Zpomalení systému, občasné zasekání
Napsal: 17 črc 2010 12:36
Zdravíčko,
prosím o kontrolu:
Logfile of random's system information tool 1.08 (written by random/random)
Run by Jirka at 2010-07-17 13:34:15
Microsoft Windows 7 Ultimate
System drive C: has 11 GB (27%) free of 40 GB
Total RAM: 1534 MB (51% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:35:08, on 17.7.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Microsoft Security Essentials\msseces.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\LG Software\On Screen Display\HotKey.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\QIP\qip.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Users\Jirka\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jirka\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
D:\_zaloha\RSIT.exe
C:\Program Files\trend micro\Jirka.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Castle Age Toolbar - {aac4043a-8832-4abe-9963-35377f30b8e6} - C:\Program Files\Castle_Age\tbCast.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Castle Age Toolbar - {aac4043a-8832-4abe-9963-35377f30b8e6} - C:\Program Files\Castle_Age\tbCast.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Castle Age Toolbar - {aac4043a-8832-4abe-9963-35377f30b8e6} - C:\Program Files\Castle_Age\tbCast.dll
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [MSSE] "C:\Program Files\Microsoft Security Essentials\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [KeybdUtility] C:\Program Files\LG Software\On Screen Display\HotKey.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [OODefragTray] C:\Program Files\OO Software\Defrag\oodtray.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Jirka\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIF5BA~1\Office12\REFIEBAR.DLL
O16 - DPF: {82774781-8F4E-11D1-AB1C-0000F8773BF0} (DLC Class) - https://transfers.ds.microsoft.com/FTM/ ... erCtrl.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
--
End of file - 6415 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-703784279-2633260763-2867772772-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-703784279-2633260763-2867772772-1001UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{aac4043a-8832-4abe-9963-35377f30b8e6}]
Castle Age Toolbar - C:\Program Files\Castle_Age\tbCast.dll [2010-06-13 2734688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-06-30 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{aac4043a-8832-4abe-9963-35377f30b8e6} - Castle Age Toolbar - C:\Program Files\Castle_Age\tbCast.dll [2010-06-13 2734688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvSvc"=C:\Windows\system32\nvsvc.dll [2006-12-20 90191]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2006-12-20 7766016]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2006-12-20 81920]
"PWRISOVM.EXE"=C:\Program Files\PowerISO\PWRISOVM.EXE [2009-03-15 180224]
"MSSE"=C:\Program Files\Microsoft Security Essentials\msseces.exe [2010-06-01 1093208]
"KeybdUtility"=C:\Program Files\LG Software\On Screen Display\HotKey.exe [2007-02-15 2655800]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2006-12-29 4317184]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-08-28 1557800]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe []
"IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2009-11-11 1468256]
"OODefragTray"=C:\Program Files\OO Software\Defrag\oodtray.exe [2009-09-12 2524416]
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2006-11-23 56928]
"LanguageShortcut"=C:\Program Files\CyberLink\PowerDVD\Language\Language.exe [2006-12-05 54832]
"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"NPSStartup"= []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Jirka\AppData\Local\Google\Update\GoogleUpdate.exe [2010-06-26 136176]
"AdobeBridge"= []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2010-07-17 13:34:15 ----D---- C:\rsit
2010-07-17 13:34:15 ----D---- C:\Program Files\trend micro
2010-07-17 07:54:10 ----D---- C:\Windows\Minidump
2010-07-16 17:02:20 ----D---- C:\Users\Jirka\AppData\Roaming\dvdcss
2010-07-15 11:31:57 ----A---- C:\Windows\UOUninst.exe
2010-07-14 20:20:24 ----D---- C:\Program Files\Windows XP Mode
2010-07-14 10:54:58 ----D---- C:\Program Files\G-Spot
2010-07-13 09:25:10 ----A---- C:\Windows\system32\kernel32.dll
2010-07-13 09:25:09 ----A---- C:\Windows\system32\apphelp.dll
2010-07-12 13:23:10 ----D---- C:\Program Files\GamePark
2010-07-10 08:35:29 ----D---- C:\Users\Jirka\AppData\Roaming\Movier
2010-07-10 08:35:17 ----D---- C:\Program Files\Movier
2010-07-05 18:29:33 ----D---- C:\Users\Jirka\AppData\Roaming\CyberLink
2010-07-04 09:03:56 ----D---- C:\Program Files\WPF Toolkit
2010-07-04 09:03:17 ----D---- C:\Program Files\Microsoft SDKs
2010-07-04 09:02:27 ----A---- C:\Windows\system32\D3DX9_39.dll
2010-07-04 09:01:14 ----D---- C:\Program Files\Microsoft Visual Studio 8
2010-07-04 09:00:04 ----D---- C:\Program Files\Microsoft Expression
2010-06-30 10:58:53 ----D---- C:\Windows\Sun
2010-06-30 10:57:31 ----D---- C:\ProgramData\Sun
2010-06-30 10:57:27 ----D---- C:\Program Files\Common Files\Java
2010-06-30 10:56:50 ----A---- C:\Windows\system32\javaws.exe
2010-06-30 10:56:50 ----A---- C:\Windows\system32\javaw.exe
2010-06-30 10:56:50 ----A---- C:\Windows\system32\java.exe
2010-06-30 10:56:50 ----A---- C:\Windows\system32\deployJava1.dll
2010-06-30 10:56:29 ----D---- C:\Program Files\Java
2010-06-29 21:15:11 ----D---- C:\Users\Jirka\AppData\Roaming\Ventrilo
2010-06-29 21:14:52 ----D---- C:\Program Files\Ventrilo
2010-06-29 21:14:32 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-06-28 23:07:53 ----D---- C:\Program Files\MarkAnyContentSAFER
2010-06-28 22:42:40 ----D---- C:\Program Files\Vypínač na dobrou noc
2010-06-28 22:20:53 ----D---- C:\ProgramData\PC Suite
2010-06-28 22:20:52 ----D---- C:\Users\Jirka\AppData\Roaming\PC Suite
2010-06-28 22:19:19 ----A---- C:\Windows\system32\nmwcdcls.dll
2010-06-28 22:19:15 ----D---- C:\Program Files\DIFX
2010-06-28 22:19:15 ----A---- C:\Windows\system32\drivers\pccsmcfd.sys
2010-06-28 22:19:12 ----DC---- C:\Windows\system32\DRVSTORE
2010-06-28 22:18:43 ----A---- C:\Windows\system32\drivers\ss_bwhnt.sys
2010-06-28 22:18:43 ----A---- C:\Windows\system32\drivers\ss_bwh.sys
2010-06-28 22:18:43 ----A---- C:\Windows\system32\drivers\ss_bmdm.sys
2010-06-28 22:18:43 ----A---- C:\Windows\system32\drivers\ss_bmdfl.sys
2010-06-28 22:18:43 ----A---- C:\Windows\system32\drivers\ss_bcmnt.sys
2010-06-28 22:18:43 ----A---- C:\Windows\system32\drivers\ss_bcm.sys
2010-06-28 22:18:43 ----A---- C:\Windows\system32\drivers\ss_bbus.sys
2010-06-28 22:17:27 ----D---- C:\Windows\system32\Samsung_USB_Drivers
2010-06-28 22:17:06 ----A---- C:\Windows\system32\FsUsbExService.Exe
2010-06-28 22:17:06 ----A---- C:\Windows\system32\FsUsbExDisk.Sys
2010-06-28 22:17:06 ----A---- C:\Windows\system32\FsUsbExDevice.Dll
2010-06-28 22:16:54 ----D---- C:\Users\Jirka\AppData\Roaming\Samsung
2010-06-28 22:16:01 ----D---- C:\Program Files\MarkAny
2010-06-28 22:15:56 ----D---- C:\Program Files\PC Connectivity Solution
2010-06-28 22:15:16 ----D---- C:\Program Files\Samsung
2010-06-28 21:56:25 ----D---- C:\Program Files\Audacity
2010-06-28 21:29:16 ----A---- C:\Windows\system32\NCTWMAFile2.dll
2010-06-28 21:29:16 ----A---- C:\Windows\system32\NCTAudioPlayer2.dll
2010-06-28 21:29:15 ----A---- C:\Windows\system32\NCTAudioFile2.dll
2010-06-28 21:29:12 ----D---- C:\Program Files\Free MP3 WMA WAV Converter
2010-06-28 20:46:18 ----D---- C:\Windows\system32\oodag
2010-06-28 17:08:57 ----D---- C:\Users\Jirka\AppData\Roaming\WinRAR
2010-06-28 17:08:46 ----D---- C:\Program Files\WinRAR
2010-06-27 22:40:48 ----D---- C:\Program Files\MSXML 4.0
2010-06-27 22:35:46 ----D---- C:\Sounds
2010-06-27 22:32:04 ----D---- C:\Program Files\LG Electronics
2010-06-27 22:30:58 ----D---- C:\Windows\system32\URTTEMP
2010-06-27 22:29:38 ----A---- C:\Windows\system32\NMSDVDXU.dll
2010-06-27 22:29:34 ----D---- C:\Users\Jirka\AppData\Roaming\LG Electronics
2010-06-27 22:29:32 ----D---- C:\Program Files\LG PC Suite II
2010-06-27 22:10:22 ----D---- C:\Program Files\Conduit
2010-06-27 22:10:20 ----D---- C:\Program Files\Castle_Age
2010-06-27 21:47:09 ----D---- C:\Program Files\Microsoft
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\zh-TW
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\zh-CN
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\tr-TR
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\th-TH
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\sv-SE
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\ru-RU
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\ro-RO
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\pt-PT
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\pt-BR
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\pl-PL
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\nl-NL
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\nb-NO
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\ko-KR
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\ja-JP
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\it-IT
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\hu-HU
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\he-IL
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\fr-FR
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\fi-FI
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\es-ES
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\el-GR
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\de-DE
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\da-DK
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\ar-SA
2010-06-27 21:23:08 ----D---- C:\Program Files\Windows Virtual PC
2010-06-27 21:02:39 ----A---- C:\Windows\system32\vpchbuspipe.dll
2010-06-27 21:02:29 ----A---- C:\Windows\system32\drivers\vpchbus.sys
2010-06-27 21:02:29 ----A---- C:\Windows\system32\drivers\vpcusb.sys
2010-06-27 21:02:28 ----A---- C:\Windows\system32\VPCWizard.exe
2010-06-27 21:02:28 ----A---- C:\Windows\system32\drivers\vpcvmm.sys
2010-06-27 21:02:28 ----A---- C:\Windows\system32\drivers\vpcnfltr.sys
2010-06-27 21:02:27 ----A---- C:\Windows\system32\VPCSettings.exe
2010-06-27 21:02:27 ----A---- C:\Windows\system32\VMCPropertyHandler.dll
2010-06-27 21:02:26 ----A---- C:\Windows\system32\VMWindow.exe
2010-06-27 21:02:26 ----A---- C:\Windows\system32\vmsal.exe
2010-06-27 21:02:25 ----A---- C:\Windows\system32\vpc.exe
2010-06-27 20:46:03 ----D---- C:\Program Files\Common Files\Pinnacle
2010-06-27 20:45:26 ----D---- C:\ProgramData\Pinnacle Studio Ultimate
2010-06-27 20:40:26 ----D---- C:\Program Files\Common Files\Yahoo!
