VIRY.CZ

tak scan porad bezi...

Ono je to hodne zaneseno, pokud stale naskakuji faze, tak jej nechte...mel by se dostat nekam k 50ti fazim

Takže včera se na monitoru zobrazovalo jenom tohle sdeleni - vyhledavam nakazene soubory..., nic o fazich to nepsalo.
PC bezelo pres noc, protoze sem u nej usnul a rano stejnej stav, kdyz sem chtel program ukoncit, win nereagovaly.

: screen2.jpg (102.46 KiB) Zobrazeno 949 x

Aplikujte tedy ComboFix v nouzovem rezimu

nedari se mi nouzovy rezim spustit, kdyz vyberu moznost nouzovyho rezimu, tak se PC restartuje

po startu win se mi taky spusti google chrome

Stahnete SytemLook http://jpshortstuff.247fixes.com/SystemLook.exe a ulozte jej na plochu

Do okna vlozte skript nize
Kód: Vybrat vše
```
:filefind
chrome.exe
```
Kliknete na Look
Tlacitko Look se zmeni na Scanning a zsedne
Pockejte pokud se tlacitko Scanning opet nezmeni na Look - tak poznate ze SystemLook dokoncil svou praci
Vyskoci na Vas log s nazvem SystemLook (pripadne bude ulozen na plose), jeho obsah mi sem vlozte

SystemLook 30.07.11 by jpshortstuff
Log created at 11:32 on 20/09/2012 by tkv
Administrator - Elevation successful

========== filefind ==========

Searching for "chrome.exe"
C:\Documents and Settings\tkv\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe --a---- 1229848 bytes [14:24 20/04/2012] [02:58 30/08/2012] 2E17E8CD4D77BF831AC5F8C2C49233C7

-= EOF =-

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
Zaskrtnete okenko Pro vsechny uzivatele
Zaskrtnete okenko Kontrola na havet "LOP"
Zaskrtnete okenko Kontrola na havet "Purity"
Stari souboru zmente z 30 dnu na 7 dnu
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5 

*crack* /s
*keygen* /s
*loader* /s

Kliknete na tlacitko Prohledat
Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku[

[/list]

se omlouvam, za nekomunikaci, ale ted odjizdim na 14 dni pryc a celou dobu sem resil praci aby slo odjet a na popravde receno na tohle vlakno uplne zapomnel

az budu zpet ozvu se a muzeme pokracovat, jinak diky

Ou Kej, tema nechavam tedy odemknute

sem z5, odkud mám začít?

Udelejte to OTL, je o par postu vyse

OTL logfile created on: 17.10.2012 20:23:58 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\tkv\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,00 Gb Total Physical Memory | 1,94 Gb Available Physical Memory | 64,79% Memory free
4,84 Gb Paging File | 4,02 Gb Available in Paging File | 83,01% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 2,48 Gb Free Space | 6,36% Space Free | Partition Type: NTFS
Drive H: | 176,24 Gb Total Space | 3,75 Gb Free Space | 2,13% Space Free | Partition Type: NTFS

Computer Name: TONDA | User Name: tkv | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2012.10.17 20:20:59 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\tkv\Plocha\OTL.exe
PRC - [2012.09.19 20:55:09 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
PRC - [2012.09.07 04:25:55 | 000,917,984 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012.09.01 23:58:04 | 000,161,768 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2012.08.13 11:04:16 | 010,376,704 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2012.08.13 11:04:16 | 010,368,512 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2012.07.30 15:02:22 | 000,640,480 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
PRC - [2012.07.03 09:04:58 | 000,507,312 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
PRC - [2012.03.07 15:40:34 | 000,913,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2012.03.07 15:40:28 | 003,117,344 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2012.03.01 01:58:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012.01.23 06:43:08 | 000,092,592 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
PRC - [2010.07.04 19:07:40 | 000,238,952 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe
PRC - [2010.01.26 23:05:36 | 000,655,624 | ---- | M] (Acresso Software Inc.) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
PRC - [2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.10.25 16:33:22 | 000,563,984 | ---- | M] () -- C:\Program Files\Common Files\Logishrd\LComMgr\Communications_Helper.exe
PRC - [2007.10.19 13:17:28 | 000,186,904 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\Logishrd\LVCOMSER\LVComSer.exe
PRC - [2005.10.18 16:00:10 | 000,241,152 | ---- | M] (ASUSTeK COMPUTER INC.) -- C:\WINDOWS\ATKKBService.exe

========== Modules (No Company Name) ==========

MOD - [2012.10.15 00:39:21 | 009,814,968 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll
MOD - [2012.09.24 16:49:04 | 000,985,088 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxml2.dll
MOD - [2012.09.07 04:25:54 | 002,244,064 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012.07.30 18:08:04 | 000,016,872 | ---- | M] () -- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\ViewerPS.dll
MOD - [2012.02.17 20:55:35 | 000,166,912 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2009.02.27 17:39:29 | 000,019,968 | ---- | M] () -- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\AcroTray.DEU
MOD - [2009.02.27 17:32:27 | 000,020,480 | ---- | M] () -- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\AcroTray.FRA
MOD - [2008.04.14 05:22:08 | 000,248,832 | ---- | M] () -- C:\WINDOWS\system32\xmlprov.dll
MOD - [2008.03.30 17:22:42 | 000,070,144 | ---- | M] () -- C:\Program Files\PSPad editor\PSPadShell.dll
MOD - [2007.10.25 16:33:22 | 000,563,984 | ---- | M] () -- C:\Program Files\Common Files\Logishrd\LComMgr\Communications_Helper.exe
MOD - [2007.10.19 13:17:40 | 000,068,120 | ---- | M] () -- C:\Program Files\Common Files\Logishrd\LVCOMSER\LVCSPS.dll

