Logfile of random's system information tool 1.07 (written by random/random)
Run by Internet at 2010-06-29 14:11:53
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 2 GB (6%) free of 33 GB
Total RAM: 1919 MB (69% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:12:05, on 29. 6. 2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\AppServ\Apache\Apache.exe
C:\WINDOWS\system32\ASWLSVC.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\AppServ\Apache\Apache.exe
C:\Program Files\EPSON Projector\EMP NS Connection V2\EMP_NSWLSV.exe
C:\WINDOWS\system32\ASWL2K.exe
C:\Program Files\EPSON Projector\EPSON USB Display V1.1\EMP_UDSA.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis3a.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Internet\Local Settings\Temporary Internet Files\Content.IE5\9MQB5A0I\RSIT[1].exe
C:\Program Files\trend micro\Internet.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [pdfFactory Pro Dispatcher v3] "C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis3a.exe" /source=HKLM
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Odkaz na taskmgr.exe.lnk = C:\WINDOWS\system32\taskmgr.exe
O8 - Extra context menu item: &Save Flash In This Page by Flash Saver - C:\PROGRA~1\FLASHS~1\save.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Flash Saver - {09EA1F80-F40A-11D1-B792-444553540001} - C:\PROGRA~1\FLASHS~1\save.htm
O9 - Extra 'Tools' menuitem: Flash Saver - {09EA1F80-F40A-11D1-B792-444553540001} - C:\PROGRA~1\FLASHS~1\save.htm
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Pictures - {C7486E80-B111-4768-995E-23CF307346FC} - C:\Program Files\UnH Solutions\Flash and Pics Control\FPCButton.dll (HKCU)
O9 - Extra button: (no name) - {FD424F56-B38D-4190-94D1-C2B4E91C9A17} - C:\Program Files\UnH Solutions\Flash and Pics Control\FlashPicsControl.exe (HKCU)
O9 - Extra 'Tools' menuitem: Flash and Pics Control - {FD424F56-B38D-4190-94D1-C2B4E91C9A17} - C:\Program Files\UnH Solutions\Flash and Pics Control\FlashPicsControl.exe (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com/common/asusTek_sys_ctrl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 8689551921
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 5571657906
O16 - DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} (IPSUploader4 Control) - http://asp.photoprintit.de/microsite/57 ... oader4.cab
O16 - DPF: {CAC677B6-4963-4305-9066-0BD135CD9233} (IPSUploader4 Control) - https://asp.photoprintit.de/microsite/5 ... oader4.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Apache - Unknown owner - C:\AppServ\Apache\Apache.exe
O23 - Service: Apache2 - Unknown owner - C:\Program Files\Apache Group\Apache2\bin\Apache.exe (file missing)
O23 - Service: ASWLSVC - Unknown owner - C:\WINDOWS\system32\ASWLSVC.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: EMP_NSWLSV - SEIKO EPSON CORPORATION - C:\Program Files\EPSON Projector\EMP NS Connection V2\EMP_NSWLSV.exe
O23 - Service: EMP_UDSA - Unknown owner - C:\Program Files\EPSON Projector\EPSON USB Display V1.1\EMP_UDSA.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
--
End of file - 9604 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Symantec NetDetect.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{7FB8BE8B-4406-450A-8CFE-B8E0109E4B3E}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-06-29 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-06-29 79648]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2006-01-07 184320]
"pdfFactory Pro Dispatcher v3"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis3a.exe [2007-09-25 507904]
"SoundMAXPnP"=C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe [2004-10-14 1388544]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2004-09-23 860160]
"HControl"=C:\WINDOWS\ATK0100\HControl.exe [2005-07-28 102400]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-11-16 2054360]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2005-05-11 708697]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2005-05-31 344064]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe ASO-616B5711-6DAE-4795-A05F-39A1E5104020 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Load]
C:\WINDOWS\system32\ddabc.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware]
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2010-04-29 437584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Net4Switch]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OEXPRESS]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProxyWay]
C:\Program Files\ProxyWay\proxyway.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PSwitch]
C:\Program Files\Proxy Switcher Standard\ProxySwitcher.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdate]
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2009-12-22 3037696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.6.0\bin\jusched.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Program Files\uTorrent\uTorrent.exe [2010-02-17 319280]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\µTorrent]
C:\Program Files\uTorrent\utorrent.exe [2010-02-17 319280]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"6to4"=2
"WebClient"=2
"TermService"=3
"TapiSrv"=3
"sp_rssrv"=2
"SCardSvr"=3
C:\Documents and Settings\Internet\Nabídka Start\Programy\Po spuštění
Odkaz na taskmgr.exe.lnk - C:\WINDOWS\system32\taskmgr.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2005-05-31 46080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{93994DE8-8239-4655-B1D1-5F4E91300429}"=C:\PROGRA~1\DVDREG~1\DVDShell.dll [2004-10-09 49152]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
C:\WINDOWS\system32\ddabc
"notification packages"=
scecli
scecli
scecli
scecli
scecli
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=0
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoBandCustomize"=0
"NoMovingBands"=0
"NoCloseDragDropBands"=0
"NoActiveDesktop"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:utorrent"
"C:\Program Files\Totalcmd\TOTALCMD.EXE"="C:\Program Files\Totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Program Files\mIRC\mirc.exe"="C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC"
"C:\Program Files\Foxit Software\PDF Editor\PDFEdit.exe"="C:\Program Files\Foxit Software\PDF Editor\PDFEdit.exe:*:Disabled:Foxit PDF Editor, the first REAL editor for PDF files!"
"C:\Program Files\IW FTPort Client\Cftp32.exe"="C:\Program Files\IW FTPort Client\Cftp32.exe:*:Enabled:IW FTPort Client"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\EPSON Projector\EMP NS Connection V2\vlc.exe"="C:\Program Files\EPSON Projector\EMP NS Connection V2\vlc.exe:*:Disabled:EMP NS Connection V2.11"
"C:\Program Files\EPSON Projector\EMP NS Connection V2\EMP_NSC.exe"="C:\Program Files\EPSON Projector\EMP NS Connection V2\EMP_NSC.exe:*:Disabled:EMP NS Connection V2.11"
"C:\Program Files\Proxy Switcher Standard\ProxySwitcher .exe"="C:\Program Files\Proxy Switcher Standard\ProxySwitcher .exe:*:Disabled:Proxy Switcher"
"C:\Program Files\ProxyWay\proxyway.exe"="C:\Program Files\ProxyWay\proxyway.exe:*:Disabled:ProxyWay"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Proxy Switcher Standard\ProxySwitcher.exe"="C:\Program Files\Proxy Switcher Standard\ProxySwitcher.exe:*:Enabled:Proxy Switcher"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{29cdaf56-168b-11dd-a8ca-001731a1fc47}]
shell\AutoRun\command - F:\EMP_UDSe.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{525883ae-ba77-11db-a561-001731a1fc47}]
shell\AutoRun\command - F:\setupSNK.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6fb67fae-6cf6-11dd-a994-001731a1fc47}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a27bb55d-9cc9-11db-a52b-001731a1fc47}]
shell\AutoRun\command - F:\Autorun.exe
======File associations======
.txt - open - notepad "%1"
======List of files/folders created in the last 1 months======
2010-06-29 14:11:53 ----D---- C:\rsit
2010-06-29 13:57:36 ----A---- C:\WINDOWS\resetlog.txt
2010-06-29 12:14:27 ----D---- C:\WINDOWS\Prefetch
2010-06-29 12:00:12 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2010-06-29 12:00:12 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2010-06-29 12:00:12 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2010-06-29 12:00:12 ----N---- C:\WINDOWS\system32\aaclient.dll
2010-06-29 12:00:11 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2010-06-29 12:00:11 ----N---- C:\WINDOWS\system32\azroles.dll
2010-06-29 12:00:10 ----N---- C:\WINDOWS\system32\credssp.dll
2010-06-29 12:00:09 ----N---- C:\WINDOWS\system32\dot3ui.dll
2010-06-29 12:00:09 ----N---- C:\WINDOWS\system32\dot3svc.dll
2010-06-29 12:00:09 ----N---- C:\WINDOWS\system32\dot3msm.dll
2010-06-29 12:00:09 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2010-06-29 12:00:09 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2010-06-29 12:00:09 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2010-06-29 12:00:09 ----N---- C:\WINDOWS\system32\dot3api.dll
2010-06-29 12:00:09 ----N---- C:\WINDOWS\system32\dimsroam.dll
2010-06-29 12:00:09 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2010-06-29 12:00:09 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2010-06-29 12:00:08 ----N---- C:\WINDOWS\system32\eapsvc.dll
2010-06-29 12:00:08 ----N---- C:\WINDOWS\system32\eapqec.dll
2010-06-29 12:00:08 ----N---- C:\WINDOWS\system32\eappprxy.dll
2010-06-29 12:00:08 ----N---- C:\WINDOWS\system32\eapphost.dll
2010-06-29 12:00:08 ----N---- C:\WINDOWS\system32\eappgnui.dll
2010-06-29 12:00:08 ----N---- C:\WINDOWS\system32\eappcfg.dll
2010-06-29 12:00:08 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2010-06-29 12:00:08 ----N---- C:\WINDOWS\system32\eapolqec.dll
2010-06-29 12:00:06 ----N---- C:\WINDOWS\system32\ieencode.dll
2010-06-29 12:00:06 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2010-06-29 12:00:04 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2010-06-29 12:00:03 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2010-06-29 12:00:02 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2010-06-29 12:00:02 ----N---- C:\WINDOWS\system32\kmsvc.dll
2010-06-29 12:00:02 ----N---- C:\WINDOWS\system32\kbdpash.dll
2010-06-29 12:00:02 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2010-06-29 12:00:01 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2010-06-29 12:00:00 ----N---- C:\WINDOWS\system32\mmcperf.exe
2010-06-29 12:00:00 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2010-06-29 12:00:00 ----N---- C:\WINDOWS\system32\mmcex.dll
2010-06-29 11:59:59 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2010-06-29 11:59:59 ----N---- C:\WINDOWS\system32\mssha.dll
2010-06-29 11:59:58 ----N---- C:\WINDOWS\system32\napstat.exe
2010-06-29 11:59:58 ----N---- C:\WINDOWS\system32\napmontr.dll
2010-06-29 11:59:58 ----N---- C:\WINDOWS\system32\napipsec.dll
2010-06-29 11:59:58 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2010-06-29 11:59:57 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2010-06-29 11:59:56 ----N---- C:\WINDOWS\system32\onex.dll
2010-06-29 11:59:55 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2010-06-29 11:59:55 ----N---- C:\WINDOWS\system32\rasqec.dll
2010-06-29 11:59:55 ----N---- C:\WINDOWS\system32\qutil.dll
2010-06-29 11:59:55 ----N---- C:\WINDOWS\system32\qcliprov.dll
2010-06-29 11:59:55 ----N---- C:\WINDOWS\system32\qagentrt.dll
2010-06-29 11:59:55 ----N---- C:\WINDOWS\system32\qagent.dll
2010-06-29 11:59:54 ----N---- C:\WINDOWS\system32\slgen.dll
2010-06-29 11:59:54 ----N---- C:\WINDOWS\system32\slextspk.dll
2010-06-29 11:59:54 ----N---- C:\WINDOWS\system32\slcoinst.dll
2010-06-29 11:59:54 ----N---- C:\WINDOWS\system32\setupn.exe
2010-06-29 11:59:54 ----N---- C:\WINDOWS\system32\s3gnb.dll
2010-06-29 11:59:53 ----N---- C:\WINDOWS\system32\slserv.exe
2010-06-29 11:59:53 ----N---- C:\WINDOWS\system32\slrundll.exe
2010-06-29 11:59:49 ----N---- C:\WINDOWS\system32\tspkg.dll
2010-06-29 11:59:49 ----N---- C:\WINDOWS\system32\tsgqec.dll
2010-06-29 11:59:47 ----N---- C:\WINDOWS\system32\wlanapi.dll
2010-06-29 11:59:45 ----N---- C:\WINDOWS\slrundll.exe
2010-06-29 11:46:06 ----A---- C:\WINDOWS\002854_.tmp
2010-06-29 11:42:07 ----HD---- C:\WINDOWS\$NtServicePackUninstall$
2010-06-29 10:12:07 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2010-06-29 10:12:05 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-06-29 09:15:12 ----D---- C:\Program Files\Spybot - Search & Destroy
2010-06-29 09:15:12 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2010-06-29 08:16:19 ----D---- C:\Documents and Settings\All Users\Application Data\Sun
2010-06-29 08:16:18 ----D---- C:\Program Files\Common Files\Java
2010-06-29 08:15:40 ----A---- C:\WINDOWS\system32\javaws.exe
2010-06-29 08:15:40 ----A---- C:\WINDOWS\system32\javaw.exe
2010-06-29 08:15:40 ----A---- C:\WINDOWS\system32\java.exe
2010-06-29 08:15:40 ----A---- C:\WINDOWS\system32\deployJava1.dll
2010-06-29 08:15:05 ----D---- C:\Program Files\Java
2010-06-29 07:43:48 ----SHD---- C:\FOUND.000
2010-06-28 14:49:30 ----HD---- C:\WINDOWS\ie8
2010-06-28 14:49:30 ----D---- C:\WINDOWS\system32\sk-SK
2010-06-28 14:46:21 ----A---- C:\WINDOWS\system32\msdbg2.dll
2010-06-28 14:46:16 ----N---- C:\WINDOWS\system32\msrating.dll.mui
2010-06-28 14:46:14 ----N---- C:\WINDOWS\system32\mshta.exe.mui
2010-06-28 14:45:59 ----N---- C:\WINDOWS\system32\iedkcs32.dll.mui
2010-06-28 14:45:59 ----N---- C:\WINDOWS\system32\ie4uinit.exe.mui
2010-06-28 13:28:51 ----A---- C:\WINDOWS\ntbtlog.txt
2010-06-28 13:24:41 ----D---- C:\WINDOWS\OPTIONS
2010-06-28 12:28:32 ----A---- C:\WINDOWS\system32\wpa.bak
2010-06-28 12:06:28 ----D---- C:\Program Files\msn gaming zone
2010-06-28 12:05:33 ----A---- C:\WINDOWS\OEWABLog.txt
2010-06-28 12:04:03 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-06-28 12:03:28 ----D---- C:\Program Files\Online Services
2010-06-28 12:02:06 ----D---- C:\Program Files\ComPlus Applications
2010-06-28 11:59:57 ----A---- C:\WINDOWS\system32\irmon.dll
2010-06-28 11:59:56 ----A---- C:\WINDOWS\system32\wshirda.dll
2010-06-28 11:59:56 ----A---- C:\WINDOWS\system32\irftp.exe
2010-06-28 11:57:25 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft
2010-06-28 11:34:13 ----A---- C:\WINDOWS\imsins.BAK
2010-06-28 11:33:58 ----A---- C:\WINDOWS\system32\spxcoins.dll
2010-06-28 11:33:58 ----A---- C:\WINDOWS\system32\irclass.dll
2010-06-28 11:33:43 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2010-06-28 11:33:38 ----RA---- C:\WINDOWS\SET15F.tmp
2010-06-28 11:33:27 ----RA---- C:\WINDOWS\SET153.tmp
2010-06-28 11:33:19 ----RA---- C:\WINDOWS\SET150.tmp
2010-06-28 11:30:20 ----A---- C:\WINDOWS\setuplog.txt
2010-06-28 11:00:06 ----D---- C:\WINDOWS\setup.pss
2010-06-26 21:46:56 ----D---- C:\Program Files\ZTE komunikačný manažér
======List of files/folders modified in the last 1 months======
2010-06-29 13:58:38 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-06-29 12:18:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-06-28 12:05:18 ----A---- C:\WINDOWS\ODBCINST.INI
2010-06-28 12:04:10 ----RD---- C:\WINDOWS\Web
2010-06-28 12:04:10 ----RD---- C:\Program Files
2010-06-28 12:03:50 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-06-28 12:03:28 ----A---- C:\WINDOWS\win.ini
2010-06-28 11:57:26 ----SH---- C:\boot.ini
2010-06-28 11:34:04 ----A---- C:\WINDOWS\system.ini
2010-06-28 11:00:22 ----A---- C:\WINDOWS\UPGRADE.TXT
2010-06-28 07:42:20 ----A---- C:\ASWL2K.ini
2010-06-25 22:34:36 ----A---- C:\WINDOWS\ModemLog_ZTE Proprietary USB Modem.txt
2010-06-05 05:58:10 ----A---- C:\WINDOWS\NeroDigital.ini
2010-06-04 22:39:14 ----A---- C:\WINDOWS\ModemLog_ZTE Proprietary USB Modem #2.txt
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-11-16 108792]
R1 EMP_MAP;EPSON Network Presentation Driver Service; C:\WINDOWS\system32\DRIVERS\EMP_Map.sys [2006-05-31 6400]
R1 EMP_UDMM;EPSON Network Presentation Service for UD; C:\WINDOWS\system32\DRIVERS\EMP_UDMm.sys [2006-05-31 6400]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-11-16 96408]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 ISODrive;ISO DVD/CD-ROM Device Driver; \??\C:\Program Files\UltraISO\drivers\ISODrive.sys []
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-04-14 225664]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.3.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2010-06-29 20747]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-11-16 116520]
R2 ghaio;ghaio; \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys []
R2 irda;Protokol IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-14 88192]
R2 MDC8021X;AEGIS Protocol (IEEE 802.1x) v2.3.1.9; C:\WINDOWS\system32\DRIVERS\mdc8021x.sys [2006-05-08 15781]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2004-03-17 13059]
R2 MLPTDR_N;MLPTDR_N; \??\C:\WINDOWS\system32\MLPTDR_N.SYS []
R2 NwlnkIpx;Transportní protokol kompatibilní s NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-14 88320]
R2 NwlnkNb;Služba NWLink pro rozhraní NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2001-10-25 63232]
R2 NwlnkSpx;Protokol NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2001-10-25 55936]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2005-03-04 127872]
R3 ASNDIS5;ASNDIS5 Protocol Driver; \??\C:\WINDOWS\ATK0100\ASNDIS5.SYS []
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-05-31 1198080]
R3 BCM43XX;ASUS 802.11 ovládač sieťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2005-02-11 371712]
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-14 13952]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2005-05-23 1034752]
R3 HSFHWATI;HSFHWATI; C:\WINDOWS\system32\DRIVERS\HSFHWATI.sys [2005-05-23 216832]
R3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ATKACPI.sys [2005-02-17 5632]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2008-07-14 47360]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 RTL8023xp;Realtek RTL8139/810x/8169/8110 all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2004-08-09 70144]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-14 79232]
R3 senfilt;senfilt; C:\WINDOWS\system32\drivers\senfilt.sys [2005-03-01 392704]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2005-08-03 221376]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2005-05-11 189664]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-14 12288]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-14 17152]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2005-05-23 716288]
S3 61883;61883 Unit Device; C:\WINDOWS\system32\DRIVERS\61883.sys [2008-04-14 48128]
S3 ApfiltrService;Alps Pointing-device Filter Driver; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2006-01-08 114103]
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
S3 ASPI;Advanced SCSI Programming Interface Driver; \??\C:\WINDOWS\System32\DRIVERS\ASPI32.sys []
S3 Avc;AVC Device; C:\WINDOWS\system32\DRIVERS\avc.sys [2008-04-14 38912]
S3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys []
S3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys []
S3 BthEnum;Služba Bluetooth Enumerator; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-14 17024]
S3 BTHMODEM;Ovladač pro sériovou komunikaci protokolem Bluetooth; C:\WINDOWS\system32\DRIVERS\bthmodem.sys [2008-04-14 37888]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-14 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-04-14 272896]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-14 18944]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys []
S3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys []
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 EMP_Mirr;EMP_Mirr; C:\WINDOWS\system32\DRIVERS\EMP_Mirr.sys [2006-05-31 6272]
S3 EMP_UDMR;EMP_UDMR; C:\WINDOWS\system32\DRIVERS\EMP_UDMr.sys [2006-04-25 6272]
S3 MidiSyn;MidiSyn; C:\WINDOWS\system32\drivers\MidiSyn.sys []
S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2008-04-14 51200]
S3 MSIRCOMM;Microsoft IR Communications Driver; C:\WINDOWS\system32\DRIVERS\MSIRCOMM.sys [2008-04-14 22016]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 Ndisprot;EP_NSWD NDIS Protocol Driver; C:\WINDOWS\system32\DRIVERS\EP_NSWD.sys [2003-12-22 19584]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
S3 nm;Ovladač programu Sledování sítě; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-14 40320]
S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2009-10-20 50704]
S3 NSNDIS5;NSNDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\NSNDIS5.SYS []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-14 59136]
S3 RT73;Belkin USB Network Adapter; C:\WINDOWS\system32\DRIVERS\rt73.sys [2005-08-02 232192]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 sonypvs1;Sony Digital Imaging Video2; C:\WINDOWS\system32\DRIVERS\sonypvs1.sys [2006-10-30 102220]
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2009-09-28 7168]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 vdisp;vdisp; C:\WINDOWS\system32\DRIVERS\EMP_Vd1.sys [2005-04-03 6656]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 ZTEusbmdm6k;ZTE Proprietary USB Driver; C:\WINDOWS\system32\DRIVERS\ZTEusbmdm6k.sys [2009-03-30 104960]
S3 ZTEusbnmea;ZTE NMEA Port; C:\WINDOWS\system32\DRIVERS\ZTEusbnmea.sys [2009-03-30 105344]
S3 ZTEusbser6k;ZTE Diagnostic Port; C:\WINDOWS\system32\DRIVERS\ZTEusbser6k.sys [2009-03-30 104960]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 s24trans;WLAN Transport; C:\WINDOWS\system32\DRIVERS\s24trans.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apache;Apache; C:\AppServ\Apache\Apache.exe [2002-03-21 20480]
R2 ASWLSVC;ASWLSVC; C:\WINDOWS\system32\ASWLSVC.exe [2004-05-06 496640]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-05-31 368640]
R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-11-16 735960]
R2 EMP_NSWLSV;EMP_NSWLSV; C:\Program Files\EPSON Projector\EMP NS Connection V2\EMP_NSWLSV.exe [2006-10-27 94208]
R2 EMP_UDSA;EMP_UDSA; C:\Program Files\EPSON Projector\EPSON USB Display V1.1\EMP_UDSA.exe [2006-05-30 94208]
R2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-06-29 153376]
R2 NMSAccessU;NMSAccessU; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2009-09-06 71096]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2009-12-22 488960]
R2 spmgr;spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [2005-04-20 118784]
S2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 Apache2;Apache2; C:\Program Files\Apache Group\Apache2\bin\Apache.exe -k runservice []
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-11-16 20680]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2009-10-20 117264]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-11-11 620544]
S3 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
S4 Abel;Abel; C:\Program Files\Cain\Abel.exe []
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu
Zdravim, pekne odpoledne preji a vitam Vas na nasem foru
Zapojte do PC vsechny USB klice (flashky, ext. disky apod.)
Stahnete OTL (viz muj podpis) a ulozte jej na plochu
Zapojte do PC vsechny USB klice (flashky, ext. disky apod.)
- Stahne a ulozte na plochu UsbFix http://pagesperso-orange.fr/NosTools/Ch ... UsbFix.exe
- Spustte a kliknete na Deletion
- Po dokonceni sem vlozte log, pokud na Vas nevyskoci, najdete jej zde C:\UsbFix.txt
Stahnete OTL (viz muj podpis) a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Zaskrtnete okenko Pro vsechny uzivatele
- Zaskrtnete okenko Kontrola na havet "LOP"
- Zaskrtnete okenko Kontrola na havet "Purity"
- Stari souboru zmente z 30 dnu na 7 dnu
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
netsvcs drivers32 HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s c:\windows\*.* /U %SYSTEMDRIVE%\*.exe %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s /md5start eventlog.dll scecli.dll netlogon.dll cngaudit.dll sceclt.dll ntelogon.dll logevent.dll iaStor.sys nvstor.sys atapi.sys IdeChnDr.sys viasraid.sys AGP440.sys vaxscsi.sys nvatabus.sys viamraid.sys nvata.sys nvgts.sys iastorv.sys ViPrt.sys eNetHook.dll ahcix86.sys KR10N.sys nvstor32.sys ahcix86s.sys nvrd32.sys symmpi.sys adp3132.sys mv61xx.sys nvraid.sys ndis.sys winlogon.exe explorer.exe userinit.exe lsass.exe svchost.exe smss.exe hal.dll ws2_32.dll tcpip.sys cryptsvc.dll Changer.sys JakNDis.sys isapnp.sys cdrom.sys autochk.exe /md5stop %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job /lockedfiles %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\*.dll /lockedfiles reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c %systemroot%\system32\drivers\*.sys /3 %systemroot%\system32\*.* /3 CREATERESTOREPOINT- Kliknete na tlacitko Prohledat
- Po dokonceni skenu (cca 5min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu
Poslal by som logy, ale OTL.txt je príliš veľký
P.S. Vaše zpráva obsahuje 135219 znaků. Maximální povolený počet znaků je 60000.