2010-06-27 20:40:25 ----D---- C:\ProgramData\Studio 12
2010-06-27 20:40:25 ----D---- C:\ProgramData\Pinnacle Studio Plus
2010-06-27 20:40:25 ----D---- C:\Program Files\Pinnacle
2010-06-27 20:34:41 ----D---- C:\Users\Jirka\AppData\Roaming\com.adobe.ExMan
2010-06-27 20:27:23 ----D---- C:\ProgramData\FLEXnet
2010-06-27 20:23:37 ----D---- C:\Program Files\Adobe Media Player
2010-06-27 20:17:23 ----D---- C:\Program Files\Common Files\Macrovision Shared
2010-06-27 19:57:56 ----D---- C:\ProgramData\Pinnacle
2010-06-27 19:56:28 ----D---- C:\Program Files\7-Zip
2010-06-27 14:43:28 ----D---- C:\ProgramData\CyberLink
2010-06-27 14:42:41 ----N---- C:\Windows\system32\msxml3a.dll
2010-06-27 14:41:34 ----D---- C:\Program Files\CyberLink
2010-06-27 14:39:29 ----D---- C:\Program Files\OO Software
2010-06-27 14:38:39 ----D---- C:\Users\Jirka\AppData\Roaming\Nero
2010-06-27 14:12:43 ----D---- C:\Program Files\Nero
2010-06-27 14:12:18 ----D---- C:\ProgramData\Nero
2010-06-27 14:12:14 ----D---- C:\Program Files\Common Files\Nero
2010-06-27 13:58:15 ----RASH---- C:\MSDOS.SYS
2010-06-27 13:58:15 ----RASH---- C:\IO.SYS
2010-06-27 12:27:34 ----D---- C:\Program Files\Microsoft Works
2010-06-27 12:26:34 ----D---- C:\Program Files\Microsoft Visual Studio
2010-06-27 12:26:33 ----D---- C:\Program Files\Common Files\DESIGNER
2010-06-27 12:25:55 ----D---- C:\Program Files\Microsoft.NET
2010-06-27 12:23:20 ----D---- C:\Program Files\Microsoft Office
2010-06-27 12:22:11 ----RHD---- C:\MSOCache
2010-06-27 11:58:04 ----D---- C:\Program Files\Microsoft IntelliPoint
2010-06-27 09:53:27 ----D---- C:\Users\Jirka\AppData\Roaming\vlc
2010-06-27 09:52:51 ----D---- C:\Program Files\VideoLAN
2010-06-27 09:50:10 ----N---- C:\Windows\system32\pxsfs.dll
2010-06-27 09:50:10 ----N---- C:\Windows\system32\pxinsa64.exe
2010-06-27 09:50:10 ----N---- C:\Windows\system32\pxhpinst.exe
2010-06-27 09:50:10 ----N---- C:\Windows\system32\pxdrv.dll
2010-06-27 09:50:10 ----N---- C:\Windows\system32\pxcpya64.exe
2010-06-27 09:50:10 ----N---- C:\Windows\system32\pxafs.dll
2010-06-27 09:50:09 ----N---- C:\Windows\system32\vxblock.dll
2010-06-27 09:50:09 ----N---- C:\Windows\system32\pxwave.dll
2010-06-27 09:50:09 ----N---- C:\Windows\system32\pxmas.dll
2010-06-27 09:50:09 ----N---- C:\Windows\system32\px.dll
2010-06-27 09:50:05 ----D---- C:\Users\Jirka\AppData\Roaming\Winamp
2010-06-27 09:50:05 ----D---- C:\Program Files\Winamp
2010-06-27 09:44:27 ----D---- C:\Windows\system32\Adobe
2010-06-27 09:43:17 ----D---- C:\Program Files\Common Files\Adobe
2010-06-27 09:42:10 ----D---- C:\ProgramData\Adobe
2010-06-27 09:42:09 ----D---- C:\Program Files\Adobe
2010-06-27 09:42:05 ----D---- C:\Program Files\Common Files\Adobe AIR
2010-06-27 09:41:06 ----D---- C:\ProgramData\NOS
2010-06-27 09:40:17 ----D---- C:\Program Files\Synaptics
2010-06-27 09:38:54 ----A---- C:\Windows\system32\WdfCoInstaller01009.dll
2010-06-27 09:38:52 ----A---- C:\Windows\system32\SynTPCo4.dll
2010-06-27 09:38:51 ----A---- C:\Windows\system32\SynCtrl.dll
2010-06-27 09:38:51 ----A---- C:\Windows\system32\SynCOM.dll
2010-06-27 09:38:50 ----A---- C:\Windows\system32\SynTPAPI.dll
2010-06-27 09:38:49 ----A---- C:\Windows\system32\drivers\SynTP.sys
2010-06-27 09:06:41 ----D---- C:\Users\Jirka\AppData\Roaming\Mozilla
2010-06-27 09:06:19 ----D---- C:\Program Files\Mozilla Firefox
2010-06-27 09:03:23 ----A---- C:\Windows\system32\d3dx9_32.dll
2010-06-27 09:03:04 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2010-06-27 09:02:39 ----D---- C:\Program Files\Windows Live SkyDrive
2010-06-27 09:02:32 ----D---- C:\Program Files\Windows Live
2010-06-27 09:02:04 ----D---- C:\Windows\PCHEALTH
2010-06-27 09:00:18 ----D---- C:\Program Files\Common Files\Windows Live
2010-06-27 08:57:47 ----D---- C:\Windows\system32\appmgmt
2010-06-27 08:57:31 ----D---- C:\Users\Jirka\AppData\Roaming\skypePM
2010-06-27 08:56:43 ----D---- C:\Users\Jirka\AppData\Roaming\Skype
2010-06-27 08:56:16 ----D---- C:\Program Files\Common Files\Skype
2010-06-27 08:56:13 ----RD---- C:\Program Files\Skype
2010-06-27 08:56:10 ----D---- C:\ProgramData\Skype
2010-06-27 08:54:13 ----D---- C:\Users\Jirka\AppData\Roaming\TeamViewer
2010-06-27 08:54:01 ----D---- C:\Program Files\TeamViewer
2010-06-26 23:59:52 ----D---- C:\Program Files\Microsoft Silverlight
2010-06-26 23:59:14 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2010-06-26 23:59:14 ----A---- C:\Windows\system32\drivers\sdbus.sys
2010-06-26 23:54:32 ----D---- C:\Windows\system32\RTCOM
2010-06-26 22:23:44 ----D---- C:\Program Files\LG Software
2010-06-26 22:21:28 ----D---- C:\Windows\system32\Wat
2010-06-26 22:03:13 ----D---- C:\Program Files\Intel
2010-06-26 22:03:12 ----D---- C:\Users\Jirka\AppData\Roaming\InstallShield
2010-06-26 22:02:41 ----A---- C:\Windows\system32\bmpsap.dll
2010-06-26 21:58:43 ----D---- C:\Windows\Panther
2010-06-26 21:58:38 ----RASH---- C:\BOOTSECT.BAK
2010-06-26 21:58:36 ----SHD---- C:\Boot
2010-06-26 21:57:38 ----HD---- C:\Program Files\InstallShield Installation Information
2010-06-26 21:57:17 ----D---- C:\Windows\tiinst
2010-06-26 21:55:26 ----A---- C:\Windows\system32\mdimon.dll
2010-06-26 21:47:17 ----D---- C:\ProgramData\Microsoft Help
2010-06-26 21:42:03 ----D---- C:\Program Files\Microsoft Security Essentials
2010-06-26 21:42:00 ----SHD---- C:\Windows\Installer
2010-06-26 21:39:42 ----A---- C:\Windows\system32\msv1_0.dll
2010-06-26 21:38:47 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-06-26 21:38:47 ----A---- C:\Windows\system32\PresentationHost.exe
2010-06-26 21:38:47 ----A---- C:\Windows\system32\netfxperf.dll
2010-06-26 21:38:47 ----A---- C:\Windows\system32\mscoree.dll
2010-06-26 21:38:47 ----A---- C:\Windows\system32\dfshim.dll
2010-06-26 21:35:35 ----A---- C:\Windows\system32\MRT.exe
2010-06-26 21:35:23 ----A---- C:\Windows\system32\browserchoice.exe
2010-06-26 21:34:09 ----A---- C:\Windows\system32\winlogon.exe
2010-06-26 21:34:09 ----A---- C:\Windows\explorer.exe
2010-06-26 21:34:02 ----A---- C:\Windows\system32\tzres.dll
2010-06-26 21:34:00 ----A---- C:\Windows\system32\mshtml.dll
2010-06-26 21:33:59 ----A---- C:\Windows\system32\mstime.dll
2010-06-26 21:33:59 ----A---- C:\Windows\system32\ieframe.dll
2010-06-26 21:33:58 ----A---- C:\Windows\system32\wininet.dll
2010-06-26 21:33:58 ----A---- C:\Windows\system32\urlmon.dll
2010-06-26 21:33:58 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-06-26 21:33:58 ----A---- C:\Windows\system32\jsproxy.dll
2010-06-26 21:33:58 ----A---- C:\Windows\system32\iedkcs32.dll
2010-06-26 21:33:53 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-06-26 21:33:53 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-06-26 21:33:53 ----A---- C:\Windows\system32\secproc_isv.dll
2010-06-26 21:33:53 ----A---- C:\Windows\system32\secproc.dll
2010-06-26 21:33:53 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-06-26 21:33:53 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-06-26 21:33:53 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-06-26 21:33:53 ----A---- C:\Windows\system32\RMActivate.exe
2010-06-26 21:33:52 ----A---- C:\Windows\system32\shell32.dll
2010-06-26 21:33:51 ----A---- C:\Windows\system32\lsasrv.dll
2010-06-26 21:33:51 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2010-06-26 21:33:50 ----A---- C:\Windows\system32\psisdecd.dll
2010-06-26 21:33:50 ----A---- C:\Windows\system32\msdri.dll