========== Services (SafeList) ==========

SRV - [2012.10.15 00:39:23 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012.09.19 20:55:09 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE.EXE -- (!SASCORE)
SRV - [2012.09.07 04:25:54 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.09.01 23:58:04 | 000,161,768 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2012.07.03 13:19:28 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.03.07 15:40:34 | 000,913,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2012.03.01 01:58:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012.01.23 06:43:08 | 000,092,592 | ---- | M] (TomTom) [Auto | Running] -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService)
SRV - [2011.09.27 21:03:28 | 000,295,192 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2011.06.26 08:45:56 | 000,256,000 | R--- | M] () [Auto | Stopped] -- C:\ComboFix\pev.3XE -- (PEVSystemStart)
SRV - [2010.07.04 19:07:40 | 000,238,952 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2010.01.26 23:05:36 | 000,655,624 | ---- | M] (Acresso Software Inc.) [Auto | Running] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2008.04.14 05:22:08 | 000,248,832 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\xmlprov.dll -- (xmlprov)
SRV - [2008.04.14 05:21:51 | 000,248,832 | ---- | M] () [On_Demand | Stopped] -- C:\WINDOWS\system32\ntmssvc.dll -- (NtmsSvc)
SRV - [2007.10.19 13:21:16 | 000,141,848 | ---- | M] (Logitech Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\Logishrd\SrvLnch\SrvLnch.exe -- (LVSrvLauncher)
SRV - [2007.10.19 13:19:22 | 000,141,848 | ---- | M] (Logitech Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2007.10.19 13:17:28 | 000,186,904 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\Logishrd\LVCOMSER\LVComSer.exe -- (LVCOMSer)
SRV - [2006.10.18 22:47:16 | 000,248,832 | ---- | M] () [On_Demand | Stopped] -- C:\WINDOWS\system32\mspmsnsv.dll -- (WmdmPmSN)
SRV - [2005.10.18 16:00:10 | 000,241,152 | ---- | M] (ASUSTeK COMPUTER INC.) [Auto | Running] -- C:\WINDOWS\ATKKBService.exe -- (ATKKeyboardService)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\zgwhsmdm.sys -- (zgwhsmdm)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Softwin\BitDefender10\bdrsdrv.sys -- (BDRsDrv)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Softwin\BitDefender10\bdfsdrv.sys -- (BDFsDrv)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (aw04q0kn)
DRV - File not found [Kernel | Auto | Stopped] -- -- (adfs)
DRV - [2012.05.02 01:47:06 | 000,477,240 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2012.03.14 08:40:04 | 000,104,160 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2012.03.14 08:40:02 | 000,160,816 | ---- | M] (ESET) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2012.03.14 08:40:02 | 000,120,152 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2011.12.23 21:58:18 | 000,020,032 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\dgderdrv.sys -- (dgderdrv)
DRV - [2011.12.13 19:27:30 | 007,069,288 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2011.12.08 06:22:38 | 000,181,432 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssudmdm.sys -- (ssudmdm)
DRV - [2011.12.08 06:22:38 | 000,080,184 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssudbus.sys -- (dg_ssudbus)
DRV - [2011.12.08 06:22:26 | 000,136,808 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadmdm.sys -- (ssadmdm)
DRV - [2011.12.08 06:22:26 | 000,121,064 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadbus.sys -- (ssadbus)
DRV - [2011.12.08 06:22:26 | 000,114,280 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadserd.sys -- (ssadserd)
DRV - [2011.12.08 06:22:26 | 000,030,312 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadadb.sys -- (androidusb)
DRV - [2011.12.08 06:22:26 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadmdfl.sys -- (ssadmdfl)
DRV - [2011.09.02 08:31:28 | 000,039,192 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2011.09.02 08:31:20 | 000,041,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2011.09.02 08:30:58 | 000,012,184 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE)
DRV - [2011.08.17 09:56:22 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2011.07.22 18:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011.07.12 23:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010.11.09 16:35:30 | 000,021,992 | ---- | M] (CPUID) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\cpuz135_x32.sys -- (cpuz135)
DRV - [2010.06.14 09:32:54 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009.11.18 08:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009.11.18 08:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2009.07.13 16:51:12 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\winusb.sys -- (WinUSB)
DRV - [2008.08.26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.06.10 09:39:48 | 000,420,352 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WLANUHN.sys -- (ZY271N_XP)
DRV - [2008.06.10 09:39:48 | 000,020,736 | ---- | M] (ZDC., Inc. (ZDC)) [Kernel | Auto | Running] -- C:\WINDOWS\system32\ZDCndis5.sys -- (ZDCNDIS5)
DRV - [2007.10.19 13:16:30 | 002,109,976 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Lvckap.sys -- (LVcKap)
DRV - [2007.10.12 04:00:42 | 000,041,752 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2007.10.12 03:56:20 | 000,490,776 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LV561AV.SYS -- (PID_0928)
DRV - [2007.10.11 18:59:02 | 002,142,488 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVMVdrv.sys -- (LVMVDrv)
DRV - [2006.06.02 13:49:56 | 000,043,264 | R--- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\jraid.sys -- (JRAID)
DRV - [2006.03.15 09:51:00 | 000,244,608 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2006.02.08 10:26:00 | 000,011,264 | R--- | M] (ASUSTeK Computer Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\EIO.sys -- (EIO)
DRV - [2006.02.07 13:52:58 | 000,006,912 | R--- | M] (JMicron ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\JGOGO.sys -- (JGOGO)
DRV - [2005.11.03 16:40:07 | 000,063,488 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfvfs02.sys -- (sfvfs02)
DRV - [2005.10.18 16:01:38 | 000,011,008 | ---- | M] (ASUSTeK COMPUTER INC.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\atkkbnt.sys -- (asuskbnt)
DRV - [2005.08.10 14:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfdrv01.sys -- (sfdrv01)
DRV - [2005.05.16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfhlp02.sys -- (sfhlp02)
DRV - [2004.04.08 12:06:08 | 000,070,400 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\prohlp02.sys -- (prohlp02)
DRV - [2004.04.08 10:46:50 | 000,054,272 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\prodrv06.sys -- (prodrv06)
DRV - [2003.12.01 17:20:52 | 000,004,832 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfhlp01.sys -- (sfhlp01)
DRV - [2003.09.06 14:22:08 | 000,006,944 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\prosync1.sys -- (prosync1)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://h1.ripway.com/poojasharma/index.html
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://h1.ripway.com/poojasharma/index.html
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://h1.ripway.com/poojasharma/index.html
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://h1.ripway.com/poojasharma/index.html
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}

IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-2025429265-1757981266-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://h1.ripway.com/poojasharma/index.html
IE - HKU\S-1-5-21-2025429265-1757981266-839522115-1004\..\SearchScopes,DefaultScope = {4F5BD133-DF16-4AF1-BECA-9FE09A940ED4}
IE - HKU\S-1-5-21-2025429265-1757981266-839522115-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-2025429265-1757981266-839522115-1004\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask.com/redirect?clien ... DFE1ECDD25&
IE - HKU\S-1-5-21-2025429265-1757981266-839522115-1004\..\SearchScopes\{4F5BD133-DF16-4AF1-BECA-9FE09A940ED4}: "URL" = http://search.seznam.cz/?q={searchTerms ... chmodule_1
IE - HKU\S-1-5-21-2025429265-1757981266-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "seznam.cz"
FF - prefs.js..extensions.enabledAddons: battlefieldheroespatcher@ea.com:5.0.145.0
FF - prefs.js..extensions.enabledAddons: battlefieldplay4free@ea.com:1.0.80.2
FF - prefs.js..extensions.enabledAddons: foxmarks@kei.com:4.1.3
FF - prefs.js..extensions.enabledItems: {6614d11d-d21d-b211-ae23-815234e1ebb5}:1.0.23
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: bkmrksync@nokia.com:1.0.0.736
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: foxmarks@kei.com:3.9.8
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1166636.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Acrobat: C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\tkv\Local Settings\Data aplikací\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\tkv\Local Settings\Data aplikací\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.09.07 04:25:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.09.07 04:25:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012.10.16 20:24:08 | 000,000,000 | ---D | M]