Ako to mám poriešiť?
P.S. Vaše zpráva obsahuje 135219 znaků. Maximální povolený počet znaků je 60000.
Ako to mám poriešiť?
Re: Prosím o kontrolu
Dobre rano preji 
Natvrdo a nadrzo to udelame
Rozdelte log do vice odpovedi 
Prvni odpoved: log z USBFixu
Dalsi odpoved: cast logu otl.txt
Dalsi odpoved: dalsi cast logu otl.txt a opakovat dokud nevlozis cely otl.txt - pozor pri rozdelovani at nevynechate nejakou cast
Dalsi odpoved: log extras.txt
Natvrdo a nadrzo to udelame
Rozdelte log do vice odpovedi Prvni odpoved: log z USBFixu
Dalsi odpoved: cast logu otl.txt
Dalsi odpoved: dalsi cast logu otl.txt a opakovat dokud nevlozis cely otl.txt - pozor pri rozdelovani at nevynechate nejakou cast
Dalsi odpoved: log extras.txt
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu
Kód: Vybrat vše
OTL Extras logfile created on: 30. 6. 2010 7:38:18 - Run 1
OTL by OldTimer - Version 3.2.7.0 Folder = C:\Documents and Settings\Internet\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041b | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 72,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 91,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 32,45 Gb Total Space | 1,22 Gb Free Space | 3,77% Space Free | Partition Type: FAT32
Drive D: | 21,57 Gb Total Space | 8,20 Gb Free Space | 38,01% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
Drive H: | 15,60 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive I: | 994,59 Mb Total Space | 98,44 Mb Free Space | 9,90% Space Free | Partition Type: FAT
Computer Name: ARTDZV
Current User Name: Internet
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[color=#E56717]========== Shell Spawning ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [DriveZ] -- Reg Error: Value error.
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PrezrieĹĄ s &IrfanView] -- "C:\Program Files\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [Procházet programem IrfanView] -- "C:\Program Files\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\Winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\Winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\Winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[color=#E56717]========== Security Center Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
[color=#E56717]========== Authorized Applications List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\uTorrent\utorrent.exe" = C:\Program Files\uTorrent\utorrent.exe:*:Enabled:utorrent -- (BitTorrent, Inc.)
"C:\Program Files\Totalcmd\TOTALCMD.EXE" = C:\Program Files\Totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows -- (C. Ghisler & Co.)
"C:\Program Files\mIRC\mirc.exe" = C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC -- File not found
"C:\Program Files\Foxit Software\PDF Editor\PDFEdit.exe" = C:\Program Files\Foxit Software\PDF Editor\PDFEdit.exe:*:Disabled:Foxit PDF Editor, the first REAL editor for PDF files! -- (Foxit Software Company)
"C:\Program Files\IW FTPort Client\Cftp32.exe" = C:\Program Files\IW FTPort Client\Cftp32.exe:*:Enabled:IW FTPort Client -- File not found
"C:\Program Files\EPSON Projector\EMP NS Connection V2\vlc.exe" = C:\Program Files\EPSON Projector\EMP NS Connection V2\vlc.exe:*:Disabled:EMP NS Connection V2.11 -- ()
"C:\Program Files\EPSON Projector\EMP NS Connection V2\EMP_NSC.exe" = C:\Program Files\EPSON Projector\EMP NS Connection V2\EMP_NSC.exe:*:Disabled:EMP NS Connection V2.11 -- (SEIKO EPSON CORPORATION)
"C:\Program Files\Proxy Switcher Standard\ProxySwitcher .exe" = C:\Program Files\Proxy Switcher Standard\ProxySwitcher .exe:*:Disabled:Proxy Switcher -- File not found
"C:\Program Files\ProxyWay\proxyway.exe" = C:\Program Files\ProxyWay\proxyway.exe:*:Disabled:ProxyWay -- File not found
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- File not found
"C:\Program Files\Proxy Switcher Standard\ProxySwitcher.exe" = C:\Program Files\Proxy Switcher Standard\ProxySwitcher.exe:*:Enabled:Proxy Switcher -- File not found
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02EF3AFA-CC2F-4907-8A85-1FE3BF9C0ED2}_is1" = Flash and Pics Control
"{0480B3ED-1849-4D55-A863-71211F3ECBF8}" = SeySo WinDirLister 2
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
"{15AC0C5D-A6FB-4CE2-8CD0-28179EEB5625}" = Nokia Connectivity Cable Driver
"{1ADE23D7-7A1E-4AEC-BA5D-EB8A21BED943}" = Video DVD Maker v3.1.0.5
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 20
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{4462AD13-F2AA-4CBD-9F95-293C38EED870}" = Power4 Gear
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A515955-A3D4-4FE6-98C0-E7987FF3279A}" = EMP NS Connection V2.11
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5B7206D9-4A4E-47C3-902F-AD9FA4B1903D}" = Movavi SplitMovie 2
"{5C29CB8B-AC1E-4114-8D68-9CD080140D4A}" = Sony USB Driver
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8
"{60F53518-1D76-447F-8E2C-A696B00E18DC}" = ESET NOD32 Antivirus
"{6324A1EF-CEF4-43E3-8BCD-9EF3F67317FD}" = NB Probe
"{675F65BF-F58A-44DD-9555-6F439759C4E4}" = SOAP3 and XML4
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = ASUSDVD
"{6D45EF03-E8EE-4355-81C3-F918CBCF1033}" = Nero 8
"{72263053-50D1-4598-9502-51ED64E54C51}" = Borland Delphi 7
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7506D309-53A2-4927-BD1B-70015F1C6E0C}" = Windows Slovak Interface Pack
"{76C24F39-B161-498F-BD8B-C64789812D13}_is1" = ConvertXtoDVD 3.2.0.55
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{81A34902-9D0B-4920-A25C-4CDC5D14B328}" = Jasc Paint Shop Pro 8
"{8F722FA9-B994-4C9B-B292-FD32D6206EDF}" = ASUS WLAN Card Utilities/Driver
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-041B-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{93D34EE3-99B3-4DB1-8B0A-0A657466F90D}" = ZTE komunikačný manažér
"{94FB906A-CF42-4128-A509-D353026A607E}" = REALTEK Gigabit and Fast Ethernet NIC Driver
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{AAF80000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 8.0 Professional Edition
"{B1656A3E-2744-48B2-95EA-52C4A316551B}" = Xara Webstyle 4
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C643C8DC-4C63-4639-A013-D6A073E1324A}" = eBeam Interact 1.2.1
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D5068583-D569-468B-9755-5FBF5848F46F}" = Sony Picture Utility
"{D848D140-41C3-4A53-86D8-E866A100B4CD}" = PC Connectivity Solution
"{DE10AB76-4756-4913-BE25-55D1C1051F9A}" = WinFlash
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag
"{EE6BC921-9E30-4F5A-A742-56A695887BC7}" = Xara Xtreme Pro
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F4EE98D3-507A-4160-8F65-710C37A8FBB8}" = Opera 9.02
"Actual Search & Replace_is1" = Actual Search & Replace Version 2.6.5
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Advanced Find and Replace 3_is1" = Advanced Find and Replace v3.0
"All ATI Software" = ATI - Software Uninstall Utility
"Ant Movie Catalog_is1" = Ant Movie Catalog
"Ap PDF Split/Merge_is1" = Ap PDF Split/Merge
"AppServ v1.5.0" = AppServ v1.5.0
"ATI Display Driver" = ATI Display Driver
"AVI MPEG RM WMV Joiner_is1" = AVI/MPEG/RM/WMV Joiner 4.82
"AVI MPEG RM WMV Splitter_is1" = AVI/MPEG/RM/WMV Splitter 4.28
"AVS Video Tools 5.1_is1" = AVS Video Tools 5.1
"AVSDiscCreator_is1" = AVS Disc Creator version 2.1
"BDE" = BDE
"Bluetooth File Sender_is1" = Bluetooth File Sender 4.0
"CCleaner" = CCleaner (remove only)
"CNXT_MODEM_PCI_VEN_1002&DEV_4378&SUBSYS_11861043" = Soft Data Fax Modem with SmartCP
"Cool Focus Design Studio_is1" = Cool Focus Design Studio v2.53
"Drawing for Children 2.2" = Drawing for Children 2.2
"DSMT5" = MathType 5
"DVD Decrypter" = DVD Decrypter (Remove Only)
"DVD Region+CSS Free_is1" = DVD Region+CSS Free 5.9.8.5
"DVD Shrink_is1" = DVD Shrink 3.2
"DVDFab Platinum_is1" = DVDFab Platinum 4.0.1.2 Ghosthunter release
"Elementární funkce" = Elementární funkce
"Ethereal" = Ethereal 0.99.0
"Fast AVI MPEG Splitter_is1" = Fast AVI MPEG Splitter 1.0.2
"Flash Saver" = Flash Saver
"FLVPlayer4Free Free FLV Player_is1" = FLVPlayer4Free Free FLV Player 1.9.0.0
"Foxit PDF Editor" = Foxit PDF Editor
"Foxit Reader" = Foxit Reader
"Ginkgo Paint!" = Ginkgo Paint!
"HControl" = ATK0100 ACPI UTILITY
"HijackThis" = HijackThis 2.0.2
"ie8" = Windows Internet Explorer 8
"ImaginePlugin" = Imagine Plugin
"Imikimi Plugin" = Imikimi Plugin
"IrfanView" = IrfanView (remove only)
"KONICA MINOLTA PagePro 1300W" = KONICA MINOLTA PagePro 1300W
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MediaInfo" = MediaInfo 0.7.1.0
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Music NFO Builder_is1" = Music NFO Builder v1.20
"Nero BurnRights!UninstallKey" = Nero BurnRights
"Network Stumbler" = Network Stumbler 0.4.0 (remove only)
"NotepadEx_is1" = NotepadEx 1.7.7.2
"ParadiseCasino" = ParadiseCasino
"PC Translator" = PC Translator
"PDF Split-Merge v2.1_is1" = PDF Split-Merge v2.1
"pdfFactory Pro" = pdfFactory Pro
"PDFTools_is1" = PDFTools Version 1.3 (08/26/2007)
"PhotoFiltre" = PhotoFiltre
"PHP Designer 2005_is1" = PHP Designer 2005 ver. 3.0.6
"Pretty Good Solitaire_is1" = Pretty Good Solitaire version 10.3.1
"qt7lite_is1" = QT Lite 2.9.0
"Rapid PHP 2006_is1" = Rapid PHP 2006 v7.3
"RAR Recovery Toolbox_is1" = RAR Recovery Toolbox 1.1
"Sisulizer's Kaboom" = Sisulizer's Kaboom
"SolveigMM Video Splitter" = SolveigMM Video Splitter
"Spyware Terminator_is1" = Spyware Terminator
"ST6UNST #1" = MDB Browser and Editor
"ST6UNST #2" = SMAC 1.1
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Tag&M3U_is1" = Tag&M3U v1.3
"Totalcmd" = Total Commander (Remove or Repair)
"UltraISO_is1" = UltraISO Premium V8.63
"Usbfix" = Usbfix By C_XX & El Desaparecido
"WebCopier_4.5" = WebCopier
"WebGraphics Optimizer Professional 4.2" = WebGraphics Optimizer Professional 4.2
"WeBuilder 2006_is1" = WeBuilder 2006 v7.3
"Winamp" = Winamp (remove only)
"WinASO Registry Optimizer 3.1_is1" = WinASO Registry Optimizer 3.1
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinGlobe" = WinGlobe
"WinPcapInst" = WinPcap 4.1 beta5
"winscp3_is1" = WinSCP 3.8.2
"WorldUnlock Codes Calculator" = WorldUnlock Codes Calculator
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"Xvid_is1" = Xvid 1.1.3 final uninstall
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
[HKEY_USERS\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"GCalc 3" = GCalc 3
"IsoBuster_is1" = IsoBuster 2.0
"Quick AVI Splitter v2.0_is1" = Quick AVI Splitter v2.0
"uTorrent" = µTorrent
[color=#E56717]========== Last 10 Event Log Errors ==========[/color]
[ Application Events ]
Error - 5. 6. 2010 1:11:57 | Computer Name = ARTDZV | Source = LoadPerf | ID = 3001
Description = Hodnota řetězce názvu čítače výkonu v registru je nesprávně naformátovaná.
Neplatný řetězec 3760, hodnota neplatného indexu je v prvním bajtu DWORD v datové
části. Poslední platná hodnota indexu je v druhém a třetím bajtu DWORD v datové
oblasti.
Error - 5. 6. 2010 1:11:57 | Computer Name = ARTDZV | Source = LoadPerf | ID = 3011
Description = Nezdařilo se uvolnění řetězců čítače výkonu pro WmiApRpl (WmiApRpl).
Kód chyby je v první hodnotě DWORD v datové oblasti.
Error - 5. 6. 2010 1:12:00 | Computer Name = ARTDZV | Source = LoadPerf | ID = 3001
Description = Hodnota řetězce názvu čítače výkonu v registru je nesprávně naformátovaná.
Neplatný řetězec 3760, hodnota neplatného indexu je v prvním bajtu DWORD v datové
části. Poslední platná hodnota indexu je v druhém a třetím bajtu DWORD v datové
oblasti.
Error - 28. 6. 2010 4:39:41 | Computer Name = ARTDZV | Source = Apache Service | ID = 3299
Description = The Apache service named Apache.exe reported the following error: >>>
[Mon Jun 28 10:39:41 2010] [warn] pid file c:/appserv/apache/logs/httpd.pid overwritten
-- Unclean shutdown of previous Apache run? <<< before the error.log file could
be opened. More information may be available in the error.log file. .
Error - 28. 6. 2010 4:54:53 | Computer Name = ARTDZV | Source = Apache Service | ID = 3299
Description = The Apache service named Apache.exe reported the following error: >>>
[Mon Jun 28 10:54:53 2010] [warn] pid file c:/appserv/apache/logs/httpd.pid overwritten
-- Unclean shutdown of previous Apache run? <<< before the error.log file could
be opened. More information may be available in the error.log file. .
Error - 28. 6. 2010 6:14:51 | Computer Name = ARTDZV | Source = WinMgmt | ID = 24
Description = Zprostředkovatel událostí se pokusil zaregistrovat dotaz select *
from CIntelWLANEvent, jehož cílová třída CIntelWLANEvent neexistuje. Dotaz bude přeskočen.
Error - 28. 6. 2010 6:14:52 | Computer Name = ARTDZV | Source = WinMgmt | ID = 24
Description = Zprostředkovatel událostí se pokusil zaregistrovat dotaz select *
from CIntelDot1xEvent, jehož cílová třída CIntelDot1xEvent neexistuje. Dotaz bude
přeskočen.
Error - 28. 6. 2010 6:17:25 | Computer Name = ARTDZV | Source = Windows Product Activation | ID = 1009
Description = Systém Windows nebyl během poskytnuté lhůty aktivován. Chcete-li systém
Windows aktivovat, obraťte se telefonicky na zástupce služeb pro zákazníky.
Error - 28. 6. 2010 6:19:20 | Computer Name = ARTDZV | Source = Windows Product Activation | ID = 1009
Description = Systém Windows nebyl během poskytnuté lhůty aktivován. Chcete-li systém
Windows aktivovat, obraťte se telefonicky na zástupce služeb pro zákazníky.
Error - 29. 6. 2010 1:44:35 | Computer Name = ARTDZV | Source = Apache Service | ID = 3299
Description = The Apache service named Apache.exe reported the following error: >>>
[Tue Jun 29 07:44:35 2010] [warn] pid file c:/appserv/apache/logs/httpd.pid overwritten
-- Unclean shutdown of previous Apache run? <<< before the error.log file could
be opened. More information may be available in the error.log file. .
[ System Events ]
Error - 30. 6. 2010 1:32:17 | Computer Name = ARTDZV | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058
Error - 30. 6. 2010 1:32:17 | Computer Name = ARTDZV | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058
Error - 30. 6. 2010 1:32:17 | Computer Name = ARTDZV | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058
Error - 30. 6. 2010 1:32:17 | Computer Name = ARTDZV | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058
Error - 30. 6. 2010 1:32:17 | Computer Name = ARTDZV | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058
Error - 30. 6. 2010 1:32:17 | Computer Name = ARTDZV | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058
Error - 30. 6. 2010 1:32:17 | Computer Name = ARTDZV | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058
Error - 30. 6. 2010 1:32:17 | Computer Name = ARTDZV | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058
Error - 30. 6. 2010 1:32:17 | Computer Name = ARTDZV | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058
Error - 30. 6. 2010 1:32:18 | Computer Name = ARTDZV | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058
< End of report >
Re: Prosím o kontrolu
OTL logfile created on: 30. 6. 2010 7:38:18 - Run 1
OTL by OldTimer - Version 3.2.7.0 Folder = C:\Documents and Settings\Internet\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041b | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 72,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 91,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 32,45 Gb Total Space | 1,22 Gb Free Space | 3,77% Space Free | Partition Type: FAT32
Drive D: | 21,57 Gb Total Space | 8,20 Gb Free Space | 38,01% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
Drive H: | 15,60 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive I: | 994,59 Mb Total Space | 98,44 Mb Free Space | 9,90% Space Free | Partition Type: FAT
Computer Name: ARTDZV
Current User Name: Internet
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.06.30 07:23:56 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Internet\Plocha\OTL.exe
PRC - [2009.11.16 09:04:30 | 000,735,960 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
========== Modules (SafeList) ==========
MOD - [2010.06.30 07:23:56 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Internet\Plocha\OTL.exe
MOD - [2008.04.14 08:49:02 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- -- (Apache2)
SRV - File not found [Disabled | Stopped] -- -- (Abel)
SRV - [2009.12.22 12:09:58 | 000,488,960 | ---- | M] (Crawler.com) [Auto | Stopped] -- C:\Program Files\Spyware Terminator\sp_rsser.exe -- (sp_rssrv)
SRV - [2009.11.16 09:12:54 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009.11.16 09:04:30 | 000,735,960 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2009.10.20 20:19:48 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2009.09.06 13:38:06 | 000,071,096 | ---- | M] () [Auto | Stopped] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU)
SRV - [2008.11.11 09:38:06 | 000,620,544 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008.07.29 19:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2006.10.27 13:04:46 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Stopped] -- C:\Program Files\EPSON Projector\EMP NS Connection V2\EMP_NSWLSV.exe -- (EMP_NSWLSV)
SRV - [2005.04.20 05:27:44 | 000,118,784 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Asus\NB Probe\SPM\spmgr.exe -- (spmgr)
SRV - [2004.05.06 12:21:04 | 000,496,640 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\ASWLSVC.exe -- (ASWLSVC)
SRV - [2002.03.21 22:14:02 | 000,020,480 | ---- | M] () [Auto | Stopped] -- C:\AppServ\Apache\Apache.exe -- (Apache)
========== Driver Services (SafeList) ==========
DRV - [2010.02.11 14:02:16 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2009.12.22 12:09:58 | 000,142,592 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2009.11.16 09:06:50 | 000,096,408 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2009.11.16 09:03:36 | 000,108,792 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2009.11.16 08:56:12 | 000,116,520 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2009.10.20 20:19:44 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF)
DRV - [2009.09.28 21:57:28 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2009.03.30 09:39:10 | 000,104,960 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k)
DRV - [2009.03.30 09:39:06 | 000,105,344 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea)
DRV - [2009.03.30 09:38:48 | 000,104,960 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)
DRV - [2008.08.26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.04.14 00:26:08 | 000,088,320 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx)
DRV - [2008.04.14 00:23:10 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2008.04.14 00:16:22 | 000,048,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\61883.sys -- (61883)
DRV - [2008.04.14 00:16:22 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avc.sys -- (Avc)
DRV - [2008.04.14 00:16:10 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\msdv.sys -- (MSDV)
DRV - [2008.04.14 00:15:14 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Ovladač zvukové karty USB (WDM)
DRV - [2007.04.13 17:42:16 | 000,068,096 | ---- | M] (EZB Systems, Inc.) [File_System | System | Running] -- C:\Program Files\UltraISO\drivers\ISODrive.sys -- (ISODrive)
DRV - [2006.10.30 13:46:02 | 000,102,220 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sonypvs1.sys -- (sonypvs1)
DRV - [2006.05.31 22:20:18 | 000,006,400 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\EMP_Map.sys -- (EMP_MAP)
DRV - [2006.05.31 22:20:10 | 000,006,400 | ---- | M] () [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\EMP_UDMm.sys -- (EMP_UDMM)
DRV - [2006.05.31 20:56:12 | 000,006,272 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EMP_Mirr.sys -- (EMP_Mirr)
DRV - [2006.05.08 16:09:46 | 000,015,781 | ---- | M] (Meetinghouse Data Communications) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\mdc8021x.sys -- (MDC8021X) AEGIS Protocol (IEEE 802.1x)
DRV - [2006.04.25 15:57:02 | 000,006,272 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EMP_UDMr.sys -- (EMP_UDMR)
DRV - [2006.01.08 09:45:38 | 000,114,103 | R--- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2005.08.02 23:00:36 | 000,232,192 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\rt73.sys -- (RT73)
DRV - [2005.05.31 22:08:02 | 001,198,080 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2005.05.23 10:31:46 | 001,034,752 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
DRV - [2005.05.23 10:30:48 | 000,216,832 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWATI.sys -- (HSFHWATI)
DRV - [2005.05.23 10:30:42 | 000,716,288 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2005.05.11 21:03:00 | 000,189,664 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SynTP.sys -- (SynTP)
DRV - [2005.04.18 22:21:08 | 000,027,136 | ---- | M] (REDC) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\risdptsk.sys -- (risdptsk)
DRV - [2005.04.03 17:17:28 | 000,006,656 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EMP_Vd1.sys -- (vdisp)
DRV - [2005.03.01 06:01:40 | 000,392,704 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (senfilt)
DRV - [2005.02.17 23:07:48 | 000,005,632 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ATKACPI.sys -- (MTsensor)
DRV - [2005.02.11 21:46:22 | 000,371,712 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2004.12.06 15:51:10 | 000,051,328 | ---- | M] (REDC) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\rimsptsk.sys -- (rimsptsk)
DRV - [2004.08.09 14:27:18 | 000,070,144 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtlnicxp.sys -- (RTL8023xp)
DRV - [2004.08.03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2004.05.28 10:13:04 | 000,016,269 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Running] -- C:\WINDOWS\ATK0100\ASNDIS5.sys -- (ASNDIS5)
DRV - [2004.03.24 03:12:34 | 000,017,280 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\nsndis5.sys -- (NSNDIS5)
DRV - [2004.03.02 16:37:50 | 000,125,184 | ---- | M] (Ahead Software AG) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\imagesrv.sys -- (imagesrv)
DRV - [2004.03.02 16:37:48 | 000,005,504 | ---- | M] (Ahead Software AG) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\imagedrv.sys -- (imagedrv)
DRV - [2003.12.22 17:53:52 | 000,019,584 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EP_NSWD.sys -- (Ndisprot)
DRV - [2003.08.19 23:28:50 | 000,014,220 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files\Asus\NB Probe\SPM\ghaio.sys -- (ghaio)
DRV - [2003.07.18 09:44:24 | 000,018,848 | ---- | M] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\MLPTDR_N.SYS -- (MLPTDR_N)
DRV - [2002.07.17 09:05:10 | 000,016,512 | ---- | M] (Adaptec) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (ASPI)
DRV - [2001.10.25 12:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb)
DRV - [2001.10.25 12:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx)
DRV - [2001.08.17 21:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
IE - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.update: false
FF - prefs.js..browser.startup.homepage: ""
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.3
FF - prefs.js..extensions.enabledItems: {3d7eb24f-2740-49df-8937-200b1cc08f8a}:1.5.13a
FF - prefs.js..extensions.enabledItems: meter@idot.cz:1.081027
FF - prefs.js..network.proxy.autoconfig_url: "C:\\Program Files\\Hide IP Platinum\\hideip.pac"
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010.02.16 17:38:44 | 000,000,000 | ---D | M]
[2008.11.24 15:08:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\mozilla\Extensions
[2008.11.24 15:08:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\mozilla\Firefox\Profiles\7k6wi1t3.default\extensions
[2010.04.19 19:27:26 | 000,000,000 | ---D | M] (Flashblock) -- C:\Documents and Settings\Internet\Data aplikací\mozilla\Firefox\Profiles\7k6wi1t3.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}
[2010.02.16 17:55:28 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Internet\Data aplikací\mozilla\Firefox\Profiles\7k6wi1t3.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009.09.23 14:36:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\mozilla\Firefox\Profiles\7k6wi1t3.default\extensions\meter@idot.cz
O1 HOSTS File: ([2010.06.29 13:57:26 | 000,000,736 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O3 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\..\Toolbar\ShellBrowser: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
O3 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\..\Toolbar\WebBrowser: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe ()
O4 - HKLM..\Run: [pdfFactory Pro Dispatcher v3] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis3a.exe (FinePrint Software, LLC)
O4 - HKLM..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe (Analog Devices, Inc.)