2010-06-26 21:33:50 ----A---- C:\Windows\system32\CPFilters.dll
2010-06-26 21:33:48 ----A---- C:\Windows\system32\wmp.dll
2010-06-26 21:33:47 ----A---- C:\Windows\system32\winresume.exe
2010-06-26 21:33:47 ----A---- C:\Windows\system32\winload.exe
2010-06-26 21:33:47 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2010-06-26 21:33:47 ----A---- C:\Windows\system32\CertEnroll.dll
2010-06-26 21:33:46 ----A---- C:\Windows\system32\wmploc.DLL
2010-06-26 21:33:46 ----A---- C:\Windows\system32\drivers\fvevol.sys
2010-06-26 21:33:45 ----A---- C:\Windows\system32\tsbyuv.dll
2010-06-26 21:33:45 ----A---- C:\Windows\system32\quartz.dll
2010-06-26 21:33:45 ----A---- C:\Windows\system32\msyuv.dll
2010-06-26 21:33:45 ----A---- C:\Windows\system32\msvidc32.dll
2010-06-26 21:33:45 ----A---- C:\Windows\system32\msrle32.dll
2010-06-26 21:33:45 ----A---- C:\Windows\system32\mciavi32.dll
2010-06-26 21:33:45 ----A---- C:\Windows\system32\iyuv_32.dll
2010-06-26 21:33:45 ----A---- C:\Windows\system32\avifil32.dll
2010-06-26 21:33:28 ----A---- C:\Windows\system32\inetcomm.dll
2010-06-26 21:33:27 ----A---- C:\Windows\system32\ntdll.dll
2010-06-26 21:33:26 ----A---- C:\Windows\system32\msasn1.dll
2010-06-26 21:33:03 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-06-26 21:33:03 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-06-26 21:33:01 ----A---- C:\Windows\system32\win32k.sys
2010-06-26 21:32:59 ----A---- C:\Windows\system32\t2embed.dll
2010-06-26 21:32:59 ----A---- C:\Windows\system32\asycfilt.dll
2010-06-26 21:32:57 ----A---- C:\Windows\system32\jscript.dll
2010-06-26 21:32:56 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-06-26 21:32:56 ----A---- C:\Windows\system32\drivers\srv.sys
2010-06-26 21:32:19 ----A---- C:\Windows\system32\vbscript.dll
2010-06-26 21:32:05 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2010-06-26 21:32:05 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2010-06-26 21:32:05 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2010-06-26 21:28:34 ----N---- C:\Windows\system32\MpSigStub.exe
2010-06-26 21:27:12 ----A---- C:\Windows\system32\fontsub.dll
2010-06-26 21:27:12 ----A---- C:\Windows\system32\atmlib.dll
2010-06-26 21:27:12 ----A---- C:\Windows\system32\atmfd.dll
2010-06-26 21:24:13 ----D---- C:\Program Files\PowerISO
2010-06-26 21:23:25 ----D---- C:\Program Files\Everest Ultimate
2010-06-26 21:21:45 ----D---- C:\Users\Jirka\AppData\Roaming\Macromedia
2010-06-26 21:21:45 ----D---- C:\Users\Jirka\AppData\Roaming\Adobe
2010-06-26 21:21:40 ----D---- C:\Windows\system32\Macromed
2010-06-26 21:17:53 ----D---- C:\Users\Jirka\AppData\Roaming\GHISLER
2010-06-26 21:17:53 ----D---- C:\Program Files\totalcmd
2010-06-26 21:17:53 ----A---- C:\Windows\UC.PIF
2010-06-26 21:17:53 ----A---- C:\Windows\RAR.PIF
2010-06-26 21:17:53 ----A---- C:\Windows\PKZIP.PIF
2010-06-26 21:17:53 ----A---- C:\Windows\PKUNZIP.PIF
2010-06-26 21:17:53 ----A---- C:\Windows\NOCLOSE.PIF
2010-06-26 21:17:53 ----A---- C:\Windows\LHA.PIF
2010-06-26 21:17:53 ----A---- C:\Windows\ARJ.PIF
2010-06-26 21:15:39 ----HD---- C:\ProgramData\CanonBJ
2010-06-26 21:15:22 ----D---- C:\Program Files\QIP
2010-06-26 21:14:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-06-26 21:10:30 ----A---- C:\Windows\system32\NVUNINST.EXE
2010-06-26 21:10:23 ----D---- C:\Program Files\Common Files\InstallShield
2010-06-26 21:09:06 ----A---- C:\Windows\system32\wintrust.dll
2010-06-26 21:08:58 ----A---- C:\Windows\system32\cabview.dll
2010-06-26 21:07:47 ----D---- C:\Users\Jirka\AppData\Roaming\Identities
2010-06-26 21:07:34 ----SD---- C:\Users\Jirka\AppData\Roaming\Microsoft
2010-06-26 21:07:34 ----D---- C:\Users\Jirka\AppData\Roaming\Media Center Programs
2010-06-26 21:07:15 ----SHD---- C:\Recovery
2010-06-26 21:07:15 ----SHD---- C:\ProgramData\Šablony
2010-06-26 21:07:15 ----SHD---- C:\ProgramData\Plocha
2010-06-26 21:07:15 ----SHD---- C:\ProgramData\Oblíbené položky
2010-06-26 21:07:15 ----SHD---- C:\ProgramData\Nabídka Start
2010-06-26 21:07:15 ----SHD---- C:\ProgramData\Dokumenty
2010-06-26 21:07:15 ----SHD---- C:\ProgramData\Data aplikací
2010-06-26 21:02:59 ----D---- C:\Windows\SoftwareDistribution
2010-06-26 21:00:15 ----D---- C:\Windows\Prefetch
2010-06-26 20:59:53 ----ASH---- C:\pagefile.sys
2010-06-26 20:59:50 ----SHD---- C:\System Volume Information
2010-06-26 20:59:50 ----ASH---- C:\hiberfil.sys
======List of files/folders modified in the last 1 months======
2010-07-17 13:35:02 ----D---- C:\Windows\Temp
2010-07-17 13:34:15 ----RD---- C:\Program Files
2010-07-17 08:40:53 ----D---- C:\Windows\system32\config
2010-07-17 07:55:32 ----D---- C:\Windows
2010-07-16 15:09:22 ----D---- C:\Windows\System32
2010-07-16 15:09:21 ----D---- C:\Windows\inf
2010-07-15 21:31:30 ----D---- C:\Windows\system32\catroot2
2010-07-15 21:29:32 ----D---- C:\Windows\debug
2010-07-13 09:36:15 ----D---- C:\Windows\winsxs
2010-07-13 09:24:39 ----D---- C:\Windows\system32\catroot
2010-07-07 18:17:45 ----D---- C:\Windows\system32\drivers
2010-07-06 14:44:06 ----D---- C:\Windows\Logs
2010-07-06 12:07:13 ----D---- C:\Windows\system32\wdi
2010-07-05 15:19:01 ----D---- C:\Windows\Microsoft.NET
2010-07-05 15:19:00 ----RSD---- C:\Windows\assembly
2010-07-04 09:00:05 ----SD---- C:\ProgramData\Microsoft
2010-07-02 20:14:20 ----RD---- C:\Users
2010-06-30 10:57:31 ----HD---- C:\ProgramData
2010-06-30 10:57:27 ----D---- C:\Program Files\Common Files
2010-06-28 23:12:20 ----D---- C:\Windows\rescache
2010-06-28 22:22:21 ----D---- C:\Windows\system32\DriverStore
2010-06-28 20:00:29 ----D---- C:\Windows\system32\LogFiles
2010-06-27 22:46:40 ----D---- C:\Program Files\Common Files\microsoft shared
2010-06-27 22:43:51 ----A---- C:\Windows\win.ini
2010-06-27 22:31:49 ----D---- C:\Windows\Registration
2010-06-27 22:30:58 ----D---- C:\Program Files\Internet Explorer
2010-06-27 21:23:16 ----D---- C:\Windows\system32\ja-JP
2010-06-27 21:23:16 ----D---- C:\Windows\system32\it-IT
2010-06-27 21:23:16 ----D---- C:\Windows\system32\el-GR
2010-06-27 21:23:16 ----D---- C:\Windows\system32\de-DE
2010-06-27 21:23:15 ----D---- C:\Windows\system32\tr-TR
2010-06-27 21:23:15 ----D---- C:\Windows\system32\fr-FR
2010-06-27 21:23:14 ----D---- C:\Windows\system32\zh-TW
2010-06-27 21:23:14 ----D---- C:\Windows\system32\ro-RO
2010-06-27 21:23:14 ----D---- C:\Windows\system32\pt-PT
2010-06-27 21:23:14 ----D---- C:\Windows\system32\pt-BR
2010-06-27 21:23:14 ----D---- C:\Windows\system32\nl-NL
2010-06-27 21:23:14 ----D---- C:\Windows\system32\nb-NO
2010-06-27 21:23:14 ----D---- C:\Windows\system32\fi-FI
2010-06-27 21:23:14 ----D---- C:\Windows\system32\en-US
2010-06-27 21:23:14 ----D---- C:\Windows\system32\drivers\cs-CZ
2010-06-27 21:23:14 ----D---- C:\Windows\system32\cs-CZ
2010-06-27 21:23:13 ----D---- C:\Windows\system32\pl-PL
2010-06-27 21:23:13 ----D---- C:\Windows\system32\ko-KR
2010-06-27 21:23:13 ----D---- C:\Windows\system32\drivers\en-US
2010-06-27 21:23:13 ----D---- C:\Windows\system32\ar-SA
2010-06-27 21:23:12 ----D---- C:\Windows\system32\da-DK
2010-06-27 21:23:11 ----D---- C:\Windows\system32\zh-CN
2010-06-27 21:23:11 ----D---- C:\Windows\system32\th-TH
2010-06-27 21:23:11 ----D---- C:\Windows\system32\sv-SE
2010-06-27 21:23:11 ----D---- C:\Windows\system32\ru-RU
2010-06-27 21:23:11 ----D---- C:\Windows\system32\hu-HU
2010-06-27 21:23:11 ----D---- C:\Windows\system32\he-IL
