Files (x86)\Skype
2010-07-27 21:52:18 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2010-05-04 17:53:52 ----D---- C:\Users\Jeník\AppData\Roaming\Diercke Globus Online
2010-05-04 17:53:41 ----D---- C:\Program Files (x86)\ImagonShared
2010-05-04 15:11:38 ----D---- C:\Users\Jeník\AppData\Roaming\Thunderbird
2010-05-04 15:11:28 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2010-04-19 15:51:40 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2010-04-19 15:51:40 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2010-04-19 15:51:40 ----A---- C:\Windows\system32\XAudio2_6.dll
2010-04-19 15:51:40 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2010-04-19 15:51:39 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2010-04-19 15:51:39 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2010-04-19 15:51:39 ----A---- C:\Windows\system32\xactengine3_6.dll
2010-04-19 15:51:39 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2010-04-19 15:50:13 ----D---- C:\Windows\SYSWOW64\directx
2010-04-18 14:50:59 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2010-04-18 14:50:09 ----D---- C:\Program Files\NVIDIA Corporation
2010-04-18 14:48:15 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2010-04-18 14:48:15 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2010-04-18 14:48:15 ----A---- C:\Windows\system32\OpenCL.dll
2010-04-18 14:48:15 ----A---- C:\Windows\system32\nvwgf2umx.dll
2010-04-18 14:48:15 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2010-04-18 14:48:12 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2010-04-18 14:48:12 ----A---- C:\Windows\system32\nvoglv64.dll
2010-04-18 14:48:08 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2010-04-18 14:48:08 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2010-04-18 14:48:08 ----A---- C:\Windows\system32\nvcuvid.dll
2010-04-18 14:48:07 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2010-04-18 14:48:07 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2010-04-18 14:48:07 ----A---- C:\Windows\system32\nvcuvenc.dll
2010-04-18 14:48:07 ----A---- C:\Windows\system32\nvcuda.dll
2010-04-18 14:48:06 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2010-04-18 14:48:04 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2010-04-18 14:48:04 ----A---- C:\Windows\system32\nvcompiler.dll
2010-04-18 14:48:04 ----A---- C:\Windows\system32\nvcod1914.dll
2010-04-18 14:48:04 ----A---- C:\Windows\system32\nvcod.dll
2010-04-18 14:48:00 ----D---- C:\NVIDIA
2010-04-03 17:42:00 ----A---- C:\Windows\system32\nvvsvc.exe
2010-04-03 17:42:00 ----A---- C:\Windows\system32\nvsvc64.dll
2010-04-03 17:42:00 ----A---- C:\Windows\system32\nvshext.dll
2010-04-03 17:42:00 ----A---- C:\Windows\system32\nvmctray.dll
2010-04-03 17:42:00 ----A---- C:\Windows\system32\nvcpl.dll
2010-03-22 18:34:06 ----A---- C:\Windows\wnaspi32.dll
2010-03-14 21:12:27 ----HD---- C:\Sandbox
2010-03-14 21:11:49 ----D---- C:\ProgramData\COMODO
2010-03-14 21:04:24 ----D---- C:\Program Files (x86)\COMODO
2010-03-14 21:01:25 ----D---- C:\ProgramData\Comodo Downloader
2010-03-14 20:35:41 ----D---- C:\ProgramData\Alwil Software
2010-03-03 19:54:42 ----A---- C:\Windows\SYSWOW64\guard32.dll
2010-03-03 19:54:42 ----A---- C:\Windows\system32\guard64.dll
2010-03-03 19:54:02 ----A---- C:\Windows\system32\drivers\inspect.sys
2010-03-03 19:54:00 ----A---- C:\Windows\system32\drivers\cmdhlp.sys
2010-03-03 19:54:00 ----A---- C:\Windows\system32\drivers\cmdGuard.sys
2010-03-03 19:53:58 ----A---- C:\Windows\system32\drivers\cmderd.sys
2010-02-12 12:01:24 ----A---- C:\Windows\system32\dns-sd.exe
2010-01-27 18:11:42 ----D---- C:\Users\Jeník\AppData\Roaming\Skype
2010-01-24 23:32:01 ----D---- C:\Users\Jeník\AppData\Roaming\Mozilla
2010-01-10 18:41:30 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2010-01-10 18:41:30 ----A---- C:\Windows\system32\XAudio2_5.dll
2010-01-10 18:41:29 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2010-01-10 18:41:29 ----A---- C:\Windows\system32\xactengine3_5.dll
2010-01-10 18:41:28 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2010-01-10 18:41:28 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2010-01-10 18:41:22 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2010-01-10 18:41:22 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2010-01-10 18:41:22 ----A---- C:\Windows\system32\d3dx11_42.dll
2010-01-10 18:41:22 ----A---- C:\Windows\system32\d3dcsx_42.dll
2010-01-10 18:41:20 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2010-01-10 18:41:20 ----A---- C:\Windows\system32\d3dx10_42.dll
2010-01-10 18:41:17 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2010-01-10 18:41:17 ----A---- C:\Windows\system32\D3DX9_42.dll
2010-01-10 18:41:15 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2010-01-10 18:41:15 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2010-01-10 18:41:15 ----A---- C:\Windows\system32\d3dx10_41.dll
2010-01-10 18:41:15 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2010-01-10 18:41:12 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2010-01-10 18:41:12 ----A---- C:\Windows\system32\D3DX9_41.dll
2010-01-10 18:41:11 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2010-01-10 18:41:11 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2010-01-10 18:41:11 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2010-01-10 18:41:11 ----A---- C:\Windows\system32\XAudio2_4.dll
2010-01-10 18:41:11 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2010-01-10 18:41:11 ----A---- C:\Windows\system32\xactengine3_4.dll
2010-01-10 18:41:10 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2010-01-10 18:41:10 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2010-01-10 18:41:07 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2010-01-10 18:41:07 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2010-01-10 18:41:07 ----A---- C:\Windows\system32\d3dx10_40.dll
2010-01-10 18:41:07 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2010-01-10 18:41:02 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2010-01-10 18:41:02 ----A---- C:\Windows\system32\D3DX9_40.dll
2010-01-10 18:41:01 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2010-01-10 18:41:01 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2010-01-10 18:41:01 ----A---- C:\Windows\system32\XAudio2_3.dll
2010-01-10 18:41:01 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2010-01-10 18:41:00 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2010-01-10 18:41:00 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2010-01-10 18:41:00 ----A---- C:\Windows\system32\xactengine3_3.dll
2010-01-10 18:41:00 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2010-01-10 18:40:59 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2010-01-10 18:40:59 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2010-01-10 18:40:59 ----A---- C:\Windows\system32\XAudio2_2.dll
2010-01-10 18:40:59 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2010-01-10 18:40:58 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2010-01-10 18:40:58 ----A---- C:\Windows\system32\xactengine3_2.dll
2010-01-10 18:40:56 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2010-01-10 18:40:56 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2010-01-10 18:40:56 ----A---- C:\Windows\system32\d3dx10_39.dll
2010-01-10 18:40:56 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2010-01-10 18:40:52 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2010-01-10 18:40:52 ----A---- C:\Windows\system32\D3DX9_39.dll
2010-01-10 18:40:51 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2010-01-10 18:40:51 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2010-01-10 18:40:51 ----A---- C:\Windows\system32\XAudio2_1.dll
2010-01-10 18:40:51 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2010-01-10 18:40:50 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2010-01-10 18:40:50 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2010-01-10 18:40:50 ----A---- C:\Windows\system32\xactengine3_1.dll
2010-01-10 18:40:50 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2010-01-10 18:40:47 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2010-01-10 18:40:47 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2010-01-10 18:40:47 ----A---- C:\Windows\system32\d3dx10_38.dll
2010-01-10 18:40:47 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2010-01-10 18:40:43 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2010-01-10 18:40:43 ----A---- C:\Windows\system32\D3DX9_38.dll
2010-01-10 18:40:42 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2010-01-10 18:40:42 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2010-01-10 18:40:42 ----A---- C:\Windows\system32\XAudio2_0.dll
2010-01-10 18:40:42 ----A---- C:\Windows\system32\xactengine3_0.dll
2010-01-10 18:40:41 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2010-01-10 18:40:41 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2010-01-10 18:40:38 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2010-01-10 18:40:38 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2010-01-10 18:40:38 ----A---- C:\Windows\system32\d3dx10_37.dll
2010-01-10 18:40:38 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2010-01-10 18:40:34 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2010-01-10 18:40:34 ----A---- C:\Windows\system32\D3DX9_37.dll
2010-01-10 18:40:33 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2010-01-10 18:40:33 ----A---- C:\Windows\system32\xactengine2_10.dll
2010-01-10 18:40:30 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2010-01-10 18:40:30 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2010-01-10 18:40:30 ----A---- C:\Windows\system32\d3dx10_36.dll
2010-01-10 18:40:30 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2010-01-10 18:40:26 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2010-01-10 18:40:26 ----A---- C:\Windows\system32\d3dx9_36.dll
2010-01-10 18:40:25 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2010-01-10 18:40:25 ----A---- C:\Windows\system32\xactengine2_9.dll
2010-01-10 18:40:22 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2010-01-10 18:40:22 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2010-01-10 18:40:22 ----A---- C:\Windows\system32\d3dx10_35.dll
2010-01-10 18:40:22 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2010-01-10 18:40:17 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2010-01-10 18:40:17 ----A---- C:\Windows\system32\d3dx9_35.dll
2010-01-10 18:40:16 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2010-01-10 18:40:16 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2010-01-10 18:40:16 ----A---- C:\Windows\system32\xactengine2_8.dll
2010-01-10 18:40:16 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2010-01-10 18:40:13 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2010-01-10 18:40:13 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2010-01-10 18:40:13 ----A---- C:\Windows\system32\d3dx10_34.dll
2010-01-10 18:40:13 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2010-01-10 18:40:09 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2010-01-10 18:40:09 ----A---- C:\Windows\system32\d3dx9_34.dll
2010-01-10 18:40:08 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2010-01-10 18:40:08 ----A---- C:\Windows\system32\xinput1_3.dll
2010-01-10 18:40:07 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2010-01-10 18:40:07 ----A---- C:\Windows\system32\xactengine2_7.dll
2010-01-10 18:40:04 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2010-01-10 18:40:04 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2010-01-10 18:40:04 ----A---- C:\Windows\system32\d3dx10_33.dll
2010-01-10 18:40:04 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2010-01-10 18:39:59 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2010-01-10 18:39:59 ----A---- C:\Windows\system32\d3dx9_33.dll
2010-01-10 18:39:58 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2010-01-10 18:39:58 ----A---- C:\Windows\system32\xactengine2_6.dll
2010-01-10 18:39:57 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2010-01-10 18:39:57 ----A---- C:\Windows\system32\xactengine2_5.dll
2010-01-10 18:39:55 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2010-01-10 18:39:55 ----A---- C:\Windows\system32\d3dx10.dll
2010-01-10 18:39:53 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2010-01-10 18:39:53 ----A---- C:\Windows\system32\d3dx9_32.dll
2010-01-10 18:39:52 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2010-01-10 18:39:52 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2010-01-10 18:39:52 ----A---- C:\Windows\system32\xactengine2_4.dll
2010-01-10 18:39:52 ----A---- C:\Windows\system32\x3daudio1_1.dll
2010-01-10 18:39:49 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2010-01-10 18:39:49 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2010-01-10 18:39:49 ----A---- C:\Windows\system32\xactengine2_3.dll
2010-01-10 18:39:49 ----A---- C:\Windows\system32\d3dx9_31.dll
2010-01-10 18:39:48 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2010-01-10 18:39:48 ----A---- C:\Windows\system32\xinput1_2.dll
2010-01-10 18:39:47 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2010-01-10 18:39:47 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2010-01-10 18:39:47 ----A---- C:\Windows\system32\xinput1_1.dll
2010-01-10 18:39:47 ----A---- C:\Windows\system32\xactengine2_2.dll
2010-01-10 18:39:46 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2010-01-10 18:39:46 ----A---- C:\Windows\system32\xactengine2_1.dll
2010-01-10 18:39:35 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2010-01-10 18:39:35 ----A---- C:\Windows\system32\d3dx9_30.dll
2010-01-10 18:39:34 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2010-01-10 18:39:34 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2010-01-10 18:39:34 ----A---- C:\Windows\system32\xactengine2_0.dll
2010-01-10 18:39:34 ----A---- C:\Windows\system32\x3daudio1_0.dll
2010-01-10 18:39:32 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2010-01-10 18:39:32 ----A---- C:\Windows\system32\d3dx9_29.dll
2010-01-10 18:39:30 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2010-01-10 18:39:30 ----A---- C:\Windows\system32\d3dx9_28.dll
2010-01-10 18:39:28 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2010-01-10 18:39:28 ----A---- C:\Windows\system32\d3dx9_27.dll
2010-01-10 18:39:25 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2010-01-10 18:39:25 ----A---- C:\Windows\system32\d3dx9_26.dll
2010-01-10 18:39:23 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2010-01-10 18:39:23 ----A---- C:\Windows\system32\d3dx9_25.dll
2010-01-10 18:39:20 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2010-01-10 18:39:20 ----A---- C:\Windows\system32\d3dx9_24.dll
2009-11-18 22:31:06 ----A---- C:\RSITx64.exe
2009-11-18 22:22:57 ----D---- C:\rsit
2009-11-18 20:56:54 ----D---- C:\Program Files (x86)\OpenXML-ODF Translator
2009-11-18 18:03:35 ----D---- C:\Program Files (x86)\ESET
2009-11-15 23:51:18 ----D---- C:\ProgramData\Kaspersky Lab
2009-11-15 23:48:17 ----A---- C:\Windows\system32\drivers\58613302.sys
2009-11-15 23:48:17 ----A---- C:\Windows\system32\drivers\58613301.sys
2009-11-15 23:48:17 ----A---- C:\Windows\system32\drivers\5861330.sys
2009-11-15 21:15:12 ----D---- C:\Program Files\trend micro
2009-11-04 11:32:12 ----D---- C:\Program Files (x86)\QIP Infium
2009-11-03 18:48:22 ----D---- C:\Program Files\Common Files\Macrovision Shared
2009-11-03 17:42:51 ----D---- C:\Users\Jeník\AppData\Roaming\ZipGenius
2009-11-03 00:06:20 ----N---- C:\Windows\SYSWOW64\TXTUSER.EXE
2009-11-03 00:06:20 ----N---- C:\Windows\SYSWOW64\patchmod.dll
2009-11-03 00:06:20 ----N---- C:\Windows\SYSWOW64\lookmod.dll
2009-11-03 00:06:20 ----N---- C:\Windows\SYSWOW64\hookmod.dll
2009-11-03 00:06:15 ----D---- C:\pc-bib
2009-10-25 14:01:11 ----D---- C:\ProgramData\Google

