VIRY.CZ

ComboFix vynechte.

Stáhněte OTC http://oldtimer.geekstogo.com/OTC.exe

• Spusťte.
• Klikněte na "CleanUp!". Potvrďte hlášky stiskem "Yes" (Bude následovat restart)

Urobené ..

Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe

• Spusťte program, poté klikněte na Run Scan
• Po dokončení, sem vložte logy OTL.Txt a Extras.txt

Kde nájdem tie logy ? mne to neukázalo nič .. žiadny log ..

Měly by být ve stejném umístění jako OTL.

Ale OTL som sitahol na plochu, takže to nemám v žiadnom adresári ..

V tom případě měl být log na ploše. Spusťte OTL podle návodu ještě jednou.

tu sú logy:

OTL logfile created on: 16.3.2010 20:01:26 - Run 1
OTL by OldTimer - Version 3.1.37.2 Folder = C:\Documents and Settings\PC\Plocha
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

511,00 Mb Total Physical Memory | 318,00 Mb Available Physical Memory | 62,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 77,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 43,95 Gb Total Space | 36,15 Gb Free Space | 82,25% Space Free | Partition Type: NTFS
Drive D: | 105,09 Gb Total Space | 35,91 Gb Free Space | 34,17% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC-02DF6AC05E44
Current User Name: PC
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010.03.16 15:21:59 | 000,556,032 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\PC\Plocha\OTL.exe
PRC - [2010.03.03 19:54:44 | 000,960,080 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
PRC - [2010.03.03 19:54:32 | 001,983,760 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
PRC - [2010.02.12 19:23:32 | 000,148,744 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe
PRC - [2009.02.06 14:23:36 | 000,727,720 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2009.02.06 14:23:12 | 002,021,400 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2004.08.17 14:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (SafeList) ==========

MOD - [2010.03.16 15:21:59 | 000,556,032 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\PC\Plocha\OTL.exe
MOD - [2009.07.12 01:12:06 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll
MOD - [2006.10.27 00:48:42 | 002,210,608 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
MOD - [2006.10.27 00:48:34 | 000,955,680 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll
MOD - [2006.10.27 00:48:02 | 000,222,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
MOD - [2006.10.27 00:47:40 | 000,022,808 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveNew.dll
MOD - [2006.10.26 13:40:34 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_6e805841\ATL80.dll
MOD - [2004.08.17 14:48:02 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
MOD - [2004.08.03 21:31:44 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsaenh.dll


========== Win32 Services (SafeList) ==========

SRV - [2010.03.03 19:54:44 | 000,960,080 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV - [2010.02.12 19:23:32 | 000,148,744 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe -- (CLPSLS)
SRV - [2009.02.06 14:27:06 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009.02.06 14:23:36 | 000,727,720 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.sk/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010.03.14 01:41:22 | 000,000,000 | ---D | M]


O1 HOSTS File: ([2010.03.14 20:26:57 | 000,000,698 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - Startup: C:\Documents and Settings\PC\Nabídka Start\Programy\Po spuštění\AutorunsDisabled [2010.03.14 01:41:08 | 000,000,000 | -H-D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.03.11 14:44:34 | 000,000,007 | -HS- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 14 Days ==========

[2010.03.16 15:21:51 | 000,556,032 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\PC\Plocha\OTL.exe
[2010.03.14 23:19:27 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\PC\Recent
[2010.03.14 21:21:37 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010.03.14 21:17:30 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010.03.14 20:59:11 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010.03.14 20:42:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010.03.14 14:48:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Local Settings\Data aplikací\Adobe
[2010.03.14 14:43:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Adobe
[2010.03.14 14:43:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010.03.14 14:43:29 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010.03.14 13:53:56 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010.03.14 13:27:07 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\PC\PrivacIE
[2010.03.14 13:25:37 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\PC\IETldCache
[2010.03.14 13:20:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2010.03.14 13:19:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2010.03.14 13:18:04 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2010.03.14 13:18:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cs-CZ
[2010.03.14 01:41:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\COMODO
[2010.03.14 01:41:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2010.03.14 01:41:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Comodo Downloader
[2010.03.14 01:41:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2010.03.14 01:41:08 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\PC\Nabídka Start\Programy\Po spuštění\AutorunsDisabled
[2010.03.14 01:41:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Data aplikací\WinRAR
[2010.03.14 01:40:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2010.03.14 01:40:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Apple Computer
[2010.03.14 01:40:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Local Settings\Data aplikací\Apple
[2010.03.14 01:40:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Local Settings\Data aplikací\WMTools Downloaded Files
[2010.03.14 01:40:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\LangSoft
[2010.03.14 01:40:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Apple
[2010.03.13 15:04:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2010.03.13 13:37:04 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010.03.13 13:37:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2010.03.12 21:53:10 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy
[2010.03.12 21:49:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010.03.12 20:12:59 | 000,000,000 | ---D | C] -- C:\Program Files\COMODO
[2010.03.12 19:40:24 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2010.03.12 19:40:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
[2010.03.12 18:42:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Dokumenty\Poznámkové bloky aplikace OneNote
[2010.03.12 17:04:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Local Settings\Data aplikací\Opera
[2010.03.12 17:04:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Data aplikací\Opera
[2010.03.12 17:03:48 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
[2010.03.12 13:40:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
[2010.03.11 18:56:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2010.03.11 16:31:58 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2010.03.11 15:25:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Dokumenty\The KMPlayer
[2010.03.11 15:25:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Data aplikací\AIMP
[2010.03.11 15:24:24 | 000,000,000 | ---D | C] -- C:\Program Files\AIMP2
[2010.03.11 15:22:41 | 000,000,000 | ---D | C] -- C:\Program Files\The KMPlayer
[2010.03.11 14:51:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Sun
[2010.03.11 14:51:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010.03.11 14:51:11 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010.03.11 14:50:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Data aplikací\Sun
[2010.03.11 14:34:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ESET
[2010.03.11 14:17:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Local Settings\Data aplikací\Apple Computer
[2010.03.11 14:17:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Data aplikací\Apple Computer
[2010.03.11 14:17:42 | 000,000,000 | ---D | C] -- C:\Program Files\Safari
[2010.03.11 14:17:32 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2010.03.11 14:17:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2010.03.11 14:17:13 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2010.03.11 14:10:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Local Settings\Data aplikací\ESET
[2010.03.11 14:08:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Data aplikací\LangSoft
[2010.03.11 13:59:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\PC\Dokumenty\Filmy
[2010.03.10 13:25:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2010.03.10 13:18:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Data aplikací\Macromedia
[2010.03.10 13:18:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Data aplikací\Adobe
[2010.03.10 13:10:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2010.03.10 13:10:29 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2010.03.10 13:10:05 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
[2010.03.10 13:08:35 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\PC\UserData
[2010.03.10 13:06:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Yahoo! Companion
[2010.03.10 13:06:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Local Settings\Data aplikací\Ahead
[2010.03.10 13:04:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Data aplikací\Ahead
[2010.03.10 13:03:50 | 000,000,000 | ---D | C] -- C:\Program Files\Nero
[2010.03.10 13:03:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead
[2010.03.10 13:03:19 | 000,000,000 | ---D | C] -- C:\Program Files\Yahoo!
[2010.03.10 13:01:36 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2010.03.10 13:01:29 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2010.03.10 13:01:14 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2010.03.10 13:01:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2010.03.10 12:56:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2010.03.10 12:55:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Local Settings\Data aplikací\Microsoft Help
[2010.03.10 12:55:43 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010.03.10 12:55:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
[2010.03.10 12:31:53 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2010.03.10 12:31:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2010.03.10 12:31:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2010.03.10 12:31:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2010.03.10 12:31:49 | 000,000,000 | R--D | C] -- C:\Program Files
[2010.03.10 12:31:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2010.03.10 12:31:23 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Nabídka Start
[2010.03.10 12:31:23 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty
[2010.03.10 12:31:23 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Šablony
[2010.03.10 12:31:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Plocha
[2010.03.10 12:31:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Oblíbené položky
[2010.03.10 12:31:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2010.03.10 12:31:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2010.03.10 12:31:04 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Data aplikací\Microsoft
[2010.03.10 12:31:04 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Data aplikací
[2010.03.10 12:30:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2010.03.10 12:30:43 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010.03.10 12:25:58 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2010.03.10 12:25:58 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2010.03.10 12:25:58 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2010.03.10 12:25:58 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1029
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2010.03.10 12:25:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2010.03.10 12:02:52 | 000,000,000 | ---D | C] -- C:\Program Files\VIAudioi
[2010.03.10 11:59:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview
[2010.03.10 11:54:44 | 000,000,000 | ---D | C] -- C:\Program Files\InstallShield Installation Information
[2010.03.10 11:52:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2010.03.10 11:51:49 | 000,000,000 | ---D | C] -- C:\Program Files\VIA
[2010.03.10 11:51:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2010.03.10 11:48:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2010.03.10 11:46:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Data aplikací\Identities
[2010.03.10 11:46:00 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2010.03.10 11:45:58 | 000,000,000 | R--D | C] -- C:\Documents and Settings\PC\Dokumenty\Obrázky
[2010.03.10 11:45:58 | 000,000,000 | R--D | C] -- C:\Documents and Settings\PC\Dokumenty\Hudba
[2010.03.10 11:45:54 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\PC\Cookies
[2010.03.10 11:45:53 | 000,000,000 | --SD | C] -- C:\Documents and Settings\PC\Data aplikací\Microsoft
[2010.03.10 11:45:53 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\PC\SendTo
[2010.03.10 11:45:53 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\PC\Data aplikací
[2010.03.10 11:45:53 | 000,000,000 | R--D | C] -- C:\Documents and Settings\PC\Oblíbené položky
[2010.03.10 11:45:53 | 000,000,000 | R--D | C] -- C:\Documents and Settings\PC\Nabídka Start
[2010.03.10 11:45:53 | 000,000,000 | R--D | C] -- C:\Documents and Settings\PC\Dokumenty
[2010.03.10 11:45:53 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\PC\Šablony
[2010.03.10 11:45:53 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\PC\Okolní tiskárny
[2010.03.10 11:45:53 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\PC\Okolní síť
[2010.03.10 11:45:53 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\PC\Local Settings
[2010.03.10 11:45:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Plocha
[2010.03.10 11:45:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PC\Local Settings\Data aplikací\Microsoft
[2010.03.10 11:45:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2010.03.10 11:45:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010.03.10 11:45:21 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2010.03.10 11:45:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Microsoft
[2010.03.10 11:42:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Microsoft
[2010.03.10 11:41:23 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2010.03.10 11:41:23 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2010.03.10 11:41:22 | 000,026,624 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2010.03.10 11:40:28 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2010.03.10 11:40:28 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2010.03.10 11:40:28 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2010.03.10 11:40:17 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2010.03.10 11:39:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2010.03.10 11:39:49 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2010.03.10 11:39:49 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2010.03.10 11:39:27 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Data aplikací\Microsoft
[2010.03.10 11:39:27 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Data aplikací\Microsoft
[2010.03.10 11:38:38 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2010.03.10 11:38:30 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2010.03.10 11:38:30 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2010.03.10 11:38:20 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2010.03.10 11:38:17 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services
[2010.03.10 11:38:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2010.03.10 11:37:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2010.03.10 11:37:34 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2010.03.10 11:37:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2010.03.10 11:37:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2010.03.10 11:37:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2010.03.10 11:37:23 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2010.03.10 11:37:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2010.03.10 11:37:12 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2010.03.10 11:37:10 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2010.03.10 11:37:04 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2010.03.10 11:37:03 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2010.03.10 11:37:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Obrázky
[2010.03.10 11:36:32 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2010.03.10 11:36:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2010.03.10 11:36:19 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Hudba
[2010.03.10 11:36:19 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2010.03.10 11:36:15 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2010.03.10 11:36:12 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2010.03.10 11:35:47 | 000,282,112 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe
[2010.03.10 11:35:46 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2010.03.10 11:35:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2010.03.10 11:35:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2010.03.10 11:35:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Filmy
[2010.03.03 19:54:42 | 000,276,648 | ---- | C] (COMODO) -- C:\WINDOWS\System32\guard32.dll
[2010.03.03 19:54:16 | 000,086,720 | ---- | C] (COMODO) -- C:\WINDOWS\System32\drivers\inspect.sys
[2010.03.03 19:54:14 | 000,214,056 | ---- | C] (COMODO) -- C:\WINDOWS\System32\drivers\cmdGuard.sys
[2010.03.03 19:54:14 | 000,025,160 | ---- | C] (COMODO) -- C:\WINDOWS\System32\drivers\cmdhlp.sys
[2010.03.03 19:54:12 | 000,015,376 | ---- | C] (COMODO) -- C:\WINDOWS\System32\drivers\cmderd.sys
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 14 Days ==========