2010-06-27 21:23:11 ----D---- C:\Windows\system32\es-ES
2010-06-27 20:43:50 ----RSD---- C:\Windows\Fonts
2010-06-27 14:45:28 ----D---- C:\Windows\system32\drivers\UMDF
2010-06-27 14:43:00 ----D---- C:\Windows\system32\Tasks
2010-06-27 12:24:11 ----D---- C:\Windows\ShellNew
2010-06-26 22:32:45 ----D---- C:\Windows\Tasks
2010-06-26 22:28:03 ----D---- C:\Program Files\Common Files\System
2010-06-26 22:15:04 ----D---- C:\Program Files\Windows Mail
2010-06-26 22:15:03 ----D---- C:\Program Files\Windows Media Player
2010-06-26 22:15:02 ----D---- C:\Windows\system32\Boot
2010-06-26 22:15:00 ----D---- C:\Windows\ehome
2010-06-26 22:14:58 ----D---- C:\Windows\system32\migration
2010-06-26 22:14:54 ----D---- C:\Windows\AppPatch
2010-06-26 21:32:48 ----D---- C:\Windows\Downloaded Program Files
2010-06-26 21:21:55 ----D---- C:\Windows\system32\CodeIntegrity
2010-06-26 21:15:34 ----D---- C:\Windows\system32\spool
2010-06-26 21:10:59 ----D---- C:\Windows\Help
2010-06-26 21:10:58 ----D---- C:\Windows\system32\wbem
2010-06-26 21:09:07 ----D---- C:\Windows\system32\restore
2010-06-26 21:07:44 ----SHD---- C:\$Recycle.Bin
2010-06-26 21:07:15 ----D---- C:\Program Files\Windows NT
2010-06-26 21:03:56 ----D---- C:\Windows\system32\sysprep
2010-06-26 21:00:47 ----D---- C:\Windows\CSC
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2010-03-25 151216]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2009-03-15 56268]
R1 vpcnfltr;Virtual PC Network Filter Driver; C:\Windows\system32\DRIVERS\vpcnfltr.sys [2009-09-23 55040]
R1 vpcvmm;@%SystemRoot%\system32\drivers\vpcvmm.sys,-100; C:\Windows\system32\drivers\vpcvmm.sys [2009-09-23 294912]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2009-07-14 1035776]
R3 AGR1310_60;Agere Systems ET-13xx PCI-E Ethernet Adapter Vista Driver; C:\Windows\system32\DRIVERS\AGR1310_60.sys [2007-01-19 77824]
R3 athr;Atheros – ovladač pro zařízení pro rozšiřitelnou bezdrátovou síť LAN; C:\Windows\system32\DRIVERS\athr.sys [2009-07-14 1096704]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2009-03-31 36608]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-01-02 1668456]
R3 MarvinBus;Pinnacle Marvin Bus; C:\Windows\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
R3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2010-03-25 42368]
R3 Point32;Microsoft IntelliPoint Filter Driver; C:\Windows\system32\DRIVERS\point32k.sys [2009-11-11 30576]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-10-10 84992]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-08-28 228784]
R3 tifm21;tifm21; C:\Windows\system32\drivers\tifm21.sys [2007-05-02 290816]
R3 vpcbus;Služba hostitelské sběrnice programu Virtual PC; C:\Windows\system32\DRIVERS\vpchbus.sys [2009-09-23 165376]
R3 vpcusb;Služba konektoru virtualizace rozhraní USB; C:\Windows\system32\DRIVERS\vpcusb.sys [2009-09-23 78336]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 392704]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Everest Ultimate\kerneld.wnt [2010-02-17 27760]
S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-14 4231168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgusbbus.sys [2010-01-21 13056]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgusbdiag.sys [2010-01-21 20864]
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgusbmodem.sys [2010-01-21 24960]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 FsUsbExService;FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [2009-03-31 233472]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Essentials\MsMpEng.exe [2010-03-25 17904]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-09-23 935208]
R2 O&O Defrag;O&O Defrag; C:\Program Files\OO Software\Defrag\oodag.exe [2009-09-12 1488128]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2005-08-08 167936]
R2 TeamViewer5;TeamViewer 5; C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe [2010-01-12 185640]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-06-10 31064]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-06-27 655624]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-26 1343400]
-----------------EOF-----------------
prosím o kontrolu:
Logfile of random's system information tool 1.08 (written by random/random)
Run by Jirka at 2010-07-17 13:34:15
Microsoft Windows 7 Ultimate
System drive C: has 11 GB (27%) free of 40 GB
Total RAM: 1534 MB (51% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:35:08, on 17.7.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Microsoft Security Essentials\msseces.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\LG Software\On Screen Display\HotKey.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\QIP\qip.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Users\Jirka\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jirka\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
D:\_zaloha\RSIT.exe
C:\Program Files\trend micro\Jirka.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Castle Age Toolbar - {aac4043a-8832-4abe-9963-35377f30b8e6} - C:\Program Files\Castle_Age\tbCast.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Castle Age Toolbar - {aac4043a-8832-4abe-9963-35377f30b8e6} - C:\Program Files\Castle_Age\tbCast.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Castle Age Toolbar - {aac4043a-8832-4abe-9963-35377f30b8e6} - C:\Program Files\Castle_Age\tbCast.dll
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [MSSE] "C:\Program Files\Microsoft Security Essentials\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [KeybdUtility] C:\Program Files\LG Software\On Screen Display\HotKey.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [OODefragTray] C:\Program Files\OO Software\Defrag\oodtray.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Jirka\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIF5BA~1\Office12\REFIEBAR.DLL
O16 - DPF: {82774781-8F4E-11D1-AB1C-0000F8773BF0} (DLC Class) - https://transfers.ds.microsoft.com/FTM/ ... erCtrl.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
--
End of file - 6415 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-703784279-2633260763-2867772772-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-703784279-2633260763-2867772772-1001UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{aac4043a-8832-4abe-9963-35377f30b8e6}]
Castle Age Toolbar - C:\Program Files\Castle_Age\tbCast.dll [2010-06-13 2734688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-06-30 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{aac4043a-8832-4abe-9963-35377f30b8e6} - Castle Age Toolbar - C:\Program Files\Castle_Age\tbCast.dll [2010-06-13 2734688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvSvc"=C:\Windows\system32\nvsvc.dll [2006-12-20 90191]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2006-12-20 7766016]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2006-12-20 81920]
"PWRISOVM.EXE"=C:\Program Files\PowerISO\PWRISOVM.EXE [2009-03-15 180224]
"MSSE"=C:\Program Files\Microsoft Security Essentials\msseces.exe [2010-06-01 1093208]
"KeybdUtility"=C:\Program Files\LG Software\On Screen Display\HotKey.exe [2007-02-15 2655800]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2006-12-29 4317184]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-08-28 1557800]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe []
"IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2009-11-11 1468256]