======List of files/folders modified in the last 1 months======

2010-09-06 11:03:41 ----D---- C:\ProgramData\Skype
2010-07-19 12:28:53 ----D---- C:\ProgramData\FLEXnet
2010-07-01 15:02:38 ----D---- C:\Windows\system32\drivers\UMDF
2010-07-01 15:01:59 ----D---- C:\Windows\WindowsMobile
2010-05-04 23:58:12 ----D---- C:\Users\Jeník\AppData\Roaming\VMware
2010-04-26 10:29:56 ----SD---- C:\Users\Jeník\AppData\Roaming\Microsoft
2010-04-19 19:34:01 ----RSD---- C:\Windows\assembly
2010-04-18 16:08:41 ----A---- C:\Windows\Ascd_log.ini
2010-04-18 16:07:25 ----A---- C:\Windows\Ascd_tmp.ini
2010-04-03 23:55:31 ----A---- C:\Windows\system32\nvudisp.exe
2010-04-03 23:55:31 ----A---- C:\Windows\system32\nvd3dumx.dll
2010-04-03 23:55:31 ----A---- C:\Windows\system32\nvapi64.dll
2010-04-02 15:54:44 ----A---- C:\Windows\system32\NVUNINST.EXE
2010-03-23 00:04:11 ----D---- C:\Users\Jeník\AppData\Roaming\Apple Computer
2010-03-14 20:35:41 ----D---- C:\Program Files\Alwil Software
2010-03-14 14:20:12 ----D---- C:\Windows\SYSWOW64\Dexter Screen Saver dir
2010-03-14 14:17:02 ----D---- C:\Users\Jeník\AppData\Roaming\STGU
2010-03-11 10:07:19 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy
2010-03-05 09:13:40 ----A---- C:\Windows\SYSWOW64\msjava.dll
2010-02-03 10:13:46 ----D---- C:\Program Files (x86)\WinRAR
2010-01-05 19:58:10 ----D---- C:\Windows\Minidump
2009-11-18 22:36:02 ----D---- C:\Windows\Temp
2009-11-18 21:39:11 ----D---- C:\Windows\Microsoft.NET
2009-11-18 18:03:58 ----D---- C:\Windows\Prefetch
2009-11-18 18:03:35 ----RD---- C:\Program Files (x86)
2009-11-18 17:51:56 ----D---- C:\ProgramData\Spybot - Search & Destroy
2009-11-18 16:18:19 ----D---- C:\Windows
2009-11-18 16:02:04 ----D---- C:\Users\Jeník\AppData\Roaming\skypePM
2009-11-18 13:16:14 ----SHD---- C:\System Volume Information
2009-11-17 23:59:19 ----D---- C:\Windows\inf
2009-11-17 23:59:19 ----AD---- C:\Windows\System32
2009-11-17 23:59:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-11-17 23:29:37 ----D---- C:\ProgramData\NVIDIA
2009-11-15 23:51:18 ----HD---- C:\ProgramData
2009-11-15 23:49:13 ----D---- C:\Windows\system32\drivers
2009-11-15 22:30:24 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2009-11-15 22:28:19 ----D---- C:\Windows\SYSWOW64\drivers
2009-11-15 21:15:12 ----RD---- C:\Program Files
2009-11-14 20:25:39 ----D---- C:\Users\Jeník\AppData\Roaming\vlc
2009-11-12 18:20:32 ----RD---- C:\Users
2009-11-12 17:21:05 ----SHD---- C:\Windows\Installer
2009-11-12 17:20:59 ----D---- C:\Program Files (x86)\Opera
2009-11-11 11:28:27 ----D---- C:\Windows\system32\WDI
2009-11-10 23:38:21 ----D---- C:\Windows\system32\catroot2
2009-11-10 22:57:33 ----SD---- C:\Windows\Downloaded Program Files
2009-11-04 11:35:23 ----D---- C:\Program Files (x86)\Internet Explorer
2009-11-04 00:06:34 ----D---- C:\Program Files (x86)\Google
2009-11-03 23:55:32 ----D---- C:\Program Files (x86)\Common Files
2009-11-03 23:55:31 ----AD---- C:\ProgramData\TEMP
2009-11-03 23:50:05 ----D---- C:\Program Files (x86)\DivX
2009-11-03 23:49:32 ----D---- C:\Windows\SysWOW64
2009-11-03 23:42:32 ----D---- C:\ProgramData\VMware
2009-11-03 23:41:51 ----D---- C:\Windows\system32\catroot
2009-11-03 23:36:30 ----D---- C:\Program Files (x86)\The KMPlayer
2009-11-03 23:36:15 ----D---- C:\Windows\system32\Tasks
2009-11-03 23:35:47 ----D---- C:\Windows\winsxs
2009-11-03 23:12:02 ----D---- C:\Users\Jeník\AppData\Roaming\Adobe
2009-11-03 23:09:35 ----D---- C:\Program Files (x86)\Adobe
2009-11-03 22:46:59 ----D---- C:\ProgramData\Adobe
2009-11-03 19:12:03 ----D---- C:\ProgramData\WinZip
2009-11-03 18:56:55 ----D---- C:\Program Files\Common Files\Adobe
2009-11-03 18:52:21 ----RSD---- C:\Windows\Fonts
2009-11-03 18:48:22 ----D---- C:\Program Files\Common Files
2009-11-03 00:06:14 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2009-10-28 18:24:00 ----D---- C:\Users\Jeník\AppData\Roaming\dvdcss

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 58613302;58613302 Boot Guard Driver; C:\Windows\system32\DRIVERS\58613302.sys [2009-10-22 40464]
R0 fvevol;BitLocker Drive Encryption Filter Driver; C:\Windows\System32\DRIVERS\fvevol.sys [2006-11-02 138856]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2009-06-28 871408]
R1 58613301;58613301; C:\Windows\system32\DRIVERS\58613301.sys [2009-09-25 157712]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\Windows\System32\DRIVERS\cmderd.sys [2010-03-03 19760]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\System32\DRIVERS\cmdguard.sys [2010-03-03 216456]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2010-03-03 33128]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2010-03-03 84616]
R1 setup_9.0.0.722_16.11.2010_00-16drv;setup_9.0.0.722_16.11.2010_00-16drv; C:\Windows\system32\DRIVERS\5861330.sys [2009-10-09 352784]
R2 47504;47504; \??\C:\Windows\System32\47504.sys [2001-10-21 6136]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-06-27 88632]
R3 3xHybr64;3xHybrid service; C:\Windows\system32\DRIVERS\3xHybr64.sys [2007-04-20 873216]
R3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet Controller; C:\Windows\system32\DRIVERS\l160x64.sys [2007-12-17 56832]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 19304]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2007-10-02 1227160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2006-11-01 15680]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2010-04-03 13807976]
S2 TBPanel;TBPanel; C:\Windows\system32\drivers\TBPanel.sys []
S3 atrbqaln;atrbqaln; C:\Windows\system32\drivers\atrbqaln.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2006-11-02 6144]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 273920]
S3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys []
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2006-11-02 11008]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2006-11-02 7040]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2006-11-02 6656]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2006-11-02 7936]
S3 radpms;Driver for RADPMS Device; C:\Windows\system32\DRIVERS\radpms.sys []
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2008-10-01 40448]
S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
S3 winusb;WinUSB Service; C:\Windows\system32\DRIVERS\winusb.sys [2006-11-02 36864]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2006-11-02 46080]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2006-11-02 108032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-10-01 116040]
R2 CLPSLS;COMODO livePCsupport Service; C:\Program Files (x86)\COMODO\COMODO livePCsupport\CLPSLS.exe [2010-02-12 148744]
R2 cmdAgent;COMODO Internet Security Helper Service; E:\instalacky\comodo\COMODO\COMODO Internet Security\cmdagent.exe [2010-03-03 1220688]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-04-03 159336]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2006-11-02 26624]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-04-03 240232]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2006-11-02 26624]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-05-04 136176]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2009-11-03 1038088]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-08-09 655624]
S3 iPod Service;iPod Service; C:\Program Files (x86)\iPod\bin\iPodService.exe [2008-10-01 536872]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

-----------------EOF-----------------

Re: vir

Napsal: 18 lis 2010 23:06
od Jan Vasak
Ještě mě napadlo že jsem 8.102010 spustil sken s Malware Bytes a zde je log-našel toho dost a tak jsem dal odstanit, tak jak mě vedl.

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Verze databáze: 4875

Windows 6.0.6000
Internet Explorer 7.0.6000.16386

8.10.2009 1:13:08
mbam-log-2009-10-08 (01-13-08).txt

Typ skenu: Rychlý sken
Skenované objekty: 154185
Uplynulý čas: 8 minuta(y), 28 sekunda(y)

Infikované procesy v paměti: 1
Infikované moduly v paměti: 0
Infikované klíče registru: 4
Infikované hodnoty registru: 2
Infikované datové položky registru: 1
Infikované složky: 0
Infikované soubory: 4

Infikované procesy v paměti:
C:\Users\Jeník\AppData\Local\Temp\Ezx.exe (Rootkit.TDSS) -> Unloaded process successfully.

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče registru:
HKEY_CURRENT_USER\SOFTWARE\KOO9RV9K4Z (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Handle (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\SMH2B46TDP (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Infikované hodnoty registru:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\koo9rv9k4z (Rootkit.TDSS) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\metropolis (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Infikované datové položky registru:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main\Window Title (Hijacked.WindowTitle) -> Bad: (Hacked by Godzilla) Good: (Internet Explorer) -> Quarantined and deleted successfully.

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
C:\Users\Jeník\AppData\Local\Temp\Ezx.exe (Rootkit.TDSS) -> Delete on reboot.
C:\Users\Jeník\AppData\Local\Temp\Ezw.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
C:\Users\Jeník\AppData\Local\Temp\sshnas21.dll_old (Rootkit.TDSS) -> Quarantined and deleted successfully.
C:\Windows\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job (Trojan.Downloader) -> Quarantined and deleted successfully.

Re: vir

Napsal: 18 lis 2010 23:15
od Rudy
No, chtěl jsem původně log po mazání OTL. Ale jak vidím, přišel na problém MBAM. Teď by to už mělo být v pořádku.