O4 - HKLM..\RunOnce: [] File not found
F3 - HKU\.DEFAULT WinNT: Load - (C:\WINDOWS\system32\ddabc.exe) - C:\WINDOWS\System32\ddabc.exe File not found
F3 - HKU\S-1-5-18 WinNT: Load - (C:\WINDOWS\system32\ddabc.exe) - C:\WINDOWS\System32\ddabc.exe File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoBandCustomize = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoMovingBands = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCloseDragDropBands = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetTaskbar = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoToolbarsOnTaskbar = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ClassicShell = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0
O8 - Extra context menu item: &Save Flash In This Page by Flash Saver - C:\Program Files\Flash Saver\save.htm ()
O9 - Extra Button: Flash Saver - {09EA1F80-F40A-11D1-B792-444553540001} - C:\Program Files\Flash Saver\save.htm ()
O9 - Extra 'Tools' menuitem : Flash Saver - {09EA1F80-F40A-11D1-B792-444553540001} - C:\Program Files\Flash Saver\save.htm ()
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - Reg Error: Key error. File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O16 - DPF: {00000163-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... ma9dmo.cab (Reg Error: Key error.)
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} http://support.asus.com/common/asusTek_sys_ctrl.cab (asusTek_sysctrl Class)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://active.macromedia.com/director/cabs/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... vc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {32564D57-9980-0010-8000-00AA00389B71} http://codecs.microsoft.com/codecs/i386/wmv8dmo.cab (Reg Error: Key error.)
O16 - DPF: {33564D57-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9dmo.cab (Reg Error: Key error.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 8689551921 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftup ... 5571657906 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} http://asp.photoprintit.de/microsite/57 ... oader4.cab (IPSUploader4 Control)
O16 - DPF: {CAC677B6-4963-4305-9066-0BD135CD9233} https://asp.photoprintit.de/microsite/5 ... oader4.cab (IPSUploader4 Control)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.2.124.2
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Internet\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Internet\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {93994DE8-8239-4655-B1D1-5F4E91300429} - C:\Program Files\DVD Region+CSS Free\DVDShell.dll (Fengtao Software Inc.)
O30 - LSA: Authentication Packages - (C:\WINDOWS\system32\ddabc) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.05.08 15:44:00 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ]
O32 - AutoRun File - [2010.06.30 07:29:00 | 000,000,000 | RHSD | M] - C:\Autorun.inf -- [ FAT32 ]
O32 - AutoRun File - [2010.06.30 07:28:58 | 000,000,000 | RHSD | M] - D:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009.04.20 22:55:58 | 000,000,645 | R--- | M] () - H:\AutoRun.dat -- [ CDFS ]
O32 - AutoRun File - [2009.03.03 02:04:50 | 000,002,238 | R--- | M] () - H:\AutoRun.ico -- [ CDFS ]
O32 - AutoRun File - [2009.03.03 02:04:55 | 000,000,047 | R--- | M] () - H:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2010.06.30 07:29:00 | 000,000,000 | RHSD | M] - I:\Autorun.inf -- [ FAT ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: Ias - C:\WINDOWS\system32\ias [2006.05.08 15:29:46 | 000,000,000 | ---D | M]
NetSvcs: Iprip - C:\WINDOWS\system32\iprip.dll (Microsoft Corporation)
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: Wmi - C:\WINDOWS\system32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.alf2cd - C:\WINDOWS\System32\alf2cd.acm (NCT Company)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.scg726 - C:\WINDOWS\System32\Scg726.acm (SHARP Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.voxacm160 - C:\WINDOWS\System32\vct3216.acm (Voxware, Inc.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.dvsd - C:\WINDOWS\System32\mcdvd_32.dll (MainConcept)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (56027131116781568)
========== Files/Folders - Created Within 7 Days ==========
[2010.06.30 07:28:58 | 000,000,000 | RHSD | C] -- C:\Autorun.inf
[2010.06.30 07:24:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2010.06.30 07:24:07 | 000,000,000 | ---D | C] -- C:\UsbFix
[2010.06.30 07:23:45 | 000,574,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Internet\Plocha\OTL.exe
[2010.06.29 15:26:23 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2010.06.29 15:07:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2010.06.29 13:16:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Internet\DoctorWeb
[2010.06.29 12:29:58 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys
[2010.06.29 12:29:49 | 000,455,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2010.06.29 12:29:41 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2010.06.29 12:27:55 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2010.06.29 12:27:17 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2010.06.29 12:27:15 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2010.06.29 12:27:01 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2010.06.29 12:26:59 | 001,985,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2010.06.29 12:26:45 | 011,076,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2010.06.29 12:26:35 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2010.06.29 12:26:16 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2010.06.29 12:25:13 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll
[2010.06.29 12:25:13 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll
[2010.06.29 12:23:26 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2010.06.29 12:21:11 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asycfilt.dll
[2010.06.29 12:21:04 | 000,285,696 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll
[2010.06.29 12:20:22 | 002,191,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2010.06.29 12:20:05 | 002,147,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2010.06.29 12:19:59 | 002,025,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2010.06.29 12:14:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010.06.29 12:00:49 | 001,372,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll
[2010.06.29 12:00:49 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll
[2010.06.29 12:00:37 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm
[2010.06.29 12:00:33 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm
[2010.06.29 12:00:31 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm
[2010.06.29 12:00:12 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll
[2010.06.29 12:00:12 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll
[2010.06.29 12:00:12 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2010.06.29 12:00:12 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll
[2010.06.29 12:00:12 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax
[2010.06.29 12:00:12 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax
[2010.06.29 12:00:11 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll
[2010.06.29 12:00:11 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2010.06.29 12:00:09 | 000,651,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll
[2010.06.29 12:00:09 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll
[2010.06.29 12:00:09 | 000,056,320 | ---- | C] (Společnost Microsoft) -- C:\WINDOWS\System32\dot3msm.dll
[2010.06.29 12:00:09 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll
[2010.06.29 12:00:09 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll
[2010.06.29 12:00:09 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll
[2010.06.29 12:00:09 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3api.dll
[2010.06.29 12:00:09 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3dlg.dll
[2010.06.29 12:00:08 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll
[2010.06.29 12:00:08 | 000,179,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll
[2010.06.29 12:00:08 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappcfg.dll
[2010.06.29 12:00:08 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll
[2010.06.29 12:00:08 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll
[2010.06.29 12:00:08 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappprxy.dll
[2010.06.29 12:00:08 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapolqec.dll
[2010.06.29 12:00:06 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ieencode.dll
[2010.06.29 12:00:06 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll
[2010.06.29 12:00:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll
[2010.06.29 12:00:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll
[2010.06.29 12:00:02 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll
[2010.06.29 12:00:02 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll
[2010.06.29 12:00:02 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll
[2010.06.29 12:00:01 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll
[2010.06.29 12:00:00 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll
[2010.06.29 12:00:00 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll
[2010.06.29 12:00:00 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe
[2010.06.29 11:59:59 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll
[2010.06.29 11:59:59 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll
[2010.06.29 11:59:58 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll
[2010.06.29 11:59:58 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll
[2010.06.29 11:59:58 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe
[2010.06.29 11:59:58 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll
[2010.06.29 11:59:57 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2010.06.29 11:59:56 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\onex.dll
[2010.06.29 11:59:55 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2010.06.29 11:59:55 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll
[2010.06.29 11:59:55 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qutil.dll
[2010.06.29 11:59:55 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll
[2010.06.29 11:59:55 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rasqec.dll
[2010.06.29 11:59:54 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll
[2010.06.29 11:59:54 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll
[2010.06.29 11:59:54 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slgen.dll
[2010.06.29 11:59:54 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll
[2010.06.29 11:59:54 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe
[2010.06.29 11:59:53 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slserv.exe
[2010.06.29 11:59:53 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe
[2010.06.29 11:59:49 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2010.06.29 11:59:47 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll
[2010.06.29 11:59:45 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe
[2010.06.29 11:53:56 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe
[2010.06.29 11:49:46 | 000,004,255 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll
[2010.06.29 11:49:46 | 000,003,967 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll
[2010.06.29 11:49:45 | 000,003,775 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll
[2010.06.29 11:49:45 | 000,003,711 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll
[2010.06.29 11:49:45 | 000,003,647 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll
[2010.06.29 11:49:45 | 000,003,615 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll
[2010.06.29 11:49:45 | 000,003,135 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll
[2010.06.29 11:49:44 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys
[2010.06.29 11:49:44 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys
[2010.06.29 11:49:44 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys
[2010.06.29 11:49:44 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys
[2010.06.29 11:49:44 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys
[2010.06.29 11:49:44 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys
[2010.06.29 11:49:44 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys
[2010.06.29 11:49:44 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys
[2010.06.29 11:49:44 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys
[2010.06.29 11:49:44 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys
[2010.06.29 11:49:43 | 000,326,912 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys
[2010.06.29 11:49:43 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys
[2010.06.29 11:49:43 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys
[2010.06.29 11:49:43 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys
[2010.06.29 11:49:43 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys
[2010.06.29 11:49:43 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys
[2010.06.29 11:49:43 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys
[2010.06.29 11:49:43 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys
[2010.06.29 11:49:43 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys
[2010.06.29 11:49:43 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys
[2010.06.29 11:49:42 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys
[2010.06.29 11:49:42 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll
[2010.06.29 11:49:42 | 000,021,183 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll
[2010.06.29 11:49:42 | 000,017,279 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll
[2010.06.29 11:49:42 | 000,014,143 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll
[2010.06.29 11:49:42 | 000,011,359 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll
[2010.06.29 11:49:41 | 000,036,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthprint.sys
[2010.06.29 11:49:41 | 000,015,423 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll
[2010.06.29 11:49:40 | 000,144,384 | ---- | C] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\drivers\hdaudbus.sys
[2010.06.29 11:49:38 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2010.06.29 11:49:37 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2010.06.29 11:49:37 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2010.06.29 11:49:37 | 000,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mutohpen.sys
[2010.06.29 11:49:36 | 001,897,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2010.06.29 11:49:36 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2010.06.29 11:49:36 | 000,030,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismpx.sys
[2010.06.29 11:49:36 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys
[2010.06.29 11:49:35 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2010.06.29 11:49:34 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2010.06.29 11:49:34 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys
[2010.06.29 11:49:34 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2010.06.29 11:49:34 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2010.06.29 11:49:34 | 000,005,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\smbali.sys
[2010.06.29 11:49:34 | 000,003,901 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\siint5.dll
[2010.06.29 11:49:33 | 000,011,325 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\vchnt5.dll
[2010.06.29 11:49:32 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2010.06.29 11:49:32 | 000,022,271 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2010.06.29 11:49:32 | 000,011,935 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2010.06.29 11:49:32 | 000,011,871 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2010.06.29 11:49:32 | 000,011,807 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2010.06.29 11:49:32 | 000,011,295 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2010.06.29 11:42:07 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2010.06.29 11:13:25 | 001,851,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys
[2010.06.29 11:12:28 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll
[2010.06.29 11:10:37 | 001,294,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quartz.dll
[2010.06.29 10:12:09 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.06.29 10:12:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010.06.29 10:12:06 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.06.29 10:12:05 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010.06.29 09:22:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Internet\Plocha\PKspravy
[2010.06.29 09:15:12 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2010.06.29 09:15:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[2010.06.29 09:01:28 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2010.06.29 08:44:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Internet\Plocha\excel
[2010.06.29 08:16:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2010.06.29 08:16:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010.06.29 08:15:41 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010.06.29 08:15:40 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2010.06.29 08:15:40 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010.06.29 08:15:40 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010.06.29 08:15:40 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010.06.29 08:15:05 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010.06.29 07:43:48 | 000,000,000 | -HSD | C] -- C:\FOUND.000
[2010.06.28 15:02:09 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Internet\PrivacIE
[2010.06.28 15:00:12 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Internet\IETldCache
[2010.06.28 14:49:30 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2010.06.28 14:49:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\sk-SK
[2010.06.28 14:46:21 | 000,265,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdbg2.dll
[2010.06.28 14:46:17 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sqmapi.dll
[2010.06.28 14:46:16 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msrating.dll.mui
[2010.06.28 14:46:14 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshta.exe.mui
[2010.06.28 14:45:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll.mui
[2010.06.28 14:45:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe.mui
[2010.06.28 13:24:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\OPTIONS
[2010.06.28 12:10:16 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll
[2010.06.28 12:10:16 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll
[2010.06.28 12:10:15 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll
[2010.06.28 12:10:15 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe
[2010.06.28 12:10:15 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll
[2010.06.28 12:10:15 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll
[2010.06.28 12:10:00 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2010.06.28 12:09:59 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2010.06.28 12:09:59 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2010.06.28 12:09:58 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe
[2010.06.28 12:09:58 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2010.06.28 12:09:57 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2010.06.28 12:09:55 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2010.06.28 12:09:54 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2010.06.28 12:09:54 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2010.06.28 12:09:53 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2010.06.28 12:09:53 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2010.06.28 12:09:53 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2010.06.28 12:09:49 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2010.06.28 12:09:49 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2010.06.28 12:09:49 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll
[2010.06.28 12:09:48 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2010.06.28 12:09:46 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2010.06.28 12:09:46 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe
[2010.06.28 12:09:46 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe
[2010.06.28 12:09:46 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2010.06.28 12:09:45 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2010.06.28 12:09:45 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2010.06.28 12:09:45 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2010.06.28 12:09:45 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2010.06.28 12:09:40 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2010.06.28 12:09:38 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2010.06.28 12:09:37 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll
[2010.06.28 12:09:37 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll
[2010.06.28 12:09:35 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll
[2010.06.28 12:09:35 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll
[2010.06.28 12:09:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll
[2010.06.28 12:09:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll
[2010.06.28 12:09:34 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2010.06.28 12:09:34 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2010.06.28 12:09:34 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2010.06.28 12:09:34 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2010.06.28 12:09:34 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2010.06.28 12:09:34 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2010.06.28 12:09:34 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2010.06.28 12:09:34 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2010.06.28 12:09:34 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2010.06.28 12:09:34 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2010.06.28 12:09:33 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll
[2010.06.28 12:09:33 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe
[2010.06.28 12:09:33 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2010.06.28 12:09:33 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2010.06.28 12:09:33 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2010.06.28 12:09:33 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll
[2010.06.28 12:09:32 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll
[2010.06.28 12:09:25 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll
[2010.06.28 12:09:24 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2010.06.28 12:09:23 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll
[2010.06.28 12:09:23 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2010.06.28 12:09:23 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2010.06.28 12:09:23 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe
[2010.06.28 12:09:22 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll
[2010.06.28 12:09:21 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2010.06.28 12:09:20 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2010.06.28 12:09:20 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2010.06.28 12:09:18 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2010.06.28 12:09:18 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2010.06.28 12:09:18 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2010.06.28 12:09:16 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2010.06.28 12:09:16 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2010.06.28 12:09:16 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2010.06.28 12:09:15 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2010.06.28 12:09:15 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2010.06.28 12:09:15 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2010.06.28 12:09:15 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2010.06.28 12:09:13 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2010.06.28 12:09:13 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2010.06.28 12:09:13 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2010.06.28 12:09:13 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2010.06.28 12:09:12 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2010.06.28 12:09:07 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll
[2010.06.28 12:09:02 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2010.06.28 12:08:55 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2010.06.28 12:08:55 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2010.06.28 12:08:44 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2010.06.28 12:08:44 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2010.06.28 12:08:43 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll
[2010.06.28 12:08:38 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2010.06.28 12:08:38 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll
[2010.06.28 12:08:37 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll
[2010.06.28 12:08:37 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll
[2010.06.28 12:08:37 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2010.06.28 12:08:37 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll
[2010.06.28 12:08:37 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll
OTL by OldTimer - Version 3.2.7.0 Folder = C:\Documents and Settings\Internet\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041b | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 72,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 91,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 32,45 Gb Total Space | 1,22 Gb Free Space | 3,77% Space Free | Partition Type: FAT32
Drive D: | 21,57 Gb Total Space | 8,20 Gb Free Space | 38,01% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
Drive H: | 15,60 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive I: | 994,59 Mb Total Space | 98,44 Mb Free Space | 9,90% Space Free | Partition Type: FAT
Computer Name: ARTDZV
Current User Name: Internet
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.06.30 07:23:56 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Internet\Plocha\OTL.exe
PRC - [2009.11.16 09:04:30 | 000,735,960 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
========== Modules (SafeList) ==========
MOD - [2010.06.30 07:23:56 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Internet\Plocha\OTL.exe
MOD - [2008.04.14 08:49:02 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- -- (Apache2)
SRV - File not found [Disabled | Stopped] -- -- (Abel)
SRV - [2009.12.22 12:09:58 | 000,488,960 | ---- | M] (Crawler.com) [Auto | Stopped] -- C:\Program Files\Spyware Terminator\sp_rsser.exe -- (sp_rssrv)
SRV - [2009.11.16 09:12:54 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009.11.16 09:04:30 | 000,735,960 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2009.10.20 20:19:48 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2009.09.06 13:38:06 | 000,071,096 | ---- | M] () [Auto | Stopped] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU)
SRV - [2008.11.11 09:38:06 | 000,620,544 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008.07.29 19:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2006.10.27 13:04:46 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Stopped] -- C:\Program Files\EPSON Projector\EMP NS Connection V2\EMP_NSWLSV.exe -- (EMP_NSWLSV)
SRV - [2005.04.20 05:27:44 | 000,118,784 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Asus\NB Probe\SPM\spmgr.exe -- (spmgr)
SRV - [2004.05.06 12:21:04 | 000,496,640 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\ASWLSVC.exe -- (ASWLSVC)
SRV - [2002.03.21 22:14:02 | 000,020,480 | ---- | M] () [Auto | Stopped] -- C:\AppServ\Apache\Apache.exe -- (Apache)
========== Driver Services (SafeList) ==========
DRV - [2010.02.11 14:02:16 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2009.12.22 12:09:58 | 000,142,592 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2009.11.16 09:06:50 | 000,096,408 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2009.11.16 09:03:36 | 000,108,792 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2009.11.16 08:56:12 | 000,116,520 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2009.10.20 20:19:44 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF)
DRV - [2009.09.28 21:57:28 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2009.03.30 09:39:10 | 000,104,960 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k)
DRV - [2009.03.30 09:39:06 | 000,105,344 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea)
DRV - [2009.03.30 09:38:48 | 000,104,960 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)
DRV - [2008.08.26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.04.14 00:26:08 | 000,088,320 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx)
DRV - [2008.04.14 00:23:10 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2008.04.14 00:16:22 | 000,048,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\61883.sys -- (61883)
DRV - [2008.04.14 00:16:22 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avc.sys -- (Avc)
DRV - [2008.04.14 00:16:10 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\msdv.sys -- (MSDV)
DRV - [2008.04.14 00:15:14 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Ovladač zvukové karty USB (WDM)
DRV - [2007.04.13 17:42:16 | 000,068,096 | ---- | M] (EZB Systems, Inc.) [File_System | System | Running] -- C:\Program Files\UltraISO\drivers\ISODrive.sys -- (ISODrive)
DRV - [2006.10.30 13:46:02 | 000,102,220 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sonypvs1.sys -- (sonypvs1)
DRV - [2006.05.31 22:20:18 | 000,006,400 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\EMP_Map.sys -- (EMP_MAP)
DRV - [2006.05.31 22:20:10 | 000,006,400 | ---- | M] () [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\EMP_UDMm.sys -- (EMP_UDMM)
DRV - [2006.05.31 20:56:12 | 000,006,272 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EMP_Mirr.sys -- (EMP_Mirr)
DRV - [2006.05.08 16:09:46 | 000,015,781 | ---- | M] (Meetinghouse Data Communications) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\mdc8021x.sys -- (MDC8021X) AEGIS Protocol (IEEE 802.1x)
DRV - [2006.04.25 15:57:02 | 000,006,272 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EMP_UDMr.sys -- (EMP_UDMR)
DRV - [2006.01.08 09:45:38 | 000,114,103 | R--- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2005.08.02 23:00:36 | 000,232,192 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\rt73.sys -- (RT73)
DRV - [2005.05.31 22:08:02 | 001,198,080 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2005.05.23 10:31:46 | 001,034,752 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
DRV - [2005.05.23 10:30:48 | 000,216,832 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWATI.sys -- (HSFHWATI)
DRV - [2005.05.23 10:30:42 | 000,716,288 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2005.05.11 21:03:00 | 000,189,664 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SynTP.sys -- (SynTP)
DRV - [2005.04.18 22:21:08 | 000,027,136 | ---- | M] (REDC) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\risdptsk.sys -- (risdptsk)
DRV - [2005.04.03 17:17:28 | 000,006,656 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EMP_Vd1.sys -- (vdisp)
DRV - [2005.03.01 06:01:40 | 000,392,704 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (senfilt)
DRV - [2005.02.17 23:07:48 | 000,005,632 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ATKACPI.sys -- (MTsensor)
DRV - [2005.02.11 21:46:22 | 000,371,712 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2004.12.06 15:51:10 | 000,051,328 | ---- | M] (REDC) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\rimsptsk.sys -- (rimsptsk)
DRV - [2004.08.09 14:27:18 | 000,070,144 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtlnicxp.sys -- (RTL8023xp)
DRV - [2004.08.03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2004.05.28 10:13:04 | 000,016,269 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Running] -- C:\WINDOWS\ATK0100\ASNDIS5.sys -- (ASNDIS5)
DRV - [2004.03.24 03:12:34 | 000,017,280 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\nsndis5.sys -- (NSNDIS5)
DRV - [2004.03.02 16:37:50 | 000,125,184 | ---- | M] (Ahead Software AG) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\imagesrv.sys -- (imagesrv)
DRV - [2004.03.02 16:37:48 | 000,005,504 | ---- | M] (Ahead Software AG) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\imagedrv.sys -- (imagedrv)
DRV - [2003.12.22 17:53:52 | 000,019,584 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EP_NSWD.sys -- (Ndisprot)
DRV - [2003.08.19 23:28:50 | 000,014,220 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files\Asus\NB Probe\SPM\ghaio.sys -- (ghaio)
DRV - [2003.07.18 09:44:24 | 000,018,848 | ---- | M] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\MLPTDR_N.SYS -- (MLPTDR_N)
DRV - [2002.07.17 09:05:10 | 000,016,512 | ---- | M] (Adaptec) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (ASPI)
DRV - [2001.10.25 12:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb)
DRV - [2001.10.25 12:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx)
DRV - [2001.08.17 21:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
IE - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.update: false
FF - prefs.js..browser.startup.homepage: ""
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.3
FF - prefs.js..extensions.enabledItems: {3d7eb24f-2740-49df-8937-200b1cc08f8a}:1.5.13a
FF - prefs.js..extensions.enabledItems: meter@idot.cz:1.081027
FF - prefs.js..network.proxy.autoconfig_url: "C:\\Program Files\\Hide IP Platinum\\hideip.pac"
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010.02.16 17:38:44 | 000,000,000 | ---D | M]
[2008.11.24 15:08:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\mozilla\Extensions
[2008.11.24 15:08:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\mozilla\Firefox\Profiles\7k6wi1t3.default\extensions
[2010.04.19 19:27:26 | 000,000,000 | ---D | M] (Flashblock) -- C:\Documents and Settings\Internet\Data aplikací\mozilla\Firefox\Profiles\7k6wi1t3.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}
[2010.02.16 17:55:28 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Internet\Data aplikací\mozilla\Firefox\Profiles\7k6wi1t3.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009.09.23 14:36:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\mozilla\Firefox\Profiles\7k6wi1t3.default\extensions\meter@idot.cz
O1 HOSTS File: ([2010.06.29 13:57:26 | 000,000,736 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O3 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\..\Toolbar\ShellBrowser: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
O3 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\..\Toolbar\WebBrowser: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe ()
O4 - HKLM..\Run: [pdfFactory Pro Dispatcher v3] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis3a.exe (FinePrint Software, LLC)
O4 - HKLM..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe (Analog Devices, Inc.)