"OODefragTray"=C:\Program Files\OO Software\Defrag\oodtray.exe [2009-09-12 2524416]
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2006-11-23 56928]
"LanguageShortcut"=C:\Program Files\CyberLink\PowerDVD\Language\Language.exe [2006-12-05 54832]
"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"NPSStartup"= []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Jirka\AppData\Local\Google\Update\GoogleUpdate.exe [2010-06-26 136176]
"AdobeBridge"= []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2010-07-17 13:34:15 ----D---- C:\rsit
2010-07-17 13:34:15 ----D---- C:\Program Files\trend micro
2010-07-17 07:54:10 ----D---- C:\Windows\Minidump
2010-07-16 17:02:20 ----D---- C:\Users\Jirka\AppData\Roaming\dvdcss
2010-07-15 11:31:57 ----A---- C:\Windows\UOUninst.exe
2010-07-14 20:20:24 ----D---- C:\Program Files\Windows XP Mode
2010-07-14 10:54:58 ----D---- C:\Program Files\G-Spot
2010-07-13 09:25:10 ----A---- C:\Windows\system32\kernel32.dll
2010-07-13 09:25:09 ----A---- C:\Windows\system32\apphelp.dll
2010-07-12 13:23:10 ----D---- C:\Program Files\GamePark
2010-07-10 08:35:29 ----D---- C:\Users\Jirka\AppData\Roaming\Movier
2010-07-10 08:35:17 ----D---- C:\Program Files\Movier
2010-07-05 18:29:33 ----D---- C:\Users\Jirka\AppData\Roaming\CyberLink
2010-07-04 09:03:56 ----D---- C:\Program Files\WPF Toolkit
2010-07-04 09:03:17 ----D---- C:\Program Files\Microsoft SDKs
2010-07-04 09:02:27 ----A---- C:\Windows\system32\D3DX9_39.dll
2010-07-04 09:01:14 ----D---- C:\Program Files\Microsoft Visual Studio 8
2010-07-04 09:00:04 ----D---- C:\Program Files\Microsoft Expression
2010-06-30 10:58:53 ----D---- C:\Windows\Sun
2010-06-30 10:57:31 ----D---- C:\ProgramData\Sun
2010-06-30 10:57:27 ----D---- C:\Program Files\Common Files\Java
2010-06-30 10:56:50 ----A---- C:\Windows\system32\javaws.exe
2010-06-30 10:56:50 ----A---- C:\Windows\system32\javaw.exe
2010-06-30 10:56:50 ----A---- C:\Windows\system32\java.exe
2010-06-30 10:56:50 ----A---- C:\Windows\system32\deployJava1.dll
2010-06-30 10:56:29 ----D---- C:\Program Files\Java
2010-06-29 21:15:11 ----D---- C:\Users\Jirka\AppData\Roaming\Ventrilo
2010-06-29 21:14:52 ----D---- C:\Program Files\Ventrilo
2010-06-29 21:14:32 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-06-28 23:07:53 ----D---- C:\Program Files\MarkAnyContentSAFER
2010-06-28 22:42:40 ----D---- C:\Program Files\Vypínač na dobrou noc
2010-06-28 22:20:53 ----D---- C:\ProgramData\PC Suite
2010-06-28 22:20:52 ----D---- C:\Users\Jirka\AppData\Roaming\PC Suite
2010-06-28 22:19:19 ----A---- C:\Windows\system32\nmwcdcls.dll
2010-06-28 22:19:15 ----D---- C:\Program Files\DIFX
2010-06-28 22:19:15 ----A---- C:\Windows\system32\drivers\pccsmcfd.sys
2010-06-28 22:19:12 ----DC---- C:\Windows\system32\DRVSTORE
2010-06-28 22:18:43 ----A---- C:\Windows\system32\drivers\ss_bwhnt.sys
2010-06-28 22:18:43 ----A---- C:\Windows\system32\drivers\ss_bwh.sys
2010-06-28 22:18:43 ----A---- C:\Windows\system32\drivers\ss_bmdm.sys
2010-06-28 22:18:43 ----A---- C:\Windows\system32\drivers\ss_bmdfl.sys
2010-06-28 22:18:43 ----A---- C:\Windows\system32\drivers\ss_bcmnt.sys
2010-06-28 22:18:43 ----A---- C:\Windows\system32\drivers\ss_bcm.sys
2010-06-28 22:18:43 ----A---- C:\Windows\system32\drivers\ss_bbus.sys
2010-06-28 22:17:27 ----D---- C:\Windows\system32\Samsung_USB_Drivers
2010-06-28 22:17:06 ----A---- C:\Windows\system32\FsUsbExService.Exe
2010-06-28 22:17:06 ----A---- C:\Windows\system32\FsUsbExDisk.Sys
2010-06-28 22:17:06 ----A---- C:\Windows\system32\FsUsbExDevice.Dll
2010-06-28 22:16:54 ----D---- C:\Users\Jirka\AppData\Roaming\Samsung
2010-06-28 22:16:01 ----D---- C:\Program Files\MarkAny
2010-06-28 22:15:56 ----D---- C:\Program Files\PC Connectivity Solution
2010-06-28 22:15:16 ----D---- C:\Program Files\Samsung
2010-06-28 21:56:25 ----D---- C:\Program Files\Audacity
2010-06-28 21:29:16 ----A---- C:\Windows\system32\NCTWMAFile2.dll
2010-06-28 21:29:16 ----A---- C:\Windows\system32\NCTAudioPlayer2.dll
2010-06-28 21:29:15 ----A---- C:\Windows\system32\NCTAudioFile2.dll
2010-06-28 21:29:12 ----D---- C:\Program Files\Free MP3 WMA WAV Converter
2010-06-28 20:46:18 ----D---- C:\Windows\system32\oodag
2010-06-28 17:08:57 ----D---- C:\Users\Jirka\AppData\Roaming\WinRAR
2010-06-28 17:08:46 ----D---- C:\Program Files\WinRAR
2010-06-27 22:40:48 ----D---- C:\Program Files\MSXML 4.0
2010-06-27 22:35:46 ----D---- C:\Sounds
2010-06-27 22:32:04 ----D---- C:\Program Files\LG Electronics
2010-06-27 22:30:58 ----D---- C:\Windows\system32\URTTEMP
2010-06-27 22:29:38 ----A---- C:\Windows\system32\NMSDVDXU.dll
2010-06-27 22:29:34 ----D---- C:\Users\Jirka\AppData\Roaming\LG Electronics
2010-06-27 22:29:32 ----D---- C:\Program Files\LG PC Suite II
2010-06-27 22:10:22 ----D---- C:\Program Files\Conduit
2010-06-27 22:10:20 ----D---- C:\Program Files\Castle_Age
2010-06-27 21:47:09 ----D---- C:\Program Files\Microsoft
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\zh-TW
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\zh-CN
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\tr-TR
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\th-TH
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\sv-SE
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\ru-RU
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\ro-RO
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\pt-PT
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\pt-BR
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\pl-PL
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\nl-NL
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\nb-NO
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\ko-KR
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\ja-JP
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\it-IT
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\hu-HU
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\he-IL
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\fr-FR
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\fi-FI
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\es-ES
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\el-GR
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\de-DE
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\da-DK
2010-06-27 21:23:08 ----D---- C:\Windows\system32\drivers\ar-SA
2010-06-27 21:23:08 ----D---- C:\Program Files\Windows Virtual PC
2010-06-27 21:02:39 ----A---- C:\Windows\system32\vpchbuspipe.dll
2010-06-27 21:02:29 ----A---- C:\Windows\system32\drivers\vpchbus.sys
2010-06-27 21:02:29 ----A---- C:\Windows\system32\drivers\vpcusb.sys
2010-06-27 21:02:28 ----A---- C:\Windows\system32\VPCWizard.exe
2010-06-27 21:02:28 ----A---- C:\Windows\system32\drivers\vpcvmm.sys
2010-06-27 21:02:28 ----A---- C:\Windows\system32\drivers\vpcnfltr.sys
2010-06-27 21:02:27 ----A---- C:\Windows\system32\VPCSettings.exe
2010-06-27 21:02:27 ----A---- C:\Windows\system32\VMCPropertyHandler.dll
2010-06-27 21:02:26 ----A---- C:\Windows\system32\VMWindow.exe
2010-06-27 21:02:26 ----A---- C:\Windows\system32\vmsal.exe
2010-06-27 21:02:25 ----A---- C:\Windows\system32\vpc.exe
2010-06-27 20:46:03 ----D---- C:\Program Files\Common Files\Pinnacle
2010-06-27 20:45:26 ----D---- C:\ProgramData\Pinnacle Studio Ultimate
2010-06-27 20:40:26 ----D---- C:\Program Files\Common Files\Yahoo!