Re: vir

Napsal: 18 lis 2010 23:39
od Jan Vasak
ten log co jsem vložil byl starý byl z 8.10 a já jsem se ptal jestli ten problém nenohl být způsobený nedostatečným smazáním
Ted skenuji znova Jak Malware bytes, tak OTL pak vložím logy.
Problém s Pc přetrvává a místa stále ubývá...mimo to již jejde smazat Temp..ve kterém je 11Gb za jeden den..

Re: vir

Napsal: 18 lis 2010 23:44
od Jan Vasak
Zde log z OTL

OTL logfile created on: 18.11.2009 23:19:21 - Run 1
OTL by OldTimer - Version 3.2.17.3 Folder = C:\Users\Jeník\Desktop\Desktop
64bit-Windows Vista Ultimate Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16386)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 38,00% Memory free
8,00 Gb Paging File | 6,00 Gb Available in Paging File | 75,00% Paging File free
Paging file location(s): e:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 48,83 Gb Total Space | 10,29 Gb Free Space | 21,08% Space Free | Partition Type: NTFS
Drive D: | 232,88 Gb Total Space | 59,88 Gb Free Space | 25,72% Space Free | Partition Type: NTFS
Drive E: | 184,05 Gb Total Space | 83,57 Gb Free Space | 45,41% Space Free | Partition Type: NTFS

Computer Name: JENÍK-PC | User Name: Jeník | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2010.09.15 00:01:52 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2010.09.15 00:01:52 | 000,014,808 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
PRC - [2010.04.29 15:39:32 | 001,090,952 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
PRC - [2010.04.03 15:59:00 | 000,240,232 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2010.02.12 19:23:32 | 000,148,744 | ---- | M] (COMODO) -- C:\Program Files (x86)\COMODO\COMODO livePCsupport\CLPSLS.exe
PRC - [2009.11.18 23:18:19 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Jeník\Desktop\Desktop\OTL.exe
PRC - [2009.08.22 11:31:06 | 005,148,672 | ---- | M] () -- E:\instalacky\Rainlendar2\Rainlendar2.exe
PRC - [2007.09.02 12:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files (x86)\RocketDock\RocketDock.exe
PRC - [2007.05.28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2006.11.02 10:44:59 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\conime.exe


========== Modules (SafeList) ==========

MOD - [2010.03.03 19:54:42 | 000,276,648 | ---- | M] (COMODO) -- C:\Windows\SysWOW64\guard32.dll
MOD - [2009.11.18 23:18:19 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Jeník\Desktop\Desktop\OTL.exe
MOD - [2006.11.02 10:38:57 | 001,648,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2009.11.03 18:48:22 | 001,038,088 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2006.11.02 16:03:52 | 000,196,096 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2006.11.02 16:00:00 | 000,368,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2010.04.03 15:59:00 | 000,240,232 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2010.03.03 19:54:44 | 001,220,688 | ---- | M] (COMODO) [Auto | Running] -- E:\instalacky\comodo\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV - [2010.02.12 19:23:32 | 000,148,744 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files (x86)\COMODO\COMODO livePCsupport\CLPSLS.exe -- (CLPSLS)
SRV - [2009.08.09 16:47:09 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2007.05.28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2006.11.02 12:19:10 | 000,428,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2006.11.02 12:19:08 | 000,211,456 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
SRV - [2006.11.02 07:34:11 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\vmnetadapter.sys -- (VMnetAdapter)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\radpms.sys -- (radpms)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\lmimirr.sys -- (lmimirr)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\ipinip.sys -- (IpInIp)
DRV:64bit: - [2010.03.03 19:53:58 | 000,019,760 | ---- | M] () [File_System | System | Running] -- C:\Windows\SysNative\DRIVERS\cmderd.sys -- (cmderd)
DRV:64bit: - [2009.10.22 12:54:24 | 000,040,464 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\DRIVERS\58613302.sys -- (58613302)
DRV:64bit: - [2009.10.09 22:30:56 | 000,352,784 | ---- | M] () [File_System | System | Running] -- C:\Windows\SysNative\DRIVERS\5861330.sys -- (setup_9.0.0.722_16.11.2010_00-16drv)
DRV:64bit: - [2009.09.25 16:59:46 | 000,157,712 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\58613301.sys -- (58613301)
DRV:64bit: - [2009.06.28 22:47:12 | 000,871,408 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\sptd.sys -- (sptd)
DRV:64bit: - [2008.10.01 12:01:28 | 000,040,448 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2008.04.17 12:12:54 | 000,019,304 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2007.12.17 12:32:00 | 000,056,832 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\l160x64.sys -- (AtcL001)
DRV:64bit: - [2007.04.20 06:40:10 | 000,873,216 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\3xHybr64.sys -- (3xHybr64)
DRV:64bit: - [2006.11.02 10:56:46 | 000,046,080 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\wpdusb.sys -- (WpdUsb)
DRV:64bit: - [2006.11.01 16:23:42 | 000,015,680 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\ASACPI.sys -- (MTsensor)
DRV:64bit: - [2006.09.18 22:36:24 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\Wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2001.10.21 12:22:36 | 000,006,136 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\47504.sys -- (47504)
DRV - [2008.08.14 07:57:42 | 000,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysWow64\drivers\adfs.sys -- (adfs)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.qip.ru
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 2
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = local
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 127.0.0.1:8080

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "www.seznam.cz"
FF - prefs.js..network.proxy.type: 2

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2009.11.04 00:01:46 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2009.11.04 00:01:46 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.0.4\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2010.05.04 15:11:32 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.0.4\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins [2009.11.03 23:50:05 | 000,000,000 | ---D | M]

[2010.05.04 15:11:41 | 000,000,000 | ---D | M] -- C:\Users\Jeník\AppData\Roaming\Mozilla\Extensions
[2010.05.04 15:11:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jeník\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2009.10.03 19:41:39 | 000,000,000 | ---D | M] -- C:\Users\Jeník\AppData\Roaming\Mozilla\Firefox\Profiles\ysvjt7un.default\extensions
[2009.10.03 19:35:31 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010.09.14 22:10:37 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.09.14 22:10:37 | 000,001,687 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.09.14 22:10:37 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.09.14 22:10:37 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.09.14 22:10:37 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2006.09.18 22:37:24 | 000,000,761 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [COMODO Internet Security] E:\instalacky\comodo\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Windows\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [Skytel] C:\Windows\SkyTel.exe (Realtek Semiconductor Corp.)
O4:64bit: - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [AdobeBridge] File not found
O4 - HKCU..\Run: [Rainlendar2] E:\instalacky\Rainlendar2\Rainlendar2.exe ()
O4 - Startup: C:\Users\Jeník\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\setup_9.0.0.722_16.11.2010_00-16.lnk = C:\Users\Jeník\Desktop\Desktop\Virus Removal Tool\setup_9.0.0.722_16.11.2010_00-16\startup.exe ()
O4 - Startup: C:\Users\Jeník\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Skype.lnk = C:\Windows\Installer\{D103C4BA-F905-437A-8049-DB24763BBE36}\SkypeIcon.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_14)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 192.168.1.254
O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - AppInit_DLLs: (C:\Windows\system32\guard64.dll) - C:\Windows\SysNative\guard64.dll ()
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\guard32.dll) - C:\Windows\SysWOW64\guard32.dll (COMODO)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Jeník\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta galerie Windows Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\Jeník\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta galerie Windows Fotogalerie.jpg
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKCU\...com [@ = comfile] -- Reg Error: Key error. File not found
O37 - HKCU\...exe [@ = exefile] -- Reg Error: Key error. File not found

========== Files/Folders - Created Within 30 Days ==========

[2010.09.21 18:37:35 | 000,000,000 | ---D | C] -- C:\Users\Jeník\AppData\Roaming\Processing
[2010.09.06 11:03:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2010.09.06 11:03:42 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2010.08.03 12:34:15 | 000,000,000 | ---D | C] -- C:\Users\Jeník\AppData\Local\COMODO
[2010.07.27 21:52:18 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe
[2010.07.27 21:31:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR
[2010.07.27 17:27:50 | 000,000,000 | ---D | C] -- C:\Users\Jeník\AppData\Local\LogMeIn
[2010.05.10 20:46:42 | 000,000,000 | ---D | C] -- C:\Users\Jeník\.rainlendar2
[2010.05.04 17:53:52 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Diercke Globus Online
[2010.05.04 17:53:52 | 000,000,000 | ---D | C] -- C:\Users\Jeník\AppData\Roaming\Diercke Globus Online
[2010.05.04 17:53:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ImagonShared
[2010.05.04 15:11:38 | 000,000,000 | ---D | C] -- C:\Users\Jeník\AppData\Roaming\Thunderbird
[2010.05.04 15:11:38 | 000,000,000 | ---D | C] -- C:\Users\Jeník\AppData\Local\Thunderbird
[2010.05.04 15:11:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Thunderbird
[2010.04.19 15:51:40 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2010.04.19 15:51:40 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2010.04.19 15:51:39 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2010.04.19 15:51:39 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2010.04.19 15:50:13 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2010.04.18 14:50:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2010.04.18 14:50:09 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2010.04.18 14:48:15 | 004,503,144 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2010.04.18 14:48:15 | 000,056,424 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2010.04.18 14:48:12 | 015,227,496 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2010.04.18 14:48:08 | 009,386,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2010.04.18 14:48:08 | 002,009,704 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2010.04.18 14:48:07 | 004,029,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2010.04.18 14:48:07 | 002,646,632 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2010.04.18 14:48:06 | 011,647,592 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2010.04.18 14:48:04 | 001,296,488 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2010.04.18 14:48:00 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2010.03.22 18:34:06 | 000,160,016 | ---- | C] (Ahead Software AG
im Stoeckmaedle 18
76307 Karlsbad, Germany
Fax: ++49-7248-911-888
e-mail: info@nero.com) -- C:\Windows\wnaspi32.dll
[2010.03.14 21:12:27 | 000,000,000 | -H-D | C] -- C:\Sandbox
[2010.03.14 21:11:49 | 000,000,000 | ---D | C] -- C:\ProgramData\COMODO
[2010.03.14 21:04:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\COMODO
[2010.03.14 21:01:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo Downloader
[2010.03.14 20:35:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Alwil Software
[2010.03.03 19:54:42 | 000,276,648 | ---- | C] (COMODO) -- C:\Windows\SysWow64\guard32.dll
[2010.01.27 18:11:42 | 000,000,000 | ---D | C] -- C:\Users\Jeník\AppData\Roaming\Skype
[2010.01.24 23:32:01 | 000,000,000 | ---D | C] -- C:\Users\Jeník\AppData\Roaming\Mozilla
[2010.01.10 18:41:30 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2010.01.10 18:41:29 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2010.01.10 18:41:28 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2010.01.10 18:41:22 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2010.01.10 18:41:22 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2010.01.10 18:41:20 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll
[2010.01.10 18:41:17 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2010.01.10 18:41:15 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll
[2010.01.10 18:41:15 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll
[2010.01.10 18:41:12 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2010.01.10 18:41:11 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2010.01.10 18:41:11 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2010.01.10 18:41:11 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2010.01.10 18:41:10 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2010.01.10 18:41:07 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2010.01.10 18:41:07 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2010.01.10 18:41:02 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2010.01.10 18:41:01 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2010.01.10 18:41:01 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2010.01.10 18:41:00 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2010.01.10 18:41:00 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2010.01.10 18:40:59 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2010.01.10 18:40:59 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2010.01.10 18:40:58 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2010.01.10 18:40:56 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2010.01.10 18:40:56 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2010.01.10 18:40:52 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2010.01.10 18:40:51 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2010.01.10 18:40:51 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2010.01.10 18:40:50 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2010.01.10 18:40:50 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2010.01.10 18:40:47 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2010.01.10 18:40:47 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2010.01.10 18:40:43 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2010.01.10 18:40:42 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2010.01.10 18:40:42 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2010.01.10 18:40:41 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2010.01.10 18:40:38 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2010.01.10 18:40:38 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2010.01.10 18:40:34 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2010.01.10 18:40:33 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2010.01.10 18:40:30 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2010.01.10 18:40:30 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2010.01.10 18:40:26 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2010.01.10 18:40:25 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2010.01.10 18:40:22 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2010.01.10 18:40:22 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2010.01.10 18:40:17 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2010.01.10 18:40:16 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2010.01.10 18:40:16 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2010.01.10 18:40:13 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2010.01.10 18:40:13 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2010.01.10 18:40:09 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2010.01.10 18:40:08 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2010.01.10 18:40:07 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2010.01.10 18:40:04 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2010.01.10 18:40:04 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2010.01.10 18:39:59 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2010.01.10 18:39:58 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2010.01.10 18:39:57 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2010.01.10 18:39:55 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2010.01.10 18:39:53 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll
[2010.01.10 18:39:52 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2010.01.10 18:39:52 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2010.01.10 18:39:49 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2010.01.10 18:39:49 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2010.01.10 18:39:48 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2010.01.10 18:39:47 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2010.01.10 18:39:47 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2010.01.10 18:39:46 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2010.01.10 18:39:35 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2010.01.10 18:39:34 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2010.01.10 18:39:34 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2010.01.10 18:39:32 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2010.01.10 18:39:30 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2010.01.10 18:39:28 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2010.01.10 18:39:25 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2010.01.10 18:39:23 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2010.01.10 18:39:20 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2009.11.18 23:18:17 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\Jeník\Desktop\Desktop\OTL.exe
[2009.11.18 22:22:57 | 000,000,000 | ---D | C] -- C:\rsit
[2009.11.18 20:56:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenXML-ODF Translator
[2009.11.18 18:03:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2009.11.15 23:51:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2009.11.15 23:48:01 | 000,000,000 | ---D | C] -- C:\Users\Jeník\Desktop\Desktop\Virus Removal Tool
[2009.11.15 23:37:09 | 083,352,848 | ---- | C] ( ) -- C:\Users\Jeník\Desktop\Desktop\setup_9.0.0.722_16.11.2010_00-16.exe
[2009.11.15 22:26:31 | 006,153,352 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Jeník\Desktop\Desktop\mbam-setup.exe
[2009.11.15 21:15:12 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2009.11.14 22:00:39 | 000,000,000 | ---D | C] -- C:\Users\Jeník\Desktop\Desktop\deep
[2009.11.13 16:58:57 | 000,000,000 | ---D | C] -- C:\Users\Jeník\Desktop\Desktop\LOGIC_AI
[2009.11.11 00:36:37 | 006,153,352 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Jeník\Desktop\Desktop\mbam-setup-1.46.exe
[2009.11.04 11:32:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QIP Infium
[2009.11.03 19:30:19 | 000,000,000 | R--D | C] -- C:\Users\Jeník\Dokumenty
[2009.11.03 18:48:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared
[2009.11.03 17:42:51 | 000,000,000 | ---D | C] -- C:\Users\Jeník\AppData\Roaming\ZipGenius
[2009.11.03 00:06:20 | 000,061,440 | ---- | C] (Expert System) -- C:\Windows\SysWow64\lookmod.dll
[2009.11.03 00:06:20 | 000,045,056 | ---- | C] (Expert System) -- C:\Windows\SysWow64\patchmod.dll
[2009.11.03 00:06:20 | 000,045,056 | ---- | C] (Expert System) -- C:\Windows\SysWow64\hookmod.dll
[2009.11.03 00:06:15 | 000,000,000 | ---D | C] -- C:\pc-bib
[2009.10.25 14:01:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Google