O4 - HKLM..\RunOnce: [] File not found
F3 - HKU\.DEFAULT WinNT: Load - (C:\WINDOWS\system32\ddabc.exe) - C:\WINDOWS\System32\ddabc.exe File not found
F3 - HKU\S-1-5-18 WinNT: Load - (C:\WINDOWS\system32\ddabc.exe) - C:\WINDOWS\System32\ddabc.exe File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoBandCustomize = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoMovingBands = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCloseDragDropBands = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetTaskbar = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoToolbarsOnTaskbar = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ClassicShell = 0
O7 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0
O8 - Extra context menu item: &Save Flash In This Page by Flash Saver - C:\Program Files\Flash Saver\save.htm ()
O9 - Extra Button: Flash Saver - {09EA1F80-F40A-11D1-B792-444553540001} - C:\Program Files\Flash Saver\save.htm ()
O9 - Extra 'Tools' menuitem : Flash Saver - {09EA1F80-F40A-11D1-B792-444553540001} - C:\Program Files\Flash Saver\save.htm ()
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - Reg Error: Key error. File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O16 - DPF: {00000163-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... ma9dmo.cab (Reg Error: Key error.)
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} http://support.asus.com/common/asusTek_sys_ctrl.cab (asusTek_sysctrl Class)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://active.macromedia.com/director/cabs/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... vc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {32564D57-9980-0010-8000-00AA00389B71} http://codecs.microsoft.com/codecs/i386/wmv8dmo.cab (Reg Error: Key error.)
O16 - DPF: {33564D57-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9dmo.cab (Reg Error: Key error.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 8689551921 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftup ... 5571657906 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} http://asp.photoprintit.de/microsite/57 ... oader4.cab (IPSUploader4 Control)
O16 - DPF: {CAC677B6-4963-4305-9066-0BD135CD9233} https://asp.photoprintit.de/microsite/5 ... oader4.cab (IPSUploader4 Control)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.2.124.2
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Internet\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Internet\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {93994DE8-8239-4655-B1D1-5F4E91300429} - C:\Program Files\DVD Region+CSS Free\DVDShell.dll (Fengtao Software Inc.)
O30 - LSA: Authentication Packages - (C:\WINDOWS\system32\ddabc) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.05.08 15:44:00 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ]
O32 - AutoRun File - [2010.06.30 07:29:00 | 000,000,000 | RHSD | M] - C:\Autorun.inf -- [ FAT32 ]
O32 - AutoRun File - [2010.06.30 07:28:58 | 000,000,000 | RHSD | M] - D:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009.04.20 22:55:58 | 000,000,645 | R--- | M] () - H:\AutoRun.dat -- [ CDFS ]
O32 - AutoRun File - [2009.03.03 02:04:50 | 000,002,238 | R--- | M] () - H:\AutoRun.ico -- [ CDFS ]
O32 - AutoRun File - [2009.03.03 02:04:55 | 000,000,047 | R--- | M] () - H:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2010.06.30 07:29:00 | 000,000,000 | RHSD | M] - I:\Autorun.inf -- [ FAT ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: Ias - C:\WINDOWS\system32\ias [2006.05.08 15:29:46 | 000,000,000 | ---D | M]
NetSvcs: Iprip - C:\WINDOWS\system32\iprip.dll (Microsoft Corporation)
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: Wmi - C:\WINDOWS\system32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.alf2cd - C:\WINDOWS\System32\alf2cd.acm (NCT Company)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.scg726 - C:\WINDOWS\System32\Scg726.acm (SHARP Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.voxacm160 - C:\WINDOWS\System32\vct3216.acm (Voxware, Inc.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.dvsd - C:\WINDOWS\System32\mcdvd_32.dll (MainConcept)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (56027131116781568)
========== Files/Folders - Created Within 7 Days ==========
[2010.06.30 07:28:58 | 000,000,000 | RHSD | C] -- C:\Autorun.inf
[2010.06.30 07:24:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2010.06.30 07:24:07 | 000,000,000 | ---D | C] -- C:\UsbFix
[2010.06.30 07:23:45 | 000,574,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Internet\Plocha\OTL.exe
[2010.06.29 15:26:23 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2010.06.29 15:07:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2010.06.29 13:16:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Internet\DoctorWeb
[2010.06.29 12:29:58 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys
[2010.06.29 12:29:49 | 000,455,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2010.06.29 12:29:41 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2010.06.29 12:27:55 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2010.06.29 12:27:17 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2010.06.29 12:27:15 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2010.06.29 12:27:01 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2010.06.29 12:26:59 | 001,985,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2010.06.29 12:26:45 | 011,076,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2010.06.29 12:26:35 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2010.06.29 12:26:16 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2010.06.29 12:25:13 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll
[2010.06.29 12:25:13 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll
[2010.06.29 12:23:26 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2010.06.29 12:21:11 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asycfilt.dll
[2010.06.29 12:21:04 | 000,285,696 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll
[2010.06.29 12:20:22 | 002,191,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2010.06.29 12:20:05 | 002,147,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2010.06.29 12:19:59 | 002,025,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2010.06.29 12:14:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010.06.29 12:00:49 | 001,372,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll
[2010.06.29 12:00:49 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll
[2010.06.29 12:00:37 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm
[2010.06.29 12:00:33 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm
[2010.06.29 12:00:31 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm
[2010.06.29 12:00:12 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll
[2010.06.29 12:00:12 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll
[2010.06.29 12:00:12 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2010.06.29 12:00:12 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll
[2010.06.29 12:00:12 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax
[2010.06.29 12:00:12 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax
[2010.06.29 12:00:11 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll
[2010.06.29 12:00:11 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2010.06.29 12:00:09 | 000,651,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll
[2010.06.29 12:00:09 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll
[2010.06.29 12:00:09 | 000,056,320 | ---- | C] (Společnost Microsoft) -- C:\WINDOWS\System32\dot3msm.dll
[2010.06.29 12:00:09 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll
[2010.06.29 12:00:09 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll
[2010.06.29 12:00:09 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll
[2010.06.29 12:00:09 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3api.dll
[2010.06.29 12:00:09 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3dlg.dll
[2010.06.29 12:00:08 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll
[2010.06.29 12:00:08 | 000,179,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll
[2010.06.29 12:00:08 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappcfg.dll
[2010.06.29 12:00:08 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll
[2010.06.29 12:00:08 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll
[2010.06.29 12:00:08 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappprxy.dll
[2010.06.29 12:00:08 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapolqec.dll
[2010.06.29 12:00:06 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ieencode.dll
[2010.06.29 12:00:06 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll
[2010.06.29 12:00:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll
[2010.06.29 12:00:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll
[2010.06.29 12:00:02 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll
[2010.06.29 12:00:02 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll
[2010.06.29 12:00:02 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll
[2010.06.29 12:00:01 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll
[2010.06.29 12:00:00 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll
[2010.06.29 12:00:00 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll
[2010.06.29 12:00:00 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe
[2010.06.29 11:59:59 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll
[2010.06.29 11:59:59 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll
[2010.06.29 11:59:58 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll
[2010.06.29 11:59:58 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll
[2010.06.29 11:59:58 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe
[2010.06.29 11:59:58 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll
[2010.06.29 11:59:57 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2010.06.29 11:59:56 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\onex.dll
[2010.06.29 11:59:55 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2010.06.29 11:59:55 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll
[2010.06.29 11:59:55 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qutil.dll
[2010.06.29 11:59:55 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll
[2010.06.29 11:59:55 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rasqec.dll
[2010.06.29 11:59:54 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll
[2010.06.29 11:59:54 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll
[2010.06.29 11:59:54 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slgen.dll
[2010.06.29 11:59:54 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll
[2010.06.29 11:59:54 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe
[2010.06.29 11:59:53 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slserv.exe
[2010.06.29 11:59:53 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe
[2010.06.29 11:59:49 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2010.06.29 11:59:47 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll
[2010.06.29 11:59:45 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe
[2010.06.29 11:53:56 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe
[2010.06.29 11:49:46 | 000,004,255 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll
[2010.06.29 11:49:46 | 000,003,967 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll
[2010.06.29 11:49:45 | 000,003,775 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll
[2010.06.29 11:49:45 | 000,003,711 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll
[2010.06.29 11:49:45 | 000,003,647 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll
[2010.06.29 11:49:45 | 000,003,615 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll
[2010.06.29 11:49:45 | 000,003,135 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll
[2010.06.29 11:49:44 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys
[2010.06.29 11:49:44 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys
[2010.06.29 11:49:44 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys
[2010.06.29 11:49:44 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys
[2010.06.29 11:49:44 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys
[2010.06.29 11:49:44 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys
[2010.06.29 11:49:44 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys
[2010.06.29 11:49:44 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys
[2010.06.29 11:49:44 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys
[2010.06.29 11:49:44 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys
[2010.06.29 11:49:43 | 000,326,912 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys
[2010.06.29 11:49:43 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys
[2010.06.29 11:49:43 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys
[2010.06.29 11:49:43 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys
[2010.06.29 11:49:43 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys
[2010.06.29 11:49:43 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys
[2010.06.29 11:49:43 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys
[2010.06.29 11:49:43 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys
[2010.06.29 11:49:43 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys
[2010.06.29 11:49:43 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys
[2010.06.29 11:49:42 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys
[2010.06.29 11:49:42 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll
[2010.06.29 11:49:42 | 000,021,183 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll
[2010.06.29 11:49:42 | 000,017,279 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll
[2010.06.29 11:49:42 | 000,014,143 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll
[2010.06.29 11:49:42 | 000,011,359 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll
[2010.06.29 11:49:41 | 000,036,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthprint.sys
[2010.06.29 11:49:41 | 000,015,423 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll
[2010.06.29 11:49:40 | 000,144,384 | ---- | C] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\drivers\hdaudbus.sys
[2010.06.29 11:49:38 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2010.06.29 11:49:37 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2010.06.29 11:49:37 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2010.06.29 11:49:37 | 000,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mutohpen.sys
[2010.06.29 11:49:36 | 001,897,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2010.06.29 11:49:36 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2010.06.29 11:49:36 | 000,030,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismpx.sys
[2010.06.29 11:49:36 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys
[2010.06.29 11:49:35 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2010.06.29 11:49:34 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2010.06.29 11:49:34 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys
[2010.06.29 11:49:34 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2010.06.29 11:49:34 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2010.06.29 11:49:34 | 000,005,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\smbali.sys
[2010.06.29 11:49:34 | 000,003,901 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\siint5.dll
[2010.06.29 11:49:33 | 000,011,325 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\vchnt5.dll
[2010.06.29 11:49:32 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2010.06.29 11:49:32 | 000,022,271 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2010.06.29 11:49:32 | 000,011,935 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2010.06.29 11:49:32 | 000,011,871 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2010.06.29 11:49:32 | 000,011,807 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2010.06.29 11:49:32 | 000,011,295 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2010.06.29 11:42:07 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2010.06.29 11:13:25 | 001,851,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys
[2010.06.29 11:12:28 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll
[2010.06.29 11:10:37 | 001,294,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quartz.dll
[2010.06.29 10:12:09 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.06.29 10:12:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010.06.29 10:12:06 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.06.29 10:12:05 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010.06.29 09:22:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Internet\Plocha\PKspravy
[2010.06.29 09:15:12 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2010.06.29 09:15:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[2010.06.29 09:01:28 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2010.06.29 08:44:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Internet\Plocha\excel
[2010.06.29 08:16:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2010.06.29 08:16:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010.06.29 08:15:41 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010.06.29 08:15:40 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2010.06.29 08:15:40 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010.06.29 08:15:40 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010.06.29 08:15:40 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010.06.29 08:15:05 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010.06.29 07:43:48 | 000,000,000 | -HSD | C] -- C:\FOUND.000
[2010.06.28 15:02:09 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Internet\PrivacIE
[2010.06.28 15:00:12 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Internet\IETldCache
[2010.06.28 14:49:30 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2010.06.28 14:49:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\sk-SK
[2010.06.28 14:46:21 | 000,265,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdbg2.dll
[2010.06.28 14:46:17 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sqmapi.dll
[2010.06.28 14:46:16 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msrating.dll.mui
[2010.06.28 14:46:14 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshta.exe.mui
[2010.06.28 14:45:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll.mui
[2010.06.28 14:45:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe.mui
[2010.06.28 13:24:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\OPTIONS
[2010.06.28 12:10:16 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll
[2010.06.28 12:10:16 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll
[2010.06.28 12:10:15 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll
[2010.06.28 12:10:15 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe
[2010.06.28 12:10:15 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll
[2010.06.28 12:10:15 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll
[2010.06.28 12:10:00 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2010.06.28 12:09:59 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2010.06.28 12:09:59 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2010.06.28 12:09:58 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe
[2010.06.28 12:09:58 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2010.06.28 12:09:57 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2010.06.28 12:09:55 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2010.06.28 12:09:54 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2010.06.28 12:09:54 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2010.06.28 12:09:53 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2010.06.28 12:09:53 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2010.06.28 12:09:53 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2010.06.28 12:09:49 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2010.06.28 12:09:49 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2010.06.28 12:09:49 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll
[2010.06.28 12:09:48 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2010.06.28 12:09:46 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2010.06.28 12:09:46 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe
[2010.06.28 12:09:46 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe
[2010.06.28 12:09:46 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2010.06.28 12:09:45 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2010.06.28 12:09:45 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2010.06.28 12:09:45 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2010.06.28 12:09:45 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2010.06.28 12:09:40 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2010.06.28 12:09:38 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2010.06.28 12:09:37 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll
[2010.06.28 12:09:37 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll
[2010.06.28 12:09:35 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll
[2010.06.28 12:09:35 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll
[2010.06.28 12:09:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll
[2010.06.28 12:09:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll
[2010.06.28 12:09:34 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2010.06.28 12:09:34 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2010.06.28 12:09:34 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2010.06.28 12:09:34 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2010.06.28 12:09:34 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2010.06.28 12:09:34 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2010.06.28 12:09:34 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2010.06.28 12:09:34 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2010.06.28 12:09:34 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2010.06.28 12:09:34 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2010.06.28 12:09:33 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll
[2010.06.28 12:09:33 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe
[2010.06.28 12:09:33 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2010.06.28 12:09:33 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2010.06.28 12:09:33 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2010.06.28 12:09:33 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll
[2010.06.28 12:09:32 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll
[2010.06.28 12:09:25 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll
[2010.06.28 12:09:24 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2010.06.28 12:09:23 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll
[2010.06.28 12:09:23 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2010.06.28 12:09:23 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2010.06.28 12:09:23 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe
[2010.06.28 12:09:22 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll
[2010.06.28 12:09:21 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2010.06.28 12:09:20 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2010.06.28 12:09:20 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2010.06.28 12:09:18 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2010.06.28 12:09:18 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2010.06.28 12:09:18 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2010.06.28 12:09:16 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2010.06.28 12:09:16 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2010.06.28 12:09:16 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2010.06.28 12:09:15 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2010.06.28 12:09:15 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2010.06.28 12:09:15 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2010.06.28 12:09:15 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2010.06.28 12:09:13 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2010.06.28 12:09:13 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2010.06.28 12:09:13 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2010.06.28 12:09:13 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2010.06.28 12:09:12 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2010.06.28 12:09:07 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll
[2010.06.28 12:09:02 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2010.06.28 12:08:55 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2010.06.28 12:08:55 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2010.06.28 12:08:44 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2010.06.28 12:08:44 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2010.06.28 12:08:43 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll
[2010.06.28 12:08:38 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2010.06.28 12:08:38 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll
[2010.06.28 12:08:37 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll
[2010.06.28 12:08:37 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll
[2010.06.28 12:08:37 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2010.06.28 12:08:37 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll
[2010.06.28 12:08:37 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll
Re: Prosím o kontrolu
[2010.06.28 12:08:37 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll
[2010.06.28 12:08:37 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll
[2010.06.28 12:08:37 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll
[2010.06.28 12:08:36 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2010.06.28 12:08:36 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2010.06.28 12:08:36 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2010.06.28 12:08:36 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll
[2010.06.28 12:08:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll
[2010.06.28 12:08:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll
[2010.06.28 12:08:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll
[2010.06.28 12:08:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll
[2010.06.28 12:08:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll
[2010.06.28 12:08:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll
[2010.06.28 12:08:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll
[2010.06.28 12:08:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll
[2010.06.28 12:08:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll
[2010.06.28 12:08:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll
[2010.06.28 12:08:35 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll
[2010.06.28 12:08:34 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2010.06.28 12:08:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll
[2010.06.28 12:08:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll
[2010.06.28 12:08:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll
[2010.06.28 12:08:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll
[2010.06.28 12:08:34 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll
[2010.06.28 12:08:34 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll
[2010.06.28 12:08:33 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2010.06.28 12:08:31 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2010.06.28 12:08:31 | 000,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2010.06.28 12:08:29 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2010.06.28 12:08:29 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe
[2010.06.28 12:08:29 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe
[2010.06.28 12:08:29 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2010.06.28 12:08:29 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2010.06.28 12:08:29 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2010.06.28 12:08:28 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe
[2010.06.28 12:08:28 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe
[2010.06.28 12:08:28 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe
[2010.06.28 12:08:28 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2010.06.28 12:08:28 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2010.06.28 12:08:27 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2010.06.28 12:08:27 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2010.06.28 12:08:27 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2010.06.28 12:08:26 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2010.06.28 12:08:26 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2010.06.28 12:08:26 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2010.06.28 12:08:26 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2010.06.28 12:08:26 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2010.06.28 12:08:26 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2010.06.28 12:08:26 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2010.06.28 12:08:12 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2010.06.28 12:07:56 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2010.06.28 12:07:55 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll
[2010.06.28 12:07:55 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll
[2010.06.28 12:07:55 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe
[2010.06.28 12:07:54 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2010.06.28 12:07:51 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe
[2010.06.28 12:07:50 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll
[2010.06.28 12:07:49 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll
[2010.06.28 12:07:49 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll
[2010.06.28 12:07:49 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2010.06.28 12:07:47 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2010.06.28 12:07:46 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll
[2010.06.28 12:07:45 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2010.06.28 12:07:44 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2010.06.28 12:07:44 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2010.06.28 12:07:44 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2010.06.28 12:07:32 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2010.06.28 12:07:28 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe
[2010.06.28 12:07:28 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2010.06.28 12:07:26 | 001,040,467 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll
[2010.06.28 12:07:25 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe
[2010.06.28 12:07:25 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll
[2010.06.28 12:07:24 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2010.06.28 12:07:24 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2010.06.28 12:07:24 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2010.06.28 12:07:24 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2010.06.28 12:07:23 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2010.06.28 12:07:22 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2010.06.28 12:07:22 | 000,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll
[2010.06.28 12:07:22 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe
[2010.06.28 12:07:22 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll
[2010.06.28 12:07:21 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2010.06.28 12:07:21 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2010.06.28 12:07:21 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2010.06.28 12:07:21 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2010.06.28 12:07:21 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2010.06.28 12:07:19 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2010.06.28 12:07:19 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2010.06.28 12:07:19 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2010.06.28 12:07:10 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll
[2010.06.28 12:07:10 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe
[2010.06.28 12:07:09 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll
[2010.06.28 12:07:02 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll
[2010.06.28 12:07:00 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll
[2010.06.28 12:06:52 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll
[2010.06.28 12:06:40 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll
[2010.06.28 12:06:28 | 000,000,000 | ---D | C] -- C:\Program Files\msn gaming zone
[2010.06.28 12:03:28 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services
[2010.06.28 12:03:11 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe
[2010.06.28 12:02:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Obrázky