[2010.03.16 19:39:48 | 000,002,187 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Safari.lnk
[2010.03.16 18:53:59 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.03.16 18:53:55 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.03.16 17:04:01 | 006,291,456 | -H-- | M] () -- C:\Documents and Settings\PC\NTUSER.DAT
[2010.03.16 17:04:01 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\PC\ntuser.ini
[2010.03.16 17:03:50 | 004,827,652 | -H-- | M] () -- C:\Documents and Settings\PC\Local Settings\Data aplikací\IconCache.db
[2010.03.16 15:21:59 | 000,556,032 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\PC\Plocha\OTL.exe
[2010.03.15 19:49:14 | 000,068,456 | ---- | M] () -- C:\Documents and Settings\PC\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
[2010.03.15 19:42:47 | 000,266,208 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.03.15 13:38:53 | 000,016,384 | ---- | M] () -- C:\Documents and Settings\PC\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.03.15 13:38:53 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.03.14 21:04:08 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010.03.14 20:59:14 | 000,000,281 | RHS- | M] () -- C:\boot.ini
[2010.03.14 20:26:57 | 000,000,698 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010.03.14 17:44:11 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.03.14 15:00:08 | 008,626,906 | ---- | M] () -- C:\Documents and Settings\PC\Plocha\Maturity_2009_ENG_B1R_03.mp3
[2010.03.14 14:59:54 | 006,677,542 | ---- | M] () -- C:\Documents and Settings\PC\Plocha\Maturity_2009_ENG_B1R_02.mp3
[2010.03.14 14:59:46 | 007,377,723 | ---- | M] () -- C:\Documents and Settings\PC\Plocha\Maturity_2009_ENG_B1R_01.mp3
[2010.03.14 14:59:35 | 000,036,018 | ---- | M] () -- C:\Documents and Settings\PC\Plocha\AJB1g.pdf
[2010.03.14 14:58:49 | 000,088,655 | ---- | M] () -- C:\Documents and Settings\PC\Plocha\AJB1.pdf
[2010.03.14 14:58:03 | 000,486,295 | ---- | M] () -- C:\Documents and Settings\PC\Plocha\AJ-9140.pdf
[2010.03.14 14:50:13 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.03.14 14:42:01 | 000,954,585 | ---- | M] () -- C:\Documents and Settings\PC\Plocha\SJaL-1840.pdf
[2010.03.13 13:20:09 | 000,001,670 | ---- | M] () -- C:\WINDOWS\WINCMD.INI
[2010.03.13 11:36:57 | 000,001,653 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\COMODO Firewall.lnk
[2010.03.12 21:55:02 | 000,000,458 | RHS- | M] () -- C:\Documents and Settings\PC\ntuser.pol
[2010.03.12 17:03:54 | 000,000,592 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Opera.lnk
[2010.03.11 22:37:02 | 000,002,477 | ---- | M] () -- C:\Documents and Settings\PC\Plocha\Microsoft Office Excel 2007.lnk
[2010.03.11 20:28:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2010.03.11 15:53:01 | 000,043,062 | ---- | M] () -- C:\Documents and Settings\PC\Dokumenty\UserImages.bmp
[2010.03.11 15:23:00 | 000,000,710 | ---- | M] () -- C:\Documents and Settings\PC\Plocha\KMPlayer.lnk
[2010.03.11 14:44:34 | 000,000,007 | -HS- | M] () -- C:\AUTOEXEC.BAT
[2010.03.11 14:18:07 | 000,054,376 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat
[2010.03.11 14:11:18 | 000,000,092 | ---- | M] () -- C:\Documents and Settings\PC\Local Settings\Data aplikací\BronNetDomList.bat
[2010.03.11 13:59:01 | 000,000,143 | ---- | M] () -- C:\Documents and Settings\PC\default.pls
[2010.03.11 13:56:21 | 000,002,563 | ---- | M] () -- C:\Documents and Settings\PC\Plocha\Microsoft Office Word 2007.lnk
[2010.03.10 13:42:55 | 000,012,407 | ---- | M] () -- C:\Documents and Settings\PC\Local Settings\Data aplikací\Bron.tok.A12.em.bin
[2010.03.10 13:35:11 | 000,714,754 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.03.10 13:35:11 | 000,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.03.10 13:35:11 | 000,309,716 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.03.10 13:35:11 | 000,046,016 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.03.10 13:35:11 | 000,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.03.10 13:14:19 | 000,012,407 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100312-194314.backup
[2010.03.10 13:04:50 | 000,002,335 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Nero StartSmart.lnk
[2010.03.10 13:04:50 | 000,002,245 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Nero Home.lnk
[2010.03.10 12:58:03 | 000,000,552 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.03.10 12:02:59 | 000,000,765 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Vinyl Deck.lnk
[2010.03.10 11:59:29 | 000,163,353 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010.03.10 11:46:19 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\PC\Plocha\Internet.lnk
[2010.03.10 11:42:50 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2010.03.10 11:41:52 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010.03.10 11:39:30 | 000,002,504 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010.03.10 11:39:30 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010.03.10 11:39:30 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010.03.10 11:39:30 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini
[2010.03.10 11:39:30 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010.03.10 11:39:27 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010.03.10 11:39:26 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010.03.10 11:39:26 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010.03.10 11:39:17 | 000,004,249 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010.03.10 11:38:30 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010.03.10 11:38:30 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010.03.10 11:38:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010.03.10 11:38:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2010.03.10 11:38:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010.03.10 11:38:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010.03.10 11:38:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010.03.10 11:38:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010.03.10 11:36:40 | 000,021,812 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010.03.10 11:36:30 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini
[2010.03.10 11:36:30 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini
[2010.03.03 19:54:42 | 000,276,648 | ---- | M] (COMODO) -- C:\WINDOWS\System32\guard32.dll
[2010.03.03 19:54:16 | 000,086,720 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\inspect.sys
[2010.03.03 19:54:14 | 000,214,056 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\cmdGuard.sys
[2010.03.03 19:54:14 | 000,025,160 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\cmdhlp.sys
[2010.03.03 19:54:12 | 000,015,376 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\cmderd.sys
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.03.14 20:42:39 | 000,261,632 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010.03.14 20:42:39 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010.03.14 14:59:35 | 000,036,018 | ---- | C] () -- C:\Documents and Settings\PC\Plocha\AJB1g.pdf
[2010.03.14 14:59:12 | 008,626,906 | ---- | C] () -- C:\Documents and Settings\PC\Plocha\Maturity_2009_ENG_B1R_03.mp3
[2010.03.14 14:59:05 | 006,677,542 | ---- | C] () -- C:\Documents and Settings\PC\Plocha\Maturity_2009_ENG_B1R_02.mp3
[2010.03.14 14:58:58 | 007,377,723 | ---- | C] () -- C:\Documents and Settings\PC\Plocha\Maturity_2009_ENG_B1R_01.mp3
[2010.03.14 14:58:49 | 000,088,655 | ---- | C] () -- C:\Documents and Settings\PC\Plocha\AJB1.pdf
[2010.03.14 14:58:03 | 000,486,295 | ---- | C] () -- C:\Documents and Settings\PC\Plocha\AJ-9140.pdf
[2010.03.14 14:44:02 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.03.14 14:41:58 | 000,954,585 | ---- | C] () -- C:\Documents and Settings\PC\Plocha\SJaL-1840.pdf
[2010.03.13 11:36:57 | 000,001,653 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\COMODO Firewall.lnk
[2010.03.12 21:54:26 | 000,000,458 | RHS- | C] () -- C:\Documents and Settings\PC\ntuser.pol
[2010.03.12 19:43:14 | 000,012,407 | ---- | C] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100312-194314.backup
[2010.03.12 17:03:54 | 000,000,592 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Opera.lnk
[2010.03.11 20:28:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010.03.11 15:53:01 | 000,043,062 | ---- | C] () -- C:\Documents and Settings\PC\Dokumenty\UserImages.bmp
[2010.03.11 15:23:00 | 000,000,710 | ---- | C] () -- C:\Documents and Settings\PC\Plocha\KMPlayer.lnk
[2010.03.11 14:18:07 | 000,054,376 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2010.03.11 14:17:48 | 000,002,187 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Safari.lnk
[2010.03.11 14:11:18 | 000,000,092 | ---- | C] () -- C:\Documents and Settings\PC\Local Settings\Data aplikací\BronNetDomList.bat
[2010.03.11 14:08:07 | 000,001,670 | ---- | C] () -- C:\WINDOWS\WINCMD.INI
[2010.03.11 13:59:01 | 000,000,143 | ---- | C] () -- C:\Documents and Settings\PC\default.pls
[2010.03.11 13:57:18 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010.03.11 13:57:17 | 000,016,384 | ---- | C] () -- C:\Documents and Settings\PC\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.03.10 13:42:55 | 000,012,407 | ---- | C] () -- C:\Documents and Settings\PC\Local Settings\Data aplikací\Bron.tok.A12.em.bin
[2010.03.10 13:14:19 | 000,012,407 | ---- | C] () -- C:\Documents and Settings\PC\Local Settings\Data aplikací\ListHost12.txt
[2010.03.10 13:14:19 | 000,000,698 | R--- | C] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010.03.10 13:06:36 | 000,002,563 | ---- | C] () -- C:\Documents and Settings\PC\Plocha\Microsoft Office Word 2007.lnk
[2010.03.10 13:06:32 | 000,002,477 | ---- | C] () -- C:\Documents and Settings\PC\Plocha\Microsoft Office Excel 2007.lnk
[2010.03.10 13:04:50 | 000,002,335 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Nero StartSmart.lnk
[2010.03.10 13:04:50 | 000,002,245 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Nero Home.lnk
[2010.03.10 12:31:51 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2010.03.10 12:31:51 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2010.03.10 12:31:50 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2010.03.10 12:31:50 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2010.03.10 12:31:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls
[2010.03.10 12:31:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls
[2010.03.10 12:31:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls
[2010.03.10 12:31:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls
[2010.03.10 12:31:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls
[2010.03.10 12:31:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls
[2010.03.10 12:31:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls
[2010.03.10 12:31:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls
[2010.03.10 12:31:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls
[2010.03.10 12:31:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS
[2010.03.10 12:31:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls
[2010.03.10 12:31:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls
[2010.03.10 12:31:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls
[2010.03.10 12:31:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls
[2010.03.10 12:31:42 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls
[2010.03.10 12:31:42 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls
[2010.03.10 12:31:42 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls
[2010.03.10 12:31:42 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls
[2010.03.10 12:31:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls
[2010.03.10 12:31:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls
[2010.03.10 12:31:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls
[2010.03.10 12:31:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS
[2010.03.10 12:31:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls
[2010.03.10 12:31:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls
[2010.03.10 12:31:40 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls
[2010.03.10 12:31:40 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls
[2010.03.10 12:31:40 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls
[2010.03.10 12:31:40 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls
[2010.03.10 12:31:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls
[2010.03.10 12:31:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS
[2010.03.10 12:31:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls
[2010.03.10 12:31:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls
[2010.03.10 12:31:36 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls
[2010.03.10 12:31:36 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls
[2010.03.10 12:31:36 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls
[2010.03.10 12:31:36 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls
[2010.03.10 12:31:36 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls
[2010.03.10 12:31:36 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls
[2010.03.10 12:31:33 | 000,001,592 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2010.03.10 12:31:21 | 000,809,394 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2010.03.10 12:31:21 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2010.03.10 12:31:21 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2010.03.10 12:31:21 | 000,102,826 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2010.03.10 12:31:21 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2010.03.10 12:31:21 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2010.03.10 12:31:21 | 000,030,983 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2010.03.10 12:31:21 | 000,014,043 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2010.03.10 12:31:21 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2010.03.10 12:31:21 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2010.03.10 12:31:21 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2010.03.10 12:31:21 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2010.03.10 12:31:21 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2010.03.10 12:31:21 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2010.03.10 12:31:20 | 001,896,102 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2010.03.10 12:31:20 | 001,014,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2010.03.10 12:31:20 | 000,621,080 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2010.03.10 12:30:43 | 000,266,208 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.03.10 12:29:46 | 000,000,281 | RHS- | C] () -- C:\boot.ini
[2010.03.10 12:29:43 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2010.03.10 12:02:59 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\UnAudioNT.dll
[2010.03.10 12:02:59 | 000,000,765 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Vinyl Deck.lnk
[2010.03.10 11:59:18 | 000,163,353 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml
[2010.03.10 11:59:17 | 000,017,737 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu
[2010.03.10 11:46:19 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\PC\Plocha\Internet.lnk
[2010.03.10 11:45:55 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\PC\ntuser.ini
[2010.03.10 11:45:53 | 006,291,456 | -H-- | C] () -- C:\Documents and Settings\PC\NTUSER.DAT
[2010.03.10 11:42:50 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2010.03.10 11:41:52 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010.03.10 11:41:47 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls
[2010.03.10 11:41:18 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls
[2010.03.10 11:41:18 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls
[2010.03.10 11:41:16 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2010.03.10 11:41:00 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls
[2010.03.10 11:40:59 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2010.03.10 11:40:53 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2010.03.10 11:40:52 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2010.03.10 11:40:50 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2010.03.10 11:40:39 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2010.03.10 11:40:34 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2010.03.10 11:40:30 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll
[2010.03.10 11:40:19 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2010.03.10 11:40:16 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls
[2010.03.10 11:40:16 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls
[2010.03.10 11:40:16 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls
[2010.03.10 11:40:16 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls
[2010.03.10 11:40:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls
[2010.03.10 11:40:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls
[2010.03.10 11:40:15 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls
[2010.03.10 11:40:15 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls
[2010.03.10 11:40:15 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls
[2010.03.10 11:40:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls
[2010.03.10 11:40:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls
[2010.03.10 11:40:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls
[2010.03.10 11:40:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls
[2010.03.10 11:40:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls
[2010.03.10 11:40:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls
[2010.03.10 11:40:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls
[2010.03.10 11:40:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls
[2010.03.10 11:40:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls
[2010.03.10 11:40:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls
[2010.03.10 11:40:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls
[2010.03.10 11:40:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls
[2010.03.10 11:40:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls
[2010.03.10 11:40:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls
[2010.03.10 11:40:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls
[2010.03.10 11:40:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls
[2010.03.10 11:40:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls
[2010.03.10 11:40:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls
[2010.03.10 11:40:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls
[2010.03.10 11:40:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls
[2010.03.10 11:40:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls
[2010.03.10 11:40:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls
[2010.03.10 11:40:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls
[2010.03.10 11:40:13 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls
[2010.03.10 11:40:13 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls
[2010.03.10 11:40:13 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls
[2010.03.10 11:40:13 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls
[2010.03.10 11:40:13 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls
[2010.03.10 11:40:13 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls
[2010.03.10 11:40:13 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls
[2010.03.10 11:40:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls
[2010.03.10 11:40:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls
[2010.03.10 11:40:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls
[2010.03.10 11:40:12 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls
[2010.03.10 11:40:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls
[2010.03.10 11:40:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls
[2010.03.10 11:40:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls
[2010.03.10 11:40:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls
[2010.03.10 11:40:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls
[2010.03.10 11:40:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls
[2010.03.10 11:40:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls
[2010.03.10 11:40:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls
[2010.03.10 11:40:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls
[2010.03.10 11:40:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls
[2010.03.10 11:40:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls
[2010.03.10 11:40:11 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls
[2010.03.10 11:40:11 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls
[2010.03.10 11:40:11 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls
[2010.03.10 11:40:11 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls
[2010.03.10 11:40:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls
[2010.03.10 11:40:10 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls
[2010.03.10 11:39:30 | 000,002,504 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2010.03.10 11:39:30 | 000,000,007 | -HS- | C] () -- C:\AUTOEXEC.BAT
[2010.03.10 11:39:30 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010.03.10 11:39:30 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010.03.10 11:39:30 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2010.03.10 11:39:26 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2010.03.10 11:39:26 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2010.03.10 11:39:25 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2010.03.10 11:38:30 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010.03.10 11:38:30 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010.03.10 11:38:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010.03.10 11:38:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest
[2010.03.10 11:38:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010.03.10 11:38:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010.03.10 11:38:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010.03.10 11:38:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010.03.10 11:38:09 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2010.03.10 11:37:44 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2010.03.10 11:37:44 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2010.03.10 11:37:38 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2010.03.10 11:37:27 | 000,004,639 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.exe
[2010.03.10 11:37:17 | 000,378,368 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll
[2010.03.10 11:36:40 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010.03.10 11:35:58 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prérijní vítr.bmp
[2010.03.10 11:35:58 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Omítka Santa Fe.bmp
[2010.03.10 11:35:58 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Řeka Sumida.bmp
[2010.03.10 11:35:58 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp
[2010.03.10 11:35:58 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp
[2010.03.10 11:35:57 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce
[2010.03.10 11:35:57 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Mýdlové bubliny.bmp
[2010.03.10 11:35:57 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Zelený kámen.bmp
[2010.03.10 11:35:57 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybách.bmp
[2010.03.10 11:35:57 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Zrnko kávy.bmp
[2010.03.10 11:35:57 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce
[2010.03.10 11:35:57 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Textura peří.bmp
[2010.03.10 11:35:57 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce
[2010.03.10 11:35:57 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce
[2010.03.10 11:35:57 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Modrá krajka 16.bmp
[2010.03.10 11:35:56 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce
[2010.03.10 11:35:56 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce
[2010.03.10 11:35:56 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce
[2010.03.10 11:35:56 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce
[2010.03.10 11:35:55 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2010.03.10 11:35:55 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2010.03.10 11:35:54 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2010.03.10 11:35:48 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2007.12.05 00:41:00 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2007.12.05 00:41:00 | 001,474,560 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2007.12.05 00:41:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2007.12.05 00:41:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2007.12.05 00:41:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2004.07.17 10:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys

========== LOP Check ==========

[2010.03.14 01:41:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2010.03.14 01:41:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2010.03.14 01:40:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\LangSoft
[2010.03.15 17:48:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PC\Data aplikací\AIMP
[2010.03.14 01:40:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PC\Data aplikací\LangSoft
[2010.03.12 17:04:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PC\Data aplikací\Opera

========== Purity Check ==========


< End of report >

OTL Extras logfile created on: 16.3.2010 20:01:26 - Run 1
OTL by OldTimer - Version 3.1.37.2 Folder = C:\Documents and Settings\PC\Plocha
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

511,00 Mb Total Physical Memory | 318,00 Mb Available Physical Memory | 62,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 77,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 43,95 Gb Total Space | 36,15 Gb Free Space | 82,25% Space Free | Partition Type: NTFS
Drive D: | 105,09 Gb Total Space | 35,91 Gb Free Space | 34,17% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC-02DF6AC05E44
Current User Name: PC
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = SafariHTML] -- C:\Program Files\Safari\Safari.exe (Apple Inc.)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{022F6097-A053-4B1B-BE50-3AADE4116B92}" = Opera 10.50
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{26A24AE4-039D-4CA4-87B4-2F83216018FF}" = Java(TM) 6 Update 18
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{377B2121-65F6-4C5F-998F-5284DEF41F3E}" = COMODO livePCsupport
"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.1
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{BBC8862B-BFC8-475D-9BB8-93289703BD33}" = ESET NOD32 Antivirus
"{CC6B1BB4-4E06-4A5B-A166-B371B551324B}" = COMODO Internet Security
"{D6E4E5D6-7693-4BB4-95BA-21F38FAFEE90}" = Safari
"{EFBC91F4-A6CD-0EE1-0121-210DCDA11029}" = Nero 7 Demo
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AIMP2" = AIMP2
"CCleaner" = CCleaner
"ENTERPRISE" = Microsoft Office Enterprise 2007
"HijackThis" = HijackThis 2.0.2
"ie8" = Windows Internet Explorer 8
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platforma Ovladače zařízení
"NVIDIA Drivers" = NVIDIA Drivers
"The KMPlayer" = The KMPlayer (remove only)
"VIA Audio Driver Setup Program" = VIA Audio Driver Setup Program
"WinRAR archiver" = WinRAR archivátor
"Yahoo! Companion" = Yahoo! Toolbar
"Yahoo! Toolbar" = Yahoo! Toolbar

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 14.3.2010 15:51:23 | Computer Name = PC-02DF6AC05E44 | Source = Winlogon | ID = 1015
Description = Důležitý systémový proces C:\WINDOWS\system32\lsass.exe nebyl úspěšný,
stavový kód: c0000005. Počítač je nyní nutné restartovat.

Error - 15.3.2010 3:02:27 | Computer Name = PC-02DF6AC05E44 | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 8.0.6001.18702, chybující modul
mshtml.dll, verze 8.0.6001.18876, adresa chyby 0x000f9b4b.

Error - 15.3.2010 3:16:43 | Computer Name = PC-02DF6AC05E44 | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 8.0.6001.18702, chybující modul
mshtml.dll, verze 8.0.6001.18876, adresa chyby 0x0017261c.

Error - 15.3.2010 3:18:30 | Computer Name = | Source = EventSystem | ID = 4609
Description = Systém událostí modelu COM+ zjistil při vnitřním zpracovávání chybný
návratový kód. Hodnota HRESULT byla 80004002 z řádku 44 v d:\comxp_sp2\com\com1x\src\events\tier1\eventsystemobj.cpp.Obraťte
se na služby odborné pomoci společnosti Microsoft a informujte je o této chyb

Error - 15.3.2010 3:18:30 | Computer Name = | Source = EventSystem | ID = 4609
Description = Systém událostí modelu COM+ zjistil při vnitřním zpracovávání chybný
návratový kód. Hodnota HRESULT byla 80004002 z řádku 44 v d:\comxp_sp2\com\com1x\src\events\tier1\eventsystemobj.cpp.Obraťte
se na služby odborné pomoci společnosti Microsoft a informujte je o této chyb

Error - 15.3.2010 3:18:30 | Computer Name = | Source = VSS | ID = 8193
Description = Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance
došlo k neočekávané chybě. hr= 0x80040206.

Error - 15.3.2010 3:18:30 | Computer Name = | Source = PerfDisk | ID = 1000
Description = Nelze otevřít objekt výkonu disku. Vrácený stavový kód má datový typ
DWORD 0.

Error - 15.3.2010 3:18:30 | Computer Name = | Source = SENS | ID = 0
Description =

Error - 15.3.2010 3:18:30 | Computer Name = | Source = PerfDisk | ID = 1000
Description = Nelze otevřít objekt výkonu disku. Vrácený stavový kód má datový typ
DWORD 0.

Error - 15.3.2010 3:25:30 | Computer Name = PC-02DF6AC05E44 | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 8.0.6001.18702, chybující modul
mshtml.dll, verze 8.0.6001.18876, adresa chyby 0x0017267e.

[ System Events ]
Error - 14.3.2010 16:38:04 | Computer Name = PC-02DF6AC05E44 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby netman
s argumenty za účelem spuštění serveru: {BA126AE5-2166-11D1-B1D0-00805FC1270E}

Error - 14.3.2010 16:38:14 | Computer Name = PC-02DF6AC05E44 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 14.3.2010 16:38:32 | Computer Name = PC-02DF6AC05E44 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby netman
s argumenty za účelem spuštění serveru: {BA126AE5-2166-11D1-B1D0-00805FC1270E}

Error - 14.3.2010 16:39:13 | Computer Name = PC-02DF6AC05E44 | Source = Service Control Manager | ID = 7001
Description = Služba Klient DHCP závisí na službě Rozhraní NetBios nad protokolem
TCP/IP, která neuspěla při spuštění v důsledku následující chyby: %%31

Error - 14.3.2010 16:39:13 | Computer Name = PC-02DF6AC05E44 | Source = Service Control Manager | ID = 7001
Description = Služba Klient DNS závisí na službě Ovladač protokolu TCP/IP, která
neuspěla při spuštění v důsledku následující chyby: %%31

Error - 14.3.2010 16:39:13 | Computer Name = PC-02DF6AC05E44 | Source = Service Control Manager | ID = 7001
Description = Služba Podpora rozhraní NetBIOS nad protokolem TCP/IP závisí na službě
AFD, která neuspěla při spuštění v důsledku následující chyby: %%31

Error - 14.3.2010 16:39:13 | Computer Name = PC-02DF6AC05E44 | Source = Service Control Manager | ID = 7001
Description = Služba Bonjour Service závisí na službě Ovladač protokolu TCP/IP,
která neuspěla při spuštění v důsledku následující chyby: %%31

Error - 14.3.2010 16:39:13 | Computer Name = PC-02DF6AC05E44 | Source = Service Control Manager | ID = 7001
Description = Služba Služby IPSEC závisí na službě Ovladač IPSEC, která neuspěla
při spuštění v důsledku následující chyby: %%31

Error - 14.3.2010 16:39:13 | Computer Name = PC-02DF6AC05E44 | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: AFD cmdGuard cmdHlp ehdrv epfwtdir Fips intelppm IPSec MRxSmb NetBIOS NetBT
RasAcd
Rdbss
Tcpip

Error - 14.3.2010 16:40:29 | Computer Name = PC-02DF6AC05E44 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}


< End of report >

Odinstalujte Spybot - Search & Destroy.


Stáhněte MBAM http://www.viry.cz/forum/viewtopic.php?f=29&t=67229

• Podle návodu v odkazu nainstalujte, poté dejte úplný sken.
• Nic nemažte MBAM má občas falešné detekce a mohl by smazat např. systémové soubory.
• Log vložte sem.

tu je ten log:

Malwarebytes' Anti-Malware 1.44
Verze databáze: 3876
Windows 5.1.2600 Service Pack 2
Internet Explorer 8.0.6001.18702

18.3.2010 13:04:48
mbam-log-2010-03-18 (13-04-48).txt

Typ kontroly: Kompletní kontrola (C:\|D:\|)
Zkontrolované objekty: 196199
Uplynulý čas: 26 minute(s), 0 second(s)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované adresáře: 0
Infikované soubory: 41

Infikované procesy v paměti:
(Nebyly nalezeny žádné škodlivé položky)

Infikované moduly v paměti:
(Nebyly nalezeny žádné škodlivé položky)

Infikované klíče registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované hodnoty registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované datové položky registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované adresáře:
(Nebyly nalezeny žádné škodlivé položky)

Infikované soubory:
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP10\A0000825.com (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP10\A0000826.scr (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP11\A0000901.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP11\A0000902.com (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP11\A0000903.scr (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP12\A0000905.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP12\A0000906.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP12\A0000907.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP12\A0000908.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP12\A0000909.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP12\A0000910.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP13\A0000923.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP13\A0000924.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP13\A0000926.pif (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP13\A0000927.com (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP13\A0002007.scr (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP7\A0000671.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP7\A0000669.com (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP7\A0000670.scr (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP7\A0000672.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP7\A0000673.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP7\A0000680.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP7\A0000681.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP7\A0000682.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP7\A0000683.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP7\A0000684.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP7\A0000685.com (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP7\A0000686.scr (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP7\A0000687.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP7\A0000688.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP7\A0000691.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP8\A0000738.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP8\A0000739.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP8\A0000740.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP8\A0000741.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP8\A0000742.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP8\A0000744.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP8\A0000745.exe (Worm.Brontok) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{90CEAF0A-E5F9-45D8-B570-06B817AA1307}\RP8\A0000746.exe (Worm.Brontok) -> Quarantined and deleted successfully.
D:\System Volume Information\_restore{8B728B8E-C2EF-4A6C-AC1B-DEF3400E5A22}\RP13\A0008224.exe (Trojan.Bancos) -> Quarantined and deleted successfully.
D:\Documents and Settings\user\Plocha\Programy\Vgs1\vgsmod141.exe (Trojan.Bancos) -> Quarantined and deleted successfully.

Jak to vypadá s PC

S PC to vypadá tak isto ako na začiatku. Je možné že reštartovanie, a ostatné dôvody čo som vymenoval na začiatku spôsobuje zdroj ? alebo prehrievanie CPU ? ja si myslím, že na 80% to bude zdrojom .. aký máte na to názor vy ?

Je to možné, logy vypadají čisté. Vyzkoušejte jiný zdroj a napište jak to dopadlo.

PC naformátovaný, nový windows, takže posielam log, a ak niečo chýba, tak povedzte .. firewall aj AV mám eset smart security, stačí to ? A ešte mám dotaz v logu na slovo RUN pri O4, nechápem prečo tam je CTFMON.EXE tak veľa ? Ďakujem

tu je log:

Logfile of random's system information tool 1.06 (written by random/random)
Run by PC at 2010-03-20 11:26:56
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 43 GB (86%) free of 50 GB
Total RAM: 511 MB (32% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:27:09, on 20.3.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\VIAudioi\SBADeck\ADeck.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Flock\flock.exe
C:\Program Files\AIMP2\AIMP2.exe
E:\RSIT.exe
C:\Program Files\trend micro\PC.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [AudioDeck] C:\Program Files\VIAudioi\SBADeck\ADeck.exe 1
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: AutorunsDisabled
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 3252 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2005-08-04 343112]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2010-01-11 13666408]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2010-02-26 2140880]
"AudioDeck"=C:\Program Files\VIAudioi\SBADeck\ADeck.exe [2004-09-30 7957504]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
AutorunsDisabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2010-03-20 11:26:57 ----D---- C:\Program Files\trend micro
2010-03-20 11:26:56 ----D---- C:\rsit
2010-03-20 11:18:53 ----HD---- C:\WINDOWS\system32\GroupPolicy
2010-03-19 21:53:34 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2010-03-19 18:40:21 ----D---- C:\Documents and Settings\PC\Data aplikací\WinRAR
2010-03-19 18:40:06 ----D---- C:\Program Files\WinRAR
2010-03-19 18:37:21 ----SHD---- C:\RECYCLER
2010-03-19 18:31:14 ----D---- C:\Documents and Settings\PC\Data aplikací\LangSoft
2010-03-19 18:31:14 ----D---- C:\Documents and Settings\All Users\Data aplikací\LangSoft
2010-03-19 18:24:13 ----D---- C:\WINDOWS\pss
2010-03-19 18:01:48 ----D---- C:\Program Files\The KMPlayer
2010-03-19 17:58:11 ----D---- C:\Documents and Settings\PC\Data aplikací\AIMP
2010-03-19 17:57:26 ----D---- C:\Program Files\AIMP2
2010-03-19 17:18:24 ----D---- C:\Documents and Settings\PC\Data aplikací\Flock
2010-03-19 17:17:24 ----D---- C:\Program Files\Flock
2010-03-19 17:01:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan
2010-03-19 17:01:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\McAfee
2010-03-19 17:01:52 ----D---- C:\Program Files\McAfee Security Scan
2010-03-19 17:01:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\NOS
2010-03-19 16:59:42 ----D---- C:\Documents and Settings\PC\Data aplikací\Mozilla
2010-03-19 16:59:33 ----D---- C:\Program Files\Mozilla Firefox
2010-03-19 16:48:17 ----D---- C:\Documents and Settings\All Users\Data aplikací\Yahoo! Companion
2010-03-19 16:45:32 ----A---- C:\WINDOWS\NeroDigital.ini
2010-03-19 13:26:09 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-03-19 13:25:59 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-03-19 13:20:49 ----D---- C:\Documents and Settings\PC\Data aplikací\Ahead
2010-03-19 13:19:08 ----D---- C:\Program Files\Nero
2010-03-19 13:19:08 ----D---- C:\Program Files\Common Files\Ahead
2010-03-19 13:18:35 ----D---- C:\Program Files\Yahoo!
2010-03-19 13:14:36 ----A---- C:\WINDOWS\system32\msonpmon.dll
2010-03-19 13:13:53 ----D---- C:\Program Files\Microsoft Works
2010-03-19 13:13:46 ----D---- C:\Program Files\MSBuild
2010-03-19 13:13:30 ----D---- C:\Program Files\Microsoft Visual Studio
2010-03-19 13:13:30 ----D---- C:\Program Files\Common Files\DESIGNER
2010-03-19 13:10:00 ----D---- C:\WINDOWS\SHELLNEW
2010-03-19 13:09:14 ----D---- C:\Program Files\Microsoft Office
2010-03-19 13:09:11 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-03-19 13:08:43 ----RHD---- C:\MSOCache
2010-03-19 12:24:21 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$
2010-03-19 12:24:15 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2010-03-19 12:24:07 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2010-03-19 12:24:00 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-03-19 12:23:53 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2010-03-19 12:23:45 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2010-03-19 12:23:33 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-03-19 12:23:21 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-03-19 12:16:43 ----HDC---- C:\WINDOWS\$NtUninstallKB978207$
2010-03-19 12:16:28 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-03-19 12:16:19 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-03-19 12:16:05 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-03-19 12:15:54 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-03-19 12:15:43 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-03-19 12:15:28 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2010-03-19 12:15:18 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-03-19 12:15:08 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-03-19 12:14:58 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-03-19 12:14:44 ----HDC---- C:\WINDOWS\$NtUninstallKB977165-v2$
2010-03-19 12:14:33 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2010-03-19 12:14:23 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-03-19 12:14:13 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-03-19 12:13:40 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2010-03-19 12:13:27 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-03-19 12:13:17 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-03-19 12:13:09 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2010-03-19 12:12:47 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2010-03-19 12:12:36 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2010-03-19 12:12:29 ----HDC---- C:\WINDOWS\$NtUninstallKB978251$
2010-03-19 12:12:14 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-03-19 12:11:54 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-03-19 12:11:40 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$
2010-03-19 12:11:15 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-03-19 12:11:04 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-03-19 12:10:53 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-03-19 12:10:39 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-03-19 12:10:29 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-03-19 12:10:19 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2010-03-19 12:10:10 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2010-03-19 12:10:00 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2010-03-19 12:09:49 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-03-19 12:09:33 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-03-19 12:09:16 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2010-03-19 12:07:42 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2010-03-19 12:07:35 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-03-19 12:07:28 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-03-19 12:07:11 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2010-03-19 12:07:04 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-03-19 12:06:57 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-03-19 12:06:48 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-03-19 12:06:29 ----D---- C:\WINDOWS\ServicePackFiles
2010-03-19 12:06:26 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$
2010-03-19 12:06:18 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-03-19 12:06:11 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-03-19 12:05:56 ----HDC---- C:\WINDOWS\$NtUninstallKB971032$
2010-03-19 12:05:48 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2010-03-19 12:05:41 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2010-03-19 12:05:34 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2010-03-19 12:05:28 ----HDC---- C:\WINDOWS\$NtUninstallKB979306$
2010-03-19 12:05:23 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
2010-03-19 12:05:12 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-03-19 12:05:05 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-03-19 12:04:56 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-03-19 12:04:47 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
2010-03-19 11:58:38 ----D---- C:\WINDOWS\system32\CatRoot_bak
2010-03-19 11:54:28 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-03-19 11:53:58 ----D---- C:\Documents and Settings\PC\Data aplikací\ESET
2010-03-19 11:53:51 ----A---- C:\WINDOWS\system32\h323log.txt
2010-03-19 11:49:18 ----A---- C:\WINDOWS\system32\usbui.dll
2010-03-19 11:49:16 ----D---- C:\Program Files\ESET
2010-03-19 11:49:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2010-03-19 11:48:12 ----A---- C:\WINDOWS\imsins.BAK
2010-03-19 11:48:09 ----SHD---- C:\WINDOWS\Installer
2010-03-19 11:48:09 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-03-19 11:48:08 ----D---- C:\Program Files\Common Files\ODBC
2010-03-19 11:48:08 ----A---- C:\WINDOWS\ODBCINST.INI
2010-03-19 11:48:05 ----RD---- C:\Program Files
2010-03-19 11:48:05 ----D---- C:\Program Files\Common Files\SpeechEngines
2010-03-19 11:48:05 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-03-19 11:48:05 ----D---- C:\Program Files\Common Files
2010-03-19 11:48:01 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2010-03-19 11:48:01 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2010-03-19 11:48:01 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2010-03-19 11:48:00 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2010-03-19 11:48:00 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2010-03-19 11:48:00 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2010-03-19 11:48:00 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2010-03-19 11:47:59 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2010-03-19 11:47:59 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2010-03-19 11:47:59 ----RA---- C:\WINDOWS\system32\kbdur.dll
2010-03-19 11:47:59 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2010-03-19 11:47:59 ----RA---- C:\WINDOWS\system32\kbdru.dll
2010-03-19 11:47:59 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2010-03-19 11:47:59 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2010-03-19 11:47:59 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2010-03-19 11:47:57 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2010-03-19 11:47:57 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2010-03-19 11:47:57 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2010-03-19 11:47:57 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2010-03-19 11:47:57 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2010-03-19 11:47:57 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2010-03-19 11:47:57 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2010-03-19 11:47:56 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2010-03-19 11:47:56 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2010-03-19 11:47:56 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2010-03-19 11:47:56 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2010-03-19 11:47:56 ----RA---- C:\WINDOWS\system32\kbdest.dll
2010-03-19 11:47:52 ----A---- C:\WINDOWS\system32\kbdycl.dll
2010-03-19 11:47:52 ----A---- C:\WINDOWS\system32\kbdsl1.dll
2010-03-19 11:47:52 ----A---- C:\WINDOWS\system32\kbdsl.dll
2010-03-19 11:47:52 ----A---- C:\WINDOWS\system32\kbdro.dll
2010-03-19 11:47:52 ----A---- C:\WINDOWS\system32\kbdpl1.dll
2010-03-19 11:47:52 ----A---- C:\WINDOWS\system32\kbdpl.dll
2010-03-19 11:47:52 ----A---- C:\WINDOWS\system32\kbdhu1.dll
2010-03-19 11:47:52 ----A---- C:\WINDOWS\system32\kbdhu.dll
2010-03-19 11:47:52 ----A---- C:\WINDOWS\system32\kbdcr.dll
2010-03-19 11:47:52 ----A---- C:\WINDOWS\system32\KBDAL.DLL
2010-03-19 11:47:51 ----A---- C:\WINDOWS\system32\spxcoins.dll
2010-03-19 11:47:51 ----A---- C:\WINDOWS\system32\irclass.dll
2010-03-19 11:47:51 ----A---- C:\WINDOWS\system32\dgsetup.dll
2010-03-19 11:47:51 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2010-03-19 11:47:50 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2010-03-19 11:47:49 ----A---- C:\WINDOWS\TASKMAN.EXE
2010-03-19 11:47:48 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2010-03-19 11:47:48 ----A---- C:\WINDOWS\system32\batt.dll
2010-03-19 11:47:48 ----A---- C:\WINDOWS\NOTEPAD.EXE
2010-03-19 11:47:47 ----A---- C:\WINDOWS\system32\storprop.dll
2010-03-19 11:47:39 ----ASH---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2010-03-19 11:47:34 ----RA---- C:\WINDOWS\SET8.tmp
2010-03-19 11:47:31 ----RA---- C:\WINDOWS\SET4.tmp
2010-03-19 11:47:30 ----RA---- C:\WINDOWS\SET3.tmp
2010-03-19 11:47:25 ----D---- C:\WINDOWS\system32\CatRoot2
2010-03-19 11:47:25 ----D---- C:\WINDOWS\system32\CatRoot
2010-03-19 11:47:19 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-03-19 11:47:02 ----A---- C:\WINDOWS\setuplog.txt
2010-03-19 11:46:59 ----SHD---- C:\System Volume Information
2010-03-19 11:46:59 ----D---- C:\Documents and Settings
2010-03-19 11:46:02 ----SH---- C:\boot.ini
2010-03-19 11:42:16 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-03-19 11:42:16 ----RSD---- C:\WINDOWS\Fonts
2010-03-19 11:42:16 ----RD---- C:\WINDOWS\Web
2010-03-19 11:42:16 ----HD---- C:\WINDOWS\inf
2010-03-19 11:42:16 ----D---- C:\WINDOWS\WinSxS
2010-03-19 11:42:16 ----D---- C:\WINDOWS\twain_32
2010-03-19 11:42:16 ----D---- C:\WINDOWS\Temp
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\wins
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\wbem
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\usmt
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\spool
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\ShellExt
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\Setup
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\ras
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\oobe
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\npp
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\mui
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\inetsrv
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\IME
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\icsxml
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\ias
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\export
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\drivers
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\dhcp
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\config
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\3com_dmi
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\3076
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\2052
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\1054
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\1042
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\1041
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\1037
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\1033
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\1031
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\1029
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\1028
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32\1025
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system32
2010-03-19 11:42:16 ----D---- C:\WINDOWS\system
2010-03-19 11:42:16 ----D---- C:\WINDOWS\security
2010-03-19 11:42:16 ----D---- C:\WINDOWS\Resources
2010-03-19 11:42:16 ----D---- C:\WINDOWS\repair
2010-03-19 11:42:16 ----D---- C:\WINDOWS\Provisioning
2010-03-19 11:42:16 ----D---- C:\WINDOWS\pchealth
2010-03-19 11:42:16 ----D---- C:\WINDOWS\PeerNet
2010-03-19 11:42:16 ----D---- C:\WINDOWS\mui
2010-03-19 11:42:16 ----D---- C:\WINDOWS\msapps
2010-03-19 11:42:16 ----D---- C:\WINDOWS\msagent
2010-03-19 11:42:16 ----D---- C:\WINDOWS\Media
2010-03-19 11:42:16 ----D---- C:\WINDOWS\java
2010-03-19 11:42:16 ----D---- C:\WINDOWS\ime
2010-03-19 11:42:16 ----D---- C:\WINDOWS\Help
2010-03-19 11:42:16 ----D---- C:\WINDOWS\ehome
2010-03-19 11:42:16 ----D---- C:\WINDOWS\Driver Cache
2010-03-19 11:42:16 ----D---- C:\WINDOWS\Debug
2010-03-19 11:42:16 ----D---- C:\WINDOWS\Cursors
2010-03-19 11:42:16 ----D---- C:\WINDOWS\Connection Wizard
2010-03-19 11:42:16 ----D---- C:\WINDOWS\Config
2010-03-19 11:42:16 ----D---- C:\WINDOWS\AppPatch
2010-03-19 11:42:16 ----D---- C:\WINDOWS\addins
2010-03-19 11:42:16 ----D---- C:\WINDOWS
2010-03-19 11:39:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\NVIDIA Corporation
2010-03-19 11:39:46 ----D---- C:\Program Files\NVIDIA Corporation
2010-03-19 11:39:18 ----A---- C:\WINDOWS\system32\OpenCL.dll
2010-03-19 11:39:18 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2010-03-19 11:39:18 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2010-03-19 11:39:17 ----A---- C:\WINDOWS\system32\nvcuvenc.dll
2010-03-19 11:39:17 ----A---- C:\WINDOWS\system32\nvcuda.dll
2010-03-19 11:39:14 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2010-03-19 11:39:14 ----A---- C:\WINDOWS\system32\nvcodins.dll
2010-03-19 11:39:14 ----A---- C:\WINDOWS\system32\nvcod.dll
2010-03-19 11:39:14 ----A---- C:\WINDOWS\system32\nvapi.dll
2010-03-19 11:39:14 ----A---- C:\WINDOWS\system32\nv4_disp.dll
2010-03-19 11:39:10 ----D---- C:\NVIDIA
2010-03-19 11:34:47 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2010-03-19 11:34:31 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-03-19 11:34:31 ----D---- C:\WINDOWS\system32\PreInstall
2010-03-19 11:34:31 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2010-03-19 11:34:30 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2010-03-19 11:34:30 ----HD---- C:\WINDOWS\$hf_mig$
2010-03-19 11:31:35 ----D---- C:\Documents and Settings\PC\Data aplikací\Adobe
2010-03-19 11:31:25 ----D---- C:\Documents and Settings\PC\Data aplikací\Macromedia
2010-03-19 11:30:12 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2010-03-19 11:27:13 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-03-19 11:27:03 ----A---- C:\WINDOWS\system32\UnAudioNT.dll
2010-03-19 11:26:56 ----D---- C:\Program Files\VIAudioi
2010-03-19 11:25:19 ----D---- C:\Program Files\InstallShield Installation Information
2010-03-19 11:24:36 ----D---- C:\Program Files\VIA
2010-03-19 11:24:28 ----D---- C:\Program Files\Common Files\InstallShield
2010-03-19 11:15:19 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-03-19 11:15:00 ----A---- C:\WINDOWS\IsUninst.exe
2010-03-19 11:04:58 ----D---- C:\Documents and Settings\PC\Data aplikací\Identities
2010-03-19 11:04:56 ----HD---- C:\Program Files\Uninstall Information
2010-03-19 11:04:50 ----ASH---- C:\Documents and Settings\PC\Data aplikací\desktop.ini
2010-03-19 11:04:49 ----SD---- C:\Documents and Settings\PC\Data aplikací\Microsoft
2010-03-19 11:04:19 ----D---- C:\WINDOWS\SoftwareDistribution
2010-03-19 11:04:17 ----D---- C:\WINDOWS\Prefetch
2010-03-19 11:04:14 ----SD---- C:\WINDOWS\system32\Microsoft
2010-03-19 11:04:14 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-03-19 10:58:52 ----D---- C:\WINDOWS\system32\xircom
2010-03-19 10:58:52 ----D---- C:\Program Files\xerox
2010-03-19 10:58:52 ----D---- C:\Program Files\microsoft frontpage
2010-03-19 10:58:34 ----A---- C:\WINDOWS\control.ini
2010-03-19 10:58:34 ----A---- C:\AUTOEXEC.BAT
2010-03-19 10:58:24 ----A---- C:\WINDOWS\OEWABLog.txt
2010-03-19 10:58:20 ----A---- C:\WINDOWS\system32\mapi32.dll
2010-03-19 10:57:32 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-03-19 10:57:32 ----RD---- C:\WINDOWS\Offline Web Pages
2010-03-19 10:57:32 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-03-19 10:57:26 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-03-19 10:57:21 ----HD---- C:\Program Files\WindowsUpdate
2010-03-19 10:57:18 ----D---- C:\Program Files\Online Services
2010-03-19 10:57:05 ----D---- C:\WINDOWS\system32\DirectX
2010-03-19 10:56:47 ----A---- C:\WINDOWS\system32\atrace.dll
2010-03-19 10:56:45 ----A---- C:\WINDOWS\system32\desktop.ini
2010-03-19 10:56:45 ----A---- C:\WINDOWS\desktop.ini
2010-03-19 10:56:39 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2010-03-19 10:56:38 ----A---- C:\WINDOWS\system32\acctres.dll
2010-03-19 10:56:37 ----D---- C:\Program Files\Common Files\Services
2010-03-19 10:56:35 ----SD---- C:\WINDOWS\Tasks
2010-03-19 10:56:35 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2010-03-19 10:56:34 ----D---- C:\Program Files\Common Files\MSSoap
2010-03-19 10:56:31 ----D---- C:\WINDOWS\srchasst
2010-03-19 10:56:30 ----D---- C:\WINDOWS\system32\Macromed
2010-03-19 10:56:28 ----A---- C:\WINDOWS\system32\wuweb.dll
2010-03-19 10:56:28 ----A---- C:\WINDOWS\system32\wups.dll
2010-03-19 10:56:28 ----A---- C:\WINDOWS\system32\wucltui.dll
2010-03-19 10:56:28 ----A---- C:\WINDOWS\system32\wuauserv.dll
2010-03-19 10:56:28 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2010-03-19 10:56:28 ----A---- C:\WINDOWS\system32\wuaueng.dll
2010-03-19 10:56:27 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2010-03-19 10:56:27 ----A---- C:\WINDOWS\system32\wuauclt.exe
2010-03-19 10:56:27 ----A---- C:\WINDOWS\system32\wuapi.dll
2010-03-19 10:56:27 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2010-03-19 10:56:27 ----A---- C:\WINDOWS\system32\qmgr.dll
2010-03-19 10:56:27 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2010-03-19 10:56:27 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2010-03-19 10:56:24 ----D---- C:\Program Files\Movie Maker
2010-03-19 10:56:20 ----A---- C:\WINDOWS\system32\safrslv.dll
2010-03-19 10:56:20 ----A---- C:\WINDOWS\system32\safrdm.dll
2010-03-19 10:56:20 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2010-03-19 10:56:20 ----A---- C:\WINDOWS\system32\racpldlg.dll
2010-03-19 10:56:18 ----A---- C:\WINDOWS\system32\fltMc.exe
2010-03-19 10:56:18 ----A---- C:\WINDOWS\system32\fltlib.dll
2010-03-19 10:56:17 ----D---- C:\WINDOWS\system32\Restore
2010-03-19 10:56:17 ----A---- C:\WINDOWS\system32\srsvc.dll
2010-03-19 10:56:17 ----A---- C:\WINDOWS\system32\srrstr.dll
2010-03-19 10:56:17 ----A---- C:\WINDOWS\system32\srclient.dll
2010-03-19 10:56:16 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2010-03-19 10:56:16 ----A---- C:\WINDOWS\system32\msconf.dll
2010-03-19 10:56:16 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-03-19 10:56:16 ----A---- C:\WINDOWS\system32\mnmdd.dll
2010-03-19 10:56:16 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2010-03-19 10:56:16 ----A---- C:\WINDOWS\system32\ils.dll
2010-03-19 10:56:14 ----D---- C:\Program Files\NetMeeting
2010-03-19 10:56:14 ----A---- C:\WINDOWS\system32\msoert2.dll
2010-03-19 10:56:13 ----A---- C:\WINDOWS\system32\msoeacct.dll
2010-03-19 10:56:13 ----A---- C:\WINDOWS\system32\inetres.dll
2010-03-19 10:56:12 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-03-19 10:56:11 ----D---- C:\Program Files\Outlook Express
2010-03-19 10:56:11 ----A---- C:\WINDOWS\system32\schedsvc.dll
2010-03-19 10:56:11 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-03-19 10:56:11 ----A---- C:\WINDOWS\system32\mstask.dll
2010-03-19 10:56:10 ----A---- C:\WINDOWS\system32\isign32.dll
2010-03-19 10:56:10 ----A---- C:\WINDOWS\system32\inetcfg.dll
2010-03-19 10:56:10 ----A---- C:\WINDOWS\system32\icwphbk.dll
2010-03-19 10:56:10 ----A---- C:\WINDOWS\system32\icwdial.dll
2010-03-19 10:56:05 ----D---- C:\Program Files\Common Files\System
2010-03-19 10:56:04 ----D---- C:\Program Files\Internet Explorer
2010-03-19 10:55:32 ----D---- C:\Program Files\ComPlus Applications
2010-03-19 10:55:30 ----A---- C:\WINDOWS\vbaddin.ini
2010-03-19 10:55:30 ----A---- C:\WINDOWS\vb.ini
2010-03-19 10:55:26 ----D---- C:\WINDOWS\Registration
2010-03-19 10:55:20 ----D---- C:\Program Files\Windows Media Player
2010-03-19 10:55:15 ----D---- C:\Program Files\Messenger
2010-03-19 10:55:12 ----D---- C:\Program Files\MSN Gaming Zone
2010-03-19 10:55:12 ----A---- C:\WINDOWS\system32\write.exe
2010-03-19 10:55:04 ----A---- C:\WINDOWS\system32\sndvol32.exe
2010-03-19 10:55:04 ----A---- C:\WINDOWS\system32\hticons.dll
2010-03-19 10:55:03 ----A---- C:\WINDOWS\system32\winchat.exe
2010-03-19 10:55:03 ----A---- C:\WINDOWS\system32\avwav.dll
2010-03-19 10:55:03 ----A---- C:\WINDOWS\system32\avtapi.dll
2010-03-19 10:55:03 ----A---- C:\WINDOWS\system32\avmeter.dll
2010-03-19 10:54:57 ----A---- C:\WINDOWS\system32\charmap.exe
2010-03-19 10:54:57 ----A---- C:\WINDOWS\system32\getuname.dll
2010-03-19 10:54:56 ----A---- C:\WINDOWS\system32\winmine.exe
2010-03-19 10:54:56 ----A---- C:\WINDOWS\system32\sol.exe
2010-03-19 10:54:56 ----A---- C:\WINDOWS\system32\mshearts.exe
2010-03-19 10:54:56 ----A---- C:\WINDOWS\system32\calc.exe
2010-03-19 10:54:55 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2010-03-19 10:54:55 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2010-03-19 10:54:55 ----A---- C:\WINDOWS\system32\tslabels.ini
2010-03-19 10:54:55 ----A---- C:\WINDOWS\system32\tskill.exe
2010-03-19 10:54:55 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2010-03-19 10:54:55 ----A---- C:\WINDOWS\system32\tscon.exe
2010-03-19 10:54:55 ----A---- C:\WINDOWS\system32\shadow.exe
2010-03-19 10:54:55 ----A---- C:\WINDOWS\system32\rwinsta.exe
2010-03-19 10:54:55 ----A---- C:\WINDOWS\system32\reset.exe
2010-03-19 10:54:55 ----A---- C:\WINDOWS\system32\regini.exe
2010-03-19 10:54:55 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2010-03-19 10:54:55 ----A---- C:\WINDOWS\system32\qwinsta.exe
2010-03-19 10:54:55 ----A---- C:\WINDOWS\system32\qappsrv.exe
2010-03-19 10:54:55 ----A---- C:\WINDOWS\system32\freecell.exe
2010-03-19 10:54:54 ----A---- C:\WINDOWS\system32\msg.exe
2010-03-19 10:54:54 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2010-03-19 10:54:54 ----A---- C:\WINDOWS\system32\logoff.exe
2010-03-19 10:54:54 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2010-03-19 10:54:54 ----A---- C:\WINDOWS\system32\cdmodem.dll
2010-03-19 10:54:53 ----A---- C:\WINDOWS\system32\stclient.dll
2010-03-19 10:54:53 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2010-03-19 10:54:53 ----A---- C:\WINDOWS\system32\mtxex.dll
2010-03-19 10:54:53 ----A---- C:\WINDOWS\system32\mtxdm.dll
2010-03-19 10:54:53 ----A---- C:\WINDOWS\system32\comsnap.dll
2010-03-19 10:54:53 ----A---- C:\WINDOWS\system32\comrepl.dll
2010-03-19 10:54:53 ----A---- C:\WINDOWS\system32\comaddin.dll
2010-03-19 10:54:48 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2010-03-19 10:54:48 ----A---- C:\WINDOWS\system32\accwiz.exe
2010-03-19 10:54:47 ----D---- C:\Program Files\Windows NT
2010-03-19 10:54:47 ----A---- C:\WINDOWS\system32\sndrec32.exe
2010-03-19 10:54:47 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-03-19 10:54:47 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-03-19 10:54:47 ----A---- C:\WINDOWS\system32\hypertrm.dll
2010-03-19 10:54:47 ----A---- C:\WINDOWS\system32\clipbrd.exe
2010-03-19 10:54:46 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2010-03-19 10:54:46 ----A---- C:\WINDOWS\system32\spider.exe
2010-03-19 10:54:46 ----A---- C:\WINDOWS\system32\mstscax.dll
2010-03-19 10:54:45 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2010-03-19 10:54:45 ----A---- C:\WINDOWS\system32\termsrv.dll
2010-03-19 10:54:45 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-03-19 10:54:45 ----A---- C:\WINDOWS\system32\remotepg.dll
2010-03-19 10:54:45 ----A---- C:\WINDOWS\system32\rdshost.exe
2010-03-19 10:54:45 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2010-03-19 10:54:45 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2010-03-19 10:54:45 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2010-03-19 10:54:45 ----A---- C:\WINDOWS\system32\rdpclip.exe
2010-03-19 10:54:45 ----A---- C:\WINDOWS\system32\rdchost.dll
2010-03-19 10:54:45 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-03-19 10:54:44 ----D---- C:\WINDOWS\system32\MsDtc
2010-03-19 10:54:44 ----A---- C:\WINDOWS\system32\qprocess.exe
2010-03-19 10:54:44 ----A---- C:\WINDOWS\system32\mtxoci.dll
2010-03-19 10:54:44 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2010-03-19 10:54:44 ----A---- C:\WINDOWS\system32\msdtctm.dll
2010-03-19 10:54:44 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2010-03-19 10:54:44 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-03-19 10:54:44 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2010-03-19 10:54:43 ----D---- C:\WINDOWS\system32\Com
2010-03-19 10:54:43 ----A---- C:\WINDOWS\system32\xolehlp.dll
2010-03-19 10:54:43 ----A---- C:\WINDOWS\system32\msdtclog.dll
2010-03-19 10:54:43 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-03-19 10:54:43 ----A---- C:\WINDOWS\system32\colbact.dll
2010-03-19 10:54:43 ----A---- C:\WINDOWS\system32\catsrvps.dll
2010-03-19 10:54:42 ----A---- C:\WINDOWS\system32\comuid.dll
2010-03-19 10:54:42 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-03-19 10:54:42 ----A---- C:\WINDOWS\system32\clbcatex.dll
2010-03-19 10:54:42 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-03-19 10:54:42 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-03-19 10:54:41 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-03-19 10:54:37 ----A---- C:\WINDOWS\system32\servdeps.dll
2010-03-19 10:54:36 ----A---- C:\WINDOWS\system32\mmfutil.dll
2010-03-19 10:54:36 ----A---- C:\WINDOWS\system32\licwmi.dll
2010-03-19 10:54:36 ----A---- C:\WINDOWS\system32\cmprops.dll

======List of files/folders modified in the last 1 months======

2010-03-19 22:11:35 ----A---- C:\WINDOWS\win.ini
2010-03-19 22:11:35 ----A---- C:\WINDOWS\system.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2010-02-26 114984]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2010-02-26 55232]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-17 39936]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2010-02-26 139192]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2010-02-26 134488]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2010-02-26 32584]
R3 GETNDIS;VIA Networking Velocity Family Giga-bit Ethernet Adapter Driver; C:\WINDOWS\system32\DRIVERS\getnd5b.sys [2003-09-02 44032]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-01-12 10276768]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R3 VIAudio;Vinyl AC'97 Audio Controller (WDM); C:\WINDOWS\system32\drivers\vinyl97.sys [2004-09-06 161536]
S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys []
S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys []
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2010-02-26 810120]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-01-11 154216]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-02-26 33560]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

-----------------EOF-----------------