========== Files - Modified Within 30 Days ==========

[2032.10.21 12:25:26 | 000,006,136 | ---- | M] () -- C:\Users\Jeník\AppData\Local\TimerStop64.sys
[2032.10.21 12:25:26 | 000,004,096 | ---- | M] () -- C:\Users\Jeník\AppData\Local\TimerStop.sys
[2010.10.12 07:55:45 | 000,000,418 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{4FCBA629-8E8E-4492-8C0A-0DA699842C8F}.job
[2010.10.12 07:55:00 | 000,000,950 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010.09.06 11:03:43 | 000,001,908 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2010.07.01 15:02:38 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\UMDF\Msft_User_WpdRapi_01_00_00.Wdf
[2010.04.29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010.04.29 15:39:28 | 000,024,664 | ---- | M] () -- C:\Windows\SysNative\drivers\mbam.sys
[2010.04.26 10:29:53 | 000,001,149 | ---- | M] () -- C:\Users\Jeník\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
[2010.04.18 16:08:41 | 000,013,406 | ---- | M] () -- C:\Windows\Ascd_log.ini
[2010.04.18 16:07:25 | 000,013,235 | ---- | M] () -- C:\Windows\Ascd_tmp.ini
[2010.04.18 12:35:29 | 000,843,728 | ---- | M] () -- C:\Windows\SysNative\drivers\sfi.dat
[2010.04.03 23:55:31 | 021,005,928 | ---- | M] () -- C:\Windows\SysNative\nvoglv64.dll
[2010.04.03 23:55:31 | 016,061,032 | ---- | M] () -- C:\Windows\SysNative\nvcompiler.dll
[2010.04.03 23:55:31 | 015,227,496 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2010.04.03 23:55:31 | 011,906,664 | ---- | M] () -- C:\Windows\SysNative\nvd3dumx.dll
[2010.04.03 23:55:31 | 011,647,592 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2010.04.03 23:55:31 | 009,386,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2010.04.03 23:55:31 | 006,279,784 | ---- | M] () -- C:\Windows\SysNative\nvwgf2umx.dll
[2010.04.03 23:55:31 | 005,444,200 | ---- | M] () -- C:\Windows\SysNative\nvcuda.dll
[2010.04.03 23:55:31 | 004,503,144 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2010.04.03 23:55:31 | 004,029,544 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2010.04.03 23:55:31 | 002,893,416 | ---- | M] () -- C:\Windows\SysNative\nvcuvenc.dll
[2010.04.03 23:55:31 | 002,646,632 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2010.04.03 23:55:31 | 002,106,472 | ---- | M] () -- C:\Windows\SysNative\nvcuvid.dll
[2010.04.03 23:55:31 | 002,009,704 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2010.04.03 23:55:31 | 001,592,936 | ---- | M] () -- C:\Windows\SysNative\nvapi64.dll
[2010.04.03 23:55:31 | 001,296,488 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2010.04.03 23:55:31 | 000,658,536 | ---- | M] () -- C:\Windows\SysNative\nvudisp.exe
[2010.04.03 23:55:31 | 000,254,056 | ---- | M] () -- C:\Windows\SysNative\nvcod1914.dll
[2010.04.03 23:55:31 | 000,254,056 | ---- | M] () -- C:\Windows\SysNative\nvcod.dll
[2010.04.03 23:55:31 | 000,064,616 | ---- | M] () -- C:\Windows\SysNative\OpenCL.dll
[2010.04.03 23:55:31 | 000,056,424 | ---- | M] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2010.04.03 23:55:31 | 000,011,240 | ---- | M] () -- C:\Windows\SysNative\drivers\nvBridge.kmd
[2010.04.03 23:55:31 | 000,009,832 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
[2010.04.03 17:42:00 | 014,828,648 | ---- | M] () -- C:\Windows\SysNative\nvcpl.dll
[2010.04.03 17:42:00 | 001,067,624 | ---- | M] () -- C:\Windows\SysNative\nvsvc64.dll
[2010.04.03 17:42:00 | 000,116,328 | ---- | M] () -- C:\Windows\SysNative\nvmctray.dll
[2010.04.03 17:42:00 | 000,061,032 | ---- | M] () -- C:\Windows\SysNative\nvshext.dll
[2010.04.03 17:41:38 | 000,276,196 | ---- | M] () -- C:\Windows\SysNative\NvApps.xml
[2010.04.03 17:41:38 | 000,066,714 | ---- | M] () -- C:\Windows\SysNative\NvwsApps.xml
[2010.04.02 15:54:44 | 000,658,536 | ---- | M] () -- C:\Windows\SysNative\NVUNINST.EXE
[2010.03.14 20:36:34 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2010.03.05 09:13:40 | 000,947,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msjava.dll
[2010.03.03 19:54:42 | 000,352,904 | ---- | M] () -- C:\Windows\SysNative\guard64.dll
[2010.03.03 19:54:42 | 000,276,648 | ---- | M] (COMODO) -- C:\Windows\SysWow64\guard32.dll
[2010.03.03 19:53:58 | 000,019,760 | ---- | M] () -- C:\Windows\SysNative\drivers\cmderd.sys
[2010.02.12 12:01:24 | 000,119,584 | ---- | M] () -- C:\Windows\SysNative\dns-sd.exe
[2010.02.04 09:01:14 | 000,530,776 | ---- | M] () -- C:\Windows\SysNative\XAudio2_6.dll
[2010.02.04 09:01:14 | 000,528,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2010.02.04 09:01:14 | 000,238,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2010.02.04 09:01:14 | 000,176,984 | ---- | M] () -- C:\Windows\SysNative\xactengine3_6.dll
[2010.02.04 09:01:14 | 000,078,680 | ---- | M] () -- C:\Windows\SysNative\XAPOFX1_4.dll
[2010.02.04 09:01:14 | 000,074,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2010.02.04 09:01:14 | 000,024,920 | ---- | M] () -- C:\Windows\SysNative\X3DAudio1_7.dll
[2010.02.04 09:01:14 | 000,022,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2009.11.18 23:18:19 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Jeník\Desktop\Desktop\OTL.exe
[2009.11.18 22:31:06 | 000,832,273 | ---- | M] () -- C:\RSITx64.exe
[2009.11.18 18:03:06 | 002,676,504 | ---- | M] () -- C:\Users\Jeník\Desktop\Desktop\esetsmartinstaller_csy.exe
[2009.11.18 16:59:21 | 000,031,744 | ---- | M] () -- C:\Users\Jeník\Desktop\Desktop\Bára.doc
[2009.11.18 08:49:19 | 000,081,109 | ---- | M] () -- C:\ProgramData\nvModes.001
[2009.11.18 08:49:10 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009.11.17 23:59:19 | 001,171,612 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2009.11.17 23:59:19 | 000,574,648 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2009.11.17 23:59:19 | 000,438,942 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2009.11.17 23:59:19 | 000,095,946 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2009.11.17 23:59:19 | 000,073,418 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2009.11.17 23:38:26 | 000,484,133 | ---- | M] () -- C:\Users\Jeník\Desktop\Desktop\print screen.jpg
[2009.11.17 23:29:57 | 000,081,109 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2009.11.17 23:29:37 | 000,002,467 | ---- | M] () -- C:\Users\Jeník\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Skype.lnk
[2009.11.17 23:29:31 | 000,002,336 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009.11.17 23:29:31 | 000,002,336 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009.11.17 23:29:28 | 000,000,946 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2009.11.17 23:14:13 | 005,204,216 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2009.11.17 13:54:21 | 000,259,584 | ---- | M] () -- C:\Users\Jeník\Desktop\Desktop\Kaspersky removal.doc
[2009.11.16 16:10:08 | 000,031,744 | ---- | M] () -- C:\Users\Jeník\Desktop\Desktop\Srpek.doc
[2009.11.16 15:57:42 | 000,048,587 | ---- | M] () -- C:\Users\Jeník\Desktop\Desktop\Telefon Vašák .pdf
[2009.11.16 10:58:32 | 000,026,112 | ---- | M] () -- C:\Users\Jeník\Desktop\Desktop\Cesta k outlook datům.doc
[2009.11.15 23:51:18 | 000,002,209 | ---- | M] () -- C:\Users\Jeník\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\setup_9.0.0.722_16.11.2010_00-16.lnk
[2009.11.15 23:46:39 | 083,352,848 | ---- | M] ( ) -- C:\Users\Jeník\Desktop\Desktop\setup_9.0.0.722_16.11.2010_00-16.exe
[2009.11.15 22:28:53 | 000,000,848 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009.11.15 22:26:40 | 006,153,352 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Jeník\Desktop\Desktop\mbam-setup.exe
[2009.11.15 20:20:20 | 000,003,539 | ---- | M] () -- C:\Users\Jeník\Desktop\Desktop\chaos.rar
[2009.11.15 11:55:23 | 008,225,773 | ---- | M] () -- C:\Users\Jeník\Desktop\Desktop\LOGIC_AI.rar
[2009.11.14 20:14:25 | 000,116,224 | ---- | M] () -- C:\Users\Jeník\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.11.12 18:16:00 | 000,020,992 | ---- | M] () -- C:\Users\Jeník\Desktop\Desktop\Svědecká událost.doc
[2009.11.12 17:21:01 | 000,000,744 | ---- | M] () -- C:\Users\Public\Desktop\Opera.lnk
[2009.11.11 00:36:40 | 006,153,352 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Jeník\Desktop\Desktop\mbam-setup-1.46.exe
[2009.11.03 19:02:34 | 000,000,731 | ---- | M] () -- C:\Users\Jeník\Desktop\Desktop\Adobe Photoshop CS4 (64 Bit).lnk
[2009.11.03 17:48:19 | 000,000,057 | ---- | M] () -- C:\Users\Jeník\AppData\Roaming\mainhst.zgh
[2009.10.22 12:54:24 | 000,040,464 | ---- | M] () -- C:\Windows\SysNative\drivers\58613302.sys