[2010.06.28 12:02:06 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2010.06.28 11:59:56 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irftp.exe
[2010.06.28 11:59:56 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wshirda.dll
[2010.06.28 11:57:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2010.06.28 11:39:22 | 000,018,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irsir.sys
[2010.06.28 11:39:12 | 000,020,992 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\drivers\RTL8139.sys
[2010.06.28 11:33:58 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2010.06.28 11:33:58 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2010.06.28 11:33:58 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2010.06.28 11:33:58 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2010.06.28 11:33:43 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2010.06.28 11:33:43 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Ponuka Štart
[2010.06.28 11:33:43 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Šablóny
[2010.06.28 11:33:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pracovná plocha
[2010.06.28 11:33:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Obľúbené položky
[2010.06.28 11:00:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\setup.pss
[2010.06.26 21:47:13 | 000,110,592 | ---- | C] (ZTE Corporation) -- C:\WINDOWS\System32\drivers\ZTEusbnet.sys
[2010.06.26 21:47:13 | 000,105,344 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbvoice.sys
[2010.06.26 21:47:13 | 000,105,344 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbnmea.sys
[2010.06.26 21:47:13 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbser6k.sys
[2010.06.26 21:47:13 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbmdm6k.sys
[2010.06.26 21:46:56 | 000,000,000 | ---D | C] -- C:\Program Files\ZTE komunikačný manažér
[2010.06.26 13:51:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Internet\Local Settings\Data aplikací\ESET
[2009.12.21 13:51:06 | 000,099,840 | ---- | C] ( ) -- C:\WINDOWS\System32\Zipdll.dll
[2009.12.21 13:51:06 | 000,094,208 | ---- | C] ( ) -- C:\WINDOWS\System32\Unzdll.dll
[18 C:\WINDOWS\Fonts\*.tmp files -> C:\WINDOWS\Fonts\*.tmp -> ]
[10 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 7 Days ==========
[2010.06.30 07:29:02 | 000,002,999 | ---- | M] () -- C:\UsbFix_Upload_Me_ARTDZV.zip
[2010.06.30 07:23:56 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Internet\Plocha\OTL.exe
[2010.06.30 07:19:46 | 000,000,472 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{7FB8BE8B-4406-450A-8CFE-B8E0109E4B3E}.job
[2010.06.30 07:16:54 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.06.30 07:16:46 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.06.29 15:53:40 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Internet\ntuser.ini
[2010.06.29 15:53:40 | 000,000,012 | ---- | M] () -- C:\WINDOWS\bthservsdp.dat
[2010.06.29 15:53:38 | 009,437,184 | -H-- | M] () -- C:\Documents and Settings\Internet\NTUSER.DAT
[2010.06.29 15:52:30 | 000,440,086 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.06.29 15:52:30 | 000,412,194 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.06.29 15:52:30 | 000,083,948 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.06.29 15:52:30 | 000,066,142 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.06.29 15:52:28 | 001,015,428 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.06.29 15:47:30 | 000,208,104 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.06.29 15:46:18 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010.06.29 15:04:44 | 005,887,150 | -H-- | M] () -- C:\Documents and Settings\Internet\Local Settings\Data aplikací\IconCache.db
[2010.06.29 13:59:48 | 000,002,444 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.06.29 12:17:50 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010.06.29 11:48:50 | 000,250,576 | RHS- | M] () -- C:\ntldr
[2010.06.29 08:22:56 | 000,000,760 | ---- | M] () -- C:\Documents and Settings\Internet\Plocha\Flash and Pics Control.lnk
[2010.06.29 08:16:02 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010.06.29 08:15:16 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010.06.29 08:15:16 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010.06.29 08:15:16 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010.06.29 08:15:16 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010.06.29 08:15:14 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2010.06.29 07:57:34 | 000,002,521 | ---- | M] () -- C:\Documents and Settings\Internet\Plocha\xp_taskbar_desktop_fixall.vbs
[2010.06.28 12:28:34 | 000,002,444 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak
[2010.06.28 12:11:24 | 000,000,288 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010.06.28 12:05:44 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010.06.28 12:05:44 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010.06.28 12:05:18 | 000,004,249 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010.06.28 12:04:04 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010.06.28 12:04:04 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010.06.28 12:03:28 | 000,000,617 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.06.28 12:02:24 | 000,023,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010.06.28 11:57:26 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2010.06.28 11:34:04 | 000,000,855 | ---- | M] () -- C:\WINDOWS\system.ini
[2010.06.28 10:59:02 | 000,049,666 | ---- | M] () -- C:\WINDOWS\setupapi.old
[2010.06.28 09:40:30 | 000,065,897 | ---- | M] () -- C:\Documents and Settings\Internet\Plocha\konto_v1791.jpg
[2010.06.26 22:04:34 | 000,157,184 | ---- | M] () -- C:\Documents and Settings\Internet\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.06.25 21:43:42 | 000,000,600 | ---- | M] () -- C:\Documents and Settings\Internet\winscp.RND
[10 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.06.30 07:29:00 | 000,002,999 | ---- | C] () -- C:\UsbFix_Upload_Me_ARTDZV.zip
[2010.06.29 12:00:43 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2010.06.29 12:00:43 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2010.06.29 12:00:43 | 000,001,746 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2010.06.29 12:00:42 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2010.06.29 12:00:41 | 000,674,168 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2010.06.29 12:00:41 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2010.06.29 12:00:41 | 000,069,570 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm
[2010.06.29 12:00:41 | 000,028,164 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm
[2010.06.29 12:00:40 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2010.06.29 12:00:40 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2010.06.29 12:00:40 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2010.06.29 12:00:40 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2010.06.29 12:00:40 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2010.06.29 12:00:40 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2010.06.29 12:00:40 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2010.06.29 12:00:40 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2010.06.29 12:00:40 | 000,058,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf
[2010.06.29 12:00:38 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2010.06.29 12:00:38 | 000,034,548 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2010.06.29 12:00:38 | 000,013,540 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2010.06.29 12:00:38 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2010.06.29 12:00:38 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2010.06.29 12:00:38 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2010.06.29 12:00:38 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2010.06.29 12:00:38 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2010.06.29 12:00:38 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2010.06.29 12:00:38 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2010.06.29 12:00:38 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2010.06.29 12:00:38 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2010.06.29 12:00:37 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2010.06.29 12:00:37 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2010.06.29 12:00:37 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2010.06.29 12:00:37 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2010.06.29 12:00:37 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2010.06.29 12:00:37 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2010.06.29 12:00:37 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2010.06.29 12:00:37 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2010.06.29 12:00:37 | 000,001,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2010.06.29 12:00:37 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2010.06.29 12:00:37 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2010.06.29 12:00:37 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2010.06.29 12:00:37 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2010.06.29 12:00:37 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2010.06.29 12:00:36 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2010.06.29 12:00:36 | 000,086,446 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2010.06.29 12:00:36 | 000,066,170 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz
[2010.06.29 12:00:36 | 000,001,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl
[2010.06.29 12:00:36 | 000,001,480 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl
[2010.06.29 12:00:36 | 000,001,479 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl
[2010.06.29 12:00:36 | 000,001,462 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl
[2010.06.29 12:00:36 | 000,001,059 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl
[2010.06.29 12:00:36 | 000,001,042 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl
[2010.06.29 12:00:36 | 000,001,034 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl
[2010.06.29 12:00:36 | 000,000,777 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl
[2010.06.29 12:00:35 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2010.06.29 12:00:35 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2010.06.29 12:00:35 | 000,001,465 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl
[2010.06.29 12:00:35 | 000,001,263 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl
[2010.06.29 12:00:35 | 000,000,809 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl
[2010.06.29 12:00:35 | 000,000,806 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl
[2010.06.29 12:00:35 | 000,000,783 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl
[2010.06.29 12:00:35 | 000,000,774 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl
[2010.06.29 12:00:35 | 000,000,722 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl
[2010.06.29 12:00:35 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2010.06.29 12:00:33 | 000,097,117 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.hlp
[2010.06.29 12:00:33 | 000,036,870 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2010.06.29 12:00:33 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2010.06.29 12:00:33 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2010.06.29 12:00:33 | 000,001,885 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.cnt
[2010.06.29 12:00:31 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2010.06.29 12:00:31 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2010.06.29 12:00:29 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2010.06.29 12:00:29 | 000,184,130 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz
[2010.06.29 12:00:29 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2010.06.29 12:00:29 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2010.06.29 12:00:29 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2010.06.29 12:00:29 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2010.06.29 12:00:29 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2010.06.29 12:00:29 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2010.06.29 12:00:29 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2010.06.29 12:00:29 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2010.06.29 12:00:29 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2010.06.29 11:49:42 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2010.06.29 11:49:41 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2010.06.29 11:49:37 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2010.06.29 08:22:55 | 000,000,760 | ---- | C] () -- C:\Documents and Settings\Internet\Plocha\Flash and Pics Control.lnk
[2010.06.29 07:57:43 | 000,002,521 | ---- | C] () -- C:\Documents and Settings\Internet\Plocha\xp_taskbar_desktop_fixall.vbs
[2010.06.28 15:02:00 | 000,000,472 | -H-- | C] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{7FB8BE8B-4406-450A-8CFE-B8E0109E4B3E}.job
[2010.06.28 14:46:21 | 000,008,370 | ---- | C] () -- C:\WINDOWS\System32\IE8Eula.rtf
[2010.06.28 12:28:32 | 000,002,444 | ---- | C] () -- C:\WINDOWS\System32\wpa.bak
[2010.06.28 12:10:12 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls
[2010.06.28 12:09:17 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls
[2010.06.28 12:09:16 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls
[2010.06.28 12:09:14 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2010.06.28 12:08:39 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls
[2010.06.28 12:08:38 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2010.06.28 12:08:30 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2010.06.28 12:08:28 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2010.06.28 12:08:25 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2010.06.28 12:08:03 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2010.06.28 12:07:54 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2010.06.28 12:07:24 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2010.06.28 12:07:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls
[2010.06.28 12:07:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls
[2010.06.28 12:07:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls
[2010.06.28 12:07:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls
[2010.06.28 12:07:17 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls
[2010.06.28 12:07:17 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls
[2010.06.28 12:07:17 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls
[2010.06.28 12:07:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls
[2010.06.28 12:07:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls
[2010.06.28 12:07:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls
[2010.06.28 12:07:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls
[2010.06.28 12:07:16 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls
[2010.06.28 12:07:14 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls
[2010.06.28 12:07:14 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls
[2010.06.28 12:07:14 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls
[2010.06.28 12:07:14 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls
[2010.06.28 12:07:14 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls
[2010.06.28 12:07:14 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls
[2010.06.28 12:07:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls
[2010.06.28 12:07:13 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls
[2010.06.28 12:07:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls
[2010.06.28 12:07:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls
[2010.06.28 12:07:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls
[2010.06.28 12:07:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls
[2010.06.28 12:07:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls
[2010.06.28 12:07:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls
[2010.06.28 12:07:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls
[2010.06.28 12:07:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls
[2010.06.28 12:07:12 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls
[2010.06.28 12:07:12 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls
[2010.06.28 12:07:12 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls
[2010.06.28 12:07:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls
[2010.06.28 12:07:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls
[2010.06.28 12:07:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls
[2010.06.28 12:07:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls
[2010.06.28 12:07:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls
[2010.06.28 12:07:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls
[2010.06.28 12:07:11 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls
[2010.06.28 12:07:11 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls
[2010.06.28 12:07:10 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls
[2010.06.28 12:04:03 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010.06.28 12:03:48 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010.06.28 12:03:48 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest
[2010.06.28 12:03:48 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010.06.28 12:03:48 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010.06.28 11:34:13 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2010.06.28 11:33:42 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2010.06.28 11:33:42 | 000,007,407 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2010.06.28 11:33:42 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2010.06.28 11:33:41 | 001,014,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2010.06.28 11:33:41 | 000,809,394 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2010.06.28 11:33:41 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2010.06.28 11:33:41 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2010.06.28 11:33:41 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2010.06.28 09:34:49 | 000,065,897 | ---- | C] () -- C:\Documents and Settings\Internet\Plocha\konto_v1791.jpg
[2010.06.26 20:54:45 | 000,049,666 | ---- | C] () -- C:\WINDOWS\setupapi.old
[2010.03.05 17:10:15 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2009.12.22 12:09:56 | 000,142,592 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2009.12.21 13:51:10 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\mspxml4.dll
[2009.12.21 13:51:06 | 000,230,912 | ---- | C] () -- C:\WINDOWS\System32\Zipit.dll
[2009.10.20 20:19:30 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2009.01.08 21:15:45 | 000,765,952 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009.01.08 21:15:44 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008.11.23 18:23:46 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll
[2008.11.11 20:32:04 | 000,000,000 | ---- | C] () -- C:\WINDOWS\SMMVSplitter.INI
[2008.11.02 15:55:02 | 000,001,434 | ---- | C] () -- C:\WINDOWS\psmplay.ini
[2008.10.14 08:50:32 | 000,006,400 | ---- | C] () -- C:\WINDOWS\System32\drivers\EMP_Map.sys
[2008.10.14 08:44:42 | 000,000,028 | ---- | C] () -- C:\WINDOWS\CDE EMPJ.ini
[2008.06.25 13:51:31 | 000,015,315 | ---- | C] () -- C:\WINDOWS\MSTMON_N.INI
[2008.06.25 13:51:31 | 000,011,521 | ---- | C] () -- C:\WINDOWS\MSUMLT_N.INI
[2008.04.30 09:59:05 | 000,006,400 | ---- | C] () -- C:\WINDOWS\System32\drivers\EMP_UDMm.sys
[2008.01.07 20:07:46 | 000,001,048 | ---- | C] () -- C:\WINDOWS\PVAStrumento.ini
[2008.01.03 21:41:14 | 000,843,776 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2008.01.03 21:41:14 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\SSLeay32.dll
[2007.12.29 10:29:16 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\BinCoder.dll
[2007.10.15 20:28:55 | 000,246,784 | ---- | C] () -- C:\WINDOWS\System32\sqlite3.dll
[2007.07.14 20:26:56 | 000,000,051 | ---- | C] () -- C:\WINDOWS\System32\lbj.ini
[2007.04.19 15:07:20 | 000,000,141 | ---- | C] () -- C:\WINDOWS\CONTEXT.INI
[2007.01.28 17:27:44 | 000,000,047 | ---- | C] () -- C:\WINDOWS\SLEX99.INI
[2007.01.24 16:29:16 | 000,001,135 | ---- | C] () -- C:\WINDOWS\APDFPRP.INI
[2007.01.24 16:26:33 | 000,000,075 | ---- | C] () -- C:\WINDOWS\winDecrypt.INI
[2007.01.24 16:26:15 | 000,000,036 | ---- | C] () -- C:\WINDOWS\verypdf.ini
[2007.01.14 20:08:15 | 000,000,768 | ---- | C] () -- C:\WINDOWS\AINIT32.INI
[2007.01.14 20:08:12 | 000,000,088 | ---- | C] () -- C:\WINDOWS\STXKBD32.INI
[2007.01.11 19:49:03 | 000,002,364 | ---- | C] () -- C:\WINDOWS\WINTRAN.INI
[2007.01.05 16:55:19 | 000,000,033 | ---- | C] () -- C:\WINDOWS\WTRDCTM.INI
[2007.01.05 16:53:27 | 000,002,633 | ---- | C] () -- C:\WINDOWS\UN32P.INI
[2007.01.04 12:08:12 | 000,001,152 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2006.12.22 20:10:15 | 000,000,032 | ---- | C] () -- C:\WINDOWS\SUBCONV.INI
[2006.12.12 09:20:49 | 000,000,067 | ---- | C] () -- C:\WINDOWS\DVDRegionFree.INI
[2006.11.06 20:03:57 | 000,000,041 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2006.10.06 14:28:38 | 000,000,202 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2006.10.05 10:44:43 | 000,003,920 | ---- | C] () -- C:\WINDOWS\WINCMD.INI
[2006.10.04 20:44:07 | 000,000,210 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2006.09.26 19:07:13 | 000,001,049 | ---- | C] () -- C:\WINDOWS\phpdesigner.ini
[2006.09.22 08:36:29 | 000,000,744 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006.09.21 19:05:16 | 000,166,912 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2006.09.21 18:51:26 | 000,003,012 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2006.09.21 14:35:16 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2006.09.21 14:34:00 | 000,000,087 | ---- | C] () -- C:\WINDOWS\System32\apset.ini
[2006.09.20 20:08:00 | 000,000,393 | ---- | C] () -- C:\WINDOWS\pdfpage.INI
[2006.05.08 16:12:49 | 000,012,288 | ---- | C] () -- C:\WINDOWS\impborl.dll
[2006.05.08 10:13:33 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2005.02.17 10:07:48 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\ATKACPI.sys
[2004.11.20 11:15:21 | 000,007,424 | R--- | C] () -- C:\WINDOWS\System32\drivers\MMIOPORT.SYS
[2004.11.20 11:15:21 | 000,002,524 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2010.06.28 12:08:37 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll
[2010.06.28 12:08:37 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll
[2010.06.28 12:08:36 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2010.06.28 12:08:36 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2010.06.28 12:08:36 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2010.06.28 12:08:36 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll
[2010.06.28 12:08:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll
[2010.06.28 12:08:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll
[2010.06.28 12:08:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll
[2010.06.28 12:08:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll
[2010.06.28 12:08:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll
[2010.06.28 12:08:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll
[2010.06.28 12:08:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll
[2010.06.28 12:08:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll
[2010.06.28 12:08:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll
[2010.06.28 12:08:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll
[2010.06.28 12:08:35 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll
[2010.06.28 12:08:34 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2010.06.28 12:08:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll
[2010.06.28 12:08:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll
[2010.06.28 12:08:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll
[2010.06.28 12:08:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll
[2010.06.28 12:08:34 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll
[2010.06.28 12:08:34 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll
[2010.06.28 12:08:33 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2010.06.28 12:08:31 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2010.06.28 12:08:31 | 000,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2010.06.28 12:08:29 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2010.06.28 12:08:29 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe
[2010.06.28 12:08:29 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe
[2010.06.28 12:08:29 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2010.06.28 12:08:29 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2010.06.28 12:08:29 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2010.06.28 12:08:28 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe
[2010.06.28 12:08:28 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe
[2010.06.28 12:08:28 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe
[2010.06.28 12:08:28 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2010.06.28 12:08:28 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2010.06.28 12:08:27 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2010.06.28 12:08:27 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2010.06.28 12:08:27 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2010.06.28 12:08:26 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2010.06.28 12:08:26 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2010.06.28 12:08:26 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2010.06.28 12:08:26 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2010.06.28 12:08:26 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2010.06.28 12:08:26 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2010.06.28 12:08:26 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2010.06.28 12:08:12 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2010.06.28 12:07:56 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2010.06.28 12:07:55 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll
[2010.06.28 12:07:55 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll
[2010.06.28 12:07:55 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe
[2010.06.28 12:07:54 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2010.06.28 12:07:51 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe
[2010.06.28 12:07:50 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll
[2010.06.28 12:07:49 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll
[2010.06.28 12:07:49 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll
[2010.06.28 12:07:49 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2010.06.28 12:07:47 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2010.06.28 12:07:46 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll
[2010.06.28 12:07:45 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2010.06.28 12:07:44 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2010.06.28 12:07:44 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2010.06.28 12:07:44 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2010.06.28 12:07:32 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2010.06.28 12:07:28 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe
[2010.06.28 12:07:28 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2010.06.28 12:07:26 | 001,040,467 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll
[2010.06.28 12:07:25 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe
[2010.06.28 12:07:25 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll
[2010.06.28 12:07:24 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2010.06.28 12:07:24 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2010.06.28 12:07:24 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2010.06.28 12:07:24 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2010.06.28 12:07:23 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2010.06.28 12:07:22 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2010.06.28 12:07:22 | 000,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll
[2010.06.28 12:07:22 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe
[2010.06.28 12:07:22 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll
[2010.06.28 12:07:21 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2010.06.28 12:07:21 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2010.06.28 12:07:21 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2010.06.28 12:07:21 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2010.06.28 12:07:21 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2010.06.28 12:07:19 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2010.06.28 12:07:19 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2010.06.28 12:07:19 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2010.06.28 12:07:10 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll
[2010.06.28 12:07:10 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe
[2010.06.28 12:07:09 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll
[2010.06.28 12:07:02 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll
[2010.06.28 12:07:00 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll
[2010.06.28 12:06:52 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll
[2010.06.28 12:06:40 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll
[2010.06.28 12:06:28 | 000,000,000 | ---D | C] -- C:\Program Files\msn gaming zone
[2010.06.28 12:03:28 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services
[2010.06.28 12:03:11 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe
[2010.06.28 12:02:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Obrázky
[2010.06.28 12:02:06 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2010.06.28 11:59:56 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irftp.exe
[2010.06.28 11:59:56 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wshirda.dll
[2010.06.28 11:57:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2010.06.28 11:39:22 | 000,018,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irsir.sys
[2010.06.28 11:39:12 | 000,020,992 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\drivers\RTL8139.sys
[2010.06.28 11:33:58 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2010.06.28 11:33:58 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2010.06.28 11:33:58 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2010.06.28 11:33:58 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2010.06.28 11:33:43 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2010.06.28 11:33:43 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Ponuka Štart
[2010.06.28 11:33:43 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Šablóny
[2010.06.28 11:33:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pracovná plocha
[2010.06.28 11:33:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Obľúbené položky
[2010.06.28 11:00:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\setup.pss
[2010.06.26 21:47:13 | 000,110,592 | ---- | C] (ZTE Corporation) -- C:\WINDOWS\System32\drivers\ZTEusbnet.sys
[2010.06.26 21:47:13 | 000,105,344 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbvoice.sys
[2010.06.26 21:47:13 | 000,105,344 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbnmea.sys
[2010.06.26 21:47:13 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbser6k.sys
[2010.06.26 21:47:13 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbmdm6k.sys
[2010.06.26 21:46:56 | 000,000,000 | ---D | C] -- C:\Program Files\ZTE komunikačný manažér
[2010.06.26 13:51:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Internet\Local Settings\Data aplikací\ESET
[2009.12.21 13:51:06 | 000,099,840 | ---- | C] ( ) -- C:\WINDOWS\System32\Zipdll.dll
[2009.12.21 13:51:06 | 000,094,208 | ---- | C] ( ) -- C:\WINDOWS\System32\Unzdll.dll
[18 C:\WINDOWS\Fonts\*.tmp files -> C:\WINDOWS\Fonts\*.tmp -> ]
[10 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 7 Days ==========
[2010.06.30 07:29:02 | 000,002,999 | ---- | M] () -- C:\UsbFix_Upload_Me_ARTDZV.zip
[2010.06.30 07:23:56 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Internet\Plocha\OTL.exe
[2010.06.30 07:19:46 | 000,000,472 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{7FB8BE8B-4406-450A-8CFE-B8E0109E4B3E}.job
[2010.06.30 07:16:54 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.06.30 07:16:46 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.06.29 15:53:40 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Internet\ntuser.ini
[2010.06.29 15:53:40 | 000,000,012 | ---- | M] () -- C:\WINDOWS\bthservsdp.dat
[2010.06.29 15:53:38 | 009,437,184 | -H-- | M] () -- C:\Documents and Settings\Internet\NTUSER.DAT
[2010.06.29 15:52:30 | 000,440,086 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.06.29 15:52:30 | 000,412,194 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.06.29 15:52:30 | 000,083,948 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.06.29 15:52:30 | 000,066,142 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.06.29 15:52:28 | 001,015,428 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.06.29 15:47:30 | 000,208,104 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.06.29 15:46:18 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010.06.29 15:04:44 | 005,887,150 | -H-- | M] () -- C:\Documents and Settings\Internet\Local Settings\Data aplikací\IconCache.db