2010-06-27 20:40:25 ----D---- C:\ProgramData\Studio 12
2010-06-27 20:40:25 ----D---- C:\ProgramData\Pinnacle Studio Plus
2010-06-27 20:40:25 ----D---- C:\Program Files\Pinnacle
2010-06-27 20:34:41 ----D---- C:\Users\Jirka\AppData\Roaming\com.adobe.ExMan
2010-06-27 20:27:23 ----D---- C:\ProgramData\FLEXnet
2010-06-27 20:23:37 ----D---- C:\Program Files\Adobe Media Player
2010-06-27 20:17:23 ----D---- C:\Program Files\Common Files\Macrovision Shared
2010-06-27 19:57:56 ----D---- C:\ProgramData\Pinnacle
2010-06-27 19:56:28 ----D---- C:\Program Files\7-Zip
2010-06-27 14:43:28 ----D---- C:\ProgramData\CyberLink
2010-06-27 14:42:41 ----N---- C:\Windows\system32\msxml3a.dll
2010-06-27 14:41:34 ----D---- C:\Program Files\CyberLink
2010-06-27 14:39:29 ----D---- C:\Program Files\OO Software
2010-06-27 14:38:39 ----D---- C:\Users\Jirka\AppData\Roaming\Nero
2010-06-27 14:12:43 ----D---- C:\Program Files\Nero
2010-06-27 14:12:18 ----D---- C:\ProgramData\Nero
2010-06-27 14:12:14 ----D---- C:\Program Files\Common Files\Nero
2010-06-27 13:58:15 ----RASH---- C:\MSDOS.SYS
2010-06-27 13:58:15 ----RASH---- C:\IO.SYS
2010-06-27 12:27:34 ----D---- C:\Program Files\Microsoft Works
2010-06-27 12:26:34 ----D---- C:\Program Files\Microsoft Visual Studio
2010-06-27 12:26:33 ----D---- C:\Program Files\Common Files\DESIGNER
2010-06-27 12:25:55 ----D---- C:\Program Files\Microsoft.NET
2010-06-27 12:23:20 ----D---- C:\Program Files\Microsoft Office
2010-06-27 12:22:11 ----RHD---- C:\MSOCache
2010-06-27 11:58:04 ----D---- C:\Program Files\Microsoft IntelliPoint
2010-06-27 09:53:27 ----D---- C:\Users\Jirka\AppData\Roaming\vlc
2010-06-27 09:52:51 ----D---- C:\Program Files\VideoLAN
2010-06-27 09:50:10 ----N---- C:\Windows\system32\pxsfs.dll
2010-06-27 09:50:10 ----N---- C:\Windows\system32\pxinsa64.exe
2010-06-27 09:50:10 ----N---- C:\Windows\system32\pxhpinst.exe
2010-06-27 09:50:10 ----N---- C:\Windows\system32\pxdrv.dll
2010-06-27 09:50:10 ----N---- C:\Windows\system32\pxcpya64.exe
2010-06-27 09:50:10 ----N---- C:\Windows\system32\pxafs.dll
2010-06-27 09:50:09 ----N---- C:\Windows\system32\vxblock.dll
2010-06-27 09:50:09 ----N---- C:\Windows\system32\pxwave.dll
2010-06-27 09:50:09 ----N---- C:\Windows\system32\pxmas.dll
2010-06-27 09:50:09 ----N---- C:\Windows\system32\px.dll
2010-06-27 09:50:05 ----D---- C:\Users\Jirka\AppData\Roaming\Winamp
2010-06-27 09:50:05 ----D---- C:\Program Files\Winamp
2010-06-27 09:44:27 ----D---- C:\Windows\system32\Adobe
2010-06-27 09:43:17 ----D---- C:\Program Files\Common Files\Adobe
2010-06-27 09:42:10 ----D---- C:\ProgramData\Adobe
2010-06-27 09:42:09 ----D---- C:\Program Files\Adobe
2010-06-27 09:42:05 ----D---- C:\Program Files\Common Files\Adobe AIR
2010-06-27 09:41:06 ----D---- C:\ProgramData\NOS
2010-06-27 09:40:17 ----D---- C:\Program Files\Synaptics
2010-06-27 09:38:54 ----A---- C:\Windows\system32\WdfCoInstaller01009.dll
2010-06-27 09:38:52 ----A---- C:\Windows\system32\SynTPCo4.dll
2010-06-27 09:38:51 ----A---- C:\Windows\system32\SynCtrl.dll
2010-06-27 09:38:51 ----A---- C:\Windows\system32\SynCOM.dll
2010-06-27 09:38:50 ----A---- C:\Windows\system32\SynTPAPI.dll
2010-06-27 09:38:49 ----A---- C:\Windows\system32\drivers\SynTP.sys
2010-06-27 09:06:41 ----D---- C:\Users\Jirka\AppData\Roaming\Mozilla
2010-06-27 09:06:19 ----D---- C:\Program Files\Mozilla Firefox
2010-06-27 09:03:23 ----A---- C:\Windows\system32\d3dx9_32.dll
2010-06-27 09:03:04 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2010-06-27 09:02:39 ----D---- C:\Program Files\Windows Live SkyDrive
2010-06-27 09:02:32 ----D---- C:\Program Files\Windows Live
2010-06-27 09:02:04 ----D---- C:\Windows\PCHEALTH
2010-06-27 09:00:18 ----D---- C:\Program Files\Common Files\Windows Live
2010-06-27 08:57:47 ----D---- C:\Windows\system32\appmgmt
2010-06-27 08:57:31 ----D---- C:\Users\Jirka\AppData\Roaming\skypePM
2010-06-27 08:56:43 ----D---- C:\Users\Jirka\AppData\Roaming\Skype
2010-06-27 08:56:16 ----D---- C:\Program Files\Common Files\Skype
2010-06-27 08:56:13 ----RD---- C:\Program Files\Skype
2010-06-27 08:56:10 ----D---- C:\ProgramData\Skype
2010-06-27 08:54:13 ----D---- C:\Users\Jirka\AppData\Roaming\TeamViewer
2010-06-27 08:54:01 ----D---- C:\Program Files\TeamViewer
2010-06-26 23:59:52 ----D---- C:\Program Files\Microsoft Silverlight
2010-06-26 23:59:14 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2010-06-26 23:59:14 ----A---- C:\Windows\system32\drivers\sdbus.sys
2010-06-26 23:54:32 ----D---- C:\Windows\system32\RTCOM
2010-06-26 22:23:44 ----D---- C:\Program Files\LG Software
2010-06-26 22:21:28 ----D---- C:\Windows\system32\Wat
2010-06-26 22:03:13 ----D---- C:\Program Files\Intel
2010-06-26 22:03:12 ----D---- C:\Users\Jirka\AppData\Roaming\InstallShield
2010-06-26 22:02:41 ----A---- C:\Windows\system32\bmpsap.dll
2010-06-26 21:58:43 ----D---- C:\Windows\Panther
2010-06-26 21:58:38 ----RASH---- C:\BOOTSECT.BAK
2010-06-26 21:58:36 ----SHD---- C:\Boot
2010-06-26 21:57:38 ----HD---- C:\Program Files\InstallShield Installation Information
2010-06-26 21:57:17 ----D---- C:\Windows\tiinst
2010-06-26 21:55:26 ----A---- C:\Windows\system32\mdimon.dll
2010-06-26 21:47:17 ----D---- C:\ProgramData\Microsoft Help
2010-06-26 21:42:03 ----D---- C:\Program Files\Microsoft Security Essentials
2010-06-26 21:42:00 ----SHD---- C:\Windows\Installer
2010-06-26 21:39:42 ----A---- C:\Windows\system32\msv1_0.dll
2010-06-26 21:38:47 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-06-26 21:38:47 ----A---- C:\Windows\system32\PresentationHost.exe
2010-06-26 21:38:47 ----A---- C:\Windows\system32\netfxperf.dll
2010-06-26 21:38:47 ----A---- C:\Windows\system32\mscoree.dll
2010-06-26 21:38:47 ----A---- C:\Windows\system32\dfshim.dll
2010-06-26 21:35:35 ----A---- C:\Windows\system32\MRT.exe
2010-06-26 21:35:23 ----A---- C:\Windows\system32\browserchoice.exe
2010-06-26 21:34:09 ----A---- C:\Windows\system32\winlogon.exe
2010-06-26 21:34:09 ----A---- C:\Windows\explorer.exe
2010-06-26 21:34:02 ----A---- C:\Windows\system32\tzres.dll
2010-06-26 21:34:00 ----A---- C:\Windows\system32\mshtml.dll
2010-06-26 21:33:59 ----A---- C:\Windows\system32\mstime.dll
2010-06-26 21:33:59 ----A---- C:\Windows\system32\ieframe.dll
2010-06-26 21:33:58 ----A---- C:\Windows\system32\wininet.dll
2010-06-26 21:33:58 ----A---- C:\Windows\system32\urlmon.dll