========== Files Created - No Company Name ==========

[2032.10.21 12:25:26 | 000,006,136 | ---- | C] () -- C:\Users\Jeník\AppData\Local\TimerStop64.sys
[2032.10.21 12:25:26 | 000,004,096 | ---- | C] () -- C:\Users\Jeník\AppData\Local\TimerStop.sys
[2010.09.06 11:03:43 | 000,001,908 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2010.05.10 13:51:59 | 000,002,467 | ---- | C] () -- C:\Users\Jeník\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Skype.lnk
[2010.05.04 18:00:06 | 000,000,950 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010.05.04 18:00:05 | 000,000,946 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010.04.26 10:29:53 | 000,001,149 | ---- | C] () -- C:\Users\Jeník\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
[2010.04.19 15:51:40 | 000,530,776 | ---- | C] () -- C:\Windows\SysNative\XAudio2_6.dll
[2010.04.19 15:51:40 | 000,078,680 | ---- | C] () -- C:\Windows\SysNative\XAPOFX1_4.dll
[2010.04.19 15:51:39 | 000,176,984 | ---- | C] () -- C:\Windows\SysNative\xactengine3_6.dll
[2010.04.19 15:51:39 | 000,024,920 | ---- | C] () -- C:\Windows\SysNative\X3DAudio1_7.dll
[2010.04.18 14:54:49 | 000,081,109 | ---- | C] () -- C:\ProgramData\nvModes.001
[2010.04.18 14:54:46 | 000,081,109 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2010.04.18 14:48:15 | 013,807,976 | ---- | C] () -- C:\Windows\SysNative\drivers\nvlddmkm.sys
[2010.04.18 14:48:15 | 006,279,784 | ---- | C] () -- C:\Windows\SysNative\nvwgf2umx.dll
[2010.04.18 14:48:15 | 000,064,616 | ---- | C] () -- C:\Windows\SysNative\OpenCL.dll
[2010.04.18 14:48:15 | 000,011,240 | ---- | C] () -- C:\Windows\SysNative\drivers\nvBridge.kmd
[2010.04.18 14:48:15 | 000,009,832 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb
[2010.04.18 14:48:12 | 021,005,928 | ---- | C] () -- C:\Windows\SysNative\nvoglv64.dll
[2010.04.18 14:48:08 | 002,106,472 | ---- | C] () -- C:\Windows\SysNative\nvcuvid.dll
[2010.04.18 14:48:07 | 005,444,200 | ---- | C] () -- C:\Windows\SysNative\nvcuda.dll
[2010.04.18 14:48:07 | 002,893,416 | ---- | C] () -- C:\Windows\SysNative\nvcuvenc.dll
[2010.04.18 14:48:04 | 016,061,032 | ---- | C] () -- C:\Windows\SysNative\nvcompiler.dll
[2010.04.18 14:48:04 | 000,254,056 | ---- | C] () -- C:\Windows\SysNative\nvcod1914.dll
[2010.04.18 14:48:04 | 000,254,056 | ---- | C] () -- C:\Windows\SysNative\nvcod.dll
[2010.04.03 17:42:00 | 014,828,648 | ---- | C] () -- C:\Windows\SysNative\nvcpl.dll
[2010.04.03 17:42:00 | 001,067,624 | ---- | C] () -- C:\Windows\SysNative\nvsvc64.dll
[2010.04.03 17:42:00 | 000,159,336 | ---- | C] () -- C:\Windows\SysNative\nvvsvc.exe
[2010.04.03 17:42:00 | 000,116,328 | ---- | C] () -- C:\Windows\SysNative\nvmctray.dll
[2010.04.03 17:42:00 | 000,061,032 | ---- | C] () -- C:\Windows\SysNative\nvshext.dll
[2010.04.03 17:41:38 | 000,276,196 | ---- | C] () -- C:\Windows\SysNative\NvApps.xml
[2010.04.03 17:41:38 | 000,066,714 | ---- | C] () -- C:\Windows\SysNative\NvwsApps.xml
[2010.03.14 21:11:37 | 000,843,728 | ---- | C] () -- C:\Windows\SysNative\drivers\sfi.dat
[2010.03.03 19:54:42 | 000,352,904 | ---- | C] () -- C:\Windows\SysNative\guard64.dll
[2010.03.03 19:54:02 | 000,084,616 | ---- | C] () -- C:\Windows\SysNative\drivers\inspect.sys
[2010.03.03 19:54:00 | 000,216,456 | ---- | C] () -- C:\Windows\SysNative\drivers\cmdGuard.sys
[2010.03.03 19:54:00 | 000,033,128 | ---- | C] () -- C:\Windows\SysNative\drivers\cmdhlp.sys
[2010.03.03 19:53:58 | 000,019,760 | ---- | C] () -- C:\Windows\SysNative\drivers\cmderd.sys
[2010.02.12 12:01:24 | 000,119,584 | ---- | C] () -- C:\Windows\SysNative\dns-sd.exe
[2010.01.10 18:41:30 | 000,517,960 | ---- | C] () -- C:\Windows\SysNative\XAudio2_5.dll
[2010.01.10 18:41:29 | 000,176,968 | ---- | C] () -- C:\Windows\SysNative\xactengine3_5.dll
[2010.01.10 18:41:28 | 002,582,888 | ---- | C] () -- C:\Windows\SysNative\D3DCompiler_42.dll
[2010.01.10 18:41:22 | 005,554,512 | ---- | C] () -- C:\Windows\SysNative\d3dcsx_42.dll
[2010.01.10 18:41:22 | 000,285,024 | ---- | C] () -- C:\Windows\SysNative\d3dx11_42.dll
[2010.01.10 18:41:20 | 000,523,088 | ---- | C] () -- C:\Windows\SysNative\d3dx10_42.dll
[2010.01.10 18:41:17 | 002,475,352 | ---- | C] () -- C:\Windows\SysNative\D3DX9_42.dll
[2010.01.10 18:41:15 | 002,430,312 | ---- | C] () -- C:\Windows\SysNative\D3DCompiler_41.dll
[2010.01.10 18:41:15 | 000,520,544 | ---- | C] () -- C:\Windows\SysNative\d3dx10_41.dll
[2010.01.10 18:41:12 | 005,425,496 | ---- | C] () -- C:\Windows\SysNative\D3DX9_41.dll
[2010.01.10 18:41:11 | 000,521,560 | ---- | C] () -- C:\Windows\SysNative\XAudio2_4.dll
[2010.01.10 18:41:11 | 000,174,936 | ---- | C] () -- C:\Windows\SysNative\xactengine3_4.dll
[2010.01.10 18:41:11 | 000,073,544 | ---- | C] () -- C:\Windows\SysNative\XAPOFX1_3.dll
[2010.01.10 18:41:10 | 000,024,920 | ---- | C] () -- C:\Windows\SysNative\X3DAudio1_6.dll
[2010.01.10 18:41:07 | 002,605,920 | ---- | C] () -- C:\Windows\SysNative\D3DCompiler_40.dll
[2010.01.10 18:41:07 | 000,519,000 | ---- | C] () -- C:\Windows\SysNative\d3dx10_40.dll
[2010.01.10 18:41:02 | 005,631,312 | ---- | C] () -- C:\Windows\SysNative\D3DX9_40.dll
[2010.01.10 18:41:01 | 000,518,480 | ---- | C] () -- C:\Windows\SysNative\XAudio2_3.dll
[2010.01.10 18:41:01 | 000,074,576 | ---- | C] () -- C:\Windows\SysNative\XAPOFX1_2.dll
[2010.01.10 18:41:00 | 000,175,440 | ---- | C] () -- C:\Windows\SysNative\xactengine3_3.dll
[2010.01.10 18:41:00 | 000,025,936 | ---- | C] () -- C:\Windows\SysNative\X3DAudio1_5.dll
[2010.01.10 18:40:59 | 000,513,544 | ---- | C] () -- C:\Windows\SysNative\XAudio2_2.dll
[2010.01.10 18:40:59 | 000,072,200 | ---- | C] () -- C:\Windows\SysNative\XAPOFX1_1.dll
[2010.01.10 18:40:58 | 000,177,672 | ---- | C] () -- C:\Windows\SysNative\xactengine3_2.dll
[2010.01.10 18:40:56 | 001,942,552 | ---- | C] () -- C:\Windows\SysNative\D3DCompiler_39.dll
[2010.01.10 18:40:56 | 000,540,688 | ---- | C] () -- C:\Windows\SysNative\d3dx10_39.dll
[2010.01.10 18:40:52 | 004,992,520 | ---- | C] () -- C:\Windows\SysNative\D3DX9_39.dll
[2010.01.10 18:40:51 | 000,511,496 | ---- | C] () -- C:\Windows\SysNative\XAudio2_1.dll
[2010.01.10 18:40:51 | 000,068,104 | ---- | C] () -- C:\Windows\SysNative\XAPOFX1_0.dll
[2010.01.10 18:40:50 | 000,177,672 | ---- | C] () -- C:\Windows\SysNative\xactengine3_1.dll
[2010.01.10 18:40:50 | 000,028,168 | ---- | C] () -- C:\Windows\SysNative\X3DAudio1_4.dll
[2010.01.10 18:40:47 | 001,941,528 | ---- | C] () -- C:\Windows\SysNative\D3DCompiler_38.dll
[2010.01.10 18:40:47 | 000,540,688 | ---- | C] () -- C:\Windows\SysNative\d3dx10_38.dll
[2010.01.10 18:40:43 | 004,991,496 | ---- | C] () -- C:\Windows\SysNative\D3DX9_38.dll
[2010.01.10 18:40:42 | 000,489,480 | ---- | C] () -- C:\Windows\SysNative\XAudio2_0.dll
[2010.01.10 18:40:42 | 000,177,672 | ---- | C] () -- C:\Windows\SysNative\xactengine3_0.dll
[2010.01.10 18:40:41 | 000,028,168 | ---- | C] () -- C:\Windows\SysNative\X3DAudio1_3.dll
[2010.01.10 18:40:38 | 001,860,120 | ---- | C] () -- C:\Windows\SysNative\D3DCompiler_37.dll
[2010.01.10 18:40:38 | 000,529,424 | ---- | C] () -- C:\Windows\SysNative\d3dx10_37.dll
[2010.01.10 18:40:34 | 004,910,088 | ---- | C] () -- C:\Windows\SysNative\D3DX9_37.dll
[2010.01.10 18:40:33 | 000,411,656 | ---- | C] () -- C:\Windows\SysNative\xactengine2_10.dll
[2010.01.10 18:40:30 | 002,006,552 | ---- | C] () -- C:\Windows\SysNative\D3DCompiler_36.dll
[2010.01.10 18:40:30 | 000,508,264 | ---- | C] () -- C:\Windows\SysNative\d3dx10_36.dll
[2010.01.10 18:40:26 | 005,081,608 | ---- | C] () -- C:\Windows\SysNative\d3dx9_36.dll
[2010.01.10 18:40:25 | 000,411,496 | ---- | C] () -- C:\Windows\SysNative\xactengine2_9.dll
[2010.01.10 18:40:22 | 001,985,904 | ---- | C] () -- C:\Windows\SysNative\D3DCompiler_35.dll
[2010.01.10 18:40:22 | 000,508,264 | ---- | C] () -- C:\Windows\SysNative\d3dx10_35.dll
[2010.01.10 18:40:17 | 005,073,256 | ---- | C] () -- C:\Windows\SysNative\d3dx9_35.dll
[2010.01.10 18:40:16 | 000,409,960 | ---- | C] () -- C:\Windows\SysNative\xactengine2_8.dll
[2010.01.10 18:40:16 | 000,021,000 | ---- | C] () -- C:\Windows\SysNative\X3DAudio1_2.dll
[2010.01.10 18:40:13 | 001,401,200 | ---- | C] () -- C:\Windows\SysNative\D3DCompiler_34.dll
[2010.01.10 18:40:13 | 000,506,728 | ---- | C] () -- C:\Windows\SysNative\d3dx10_34.dll
[2010.01.10 18:40:09 | 004,496,232 | ---- | C] () -- C:\Windows\SysNative\d3dx9_34.dll
[2010.01.10 18:40:08 | 000,107,368 | ---- | C] () -- C:\Windows\SysNative\xinput1_3.dll
[2010.01.10 18:40:07 | 000,403,304 | ---- | C] () -- C:\Windows\SysNative\xactengine2_7.dll
[2010.01.10 18:40:04 | 001,400,176 | ---- | C] () -- C:\Windows\SysNative\D3DCompiler_33.dll
[2010.01.10 18:40:04 | 000,506,728 | ---- | C] () -- C:\Windows\SysNative\d3dx10_33.dll
[2010.01.10 18:39:59 | 004,494,184 | ---- | C] () -- C:\Windows\SysNative\d3dx9_33.dll
[2010.01.10 18:39:58 | 000,393,576 | ---- | C] () -- C:\Windows\SysNative\xactengine2_6.dll
[2010.01.10 18:39:57 | 000,390,424 | ---- | C] () -- C:\Windows\SysNative\xactengine2_5.dll
[2010.01.10 18:39:55 | 000,469,264 | ---- | C] () -- C:\Windows\SysNative\d3dx10.dll
[2010.01.10 18:39:53 | 004,398,360 | ---- | C] () -- C:\Windows\SysNative\d3dx9_32.dll
[2010.01.10 18:39:52 | 000,364,824 | ---- | C] () -- C:\Windows\SysNative\xactengine2_4.dll
[2010.01.10 18:39:52 | 000,017,688 | ---- | C] () -- C:\Windows\SysNative\x3daudio1_1.dll
[2010.01.10 18:39:49 | 003,977,496 | ---- | C] () -- C:\Windows\SysNative\d3dx9_31.dll
[2010.01.10 18:39:49 | 000,363,288 | ---- | C] () -- C:\Windows\SysNative\xactengine2_3.dll
[2010.01.10 18:39:48 | 000,083,736 | ---- | C] () -- C:\Windows\SysNative\xinput1_2.dll
[2010.01.10 18:39:47 | 000,354,072 | ---- | C] () -- C:\Windows\SysNative\xactengine2_2.dll
[2010.01.10 18:39:47 | 000,083,664 | ---- | C] () -- C:\Windows\SysNative\xinput1_1.dll
[2010.01.10 18:39:46 | 000,352,464 | ---- | C] () -- C:\Windows\SysNative\xactengine2_1.dll
[2010.01.10 18:39:35 | 003,927,248 | ---- | C] () -- C:\Windows\SysNative\d3dx9_30.dll
[2010.01.10 18:39:34 | 000,355,536 | ---- | C] () -- C:\Windows\SysNative\xactengine2_0.dll
[2010.01.10 18:39:34 | 000,016,592 | ---- | C] () -- C:\Windows\SysNative\x3daudio1_0.dll
[2010.01.10 18:39:32 | 003,830,992 | ---- | C] () -- C:\Windows\SysNative\d3dx9_29.dll
[2010.01.10 18:39:30 | 003,815,120 | ---- | C] () -- C:\Windows\SysNative\d3dx9_28.dll
[2010.01.10 18:39:28 | 003,807,440 | ---- | C] () -- C:\Windows\SysNative\d3dx9_27.dll
[2010.01.10 18:39:25 | 003,767,504 | ---- | C] () -- C:\Windows\SysNative\d3dx9_26.dll
[2010.01.10 18:39:23 | 003,823,312 | ---- | C] () -- C:\Windows\SysNative\d3dx9_25.dll
[2010.01.10 18:39:20 | 003,544,272 | ---- | C] () -- C:\Windows\SysNative\d3dx9_24.dll
[2009.11.18 22:31:06 | 000,832,273 | ---- | C] () -- C:\RSITx64.exe
[2009.11.18 18:03:03 | 002,676,504 | ---- | C] () -- C:\Users\Jeník\Desktop\Desktop\esetsmartinstaller_csy.exe
[2009.11.18 16:58:10 | 000,031,744 | ---- | C] () -- C:\Users\Jeník\Desktop\Desktop\Bára.doc
[2009.11.17 23:38:25 | 000,484,133 | ---- | C] () -- C:\Users\Jeník\Desktop\Desktop\print screen.jpg
[2009.11.17 13:54:18 | 000,259,584 | ---- | C] () -- C:\Users\Jeník\Desktop\Desktop\Kaspersky removal.doc
[2009.11.16 16:10:07 | 000,031,744 | ---- | C] () -- C:\Users\Jeník\Desktop\Desktop\Srpek.doc
[2009.11.16 15:57:42 | 000,048,587 | ---- | C] () -- C:\Users\Jeník\Desktop\Desktop\Telefon Vašák .pdf
[2009.11.16 10:58:30 | 000,026,112 | ---- | C] () -- C:\Users\Jeník\Desktop\Desktop\Cesta k outlook datům.doc
[2009.11.15 23:51:18 | 000,002,209 | ---- | C] () -- C:\Users\Jeník\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\setup_9.0.0.722_16.11.2010_00-16.lnk
[2009.11.15 23:48:17 | 000,352,784 | ---- | C] () -- C:\Windows\SysNative\drivers\5861330.sys
[2009.11.15 23:48:17 | 000,157,712 | ---- | C] () -- C:\Windows\SysNative\drivers\58613301.sys
[2009.11.15 23:48:17 | 000,040,464 | ---- | C] () -- C:\Windows\SysNative\drivers\58613302.sys
[2009.11.15 20:20:20 | 000,003,539 | ---- | C] () -- C:\Users\Jeník\Desktop\Desktop\chaos.rar
[2009.11.15 11:55:18 | 008,225,773 | ---- | C] () -- C:\Users\Jeník\Desktop\Desktop\LOGIC_AI.rar
[2009.11.12 18:22:57 | 000,020,992 | ---- | C] () -- C:\Users\Jeník\Desktop\Desktop\Svědecká událost.doc
[2009.11.12 17:21:01 | 000,000,744 | ---- | C] () -- C:\Users\Public\Desktop\Opera.lnk
[2009.11.03 19:02:34 | 000,000,731 | ---- | C] () -- C:\Users\Jeník\Desktop\Desktop\Adobe Photoshop CS4 (64 Bit).lnk
[2009.11.03 17:43:55 | 000,000,057 | ---- | C] () -- C:\Users\Jeník\AppData\Roaming\mainhst.zgh
[2009.11.03 00:06:20 | 000,135,168 | ---- | C] () -- C:\Windows\SysWow64\TXTUSER.EXE
[2009.08.09 17:10:53 | 000,004,096 | -H-- | C] () -- C:\Users\Jeník\AppData\Local\keyfile3.drm
[2009.06.29 15:56:07 | 001,198,658 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2008.11.18 23:33:18 | 000,000,333 | ---- | C] () -- C:\Windows\pdf2word.INI
[2008.11.04 21:56:55 | 000,000,048 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2008.07.03 10:07:43 | 000,007,237 | ---- | C] () -- C:\Windows\cadx2.ini
[2007.09.26 23:07:02 | 000,007,680 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2007.03.10 12:51:48 | 000,282,624 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2007.02.06 01:05:26 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI
[2006.11.02 13:20:47 | 000,055,858 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2006.11.02 13:18:05 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2006.02.25 19:09:38 | 000,774,144 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2005.10.14 10:56:50 | 003,596,288 | ---- | C] () -- C:\Windows\SysWow64\qt-dx331.dll
[2005.10.14 10:56:50 | 000,921,600 | ---- | C] () -- C:\Windows\SysWow64\VorbisEnc.dll
[2005.10.14 10:56:50 | 000,344,064 | ---- | C] () -- C:\Windows\SysWow64\xvid.dll
[2005.10.14 10:56:50 | 000,237,568 | ---- | C] () -- C:\Windows\SysWow64\OggDS.dll
[2005.10.14 10:56:50 | 000,188,416 | ---- | C] () -- C:\Windows\SysWow64\vorbis.dll
[2005.10.14 10:56:50 | 000,155,136 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2005.10.14 10:56:50 | 000,045,056 | ---- | C] () -- C:\Windows\SysWow64\ogg.dll
[2001.10.21 19:45:24 | 000,116,224 | ---- | C] () -- C:\Users\Jeník\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2001.10.21 12:59:33 | 000,001,324 | ---- | C] () -- C:\Windows\TVP3XDrv.ini
[2001.10.21 12:29:13 | 000,013,406 | ---- | C] () -- C:\Windows\Ascd_log.ini
[2001.10.21 12:28:57 | 000,013,235 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2001.10.21 12:28:44 | 000,012,536 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS
[2001.10.21 12:18:49 | 000,000,732 | ---- | C] () -- C:\Users\Jeník\AppData\Local\d3d9caps64.dat