[2010.06.29 13:59:48 | 000,002,444 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.06.29 12:17:50 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010.06.29 11:48:50 | 000,250,576 | RHS- | M] () -- C:\ntldr
[2010.06.29 08:22:56 | 000,000,760 | ---- | M] () -- C:\Documents and Settings\Internet\Plocha\Flash and Pics Control.lnk
[2010.06.29 08:16:02 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010.06.29 08:15:16 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010.06.29 08:15:16 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010.06.29 08:15:16 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010.06.29 08:15:16 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010.06.29 08:15:14 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2010.06.29 07:57:34 | 000,002,521 | ---- | M] () -- C:\Documents and Settings\Internet\Plocha\xp_taskbar_desktop_fixall.vbs
[2010.06.28 12:28:34 | 000,002,444 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak
[2010.06.28 12:11:24 | 000,000,288 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010.06.28 12:05:44 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010.06.28 12:05:44 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010.06.28 12:05:18 | 000,004,249 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010.06.28 12:04:04 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010.06.28 12:04:04 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010.06.28 12:03:28 | 000,000,617 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.06.28 12:02:24 | 000,023,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010.06.28 11:57:26 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2010.06.28 11:34:04 | 000,000,855 | ---- | M] () -- C:\WINDOWS\system.ini
[2010.06.28 10:59:02 | 000,049,666 | ---- | M] () -- C:\WINDOWS\setupapi.old
[2010.06.28 09:40:30 | 000,065,897 | ---- | M] () -- C:\Documents and Settings\Internet\Plocha\konto_v1791.jpg
[2010.06.26 22:04:34 | 000,157,184 | ---- | M] () -- C:\Documents and Settings\Internet\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.06.25 21:43:42 | 000,000,600 | ---- | M] () -- C:\Documents and Settings\Internet\winscp.RND
[10 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.06.30 07:29:00 | 000,002,999 | ---- | C] () -- C:\UsbFix_Upload_Me_ARTDZV.zip
[2010.06.29 12:00:43 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2010.06.29 12:00:43 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2010.06.29 12:00:43 | 000,001,746 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2010.06.29 12:00:42 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2010.06.29 12:00:41 | 000,674,168 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2010.06.29 12:00:41 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2010.06.29 12:00:41 | 000,069,570 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm
[2010.06.29 12:00:41 | 000,028,164 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm
[2010.06.29 12:00:40 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2010.06.29 12:00:40 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2010.06.29 12:00:40 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2010.06.29 12:00:40 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2010.06.29 12:00:40 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2010.06.29 12:00:40 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2010.06.29 12:00:40 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2010.06.29 12:00:40 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2010.06.29 12:00:40 | 000,058,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf
[2010.06.29 12:00:38 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2010.06.29 12:00:38 | 000,034,548 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2010.06.29 12:00:38 | 000,013,540 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2010.06.29 12:00:38 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2010.06.29 12:00:38 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2010.06.29 12:00:38 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2010.06.29 12:00:38 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2010.06.29 12:00:38 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2010.06.29 12:00:38 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2010.06.29 12:00:38 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2010.06.29 12:00:38 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2010.06.29 12:00:38 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2010.06.29 12:00:37 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2010.06.29 12:00:37 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2010.06.29 12:00:37 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2010.06.29 12:00:37 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2010.06.29 12:00:37 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2010.06.29 12:00:37 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2010.06.29 12:00:37 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2010.06.29 12:00:37 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2010.06.29 12:00:37 | 000,001,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2010.06.29 12:00:37 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2010.06.29 12:00:37 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2010.06.29 12:00:37 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2010.06.29 12:00:37 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2010.06.29 12:00:37 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2010.06.29 12:00:36 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2010.06.29 12:00:36 | 000,086,446 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2010.06.29 12:00:36 | 000,066,170 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz
[2010.06.29 12:00:36 | 000,001,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl
[2010.06.29 12:00:36 | 000,001,480 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl
[2010.06.29 12:00:36 | 000,001,479 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl
[2010.06.29 12:00:36 | 000,001,462 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl
[2010.06.29 12:00:36 | 000,001,059 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl
[2010.06.29 12:00:36 | 000,001,042 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl
[2010.06.29 12:00:36 | 000,001,034 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl
[2010.06.29 12:00:36 | 000,000,777 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl
[2010.06.29 12:00:35 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2010.06.29 12:00:35 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2010.06.29 12:00:35 | 000,001,465 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl
[2010.06.29 12:00:35 | 000,001,263 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl
[2010.06.29 12:00:35 | 000,000,809 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl
[2010.06.29 12:00:35 | 000,000,806 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl
[2010.06.29 12:00:35 | 000,000,783 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl
[2010.06.29 12:00:35 | 000,000,774 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl
[2010.06.29 12:00:35 | 000,000,722 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl
[2010.06.29 12:00:35 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2010.06.29 12:00:33 | 000,097,117 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.hlp
[2010.06.29 12:00:33 | 000,036,870 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2010.06.29 12:00:33 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2010.06.29 12:00:33 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2010.06.29 12:00:33 | 000,001,885 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.cnt
[2010.06.29 12:00:31 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2010.06.29 12:00:31 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2010.06.29 12:00:29 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2010.06.29 12:00:29 | 000,184,130 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz
[2010.06.29 12:00:29 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2010.06.29 12:00:29 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2010.06.29 12:00:29 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2010.06.29 12:00:29 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2010.06.29 12:00:29 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2010.06.29 12:00:29 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2010.06.29 12:00:29 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2010.06.29 12:00:29 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2010.06.29 12:00:29 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2010.06.29 11:49:42 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2010.06.29 11:49:41 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2010.06.29 11:49:37 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2010.06.29 08:22:55 | 000,000,760 | ---- | C] () -- C:\Documents and Settings\Internet\Plocha\Flash and Pics Control.lnk
[2010.06.29 07:57:43 | 000,002,521 | ---- | C] () -- C:\Documents and Settings\Internet\Plocha\xp_taskbar_desktop_fixall.vbs
[2010.06.28 15:02:00 | 000,000,472 | -H-- | C] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{7FB8BE8B-4406-450A-8CFE-B8E0109E4B3E}.job
[2010.06.28 14:46:21 | 000,008,370 | ---- | C] () -- C:\WINDOWS\System32\IE8Eula.rtf
[2010.06.28 12:28:32 | 000,002,444 | ---- | C] () -- C:\WINDOWS\System32\wpa.bak
[2010.06.28 12:10:12 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls
[2010.06.28 12:09:17 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls
[2010.06.28 12:09:16 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls
[2010.06.28 12:09:14 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2010.06.28 12:08:39 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls
[2010.06.28 12:08:38 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2010.06.28 12:08:30 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2010.06.28 12:08:28 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2010.06.28 12:08:25 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2010.06.28 12:08:03 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2010.06.28 12:07:54 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2010.06.28 12:07:24 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2010.06.28 12:07:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls
[2010.06.28 12:07:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls
[2010.06.28 12:07:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls
[2010.06.28 12:07:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls
[2010.06.28 12:07:17 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls
[2010.06.28 12:07:17 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls
[2010.06.28 12:07:17 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls
[2010.06.28 12:07:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls
[2010.06.28 12:07:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls
[2010.06.28 12:07:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls
[2010.06.28 12:07:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls
[2010.06.28 12:07:16 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls
[2010.06.28 12:07:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls
[2010.06.28 12:07:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls
[2010.06.28 12:07:14 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls
[2010.06.28 12:07:14 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls
[2010.06.28 12:07:14 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls
[2010.06.28 12:07:14 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls
[2010.06.28 12:07:14 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls
[2010.06.28 12:07:14 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls
[2010.06.28 12:07:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls
[2010.06.28 12:07:13 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls
[2010.06.28 12:07:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls
[2010.06.28 12:07:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls
[2010.06.28 12:07:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls
[2010.06.28 12:07:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls
[2010.06.28 12:07:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls
[2010.06.28 12:07:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls
[2010.06.28 12:07:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls
[2010.06.28 12:07:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls
[2010.06.28 12:07:12 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls
[2010.06.28 12:07:12 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls
[2010.06.28 12:07:12 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls
[2010.06.28 12:07:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls
[2010.06.28 12:07:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls
[2010.06.28 12:07:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls
[2010.06.28 12:07:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls
[2010.06.28 12:07:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls
[2010.06.28 12:07:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls
[2010.06.28 12:07:11 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls
[2010.06.28 12:07:11 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls
[2010.06.28 12:07:10 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls
[2010.06.28 12:04:03 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010.06.28 12:03:48 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010.06.28 12:03:48 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest
[2010.06.28 12:03:48 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010.06.28 12:03:48 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010.06.28 11:34:13 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2010.06.28 11:33:42 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2010.06.28 11:33:42 | 000,007,407 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2010.06.28 11:33:42 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2010.06.28 11:33:41 | 001,014,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2010.06.28 11:33:41 | 000,809,394 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2010.06.28 11:33:41 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2010.06.28 11:33:41 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2010.06.28 11:33:41 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2010.06.28 09:34:49 | 000,065,897 | ---- | C] () -- C:\Documents and Settings\Internet\Plocha\konto_v1791.jpg
[2010.06.26 20:54:45 | 000,049,666 | ---- | C] () -- C:\WINDOWS\setupapi.old
[2010.03.05 17:10:15 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2009.12.22 12:09:56 | 000,142,592 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2009.12.21 13:51:10 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\mspxml4.dll
[2009.12.21 13:51:06 | 000,230,912 | ---- | C] () -- C:\WINDOWS\System32\Zipit.dll
[2009.10.20 20:19:30 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2009.01.08 21:15:45 | 000,765,952 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009.01.08 21:15:44 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008.11.23 18:23:46 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll
[2008.11.11 20:32:04 | 000,000,000 | ---- | C] () -- C:\WINDOWS\SMMVSplitter.INI
[2008.11.02 15:55:02 | 000,001,434 | ---- | C] () -- C:\WINDOWS\psmplay.ini
[2008.10.14 08:50:32 | 000,006,400 | ---- | C] () -- C:\WINDOWS\System32\drivers\EMP_Map.sys
[2008.10.14 08:44:42 | 000,000,028 | ---- | C] () -- C:\WINDOWS\CDE EMPJ.ini
[2008.06.25 13:51:31 | 000,015,315 | ---- | C] () -- C:\WINDOWS\MSTMON_N.INI
[2008.06.25 13:51:31 | 000,011,521 | ---- | C] () -- C:\WINDOWS\MSUMLT_N.INI
[2008.04.30 09:59:05 | 000,006,400 | ---- | C] () -- C:\WINDOWS\System32\drivers\EMP_UDMm.sys
[2008.01.07 20:07:46 | 000,001,048 | ---- | C] () -- C:\WINDOWS\PVAStrumento.ini
[2008.01.03 21:41:14 | 000,843,776 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2008.01.03 21:41:14 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\SSLeay32.dll
[2007.12.29 10:29:16 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\BinCoder.dll
[2007.10.15 20:28:55 | 000,246,784 | ---- | C] () -- C:\WINDOWS\System32\sqlite3.dll
[2007.07.14 20:26:56 | 000,000,051 | ---- | C] () -- C:\WINDOWS\System32\lbj.ini
[2007.04.19 15:07:20 | 000,000,141 | ---- | C] () -- C:\WINDOWS\CONTEXT.INI
[2007.01.28 17:27:44 | 000,000,047 | ---- | C] () -- C:\WINDOWS\SLEX99.INI
[2007.01.24 16:29:16 | 000,001,135 | ---- | C] () -- C:\WINDOWS\APDFPRP.INI
[2007.01.24 16:26:33 | 000,000,075 | ---- | C] () -- C:\WINDOWS\winDecrypt.INI
[2007.01.24 16:26:15 | 000,000,036 | ---- | C] () -- C:\WINDOWS\verypdf.ini
[2007.01.14 20:08:15 | 000,000,768 | ---- | C] () -- C:\WINDOWS\AINIT32.INI
[2007.01.14 20:08:12 | 000,000,088 | ---- | C] () -- C:\WINDOWS\STXKBD32.INI
[2007.01.11 19:49:03 | 000,002,364 | ---- | C] () -- C:\WINDOWS\WINTRAN.INI
[2007.01.05 16:55:19 | 000,000,033 | ---- | C] () -- C:\WINDOWS\WTRDCTM.INI
[2007.01.05 16:53:27 | 000,002,633 | ---- | C] () -- C:\WINDOWS\UN32P.INI
[2007.01.04 12:08:12 | 000,001,152 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2006.12.22 20:10:15 | 000,000,032 | ---- | C] () -- C:\WINDOWS\SUBCONV.INI
[2006.12.12 09:20:49 | 000,000,067 | ---- | C] () -- C:\WINDOWS\DVDRegionFree.INI
[2006.11.06 20:03:57 | 000,000,041 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2006.10.06 14:28:38 | 000,000,202 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2006.10.05 10:44:43 | 000,003,920 | ---- | C] () -- C:\WINDOWS\WINCMD.INI
[2006.10.04 20:44:07 | 000,000,210 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2006.09.26 19:07:13 | 000,001,049 | ---- | C] () -- C:\WINDOWS\phpdesigner.ini
[2006.09.22 08:36:29 | 000,000,744 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006.09.21 19:05:16 | 000,166,912 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2006.09.21 18:51:26 | 000,003,012 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2006.09.21 14:35:16 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2006.09.21 14:34:00 | 000,000,087 | ---- | C] () -- C:\WINDOWS\System32\apset.ini
[2006.09.20 20:08:00 | 000,000,393 | ---- | C] () -- C:\WINDOWS\pdfpage.INI
[2006.05.08 16:12:49 | 000,012,288 | ---- | C] () -- C:\WINDOWS\impborl.dll
[2006.05.08 10:13:33 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2005.02.17 10:07:48 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\ATKACPI.sys
[2004.11.20 11:15:21 | 000,007,424 | R--- | C] () -- C:\WINDOWS\System32\drivers\MMIOPORT.SYS
[2004.11.20 11:15:21 | 000,002,524 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
Re: Prosím o kontrolu
[2004.11.20 11:14:48 | 000,022,040 | ---- | C] () -- C:\WINDOWS\System32\_003058_.tmp.dll
[2004.11.20 11:14:33 | 000,249,270 | ---- | C] () -- C:\WINDOWS\System32\_003090_.tmp.dll
[2004.07.13 22:00:18 | 000,233,472 | ---- | C] () -- C:\WINDOWS\System32\libmysql.dll
[2002.03.27 12:09:23 | 000,000,514 | ---- | C] () -- C:\WINDOWS\my.ini
[2002.03.27 12:07:39 | 000,028,392 | ---- | C] () -- C:\WINDOWS\php.ini
[2002.03.27 12:03:55 | 001,155,072 | ---- | C] () -- C:\WINDOWS\System32\php4ts.dll
[2002.03.05 12:35:49 | 000,285,696 | ---- | C] () -- C:\WINDOWS\System32\cncs232.dll
========== LOP Check ==========
[2007.01.08 17:11:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2007.07.04 16:56:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2007.08.02 09:01:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MSScanAppDataDir
[2008.10.14 08:56:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SEIKO EPSON CORPORATION
[2008.12.24 21:52:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2008.12.24 21:54:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2009.06.19 22:34:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\WNR
[2009.12.22 12:09:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
[2009.12.31 21:09:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Veselé Omalovánky 1
[2010.01.15 19:56:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PrevxCSI
[2010.02.16 17:38:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2010.03.05 17:10:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Canneverbe Limited
[2006.09.21 20:13:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\Opera
[2006.11.05 19:02:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\Goodsol
[2006.11.07 16:18:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\Xara
[2006.11.07 16:27:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\Likno
[2006.11.11 17:21:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\Design Science
[2006.11.30 19:16:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\Blumentals
[2006.12.12 08:45:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\Elaborate Bytes
[2006.12.12 08:58:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\SlySoft
[2007.03.12 18:48:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\Ethereal
[2007.03.14 20:12:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\uTorrent
[2010.06.28 15:26:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\GetRightToGo
[2006.12.05 07:26:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\uTorrent
[2006.12.13 11:00:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Opera
[2007.01.09 14:38:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Blumentals
[2007.01.18 13:43:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Design Science
[2007.02.11 15:25:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Goodsol
[2007.03.13 23:39:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Ethereal
[2007.03.23 21:09:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\ICAClient
[2007.04.30 19:42:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\WNR
[2007.07.31 14:31:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Xara
[2007.08.02 16:23:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\GetRightToGo
[2007.12.12 18:05:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Vso
[2008.03.31 22:06:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\CoreFTP
[2008.06.11 08:59:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\AVSMedia
[2008.10.25 16:57:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Thunderbird
[2008.11.11 20:38:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Solveig Multimedia
[2008.12.24 21:54:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\PC Suite
[2008.12.24 21:54:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Nokia
[2009.01.08 18:39:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Foxit
[2009.10.14 15:54:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\IE7Pro
[2009.11.17 18:15:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Auslogics
[2009.12.22 12:09:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Spyware Terminator
[2009.12.31 20:46:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\TuxPaint
[2010.03.05 17:10:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Canneverbe_Limited
[2010.05.20 16:38:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Wireshark
[2010.04.01 19:15:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miriam\Data aplikací\Spyware Terminator
[2010.06.30 07:19:46 | 000,000,472 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{7FB8BE8B-4406-450A-8CFE-B8E0109E4B3E}.job
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 08:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)
< c:\windows\*.* /U >
[10 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
[2010.06.28 11:57:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2010.06.29 08:16:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sun
[2010.06.29 09:15:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[2010.06.29 10:12:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2006.05.08 16:12:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Macromedia
[2006.05.08 15:44:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Identities
[2006.05.08 15:34:46 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Internet\Application Data\Microsoft
[2006.12.05 07:26:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\uTorrent
[2006.12.13 10:11:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\CyberLink
[2006.12.13 11:00:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Opera
[2006.12.13 21:53:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Adobe
[2007.01.09 14:38:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Blumentals
[2007.01.18 13:43:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Design Science
[2007.01.18 18:38:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Media Player Classic
[2007.02.11 15:25:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Goodsol
[2007.02.16 14:01:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Jasc Software Inc
[2007.03.12 14:52:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Intel
[2007.03.13 23:39:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Ethereal
[2007.03.23 21:09:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\ICAClient
[2007.03.28 16:01:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Application Data\Sun
[2007.04.30 19:42:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\WNR
[2007.05.14 10:24:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Help
[2007.07.15 16:53:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\AdobeUM
[2007.07.31 14:31:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Xara
[2007.08.02 16:23:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\GetRightToGo
[2007.12.12 18:05:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Vso
[2008.01.15 20:26:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\mIRC
[2008.01.24 21:30:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\DVD Flick
[2008.03.31 22:06:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\CoreFTP
[2008.06.11 08:59:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\AVSMedia
[2008.06.28 21:15:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Skype
[2008.06.28 21:20:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\skypePM
[2008.08.18 09:22:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\U3
[2008.09.11 15:14:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Nero
[2008.10.23 14:15:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\ABBYY
[2008.10.25 16:57:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Thunderbird
[2008.10.25 16:57:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Mozilla
[2008.10.25 16:57:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Talkback
[2008.11.11 20:38:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Solveig Multimedia
[2008.11.23 17:39:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\InstallShield
[2008.11.23 18:34:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Sony Corporation
[2008.12.24 21:54:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\PC Suite
[2008.12.24 21:54:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Nokia
[2009.01.08 18:39:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Foxit
[2009.10.14 15:54:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\IE7Pro
[2009.11.17 18:15:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Auslogics
[2009.12.21 14:17:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Malwarebytes
[2009.12.22 12:09:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Spyware Terminator
[2009.12.31 20:46:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\TuxPaint
[2010.03.05 17:10:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Canneverbe_Limited
[2010.05.20 16:38:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Wireshark
< %APPDATA%\*.exe /s >
[2008.07.14 09:55:58 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\Internet\Data aplikací\inst.exe
[2006.10.05 18:28:02 | 000,049,152 | ---- | M] () -- C:\Documents and Settings\Internet\Data aplikací\Mozilla\Firefox\Profiles\7k6wi1t3.default\extensions\meter@idot.cz\chrome\content\gzip.exe
[2006.08.15 10:15:04 | 000,110,592 | ---- | M] () -- C:\Documents and Settings\Internet\Data aplikací\U3\temp\cleanup.exe
< MD5 for: AGP440.SYS >
[2004.08.18 03:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:AGP440.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.10.21 16:14:18 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\sp3.cab:AGP440.sys
[2008.04.14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\agp440.sys
[2008.04.14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
[2004.08.18 03:57:28 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\$NtServicePackUninstall$\agp440.sys
< MD5 for: ATAPI.SYS >
[2004.08.18 03:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.10.21 16:14:18 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\sp3.cab:atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.04 10:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\autochk.exe
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2004.08.18 03:49:22 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe
[2004.08.18 13:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\I386\AUTOCHK.EXE
< MD5 for: CDROM.SYS >
[2004.08.18 03:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.10.21 16:14:18 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\sp3.cab:cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004.08.04 10:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2004.08.18 03:49:04 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 08:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\cryptsvc.dll
[2008.04.14 08:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 08:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 05:21:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\eventlog.dll
[2008.04.14 05:21:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\eventlog.dll
[2008.04.14 08:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2004.08.18 03:49:08 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\explorer.exe
[2004.08.18 03:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
< MD5 for: HAL.DLL >
[2004.08.18 03:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.10.21 16:14:18 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\sp3.cab:hal.dll
[2008.04.14 00:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\hal.dll
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\hal.dll
[2008.04.14 00:01:30 | 000,131,840 | ---- | M] (Microsoft Corporation) MD5=6F61D3287A6A15A08A9433222C09D17F -- C:\WINDOWS\system32\HAL.DLL
[2004.08.04 10:59:10 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll
< MD5 for: CHANGER.SYS >
[2004.08.18 03:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:Changer.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.10.21 16:14:18 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\sp3.cab:Changer.sys
[2008.04.14 00:11:00 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\changer.sys
< MD5 for: ISAPNP.SYS >
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2008.10.21 16:14:18 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\sp3.cab:isapnp.sys
[2001.10.25 12:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2008.04.14 07:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 04:27:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\isapnp.sys
[2008.04.14 04:27:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\isapnp.sys
[2008.04.14 07:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys
< MD5 for: LSASS.EXE >
[2004.08.18 03:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 08:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 05:22:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\lsass.exe
[2008.04.14 05:22:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\lsass.exe
[2008.04.14 08:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 21:20:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\ndis.sys
[2008.04.13 21:20:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\ndis.sys
[2008.04.14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004.08.04 11:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
< MD5 for: NETLOGON.DLL >
[2004.08.18 03:49:14 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 08:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\netlogon.dll
[2008.04.14 08:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: SCECLI.DLL >
[2004.08.18 03:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2004.08.18 03:49:28 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008.04.14 08:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 05:22:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\smss.exe
[2008.04.14 05:22:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\smss.exe
[2008.04.14 08:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
[2004.08.18 13:00:00 | 000,481,792 | ---- | M] (Microsoft Corporation) MD5=CB56F803D2CAF6B3F32E82D2F73F4B3A -- C:\WINDOWS\I386\SYSTEM32\SMSS.EXE
< MD5 for: SVCHOST.EXE >
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\svchost.exe
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.18 03:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\SoftwareDistribution\Download\1d2803a1f84cfd41d61e509943d67213\sp3gdr\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2004.08.04 11:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\SoftwareDistribution\Download\1d2803a1f84cfd41d61e509943d67213\sp3qfe\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\userinit.exe
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.18 03:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
< MD5 for: WINLOGON.EXE >
[2004.08.18 03:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 05:22:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\winlogon.exe
[2008.04.14 05:22:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2004.08.18 03:49:22 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 08:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\ws2_32.dll
[2008.04.14 08:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2010.06.28 11:29:18 | 008,650,752 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
[2010.06.28 11:29:18 | 035,651,584 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2010.06.28 11:29:18 | 000,524,288 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2010.06.28 11:07:18 | 000,262,144 | ---- | M] () -- C:\WINDOWS\system32\config\security.sav
< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< %systemroot%\system32\drivers\*.sys /3 >
[2010.06.29 11:40:28 | 000,020,747 | ---- | M] (Meetinghouse Data Communications) -- C:\WINDOWS\system32\drivers\AegisP.sys
< %systemroot%\system32\*.* /3 >
[2010.06.29 12:15:06 | 000,000,090 | ---- | M] () -- C:\WINDOWS\system32\spupdwxp.log
[2010.06.29 15:52:30 | 000,066,142 | ---- | M] () -- C:\WINDOWS\system32\perfc009.dat
[2010.06.29 15:52:30 | 000,412,194 | ---- | M] () -- C:\WINDOWS\system32\perfh009.dat
[2010.06.29 15:52:30 | 000,083,948 | ---- | M] () -- C:\WINDOWS\system32\perfc005.dat
[2010.06.29 15:52:30 | 000,440,086 | ---- | M] () -- C:\WINDOWS\system32\perfh005.dat
[2010.06.28 12:28:34 | 000,002,444 | ---- | M] () -- C:\WINDOWS\system32\wpa.bak
[2010.06.28 12:05:44 | 000,023,392 | ---- | M] () -- C:\WINDOWS\system32\nscompat.tlb
[2010.06.28 12:11:24 | 000,000,288 | ---- | M] () -- C:\WINDOWS\system32\$winnt$.inf
[2010.06.28 12:05:44 | 000,016,832 | ---- | M] () -- C:\WINDOWS\system32\amcompat.tlb
[2010.06.29 08:15:16 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\system32\java.exe
[2010.06.29 08:15:16 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\system32\javaw.exe
[2010.06.29 08:15:16 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\system32\javaws.exe
[2010.06.29 08:15:16 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\system32\javacpl.cpl
[2010.06.29 08:16:02 | 000,001,324 | ---- | M] () -- C:\WINDOWS\system32\d3d9caps.dat
[2010.06.29 15:21:08 | 000,722,784 | ---- | M] () -- C:\WINDOWS\system32\TZLog.log
[2010.06.29 13:59:48 | 000,002,444 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[2010.06.29 15:47:30 | 000,208,104 | ---- | M] () -- C:\WINDOWS\system32\FNTCACHE.DAT
[2010.06.29 15:52:28 | 001,015,428 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\system32\nwc.cpl.manifest
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\system32\cdplayer.exe.manifest
[2010.06.28 12:04:04 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\system32\WindowsLogon.manifest
[2010.06.28 12:02:24 | 000,023,640 | ---- | M] () -- C:\WINDOWS\system32\emptyregdb.dat
[2010.06.29 08:15:14 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\system32\deployJava1.dll
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\system32\ncpa.cpl.manifest
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\system32\sapi.cpl.manifest
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\system32\wuaucpl.cpl.manifest
[2010.06.28 12:04:04 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\system32\logonui.exe.manifest
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< End of report >
[2004.11.20 11:14:33 | 000,249,270 | ---- | C] () -- C:\WINDOWS\System32\_003090_.tmp.dll
[2004.07.13 22:00:18 | 000,233,472 | ---- | C] () -- C:\WINDOWS\System32\libmysql.dll
[2002.03.27 12:09:23 | 000,000,514 | ---- | C] () -- C:\WINDOWS\my.ini
[2002.03.27 12:07:39 | 000,028,392 | ---- | C] () -- C:\WINDOWS\php.ini
[2002.03.27 12:03:55 | 001,155,072 | ---- | C] () -- C:\WINDOWS\System32\php4ts.dll
[2002.03.05 12:35:49 | 000,285,696 | ---- | C] () -- C:\WINDOWS\System32\cncs232.dll
========== LOP Check ==========
[2007.01.08 17:11:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2007.07.04 16:56:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2007.08.02 09:01:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MSScanAppDataDir
[2008.10.14 08:56:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SEIKO EPSON CORPORATION
[2008.12.24 21:52:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2008.12.24 21:54:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2009.06.19 22:34:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\WNR
[2009.12.22 12:09:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
[2009.12.31 21:09:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Veselé Omalovánky 1
[2010.01.15 19:56:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PrevxCSI
[2010.02.16 17:38:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2010.03.05 17:10:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Canneverbe Limited
[2006.09.21 20:13:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\Opera
[2006.11.05 19:02:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\Goodsol
[2006.11.07 16:18:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\Xara
[2006.11.07 16:27:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\Likno
[2006.11.11 17:21:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\Design Science
[2006.11.30 19:16:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\Blumentals
[2006.12.12 08:45:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\Elaborate Bytes
[2006.12.12 08:58:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\SlySoft
[2007.03.12 18:48:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\Ethereal
[2007.03.14 20:12:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\uTorrent
[2010.06.28 15:26:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Inf\Data aplikací\GetRightToGo
[2006.12.05 07:26:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\uTorrent
[2006.12.13 11:00:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Opera
[2007.01.09 14:38:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Blumentals
[2007.01.18 13:43:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Design Science
[2007.02.11 15:25:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Goodsol
[2007.03.13 23:39:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Ethereal
[2007.03.23 21:09:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\ICAClient
[2007.04.30 19:42:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\WNR
[2007.07.31 14:31:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Xara
[2007.08.02 16:23:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\GetRightToGo
[2007.12.12 18:05:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Vso
[2008.03.31 22:06:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\CoreFTP
[2008.06.11 08:59:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\AVSMedia
[2008.10.25 16:57:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Thunderbird
[2008.11.11 20:38:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Solveig Multimedia
[2008.12.24 21:54:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\PC Suite
[2008.12.24 21:54:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Nokia
[2009.01.08 18:39:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Foxit
[2009.10.14 15:54:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\IE7Pro
[2009.11.17 18:15:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Auslogics
[2009.12.22 12:09:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Spyware Terminator
[2009.12.31 20:46:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\TuxPaint
[2010.03.05 17:10:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Canneverbe_Limited
[2010.05.20 16:38:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Wireshark
[2010.04.01 19:15:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miriam\Data aplikací\Spyware Terminator
[2010.06.30 07:19:46 | 000,000,472 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{7FB8BE8B-4406-450A-8CFE-B8E0109E4B3E}.job
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 08:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)
< c:\windows\*.* /U >
[10 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
[2010.06.28 11:57:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2010.06.29 08:16:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sun
[2010.06.29 09:15:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[2010.06.29 10:12:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2006.05.08 16:12:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Macromedia
[2006.05.08 15:44:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Identities
[2006.05.08 15:34:46 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Internet\Application Data\Microsoft
[2006.12.05 07:26:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\uTorrent
[2006.12.13 10:11:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\CyberLink
[2006.12.13 11:00:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Opera
[2006.12.13 21:53:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Adobe
[2007.01.09 14:38:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Blumentals
[2007.01.18 13:43:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Design Science
[2007.01.18 18:38:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Media Player Classic
[2007.02.11 15:25:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Goodsol
[2007.02.16 14:01:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Jasc Software Inc
[2007.03.12 14:52:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Intel
[2007.03.13 23:39:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Ethereal
[2007.03.23 21:09:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\ICAClient
[2007.03.28 16:01:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Application Data\Sun
[2007.04.30 19:42:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\WNR
[2007.05.14 10:24:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Help
[2007.07.15 16:53:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\AdobeUM
[2007.07.31 14:31:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Xara
[2007.08.02 16:23:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\GetRightToGo
[2007.12.12 18:05:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Vso
[2008.01.15 20:26:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\mIRC
[2008.01.24 21:30:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\DVD Flick
[2008.03.31 22:06:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\CoreFTP
[2008.06.11 08:59:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\AVSMedia
[2008.06.28 21:15:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Skype
[2008.06.28 21:20:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\skypePM
[2008.08.18 09:22:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\U3
[2008.09.11 15:14:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Nero
[2008.10.23 14:15:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\ABBYY
[2008.10.25 16:57:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Thunderbird
[2008.10.25 16:57:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Mozilla
[2008.10.25 16:57:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Talkback
[2008.11.11 20:38:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Solveig Multimedia
[2008.11.23 17:39:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\InstallShield
[2008.11.23 18:34:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Sony Corporation
[2008.12.24 21:54:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\PC Suite
[2008.12.24 21:54:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Nokia
[2009.01.08 18:39:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Foxit
[2009.10.14 15:54:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\IE7Pro
[2009.11.17 18:15:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Auslogics
[2009.12.21 14:17:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Malwarebytes
[2009.12.22 12:09:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Spyware Terminator
[2009.12.31 20:46:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\TuxPaint
[2010.03.05 17:10:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Canneverbe_Limited
[2010.05.20 16:38:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Internet\Data aplikací\Wireshark
< %APPDATA%\*.exe /s >
[2008.07.14 09:55:58 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\Internet\Data aplikací\inst.exe
[2006.10.05 18:28:02 | 000,049,152 | ---- | M] () -- C:\Documents and Settings\Internet\Data aplikací\Mozilla\Firefox\Profiles\7k6wi1t3.default\extensions\meter@idot.cz\chrome\content\gzip.exe
[2006.08.15 10:15:04 | 000,110,592 | ---- | M] () -- C:\Documents and Settings\Internet\Data aplikací\U3\temp\cleanup.exe
< MD5 for: AGP440.SYS >
[2004.08.18 03:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:AGP440.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.10.21 16:14:18 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\sp3.cab:AGP440.sys
[2008.04.14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\agp440.sys
[2008.04.14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
[2004.08.18 03:57:28 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\$NtServicePackUninstall$\agp440.sys
< MD5 for: ATAPI.SYS >
[2004.08.18 03:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.10.21 16:14:18 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\sp3.cab:atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.04 10:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\autochk.exe
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2004.08.18 03:49:22 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe
[2004.08.18 13:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\I386\AUTOCHK.EXE
< MD5 for: CDROM.SYS >
[2004.08.18 03:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.10.21 16:14:18 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\sp3.cab:cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004.08.04 10:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2004.08.18 03:49:04 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 08:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\cryptsvc.dll
[2008.04.14 08:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 08:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 05:21:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\eventlog.dll
[2008.04.14 05:21:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\eventlog.dll
[2008.04.14 08:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2004.08.18 03:49:08 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\explorer.exe
[2004.08.18 03:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
< MD5 for: HAL.DLL >
[2004.08.18 03:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.10.21 16:14:18 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\sp3.cab:hal.dll
[2008.04.14 00:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\hal.dll
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\hal.dll
[2008.04.14 00:01:30 | 000,131,840 | ---- | M] (Microsoft Corporation) MD5=6F61D3287A6A15A08A9433222C09D17F -- C:\WINDOWS\system32\HAL.DLL
[2004.08.04 10:59:10 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll
< MD5 for: CHANGER.SYS >
[2004.08.18 03:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:Changer.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.10.21 16:14:18 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\sp3.cab:Changer.sys
[2008.04.14 00:11:00 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\changer.sys
< MD5 for: ISAPNP.SYS >
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2008.10.21 16:14:18 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\sp3.cab:isapnp.sys
[2001.10.25 12:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2008.04.14 07:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 04:27:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\isapnp.sys
[2008.04.14 04:27:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\isapnp.sys
[2008.04.14 07:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys
< MD5 for: LSASS.EXE >
[2004.08.18 03:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 08:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 05:22:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\lsass.exe
[2008.04.14 05:22:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\lsass.exe
[2008.04.14 08:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 21:20:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\ndis.sys
[2008.04.13 21:20:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\ndis.sys
[2008.04.14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004.08.04 11:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
< MD5 for: NETLOGON.DLL >
[2004.08.18 03:49:14 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 08:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\netlogon.dll
[2008.04.14 08:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: SCECLI.DLL >
[2004.08.18 03:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2004.08.18 03:49:28 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008.04.14 08:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 05:22:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\smss.exe
[2008.04.14 05:22:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\smss.exe
[2008.04.14 08:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
[2004.08.18 13:00:00 | 000,481,792 | ---- | M] (Microsoft Corporation) MD5=CB56F803D2CAF6B3F32E82D2F73F4B3A -- C:\WINDOWS\I386\SYSTEM32\SMSS.EXE
< MD5 for: SVCHOST.EXE >
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\svchost.exe
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.18 03:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\SoftwareDistribution\Download\1d2803a1f84cfd41d61e509943d67213\sp3gdr\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2004.08.04 11:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\SoftwareDistribution\Download\1d2803a1f84cfd41d61e509943d67213\sp3qfe\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\userinit.exe
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.18 03:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
< MD5 for: WINLOGON.EXE >
[2004.08.18 03:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 05:22:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\winlogon.exe
[2008.04.14 05:22:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2004.08.18 03:49:22 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 08:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\ws2_32.dll
[2008.04.14 08:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2010.06.28 11:29:18 | 008,650,752 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
[2010.06.28 11:29:18 | 035,651,584 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2010.06.28 11:29:18 | 000,524,288 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2010.06.28 11:07:18 | 000,262,144 | ---- | M] () -- C:\WINDOWS\system32\config\security.sav
< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< %systemroot%\system32\drivers\*.sys /3 >
[2010.06.29 11:40:28 | 000,020,747 | ---- | M] (Meetinghouse Data Communications) -- C:\WINDOWS\system32\drivers\AegisP.sys
< %systemroot%\system32\*.* /3 >
[2010.06.29 12:15:06 | 000,000,090 | ---- | M] () -- C:\WINDOWS\system32\spupdwxp.log
[2010.06.29 15:52:30 | 000,066,142 | ---- | M] () -- C:\WINDOWS\system32\perfc009.dat
[2010.06.29 15:52:30 | 000,412,194 | ---- | M] () -- C:\WINDOWS\system32\perfh009.dat
[2010.06.29 15:52:30 | 000,083,948 | ---- | M] () -- C:\WINDOWS\system32\perfc005.dat
[2010.06.29 15:52:30 | 000,440,086 | ---- | M] () -- C:\WINDOWS\system32\perfh005.dat
[2010.06.28 12:28:34 | 000,002,444 | ---- | M] () -- C:\WINDOWS\system32\wpa.bak
[2010.06.28 12:05:44 | 000,023,392 | ---- | M] () -- C:\WINDOWS\system32\nscompat.tlb
[2010.06.28 12:11:24 | 000,000,288 | ---- | M] () -- C:\WINDOWS\system32\$winnt$.inf
[2010.06.28 12:05:44 | 000,016,832 | ---- | M] () -- C:\WINDOWS\system32\amcompat.tlb
[2010.06.29 08:15:16 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\system32\java.exe
[2010.06.29 08:15:16 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\system32\javaw.exe
[2010.06.29 08:15:16 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\system32\javaws.exe
[2010.06.29 08:15:16 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\system32\javacpl.cpl
[2010.06.29 08:16:02 | 000,001,324 | ---- | M] () -- C:\WINDOWS\system32\d3d9caps.dat
[2010.06.29 15:21:08 | 000,722,784 | ---- | M] () -- C:\WINDOWS\system32\TZLog.log
[2010.06.29 13:59:48 | 000,002,444 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[2010.06.29 15:47:30 | 000,208,104 | ---- | M] () -- C:\WINDOWS\system32\FNTCACHE.DAT
[2010.06.29 15:52:28 | 001,015,428 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\system32\nwc.cpl.manifest
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\system32\cdplayer.exe.manifest
[2010.06.28 12:04:04 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\system32\WindowsLogon.manifest
[2010.06.28 12:02:24 | 000,023,640 | ---- | M] () -- C:\WINDOWS\system32\emptyregdb.dat
[2010.06.29 08:15:14 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\system32\deployJava1.dll
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\system32\ncpa.cpl.manifest
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\system32\sapi.cpl.manifest
[2010.06.28 12:03:50 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\system32\wuaucpl.cpl.manifest
[2010.06.28 12:04:04 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\system32\logonui.exe.manifest
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< End of report >
Re: Prosím o kontrolu
Kód: Vybrat vše
############################## | UsbFix 7.014 | [Deletion]
User: Internet (Administrator) # ARTDZV [ ]
Updated 24/06/10 by El Desaparecido / C_XX
Started at 07:24:30 | 30/06/2010
Website: http://pagesperso-orange.fr/NosTools/index.html
Contact: FindyKill.Contact@gmail.com
CPU: Intel(R) Celeron(R) M processor 1.70GHz
Microsoft Windows XP Home Edition (5.1.2600 32-Bit) # Service Pack 3
Internet Explorer 8.0.6001.18702
Windows Firewall: Enabled
Antivirus: ESET NOD32 Antivirus 4.0 4.0 [Enabled | Updated]
RAM -> 1919 Mb
C:\ (%systemdrive%) -> Fixed drive # 32 Gb (1 Mb free - 3%) [] # FAT32
D:\ -> Fixed drive # 22 Gb (9 Mb free - 39%) [Lokálny disk] # NTFS
E:\ -> CD-ROM
F:\ -> CD-ROM
G:\ -> CD-ROM
H:\ -> CD-ROM
I:\ -> Removable drive # 995 Mb (99 Mb free - 10%) [] # FAT
################## | Files # Infected Folders |
Not deleted ! H:\Autorun.inf
################## | Registry |
Deleted ! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoResolveSearch
################## | Mountpoints2 |
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{29cdaf56-168b-11dd-a8ca-001731a1fc47}
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{525883ae-ba77-11db-a561-001731a1fc47}
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{6fb67fae-6cf6-11dd-a994-001731a1fc47}
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{a27bb55d-9cc9-11db-a52b-001731a1fc47}
################## | Listing |
[20/10/2009 - 15:07:02 | D ] C:\script
[29/06/2010 - 15:26:24 | SHD ] C:\Config.Msi
[08/05/2006 - 10:32:18 | SH | 0] C:\BOOTLOG.TXT
[30/06/2010 - 07:16:36 | ASH | 2145386496] C:\PAGEFILE.SYS
[29/06/2010 - 11:48:50 | RASH | 250576] C:\ntldr
[08/09/2008 - 20:09:14 | D ] C:\Video
[04/08/2004 - 10:38:34 | RASH | 47564] C:\NTDETECT.COM
[26/10/2007 - 18:18:40 | D ] C:\Dev-Pas
[28/03/2006 - 02:26:18 | RH | 524288] C:\A6R.BIN
[27/09/2005 - 08:24:18 | R | 6] C:\A6R.50
[27/06/2005 - 04:32:26 | A | 10] C:\NIS_ENG.LOG
[04/11/2004 - 08:57:16 | A | 14] C:\NERO.LOG
[21/09/2005 - 07:19:42 | A | 35] C:\ASUSDVD.LOG
[23/10/2008 - 14:08:14 | D ] C:\temp
[08/05/2006 - 15:29:46 | D ] C:\WINDOWS
[25/10/2001 - 12:00:00 | RASH | 4952] C:\Bootfont.bin
[28/06/2010 - 11:57:26 | SH | 211] C:\boot.ini
[29/06/2010 - 07:43:48 | SHD ] C:\FOUND.000
[30/06/2010 - 07:24:08 | D ] C:\UsbFix
[08/05/2006 - 15:33:50 | D ] C:\SUPPORT
[17/02/2010 - 11:55:40 | D ] C:\Casino
[08/05/2006 - 15:34:32 | D ] C:\Documents and Settings
[28/06/2010 - 12:04:10 | RD ] C:\Program Files
[08/05/2006 - 15:44:00 | A | 0] C:\CONFIG.SYS
[08/05/2006 - 15:44:00 | A | 0] C:\AUTOEXEC.BAT
[08/05/2006 - 15:44:00 | RASH | 0] C:\IO.SYS
[08/05/2006 - 15:44:00 | RASH | 0] C:\MSDOS.SYS
[08/05/2006 - 15:48:52 | SHD ] C:\System Volume Information
[17/12/2007 - 19:54:26 | A | 0] C:\.group_map
[30/06/2010 - 07:24:32 | A | 1013] C:\UsbFix.txt
[14/02/2008 - 12:33:30 | D ] C:\my flashes
[25/02/2008 - 19:28:32 | D ] C:\AppServ
[24/06/2008 - 22:51:36 | D ] C:\Drivers
[05/06/2010 - 06:20:46 | A | 507480] C:\cc_20100605_0620.reg
[05/06/2010 - 06:22:56 | A | 80216] C:\cc_20100605_0622.reg
[08/05/2006 - 16:13:24 | A | 10558] C:\devlist.txt
[08/05/2006 - 10:13:36 | SHD ] C:\Recycled
[23/10/2006 - 16:50:52 | D ] C:\www
[02/11/2006 - 18:53:10 | D ] C:\TP
[03/12/2001 - 10:42:34 | A | 3563090] C:\Biblia.chm
[24/01/2007 - 16:26:24 | A | 62] C:\pdfinfo.ini
[28/01/2007 - 17:27:22 | D ] C:\SLEX99
[17/12/2008 - 10:58:58 | A | 181] C:\pripojenia.txt
[16/03/2007 - 19:35:14 | D ] C:\WACP
[16/03/2007 - 20:41:58 | D ] C:\Internet
[28/06/2010 - 14:46:27 | D ] D:\3135f651ecaf98277b81
[06/02/2010 - 15:57:44 | A | 15394] D:\59kr.html
[22/09/2009 - 07:42:10 | A | 80492] D:\59mo_abc.pdf
[22/09/2009 - 07:43:16 | A | 142048] D:\59mo_z59.PDF
[14/05/2010 - 12:05:54 | D ] D:\5dc8d68505bac589136ccec36e79
[07/11/2007 - 14:35:52 | A | 32768] D:\diskusia_gar.doc
[06/02/2010 - 15:59:33 | A | 20762] D:\dole.php
[12/06/2010 - 16:35:13 | D ] D:\download
[27/06/2010 - 14:36:38 | D ] D:\Instalace
[04/01/2007 - 14:22:41 | D ] D:\Internet
[07/05/2010 - 16:00:12 | D ] D:\mimina
[01/08/2007 - 21:27:54 | RHD ] D:\MSOCache
[12/06/2010 - 16:32:52 | D ] D:\MUSIC
[19/01/2010 - 16:52:26 | D ] D:\PDF
[02/05/2010 - 12:55:01 | A | 10961] D:\povedali.php
[05/02/2010 - 19:09:24 | D ] D:\Prenos
[30/06/2010 - 07:28:53 | SHD ] D:\RECYCLER
[28/06/2010 - 12:14:30 | SHD ] D:\System Volume Information
[30/06/2010 - 07:23:45 | D ] D:\Temp
[10/11/2008 - 15:54:24 | ASH | 3584] D:\Thumbs.db
[16/01/2007 - 11:11:18 | D ] D:\TP_1
[17/02/2010 - 14:14:11 | H | 43346] D:\treeinfo.wc
[20/04/2009 - 22:55:58 | R | 645] H:\AutoRun.dat
[03/03/2009 - 02:04:50 | R | 2238] H:\AutoRun.ico
[03/03/2009 - 02:04:55 | R | 47] H:\autorun.inf
[20/04/2009 - 20:34:25 | RD ] H:\Data
[03/03/2009 - 02:05:00 | R | 296960] H:\Install.exe
[05/11/2093 - 18:30:36 | D ] I:\MICIN.DIR
[01/01/2004 - 00:11:54 | D ] I:\FMIN.DIR
[29/09/2006 - 19:30:18 | D ] I:\Desmod - Uhol pohladu
[29/09/2006 - 19:31:58 | D ] I:\2006
[29/09/2006 - 19:34:18 | D ] I:\2005
[29/09/2006 - 19:38:52 | D ] I:\2003
[29/09/2006 - 19:57:54 | D ] I:\Peha - Den medzi nedelou a pondelkom
[08/06/2006 - 17:09:02 | D ] I:\Gladiator - Mesto (2006)
[30/11/2006 - 19:27:40 | D ] I:\Desmod - Mam chut (2001)
[30/11/2006 - 19:38:38 | D ] I:\Desmod - Skupinová terapia
[30/11/2006 - 19:39:46 | D ] I:\Desmod - Derylov svet
[24/03/2007 - 14:58:28 | D ] I:\Sunrise_Avenue-On_The_Way_To_Wonderland (2006)
[05/07/2007 - 16:47:42 | D ] I:\Mika - Life In Cartoon Motion (2007)
[05/07/2007 - 16:51:02 | D ] I:\Desmod - 001
[01/04/2008 - 20:30:36 | D ] I:\Anglina
[20/05/2010 - 08:34:42 | D ] I:\Dokumenty
################## | Vaccin |
C:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
D:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
I:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
Re: Prosím o kontrolu
Takže nejako som to uploadol. dúfam že dobre. No a teraz čakať na výsledok. Vopred ďakujem.
Re: Prosím o kontrolu
Rozdeleni a poslani v poradku Jen odstrante prosim logy z code (at nejsou zelene), spatne se to cte a boli z toho oci - dekuji Date "upravit" a smaznete ty code v hranatych zavorkach (u logu Extras.txt a z USBFixu) Dejte mi minutku, dovarim kafco, at se proberu a kouknu na to "Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu
Tak jsem to prelouskal i v tom code, priste prosim nedavat do code 
Chvalim za Desmody, skvela skupina Spustte znovu OTL
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
:otl SRV - File not found [Auto | Stopped] -- -- (Apache2) SRV - File not found [Disabled | Stopped] -- -- (Abel) FF - prefs.js..browser.search.update: false O3 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\..\Toolbar\ShellBrowser: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found. O3 - HKU\S-1-5-21-641090347-1819138896-1937881067-1008\..\Toolbar\WebBrowser: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found. O4 - HKLM..\RunOnce: [] File not found F3 - HKU\.DEFAULT WinNT: Load - (C:\WINDOWS\system32\ddabc.exe) - C:\WINDOWS\System32\ddabc.exe File not found F3 - HKU\S-1-5-18 WinNT: Load - (C:\WINDOWS\system32\ddabc.exe) - C:\WINDOWS\System32\ddabc.exe File not found O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - Reg Error: Key error. File not found O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - Reg Error: Key error. File not found O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - Reg Error: Key error. File not found O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - Reg Error: Key error. File not found O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - Reg Error: Key error. File not found O16 - DPF: {00000163-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... ma9dmo.cab (Reg Error: Key error.) O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... vc1dmo.cab (Reg Error: Key error.) O16 - DPF: {32564D57-9980-0010-8000-00AA00389B71} http://codecs.microsoft.com/codecs/i386/wmv8dmo.cab (Reg Error: Key error.) O16 - DPF: {33564D57-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9dmo.cab (Reg Error: Key error.) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.) [18 C:\WINDOWS\Fonts\*.tmp files -> C:\WINDOWS\Fonts\*.tmp -> ] [10 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] :files C:\WINDOWS\system32\*.tmp.dll /s C:\WINDOWS\system32\SET*.tmp /s C:\WINDOWS\*.tmp /s :reg [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Net4Switch] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OEXPRESS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa] "authentication packages"=hex(7):6d,73,76,31,5f,30,00,00 :commands [EMPTYTEMP] [EMPTYFLASH]- Nasledne kliknete na Opravit ci FIX
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
Jelikoz se ve skriptu opravuje dulezita cast registru, muze se stat ze winy nenabehnou nebo se nepujde prihlasit. Pak restart PC, mackat F8 a zvolit Posledni znamou funkcni konfiguraci"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu
WinXp nabehlo v poriadku. Prikladám log. A ospravedlňujem sa za "code", myslel som, že to bude lepšie. Tak radšej niekedy nemyslieť.
Tu je log:
All processes killed
========== OTL ==========
Service Apache2 stopped successfully!
Service Apache2 deleted successfully!
Service Abel stopped successfully!
Service Abel deleted successfully!
Prefs.js: false removed from browser.search.update
Registry value HKEY_USERS\S-1-5-21-641090347-1819138896-1937881067-1008\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ not found.
Registry value HKEY_USERS\S-1-5-21-641090347-1819138896-1937881067-1008\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\ deleted successfully.
Registry value HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\Load:C:\WINDOWS\system32\ddabc.exe deleted successfully.
Registry value HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\Load:C:\WINDOWS\system32\ddabc.exe deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{7E6A20FB-153F-402c-A84B-1A64E1955D3D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7E6A20FB-153F-402c-A84B-1A64E1955D3D}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{CC963627-B1DC-40E0-B52A-CF21EE748449}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CC963627-B1DC-40E0-B52A-CF21EE748449}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{CC963627-B1DC-40E0-B52A-CF21EE748450}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CC963627-B1DC-40E0-B52A-CF21EE748450}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{CC963627-B1DC-40E0-B52A-CF21EE748451}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CC963627-B1DC-40E0-B52A-CF21EE748451}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{CC963627-B1DC-40E0-B52A-CF21EE748452}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CC963627-B1DC-40E0-B52A-CF21EE748452}\ not found.
Starting removal of ActiveX control {00000163-9980-0010-8000-00AA00389B71}
C:\WINDOWS\Downloaded Program Files\wma9dmo.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{00000163-9980-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00000163-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{00000163-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00000163-9980-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {31435657-9980-0010-8000-00AA00389B71}
C:\WINDOWS\Downloaded Program Files\wvc1dmo.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{31435657-9980-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{31435657-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{31435657-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{31435657-9980-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {32564D57-9980-0010-8000-00AA00389B71}
C:\WINDOWS\Downloaded Program Files\wmv8dmo.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{32564D57-9980-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32564D57-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{32564D57-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32564D57-9980-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {33564D57-9980-0010-8000-00AA00389B71}
C:\WINDOWS\Downloaded Program Files\wmv9dmo.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{33564D57-9980-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33564D57-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{33564D57-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33564D57-9980-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
C:\WINDOWS\Downloaded Program Files\erma.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
C:\WINDOWS\Fonts\SETB72.tmp deleted successfully.
C:\WINDOWS\Fonts\SETB73.tmp deleted successfully.
C:\WINDOWS\Fonts\SETB74.tmp deleted successfully.
C:\WINDOWS\Fonts\SETB75.tmp deleted successfully.
C:\WINDOWS\Fonts\SETB76.tmp deleted successfully.
C:\WINDOWS\Fonts\SETB77.tmp deleted successfully.
C:\WINDOWS\Fonts\SET4DA.tmp deleted successfully.
C:\WINDOWS\Fonts\SET4DB.tmp deleted successfully.
C:\WINDOWS\Fonts\SET4DC.tmp deleted successfully.
C:\WINDOWS\Fonts\SET4DD.tmp deleted successfully.
C:\WINDOWS\Fonts\SET4DE.tmp deleted successfully.
C:\WINDOWS\Fonts\SET4DF.tmp deleted successfully.
C:\WINDOWS\Fonts\SET27B9.tmp deleted successfully.
C:\WINDOWS\Fonts\SET27BA.tmp deleted successfully.
C:\WINDOWS\Fonts\SET27BB.tmp deleted successfully.
C:\WINDOWS\Fonts\SET27BE.tmp deleted successfully.
C:\WINDOWS\Fonts\SET27BF.tmp deleted successfully.
C:\WINDOWS\Fonts\SET27C4.tmp deleted successfully.
C:\WINDOWS\SET150.tmp deleted successfully.
C:\WINDOWS\SET153.tmp deleted successfully.
C:\WINDOWS\SET15F.tmp deleted successfully.
C:\WINDOWS\002854_.tmp deleted successfully.
C:\WINDOWS\002696_.tmp deleted successfully.
C:\WINDOWS\002687_.tmp deleted successfully.
C:\WINDOWS\SETB69.tmp deleted successfully.
C:\WINDOWS\002704_.tmp deleted successfully.
C:\WINDOWS\SET4D4.tmp deleted successfully.
C:\WINDOWS\SET27B3.tmp deleted successfully.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
========== FILES ==========
C:\WINDOWS\system32\_003124_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003061_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003064_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003126_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003132_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003138_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003157_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003065_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003068_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003083_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003154_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003159_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003161_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003085_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003086_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003094_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003095_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003103_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003104_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003114_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003107_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003108_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003109_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003136_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003111_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003115_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003119_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003120_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003122_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003139_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003141_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003143_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003125_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003127_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003146_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003147_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003151_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003152_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003128_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003160_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003162_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003165_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003166_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003167_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003168_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003169_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003174_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003129_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003047_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003048_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003049_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003050_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003057_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003058_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003059_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003060_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003062_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003063_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003066_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003067_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003069_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003070_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003071_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003073_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003076_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003077_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003081_.tmp.dll moved successfully.
File move failed. C:\WINDOWS\system32\_003082_.tmp.dll scheduled to be moved on reboot.
C:\WINDOWS\system32\_003084_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003087_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003089_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003090_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003091_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003092_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003093_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003096_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003097_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003098_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003099_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003100_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003105_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003130_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003133_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003134_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003135_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003137_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003142_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003144_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003072_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003074_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003075_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003078_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003110_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003112_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003113_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003117_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003118_.tmp.dll moved successfully.
C:\WINDOWS\system32\drivers\_003018_.tmp.dll moved successfully.
C:\WINDOWS\system32\drivers\_003028_.tmp.dll moved successfully.
C:\WINDOWS\system32\drivers\_003037_.tmp.dll moved successfully.
C:\WINDOWS\system32\Setup\SETB90.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB93.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB94.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB95.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB96.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB97.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB9A.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB9B.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB9C.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB9D.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB9E.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB9F.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETBA0.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4F2.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4F3.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4F4.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4F5.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4F6.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4F7.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4F8.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4F9.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4FA.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4FB.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4FC.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4FD.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4FE.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET27F8.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET27F9.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET27FA.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET27FC.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET27FD.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET27FE.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET27FF.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET2800.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET2801.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET2802.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET2804.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET2809.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET280A.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBA1.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBA2.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBA4.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBA5.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBA6.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBB3.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBB4.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBB6.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBB8.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBBA.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBBF.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBC2.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBC3.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBC4.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBC6.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBC7.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBC9.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBCC.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET4FF.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET500.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET502.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET503.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET504.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET511.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET512.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET514.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET516.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET518.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET51D.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET520.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET521.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET522.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET524.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET525.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET527.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET52A.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET280B.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET280C.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET280E.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET280F.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2810.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET281D.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET281E.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2820.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2823.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2832.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2838.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET283B.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET283C.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET283D.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET283F.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2840.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2842.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2845.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set2893.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set2894.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set2895.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set2896.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set2897.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set2898.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set2899.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set289a.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set576.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set577.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set578.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set579.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set57a.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set57b.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set57c.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set57d.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\setc18.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\setc19.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\setc1a.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\setc1b.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\setc1c.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\setc1d.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\setc1e.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\setc1f.tmp moved successfully.
C:\WINDOWS\AppPatch\SET2893.tmp moved successfully.
C:\WINDOWS\AppPatch\SET2894.tmp moved successfully.
C:\WINDOWS\AppPatch\SET2895.tmp moved successfully.
C:\WINDOWS\AppPatch\SET2896.tmp moved successfully.
C:\WINDOWS\AppPatch\SET2897.tmp moved successfully.
C:\WINDOWS\AppPatch\SET2898.tmp moved successfully.
C:\WINDOWS\AppPatch\SET2899.tmp moved successfully.
C:\WINDOWS\AppPatch\SET289A.tmp moved successfully.
C:\WINDOWS\AppPatch\set576.tmp moved successfully.
C:\WINDOWS\AppPatch\set577.tmp moved successfully.
C:\WINDOWS\AppPatch\set578.tmp moved successfully.
C:\WINDOWS\AppPatch\set579.tmp moved successfully.
C:\WINDOWS\AppPatch\set57a.tmp moved successfully.
C:\WINDOWS\AppPatch\set57b.tmp moved successfully.
C:\WINDOWS\AppPatch\set57c.tmp moved successfully.
C:\WINDOWS\AppPatch\set57d.tmp moved successfully.
C:\WINDOWS\AppPatch\setc18.tmp moved successfully.
C:\WINDOWS\AppPatch\setc19.tmp moved successfully.
C:\WINDOWS\AppPatch\setc1a.tmp moved successfully.
C:\WINDOWS\AppPatch\setc1b.tmp moved successfully.
C:\WINDOWS\AppPatch\setc1c.tmp moved successfully.
C:\WINDOWS\AppPatch\setc1d.tmp moved successfully.
C:\WINDOWS\AppPatch\setc1e.tmp moved successfully.
C:\WINDOWS\AppPatch\setc1f.tmp moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP225.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP30A.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3E7.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP412.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP41D.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1CB.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2AE.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP38F.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4B8.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4DF.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP6F1.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP83.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP125.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP20C.tmp folder moved successfully.
C:\WINDOWS\inf\COM201.tmp moved successfully.
C:\WINDOWS\pchealth\helpctr\binaries\SETC60.tmp moved successfully.
C:\WINDOWS\pchealth\helpctr\binaries\SET5BE.tmp moved successfully.
C:\WINDOWS\pchealth\helpctr\binaries\SET28E6.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\066ffb90ad17118b5d00aa1a10e09d35\BIT17F.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\1c13a3485c4b9a24bac76c4cc8aa317b\BIT181.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\a081a150a4f978c1bd667c2a5a110ed7\BIT17E.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\c55cc8606841ebb25a7698accdef59c3\BIT188.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\eaeb89f20fe0db7ef11fe332b0fe8f02\BIT187.tmp moved successfully.
C:\WINDOWS\system32\CatRoot\TMP78.tmp moved successfully.
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\iss266.tmp folder moved successfully.
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\iss1E0.tmp folder moved successfully.
C:\WINDOWS\system32\ReinstallBackups\0022\DriverFiles\inf2.tmp moved successfully.
C:\WINDOWS\Temp\iss5D2.tmp folder moved successfully.
C:\WINDOWS\Temp\isp5D5.tmp folder moved successfully.
C:\WINDOWS\twain_32\hpqgends.tmp moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Net4Switch\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OEXPRESS\ deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\"authentication packages"|hex(7):6d,73,76,31,5f,30,00,00 /E : value set successfully!
========== COMMANDS ==========
[EMPTYTEMP]
User: Default User
->Temp folder emptied: 12182899 bytes
->Temporary Internet Files folder emptied: 32902 bytes
->Flash cache emptied: 75 bytes
User: All Users
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: LocalService
->Temp folder emptied: 65984 bytes
->Temporary Internet Files folder emptied: 147858 bytes
->Flash cache emptied: 809 bytes
User: Inf
->Temp folder emptied: 344145 bytes
->Temporary Internet Files folder emptied: 3694853 bytes
->Flash cache emptied: 423 bytes
User: Internet
->Temp folder emptied: 22542139 bytes
->Temporary Internet Files folder emptied: 16400389 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 31993384 bytes
->Opera cache emptied: 22146072 bytes
->Flash cache emptied: 2777 bytes
User: Miriam
->Temp folder emptied: 12608221 bytes
->Temporary Internet Files folder emptied: 424261 bytes
->FireFox cache emptied: 3451066 bytes
->Flash cache emptied: 971 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 2851007 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 77498025 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 197,00 mb
[EMPTYFLASH]
User: Default User
->Flash cache emptied: 0 bytes
User: All Users
User: NetworkService
User: LocalService
->Flash cache emptied: 0 bytes
User: Inf
->Flash cache emptied: 0 bytes
User: Internet
->Flash cache emptied: 0 bytes
User: Miriam
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.7.0 log created on 06302010_093401
Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\system32\_003082_.tmp.dll scheduled to be moved on reboot.
C:\Documents and Settings\Internet\Local Settings\Temporary Internet Files\Content.IE5\V3I49BLQ\ServiceLogin[1].htm moved successfully.
C:\Documents and Settings\Internet\Local Settings\Temporary Internet Files\Content.IE5\V3I49BLQ\afr[1].htm moved successfully.
C:\Documents and Settings\Internet\Local Settings\Temporary Internet Files\SuggestedSites.dat moved successfully.
Registry entries deleted on Reboot...
Tu je log:
All processes killed
========== OTL ==========
Service Apache2 stopped successfully!
Service Apache2 deleted successfully!
Service Abel stopped successfully!
Service Abel deleted successfully!
Prefs.js: false removed from browser.search.update
Registry value HKEY_USERS\S-1-5-21-641090347-1819138896-1937881067-1008\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ not found.
Registry value HKEY_USERS\S-1-5-21-641090347-1819138896-1937881067-1008\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\ deleted successfully.
Registry value HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\Load:C:\WINDOWS\system32\ddabc.exe deleted successfully.
Registry value HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\Load:C:\WINDOWS\system32\ddabc.exe deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{7E6A20FB-153F-402c-A84B-1A64E1955D3D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7E6A20FB-153F-402c-A84B-1A64E1955D3D}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{CC963627-B1DC-40E0-B52A-CF21EE748449}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CC963627-B1DC-40E0-B52A-CF21EE748449}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{CC963627-B1DC-40E0-B52A-CF21EE748450}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CC963627-B1DC-40E0-B52A-CF21EE748450}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{CC963627-B1DC-40E0-B52A-CF21EE748451}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CC963627-B1DC-40E0-B52A-CF21EE748451}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{CC963627-B1DC-40E0-B52A-CF21EE748452}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CC963627-B1DC-40E0-B52A-CF21EE748452}\ not found.
Starting removal of ActiveX control {00000163-9980-0010-8000-00AA00389B71}
C:\WINDOWS\Downloaded Program Files\wma9dmo.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{00000163-9980-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00000163-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{00000163-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00000163-9980-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {31435657-9980-0010-8000-00AA00389B71}
C:\WINDOWS\Downloaded Program Files\wvc1dmo.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{31435657-9980-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{31435657-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{31435657-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{31435657-9980-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {32564D57-9980-0010-8000-00AA00389B71}
C:\WINDOWS\Downloaded Program Files\wmv8dmo.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{32564D57-9980-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32564D57-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{32564D57-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32564D57-9980-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {33564D57-9980-0010-8000-00AA00389B71}
C:\WINDOWS\Downloaded Program Files\wmv9dmo.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{33564D57-9980-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33564D57-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{33564D57-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33564D57-9980-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
C:\WINDOWS\Downloaded Program Files\erma.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
C:\WINDOWS\Fonts\SETB72.tmp deleted successfully.
C:\WINDOWS\Fonts\SETB73.tmp deleted successfully.
C:\WINDOWS\Fonts\SETB74.tmp deleted successfully.
C:\WINDOWS\Fonts\SETB75.tmp deleted successfully.
C:\WINDOWS\Fonts\SETB76.tmp deleted successfully.
C:\WINDOWS\Fonts\SETB77.tmp deleted successfully.
C:\WINDOWS\Fonts\SET4DA.tmp deleted successfully.
C:\WINDOWS\Fonts\SET4DB.tmp deleted successfully.
C:\WINDOWS\Fonts\SET4DC.tmp deleted successfully.
C:\WINDOWS\Fonts\SET4DD.tmp deleted successfully.
C:\WINDOWS\Fonts\SET4DE.tmp deleted successfully.
C:\WINDOWS\Fonts\SET4DF.tmp deleted successfully.
C:\WINDOWS\Fonts\SET27B9.tmp deleted successfully.
C:\WINDOWS\Fonts\SET27BA.tmp deleted successfully.
C:\WINDOWS\Fonts\SET27BB.tmp deleted successfully.
C:\WINDOWS\Fonts\SET27BE.tmp deleted successfully.
C:\WINDOWS\Fonts\SET27BF.tmp deleted successfully.
C:\WINDOWS\Fonts\SET27C4.tmp deleted successfully.
C:\WINDOWS\SET150.tmp deleted successfully.
C:\WINDOWS\SET153.tmp deleted successfully.
C:\WINDOWS\SET15F.tmp deleted successfully.
C:\WINDOWS\002854_.tmp deleted successfully.
C:\WINDOWS\002696_.tmp deleted successfully.
C:\WINDOWS\002687_.tmp deleted successfully.
C:\WINDOWS\SETB69.tmp deleted successfully.
C:\WINDOWS\002704_.tmp deleted successfully.
C:\WINDOWS\SET4D4.tmp deleted successfully.
C:\WINDOWS\SET27B3.tmp deleted successfully.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
========== FILES ==========
C:\WINDOWS\system32\_003124_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003061_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003064_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003126_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003132_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003138_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003157_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003065_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003068_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003083_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003154_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003159_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003161_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003085_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003086_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003094_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003095_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003103_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003104_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003114_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003107_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003108_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003109_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003136_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003111_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003115_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003119_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003120_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003122_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003139_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003141_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003143_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003125_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003127_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003146_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003147_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003151_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003152_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003128_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003160_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003162_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003165_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003166_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003167_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003168_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003169_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003174_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003129_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003047_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003048_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003049_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003050_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003057_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003058_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003059_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003060_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003062_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003063_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003066_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003067_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003069_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003070_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003071_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003073_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003076_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003077_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003081_.tmp.dll moved successfully.
File move failed. C:\WINDOWS\system32\_003082_.tmp.dll scheduled to be moved on reboot.
C:\WINDOWS\system32\_003084_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003087_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003089_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003090_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003091_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003092_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003093_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003096_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003097_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003098_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003099_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003100_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003105_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003130_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003133_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003134_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003135_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003137_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003142_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003144_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003072_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003074_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003075_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003078_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003110_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003112_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003113_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003117_.tmp.dll moved successfully.
C:\WINDOWS\system32\_003118_.tmp.dll moved successfully.
C:\WINDOWS\system32\drivers\_003018_.tmp.dll moved successfully.
C:\WINDOWS\system32\drivers\_003028_.tmp.dll moved successfully.
C:\WINDOWS\system32\drivers\_003037_.tmp.dll moved successfully.
C:\WINDOWS\system32\Setup\SETB90.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB93.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB94.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB95.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB96.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB97.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB9A.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB9B.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB9C.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB9D.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB9E.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETB9F.tmp moved successfully.
C:\WINDOWS\system32\Setup\SETBA0.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4F2.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4F3.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4F4.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4F5.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4F6.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4F7.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4F8.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4F9.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4FA.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4FB.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4FC.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4FD.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET4FE.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET27F8.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET27F9.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET27FA.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET27FC.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET27FD.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET27FE.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET27FF.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET2800.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET2801.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET2802.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET2804.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET2809.tmp moved successfully.
C:\WINDOWS\system32\Setup\SET280A.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBA1.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBA2.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBA4.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBA5.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBA6.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBB3.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBB4.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBB6.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBB8.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBBA.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBBF.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBC2.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBC3.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBC4.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBC6.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBC7.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBC9.tmp moved successfully.
C:\WINDOWS\system32\wbem\SETBCC.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET4FF.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET500.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET502.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET503.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET504.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET511.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET512.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET514.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET516.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET518.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET51D.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET520.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET521.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET522.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET524.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET525.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET527.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET52A.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET280B.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET280C.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET280E.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET280F.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2810.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET281D.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET281E.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2820.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2823.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2832.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2838.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET283B.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET283C.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET283D.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET283F.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2840.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2842.tmp moved successfully.
C:\WINDOWS\system32\wbem\SET2845.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set2893.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set2894.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set2895.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set2896.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set2897.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set2898.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set2899.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set289a.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set576.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set577.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set578.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set579.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set57a.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set57b.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set57c.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\set57d.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\setc18.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\setc19.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\setc1a.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\setc1b.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\setc1c.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\setc1d.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\setc1e.tmp moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\setc1f.tmp moved successfully.
C:\WINDOWS\AppPatch\SET2893.tmp moved successfully.
C:\WINDOWS\AppPatch\SET2894.tmp moved successfully.
C:\WINDOWS\AppPatch\SET2895.tmp moved successfully.
C:\WINDOWS\AppPatch\SET2896.tmp moved successfully.
C:\WINDOWS\AppPatch\SET2897.tmp moved successfully.
C:\WINDOWS\AppPatch\SET2898.tmp moved successfully.
C:\WINDOWS\AppPatch\SET2899.tmp moved successfully.
C:\WINDOWS\AppPatch\SET289A.tmp moved successfully.
C:\WINDOWS\AppPatch\set576.tmp moved successfully.
C:\WINDOWS\AppPatch\set577.tmp moved successfully.
C:\WINDOWS\AppPatch\set578.tmp moved successfully.
C:\WINDOWS\AppPatch\set579.tmp moved successfully.
C:\WINDOWS\AppPatch\set57a.tmp moved successfully.
C:\WINDOWS\AppPatch\set57b.tmp moved successfully.
C:\WINDOWS\AppPatch\set57c.tmp moved successfully.
C:\WINDOWS\AppPatch\set57d.tmp moved successfully.
C:\WINDOWS\AppPatch\setc18.tmp moved successfully.
C:\WINDOWS\AppPatch\setc19.tmp moved successfully.
C:\WINDOWS\AppPatch\setc1a.tmp moved successfully.
C:\WINDOWS\AppPatch\setc1b.tmp moved successfully.
C:\WINDOWS\AppPatch\setc1c.tmp moved successfully.
C:\WINDOWS\AppPatch\setc1d.tmp moved successfully.
C:\WINDOWS\AppPatch\setc1e.tmp moved successfully.
C:\WINDOWS\AppPatch\setc1f.tmp moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP225.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP30A.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3E7.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP412.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP41D.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1CB.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2AE.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP38F.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4B8.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4DF.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP6F1.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP83.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP125.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP20C.tmp folder moved successfully.
C:\WINDOWS\inf\COM201.tmp moved successfully.
C:\WINDOWS\pchealth\helpctr\binaries\SETC60.tmp moved successfully.
C:\WINDOWS\pchealth\helpctr\binaries\SET5BE.tmp moved successfully.
C:\WINDOWS\pchealth\helpctr\binaries\SET28E6.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\066ffb90ad17118b5d00aa1a10e09d35\BIT17F.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\1c13a3485c4b9a24bac76c4cc8aa317b\BIT181.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\a081a150a4f978c1bd667c2a5a110ed7\BIT17E.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\c55cc8606841ebb25a7698accdef59c3\BIT188.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\eaeb89f20fe0db7ef11fe332b0fe8f02\BIT187.tmp moved successfully.
C:\WINDOWS\system32\CatRoot\TMP78.tmp moved successfully.
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\iss266.tmp folder moved successfully.
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\iss1E0.tmp folder moved successfully.
C:\WINDOWS\system32\ReinstallBackups\0022\DriverFiles\inf2.tmp moved successfully.
C:\WINDOWS\Temp\iss5D2.tmp folder moved successfully.
C:\WINDOWS\Temp\isp5D5.tmp folder moved successfully.
C:\WINDOWS\twain_32\hpqgends.tmp moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Net4Switch\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OEXPRESS\ deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\"authentication packages"|hex(7):6d,73,76,31,5f,30,00,00 /E : value set successfully!
========== COMMANDS ==========
[EMPTYTEMP]
User: Default User
->Temp folder emptied: 12182899 bytes
->Temporary Internet Files folder emptied: 32902 bytes
->Flash cache emptied: 75 bytes
User: All Users
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: LocalService
->Temp folder emptied: 65984 bytes
->Temporary Internet Files folder emptied: 147858 bytes
->Flash cache emptied: 809 bytes
User: Inf
->Temp folder emptied: 344145 bytes
->Temporary Internet Files folder emptied: 3694853 bytes
->Flash cache emptied: 423 bytes
User: Internet
->Temp folder emptied: 22542139 bytes
->Temporary Internet Files folder emptied: 16400389 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 31993384 bytes
->Opera cache emptied: 22146072 bytes
->Flash cache emptied: 2777 bytes
User: Miriam
->Temp folder emptied: 12608221 bytes
->Temporary Internet Files folder emptied: 424261 bytes
->FireFox cache emptied: 3451066 bytes
->Flash cache emptied: 971 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 2851007 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 77498025 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 197,00 mb
[EMPTYFLASH]
User: Default User
->Flash cache emptied: 0 bytes
User: All Users
User: NetworkService
User: LocalService
->Flash cache emptied: 0 bytes
User: Inf
->Flash cache emptied: 0 bytes
User: Internet
->Flash cache emptied: 0 bytes
User: Miriam
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.7.0 log created on 06302010_093401
Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\system32\_003082_.tmp.dll scheduled to be moved on reboot.
C:\Documents and Settings\Internet\Local Settings\Temporary Internet Files\Content.IE5\V3I49BLQ\ServiceLogin[1].htm moved successfully.
C:\Documents and Settings\Internet\Local Settings\Temporary Internet Files\Content.IE5\V3I49BLQ\afr[1].htm moved successfully.
C:\Documents and Settings\Internet\Local Settings\Temporary Internet Files\SuggestedSites.dat moved successfully.
Registry entries deleted on Reboot...
Re: Prosím o kontrolu
V pohode nic se nedeje, ono se to opravdu blbe cte a boli z toho oci... Nasledujici soubory otestujte na VirusTotalu (viz muj podpis)
- C:\WINDOWS\system32\_003082_.tmp.dll
- Kliknete na Prochazet
- Soubor nehledejte, jen vlozte cestu souboru, ktery chci otestovat
- Pokud napise Soubor byl jiz testovan, dejte otestovat znovu
- Kliknete na Otestovat soubor
- Vysledek analyzy sem vlozte (jako odkaz)
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?