2010-06-26 21:33:58 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-06-26 21:33:58 ----A---- C:\Windows\system32\jsproxy.dll
2010-06-26 21:33:58 ----A---- C:\Windows\system32\iedkcs32.dll
2010-06-26 21:33:53 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-06-26 21:33:53 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-06-26 21:33:53 ----A---- C:\Windows\system32\secproc_isv.dll
2010-06-26 21:33:53 ----A---- C:\Windows\system32\secproc.dll
2010-06-26 21:33:53 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-06-26 21:33:53 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-06-26 21:33:53 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-06-26 21:33:53 ----A---- C:\Windows\system32\RMActivate.exe
2010-06-26 21:33:52 ----A---- C:\Windows\system32\shell32.dll
2010-06-26 21:33:51 ----A---- C:\Windows\system32\lsasrv.dll
2010-06-26 21:33:51 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2010-06-26 21:33:50 ----A---- C:\Windows\system32\psisdecd.dll
2010-06-26 21:33:50 ----A---- C:\Windows\system32\msdri.dll
2010-06-26 21:33:50 ----A---- C:\Windows\system32\CPFilters.dll
2010-06-26 21:33:48 ----A---- C:\Windows\system32\wmp.dll
2010-06-26 21:33:47 ----A---- C:\Windows\system32\winresume.exe
2010-06-26 21:33:47 ----A---- C:\Windows\system32\winload.exe
2010-06-26 21:33:47 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2010-06-26 21:33:47 ----A---- C:\Windows\system32\CertEnroll.dll
2010-06-26 21:33:46 ----A---- C:\Windows\system32\wmploc.DLL
2010-06-26 21:33:46 ----A---- C:\Windows\system32\drivers\fvevol.sys
2010-06-26 21:33:45 ----A---- C:\Windows\system32\tsbyuv.dll
2010-06-26 21:33:45 ----A---- C:\Windows\system32\quartz.dll
2010-06-26 21:33:45 ----A---- C:\Windows\system32\msyuv.dll
2010-06-26 21:33:45 ----A---- C:\Windows\system32\msvidc32.dll
2010-06-26 21:33:45 ----A---- C:\Windows\system32\msrle32.dll
2010-06-26 21:33:45 ----A---- C:\Windows\system32\mciavi32.dll
2010-06-26 21:33:45 ----A---- C:\Windows\system32\iyuv_32.dll
2010-06-26 21:33:45 ----A---- C:\Windows\system32\avifil32.dll
2010-06-26 21:33:28 ----A---- C:\Windows\system32\inetcomm.dll
2010-06-26 21:33:27 ----A---- C:\Windows\system32\ntdll.dll
2010-06-26 21:33:26 ----A---- C:\Windows\system32\msasn1.dll
2010-06-26 21:33:03 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-06-26 21:33:03 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-06-26 21:33:01 ----A---- C:\Windows\system32\win32k.sys
2010-06-26 21:32:59 ----A---- C:\Windows\system32\t2embed.dll
2010-06-26 21:32:59 ----A---- C:\Windows\system32\asycfilt.dll
2010-06-26 21:32:57 ----A---- C:\Windows\system32\jscript.dll
2010-06-26 21:32:56 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-06-26 21:32:56 ----A---- C:\Windows\system32\drivers\srv.sys
2010-06-26 21:32:19 ----A---- C:\Windows\system32\vbscript.dll
2010-06-26 21:32:05 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2010-06-26 21:32:05 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2010-06-26 21:32:05 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2010-06-26 21:28:34 ----N---- C:\Windows\system32\MpSigStub.exe
2010-06-26 21:27:12 ----A---- C:\Windows\system32\fontsub.dll
2010-06-26 21:27:12 ----A---- C:\Windows\system32\atmlib.dll
2010-06-26 21:27:12 ----A---- C:\Windows\system32\atmfd.dll
2010-06-26 21:24:13 ----D---- C:\Program Files\PowerISO
2010-06-26 21:23:25 ----D---- C:\Program Files\Everest Ultimate
2010-06-26 21:21:45 ----D---- C:\Users\Jirka\AppData\Roaming\Macromedia
2010-06-26 21:21:45 ----D---- C:\Users\Jirka\AppData\Roaming\Adobe
2010-06-26 21:21:40 ----D---- C:\Windows\system32\Macromed
2010-06-26 21:17:53 ----D---- C:\Users\Jirka\AppData\Roaming\GHISLER
2010-06-26 21:17:53 ----D---- C:\Program Files\totalcmd
2010-06-26 21:17:53 ----A---- C:\Windows\UC.PIF
2010-06-26 21:17:53 ----A---- C:\Windows\RAR.PIF
2010-06-26 21:17:53 ----A---- C:\Windows\PKZIP.PIF
2010-06-26 21:17:53 ----A---- C:\Windows\PKUNZIP.PIF
2010-06-26 21:17:53 ----A---- C:\Windows\NOCLOSE.PIF
2010-06-26 21:17:53 ----A---- C:\Windows\LHA.PIF
2010-06-26 21:17:53 ----A---- C:\Windows\ARJ.PIF
2010-06-26 21:15:39 ----HD---- C:\ProgramData\CanonBJ
2010-06-26 21:15:22 ----D---- C:\Program Files\QIP
2010-06-26 21:14:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-06-26 21:10:30 ----A---- C:\Windows\system32\NVUNINST.EXE
2010-06-26 21:10:23 ----D---- C:\Program Files\Common Files\InstallShield
2010-06-26 21:09:06 ----A---- C:\Windows\system32\wintrust.dll
2010-06-26 21:08:58 ----A---- C:\Windows\system32\cabview.dll
2010-06-26 21:07:47 ----D---- C:\Users\Jirka\AppData\Roaming\Identities
2010-06-26 21:07:34 ----SD---- C:\Users\Jirka\AppData\Roaming\Microsoft
2010-06-26 21:07:34 ----D---- C:\Users\Jirka\AppData\Roaming\Media Center Programs
2010-06-26 21:07:15 ----SHD---- C:\Recovery
2010-06-26 21:07:15 ----SHD---- C:\ProgramData\Šablony
2010-06-26 21:07:15 ----SHD---- C:\ProgramData\Plocha
2010-06-26 21:07:15 ----SHD---- C:\ProgramData\Oblíbené položky
2010-06-26 21:07:15 ----SHD---- C:\ProgramData\Nabídka Start
2010-06-26 21:07:15 ----SHD---- C:\ProgramData\Dokumenty
2010-06-26 21:07:15 ----SHD---- C:\ProgramData\Data aplikací
2010-06-26 21:02:59 ----D---- C:\Windows\SoftwareDistribution
2010-06-26 21:00:15 ----D---- C:\Windows\Prefetch
2010-06-26 20:59:53 ----ASH---- C:\pagefile.sys
2010-06-26 20:59:50 ----SHD---- C:\System Volume Information
2010-06-26 20:59:50 ----ASH---- C:\hiberfil.sys
======List of files/folders modified in the last 1 months======
2010-07-17 13:35:02 ----D---- C:\Windows\Temp
2010-07-17 13:34:15 ----RD---- C:\Program Files
2010-07-17 08:40:53 ----D---- C:\Windows\system32\config
2010-07-17 07:55:32 ----D---- C:\Windows
2010-07-16 15:09:22 ----D---- C:\Windows\System32
2010-07-16 15:09:21 ----D---- C:\Windows\inf
2010-07-15 21:31:30 ----D---- C:\Windows\system32\catroot2
2010-07-15 21:29:32 ----D---- C:\Windows\debug
2010-07-13 09:36:15 ----D---- C:\Windows\winsxs
2010-07-13 09:24:39 ----D---- C:\Windows\system32\catroot
2010-07-07 18:17:45 ----D---- C:\Windows\system32\drivers
2010-07-06 14:44:06 ----D---- C:\Windows\Logs
2010-07-06 12:07:13 ----D---- C:\Windows\system32\wdi
2010-07-05 15:19:01 ----D---- C:\Windows\Microsoft.NET
2010-07-05 15:19:00 ----RSD---- C:\Windows\assembly
2010-07-04 09:00:05 ----SD---- C:\ProgramData\Microsoft
2010-07-02 20:14:20 ----RD---- C:\Users
2010-06-30 10:57:31 ----HD---- C:\ProgramData
2010-06-30 10:57:27 ----D---- C:\Program Files\Common Files
2010-06-28 23:12:20 ----D---- C:\Windows\rescache
2010-06-28 22:22:21 ----D---- C:\Windows\system32\DriverStore
2010-06-28 20:00:29 ----D---- C:\Windows\system32\LogFiles
2010-06-27 22:46:40 ----D---- C:\Program Files\Common Files\microsoft shared
2010-06-27 22:43:51 ----A---- C:\Windows\win.ini
2010-06-27 22:31:49 ----D---- C:\Windows\Registration
2010-06-27 22:30:58 ----D---- C:\Program Files\Internet Explorer
2010-06-27 21:23:16 ----D---- C:\Windows\system32\ja-JP
2010-06-27 21:23:16 ----D---- C:\Windows\system32\it-IT
2010-06-27 21:23:16 ----D---- C:\Windows\system32\el-GR
2010-06-27 21:23:16 ----D---- C:\Windows\system32\de-DE
2010-06-27 21:23:15 ----D---- C:\Windows\system32\tr-TR
2010-06-27 21:23:15 ----D---- C:\Windows\system32\fr-FR
2010-06-27 21:23:14 ----D---- C:\Windows\system32\zh-TW
2010-06-27 21:23:14 ----D---- C:\Windows\system32\ro-RO
2010-06-27 21:23:14 ----D---- C:\Windows\system32\pt-PT
2010-06-27 21:23:14 ----D---- C:\Windows\system32\pt-BR
2010-06-27 21:23:14 ----D---- C:\Windows\system32\nl-NL
2010-06-27 21:23:14 ----D---- C:\Windows\system32\nb-NO
2010-06-27 21:23:14 ----D---- C:\Windows\system32\fi-FI
2010-06-27 21:23:14 ----D---- C:\Windows\system32\en-US
2010-06-27 21:23:14 ----D---- C:\Windows\system32\drivers\cs-CZ
2010-06-27 21:23:14 ----D---- C:\Windows\system32\cs-CZ
2010-06-27 21:23:13 ----D---- C:\Windows\system32\pl-PL
2010-06-27 21:23:13 ----D---- C:\Windows\system32\ko-KR
2010-06-27 21:23:13 ----D---- C:\Windows\system32\drivers\en-US
2010-06-27 21:23:13 ----D---- C:\Windows\system32\ar-SA
2010-06-27 21:23:12 ----D---- C:\Windows\system32\da-DK
2010-06-27 21:23:11 ----D---- C:\Windows\system32\zh-CN
2010-06-27 21:23:11 ----D---- C:\Windows\system32\th-TH
2010-06-27 21:23:11 ----D---- C:\Windows\system32\sv-SE
2010-06-27 21:23:11 ----D---- C:\Windows\system32\ru-RU
2010-06-27 21:23:11 ----D---- C:\Windows\system32\hu-HU
2010-06-27 21:23:11 ----D---- C:\Windows\system32\he-IL
2010-06-27 21:23:11 ----D---- C:\Windows\system32\es-ES
2010-06-27 20:43:50 ----RSD---- C:\Windows\Fonts
2010-06-27 14:45:28 ----D---- C:\Windows\system32\drivers\UMDF
2010-06-27 14:43:00 ----D---- C:\Windows\system32\Tasks
2010-06-27 12:24:11 ----D---- C:\Windows\ShellNew
2010-06-26 22:32:45 ----D---- C:\Windows\Tasks
2010-06-26 22:28:03 ----D---- C:\Program Files\Common Files\System
2010-06-26 22:15:04 ----D---- C:\Program Files\Windows Mail
2010-06-26 22:15:03 ----D---- C:\Program Files\Windows Media Player
2010-06-26 22:15:02 ----D---- C:\Windows\system32\Boot
2010-06-26 22:15:00 ----D---- C:\Windows\ehome
2010-06-26 22:14:58 ----D---- C:\Windows\system32\migration
2010-06-26 22:14:54 ----D---- C:\Windows\AppPatch
2010-06-26 21:32:48 ----D---- C:\Windows\Downloaded Program Files
2010-06-26 21:21:55 ----D---- C:\Windows\system32\CodeIntegrity
2010-06-26 21:15:34 ----D---- C:\Windows\system32\spool
2010-06-26 21:10:59 ----D---- C:\Windows\Help
2010-06-26 21:10:58 ----D---- C:\Windows\system32\wbem
2010-06-26 21:09:07 ----D---- C:\Windows\system32\restore
2010-06-26 21:07:44 ----SHD---- C:\$Recycle.Bin
2010-06-26 21:07:15 ----D---- C:\Program Files\Windows NT
2010-06-26 21:03:56 ----D---- C:\Windows\system32\sysprep
2010-06-26 21:00:47 ----D---- C:\Windows\CSC
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2010-03-25 151216]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2009-03-15 56268]
R1 vpcnfltr;Virtual PC Network Filter Driver; C:\Windows\system32\DRIVERS\vpcnfltr.sys [2009-09-23 55040]
R1 vpcvmm;@%SystemRoot%\system32\drivers\vpcvmm.sys,-100; C:\Windows\system32\drivers\vpcvmm.sys [2009-09-23 294912]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2009-07-14 1035776]
R3 AGR1310_60;Agere Systems ET-13xx PCI-E Ethernet Adapter Vista Driver; C:\Windows\system32\DRIVERS\AGR1310_60.sys [2007-01-19 77824]
R3 athr;Atheros – ovladač pro zařízení pro rozšiřitelnou bezdrátovou síť LAN; C:\Windows\system32\DRIVERS\athr.sys [2009-07-14 1096704]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2009-03-31 36608]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-01-02 1668456]
R3 MarvinBus;Pinnacle Marvin Bus; C:\Windows\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
R3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2010-03-25 42368]
R3 Point32;Microsoft IntelliPoint Filter Driver; C:\Windows\system32\DRIVERS\point32k.sys [2009-11-11 30576]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-10-10 84992]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-08-28 228784]
R3 tifm21;tifm21; C:\Windows\system32\drivers\tifm21.sys [2007-05-02 290816]
R3 vpcbus;Služba hostitelské sběrnice programu Virtual PC; C:\Windows\system32\DRIVERS\vpchbus.sys [2009-09-23 165376]
R3 vpcusb;Služba konektoru virtualizace rozhraní USB; C:\Windows\system32\DRIVERS\vpcusb.sys [2009-09-23 78336]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 392704]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Everest Ultimate\kerneld.wnt [2010-02-17 27760]
S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-14 4231168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgusbbus.sys [2010-01-21 13056]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgusbdiag.sys [2010-01-21 20864]
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgusbmodem.sys [2010-01-21 24960]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 FsUsbExService;FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [2009-03-31 233472]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Essentials\MsMpEng.exe [2010-03-25 17904]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-09-23 935208]
R2 O&O Defrag;O&O Defrag; C:\Program Files\OO Software\Defrag\oodag.exe [2009-09-12 1488128]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2005-08-08 167936]
R2 TeamViewer5;TeamViewer 5; C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe [2010-01-12 185640]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-06-10 31064]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-06-27 655624]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-26 1343400]
-----------------EOF-----------------