========== LOP Check ==========

[2009.08.09 17:37:18 | 000,000,000 | ---D | M] -- C:\Users\Jeník\AppData\Roaming\Azureus
[2001.10.21 22:04:44 | 000,000,000 | ---D | M] -- C:\Users\Jeník\AppData\Roaming\DAEMON Tools
[2010.05.04 17:53:52 | 000,000,000 | ---D | M] -- C:\Users\Jeník\AppData\Roaming\Diercke Globus Online
[2008.11.02 19:37:20 | 000,000,000 | ---D | M] -- C:\Users\Jeník\AppData\Roaming\Gearbox Software
[2008.12.14 13:47:32 | 000,000,000 | ---D | M] -- C:\Users\Jeník\AppData\Roaming\ICQ
[2001.10.21 13:00:36 | 000,000,000 | ---D | M] -- C:\Users\Jeník\AppData\Roaming\KWorld Multimedia
[2001.10.21 23:56:28 | 000,000,000 | ---D | M] -- C:\Users\Jeník\AppData\Roaming\Opera
[2010.09.21 18:37:35 | 000,000,000 | ---D | M] -- C:\Users\Jeník\AppData\Roaming\Processing
[2001.10.21 20:17:21 | 000,000,000 | ---D | M] -- C:\Users\Jeník\AppData\Roaming\QIP
[2010.03.14 14:17:02 | 000,000,000 | ---D | M] -- C:\Users\Jeník\AppData\Roaming\STGU
[2010.05.04 15:11:41 | 000,000,000 | ---D | M] -- C:\Users\Jeník\AppData\Roaming\Thunderbird
[2009.11.03 17:50:33 | 000,000,000 | ---D | M] -- C:\Users\Jeník\AppData\Roaming\ZipGenius
[2009.11.17 23:28:04 | 000,032,598 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2010.10.12 07:55:45 | 000,000,418 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{4FCBA629-8E8E-4492-8C0A-0DA699842C8F}.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:DFC5A2B2

< End of report >

Re: vir

Napsal: 19 lis 2010 01:51
od Jan Vasak
Tak tady ještě lod z malware bytes
jediné co našel je keygen na Adobe Cs

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Verze databáze: 5148

Windows 6.0.6000
Internet Explorer 7.0.6000.16386

19.11.2009 1:48:46
mbam-log-2009-11-19 (01-48-46).txt

Typ skenu: Úplný sken (C:\|)
Skenované objekty: 254201
Uplynulý čas: 1 hodina(y), 14 minuta(y), 4 sekunda(y)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované složky: 0
Infikované soubory: 1

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
C:\Users\Jeník\Desktop\keygen CS.exe (RiskWare.Tool.CK) -> No action taken.