[2010.01.24 22:21:11 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\tkv\Data aplikací\Mozilla\Extensions
[2010.01.24 22:21:11 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\tkv\Data aplikací\Mozilla\Extensions\home2@tomtom.com
[2012.10.15 00:06:50 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\tkv\Data aplikací\Mozilla\Firefox\Profiles\84f2r86r.default\extensions
[2012.07.09 20:25:00 | 000,000,000 | ---D | M] (Battlefield Heroes Updater) -- C:\Documents and Settings\tkv\Data aplikací\Mozilla\Firefox\Profiles\84f2r86r.default\extensions\battlefieldheroespatcher@ea.com
[2012.07.06 18:11:08 | 000,000,000 | ---D | M] (Battlefield Play4Free) -- C:\Documents and Settings\tkv\Data aplikací\Mozilla\Firefox\Profiles\84f2r86r.default\extensions\battlefieldplay4free@ea.com
[2012.10.15 00:06:50 | 000,000,000 | ---D | M] ("Xmarks") -- C:\Documents and Settings\tkv\Data aplikací\Mozilla\Firefox\Profiles\84f2r86r.default\extensions\foxmarks@kei.com
[2011.11.17 19:25:44 | 000,002,333 | ---- | M] () -- C:\Documents and Settings\tkv\Data aplikací\Mozilla\Firefox\Profiles\84f2r86r.default\searchplugins\askcom.xml
[2012.09.07 04:25:48 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\TKV\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\84F2R86R.DEFAULT\EXTENSIONS\BATTLEFIELDHEROESPATCHER@EA.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\TKV\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\84F2R86R.DEFAULT\EXTENSIONS\BATTLEFIELDPLAY4FREE@EA.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\TKV\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\84F2R86R.DEFAULT\EXTENSIONS\FOXMARKS@KEI.COM
[2012.09.07 04:25:55 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012.06.01 20:01:06 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2012.06.01 20:01:06 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.06.01 20:01:06 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2012.06.01 20:01:06 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.06.01 20:01:06 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - homepage: http://www.google.com/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\tkv\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\22.0.1229.94\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\tkv\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\22.0.1229.94\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\tkv\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\22.0.1229.94\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_233.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Windows Genuine Advantage (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\tkv\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U2 (Enabled) = C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - Extension: YouTube = C:\Documents and Settings\tkv\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Documents and Settings\tkv\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Facebook Invite All Friends PRO = C:\Documents and Settings\tkv\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lkifjigoeilijkcnpfdjbpdjgnbfibec\3.2.5_0\
CHR - Extension: Facebook Invite All Friends PRO = C:\Documents and Settings\tkv\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lkifjigoeilijkcnpfdjbpdjgnbfibec\3.2.5_0\~
CHR - Extension: Facebook Invite All Friends PRO = C:\Documents and Settings\tkv\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lkifjigoeilijkcnpfdjbpdjgnbfibec\3.3.0_0\
CHR - Extension: Gmail = C:\Documents and Settings\tkv\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012.10.16 20:33:55 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\S-1-5-21-2025429265-1757981266-839522115-1004\..\Toolbar\ShellBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\S-1-5-21-2025429265-1757981266-839522115-1004\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [GBB36X Configure] C:\WINDOWS\System32\JMRaidTool.exe (Gigabyte Technology Corp.)
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [LogitechCommunicationsManager] C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - Startup: C:\Documents and Settings\tkv\Nabídka Start\Programy\Po spuštění\Dropbox.lnk = C:\Documents and Settings\tkv\Data aplikací\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2025429265-1757981266-839522115-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2025429265-1757981266-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-2025429265-1757981266-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-2025429265-1757981266-839522115-1009\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2025429265-1757981266-839522115-1009\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BA822E72-2D0E-4F6D-94AD-3F87D0DA74E2}: DhcpNameServer = 192.168.10.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O27 - HKLM IFEO\360hotfix.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\360rp.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\360rpt.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\360safe.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\360safebox.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\360sd.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\360se.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\360SoftMgrSvc.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\360speedld.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\360tray.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\ast.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\avcenter.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\avgnt.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\avguard.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\avmailc.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\avp.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\avwebgrd.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\bdagent.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\CCenter.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\ccSvcHst.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\ĐŢ¸´ą¤ľß.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\kavstart.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\kissvc.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\kmailmon.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\kpfw32.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\kpfwsvc.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\krnl360svc.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\kswebshield.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KVMonXP.kxp: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KVSrvXP.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\kwatch.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\livesrv.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\Mcagent.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\mcmscsvc.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\McNASvc.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\Mcods.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\McProxy.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\McSACore.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\Mcshield.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\mcsysmon.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\mcvsshld.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\MpfSrv.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\MPMon.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\MPSVC.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\MPSVC1.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\MPSVC2.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\msksrver.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\qutmserv.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\RavMonD.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\RavTask.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\RsAgent.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\rsnetsvr.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\RsTray.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\safeboxTray.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\ScanFrm.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\seccenter.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\SfCtlCom.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\sched.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\TMBMSRV.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\TmProxy.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\UfSeAgnt.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\vsserv.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\zhudongfangyu.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{6f69b2be-08ec-11df-a999-001a4d40eece}\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: Ntmssvc - C:\WINDOWS\system32\ntmssvc.dll ()
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: xmlprov - C:\WINDOWS\system32\xmlprov.dll ()
NetSvcs: BITS - File not found
NetSvcs: WmdmPmSN - C:\WINDOWS\system32\mspmsnsv.dll ()
NetSvcs: stumbleupon.com/", [ "http://cdn.stumble-upon.com/", 1.7956381630066043 ] ], [ "http://dpp.cz/", [ "http://www.dpp.cz/", 1.379201614681059 ] ], [ "http://dreambook.ondrejdadok.cz/", [ "http://dreambook.ondrejdadok.cz/", 2.7693356107337426, "http://maps.google.com/", 2.1457765990453503, "http://maps.gstatic.com/", 2.1457765990453503, "http://www.facebook.com/", 2.1457765990453503 ] ], [ "http://googleads.g.doub - File not found

Drivers32: msacm.geoadpcm - C:\WINDOWS\system32\v8200\GEO-ADPCM\2007.8.13.17.32\GeoADPCM.acm (GeoVision Inc.)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FMVC - C:\WINDOWS\System32\fmcodec.DLL (Fox Magic Software)
Drivers32: vidc.G264 - C:\WINDOWS\system32\v8300\GEO-H264\2008.11.17.11.45\GX264.dll (GeoVision)
Drivers32: vidc.G26S - C:\WINDOWS\system32\v8300\GEO-H264\2008.11.17.11.45\GX264D.dll (GeoVision)
Drivers32: vidc.GAVC - C:\WINDOWS\system32\v8300\GEO-H264-V2\2009.1.6.11.55\GXAVC.dll (GeoVision)
Drivers32: vidc.GAVS - C:\WINDOWS\system32\v8300\GEO-H264-V2\2009.1.6.11.55\GXAVCD.dll (GeoVision)
Drivers32: vidc.GEOS - C:\WINDOWS\system32\v8300\GEO-MPEG4\2008.11.21.11.52\GeoCodecD.dll (GeoVision)
Drivers32: vidc.GEOV - C:\WINDOWS\system32\v8300\GEO-MPEG4\2008.11.21.11.52\GeoCodec.dll (GeoVision)
Drivers32: vidc.GEOX - C:\WINDOWS\system32\v8300\GEO-MPEG4\2008.11.21.11.52\GeoCodec.dll (GeoVision)
Drivers32: vidc.GJPG - C:\WINDOWS\system32\v8300\GEO-JPEG\2009.1.5.20.39\GXJPG.dll (GeoVision)
Drivers32: vidc.GM20 - C:\WINDOWS\system32\v8300\GEO-MPEG2\2008.12.16.16.38\GXGM20.dll (GeoVision Inc.)
Drivers32: vidc.GM40 - C:\WINDOWS\system32\v8300\GEO-MPEG4-ASP\2009.1.6.13.43\GXAMP4.dll (GeoVision)
Drivers32: vidc.GM4H - C:\WINDOWS\system32\v8300\GEO-MPEG4-ASP\2009.1.6.13.43\GXAMP4D.dll (GeoVision)
Drivers32: vidc.GM4S - C:\WINDOWS\system32\v8300\GEO-MPEG4-ASP\2009.1.6.13.43\GXAMP4D.dll (GeoVision)
Drivers32: vidc.GMP4 - C:\WINDOWS\system32\v8300\GEO-MPEG4-ASP\2009.1.6.13.43\GXAMP4.dll (GeoVision)
Drivers32: VIDC.I420 - C:\WINDOWS\System32\lvcodec2.dll (Logitech Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2012.10.17 20:20:54 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\tkv\Plocha\OTL.exe
[2012.10.16 20:31:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tkv\Local Settings\Data aplikací\ESET
[2012.10.16 20:29:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ESET
[2012.10.16 20:24:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\ESET
[2012.10.16 20:24:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2012.10.16 20:10:47 | 001,378,744 | ---- | C] (ESET) -- C:\Documents and Settings\tkv\Plocha\eset_nod32_antivirus_live_installer.exe

========== Files - Modified Within 7 Days ==========

[2012.10.17 20:25:50 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.10.17 20:20:59 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\tkv\Plocha\OTL.exe
[2012.10.17 19:39:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012.10.17 19:31:00 | 000,001,018 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-1757981266-839522115-1004UA.job
[2012.10.17 19:07:29 | 000,000,019 | ---- | M] () -- C:\Documents and Settings\tkv\Data aplikací\Acrobat Prefs
[2012.10.17 18:31:00 | 000,000,966 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-1757981266-839522115-1004Core.job
[2012.10.17 13:50:51 | 000,000,653 | ---- | M] () -- C:\Documents and Settings\tkv\Plocha\czit_hoodoo.lnk
[2012.10.17 01:31:13 | 000,000,049 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012.10.17 01:31:12 | 000,040,448 | ---- | M] () -- C:\Documents and Settings\tkv\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.10.16 20:35:44 | 000,000,000 | ---- | M] () -- C:\WINDOWS\WindowsUpdata7.jpg
[2012.10.16 20:33:55 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2012.10.16 20:31:28 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.10.16 20:10:48 | 001,378,744 | ---- | M] (ESET) -- C:\Documents and Settings\tkv\Plocha\eset_nod32_antivirus_live_installer.exe
[2012.10.16 20:02:50 | 143,130,624 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP
[2012.10.16 20:00:21 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.10.15 21:26:50 | 000,000,129 | ---- | M] () -- C:\WINDOWS\System32\MRT.INI
[2012.10.15 21:19:07 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012.10.15 00:39:21 | 000,696,760 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012.10.15 00:39:21 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl

========== Files Created - No Company Name ==========

[2012.10.17 20:25:50 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.10.17 13:50:51 | 000,000,653 | ---- | C] () -- C:\Documents and Settings\tkv\Plocha\czit_hoodoo.lnk
[2012.10.16 20:35:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\WindowsUpdata7.jpg
[2012.10.15 21:26:50 | 000,000,129 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2012.10.15 21:18:39 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2012.10.15 03:51:38 | 000,522,240 | ---- | C] () -- C:\WINDOWS\chrome.exe
[2012.10.15 03:51:37 | 000,522,240 | RHS- | C] () -- C:\WINDOWS\System32\chrome.exe
[2012.09.18 23:40:06 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2012.09.18 23:40:06 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2012.09.18 23:40:06 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2012.09.18 23:40:06 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2012.09.18 23:40:06 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2012.09.06 07:33:28 | 000,065,536 | ---- | C] () -- C:\WINDOWS\IFinst27.exe
[2012.07.27 21:29:08 | 000,282,104 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2012.07.11 04:23:00 | 000,003,972 | ---- | C] () -- C:\WINDOWS\System32\drivers\PciBus.sys
[2012.07.11 03:13:43 | 000,166,200 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2012.07.06 18:25:09 | 000,139,424 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2012.07.06 18:25:09 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\tkv\Data aplikací\PnkBstrK.sys
[2012.07.06 18:24:51 | 000,076,888 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2012.04.25 23:53:21 | 000,040,448 | ---- | C] () -- C:\Documents and Settings\tkv\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.04.24 22:22:14 | 000,294,868 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012.04.24 22:22:14 | 000,294,868 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012.04.24 22:22:14 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012.04.20 15:49:03 | 000,059,500 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2012.04.20 15:22:49 | 000,004,998 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\mtbjfghn.xbe
[2012.03.29 17:41:51 | 000,000,016 | ---- | C] () -- C:\WINDOWS\System32\crt.dat
[2012.03.29 17:41:48 | 000,295,804 | ---- | C] () -- C:\WINDOWS\System32\shimg.dll
[2012.02.16 06:24:32 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011.12.31 00:56:48 | 000,021,736 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTAIODAT.DAT
[2011.12.12 12:34:55 | 002,784,050 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2011.10.04 20:25:17 | 000,253,952 | ---- | C] () -- C:\WINDOWS\JxIni.dll
[2011.10.04 20:25:17 | 000,213,065 | ---- | C] () -- C:\WINDOWS\GV_GeoPTZini.dll
[2011.10.04 20:25:17 | 000,028,759 | ---- | C] ( ) -- C:\WINDOWS\GV_AccessIni_Memory.dll
[2011.10.04 20:25:13 | 000,000,110 | ---- | C] () -- C:\WINDOWS\multiview.ini
[2011.09.28 17:44:14 | 000,179,271 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2011.05.19 00:02:30 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2011.05.19 00:02:30 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2011.05.19 00:02:26 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\tkv\Data aplikací\$_hpcst$.hpc
[2011.04.27 14:19:32 | 000,030,568 | ---- | C] () -- C:\WINDOWS\MusiccityDownload.exe
[2011.04.13 01:05:34 | 000,000,082 | ---- | C] () -- C:\Documents and Settings\tkv\Data aplikací\._plugin-container Prefs
[2011.04.13 01:05:34 | 000,000,019 | ---- | C] () -- C:\Documents and Settings\tkv\Data aplikací\plugin-container Prefs
[2011.04.09 23:19:19 | 000,000,012 | ---- | C] () -- C:\WINDOWS\System32\nvModes.dat
[2011.04.09 22:49:09 | 002,292,678 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2011.02.15 19:05:20 | 000,006,172 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011.02.12 05:03:06 | 005,887,214 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-2025429265-1757981266-839522115-1004-0.dat
[2011.02.12 05:03:06 | 000,288,358 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
[2011.01.04 17:10:56 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll
[2011.01.04 17:10:56 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll
[2011.01.04 17:10:56 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll
[2011.01.04 17:10:56 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll
[2010.12.08 07:59:18 | 000,000,395 | ---- | C] () -- C:\Documents and Settings\tkv\zkousky_javascriptu.html
[2010.11.04 14:03:39 | 000,000,082 | ---- | C] () -- C:\Documents and Settings\tkv\Data aplikací\._Google Chrome Prefs
[2010.11.04 14:03:39 | 000,000,019 | ---- | C] () -- C:\Documents and Settings\tkv\Data aplikací\Google Chrome Prefs
[2010.06.20 18:20:27 | 000,000,082 | ---- | C] () -- C:\Documents and Settings\tkv\Data aplikací\._firefox Prefs
[2010.06.20 18:20:27 | 000,000,019 | ---- | C] () -- C:\Documents and Settings\tkv\Data aplikací\firefox Prefs
[2010.06.13 21:54:22 | 000,000,082 | ---- | C] () -- C:\Documents and Settings\tkv\Data aplikací\._Acrobat Prefs
[2010.06.13 21:54:22 | 000,000,019 | ---- | C] () -- C:\Documents and Settings\tkv\Data aplikací\Acrobat Prefs

========== ZeroAccess Check ==========

[2009.12.13 23:16:48 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2011.09.05 15:56:09 | 001,510,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.02.09 12:56:05 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2008.04.14 05:22:05 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2012.04.10 03:58:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ask
[2012.09.08 02:38:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\BitDefender
[2012.06.29 16:43:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2010.06.13 21:49:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Enfocus
[2012.10.16 20:24:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2011.09.16 20:54:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2012.07.25 22:35:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MumboJumbo
[2010.01.24 15:23:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Nokia
[2010.01.04 02:41:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2011.08.02 09:20:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Propellerhead Software
[2012.02.03 02:59:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Samsung
[2010.01.24 22:21:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TomTom
[2011.12.30 16:17:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TrackMania
[2010.01.31 01:20:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\WinZip
[2012.08.17 13:03:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\.minecraft
[2012.05.01 22:14:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\avidemux
[2011.08.01 20:24:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Bioshock
[2011.05.20 05:07:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\calibre
[2012.04.20 15:23:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Carambis
[2012.09.20 11:47:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\DAEMON Tools Lite
[2011.04.07 20:20:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Digiarty
[2010.03.08 00:10:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Doit.im.2A4FBC65A8766CA36EFEAC67D621E1CEDF0FC84D.1
[2012.10.16 20:31:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Dropbox
[2010.06.13 21:51:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Enfocus Prefs Folder
[2010.10.21 03:11:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\IBM
[2011.12.14 09:22:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\JAM Software
[2011.04.07 15:59:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Leadertech
[2010.09.02 21:38:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Nokia
[2010.09.11 01:30:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\OpenOffice.org
[2012.06.28 05:29:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Oracle
[2011.07.25 22:29:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\PC Suite
[2011.07.18 19:29:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Processing
[2011.08.02 09:19:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Propellerhead Software
[2012.04.15 04:23:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\roaming
[2011.12.26 02:23:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Samsung
[2011.07.27 22:53:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Titanium
[2010.01.24 22:21:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\TomTom
[2012.09.08 06:31:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Unified Remote
[2012.09.26 23:55:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\uTorrent
[2009.12.13 21:51:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\VitySoft
[2012.01.30 15:55:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Windows Search

========== Purity Check ==========

========== Custom Scans ==========

< >
[2009.12.13 18:33:51 | 000,000,065 | RH-- | C] () -- C:\WINDOWS\Tasks\desktop.ini
[2009.12.13 18:38:58 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2011.12.26 17:10:54 | 000,000,966 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-1757981266-839522115-1004Core.job
[2011.12.26 17:10:54 | 000,001,018 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-1757981266-839522115-1004UA.job
[2012.09.20 14:59:02 | 000,000,914 | ---- | C] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

< >

< MD5 for: ATAPI.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2009.12.14 02:17:43 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2009.12.14 02:17:43 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 23:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2006.03.02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\i386\atapi.sys
[2004.08.03 23:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0009\DriverFiles\i386\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2006.03.02 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2009.12.14 02:17:43 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2009.12.14 02:17:43 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006.03.02 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2006.03.02 14:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: HAL.DLL >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2009.12.14 02:17:43 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2009.12.14 02:17:43 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 20:31:28 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2006.03.02 14:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: SCECLI.DLL >
[2006.03.02 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SERVICES.EXE >
[2009.02.09 11:54:36 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=33081FED75032291EE0E008D5385E86F -- C:\WINDOWS\$hf_mig$\KB956572\SP2QFE\services.exe
[2009.02.09 13:18:56 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=3D107D45CCFDB266E91D84B52CD7F430 -- C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\services.exe
[2009.02.09 12:11:38 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=4F9F7B567970B524F31D9970A23F7C24 -- C:\WINDOWS\$NtServicePackUninstall$\services.exe
[2006.03.02 14:00:00 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=6E401E61F952FBBF708AFBECEFAFAE81 -- C:\WINDOWS\$NtUninstallKB956572_0$\services.exe
[2009.02.09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\$hf_mig$\KB956572\SP3GDR\services.exe
[2009.02.09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\system32\dllcache\services.exe
[2009.02.09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\system32\services.exe
[2008.04.14 05:22:45 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=F0D2AE69035092BF22DAD6B50FAB85C2 -- C:\WINDOWS\$NtUninstallKB956572$\services.exe
[2008.04.14 05:22:45 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=F0D2AE69035092BF22DAD6B50FAB85C2 -- C:\WINDOWS\ServicePackFiles\i386\services.exe

< MD5 for: SVCHOST.EXE >
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.06.20 12:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 12:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2006.03.02 14:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=A29E1209F925A0E9B330E11DA5FC7BAB -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2006.03.02 14:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2006.03.02 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< >

< %systemroot%*.* /U /s >
[12 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[13 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[14 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >
[2012.09.08 02:39:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BitDefender

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2012.08.17 13:03:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\.minecraft
[2012.04.16 09:29:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Adobe
[2011.07.27 22:53:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Apple Computer
[2012.05.01 22:14:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\avidemux
[2011.08.01 20:24:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Bioshock
[2011.05.20 05:07:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\calibre
[2012.04.20 15:23:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Carambis
[2009.12.14 01:51:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Corel
[2012.09.20 11:47:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\DAEMON Tools Lite
[2011.04.07 20:20:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Digiarty
[2010.05.04 23:24:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\DivX
[2010.03.08 00:10:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Doit.im.2A4FBC65A8766CA36EFEAC67D621E1CEDF0FC84D.1
[2012.10.16 20:31:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Dropbox
[2010.06.13 21:51:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Enfocus Prefs Folder
[2010.09.22 21:42:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Google
[2010.02.19 03:15:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Help
[2010.10.21 03:11:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\IBM
[2009.12.13 18:41:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Identities
[2010.01.14 02:03:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\InstallShield
[2011.12.14 09:22:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\JAM Software
[2011.04.07 15:59:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Leadertech
[2011.12.08 14:42:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Logishrd
[2011.12.08 14:42:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Logitech
[2009.12.13 19:34:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Macromedia
[2011.11.09 18:12:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Malwarebytes
[2012.07.11 02:49:58 | 000,000,000 | --SD | M] -- C:\Documents and Settings\tkv\Data aplikací\Microsoft
[2009.12.13 19:16:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Mozilla
[2009.12.14 00:50:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Nero
[2010.09.02 21:38:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Nokia
[2011.12.08 15:51:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\NVIDIA
[2010.09.11 01:30:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\OpenOffice.org
[2012.06.28 05:29:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Oracle
[2011.07.25 22:29:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\PC Suite
[2011.07.18 19:29:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Processing
[2011.08.02 09:19:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Propellerhead Software
[2012.04.15 04:23:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\roaming
[2011.12.26 02:23:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Samsung
[2011.04.22 00:23:28 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\tkv\Data aplikací\SecuROM
[2012.10.17 20:21:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Skype
[2009.12.13 21:50:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Sun
[2011.11.10 07:29:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\SUPERAntiSpyware.com
[2011.07.27 22:53:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Titanium
[2010.01.24 22:21:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\TomTom
[2012.09.08 06:31:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Unified Remote
[2012.09.26 23:55:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\uTorrent
[2009.12.13 21:51:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\VitySoft
[2012.01.30 15:55:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\Windows Search
[2010.03.14 14:48:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tkv\Data aplikací\WinRAR

< %APPDATA%\*.exe /s >
[2012.05.24 20:39:22 | 027,112,840 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\tkv\Data aplikací\Dropbox\bin\Dropbox.exe
[2012.04.12 08:46:46 | 000,872,040 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\tkv\Data aplikací\Dropbox\bin\DropboxUpdateHelper.exe
[2012.05.24 20:39:56 | 000,177,280 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\tkv\Data aplikací\Dropbox\bin\Uninstall.exe
[2011.12.08 14:48:22 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Documents and Settings\tkv\Data aplikací\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
[2010.12.29 04:18:45 | 000,974,336 | ---- | M] (Share-rapid.com) -- C:\Documents and Settings\tkv\Data aplikací\Microsoft\Internet Explorer\Quick Launch\SRDownloader.exe
[2012.06.19 11:41:22 | 001,361,896 | ---- | M] (EA Digital Illusions CE AB) -- C:\Documents and Settings\tkv\Data aplikací\Mozilla\Firefox\Profiles\84f2r86r.default\extensions\battlefieldheroespatcher@ea.com\plugins\BFHUpdater.exe
[2012.06.28 01:03:24 | 001,034,224 | ---- | M] (EA Digital Illusions CE AB) -- C:\Documents and Settings\tkv\Data aplikací\Mozilla\Firefox\Profiles\84f2r86r.default\extensions\battlefieldplay4free@ea.com\plugins\BP4FUpdater.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2006.10.18 22:47:16 | 000,248,832 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\mspmsnsv.dll
[2008.04.14 05:21:51 | 000,248,832 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\ntmssvc.dll
[2008.04.14 05:22:08 | 000,248,832 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\xmlprov.dll

< %systemroot%\Tasks\*.job >
[2012.10.17 20:39:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
[2012.10.17 18:31:00 | 000,000,966 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-1757981266-839522115-1004Core.job
[2012.10.17 20:31:00 | 000,001,018 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-1757981266-839522115-1004UA.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2009.12.13 19:24:19 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2009.12.13 19:24:19 | 000,638,976 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2009.12.13 19:24:19 | 000,499,712 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >
[2006.10.18 22:47:16 | 000,248,832 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\mspmsnsv.dll
[2008.04.14 05:21:51 | 000,248,832 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\ntmssvc.dll
[2008.04.14 05:22:08 | 000,248,832 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\xmlprov.dll

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2012.10.16 20:29:20 | 000,000,511 | ---- | M] () -- C:\WINDOWS\system32\c_30218.nls
[2012.10.15 00:39:21 | 000,696,760 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\system32\FlashPlayerApp.exe
[2012.10.15 00:39:21 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
[2012.10.15 21:19:11 | 062,968,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MRT.exe
[2012.10.15 21:26:50 | 000,000,129 | ---- | M] () -- C:\WINDOWS\system32\MRT.INI
[2012.10.15 21:19:07 | 000,036,412 | ---- | M] () -- C:\WINDOWS\system32\TZLog.log
[2012.10.16 20:00:21 | 000,013,646 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 05:22:17 | 000,015,360 | ---- | M] (Microsoft Corporation)
"MSMSGS" = "C:\Program Files\Messenger\msmsgs.exe" /background -- [2008.04.14 05:22:36 | 001,695,232 | ---- | M] (Microsoft Corporation)
"Google Update" = "C:\Documents and Settings\tkv\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c -- [2012.04.20 16:15:39 | 000,116,648 | ---- | M] (Google Inc.)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2012.09.07 04:25:55 | 000,917,984 | ---- | M] (Mozilla Corporation) MD5=9C376F42BDE37F18D0A39AF7415D9BE6 -- C:\Program Files\Mozilla Firefox\firefox.exe

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2009.03.08 15:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) MD5=B60DDDD2D63CE41CB8C487FCFBB6419E -- C:\Program Files\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.10.17 20:25:50 | 000,000,512 | ---- | M] () MD5=DB5538326D1A74E98AE7AE6A55DC1D95 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2012.07.06 18:27:20 | 000,015,636 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetailcrackndetailncrack.cfx
[2012.07.06 18:27:22 | 000,015,656 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetailcrackndetailncrackalphatest.cfx
[2012.07.06 18:27:22 | 000,016,044 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetailcrackndetailncrackalphatestlightmap.cfx
[2012.07.06 18:27:23 | 000,016,540 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetailcrackndetailncrackalphatestlightmapshadow.cfx
[2012.07.06 18:27:23 | 000,015,352 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetailcrackndetailncrackalphatestpointlight.cfx
[2012.07.06 18:27:23 | 000,016,168 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetailcrackndetailncrackalphatestshadow.cfx
[2012.07.06 18:27:20 | 000,016,024 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetailcrackndetailncracklightmap.cfx
[2012.07.06 18:27:21 | 000,016,520 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetailcrackndetailncracklightmapshadow.cfx
[2012.07.06 18:27:21 | 000,015,300 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetailcrackndetailncrackpointlight.cfx
[2012.07.06 18:27:21 | 000,016,172 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetailcrackndetailncrackshadow.cfx
[2012.07.06 18:27:20 | 000,015,856 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetaildirtcrackndetailncrack.cfx
[2012.07.06 18:27:22 | 000,015,876 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetaildirtcrackndetailncrackalphatest.cfx
[2012.07.06 18:27:22 | 000,016,264 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmap.cfx
[2012.07.06 18:27:23 | 000,016,760 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmapshadow.cfx
[2012.07.06 18:27:23 | 000,015,572 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestpointlight.cfx
[2012.07.06 18:27:23 | 000,016,388 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestshadow.cfx
[2012.07.06 18:27:20 | 000,016,244 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetaildirtcrackndetailncracklightmap.cfx
[2012.07.06 18:27:21 | 000,016,740 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetaildirtcrackndetailncracklightmapshadow.cfx
[2012.07.06 18:27:21 | 000,015,520 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetaildirtcrackndetailncrackpointlight.cfx
[2012.07.06 18:27:21 | 000,016,392 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Battlefield Play4Free\mods\main\cache\{D7B71E3E-40D1-11CF-7956-FBA100C2CB35}_239013_3\rashaderstmbasedetaildirtcrackndetailncrackshadow.cfx
[2008.08.07 12:28:04 | 001,159,409 | ---- | M] () -- \Program Files\Adobe\Adobe After Effects CS4\Support Files\Presets\Image - Special Effects\Cracked Tiles.ffx
[2002.12.16 18:44:50 | 000,016,068 | ---- | M] () -- \Program Files\Corel\Corel Graphics 12\Custom Data\Canvas\cracks2c.pcx
[2002.12.16 18:44:30 | 000,010,560 | ---- | M] () -- \Program Files\Corel\Corel Graphics 12\Custom Data\Tiles\CRACKS2M.CPT

< *keygen* /s >
[2011.11.10 07:20:19 | 000,077,416 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Dropbox\Adobe CS4 Master Collection Keygen.rar

< *loader* /s >
[2010.06.13 21:49:56 | 000,001,210 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Enfocus\PitStop Pro\Help\enUS\Html\webhelp\search\indexLoader.js
[2012.02.29 09:49:32 | 000,072,638 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.gif
[2012.02.29 09:49:32 | 000,003,032 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.png
[2011.11.14 14:03:29 | 000,314,736 | ---- | M] () -- \Documents and Settings\LocalService\Local Settings\Data aplikací\Solid State Networks\Host.a3c18ab757e77ff318071788d50b3e9f0f4f3520\downloader.bundle
[2011.11.14 14:03:29 | 000,525,728 | ---- | M] () -- \Documents and Settings\LocalService\Local Settings\Data aplikací\Solid State Networks\Host.a3c18ab757e77ff318071788d50b3e9f0f4f3520\downloader.dll
[2011.11.13 15:42:29 | 000,314,736 | ---- | M] () -- \Documents and Settings\LocalService\Local Settings\Data aplikací\Solid State Networks\Host.b5b66756646e03e53c0c9182de54c6511f4d47f0\downloader.bundle
[2011.11.13 15:42:29 | 000,525,728 | ---- | M] () -- \Documents and Settings\LocalService\Local Settings\Data aplikací\Solid State Networks\Host.b5b66756646e03e53c0c9182de54c6511f4d47f0\downloader.dll
[2012.07.17 14:18:16 | 000,009,051 | ---- | M] () -- \Documents and Settings\tkv\Data aplikací\DAEMON Tools Lite\MediaInfo\img\loader.gif
[2012.07.17 14:18:16 | 000,016,119 | ---- | M] () -- \Documents and Settings\tkv\Data aplikací\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.jpg
[2012.07.17 14:18:16 | 000,018,434 | ---- | M] () -- \Documents and Settings\tkv\Data aplikací\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.png
[2012.07.17 14:18:16 | 000,009,283 | ---- | M] () -- \Documents and Settings\tkv\Data aplikací\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\ImageInfoLoader.js
[2012.07.17 14:18:16 | 000,001,898 | ---- | M] () -- \Documents and Settings\tkv\Data aplikací\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\NewsLoader.js
[2011.06.02 08:27:51 | 000,001,761 | ---- | M] () -- \Documents and Settings\tkv\Data aplikací\Microsoft\Internet Explorer\Quick Launch\MP3 Downloader.lnk
[2010.12.29 04:18:45 | 000,974,336 | ---- | M] () -- \Documents and Settings\tkv\Data aplikací\Microsoft\Internet Explorer\Quick Launch\SRDownloader.exe
[2012.07.01 11:12:04 | 000,103,347 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\Dropbox\minecraft\ModLoader.zip
[2010.06.22 13:41:14 | 000,000,051 | ---- | M] () -- \Documents and Settings\tkv\Dokumenty\TomTom\HOME\Backup\XL\Backup01\InternalMemory\bootloaderversion.txt
[2008.09.09 21:27:16 | 000,000,544 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Data aplikací\Adobe\Flash CS4\en\Configuration\Classes\FP7\MovieClipLoader.as
[2008.09.09 21:27:16 | 000,000,544 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Data aplikací\Adobe\Flash CS4\en\Configuration\Classes\FP8\MovieClipLoader.as
[2008.09.09 21:27:16 | 000,000,576 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Data aplikací\Adobe\Flash CS4\en\Configuration\Classes\FP9\MovieClipLoader.as
[2008.09.09 21:27:18 | 000,010,454 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Data aplikací\Adobe\Flash CS4\en\Configuration\Classes\mx\controls\Loader.as
[2012.09.20 14:58:31 | 000,000,723 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\AR6O46E5\downloaderror[1].js
[2012.09.20 14:49:52 | 000,001,174 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\AR6O46E5\downloader[1].js
[2012.10.15 02:52:23 | 000,000,000 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\AR6O46E5\kmplayer_downloader[1].exe
[2012.10.15 18:29:15 | 000,000,000 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\AR6O46E5\kmplayer_downloader[2].exe
[32 \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\AR6O46E5\*.tmp files -> \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\AR6O46E5\*.tmp -> ]
[2012.10.17 20:16:16 | 000,000,753 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\CCMD4IUZ\AdLoader[1].htm
[2012.09.20 14:49:51 | 000,003,784 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\CCMD4IUZ\bundleloader[1].js
[2012.09.20 14:58:04 | 000,003,784 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\CCMD4IUZ\bundleloader[2].js
[2012.09.27 15:23:01 | 000,105,903 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\F7BVFJH4\AdLoader-427d9fd2a91e2f2c023aefe9f69a01d0.min[1].js
[2012.09.20 14:58:29 | 000,003,784 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\F7BVFJH4\bundleloader[1].js
[2012.09.20 14:49:52 | 000,000,723 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\F7BVFJH4\downloaderror[1].js
[2012.09.21 15:31:08 | 000,000,000 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\F7BVFJH4\kmplayer_downloader[1].exe
[2012.10.15 02:52:38 | 000,000,000 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\F7BVFJH4\kmplayer_downloader[2].exe
[1 \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\F7BVFJH4\*.tmp files -> \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\F7BVFJH4\*.tmp -> ]
[2012.09.20 14:58:31 | 000,001,174 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\LBME0E7T\downloader[1].js
[2012.10.16 22:12:29 | 000,000,000 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\LBME0E7T\kmplayer_downloader[1].exe
[2012.10.17 01:31:18 | 000,000,000 | ---- | M] () -- \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\LBME0E7T\kmplayer_downloader[2].exe
[6 \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\LBME0E7T\*.tmp files -> \Documents and Settings\tkv\Local Settings\Temporary Internet Files\Content.IE5\LBME0E7T\*.tmp -> ]
[2008.03.18 08:31:00 | 000,009,216 | R--- | M] () -- \Program Files\Adobe\Acrobat 9.0\PDFMaker\AutoCAD\OD\AecDummyLoader_2.05_8.dll
[2008.09.03 03:14:34 | 000,217,088 | ---- | M] () -- \Program Files\Adobe\Adobe After Effects CS4\Support Files\MXF_SDK_MetaMetadata_BinaryLoader_r.4.1.1.223.dll
[2008.08.28 20:34:20 | 004,965,736 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS4\Photodownloader.exe
[2008.08.28 17:42:12 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS4\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\de_de\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\en_us\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\es_es\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\it_it\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\no_no\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,308 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2008.08.28 17:42:16 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2008.09.09 21:27:06 | 000,025,485 | ---- | M] () -- \Program Files\Adobe\Adobe Flash CS4\Common\Configuration\Component Source\ActionScript 3.0\User Interface\fl\containers\UILoader.as
[2008.09.09 21:27:08 | 000,044,966 | ---- | M] () -- \Program Files\Adobe\Adobe Flash CS4\Common\Configuration\Components\User Interface\Loader.swc
[2008.09.09 21:27:16 | 000,000,544 | ---- | M] () -- \Program Files\Adobe\Adobe Flash CS4\Common\First Run\Classes\FP7\MovieClipLoader.as
[2008.09.09 21:27:16 | 000,000,544 | ---- | M] () -- \Program Files\Adobe\Adobe Flash CS4\Common\First Run\Classes\FP8\MovieClipLoader.as
[2008.09.09 21:27:16 | 000,000,576 | ---- | M] () -- \Program Files\Adobe\Adobe Flash CS4\Common\First Run\Classes\FP9\MovieClipLoader.as
[2008.09.09 21:27:18 | 000,010,454 | ---- | M] () -- \Program Files\Adobe\Adobe Flash CS4\Common\First Run\Classes\mx\controls\Loader.as
[2008.09.04 14:21:42 | 000,003,500 | ---- | M] () -- \Program Files\Adobe\Adobe InDesign CS4\Scripts\Export As XHTML\startup scripts\XHTMLExportMenuItemLoader.jsx
[2008.09.04 14:21:42 | 000,002,915 | ---- | M] () -- \Program Files\Adobe\Adobe InDesign CS4\Scripts\XHTML For Digital Editions\startup scripts\OEBExportMenuItemLoader.jsx
[2008.07.24 18:24:38 | 000,187,848 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\en_US\AS3LCR\Flash_10.0\fl\containers\UILoader.html
[2008.07.24 18:24:40 | 000,132,290 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\en_US\AS3LCR\Flash_10.0\flash\display\Loader.html
[2008.07.24 18:24:40 | 000,088,641 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\en_US\AS3LCR\Flash_10.0\flash\display\LoaderInfo.html
[2008.07.24 18:24:42 | 000,190,584 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\en_US\AS3LCR\Flash_10.0\flash\html\HTMLLoader.html
[2008.07.24 18:24:42 | 000,027,799 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\en_US\AS3LCR\Flash_10.0\flash\media\SoundLoaderContext.html
[2008.07.24 18:24:42 | 000,064,816 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\en_US\AS3LCR\Flash_10.0\flash\net\URLLoader.html
[2008.07.24 18:24:42 | 000,023,665 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\en_US\AS3LCR\Flash_10.0\flash\net\URLLoaderDataFormat.html
[2008.07.24 18:24:42 | 000,018,704 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\en_US\AS3LCR\Flash_10.0\flash\system\JPEGLoaderContext.html
[2008.07.24 18:24:42 | 000,035,855 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\en_US\AS3LCR\Flash_10.0\flash\system\LoaderContext.html
[2008.07.24 17:54:50 | 000,025,994 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\en_US\AS3LCR\Flash_10.0\images\loaderInfo_object.jpg
[2010.10.25 13:21:44 | 000,001,651 | ---- | M] () -- \Program Files\EasyPHP-5.3.3.1\phpmyadmin\libraries\PHPExcel\PHPExcel\Autoloader.php
[2009.05.31 04:21:00 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2012.08.13 10:52:58 | 000,006,081 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.py
[2010.12.28 17:06:18 | 000,005,437 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.pyc
[2012.09.24 16:48:58 | 000,020,992 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.uno.dll
[2012.08.13 11:04:18 | 000,000,171 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.uno.ini
[2012.09.24 16:49:13 | 000,029,696 | ---- | M] () -- \Program Files\OpenOffice.org 3\URE\bin\javaloader.uno.dll
[2012.08.13 10:12:36 | 000,003,868 | ---- | M] () -- \Program Files\OpenOffice.org 3\URE\java\unoloader.jar
[2011.12.24 02:17:42 | 000,069,120 | ---- | M] () -- \Program Files\Samsung\Kies\Common\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.dll
[2011.12.28 00:21:16 | 000,131,984 | ---- | M] () -- \Program Files\Samsung\Kies\External\FirmwareUpdate\BinaryLoaderMgr.exe
[2008.02.25 08:05:22 | 000,856,064 | ---- | M] () -- \Program Files\The KMPlayer\ImLoader.dll
[2006.03.02 14:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2008.04.14 05:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.13 20:31:47 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.13 20:31:48 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 05:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[2012.08.08 17:32:40 | 000,012,532 | ---- | M] () -- \WINDOWS\system32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr

========== Files - Unicode (All) ==========
[2008.03.06 12:08:04 | 001,108,342 | ---- | M] ()(C:\WINDOWS\Temp\butterfly_Flowers_vector_by_coolwing\???????.abr) -- C:\WINDOWS\Temp\butterfly_Flowers_vector_by_coolwing\蝴蝶花矢量筆刷.abr
[2008.03.06 11:37:14 | 000,292,966 | ---- | M] ()(C:\WINDOWS\Temp\butterfly_Flowers_vector_by_coolwing\???????8??.jpg) -- C:\WINDOWS\Temp\butterfly_Flowers_vector_by_coolwing\自製蝴蝶花矢量8副本.jpg
[2008.03.06 11:03:58 | 003,469,046 | ---- | M] ()(C:\WINDOWS\Temp\butterfly_Flowers_vector_by_coolwing\???????.ai) -- C:\WINDOWS\Temp\butterfly_Flowers_vector_by_coolwing\自製蝴蝶花矢量.ai
[2008.02.22 22:28:18 | 000,000,077 | ---- | M] ()(C:\WINDOWS\Temp\butterfly_Flowers_vector_by_coolwing\COOL?????????.txt) -- C:\WINDOWS\Temp\butterfly_Flowers_vector_by_coolwing\COOL锋矢量笔刷使用须知.txt

< End of report >

VIRY.CZ

Havěť položila Antivir

Re: Havěť položila Antivir

Re: Havěť položila Antivir

Re: Havěť položila Antivir

Re: Havěť položila Antivir

Re: Havěť položila Antivir

Re: Havěť položila Antivir

Re: Havěť položila Antivir

Re: Havěť položila Antivir

Re: Havěť položila Antivir

Re: Havěť položila Antivir

Re: Havěť položila Antivir

Re: Havěť položila Antivir

Re: Havěť položila Antivir

Re: Havěť položila Antivir

Re: Havěť položila Antivir