Re: Prosím o kontrolu logu - zpomalený internet
Napsal: 07 bře 2010 14:41
Tak jsem zpátky - dal jsem systém do původního stavu, tak jak byl koupen, následně jsem provedl aktualizace - log ke kontrole přikládám. Notebook se zdá v pořádku. Nezpožďuje se. Pouze v jednu chvíli se opětovně zpomalil, a to když jsem nainstaloval spyware terminatora - z odkazu na virech.cz. Tak jsem ho radši odinstaloval. Od toho okamžiku internet běhá rychleji. Nemůže být něco navázáno právě na spyware terminatora? Vím je označován jako dobrý a bezpoečný program, jen měl to tak napadlo. Log přikládám: Díky za ochotu
Logfile of random's system information tool 1.06 (written by random/random)
Run by michal at 2010-03-07 13:32:54
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 93 GB (86%) free of 108 GB
Total RAM: 1014 MB (14% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:33:20, on 7.3.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Tall Emu\Online Armor\OAcat.exe
C:\Program Files\Tall Emu\Online Armor\oasrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\IPSSVC.EXE
C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
c:\program files\lenovo\system update\suservice.exe
C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
C:\WINDOWS\System32\TPHDEXLG.exe
C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
C:\Program Files\Lenovo\Rescue and Recovery\ADM\IUService.exe
C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Pure Networks\Network Magic\nmsrvc.exe
C:\Program Files\Common Files\Lenovo\Logger\logmon.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe
C:\WINDOWS\system32\tp4serv.exe
C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe
C:\WINDOWS\system32\TpShocks.exe
C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Lenovo\Zoom\TpScrex.exe
C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Lenovo\AwayTask\AwaySch.EXE
C:\Program Files\ThinkVantage\AMSG\Amsg.exe
C:\PROGRA~1\Lenovo\LENOVO~2\LPMGR.exe
C:\Program Files\Pure Networks\Network Magic\nmapp.exe
C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe
C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe
C:\Program Files\Lenovo\Client Security Solution\cssauth.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Tall Emu\Online Armor\oaui.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Tall Emu\Online Armor\OAhlp.exe
C:\Program Files\Secunia\PSI\psi.exe
C:\Program Files\Lenovo\Client Security Solution\tvtpwm_tray.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\Crawler\Toolbar\CToolbar.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\michal\Local Settings\Temporary Internet Files\Content.IE5\MXI5RFRU\RSIT[1].exe
C:\Program Files\trend micro\michal.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.co.uk/0SEENGB/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.co.uk/0SEENGB/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo.live.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.co.uk/0SEENGB/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
O2 - BHO: ThinkVantage Password Manager - {F040E541-A427-4CF7-85D8-75E3E0F476C5} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [PWRMGRTR] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [BLOG] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\BatLogEx.DLL,StartBattLog
O4 - HKLM\..\Run: [TPFNF7] C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe /r
O4 - HKLM\..\Run: [TrackPointSrv] tp4serv.exe
O4 - HKLM\..\Run: [TPHOTKEY] C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe
O4 - HKLM\..\Run: [TpShocks] TpShocks.exe
O4 - HKLM\..\Run: [EZEJMNAP] C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [TVT Scheduler Proxy] C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [AwaySch] C:\Program Files\Lenovo\AwayTask\AwaySch.EXE
O4 - HKLM\..\Run: [AMSG] C:\Program Files\ThinkVantage\AMSG\Amsg.exe /startup
O4 - HKLM\..\Run: [LPManager] C:\PROGRA~1\Lenovo\LENOVO~2\LPMGR.exe
O4 - HKLM\..\Run: [nmapp] "C:\Program Files\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [ACTray] C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe
O4 - HKLM\..\Run: [ACWLIcon] C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe
O4 - HKLM\..\Run: [cssauth] "C:\Program Files\Lenovo\Client Security Solution\cssauth.exe" silent
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [@OnlineArmor GUI] "C:\Program Files\Tall Emu\Online Armor\oaui.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Secunia PSI.lnk = C:\Program Files\Secunia\PSI\psi.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O9 - Extra button: (no name) - {0045D4BC-5189-4b67-969C-83BB1906C421} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll
O9 - Extra 'Tools' menuitem: ThinkVantage Password Manager... - {0045D4BC-5189-4b67-969C-83BB1906C421} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 7940942562
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O20 - Winlogon Notify: ACNotify - ACNotify.dll (file missing)
O23 - Service: Ac Profile Manager Service (AcPrfMgrSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
O23 - Service: Access Connections Main Service (AcSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ThinkPad PM Service (IBMPMSVC) - Lenovo - C:\WINDOWS\system32\ibmpmsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: IPS Core Service (IPSSVC) - Lenovo Group Limited - C:\WINDOWS\system32\IPSSVC.EXE
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Pure Networks Net2Go Service (nmraapache) - Pure Networks, Inc. - C:\Program Files\Pure Networks\Network Magic\WebServer\bin\nmraapache.exe
O23 - Service: Pure Networks Network Magic Service (nmservice) - Pure Networks, Inc. - C:\Program Files\Pure Networks\Network Magic\nmsrvc.exe
O23 - Service: Online Armor Helper Service (OAcat) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\OAcat.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: System Update (SUService) - Lenovo Group Limited - c:\program files\lenovo\system update\suservice.exe
O23 - Service: Online Armor (SvcOnlineArmor) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\oasrv.exe
O23 - Service: ThinkVantage Registry Monitor Service - Lenovo Group Limited - C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Lenovo. - C:\WINDOWS\System32\TPHDEXLG.exe
O23 - Service: TVT Backup Protection Service - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
O23 - Service: TVT Backup Service - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
O23 - Service: TVT Scheduler - Lenovo Group Limited - c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
O23 - Service: tvtnetwk - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\ADM\IUService.exe
--
End of file - 14203 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\PMTask.job
C:\WINDOWS\tasks\Připomenutí registrace 1.job
C:\WINDOWS\tasks\Připomenutí registrace 2.job
C:\WINDOWS\tasks\Připomenutí registrace 3.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}]
C:\PROGRA~1\Crawler\Toolbar\ctbr.dll [2010-01-28 1230288]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
DriveLetterAccess - C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2006-02-02 110652]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll [2005-11-10 184423]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-03-07 279664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll [2010-03-07 812528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F040E541-A427-4CF7-85D8-75E3E0F476C5}]
CPwmIEBrowserHelper Object - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll [2007-08-03 795960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4B3803EA-5230-4DC3-A7FC-33638F3D3542} - &Crawler lišta - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll [2010-01-28 1230288]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-03-07 279664]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"PWRMGRTR"=rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL,PwrMgrBkGndMonitor []
"BLOG"=rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\BatLogEx.DLL,StartBattLog []
"TPFNF7"=C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe [2007-04-09 58416]
"TrackPointSrv"=C:\WINDOWS\system32\tp4serv.exe [2007-04-26 91184]
"TPHOTKEY"=C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe [2007-03-09 66176]
""= []
"TpShocks"=C:\WINDOWS\system32\TpShocks.exe [2007-09-28 181544]
"EZEJMNAP"=C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe [2007-03-28 243248]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2007-09-07 141848]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2007-09-07 162328]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2007-09-07 137752]
"TVT Scheduler Proxy"=C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe [2007-07-11 540672]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe [2005-11-10 36975]
"DLA"=C:\WINDOWS\System32\DLA\DLACTRLW.EXE [2006-02-02 122940]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-07-27 221184]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-07-27 81920]
"AwaySch"=C:\Program Files\Lenovo\AwayTask\AwaySch.EXE [2006-11-07 91688]
"AMSG"=C:\Program Files\ThinkVantage\AMSG\Amsg.exe [2007-02-01 419376]
"LPManager"=C:\PROGRA~1\Lenovo\LENOVO~2\LPMGR.exe [2007-07-12 124256]
"nmapp"=C:\Program Files\Pure Networks\Network Magic\nmapp.exe [2007-03-14 321088]
"DiskeeperSystray"=C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe [2006-05-18 196696]
"ACTray"=C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe [2007-07-05 413696]
"ACWLIcon"=C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe [2007-07-05 126976]
"cssauth"=C:\Program Files\Lenovo\Client Security Solution\cssauth.exe [2007-08-03 2630968]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-11-16 2054360]
"@OnlineArmor GUI"=C:\Program Files\Tall Emu\Online Armor\oaui.exe [2009-12-05 6722760]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-03-07 39408]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Bluetooth.lnk - C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
Digital Line Detect.lnk - C:\Program Files\Digital Line Detect\DLG.exe
C:\Documents and Settings\michal\Nabídka Start\Programy\Po spuštění
Secunia PSI.lnk - C:\Program Files\Secunia\PSI\psi.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ACNotify]
C:\Program Files\ThinkPad\ConnectUtilities\ACNotify.dll [2007-07-05 32768]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2007-08-09 204800]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\tpfnf2]
C:\Program Files\Lenovo\HOTKEY\notifyf2.dll [2006-09-06 34344]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\tphotkey]
C:\Program Files\Lenovo\HOTKEY\tphklock.dll [2006-12-14 28672]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{4F07DA45-8170-4859-9B5F-037EF2970034}"=C:\PROGRA~1\TALLEM~1\ONLINE~1\oaevent.dll [2009-12-05 923336]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ACGina
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
======List of files/folders created in the last 1 months======
2010-03-07 13:32:59 ----D---- C:\Program Files\trend micro
2010-03-07 13:32:54 ----D---- C:\rsit
2010-03-07 13:23:40 ----D---- C:\Documents and Settings\michal\Data aplikací\Google
2010-03-07 13:22:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\Google
2010-03-07 12:49:17 ----SHD---- C:\Config.Msi
2010-03-07 12:05:14 ----D---- C:\Program Files\Crawler
2010-03-07 11:01:23 ----D---- C:\Program Files\Adobe
2010-03-07 10:58:00 ----D---- C:\Program Files\Common Files\Adobe AIR
2010-03-07 10:54:57 ----D---- C:\Program Files\NOS
2010-03-07 10:54:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\NOS
2010-03-07 10:47:19 ----D---- C:\Program Files\Common Files\Adobe
2010-03-07 10:38:57 ----D---- C:\Program Files\Secunia
2010-03-07 10:20:13 ----D---- C:\Documents and Settings\michal\Data aplikací\OnlineArmor
2010-03-07 10:20:13 ----D---- C:\Documents and Settings\All Users\Data aplikací\OnlineArmor
2010-03-07 10:19:02 ----D---- C:\Program Files\Tall Emu
2010-03-07 10:06:13 ----HDC---- C:\WINDOWS\$NtUninstallKB977165-v2$
2010-03-07 10:01:51 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2010-03-07 10:00:53 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-03-07 09:52:32 ----D---- C:\Program Files\ESET
2010-03-07 09:52:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2010-03-07 09:22:00 ----D---- C:\Program Files\CCleaner
2010-03-07 09:20:55 ----D---- C:\Documents and Settings\michal\Data aplikací\Macromedia
2010-03-07 08:38:54 ----D---- C:\WINDOWS\system32\XPSViewer
2010-03-07 08:38:49 ----D---- C:\Program Files\MSBuild
2010-03-07 08:38:47 ----D---- C:\WINDOWS\system32\en-US
2010-03-07 08:38:41 ----D---- C:\Program Files\Reference Assemblies
2010-03-07 08:37:55 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2010-03-07 08:37:55 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2010-03-07 08:37:55 ----N---- C:\WINDOWS\system32\prntvpt.dll
2010-03-07 08:37:54 ----D---- C:\1176473c3a6360897e18
2010-03-07 08:27:40 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-03-07 08:27:31 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2010-03-07 08:27:21 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-03-07 08:20:03 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$
2010-03-07 08:19:55 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2010-03-07 08:19:46 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2010-03-07 08:19:38 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-03-07 08:19:29 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2010-03-07 08:19:21 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2010-03-07 08:19:10 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-03-07 08:19:02 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-03-07 08:18:54 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-03-07 08:16:50 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-03-07 08:16:27 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-03-07 08:16:19 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-03-07 08:16:09 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2010-03-07 08:15:07 ----D---- C:\WINDOWS\ie8updates
2010-03-07 08:12:22 ----HDC---- C:\WINDOWS\ie8
2010-03-07 08:09:56 ----A---- C:\WINDOWS\system32\MRT.exe
2010-03-07 08:05:49 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2010-03-07 08:05:41 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-03-07 08:05:33 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-03-07 08:05:17 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-03-07 08:05:09 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-03-07 08:05:04 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2010-03-07 08:04:56 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-03-07 08:04:47 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2010-03-07 08:04:39 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-03-07 08:04:35 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2010-03-07 08:04:22 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2010-03-07 08:04:08 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-03-07 08:04:01 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-03-07 08:03:53 ----HDC---- C:\WINDOWS\$NtUninstallKB978251$
2010-03-07 08:03:45 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-03-07 08:03:37 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-03-07 08:03:26 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-03-07 08:03:21 ----A---- C:\WINDOWS\system32\tpinspm.dll
2010-03-07 08:03:21 ----A---- C:\WINDOWS\system32\ibmpmsvc.exe
2010-03-07 08:03:18 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-03-07 08:03:13 ----AD---- C:\drivers
2010-03-07 08:03:09 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-03-07 08:02:57 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-03-07 08:02:49 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2010-03-07 08:02:11 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-03-07 08:02:03 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2010-03-07 08:01:55 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2010-03-07 08:01:47 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2010-03-07 08:01:37 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-03-07 08:01:24 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-03-07 08:01:13 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2010-03-07 08:01:07 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2010-03-07 08:00:59 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2010-03-07 08:00:51 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-03-07 08:00:42 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2010-03-07 08:00:32 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2010-03-07 07:59:36 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-03-07 07:59:20 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2010-03-07 07:59:11 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-03-07 07:59:00 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$
2010-03-07 07:58:50 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-03-07 07:58:42 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-03-07 07:58:34 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-03-07 07:58:25 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2010-03-07 07:58:17 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2010-03-07 07:58:09 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2010-03-07 07:57:35 ----D---- C:\WINDOWS\ie7updates
2010-03-07 07:57:19 ----D---- C:\Program Files\MSXML 4.0
2010-03-07 07:57:08 ----HDC---- C:\WINDOWS\$NtUninstallKB979306$
2010-03-07 07:57:01 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-03-07 07:56:52 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-03-07 07:56:44 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-03-07 07:56:31 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-03-07 07:56:18 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
2010-03-07 07:50:57 ----D---- C:\WINDOWS\Prefetch
2010-03-07 07:42:33 ----D---- C:\WINDOWS\system32\CatRoot_bak
2010-03-07 07:34:57 ----D---- C:\WINDOWS\l2schemas
2010-03-07 07:34:56 ----D---- C:\WINDOWS\system32\cs
2010-03-07 07:34:56 ----D---- C:\WINDOWS\system32\bits
2010-03-07 07:30:56 ----D---- C:\WINDOWS\ServicePackFiles
2010-03-07 07:27:41 ----D---- C:\WINDOWS\network diagnostic
2010-03-07 07:23:29 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-03-07 06:44:37 ----D---- C:\WINDOWS\system32\PreInstall
2010-03-07 06:44:35 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2010-03-07 06:40:00 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2010-03-07 01:11:54 ----A---- C:\WINDOWS\system32\wmpns.dll
2010-03-07 01:11:47 ----D---- C:\Program Files\Windows Live Toolbar
2010-03-07 01:11:44 ----ASH---- C:\Documents and Settings\michal\Data aplikací\desktop.ini
2010-03-07 01:11:43 ----D---- C:\Documents and Settings\michal\Data aplikací\Lenovo
2010-03-07 01:11:43 ----D---- C:\Documents and Settings\michal\Data aplikací\InstallShield
2010-03-07 01:11:43 ----D---- C:\Documents and Settings\michal\Data aplikací\Identities
2010-03-07 01:11:43 ----D---- C:\Documents and Settings\michal\Data aplikací\Adobe
2010-03-07 01:11:42 ----SD---- C:\Documents and Settings\michal\Data aplikací\Microsoft
2010-03-07 01:05:08 ----SHD---- C:\RECYCLER
2010-03-07 01:05:07 ----A---- C:\WINDOWS\smscfg.ini
2010-03-07 00:59:50 ----A---- C:\WINDOWS\system32\capicom.dll
2010-03-07 00:59:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Symantec
2010-03-07 00:59:29 ----D---- C:\Program Files\Common Files\Symantec Shared
2010-03-07 00:58:40 ----RSHD---- C:\RRbackups
2010-03-07 00:55:03 ----A---- C:\WINDOWS\system32\pxinsi64.exe
2010-03-07 00:55:03 ----A---- C:\WINDOWS\system32\pxinsa64.exe
2010-03-07 00:55:03 ----A---- C:\WINDOWS\system32\pxcpyi64.exe
2010-03-07 00:55:03 ----A---- C:\WINDOWS\system32\pxcpya64.exe
2010-03-07 00:55:03 ----A---- C:\WINDOWS\system32\pxafs.dll
2010-03-07 00:54:38 ----D---- C:\SWSHARE
2010-03-07 00:54:16 ----AD---- C:\SWTOOLS
2010-03-07 00:54:02 ----A---- C:\WINDOWS\winhlp32.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\winhelp.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\xcopy.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wupdmgr.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wuauclt.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wscript.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wscntfy.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\write.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wpabaln.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wowexec.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wowdeb.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\winver.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\winspool.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\winmsd.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\winmine.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\winlogon.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\winchat.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\winhlp32.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wiaacmgr.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wextract.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\w32tm.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\vwipxspx.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\vssvc.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\vssadmin.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\verifier.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\utilman.exe
2010-03-07 00:54:01 ----A---- C:\WINDOWS\system32\usrshuta.exe
2010-03-07 00:54:01 ----A---- C:\WINDOWS\system32\usrprbda.exe
2010-03-07 00:54:01 ----A---- C:\WINDOWS\system32\usrmlnka.exe
2010-03-07 00:54:01 ----A---- C:\WINDOWS\system32\userinit.exe
2010-03-07 00:54:01 ----A---- C:\WINDOWS\system32\user.exe
2010-03-07 00:54:01 ----A---- C:\WINDOWS\system32\ups.exe
2010-03-07 00:54:01 ----A---- C:\WINDOWS\system32\upnpcont.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\twunk_32.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\twunk_16.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\unlodctr.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\typeperf.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\tskill.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\tscon.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\tracert6.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\tracert.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\tracerpt.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\tourstart.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\TASKMAN.EXE
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\tlntsvr.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\tlntsess.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\tlntadmn.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\tftp.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\telnet.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\tcpsvcs.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\tcmsetup.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\taskmgr.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\taskman.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\tasklist.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\taskkill.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\systray.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\systeminfo.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\sysocmgr.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\syskey.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\sysedit.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\syncapp.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\svchost.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\subst.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\stimon.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sprestrt.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\spoolsv.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\spnpinst.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\spiisupd.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\spider.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sort.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sol.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sndvol32.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sndrec32.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\smss.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\smlogsvc.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\smbinst.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\skeys.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sigverif.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\schtasks.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\shutdown.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\shrpubw.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\shmgrate.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\share.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\shadow.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sfc.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\setver.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\setup.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sethc.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\services.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\secedit.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sdbinst.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\scardsvr.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sc.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\savedump.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rwinsta.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\runonce.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rundll32.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\runas.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rtcshare.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rsvp.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rsopprov.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rsnotify.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rsmui.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rsmsink.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rsm.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rsh.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\routemon.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\route.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rexec.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\reset.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\replace.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\relog.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\regwiz.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\regsvr32.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\regini.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\regedt32.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\reg.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\redir.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\recover.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rdshost.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\regedit.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\rdpclip.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\rcp.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\rcimlby.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\rasphone.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\rasdial.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\rasautou.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\qwinsta.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\qprocess.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\qappsrv.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\proxycfg.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\proquota.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\progman.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\print.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\powercfg.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\ping6.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\ping.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\perfmon.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\pentnt.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\pathping.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\packager.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\osuninst.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\osk.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\openfiles.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\odbcconf.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\odbcad32.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\nwscript.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\nw16.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\ntvdm.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\ntsd.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2010-03-07 00:53:55 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\ntbackup.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\nslookup.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\notepad.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\nlsfunc.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\netstat.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\netsh.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\netsetup.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\netdde.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\net1.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\net.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\nddeapir.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\nbtstat.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\narrator.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\msswchx.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\notepad.exe
2010-03-07 00:53:53 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\msiexec.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mshta.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mshearts.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\msg.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mscdexnt.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mrinfo.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mqtgsvc.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mqsvc.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mqbkup.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mpnotify.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mountvol.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mobsync.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-03-07 00:53:51 ----N---- C:\WINDOWS\system32\ie4uinit.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\mmc.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\migpwd.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\mem.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\makecab.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\magnify.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\lsass.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\lpr.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\lpq.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\logonui.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\logoff.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\logman.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\logagent.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\lodctr.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\locator.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\lnkstub.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\lights.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\label.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\krnl386.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\ipxroute.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\ipv6.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\ipsec6.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\ipconfig.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\imapi.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\iexpress.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\hostname.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\help.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\grpconv.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\gpupdate.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\gpresult.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\getmac.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\gdi.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\ftp.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\fsutil.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\fsquirt.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\freecell.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\forcedos.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\fontview.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\fltmc.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\fixmapi.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\finger.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\findstr.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\find.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\fc.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\fastopen.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\hh.exe
2010-03-07 00:53:49 ----A---- C:\WINDOWS\system32\extrac32.exe
2010-03-07 00:53:49 ----A---- C:\WINDOWS\system32\expand.exe
-----------------EOF-----------------
Logfile of random's system information tool 1.06 (written by random/random)
Run by michal at 2010-03-07 13:32:54
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 93 GB (86%) free of 108 GB
Total RAM: 1014 MB (14% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:33:20, on 7.3.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Tall Emu\Online Armor\OAcat.exe
C:\Program Files\Tall Emu\Online Armor\oasrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\IPSSVC.EXE
C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
c:\program files\lenovo\system update\suservice.exe
C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
C:\WINDOWS\System32\TPHDEXLG.exe
C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
C:\Program Files\Lenovo\Rescue and Recovery\ADM\IUService.exe
C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Pure Networks\Network Magic\nmsrvc.exe
C:\Program Files\Common Files\Lenovo\Logger\logmon.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe
C:\WINDOWS\system32\tp4serv.exe
C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe
C:\WINDOWS\system32\TpShocks.exe
C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Lenovo\Zoom\TpScrex.exe
C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Lenovo\AwayTask\AwaySch.EXE
C:\Program Files\ThinkVantage\AMSG\Amsg.exe
C:\PROGRA~1\Lenovo\LENOVO~2\LPMGR.exe
C:\Program Files\Pure Networks\Network Magic\nmapp.exe
C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe
C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe
C:\Program Files\Lenovo\Client Security Solution\cssauth.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Tall Emu\Online Armor\oaui.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Tall Emu\Online Armor\OAhlp.exe
C:\Program Files\Secunia\PSI\psi.exe
C:\Program Files\Lenovo\Client Security Solution\tvtpwm_tray.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\Crawler\Toolbar\CToolbar.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\michal\Local Settings\Temporary Internet Files\Content.IE5\MXI5RFRU\RSIT[1].exe
C:\Program Files\trend micro\michal.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.co.uk/0SEENGB/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.co.uk/0SEENGB/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo.live.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.co.uk/0SEENGB/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
O2 - BHO: ThinkVantage Password Manager - {F040E541-A427-4CF7-85D8-75E3E0F476C5} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [PWRMGRTR] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [BLOG] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\BatLogEx.DLL,StartBattLog
O4 - HKLM\..\Run: [TPFNF7] C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe /r
O4 - HKLM\..\Run: [TrackPointSrv] tp4serv.exe
O4 - HKLM\..\Run: [TPHOTKEY] C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe
O4 - HKLM\..\Run: [TpShocks] TpShocks.exe
O4 - HKLM\..\Run: [EZEJMNAP] C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [TVT Scheduler Proxy] C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [AwaySch] C:\Program Files\Lenovo\AwayTask\AwaySch.EXE
O4 - HKLM\..\Run: [AMSG] C:\Program Files\ThinkVantage\AMSG\Amsg.exe /startup
O4 - HKLM\..\Run: [LPManager] C:\PROGRA~1\Lenovo\LENOVO~2\LPMGR.exe
O4 - HKLM\..\Run: [nmapp] "C:\Program Files\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [ACTray] C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe
O4 - HKLM\..\Run: [ACWLIcon] C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe
O4 - HKLM\..\Run: [cssauth] "C:\Program Files\Lenovo\Client Security Solution\cssauth.exe" silent
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [@OnlineArmor GUI] "C:\Program Files\Tall Emu\Online Armor\oaui.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Secunia PSI.lnk = C:\Program Files\Secunia\PSI\psi.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O9 - Extra button: (no name) - {0045D4BC-5189-4b67-969C-83BB1906C421} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll
O9 - Extra 'Tools' menuitem: ThinkVantage Password Manager... - {0045D4BC-5189-4b67-969C-83BB1906C421} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 7940942562
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O20 - Winlogon Notify: ACNotify - ACNotify.dll (file missing)
O23 - Service: Ac Profile Manager Service (AcPrfMgrSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
O23 - Service: Access Connections Main Service (AcSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ThinkPad PM Service (IBMPMSVC) - Lenovo - C:\WINDOWS\system32\ibmpmsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: IPS Core Service (IPSSVC) - Lenovo Group Limited - C:\WINDOWS\system32\IPSSVC.EXE
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Pure Networks Net2Go Service (nmraapache) - Pure Networks, Inc. - C:\Program Files\Pure Networks\Network Magic\WebServer\bin\nmraapache.exe
O23 - Service: Pure Networks Network Magic Service (nmservice) - Pure Networks, Inc. - C:\Program Files\Pure Networks\Network Magic\nmsrvc.exe
O23 - Service: Online Armor Helper Service (OAcat) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\OAcat.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: System Update (SUService) - Lenovo Group Limited - c:\program files\lenovo\system update\suservice.exe
O23 - Service: Online Armor (SvcOnlineArmor) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\oasrv.exe
O23 - Service: ThinkVantage Registry Monitor Service - Lenovo Group Limited - C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Lenovo. - C:\WINDOWS\System32\TPHDEXLG.exe
O23 - Service: TVT Backup Protection Service - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
O23 - Service: TVT Backup Service - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
O23 - Service: TVT Scheduler - Lenovo Group Limited - c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
O23 - Service: tvtnetwk - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\ADM\IUService.exe
--
End of file - 14203 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\PMTask.job
C:\WINDOWS\tasks\Připomenutí registrace 1.job
C:\WINDOWS\tasks\Připomenutí registrace 2.job
C:\WINDOWS\tasks\Připomenutí registrace 3.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}]
C:\PROGRA~1\Crawler\Toolbar\ctbr.dll [2010-01-28 1230288]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
DriveLetterAccess - C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2006-02-02 110652]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll [2005-11-10 184423]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-03-07 279664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll [2010-03-07 812528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F040E541-A427-4CF7-85D8-75E3E0F476C5}]
CPwmIEBrowserHelper Object - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll [2007-08-03 795960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4B3803EA-5230-4DC3-A7FC-33638F3D3542} - &Crawler lišta - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll [2010-01-28 1230288]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-03-07 279664]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"PWRMGRTR"=rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL,PwrMgrBkGndMonitor []
"BLOG"=rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\BatLogEx.DLL,StartBattLog []
"TPFNF7"=C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe [2007-04-09 58416]
"TrackPointSrv"=C:\WINDOWS\system32\tp4serv.exe [2007-04-26 91184]
"TPHOTKEY"=C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe [2007-03-09 66176]
""= []
"TpShocks"=C:\WINDOWS\system32\TpShocks.exe [2007-09-28 181544]
"EZEJMNAP"=C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe [2007-03-28 243248]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2007-09-07 141848]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2007-09-07 162328]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2007-09-07 137752]
"TVT Scheduler Proxy"=C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe [2007-07-11 540672]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe [2005-11-10 36975]
"DLA"=C:\WINDOWS\System32\DLA\DLACTRLW.EXE [2006-02-02 122940]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-07-27 221184]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-07-27 81920]
"AwaySch"=C:\Program Files\Lenovo\AwayTask\AwaySch.EXE [2006-11-07 91688]
"AMSG"=C:\Program Files\ThinkVantage\AMSG\Amsg.exe [2007-02-01 419376]
"LPManager"=C:\PROGRA~1\Lenovo\LENOVO~2\LPMGR.exe [2007-07-12 124256]
"nmapp"=C:\Program Files\Pure Networks\Network Magic\nmapp.exe [2007-03-14 321088]
"DiskeeperSystray"=C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe [2006-05-18 196696]
"ACTray"=C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe [2007-07-05 413696]
"ACWLIcon"=C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe [2007-07-05 126976]
"cssauth"=C:\Program Files\Lenovo\Client Security Solution\cssauth.exe [2007-08-03 2630968]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-11-16 2054360]
"@OnlineArmor GUI"=C:\Program Files\Tall Emu\Online Armor\oaui.exe [2009-12-05 6722760]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-03-07 39408]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Bluetooth.lnk - C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
Digital Line Detect.lnk - C:\Program Files\Digital Line Detect\DLG.exe
C:\Documents and Settings\michal\Nabídka Start\Programy\Po spuštění
Secunia PSI.lnk - C:\Program Files\Secunia\PSI\psi.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ACNotify]
C:\Program Files\ThinkPad\ConnectUtilities\ACNotify.dll [2007-07-05 32768]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2007-08-09 204800]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\tpfnf2]
C:\Program Files\Lenovo\HOTKEY\notifyf2.dll [2006-09-06 34344]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\tphotkey]
C:\Program Files\Lenovo\HOTKEY\tphklock.dll [2006-12-14 28672]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{4F07DA45-8170-4859-9B5F-037EF2970034}"=C:\PROGRA~1\TALLEM~1\ONLINE~1\oaevent.dll [2009-12-05 923336]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ACGina
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
======List of files/folders created in the last 1 months======
2010-03-07 13:32:59 ----D---- C:\Program Files\trend micro
2010-03-07 13:32:54 ----D---- C:\rsit
2010-03-07 13:23:40 ----D---- C:\Documents and Settings\michal\Data aplikací\Google
2010-03-07 13:22:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\Google
2010-03-07 12:49:17 ----SHD---- C:\Config.Msi
2010-03-07 12:05:14 ----D---- C:\Program Files\Crawler
2010-03-07 11:01:23 ----D---- C:\Program Files\Adobe
2010-03-07 10:58:00 ----D---- C:\Program Files\Common Files\Adobe AIR
2010-03-07 10:54:57 ----D---- C:\Program Files\NOS
2010-03-07 10:54:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\NOS
2010-03-07 10:47:19 ----D---- C:\Program Files\Common Files\Adobe
2010-03-07 10:38:57 ----D---- C:\Program Files\Secunia
2010-03-07 10:20:13 ----D---- C:\Documents and Settings\michal\Data aplikací\OnlineArmor
2010-03-07 10:20:13 ----D---- C:\Documents and Settings\All Users\Data aplikací\OnlineArmor
2010-03-07 10:19:02 ----D---- C:\Program Files\Tall Emu
2010-03-07 10:06:13 ----HDC---- C:\WINDOWS\$NtUninstallKB977165-v2$
2010-03-07 10:01:51 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2010-03-07 10:00:53 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-03-07 09:52:32 ----D---- C:\Program Files\ESET
2010-03-07 09:52:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2010-03-07 09:22:00 ----D---- C:\Program Files\CCleaner
2010-03-07 09:20:55 ----D---- C:\Documents and Settings\michal\Data aplikací\Macromedia
2010-03-07 08:38:54 ----D---- C:\WINDOWS\system32\XPSViewer
2010-03-07 08:38:49 ----D---- C:\Program Files\MSBuild
2010-03-07 08:38:47 ----D---- C:\WINDOWS\system32\en-US
2010-03-07 08:38:41 ----D---- C:\Program Files\Reference Assemblies
2010-03-07 08:37:55 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2010-03-07 08:37:55 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2010-03-07 08:37:55 ----N---- C:\WINDOWS\system32\prntvpt.dll
2010-03-07 08:37:54 ----D---- C:\1176473c3a6360897e18
2010-03-07 08:27:40 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-03-07 08:27:31 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2010-03-07 08:27:21 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-03-07 08:20:03 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$
2010-03-07 08:19:55 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2010-03-07 08:19:46 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2010-03-07 08:19:38 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-03-07 08:19:29 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2010-03-07 08:19:21 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2010-03-07 08:19:10 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-03-07 08:19:02 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-03-07 08:18:54 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-03-07 08:16:50 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-03-07 08:16:27 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-03-07 08:16:19 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-03-07 08:16:09 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2010-03-07 08:15:07 ----D---- C:\WINDOWS\ie8updates
2010-03-07 08:12:22 ----HDC---- C:\WINDOWS\ie8
2010-03-07 08:09:56 ----A---- C:\WINDOWS\system32\MRT.exe
2010-03-07 08:05:49 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2010-03-07 08:05:41 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-03-07 08:05:33 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-03-07 08:05:17 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-03-07 08:05:09 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-03-07 08:05:04 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2010-03-07 08:04:56 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-03-07 08:04:47 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2010-03-07 08:04:39 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-03-07 08:04:35 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2010-03-07 08:04:22 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2010-03-07 08:04:08 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-03-07 08:04:01 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-03-07 08:03:53 ----HDC---- C:\WINDOWS\$NtUninstallKB978251$
2010-03-07 08:03:45 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-03-07 08:03:37 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-03-07 08:03:26 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-03-07 08:03:21 ----A---- C:\WINDOWS\system32\tpinspm.dll
2010-03-07 08:03:21 ----A---- C:\WINDOWS\system32\ibmpmsvc.exe
2010-03-07 08:03:18 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-03-07 08:03:13 ----AD---- C:\drivers
2010-03-07 08:03:09 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-03-07 08:02:57 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-03-07 08:02:49 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2010-03-07 08:02:11 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-03-07 08:02:03 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2010-03-07 08:01:55 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2010-03-07 08:01:47 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2010-03-07 08:01:37 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-03-07 08:01:24 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-03-07 08:01:13 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2010-03-07 08:01:07 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2010-03-07 08:00:59 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2010-03-07 08:00:51 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-03-07 08:00:42 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2010-03-07 08:00:32 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2010-03-07 07:59:36 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-03-07 07:59:20 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2010-03-07 07:59:11 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-03-07 07:59:00 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$
2010-03-07 07:58:50 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-03-07 07:58:42 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-03-07 07:58:34 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-03-07 07:58:25 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2010-03-07 07:58:17 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2010-03-07 07:58:09 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2010-03-07 07:57:35 ----D---- C:\WINDOWS\ie7updates
2010-03-07 07:57:19 ----D---- C:\Program Files\MSXML 4.0
2010-03-07 07:57:08 ----HDC---- C:\WINDOWS\$NtUninstallKB979306$
2010-03-07 07:57:01 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-03-07 07:56:52 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-03-07 07:56:44 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-03-07 07:56:31 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-03-07 07:56:18 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
2010-03-07 07:50:57 ----D---- C:\WINDOWS\Prefetch
2010-03-07 07:42:33 ----D---- C:\WINDOWS\system32\CatRoot_bak
2010-03-07 07:34:57 ----D---- C:\WINDOWS\l2schemas
2010-03-07 07:34:56 ----D---- C:\WINDOWS\system32\cs
2010-03-07 07:34:56 ----D---- C:\WINDOWS\system32\bits
2010-03-07 07:30:56 ----D---- C:\WINDOWS\ServicePackFiles
2010-03-07 07:27:41 ----D---- C:\WINDOWS\network diagnostic
2010-03-07 07:23:29 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-03-07 06:44:37 ----D---- C:\WINDOWS\system32\PreInstall
2010-03-07 06:44:35 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2010-03-07 06:40:00 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2010-03-07 01:11:54 ----A---- C:\WINDOWS\system32\wmpns.dll
2010-03-07 01:11:47 ----D---- C:\Program Files\Windows Live Toolbar
2010-03-07 01:11:44 ----ASH---- C:\Documents and Settings\michal\Data aplikací\desktop.ini
2010-03-07 01:11:43 ----D---- C:\Documents and Settings\michal\Data aplikací\Lenovo
2010-03-07 01:11:43 ----D---- C:\Documents and Settings\michal\Data aplikací\InstallShield
2010-03-07 01:11:43 ----D---- C:\Documents and Settings\michal\Data aplikací\Identities
2010-03-07 01:11:43 ----D---- C:\Documents and Settings\michal\Data aplikací\Adobe
2010-03-07 01:11:42 ----SD---- C:\Documents and Settings\michal\Data aplikací\Microsoft
2010-03-07 01:05:08 ----SHD---- C:\RECYCLER
2010-03-07 01:05:07 ----A---- C:\WINDOWS\smscfg.ini
2010-03-07 00:59:50 ----A---- C:\WINDOWS\system32\capicom.dll
2010-03-07 00:59:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Symantec
2010-03-07 00:59:29 ----D---- C:\Program Files\Common Files\Symantec Shared
2010-03-07 00:58:40 ----RSHD---- C:\RRbackups
2010-03-07 00:55:03 ----A---- C:\WINDOWS\system32\pxinsi64.exe
2010-03-07 00:55:03 ----A---- C:\WINDOWS\system32\pxinsa64.exe
2010-03-07 00:55:03 ----A---- C:\WINDOWS\system32\pxcpyi64.exe
2010-03-07 00:55:03 ----A---- C:\WINDOWS\system32\pxcpya64.exe
2010-03-07 00:55:03 ----A---- C:\WINDOWS\system32\pxafs.dll
2010-03-07 00:54:38 ----D---- C:\SWSHARE
2010-03-07 00:54:16 ----AD---- C:\SWTOOLS
2010-03-07 00:54:02 ----A---- C:\WINDOWS\winhlp32.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\winhelp.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\xcopy.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wupdmgr.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wuauclt.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wscript.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wscntfy.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\write.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wpabaln.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wowexec.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wowdeb.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\winver.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\winspool.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\winmsd.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\winmine.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\winlogon.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\winchat.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\winhlp32.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wiaacmgr.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\wextract.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\w32tm.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\vwipxspx.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\vssvc.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\vssadmin.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\verifier.exe
2010-03-07 00:54:02 ----A---- C:\WINDOWS\system32\utilman.exe
2010-03-07 00:54:01 ----A---- C:\WINDOWS\system32\usrshuta.exe
2010-03-07 00:54:01 ----A---- C:\WINDOWS\system32\usrprbda.exe
2010-03-07 00:54:01 ----A---- C:\WINDOWS\system32\usrmlnka.exe
2010-03-07 00:54:01 ----A---- C:\WINDOWS\system32\userinit.exe
2010-03-07 00:54:01 ----A---- C:\WINDOWS\system32\user.exe
2010-03-07 00:54:01 ----A---- C:\WINDOWS\system32\ups.exe
2010-03-07 00:54:01 ----A---- C:\WINDOWS\system32\upnpcont.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\twunk_32.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\twunk_16.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\unlodctr.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\typeperf.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\tskill.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\tscon.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\tracert6.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\tracert.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\tracerpt.exe
2010-03-07 00:54:00 ----A---- C:\WINDOWS\system32\tourstart.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\TASKMAN.EXE
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\tlntsvr.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\tlntsess.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\tlntadmn.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\tftp.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\telnet.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\tcpsvcs.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\tcmsetup.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\taskmgr.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\taskman.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\tasklist.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\taskkill.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\systray.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\systeminfo.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\sysocmgr.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\syskey.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\sysedit.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\syncapp.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\svchost.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\subst.exe
2010-03-07 00:53:59 ----A---- C:\WINDOWS\system32\stimon.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sprestrt.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\spoolsv.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\spnpinst.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\spiisupd.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\spider.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sort.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sol.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sndvol32.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sndrec32.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\smss.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\smlogsvc.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\smbinst.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\skeys.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sigverif.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\schtasks.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\shutdown.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\shrpubw.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\shmgrate.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\share.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\shadow.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sfc.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\setver.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\setup.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sethc.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\services.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\secedit.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sdbinst.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\scardsvr.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\sc.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\savedump.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rwinsta.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\runonce.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rundll32.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\runas.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rtcshare.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rsvp.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rsopprov.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rsnotify.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rsmui.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rsmsink.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rsm.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rsh.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\routemon.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\route.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rexec.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\reset.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\replace.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\relog.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\regwiz.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\regsvr32.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\regini.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\regedt32.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\reg.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\redir.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\recover.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rdshost.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2010-03-07 00:53:58 ----A---- C:\WINDOWS\regedit.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\rdpclip.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\rcp.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\rcimlby.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\rasphone.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\rasdial.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\rasautou.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\qwinsta.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\qprocess.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\qappsrv.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\proxycfg.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\proquota.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\progman.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\print.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\powercfg.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\ping6.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\ping.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\perfmon.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\pentnt.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\pathping.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\packager.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\osuninst.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\osk.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\openfiles.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\odbcconf.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\odbcad32.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\nwscript.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\nw16.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\ntvdm.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\ntsd.exe
2010-03-07 00:53:57 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2010-03-07 00:53:55 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\ntbackup.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\nslookup.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\notepad.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\nlsfunc.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\netstat.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\netsh.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\netsetup.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\netdde.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\net1.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\net.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\nddeapir.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\nbtstat.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\narrator.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\system32\msswchx.exe
2010-03-07 00:53:54 ----A---- C:\WINDOWS\notepad.exe
2010-03-07 00:53:53 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\msiexec.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mshta.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mshearts.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\msg.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mscdexnt.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mrinfo.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mqtgsvc.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mqsvc.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mqbkup.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mpnotify.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mountvol.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mobsync.exe
2010-03-07 00:53:52 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-03-07 00:53:51 ----N---- C:\WINDOWS\system32\ie4uinit.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\mmc.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\migpwd.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\mem.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\makecab.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\magnify.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\lsass.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\lpr.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\lpq.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\logonui.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\logoff.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\logman.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\logagent.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\lodctr.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\locator.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\lnkstub.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\lights.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\label.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\krnl386.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\ipxroute.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\ipv6.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\ipsec6.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\ipconfig.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\imapi.exe
2010-03-07 00:53:51 ----A---- C:\WINDOWS\system32\iexpress.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\hostname.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\help.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\grpconv.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\gpupdate.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\gpresult.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\getmac.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\gdi.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\ftp.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\fsutil.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\fsquirt.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\freecell.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\forcedos.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\fontview.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\fltmc.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\fixmapi.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\finger.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\findstr.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\find.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\fc.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\system32\fastopen.exe
2010-03-07 00:53:50 ----A---- C:\WINDOWS\hh.exe
2010-03-07 00:53:49 ----A---- C:\WINDOWS\system32\extrac32.exe
2010-03-07 00:53:49 ----A---- C:\WINDOWS\system32\expand.exe
-----------------EOF-----------------