Re: vir

Napsal: 19 lis 2010 13:00
od vyosek
Omlouvam se Rudy za vstup, pisu na zadost uzivatele

:arrow: Spustte znovu OTL
  • Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

  • Kód: Vybrat vše

    :otl
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\vmnetadapter.sys -- (VMnetAdapter)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\radpms.sys -- (radpms)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\lmimirr.sys -- (lmimirr)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\ipinip.sys -- (IpInIp)
DRV:64bit: - [2009.10.22 12:54:24 | 000,040,464 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\DRIVERS\58613302.sys -- (58613302)
DRV:64bit: - [2009.10.09 22:30:56 | 000,352,784 | ---- | M] () [File_System | System | Running] -- C:\Windows\SysNative\DRIVERS\5861330.sys -- (setup_9.0.0.722_16.11.2010_00-16drv)
DRV:64bit: - [2009.09.25 16:59:46 | 000,157,712 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\58613301.sys -- (58613301)
DRV:64bit: - [2001.10.21 12:22:36 | 000,006,136 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\47504.sys -- (47504)
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKU\S-1-5-21-2318273236-1966652962-4018328269-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.qip.ru
IE - HKU\S-1-5-21-2318273236-1966652962-4018328269-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
IE - HKU\S-1-5-21-2318273236-1966652962-4018328269-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
IE - HKU\S-1-5-21-2318273236-1966652962-4018328269-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-2318273236-1966652962-4018328269-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 2
IE - HKU\S-1-5-21-2318273236-1966652962-4018328269-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru
IE - HKU\S-1-5-21-2318273236-1966652962-4018328269-1000\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-2318273236-1966652962-4018328269-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 127.0.0.1:8080
O4 - HKU\S-1-5-21-2318273236-1966652962-4018328269-1000..\Run: [AdobeBridge] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:DFC5A2B2
 
:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp /s

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]
  • Nasledne kliknete na Opravit
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Re: vir

Napsal: 19 lis 2010 13:59
od Jan Vasak
Tak trvalo to sto let..Ale vypadá že se něco událo..zde je log

All processes killed
========== OTL ==========
Error: No service named VMnetAdapter was found to stop!
Service\Driver key VMnetAdapter not found.
File C:\Windows\SysNative\DRIVERS\vmnetadapter.sys not found.
Error: No service named radpms was found to stop!
Service\Driver key radpms not found.
File C:\Windows\SysNative\DRIVERS\radpms.sys not found.
Error: No service named NwlnkFwd was found to stop!
Service\Driver key NwlnkFwd not found.
File C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys not found.
Error: No service named NwlnkFlt was found to stop!
Service\Driver key NwlnkFlt not found.
File C:\Windows\SysNative\DRIVERS\nwlnkflt.sys not found.
Error: No service named lmimirr was found to stop!
Service\Driver key lmimirr not found.
File C:\Windows\SysNative\DRIVERS\lmimirr.sys not found.
Error: No service named IpInIp was found to stop!
Service\Driver key IpInIp not found.
File C:\Windows\SysNative\DRIVERS\ipinip.sys not found.
Error: Unable to stop service 58613302!
Service\Driver key 58613302 not found.
File move failed. C:\Windows\SysNative\DRIVERS\58613302.sys scheduled to be moved on reboot.
Error: Unable to stop service setup_9.0.0.722_16.11.2010_00-16drv!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\setup_9.0.0.722_16.11.2010_00-16drv deleted successfully.
File move failed. C:\Windows\SysNative\DRIVERS\5861330.sys scheduled to be moved on reboot.
Error: Unable to stop service 58613301!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\58613301 deleted successfully.
File move failed. C:\Windows\SysNative\DRIVERS\58613301.sys scheduled to be moved on reboot.
Service 47504 stopped successfully!
Service 47504 deleted successfully!
File move failed. C:\Windows\SysNative\47504.sys scheduled to be moved on reboot.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKU\S-1-5-21-2318273236-1966652962-4018328269-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKU\S-1-5-21-2318273236-1966652962-4018328269-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL| /E : value set successfully!
HKU\S-1-5-21-2318273236-1966652962-4018328269-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
HKU\S-1-5-21-2318273236-1966652962-4018328269-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKU\S-1-5-21-2318273236-1966652962-4018328269-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\StartPageCache| /E : value set successfully!
HKU\S-1-5-21-2318273236-1966652962-4018328269-1000\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-2318273236-1966652962-4018328269-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}\ deleted successfully.
HKU\S-1-5-21-2318273236-1966652962-4018328269-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-2318273236-1966652962-4018328269-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\grooveLocalGWS\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88FED34C-F0CA-4636-A375-3CB6248B04CD}\ not found.
File {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-help\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{314111c7-a502-11d2-bbca-00c04f8ec294}\ not found.
File {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D}\ not found.
File {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found not found.
ADS C:\ProgramData\TEMP:DFC5A2B2 deleted successfully.
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5189.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP1C65.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPDC4A.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPDFC3.tmp folder moved successfully.
C:\Windows\Installer\MSI305D.tmp moved successfully.
C:\Windows\Installer\MSI3222.tmp moved successfully.
C:\Windows\Installer\MSI7692.tmp moved successfully.
C:\Windows\Installer\MSI77CB.tmp moved successfully.
C:\Windows\Installer\MSI7A7B.tmp moved successfully.
C:\Windows\Installer\MSI7B85.tmp moved successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\RAC223F.tmp moved successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\RAC35A2.tmp moved successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\RAC3612.tmp moved successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\RAC441D.tmp moved successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\RAC4EC5.tmp moved successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\RAC5C42.tmp moved successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\RAC6BCD.tmp moved successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\RAC7253.tmp moved successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\RACB2C8.tmp moved successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\RACC338.tmp moved successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\RACEAAC.tmp moved successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\RACEB26.tmp moved successfully.
File move failed. C:\Windows\Temp\CB263C.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB268B.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB268C.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB269D.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB2CF4.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB3187.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB31BE.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB3234.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB324B.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB324C.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB324D.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB3300.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB333F.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB336F.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB3370.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB392.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB3921.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB3AC2.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB3B4F.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB3B50.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB3B51.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB3E00.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB3E3F.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB3E50.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB3E51.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB3FF2.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4070.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4071.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4072.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4216.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB44A7.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB44E6.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB452F.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB45BC.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB45BD.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB45BE.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB467C.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4727.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB490C.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB496A.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB497B.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB499B.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4B5D.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4C73.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4C75.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4C86.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4D31.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4D71.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4DC0.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4DC1.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4DD2.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4E2C.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4E6B.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4E7C.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4E7D.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB4EF3.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB503B.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB516.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB51F1.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB52AD.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB52CD.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB52EE.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB54BE.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB55C8.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB5720.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB577F.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB5790.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB57A0.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB5D3.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB6CD.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB6D2B.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB6D7A.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB6D7B.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB6D8B.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB72C.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB73C.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB7450.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB75D.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB7CBA.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB7DC4.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB7EAF.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB7EDF.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB7EFF.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB7F1F.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB8B03.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB8B62.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB8B63.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB8B64.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB8CB9.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB8D27.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB8D28.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB8D39.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB9238.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB948A.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB96CB.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB9787.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB9882.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB98B1.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB98D2.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB98D3.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB9CB5.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB9E1D.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB9FA4.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB9FD4.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CB9FD5.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBA014.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBA518.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBA613.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBA624.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBA625.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBAD18.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBAFF3.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBB0AF.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBB0B0.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBB0B1.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBB36D.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBB419.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBB41A.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBB41B.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBB718.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBBA92.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC099.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC0E9.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC1D3.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC231.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC24F.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC2AF.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC31C.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC34C.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC38C.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC3AC.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC3E8.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC475.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC486.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC4C5.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC54C.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC59.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC637.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC638.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC658.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC88F.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC8DE.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC8DF.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBC8E0.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBCF85.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBD35.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBD6F5.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBD7B2.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBD86B.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBD89D.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBD8CC.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBD8DD.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBD90D.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBD956.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBD957.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBD967.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBDFFD.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBE341.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBE3A0.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBE3A1.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBE3A2.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBE6C2.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBE7EB.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBE9DF.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBEA2E.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBEA3F.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBEA4F.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBEAA5.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBEDB.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBF0B.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBF0C.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBF1C.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBF1F6.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBF2D1.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBF429.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBF469.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBF46A.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBF499.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBF94F.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBF98E.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBF98F.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBF990.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBFC00.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBFC6E.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBFC6F.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\Temp\CBFC70.tmp scheduled to be moved on reboot.
========== COMMANDS ==========
File move failed. C:\Windows\System32\drivers\etc\Hosts scheduled to be moved on reboot.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: AppData

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 41620 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Jeník
->Temp folder emptied: 81920 bytes
->Temporary Internet Files folder emptied: 32902 bytes
->Java cache emptied: 21025921 bytes
->FireFox cache emptied: 52757321 bytes
->Google Chrome cache emptied: 187178513 bytes
->Apple Safari cache emptied: 0 bytes
->Opera cache emptied: 3674369 bytes
->Flash cache emptied: 598 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1851218332 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33237 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 2 018,00 mb


[EMPTYFLASH]

User: All Users

User: AppData

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Jeník
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.17.3 log created on 11192009_132637

Files\Folders moved on Reboot...
File move failed. C:\Windows\SysNative\DRIVERS\58613302.sys scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\DRIVERS\5861330.sys scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\DRIVERS\58613301.sys scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\47504.sys scheduled to be moved on reboot.
C:\Windows\Temp\CB263C.tmp moved successfully.
C:\Windows\Temp\CB268B.tmp moved successfully.
C:\Windows\Temp\CB268C.tmp moved successfully.
C:\Windows\Temp\CB269D.tmp moved successfully.
C:\Windows\Temp\CB2CF4.tmp moved successfully.
C:\Windows\Temp\CB3187.tmp moved successfully.
C:\Windows\Temp\CB31BE.tmp moved successfully.
C:\Windows\Temp\CB3234.tmp moved successfully.
C:\Windows\Temp\CB324B.tmp moved successfully.
C:\Windows\Temp\CB324C.tmp moved successfully.
C:\Windows\Temp\CB324D.tmp moved successfully.
C:\Windows\Temp\CB3300.tmp moved successfully.
C:\Windows\Temp\CB333F.tmp moved successfully.
C:\Windows\Temp\CB336F.tmp moved successfully.
C:\Windows\Temp\CB3370.tmp moved successfully.
C:\Windows\Temp\CB392.tmp moved successfully.
C:\Windows\Temp\CB3921.tmp moved successfully.
C:\Windows\Temp\CB3AC2.tmp moved successfully.
C:\Windows\Temp\CB3B4F.tmp moved successfully.
C:\Windows\Temp\CB3B50.tmp moved successfully.
C:\Windows\Temp\CB3B51.tmp moved successfully.
C:\Windows\Temp\CB3E00.tmp moved successfully.
C:\Windows\Temp\CB3E3F.tmp moved successfully.
C:\Windows\Temp\CB3E50.tmp moved successfully.
C:\Windows\Temp\CB3E51.tmp moved successfully.
C:\Windows\Temp\CB3FF2.tmp moved successfully.
C:\Windows\Temp\CB4070.tmp moved successfully.
C:\Windows\Temp\CB4071.tmp moved successfully.
C:\Windows\Temp\CB4072.tmp moved successfully.
C:\Windows\Temp\CB4216.tmp moved successfully.
C:\Windows\Temp\CB44A7.tmp moved successfully.
C:\Windows\Temp\CB44E6.tmp moved successfully.
C:\Windows\Temp\CB452F.tmp moved successfully.
C:\Windows\Temp\CB45BC.tmp moved successfully.
C:\Windows\Temp\CB45BD.tmp moved successfully.
C:\Windows\Temp\CB45BE.tmp moved successfully.
C:\Windows\Temp\CB467C.tmp moved successfully.
C:\Windows\Temp\CB4727.tmp moved successfully.
C:\Windows\Temp\CB490C.tmp moved successfully.
C:\Windows\Temp\CB496A.tmp moved successfully.
C:\Windows\Temp\CB497B.tmp moved successfully.
C:\Windows\Temp\CB499B.tmp moved successfully.
C:\Windows\Temp\CB4B5D.tmp moved successfully.
C:\Windows\Temp\CB4C73.tmp moved successfully.
C:\Windows\Temp\CB4C75.tmp moved successfully.
C:\Windows\Temp\CB4C86.tmp moved successfully.
C:\Windows\Temp\CB4D31.tmp moved successfully.
C:\Windows\Temp\CB4D71.tmp moved successfully.
C:\Windows\Temp\CB4DC0.tmp moved successfully.
C:\Windows\Temp\CB4DC1.tmp moved successfully.
C:\Windows\Temp\CB4DD2.tmp moved successfully.
C:\Windows\Temp\CB4E2C.tmp moved successfully.
C:\Windows\Temp\CB4E6B.tmp moved successfully.
C:\Windows\Temp\CB4E7C.tmp moved successfully.
C:\Windows\Temp\CB4E7D.tmp moved successfully.
C:\Windows\Temp\CB4EF3.tmp moved successfully.
C:\Windows\Temp\CB503B.tmp moved successfully.
C:\Windows\Temp\CB516.tmp moved successfully.
C:\Windows\Temp\CB51F1.tmp moved successfully.
C:\Windows\Temp\CB52AD.tmp moved successfully.
C:\Windows\Temp\CB52CD.tmp moved successfully.
C:\Windows\Temp\CB52EE.tmp moved successfully.
C:\Windows\Temp\CB54BE.tmp moved successfully.
C:\Windows\Temp\CB55C8.tmp moved successfully.
C:\Windows\Temp\CB5720.tmp moved successfully.
C:\Windows\Temp\CB577F.tmp moved successfully.
C:\Windows\Temp\CB5790.tmp moved successfully.
C:\Windows\Temp\CB57A0.tmp moved successfully.
C:\Windows\Temp\CB5D3.tmp moved successfully.
C:\Windows\Temp\CB6CD.tmp moved successfully.
C:\Windows\Temp\CB6D2B.tmp moved successfully.
C:\Windows\Temp\CB6D7A.tmp moved successfully.
C:\Windows\Temp\CB6D7B.tmp moved successfully.
C:\Windows\Temp\CB6D8B.tmp moved successfully.
C:\Windows\Temp\CB72C.tmp moved successfully.
C:\Windows\Temp\CB73C.tmp moved successfully.
C:\Windows\Temp\CB7450.tmp moved successfully.
C:\Windows\Temp\CB75D.tmp moved successfully.
C:\Windows\Temp\CB7CBA.tmp moved successfully.
C:\Windows\Temp\CB7DC4.tmp moved successfully.
C:\Windows\Temp\CB7EAF.tmp moved successfully.
C:\Windows\Temp\CB7EDF.tmp moved successfully.
C:\Windows\Temp\CB7EFF.tmp moved successfully.
C:\Windows\Temp\CB7F1F.tmp moved successfully.
C:\Windows\Temp\CB8B03.tmp moved successfully.
C:\Windows\Temp\CB8B62.tmp moved successfully.
C:\Windows\Temp\CB8B63.tmp moved successfully.
C:\Windows\Temp\CB8B64.tmp moved successfully.
C:\Windows\Temp\CB8CB9.tmp moved successfully.
C:\Windows\Temp\CB8D27.tmp moved successfully.
C:\Windows\Temp\CB8D28.tmp moved successfully.
C:\Windows\Temp\CB8D39.tmp moved successfully.
C:\Windows\Temp\CB9238.tmp moved successfully.
C:\Windows\Temp\CB948A.tmp moved successfully.
C:\Windows\Temp\CB96CB.tmp moved successfully.
C:\Windows\Temp\CB9787.tmp moved successfully.
C:\Windows\Temp\CB9882.tmp moved successfully.
C:\Windows\Temp\CB98B1.tmp moved successfully.
C:\Windows\Temp\CB98D2.tmp moved successfully.
C:\Windows\Temp\CB98D3.tmp moved successfully.
C:\Windows\Temp\CB9CB5.tmp moved successfully.
C:\Windows\Temp\CB9E1D.tmp moved successfully.
C:\Windows\Temp\CB9FA4.tmp moved successfully.
C:\Windows\Temp\CB9FD4.tmp moved successfully.
C:\Windows\Temp\CB9FD5.tmp moved successfully.
C:\Windows\Temp\CBA014.tmp moved successfully.
C:\Windows\Temp\CBA518.tmp moved successfully.
C:\Windows\Temp\CBA613.tmp moved successfully.
C:\Windows\Temp\CBA624.tmp moved successfully.
C:\Windows\Temp\CBA625.tmp moved successfully.
C:\Windows\Temp\CBAD18.tmp moved successfully.
C:\Windows\Temp\CBAFF3.tmp moved successfully.
C:\Windows\Temp\CBB0AF.tmp moved successfully.
C:\Windows\Temp\CBB0B0.tmp moved successfully.
C:\Windows\Temp\CBB0B1.tmp moved successfully.
C:\Windows\Temp\CBB36D.tmp moved successfully.
C:\Windows\Temp\CBB419.tmp moved successfully.
C:\Windows\Temp\CBB41A.tmp moved successfully.
C:\Windows\Temp\CBB41B.tmp moved successfully.
C:\Windows\Temp\CBB718.tmp moved successfully.
C:\Windows\Temp\CBBA92.tmp moved successfully.
C:\Windows\Temp\CBC099.tmp moved successfully.
C:\Windows\Temp\CBC0E9.tmp moved successfully.
C:\Windows\Temp\CBC1D3.tmp moved successfully.
C:\Windows\Temp\CBC231.tmp moved successfully.
C:\Windows\Temp\CBC24F.tmp moved successfully.
C:\Windows\Temp\CBC2AF.tmp moved successfully.
C:\Windows\Temp\CBC31C.tmp moved successfully.
C:\Windows\Temp\CBC34C.tmp moved successfully.
C:\Windows\Temp\CBC38C.tmp moved successfully.
C:\Windows\Temp\CBC3AC.tmp moved successfully.
C:\Windows\Temp\CBC3E8.tmp moved successfully.
C:\Windows\Temp\CBC475.tmp moved successfully.
C:\Windows\Temp\CBC486.tmp moved successfully.
C:\Windows\Temp\CBC4C5.tmp moved successfully.
C:\Windows\Temp\CBC54C.tmp moved successfully.
C:\Windows\Temp\CBC59.tmp moved successfully.
C:\Windows\Temp\CBC637.tmp moved successfully.
C:\Windows\Temp\CBC638.tmp moved successfully.
C:\Windows\Temp\CBC658.tmp moved successfully.
C:\Windows\Temp\CBC88F.tmp moved successfully.
C:\Windows\Temp\CBC8DE.tmp moved successfully.
C:\Windows\Temp\CBC8DF.tmp moved successfully.
C:\Windows\Temp\CBC8E0.tmp moved successfully.
C:\Windows\Temp\CBCF85.tmp moved successfully.
C:\Windows\Temp\CBD35.tmp moved successfully.
C:\Windows\Temp\CBD6F5.tmp moved successfully.
C:\Windows\Temp\CBD7B2.tmp moved successfully.
C:\Windows\Temp\CBD86B.tmp moved successfully.
C:\Windows\Temp\CBD89D.tmp moved successfully.
C:\Windows\Temp\CBD8CC.tmp moved successfully.
C:\Windows\Temp\CBD8DD.tmp moved successfully.
C:\Windows\Temp\CBD90D.tmp moved successfully.
C:\Windows\Temp\CBD956.tmp moved successfully.
C:\Windows\Temp\CBD957.tmp moved successfully.
C:\Windows\Temp\CBD967.tmp moved successfully.
C:\Windows\Temp\CBDFFD.tmp moved successfully.
C:\Windows\Temp\CBE341.tmp moved successfully.
C:\Windows\Temp\CBE3A0.tmp moved successfully.
C:\Windows\Temp\CBE3A1.tmp moved successfully.
C:\Windows\Temp\CBE3A2.tmp moved successfully.
C:\Windows\Temp\CBE6C2.tmp moved successfully.
C:\Windows\Temp\CBE7EB.tmp moved successfully.
C:\Windows\Temp\CBE9DF.tmp moved successfully.
C:\Windows\Temp\CBEA2E.tmp moved successfully.
C:\Windows\Temp\CBEA3F.tmp moved successfully.
C:\Windows\Temp\CBEA4F.tmp moved successfully.
C:\Windows\Temp\CBEAA5.tmp moved successfully.
C:\Windows\Temp\CBEDB.tmp moved successfully.
C:\Windows\Temp\CBF0B.tmp moved successfully.
C:\Windows\Temp\CBF0C.tmp moved successfully.
C:\Windows\Temp\CBF1C.tmp moved successfully.
C:\Windows\Temp\CBF1F6.tmp moved successfully.
C:\Windows\Temp\CBF2D1.tmp moved successfully.
C:\Windows\Temp\CBF429.tmp moved successfully.
C:\Windows\Temp\CBF469.tmp moved successfully.
C:\Windows\Temp\CBF46A.tmp moved successfully.
C:\Windows\Temp\CBF499.tmp moved successfully.
C:\Windows\Temp\CBF94F.tmp moved successfully.
C:\Windows\Temp\CBF98E.tmp moved successfully.
C:\Windows\Temp\CBF98F.tmp moved successfully.
C:\Windows\Temp\CBF990.tmp moved successfully.
C:\Windows\Temp\CBFC00.tmp moved successfully.
C:\Windows\Temp\CBFC6E.tmp moved successfully.
C:\Windows\Temp\CBFC6F.tmp moved successfully.
C:\Windows\Temp\CBFC70.tmp moved successfully.
File move failed. C:\Windows\System32\drivers\etc\Hosts scheduled to be moved on reboot.
C:\Users\Jeník\AppData\Local\Mozilla\Firefox\Profiles\ysvjt7un.default\Cache\_CACHE_001_ moved successfully.
C:\Users\Jeník\AppData\Local\Mozilla\Firefox\Profiles\ysvjt7un.default\Cache\_CACHE_002_ moved successfully.
C:\Users\Jeník\AppData\Local\Mozilla\Firefox\Profiles\ysvjt7un.default\Cache\_CACHE_003_ moved successfully.
C:\Users\Jeník\AppData\Local\Mozilla\Firefox\Profiles\ysvjt7un.default\Cache\_CACHE_MAP_ moved successfully.
C:\Users\Jeník\AppData\Local\Mozilla\Firefox\Profiles\ysvjt7un.default\urlclassifier3.sqlite moved successfully.
C:\Users\Jeník\AppData\Local\Mozilla\Firefox\Profiles\ysvjt7un.default\XUL.mfl moved successfully.
C:\Windows\temp\CB1CF4.tmp moved successfully.
C:\Windows\temp\CB1D34.tmp moved successfully.
C:\Windows\temp\CB1D35.tmp moved successfully.
C:\Windows\temp\CB1D45.tmp moved successfully.
C:\Windows\temp\CB21B9.tmp moved successfully.
C:\Windows\temp\CB265C.tmp moved successfully.
C:\Windows\temp\CB2708.tmp moved successfully.
C:\Windows\temp\CB27C4.tmp moved successfully.
C:\Windows\temp\CB27F4.tmp moved successfully.
C:\Windows\temp\CB2824.tmp moved successfully.
C:\Windows\temp\CB2835.tmp moved successfully.
C:\Windows\temp\CB35.tmp moved successfully.
C:\Windows\temp\CB4396.tmp moved successfully.
C:\Windows\temp\CB43F5.tmp moved successfully.
C:\Windows\temp\CB43F6.tmp moved successfully.
C:\Windows\temp\CB43F7.tmp moved successfully.
C:\Windows\temp\CB4A7D.tmp moved successfully.
C:\Windows\temp\CB4F20.tmp moved successfully.
C:\Windows\temp\CB5143.tmp moved successfully.
C:\Windows\temp\CB5402.tmp moved successfully.
C:\Windows\temp\CB5432.tmp moved successfully.
C:\Windows\temp\CB5461.tmp moved successfully.
C:\Windows\temp\CB5472.tmp moved successfully.
File move failed. C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PHWUEU1N\desktop.ini scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FAYD5MJ2\desktop.ini scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\C444LTY1\desktop.ini scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8OKO3BI7\desktop.ini scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3ZZR2NXQ\desktop.ini scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\desktop.ini scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\desktop.ini scheduled to be moved on reboot.

Registry entries deleted on Reboot...

Re: vir

Napsal: 19 lis 2010 14:06
od Jan Vasak
Tady jme jěště print screen Tenp adresáře ve windows..takhle to vždy vypadá na začátku a pak se to začne opakovat ..ty názvy souborů a časy s tím že přibývá Kb...ted mají všechny 0kB a pak se opakují stejné hodnoty např 8077kB 12044kB.

Re: vir

Napsal: 19 lis 2010 14:10
od Jan Vasak
tady je první ...vlaštovka. 80744kB
:?:

Re: vir

Napsal: 19 lis 2010 14:13
od vyosek
:arrow: Bohuzel se nesmazaly ty hlavni havetotahace, takze se to tam taha stale dal...a jelikoz se jedna o x64 bude s jejich mazanim problem...

:arrow: Mate instalacni CD Windows :???:

:arrow: Zkuste jeste AVPTool a pak bychom videli http://www.viry.cz/forum/viewtopic.php?f=29&t=58179

Re: vir

Napsal: 19 lis 2010 17:10
od Jan Vasak
Dobrý večer,
moc vám díky zatím za pomoc. Jedu na víkend domů, takže nemám čas udělat sken. Podívám se na to v neděli večer a pak vám pošlu log. Ještě jednou moc díky. Cd nemám ale o víkendu si ho zajistím, takže v neděli se do té havěti můžeme pustit naplno.
Kdyby nebylo tohoto fóra, tak vůbec nevím jak bych takovýto problém řešil.
Honza
Všechny časy jsou v UTC+01:00
Stránka 2 z 3

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz