VIRY.CZ

Prosím o kontrolu logu z RSIT.Počítač se pravidelně v intervalech cca po dvou minutách na dvě vteřiny sekne paj jede a zas sek.Skusil jsem ComboFix.Našel a odstranil nějakej rootkit.Pak že ho skusím ještě jednou ale už nenaběhl.Po cca 2 minutách hodil hlášku že je požkozen v závorce asi nějakým virem.
Logfile of random's system information tool 1.08 (written by random/random)
Run by tata at 2011-02-11 17:57:06
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 2 GB (26%) free of 6 GB
Total RAM: 255 MB (29% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:57:15, on 11.2.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtblfs.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\tata\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\tata.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [avp] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe"
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O9 - Extra button: &Virtuální klávesnice - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O9 - Extra button: &Kontrola adres URL - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

--
End of file - 3452 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll [2009-07-03 68112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll [2009-08-05 264720]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=NvQTwk,NvCplDaemon initialize []
"nwiz"=nwiz.exe /install []
"avp"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe [2011-02-02 311680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\WINDOWS\system32\klogon.dll [2009-07-03 219664]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=383
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\WINDOWS\Network Diagnostic\xpnetdiag.exe"="C:\WINDOWS\Network Diagnostic\xpnetdiag.exe:*:Disabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2011-02-11 17:57:07 ----D---- C:\Program Files\trend micro
2011-02-11 17:57:06 ----D---- C:\rsit
2011-02-11 17:19:46 ----SHD---- C:\RECYCLER
2011-02-11 15:54:18 ----A---- C:\Boot.bak
2011-02-11 15:54:13 ----RASHD---- C:\cmdcons
2011-02-11 15:53:04 ----A---- C:\WINDOWS\zip.exe
2011-02-11 15:53:04 ----A---- C:\WINDOWS\SWXCACLS.exe
2011-02-11 15:53:04 ----A---- C:\WINDOWS\SWSC.exe
2011-02-11 15:53:04 ----A---- C:\WINDOWS\SWREG.exe
2011-02-11 15:53:04 ----A---- C:\WINDOWS\sed.exe
2011-02-11 15:53:04 ----A---- C:\WINDOWS\PEV.exe
2011-02-11 15:53:04 ----A---- C:\WINDOWS\NIRCMD.exe
2011-02-11 15:53:04 ----A---- C:\WINDOWS\MBR.exe
2011-02-11 15:53:04 ----A---- C:\WINDOWS\grep.exe
2011-02-09 15:51:33 ----D---- C:\WINDOWS\ERDNT
2011-02-09 15:49:19 ----D---- C:\Qoobox
2011-02-08 23:57:33 ----D---- C:\Program Files\CCleaner
2011-02-08 23:54:31 ----N---- C:\WINDOWS\system32\browserchoice.exe
2011-02-08 23:39:20 ----D---- C:\WINDOWS\ie8updates
2011-02-08 23:37:43 ----D---- C:\WINDOWS\WBEM
2011-02-08 23:36:02 ----HDC---- C:\WINDOWS\ie8
2011-02-08 23:33:40 ----A---- C:\WINDOWS\system32\MRT.exe
2011-02-08 23:32:14 ----A---- C:\WINDOWS\system32\wpa.bak
2011-02-07 23:05:54 ----D---- C:\Documents and Settings\tata\Data aplikací\Macromedia
2011-02-07 23:05:54 ----D---- C:\Documents and Settings\tata\Data aplikací\Adobe
2011-02-02 14:35:36 ----D---- C:\WINDOWS\Prefetch
2011-02-02 14:18:39 ----N---- C:\WINDOWS\system32\msxml6r.dll
2011-02-02 14:18:38 ----N---- C:\WINDOWS\system32\msxml6.dll
2011-02-02 14:16:18 ----N---- C:\WINDOWS\system32\smtpapi.dll
2011-02-02 14:16:18 ----N---- C:\WINDOWS\system32\rwnh.dll
2011-02-02 14:15:46 ----N---- C:\WINDOWS\system32\aaclient.dll
2011-02-02 14:15:41 ----N---- C:\WINDOWS\system32\azroles.dll
2011-02-02 14:15:40 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2011-02-02 14:15:38 ----N---- C:\WINDOWS\system32\credssp.dll
2011-02-02 14:15:36 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2011-02-02 14:15:35 ----N---- C:\WINDOWS\system32\dot3api.dll
2011-02-02 14:15:35 ----N---- C:\WINDOWS\system32\dimsroam.dll
2011-02-02 14:15:35 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2011-02-02 14:15:34 ----N---- C:\WINDOWS\system32\dot3svc.dll
2011-02-02 14:15:34 ----N---- C:\WINDOWS\system32\dot3msm.dll
2011-02-02 14:15:34 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2011-02-02 14:15:34 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2011-02-02 14:15:34 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2011-02-02 14:15:33 ----N---- C:\WINDOWS\system32\dot3ui.dll
2011-02-02 14:15:31 ----N---- C:\WINDOWS\system32\eappgnui.dll
2011-02-02 14:15:31 ----N---- C:\WINDOWS\system32\eappcfg.dll
2011-02-02 14:15:31 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2011-02-02 14:15:31 ----N---- C:\WINDOWS\system32\eapolqec.dll
2011-02-02 14:15:30 ----N---- C:\WINDOWS\system32\eapsvc.dll
2011-02-02 14:15:30 ----N---- C:\WINDOWS\system32\eapqec.dll
2011-02-02 14:15:30 ----N---- C:\WINDOWS\system32\eappprxy.dll
2011-02-02 14:15:30 ----N---- C:\WINDOWS\system32\eapphost.dll
2011-02-02 14:15:22 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2011-02-02 14:15:21 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2011-02-02 14:15:20 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2011-02-02 14:15:19 ----N---- C:\WINDOWS\system32\kbdpash.dll
2011-02-02 14:15:18 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2011-02-02 14:15:18 ----N---- C:\WINDOWS\system32\kmsvc.dll
2011-02-02 14:15:16 ----N---- C:\WINDOWS\system32\mmcperf.exe
2011-02-02 14:15:16 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2011-02-02 14:15:16 ----N---- C:\WINDOWS\system32\mmcex.dll
2011-02-02 14:15:16 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2011-02-02 14:15:14 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2011-02-02 14:15:14 ----N---- C:\WINDOWS\system32\mssha.dll
2011-02-02 14:15:12 ----N---- C:\WINDOWS\system32\napstat.exe
2011-02-02 14:15:12 ----N---- C:\WINDOWS\system32\napmontr.dll
2011-02-02 14:15:12 ----N---- C:\WINDOWS\system32\napipsec.dll
2011-02-02 14:15:10 ----N---- C:\WINDOWS\system32\onex.dll
2011-02-02 14:15:08 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2011-02-02 14:15:07 ----N---- C:\WINDOWS\system32\qagentrt.dll
2011-02-02 14:15:07 ----N---- C:\WINDOWS\system32\qagent.dll
2011-02-02 14:15:06 ----N---- C:\WINDOWS\system32\rasqec.dll
2011-02-02 14:15:06 ----N---- C:\WINDOWS\system32\qutil.dll
2011-02-02 14:15:06 ----N---- C:\WINDOWS\system32\qcliprov.dll
2011-02-02 14:15:05 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2011-02-02 14:15:02 ----N---- C:\WINDOWS\system32\setupn.exe
2011-02-02 14:14:58 ----N---- C:\WINDOWS\system32\xpsp3res.dll
2011-02-02 14:14:57 ----N---- C:\WINDOWS\system32\tspkg.dll
2011-02-02 14:14:57 ----N---- C:\WINDOWS\system32\tsgqec.dll
2011-02-02 14:14:56 ----N---- C:\WINDOWS\system32\verclsid.exe
2011-02-02 14:14:56 ----N---- C:\WINDOWS\system32\tzchange.exe
2011-02-02 14:14:54 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2011-02-02 14:14:54 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2011-02-02 14:14:53 ----N---- C:\WINDOWS\system32\wmphoto.dll
2011-02-02 14:14:53 ----N---- C:\WINDOWS\system32\wlanapi.dll
2011-02-02 14:14:46 ----A---- C:\WINDOWS\system32\xmllite.dll
2011-02-02 14:14:42 ----D---- C:\WINDOWS\system32\cs-cz
2011-02-02 14:14:33 ----D---- C:\WINDOWS\l2schemas
2011-02-02 14:14:30 ----D---- C:\WINDOWS\system32\cs
2011-02-02 14:14:28 ----D---- C:\WINDOWS\system32\bits
2011-02-02 13:52:12 ----D---- C:\WINDOWS\network diagnostic
2011-02-02 13:52:07 ----N---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2011-02-02 13:52:05 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2011-02-02 13:49:34 ----A---- C:\WINDOWS\005098_.tmp
2011-02-02 13:20:40 ----D---- C:\Documents and Settings\tata\Data aplikací\Mozilla
2011-02-02 13:20:26 ----D---- C:\Program Files\Mozilla Firefox
2011-02-02 12:49:37 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2011-02-02 12:49:05 ----D---- C:\Program Files\AVG
2011-02-02 11:43:35 ----D---- C:\WINDOWS\system32\PreInstall
2011-02-02 11:43:32 ----HD---- C:\WINDOWS\$hf_mig$
2011-02-01 16:06:31 ----A---- C:\WINDOWS\system32\drivers\Rtnicxp.sys
2011-01-28 02:58:56 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2011-01-28 02:57:28 ----A---- C:\WINDOWS\system32\h323log.txt
2011-01-28 02:54:30 ----D---- C:\Program Files\Kaspersky Lab
2011-01-28 02:54:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab
2011-01-28 02:54:12 ----A---- C:\WINDOWS\system32\drivers\klif.sys
2011-01-28 02:53:31 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2011-01-28 02:53:29 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2011-01-28 02:53:28 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2011-01-28 02:53:26 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2011-01-28 02:53:25 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2011-01-28 02:53:23 ----A---- C:\WINDOWS\system32\drivers\mspqm.sys
2011-01-28 02:53:22 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2011-01-28 02:53:20 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2011-01-28 02:53:19 ----A---- C:\WINDOWS\system32\drivers\dmusic.sys
2011-01-28 02:53:17 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2011-01-28 02:53:15 ----A---- C:\WINDOWS\system32\drivers\mspclock.sys
2011-01-28 02:53:10 ----A---- C:\WINDOWS\system32\drivers\audstub.sys
2011-01-28 02:52:56 ----A---- C:\WINDOWS\system32\drivers\gameenum.sys
2011-01-28 02:52:48 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2011-01-28 02:52:19 ----A---- C:\WINDOWS\system32\drivers\viaagp.sys
2011-01-28 02:52:17 ----A---- C:\WINDOWS\system32\ksuser.dll
2011-01-28 02:52:16 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2011-01-28 02:52:16 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2011-01-28 02:52:16 ----A---- C:\WINDOWS\system32\drivers\ac97via.sys
2011-01-28 02:52:06 ----D---- C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab Setup Files
2011-01-28 02:51:59 ----A---- C:\WINDOWS\system32\usbui.dll
2011-01-28 02:50:34 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-01-28 02:50:33 ----D---- C:\Program Files\Common Files\ODBC
2011-01-28 02:50:33 ----A---- C:\WINDOWS\ODBCINST.INI
2011-01-28 02:50:31 ----D---- C:\WINDOWS\SoftwareDistribution
2011-01-28 02:50:30 ----D---- C:\Program Files\Common Files\SpeechEngines
2011-01-28 02:50:29 ----RD---- C:\Program Files
2011-01-28 02:50:29 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-01-28 02:50:29 ----D---- C:\Program Files\Common Files
2011-01-28 02:50:26 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2011-01-28 02:50:26 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2011-01-28 02:50:26 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2011-01-28 02:50:24 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2011-01-28 02:50:24 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2011-01-28 02:50:24 ----RA---- C:\WINDOWS\system32\kbdur.dll
2011-01-28 02:50:24 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2011-01-28 02:50:24 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2011-01-28 02:50:24 ----RA---- C:\WINDOWS\system32\kbdru.dll
2011-01-28 02:50:24 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2011-01-28 02:50:24 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2011-01-28 02:50:24 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2011-01-28 02:50:24 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2011-01-28 02:50:24 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2011-01-28 02:50:24 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2011-01-28 02:50:22 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2011-01-28 02:50:22 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2011-01-28 02:50:22 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2011-01-28 02:50:22 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2011-01-28 02:50:22 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2011-01-28 02:50:22 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2011-01-28 02:50:22 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2011-01-28 02:50:21 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2011-01-28 02:50:21 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2011-01-28 02:50:21 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2011-01-28 02:50:21 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2011-01-28 02:50:21 ----RA---- C:\WINDOWS\system32\kbdest.dll
2011-01-28 02:50:18 ----A---- C:\WINDOWS\system32\kbdsl1.dll
2011-01-28 02:50:17 ----A---- C:\WINDOWS\system32\kbdycl.dll
2011-01-28 02:50:17 ----A---- C:\WINDOWS\system32\kbdsl.dll
2011-01-28 02:50:17 ----A---- C:\WINDOWS\system32\kbdro.dll
2011-01-28 02:50:17 ----A---- C:\WINDOWS\system32\kbdpl1.dll
2011-01-28 02:50:17 ----A---- C:\WINDOWS\system32\kbdpl.dll
2011-01-28 02:50:17 ----A---- C:\WINDOWS\system32\kbdhu1.dll
2011-01-28 02:50:17 ----A---- C:\WINDOWS\system32\kbdhu.dll
2011-01-28 02:50:17 ----A---- C:\WINDOWS\system32\kbdcr.dll
2011-01-28 02:50:17 ----A---- C:\WINDOWS\system32\KBDAL.DLL
2011-01-28 02:50:16 ----A---- C:\WINDOWS\system32\spxcoins.dll
2011-01-28 02:50:16 ----A---- C:\WINDOWS\system32\irclass.dll
2011-01-28 02:50:16 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2011-01-28 02:50:16 ----A---- C:\WINDOWS\system32\drivers\irenum.sys
2011-01-28 02:50:16 ----A---- C:\WINDOWS\system32\dgsetup.dll
2011-01-28 02:50:16 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2011-01-28 02:50:14 ----A---- C:\WINDOWS\TASKMAN.EXE
2011-01-28 02:50:13 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2011-01-28 02:50:13 ----A---- C:\WINDOWS\system32\batt.dll
2011-01-28 02:50:13 ----A---- C:\WINDOWS\notepad.exe
2011-01-28 02:50:11 ----A---- C:\WINDOWS\system32\storprop.dll
2011-01-28 02:50:02 ----ASH---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2011-01-28 02:49:24 ----RA---- C:\WINDOWS\SET7.tmp
2011-01-28 02:49:21 ----RA---- C:\WINDOWS\SET3.tmp
2011-01-28 02:49:15 ----D---- C:\WINDOWS\system32\CatRoot2
2011-01-28 02:49:15 ----D---- C:\WINDOWS\system32\CatRoot
2011-01-28 02:49:10 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-01-28 02:48:45 ----D---- C:\Documents and Settings
2011-01-28 02:47:50 ----RASH---- C:\boot.ini
2011-01-28 02:42:40 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-01-28 02:42:40 ----RSD---- C:\WINDOWS\Fonts
2011-01-28 02:42:40 ----RD---- C:\WINDOWS\Web
2011-01-28 02:42:40 ----HD---- C:\WINDOWS\inf
2011-01-28 02:42:40 ----D---- C:\WINDOWS\WinSxS
2011-01-28 02:42:40 ----D---- C:\WINDOWS\twain_32
2011-01-28 02:42:40 ----D---- C:\WINDOWS\Temp
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\wins
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\wbem
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\usmt
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\spool
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\ShellExt
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\Setup
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\ras
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\oobe
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\npp
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\mui
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\inetsrv
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\IME
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\icsxml
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\ias
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\export
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\drivers\etc
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\drivers\disdn
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\drivers
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\dhcp
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\config
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\3com_dmi
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\3076
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\2052
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\1054
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\1042
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\1041
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\1037
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\1033
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\1031
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\1029
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\1028
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32\1025
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system32
2011-01-28 02:42:40 ----D---- C:\WINDOWS\system
2011-01-28 02:42:40 ----D---- C:\WINDOWS\security
2011-01-28 02:42:40 ----D---- C:\WINDOWS\Resources
2011-01-28 02:42:40 ----D---- C:\WINDOWS\repair
2011-01-28 02:42:40 ----D---- C:\WINDOWS\mui
2011-01-28 02:42:40 ----D---- C:\WINDOWS\msapps
2011-01-28 02:42:40 ----D---- C:\WINDOWS\msagent
2011-01-28 02:42:40 ----D---- C:\WINDOWS\Media
2011-01-28 02:42:40 ----D---- C:\WINDOWS\java
2011-01-28 02:42:40 ----D---- C:\WINDOWS\ime
2011-01-28 02:42:40 ----D---- C:\WINDOWS\Help
2011-01-28 02:42:40 ----D---- C:\WINDOWS\Driver Cache
2011-01-28 02:42:40 ----D---- C:\WINDOWS\Debug
2011-01-28 02:42:40 ----D---- C:\WINDOWS\Cursors
2011-01-28 02:42:40 ----D---- C:\WINDOWS\Connection Wizard
2011-01-28 02:42:40 ----D---- C:\WINDOWS\Config
2011-01-28 02:42:40 ----D---- C:\WINDOWS\AppPatch
2011-01-28 02:42:40 ----D---- C:\WINDOWS\addins
2011-01-28 02:42:40 ----D---- C:\WINDOWS
2011-01-28 02:42:40 ----ASH---- C:\pagefile.sys
2011-01-28 02:42:37 ----N---- C:\WINDOWS\system32\drivers\irbus.sys
2011-01-28 02:42:37 ----N---- C:\WINDOWS\system32\comsdupd.exe
2011-01-28 02:42:33 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2011-01-28 02:42:33 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2011-01-28 02:42:33 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2011-01-28 02:42:33 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2011-01-28 02:42:33 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2011-01-28 02:42:33 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2011-01-28 02:42:33 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2011-01-28 02:42:32 ----N---- C:\WINDOWS\system32\drivers\agp440.sys
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\fltmgr.sys
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2011-01-28 02:42:31 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2011-01-28 02:42:30 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2011-01-28 02:42:30 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2011-01-28 02:42:30 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2011-01-28 02:42:30 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2011-01-28 02:42:30 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2011-01-28 02:42:30 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2011-01-28 02:42:30 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2011-01-28 02:42:30 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2011-01-28 02:42:30 ----N---- C:\WINDOWS\system32\drivers\mssmbios.sys
2011-01-28 02:42:30 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2011-01-28 02:42:30 ----N---- C:\WINDOWS\system32\drivers\ip6fw.sys
2011-01-28 02:42:30 ----N---- C:\WINDOWS\system32\drivers\intelppm.sys
2011-01-28 02:42:30 ----N---- C:\WINDOWS\system32\drivers\http.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\usbvideo.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\usbehci.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\uagp35.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\siint5.dll
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\sffp_sd.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\sffdisk.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\sdbus.sys
2011-01-28 02:42:29 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2011-01-28 02:42:28 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2011-01-28 02:42:28 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2011-01-28 02:42:28 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2011-01-28 02:42:28 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2011-01-28 02:42:28 ----N---- C:\WINDOWS\system32\ati3duag.dll
2011-01-28 02:42:28 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2011-01-28 02:42:28 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2011-01-28 02:42:28 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2011-01-28 02:42:28 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2011-01-28 02:42:27 ----N---- C:\WINDOWS\system32\d3d9.dll
2011-01-28 02:42:27 ----N---- C:\WINDOWS\system32\cmsetacl.dll
2011-01-28 02:42:27 ----N---- C:\WINDOWS\system32\btpanui.dll
2011-01-28 02:42:27 ----N---- C:\WINDOWS\system32\bthserv.dll
2011-01-28 02:42:27 ----N---- C:\WINDOWS\system32\bthci.dll
2011-01-28 02:42:27 ----N---- C:\WINDOWS\system32\blastcln.exe
2011-01-28 02:42:27 ----N---- C:\WINDOWS\system32\bitsprx3.dll
2011-01-28 02:42:27 ----N---- C:\WINDOWS\system32\bitsprx2.dll
2011-01-28 02:42:27 ----N---- C:\WINDOWS\system32\auditusr.exe
2011-01-28 02:42:26 ----N---- C:\WINDOWS\system32\httpapi.dll
2011-01-28 02:42:26 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2011-01-28 02:42:26 ----N---- C:\WINDOWS\system32\hccoin.dll
2011-01-28 02:42:26 ----N---- C:\WINDOWS\system32\fwcfg.dll
2011-01-28 02:42:26 ----N---- C:\WINDOWS\system32\fsquirt.exe
2011-01-28 02:42:26 ----N---- C:\WINDOWS\system32\fltmc.exe
2011-01-28 02:42:26 ----N---- C:\WINDOWS\system32\extmgr.dll
2011-01-28 02:42:26 ----N---- C:\WINDOWS\system32\dxdiagn.dll
2011-01-28 02:42:26 ----A---- C:\WINDOWS\system32\fltlib.dll
2011-01-28 02:42:25 ----N---- C:\WINDOWS\system32\ir50_qcx.dll
2011-01-28 02:42:25 ----N---- C:\WINDOWS\system32\ir50_qc.dll
2011-01-28 02:42:25 ----N---- C:\WINDOWS\system32\ir50_32.dll
2011-01-28 02:42:25 ----N---- C:\WINDOWS\system32\ir41_qcx.dll
2011-01-28 02:42:25 ----N---- C:\WINDOWS\system32\ir41_qc.dll
2011-01-28 02:42:24 ----N---- C:\WINDOWS\system32\mspmsnsv.dll
2011-01-28 02:42:24 ----N---- C:\WINDOWS\system32\msdadiag.dll
2011-01-28 02:42:24 ----N---- C:\WINDOWS\system32\mp4sdmod.dll
2011-01-28 02:42:24 ----N---- C:\WINDOWS\system32\mp43dmod.dll
2011-01-28 02:42:24 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2011-01-28 02:42:24 ----N---- C:\WINDOWS\system32\kbdukx.dll
2011-01-28 02:42:24 ----N---- C:\WINDOWS\system32\kbdsmsno.dll
2011-01-28 02:42:24 ----N---- C:\WINDOWS\system32\kbdsmsfi.dll
2011-01-28 02:42:24 ----N---- C:\WINDOWS\system32\kbdno1.dll
2011-01-28 02:42:24 ----N---- C:\WINDOWS\system32\kbdmlt48.dll
2011-01-28 02:42:24 ----N---- C:\WINDOWS\system32\kbdmlt47.dll
2011-01-28 02:42:24 ----N---- C:\WINDOWS\system32\kbdmaori.dll
2011-01-28 02:42:24 ----N---- C:\WINDOWS\system32\kbdinmal.dll
2011-01-28 02:42:24 ----N---- C:\WINDOWS\system32\kbdinben.dll
2011-01-28 02:42:24 ----N---- C:\WINDOWS\system32\kbdinbe1.dll
2011-01-28 02:42:24 ----N---- C:\WINDOWS\system32\kbdfi1.dll
2011-01-28 02:42:23 ----N---- C:\WINDOWS\system32\xpob2res.dll
2011-01-28 02:42:23 ----N---- C:\WINDOWS\system32\powercfg.exe
2011-01-28 02:42:23 ----N---- C:\WINDOWS\system32\pnrpnsp.dll
2011-01-28 02:42:23 ----N---- C:\WINDOWS\system32\p2psvc.dll
2011-01-28 02:42:23 ----N---- C:\WINDOWS\system32\p2pnetsh.dll
2011-01-28 02:42:23 ----N---- C:\WINDOWS\system32\p2pgraph.dll
2011-01-28 02:42:23 ----N---- C:\WINDOWS\system32\p2pgasvc.dll
2011-01-28 02:42:23 ----N---- C:\WINDOWS\system32\p2p.dll
2011-01-28 02:42:23 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2011-01-28 02:42:22 ----N---- C:\WINDOWS\system32\smbinst.exe
2011-01-28 02:42:22 ----N---- C:\WINDOWS\system32\slserv.exe
2011-01-28 02:42:22 ----N---- C:\WINDOWS\system32\slrundll.exe
2011-01-28 02:42:22 ----N---- C:\WINDOWS\system32\slgen.dll
2011-01-28 02:42:22 ----N---- C:\WINDOWS\system32\slextspk.dll
2011-01-28 02:42:22 ----N---- C:\WINDOWS\system32\slcoinst.dll
2011-01-28 02:42:22 ----N---- C:\WINDOWS\system32\sdhcinst.dll
2011-01-28 02:42:22 ----N---- C:\WINDOWS\system32\s3gnb.dll
2011-01-28 02:42:21 ----N---- C:\WINDOWS\system32\wmidx.dll
2011-01-28 02:42:21 ----N---- C:\WINDOWS\system32\wmerror.dll
2011-01-28 02:42:21 ----N---- C:\WINDOWS\system32\winshfhc.dll
2011-01-28 02:42:21 ----N---- C:\WINDOWS\system32\w3ssl.dll
2011-01-28 02:42:21 ----N---- C:\WINDOWS\system32\twext.dll
2011-01-28 02:42:21 ----N---- C:\WINDOWS\system32\strmfilt.dll
2011-01-28 02:42:21 ----A---- C:\WINDOWS\system32\xpsp2res.dll
2011-01-28 02:42:20 ----N---- C:\WINDOWS\system32\wmpdxm.dll
2011-01-28 02:42:20 ----N---- C:\WINDOWS\system32\wmpasf.dll
2011-01-28 02:42:20 ----N---- C:\WINDOWS\system32\wmp.dll
2011-01-28 02:42:19 ----N---- C:\WINDOWS\system32\wshbth.dll
2011-01-28 02:42:19 ----N---- C:\WINDOWS\system32\wscntfy.exe
2011-01-28 02:42:19 ----N---- C:\WINDOWS\system32\wmvdmoe2.dll
2011-01-28 02:42:19 ----N---- C:\WINDOWS\system32\wmspdmoe.dll
2011-01-28 02:42:19 ----N---- C:\WINDOWS\system32\wmspdmod.dll
2011-01-28 02:42:19 ----N---- C:\WINDOWS\system32\wmsdmoe2.dll
2011-01-28 02:42:19 ----A---- C:\WINDOWS\system32\wscsvc.dll
2011-01-28 02:42:18 ----N---- C:\WINDOWS\system32\wuaueng1.dll
2011-01-28 02:42:18 ----N---- C:\WINDOWS\system32\wuauclt1.exe
2011-01-28 02:42:18 ----A---- C:\WINDOWS\system32\wups.dll
2011-01-28 02:42:18 ----A---- C:\WINDOWS\system32\wucltui.dll
2011-01-28 02:42:18 ----A---- C:\WINDOWS\system32\wuapi.dll
2011-01-28 02:42:17 ----N---- C:\WINDOWS\system32\xmlprovi.dll
2011-01-28 02:42:17 ----N---- C:\WINDOWS\system32\xmlprov.dll
2011-01-28 02:42:17 ----N---- C:\WINDOWS\slrundll.exe
2011-01-28 02:42:17 ----A---- C:\WINDOWS\system32\wuweb.dll
2011-01-28 02:42:15 ----D---- C:\WINDOWS\peernet
2011-01-28 02:42:14 ----D---- C:\WINDOWS\provisioning
2011-01-28 02:39:17 ----D---- C:\WINDOWS\ServicePackFiles
2011-01-28 02:36:29 ----N---- C:\WINDOWS\system32\spmsg.dll
2011-01-28 02:36:29 ----A---- C:\WINDOWS\002170_.tmp
2011-01-28 02:36:04 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2011-01-28 02:33:47 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2011-01-28 02:33:42 ----D---- C:\WINDOWS\EHome
2011-01-28 02:17:02 ----RA---- C:\WINDOWS\system32\nvwrszht.dll
2011-01-28 02:17:02 ----RA---- C:\WINDOWS\system32\nvwrszhc.dll
2011-01-28 02:17:02 ----RA---- C:\WINDOWS\system32\nvrszht.dll
2011-01-28 02:17:01 ----RA---- C:\WINDOWS\system32\nvwrstr.dll
2011-01-28 02:17:01 ----RA---- C:\WINDOWS\system32\nvwrssv.dll
2011-01-28 02:17:01 ----RA---- C:\WINDOWS\system32\nvwrssl.dll
2011-01-28 02:17:01 ----RA---- C:\WINDOWS\system32\nvrszhc.dll
2011-01-28 02:17:01 ----RA---- C:\WINDOWS\system32\nvrstr.dll
2011-01-28 02:17:01 ----RA---- C:\WINDOWS\system32\nvrssv.dll
2011-01-28 02:17:00 ----RA---- C:\WINDOWS\system32\nvwrssk.dll
2011-01-28 02:17:00 ----RA---- C:\WINDOWS\system32\nvwrsru.dll
2011-01-28 02:17:00 ----RA---- C:\WINDOWS\system32\nvwrsptb.dll
2011-01-28 02:17:00 ----RA---- C:\WINDOWS\system32\nvrssl.dll
2011-01-28 02:17:00 ----RA---- C:\WINDOWS\system32\nvrssk.dll
2011-01-28 02:17:00 ----RA---- C:\WINDOWS\system32\nvrsru.dll
2011-01-28 02:16:59 ----RA---- C:\WINDOWS\system32\nvwrspt.dll
2011-01-28 02:16:59 ----RA---- C:\WINDOWS\system32\nvwrspl.dll
2011-01-28 02:16:59 ----RA---- C:\WINDOWS\system32\nvwrsno.dll
2011-01-28 02:16:59 ----RA---- C:\WINDOWS\system32\nvrsptb.dll
2011-01-28 02:16:59 ----RA---- C:\WINDOWS\system32\nvrspt.dll
2011-01-28 02:16:59 ----RA---- C:\WINDOWS\system32\nvrspl.dll
2011-01-28 02:16:58 ----RA---- C:\WINDOWS\system32\nvwrsnl.dll
2011-01-28 02:16:58 ----RA---- C:\WINDOWS\system32\nvwrsko.dll
2011-01-28 02:16:58 ----RA---- C:\WINDOWS\system32\nvwrsja.dll
2011-01-28 02:16:58 ----RA---- C:\WINDOWS\system32\nvrsno.dll
2011-01-28 02:16:58 ----RA---- C:\WINDOWS\system32\nvrsnl.dll
2011-01-28 02:16:58 ----RA---- C:\WINDOWS\system32\nvrsko.dll
2011-01-28 02:16:58 ----RA---- C:\WINDOWS\system32\nvrsja.dll
2011-01-28 02:16:57 ----RA---- C:\WINDOWS\system32\nvwrsit.dll
2011-01-28 02:16:57 ----RA---- C:\WINDOWS\system32\nvwrshu.dll
2011-01-28 02:16:57 ----RA---- C:\WINDOWS\system32\nvwrshe.dll
2011-01-28 02:16:57 ----RA---- C:\WINDOWS\system32\nvrsit.dll
2011-01-28 02:16:57 ----RA---- C:\WINDOWS\system32\nvrshu.dll
2011-01-28 02:16:57 ----RA---- C:\WINDOWS\system32\nvrshe.dll
2011-01-28 02:16:56 ----RA---- C:\WINDOWS\system32\nvwrsfr.dll
2011-01-28 02:16:56 ----RA---- C:\WINDOWS\system32\nvwrsfi.dll
2011-01-28 02:16:56 ----RA---- C:\WINDOWS\system32\nvwrses.dll
2011-01-28 02:16:56 ----RA---- C:\WINDOWS\system32\nvwrseng.dll
2011-01-28 02:16:56 ----RA---- C:\WINDOWS\system32\nvrsfr.dll
2011-01-28 02:16:56 ----RA---- C:\WINDOWS\system32\nvrsfi.dll
2011-01-28 02:16:56 ----RA---- C:\WINDOWS\system32\nvrses.dll
2011-01-28 02:16:55 ----RA---- C:\WINDOWS\system32\nvwrsel.dll
2011-01-28 02:16:55 ----RA---- C:\WINDOWS\system32\nvwrsde.dll
2011-01-28 02:16:55 ----RA---- C:\WINDOWS\system32\nvwrsda.dll
2011-01-28 02:16:55 ----RA---- C:\WINDOWS\system32\nvwrscs.dll
2011-01-28 02:16:55 ----RA---- C:\WINDOWS\system32\nvrseng.dll
2011-01-28 02:16:55 ----RA---- C:\WINDOWS\system32\nvrsel.dll
2011-01-28 02:16:55 ----RA---- C:\WINDOWS\system32\nvrsde.dll
2011-01-28 02:16:55 ----RA---- C:\WINDOWS\system32\nvrsda.dll
2011-01-28 02:16:54 ----RA---- C:\WINDOWS\system32\nvwrsar.dll
2011-01-28 02:16:54 ----RA---- C:\WINDOWS\system32\nvrscs.dll
2011-01-28 02:16:54 ----RA---- C:\WINDOWS\system32\nvrsar.dll
2011-01-28 02:16:54 ----D---- C:\WINDOWS\nview
2011-01-28 02:16:53 ----RA---- C:\WINDOWS\system32\nwiz.exe
2011-01-28 02:16:53 ----RA---- C:\WINDOWS\system32\nvshell.dll
2011-01-28 02:16:53 ----RA---- C:\WINDOWS\system32\dmcpl.exe
2011-01-28 02:16:52 ----RA---- C:\WINDOWS\system32\nvqtwk.dll
2011-01-28 02:16:52 ----RA---- C:\WINDOWS\system32\nview.dll
2011-01-28 02:16:51 ----RA---- C:\WINDOWS\system32\nvcpl.dll
2011-01-28 02:16:50 ----RA---- C:\WINDOWS\system32\nvoglnt.dll
2011-01-28 02:16:48 ----RA---- C:\WINDOWS\system32\nv4_disp.dll
2011-01-28 02:16:47 ----RA---- C:\WINDOWS\system32\nvsvc32.exe
2011-01-28 02:16:47 ----RA---- C:\WINDOWS\system32\nvinstnt.dll
2011-01-28 02:16:36 ----RA---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2011-01-28 02:16:28 ----A---- C:\WINDOWS\tsctv.ini
2011-01-28 02:13:37 ----SD---- C:\WINDOWS\system32\Microsoft
2011-01-28 02:12:55 ----RA---- C:\WINDOWS\system32\drivers\viaidexp.sys
2011-01-28 02:12:55 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-01-28 02:12:38 ----A---- C:\WINDOWS\system32\drivers\VIAPFD.SYS
2011-01-28 02:12:37 ----A---- C:\WINDOWS\IsUninst.exe
2011-01-28 02:12:26 ----N---- C:\WINDOWS\system32\Autorun.exe
2011-01-28 02:12:24 ----A---- C:\WINDOWS\system32\auto.ini
2011-01-28 02:11:07 ----SHD---- C:\WINDOWS\Installer
2011-01-28 02:11:04 ----D---- C:\Documents and Settings\tata\Data aplikací\Identities
2011-01-28 02:10:57 ----HD---- C:\Program Files\Uninstall Information
2011-01-28 02:10:46 ----ASH---- C:\Documents and Settings\tata\Data aplikací\desktop.ini
2011-01-28 02:10:45 ----SD---- C:\Documents and Settings\tata\Data aplikací\Microsoft
2011-01-28 02:10:43 ----ASH---- C:\hiberfil.sys
2011-01-28 02:08:55 ----SHD---- C:\System Volume Information
2011-01-28 02:08:54 ----N---- C:\WINDOWS\SchedLgU.Txt
2011-01-28 02:04:34 ----D---- C:\WINDOWS\system32\xircom
2011-01-28 02:04:34 ----D---- C:\Program Files\xerox
2011-01-28 02:04:34 ----D---- C:\Program Files\microsoft frontpage
2011-01-28 02:03:47 ----RASH---- C:\MSDOS.SYS
2011-01-28 02:03:47 ----RASH---- C:\IO.SYS
2011-01-28 02:03:47 ----A---- C:\WINDOWS\control.ini
2011-01-28 02:03:47 ----A---- C:\CONFIG.SYS
2011-01-28 02:03:47 ----A---- C:\AUTOEXEC.BAT
2011-01-28 02:03:33 ----A---- C:\WINDOWS\system32\mapi32.dll
2011-01-28 02:02:17 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-01-28 02:02:17 ----RD---- C:\WINDOWS\Offline Web Pages
2011-01-28 02:02:17 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2011-01-28 02:02:08 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2011-01-28 02:01:39 ----D---- C:\WINDOWS\system32\DirectX
2011-01-28 02:01:12 ----A---- C:\WINDOWS\system32\safrslv.dll
2011-01-28 02:01:12 ----A---- C:\WINDOWS\system32\safrdm.dll
2011-01-28 02:01:12 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2011-01-28 02:01:11 ----A---- C:\WINDOWS\system32\racpldlg.dll
2011-01-28 02:01:11 ----A---- C:\WINDOWS\system32\atrace.dll
2011-01-28 02:01:09 ----A---- C:\WINDOWS\system32\desktop.ini
2011-01-28 02:01:09 ----A---- C:\WINDOWS\desktop.ini
2011-01-28 02:01:02 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2011-01-28 02:01:02 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2011-01-28 02:01:02 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2011-01-28 02:01:00 ----D---- C:\Program Files\Common Files\Services
2011-01-28 02:01:00 ----A---- C:\WINDOWS\system32\acctres.dll
2011-01-28 02:00:59 ----A---- C:\WINDOWS\system32\inetres.dll
2011-01-28 02:00:56 ----SD---- C:\WINDOWS\Tasks
2011-01-28 02:00:56 ----A---- C:\WINDOWS\system32\isign32.dll
2011-01-28 02:00:56 ----A---- C:\WINDOWS\system32\icwphbk.dll
2011-01-28 02:00:56 ----A---- C:\WINDOWS\system32\icwdial.dll
2011-01-28 02:00:55 ----A---- C:\WINDOWS\system32\inetcfg.dll
2011-01-28 02:00:55 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2011-01-28 02:00:53 ----D---- C:\Program Files\Common Files\MSSoap
2011-01-28 02:00:49 ----D---- C:\WINDOWS\srchasst
2011-01-28 02:00:48 ----D---- C:\WINDOWS\system32\Macromed
2011-01-28 02:00:48 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2011-01-28 02:00:48 ----A---- C:\WINDOWS\system32\qmgr.dll
2011-01-28 02:00:47 ----D---- C:\Program Files\Movie Maker
2011-01-28 02:00:42 ----D---- C:\WINDOWS\system32\Restore
2011-01-28 02:00:42 ----D---- C:\WINDOWS\PCHealth
2011-01-28 02:00:42 ----A---- C:\WINDOWS\system32\srsvc.dll
2011-01-28 02:00:42 ----A---- C:\WINDOWS\system32\srrstr.dll
2011-01-28 02:00:42 ----A---- C:\WINDOWS\system32\srclient.dll
2011-01-28 02:00:42 ----A---- C:\WINDOWS\system32\drivers\sr.sys
2011-01-28 02:00:41 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2011-01-28 02:00:41 ----A---- C:\WINDOWS\system32\msconf.dll
2011-01-28 02:00:41 ----A---- C:\WINDOWS\system32\mnmdd.dll
2011-01-28 02:00:41 ----A---- C:\WINDOWS\system32\ils.dll
2011-01-28 02:00:39 ----D---- C:\Program Files\NetMeeting
2011-01-28 02:00:39 ----A---- C:\WINDOWS\system32\msoert2.dll
2011-01-28 02:00:39 ----A---- C:\WINDOWS\system32\msoeacct.dll
2011-01-28 02:00:38 ----A---- C:\WINDOWS\system32\inetcomm.dll
2011-01-28 02:00:37 ----D---- C:\Program Files\Outlook Express
2011-01-28 02:00:37 ----A---- C:\WINDOWS\system32\schedsvc.dll
2011-01-28 02:00:37 ----A---- C:\WINDOWS\system32\mstinit.exe
2011-01-28 02:00:37 ----A---- C:\WINDOWS\system32\mstask.dll
2011-01-28 02:00:34 ----D---- C:\Program Files\Common Files\System
2011-01-28 02:00:32 ----D---- C:\Program Files\Internet Explorer
2011-01-28 01:59:36 ----D---- C:\Program Files\ComPlus Applications
2011-01-28 01:59:34 ----A---- C:\WINDOWS\vbaddin.ini
2011-01-28 01:59:34 ----A---- C:\WINDOWS\vb.ini
2011-01-28 01:59:30 ----D---- C:\WINDOWS\Registration
2011-01-28 01:59:22 ----HD---- C:\Program Files\WindowsUpdate
2011-01-28 01:59:22 ----D---- C:\Program Files\Online Services
2011-01-28 01:59:21 ----D---- C:\Program Files\Windows Media Player
2011-01-28 01:59:14 ----D---- C:\Program Files\Messenger
2011-01-28 01:59:09 ----D---- C:\Program Files\MSN Gaming Zone
2011-01-28 01:59:09 ----A---- C:\WINDOWS\system32\write.exe
2011-01-28 01:59:00 ----A---- C:\WINDOWS\system32\sndvol32.exe
2011-01-28 01:59:00 ----A---- C:\WINDOWS\system32\sndrec32.exe
2011-01-28 01:59:00 ----A---- C:\WINDOWS\system32\hypertrm.dll
2011-01-28 01:59:00 ----A---- C:\WINDOWS\system32\accwiz.exe
2011-01-28 01:58:59 ----A---- C:\WINDOWS\system32\winchat.exe
2011-01-28 01:58:59 ----A---- C:\WINDOWS\system32\hticons.dll
2011-01-28 01:58:59 ----A---- C:\WINDOWS\system32\avwav.dll
2011-01-28 01:58:59 ----A---- C:\WINDOWS\system32\avtapi.dll
2011-01-28 01:58:59 ----A---- C:\WINDOWS\system32\avmeter.dll
2011-01-28 01:58:53 ----A---- C:\WINDOWS\system32\getuname.dll
2011-01-28 01:58:52 ----A---- C:\WINDOWS\system32\winmine.exe
2011-01-28 01:58:52 ----A---- C:\WINDOWS\system32\sol.exe
2011-01-28 01:58:52 ----A---- C:\WINDOWS\system32\charmap.exe
2011-01-28 01:58:52 ----A---- C:\WINDOWS\system32\calc.exe
2011-01-28 01:58:51 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2011-01-28 01:58:51 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2011-01-28 01:58:51 ----A---- C:\WINDOWS\system32\tslabels.ini
2011-01-28 01:58:51 ----A---- C:\WINDOWS\system32\tskill.exe
2011-01-28 01:58:51 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2011-01-28 01:58:51 ----A---- C:\WINDOWS\system32\reset.exe
2011-01-28 01:58:51 ----A---- C:\WINDOWS\system32\rdshost.exe
2011-01-28 01:58:51 ----A---- C:\WINDOWS\system32\mshearts.exe
2011-01-28 01:58:51 ----A---- C:\WINDOWS\system32\freecell.exe
2011-01-28 01:58:51 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys
2011-01-28 01:58:51 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys
2011-01-28 01:58:50 ----A---- C:\WINDOWS\system32\tscon.exe
2011-01-28 01:58:50 ----A---- C:\WINDOWS\system32\shadow.exe
2011-01-28 01:58:50 ----A---- C:\WINDOWS\system32\rwinsta.exe
2011-01-28 01:58:50 ----A---- C:\WINDOWS\system32\regini.exe
2011-01-28 01:58:50 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2011-01-28 01:58:50 ----A---- C:\WINDOWS\system32\qwinsta.exe
2011-01-28 01:58:50 ----A---- C:\WINDOWS\system32\qprocess.exe
2011-01-28 01:58:50 ----A---- C:\WINDOWS\system32\qappsrv.exe
2011-01-28 01:58:50 ----A---- C:\WINDOWS\system32\msg.exe
2011-01-28 01:58:50 ----A---- C:\WINDOWS\system32\logoff.exe
2011-01-28 01:58:50 ----A---- C:\WINDOWS\system32\cdmodem.dll
2011-01-28 01:58:49 ----A---- C:\WINDOWS\system32\xolehlp.dll
2011-01-28 01:58:49 ----A---- C:\WINDOWS\system32\mtxoci.dll
2011-01-28 01:58:49 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2011-01-28 01:58:49 ----A---- C:\WINDOWS\system32\msdtctm.dll
2011-01-28 01:58:49 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2011-01-28 01:58:49 ----A---- C:\WINDOWS\system32\msdtclog.dll
2011-01-28 01:58:49 ----A---- C:\WINDOWS\system32\msdtc.exe
2011-01-28 01:58:48 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2011-01-28 01:58:48 ----A---- C:\WINDOWS\system32\mtxex.dll
2011-01-28 01:58:48 ----A---- C:\WINDOWS\system32\mtxdm.dll
2011-01-28 01:58:48 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2011-01-28 01:58:47 ----A---- C:\WINDOWS\system32\stclient.dll
2011-01-28 01:58:47 ----A---- C:\WINDOWS\system32\comuid.dll
2011-01-28 01:58:47 ----A---- C:\WINDOWS\system32\comsnap.dll
2011-01-28 01:58:47 ----A---- C:\WINDOWS\system32\comrepl.dll
2011-01-28 01:58:47 ----A---- C:\WINDOWS\system32\comaddin.dll
2011-01-28 01:58:47 ----A---- C:\WINDOWS\system32\colbact.dll
2011-01-28 01:58:47 ----A---- C:\WINDOWS\system32\clbcatex.dll
2011-01-28 01:58:47 ----A---- C:\WINDOWS\system32\catsrvps.dll
2011-01-28 01:58:47 ----A---- C:\WINDOWS\system32\catsrv.dll
2011-01-28 01:58:46 ----A---- C:\WINDOWS\system32\clbcatq.dll
2011-01-28 01:58:39 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2011-01-28 01:58:39 ----A---- C:\WINDOWS\system32\servdeps.dll
2011-01-28 01:58:39 ----A---- C:\WINDOWS\system32\mmfutil.dll
2011-01-28 01:58:38 ----A---- C:\WINDOWS\system32\cmprops.dll
2011-01-28 01:58:33 ----D---- C:\Program Files\Windows NT
2011-01-28 01:58:33 ----D---- C:\Program Files\MSN
2011-01-28 01:58:33 ----A---- C:\WINDOWS\system32\spider.exe
2011-01-28 01:58:33 ----A---- C:\WINDOWS\system32\mspaint.exe
2011-01-28 01:58:33 ----A---- C:\WINDOWS\system32\mplay32.exe
2011-01-28 01:58:33 ----A---- C:\WINDOWS\system32\clipbrd.exe
2011-01-28 01:58:32 ----A---- C:\WINDOWS\system32\wuauserv.dll
2011-01-28 01:58:32 ----A---- C:\WINDOWS\system32\wuaueng.dll
2011-01-28 01:58:32 ----A---- C:\WINDOWS\system32\wuauclt.exe
2011-01-28 01:58:32 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2011-01-28 01:58:32 ----A---- C:\WINDOWS\system32\mstscax.dll
2011-01-28 01:58:32 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2011-01-28 01:58:31 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2011-01-28 01:58:31 ----A---- C:\WINDOWS\system32\termsrv.dll
2011-01-28 01:58:31 ----A---- C:\WINDOWS\system32\sessmgr.exe
2011-01-28 01:58:31 ----A---- C:\WINDOWS\system32\remotepg.dll
2011-01-28 01:58:31 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2011-01-28 01:58:31 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2011-01-28 01:58:31 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2011-01-28 01:58:31 ----A---- C:\WINDOWS\system32\rdpclip.exe
2011-01-28 01:58:31 ----A---- C:\WINDOWS\system32\rdchost.dll
2011-01-28 01:58:31 ----A---- C:\WINDOWS\system32\mstsc.exe
2011-01-28 01:58:30 ----D---- C:\WINDOWS\system32\MsDtc
2011-01-28 01:58:30 ----D---- C:\WINDOWS\system32\Com
2011-01-28 01:58:30 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2011-01-28 01:58:30 ----A---- C:\WINDOWS\system32\icaapi.dll
2011-01-28 01:58:30 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2011-01-28 01:58:30 ----A---- C:\WINDOWS\system32\catsrvut.dll
2011-01-28 01:58:29 ----A---- C:\WINDOWS\system32\comsvcs.dll
2011-01-28 01:58:26 ----A---- C:\WINDOWS\system32\licwmi.dll
2011-01-28 01:58:24 ----A---- C:\WINDOWS\system32\drivers\termdd.sys
2011-01-28 01:58:24 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys

======List of files/folders modified in the last 1 months======

2011-02-11 16:32:40 ----A---- C:\WINDOWS\system.ini
2011-01-28 02:43:52 ----A---- C:\WINDOWS\win.ini
2011-01-28 02:36:56 ----RASH---- C:\NTDETECT.COM
2011-01-28 02:03:13 ----ASH---- C:\WINDOWS\fonts\desktop.ini
2011-01-21 15:44:07 ----A---- C:\WINDOWS\system32\shimgvw.dll
2011-01-21 15:44:07 ----A---- C:\WINDOWS\system32\shell32.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 kl1;Kl1; C:\WINDOWS\system32\drivers\kl1.sys [2009-06-15 128016]
R0 klbg;Kaspersky Lab Boot Guard Driver; C:\WINDOWS\system32\drivers\klbg.sys [2008-12-15 33808]
R0 viaagp;Filtr VIA sběrnice AGP ; C:\WINDOWS\System32\DRIVERS\viaagp.sys [2008-04-14 42240]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\System32\DRIVERS\amdk7.sys [2008-04-14 41600]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2011-01-28 296976]
R1 VIAPFD;VIAPFD; C:\WINDOWS\System32\Drivers\VIAPFD.SYS [2001-12-18 3279]
R3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2009-05-13 31760]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2009-05-16 19472]
R3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2002-03-09 909501]
R3 RTL8023xp;TP-LINK 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\System32\DRIVERS\Rtnicxp.sys [2006-06-17 83968]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 VIAudio;Zvukový řadič VIA AC'97 (WDM); C:\WINDOWS\system32\drivers\ac97via.sys [2002-08-29 84480]
S3 catchme;catchme; \??\C:\DOCUME~1\tata\LOCALS~1\Temp\catchme.sys []
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\System32\nvsvc32.exe [2002-03-09 61440]
S2 AVP;Kaspersky Internet Security; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe [2011-02-02 311680]

-----------------EOF-----------------

Ještě doplním že ComboFix se neukončil standartně.Při detekci rotkitu vyžadoval restart.Po restartu program ještě něco dělal ale pak se sám ukončil a ani neudělal log.Pak už nešel znovu spustit.Takže log nemám.

Dobrý večer

Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT

-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

Dobré ráno
MBAM nic nenašel.Přikládám log.

Malwarebytes' Anti-Malware 1.50.1.1100
http://www.malwarebytes.org

Verze databáze: 5746

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

12.2.2011 11:03:12
mbam-log-2011-02-12 (11-03-11).txt

Typ kontroly: Úplný test (C:\|D:\|)
Testované objekty: 150112
Uplynulý čas: 30 minut, 39 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

Ještě doplním.Dnes ráno při zapnutí počítače počítač nabootoval normálně ale hned po nabootování se sám restartoval.Během bootovaní se oběvila na půl vteřiny nějaká tabulka z možností volby a pak to samo něco vybralo a jelo to dál.XPčka dobootovali již normálně.Problém stále trvá.

Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
isapnp.sys
cdrom.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
CREATERESTOREPOINT

- zaškrtněte okénko Pro všechny uživatele.
-označte okénka Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
-po dokončení skenu se objeví logy OTL.Txt a Extras.txt, vložte je zde

Stáhněte Gmer http://www.viry.cz/forum/viewtopic.php?f=29&t=62878
- rozbalte a spusťte
-proběhne sken, po skončení se otevře okno s výsledky, klikněte na Save a tím si uložíte log,který sem vložíte

-Podle návodu v odkazu provedete druhý sken a log sem také vložíte.

log OTL Extras.Txt
OTL Extras logfile created on: 12.2.2011 17:24:12 - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\tata\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

255,00 Mb Total Physical Memory | 46,00 Mb Available Physical Memory | 18,00% Memory free
614,00 Mb Paging File | 401,00 Mb Available in Paging File | 65,00% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 5,86 Gb Total Space | 1,56 Gb Free Space | 26,69% Space Free | Partition Type: NTFS
Drive D: | 12,75 Gb Total Space | 12,39 Gb Free Space | 97,12% Space Free | Partition Type: NTFS

Computer Name: TRNKA-ND7310LNU | User Name: tata | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-1645522239-920026266-854245398-1003\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 1
"" =

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{9D8B0949-7C47-476F-9F06-F900D3B078EA}" = Kaspersky Internet Security 2010
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"CCleaner" = CCleaner
"ie8" = Windows Internet Explorer 8
"InstallWIX_{9D8B0949-7C47-476F-9F06-F900D3B078EA}" = Kaspersky Internet Security 2010
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13)
"NVIDIA" = NVIDIA Windows 2000/XP Display Drivers
"Windows XP Service Pack" = Windows XP Service Pack 3

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 11.2.2011 11:13:02 | Computer Name = TRNKA-ND7310LNU | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: The server name or address could not be resolved

Error - 11.2.2011 11:13:03 | Computer Name = TRNKA-ND7310LNU | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: Takové síťové připojení neexistuje.

< End of report >

OTL.txt
OTL logfile created on: 12.2.2011 17:24:12 - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\tata\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

255,00 Mb Total Physical Memory | 46,00 Mb Available Physical Memory | 18,00% Memory free
614,00 Mb Paging File | 401,00 Mb Available in Paging File | 65,00% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 5,86 Gb Total Space | 1,56 Gb Free Space | 26,69% Space Free | Partition Type: NTFS
Drive D: | 12,75 Gb Total Space | 12,39 Gb Free Space | 97,12% Space Free | Partition Type: NTFS

Computer Name: TRNKA-ND7310LNU | User Name: tata | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011.02.12 17:22:20 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\tata\Plocha\OTL.exe
PRC - [2010.12.03 20:39:33 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

========== Modules (SafeList) ==========

MOD - [2011.02.12 17:22:20 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\tata\Plocha\OTL.exe
MOD - [2010.08.23 17:12:33 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - [2011.02.02 11:52:22 | 000,311,680 | ---- | M] (Kaspersky Lab) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe -- (AVP)

========== Driver Services (SafeList) ==========

DRV - [2011.01.28 02:54:12 | 000,296,976 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF)
DRV - [2009.06.15 14:01:00 | 000,128,016 | ---- | M] (Kaspersky Lab) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\kl1.sys -- (kl1)
DRV - [2009.05.16 20:59:44 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2009.05.13 17:46:52 | 000,031,760 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5)
DRV - [2008.12.15 20:41:32 | 000,033,808 | ---- | M] (Kaspersky Lab) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\klbg.sys -- (klbg)
DRV - [2008.04.14 00:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2006.06.17 03:56:38 | 000,083,968 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2002.08.29 00:00:56 | 000,084,480 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ac97via.sys -- (VIAudio) Zvukový řadič VIA AC'97 (WDM)
DRV - [2002.03.09 02:53:00 | 000,909,501 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2001.12.18 07:45:04 | 000,003,279 | ---- | M] (VIA Technologies. Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\VIAPFD.SYS -- (VIAPFD)
DRV - [2001.10.18 05:00:00 | 000,006,144 | R--- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\viaidexp.sys -- (ViaIde)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1645522239-920026266-854245398-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-1645522239-920026266-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.update: false
FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:9.0.0.463

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.02.02 13:20:45 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.02.02 13:20:27 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\THBExt [2011.01.28 02:55:05 | 000,000,000 | ---D | M]

[2011.02.02 13:20:59 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\tata\Data aplikací\Mozilla\Extensions
[2011.02.02 13:20:59 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\tata\Data aplikací\Mozilla\Firefox\Profiles\kuy24i3k.default\extensions
[2011.02.02 14:47:02 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011.02.02 14:36:16 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2010.12.03 19:08:29 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.12.03 19:08:29 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.12.03 19:08:29 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.12.03 19:08:29 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.12.03 19:08:29 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2011.02.11 16:32:04 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll (Kaspersky Lab)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O4 - HKLM..\Run: [avp] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe (Kaspersky Lab)
O4 - HKLM..\Run: [NvCplDaemon] File not found
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 383
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1645522239-920026266-854245398-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1645522239-920026266-854245398-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1645522239-920026266-854245398-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1645522239-920026266-854245398-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Přidat do Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm ()
O9 - Extra Button: &Virtuální klávesnice - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: &Kontrola adres URL - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.255.255.10 10.255.255.20
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O32 - HKLM CDRom: AutoRun - 0
O32 - AutoRun File - [2011.01.28 02:03:47 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: HidServ - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (56308606093492224)

========== Files/Folders - Created Within 30 Days ==========

[2011.02.12 17:22:09 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\tata\Plocha\OTL.exe
[2011.02.12 11:19:04 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\tata\Recent
[2011.02.12 10:31:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tata\Data aplikací\Malwarebytes
[2011.02.12 10:31:02 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011.02.12 10:31:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
[2011.02.12 10:31:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2011.02.12 10:30:56 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011.02.12 10:30:55 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011.02.11 17:57:07 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.02.11 17:57:06 | 000,000,000 | ---D | C] -- C:\rsit
[2011.02.11 17:19:46 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011.02.11 15:54:13 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011.02.11 15:53:04 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011.02.11 15:53:04 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011.02.11 15:53:04 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011.02.11 15:53:04 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011.02.09 15:51:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011.02.09 15:49:19 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011.02.09 00:05:30 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2011.02.09 00:05:12 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll
[2011.02.09 00:05:10 | 000,974,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll
[2011.02.09 00:04:49 | 000,354,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys
[2011.02.09 00:04:02 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys
[2011.02.09 00:03:39 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll
[2011.02.09 00:00:57 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2011.02.08 23:59:56 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll
[2011.02.08 23:59:56 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll
[2011.02.08 23:57:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
[2011.02.08 23:57:33 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011.02.08 23:57:24 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2011.02.08 23:54:31 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2011.02.08 23:52:48 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2011.02.08 23:52:07 | 002,150,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2011.02.08 23:52:06 | 002,194,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2011.02.08 23:52:01 | 002,029,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2011.02.08 23:51:59 | 002,071,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2011.02.08 23:50:57 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2011.02.08 23:50:21 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll
[2011.02.08 23:47:27 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\tata\PrivacIE
[2011.02.08 23:46:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\tata\IETldCache
[2011.02.08 23:39:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2011.02.08 23:38:43 | 000,602,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2011.02.08 23:38:43 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2011.02.08 23:38:42 | 001,991,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2011.02.08 23:38:41 | 011,080,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2011.02.08 23:38:41 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2011.02.08 23:37:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2011.02.08 23:36:02 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2011.02.07 23:05:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tata\Data aplikací\Macromedia
[2011.02.07 23:05:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tata\Data aplikací\Adobe
[2011.02.02 14:54:51 | 000,455,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2011.02.02 14:54:44 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2011.02.02 14:53:59 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2011.02.02 14:53:32 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll
[2011.02.02 14:53:27 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2011.02.02 14:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tata\Dokumenty\Stažené soubory
[2011.02.02 14:35:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2011.02.02 14:18:39 | 001,372,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll
[2011.02.02 14:18:39 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll
[2011.02.02 14:18:39 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll
[2011.02.02 14:18:30 | 001,001,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmvdmoe2.dll
[2011.02.02 14:18:27 | 001,119,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmsdmoe2.dll
[2011.02.02 14:18:27 | 000,897,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmspdmoe.dll
[2011.02.02 14:18:27 | 000,485,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmspdmod.dll
[2011.02.02 14:18:25 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll
[2011.02.02 14:18:23 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpdxm.dll
[2011.02.02 14:18:23 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll
[2011.02.02 14:18:21 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpasf.dll
[2011.02.02 14:18:19 | 004,886,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmp.dll
[2011.02.02 14:18:19 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmidx.dll
[2011.02.02 14:18:18 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmerror.dll
[2011.02.02 14:18:13 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm
[2011.02.02 14:18:07 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspmsnsv.dll
[2011.02.02 14:18:06 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll
[2011.02.02 14:18:06 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm
[2011.02.02 14:18:04 | 000,384,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mp4sdmod.dll
[2011.02.02 14:18:04 | 000,310,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mp43dmod.dll
[2011.02.02 14:18:03 | 000,786,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe
[2011.02.02 14:18:02 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm
[2011.02.02 14:16:18 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpapi.dll
[2011.02.02 14:16:18 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwnh.dll
[2011.02.02 14:15:46 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2011.02.02 14:15:41 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll
[2011.02.02 14:15:40 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2011.02.02 14:15:36 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll
[2011.02.02 14:15:35 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll
[2011.02.02 14:15:35 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3api.dll
[2011.02.02 14:15:34 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll
[2011.02.02 14:15:34 | 000,056,320 | ---- | C] (Společnost Microsoft) -- C:\WINDOWS\System32\dot3msm.dll
[2011.02.02 14:15:34 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll
[2011.02.02 14:15:34 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3dlg.dll
[2011.02.02 14:15:33 | 000,651,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll
[2011.02.02 14:15:31 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll
[2011.02.02 14:15:31 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappcfg.dll
[2011.02.02 14:15:31 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll
[2011.02.02 14:15:31 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapolqec.dll
[2011.02.02 14:15:30 | 000,179,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll
[2011.02.02 14:15:30 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll
[2011.02.02 14:15:30 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappprxy.dll
[2011.02.02 14:15:22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll
[2011.02.02 14:15:21 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll
[2011.02.02 14:15:20 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll
[2011.02.02 14:15:19 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll
[2011.02.02 14:15:18 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll
[2011.02.02 14:15:16 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll
[2011.02.02 14:15:16 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll
[2011.02.02 14:15:16 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll
[2011.02.02 14:15:16 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe
[2011.02.02 14:15:14 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll
[2011.02.02 14:15:14 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll
[2011.02.02 14:15:12 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll
[2011.02.02 14:15:12 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe
[2011.02.02 14:15:12 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll
[2011.02.02 14:15:10 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\onex.dll
[2011.02.02 14:15:08 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll
[2011.02.02 14:15:07 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll
[2011.02.02 14:15:06 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qutil.dll
[2011.02.02 14:15:06 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll
[2011.02.02 14:15:06 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rasqec.dll
[2011.02.02 14:15:05 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2011.02.02 14:15:02 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe
[2011.02.02 14:14:58 | 000,717,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll
[2011.02.02 14:14:57 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2011.02.02 14:14:56 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe
[2011.02.02 14:14:54 | 000,712,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecs.dll
[2011.02.02 14:14:54 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll
[2011.02.02 14:14:53 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll
[2011.02.02 14:14:53 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll
[2011.02.02 14:14:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cs-cz
[2011.02.02 14:14:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2011.02.02 14:14:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cs
[2011.02.02 14:14:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2011.02.02 14:02:47 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll
[2011.02.02 13:59:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asferror.dll
[2011.02.02 13:59:46 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\blackbox.dll
[2011.02.02 13:59:46 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cewmdm.dll
[2011.02.02 13:59:32 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmclien.dll
[2011.02.02 13:59:32 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe
[2011.02.02 13:59:27 | 000,695,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmv2clt.dll
[2011.02.02 13:59:27 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmstor.dll
[2011.02.02 13:59:26 | 000,499,254 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxmasf.dll
[2011.02.02 13:59:16 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logagent.exe
[2011.02.02 13:59:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\laprxy.dll
[2011.02.02 13:59:15 | 000,262,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpg4ds32.ax
[2011.02.02 13:59:15 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpg4dmod.dll
[2011.02.02 13:59:14 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadds32.ax
[2011.02.02 13:59:14 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe
[2011.02.02 13:59:14 | 000,004,639 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe
[2011.02.02 13:59:13 | 000,846,874 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdxm.ocx
[2011.02.02 13:59:12 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msnetobj.dll
[2011.02.02 13:59:12 | 000,004,126 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdxmlc.dll
[2011.02.02 13:59:11 | 000,201,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspmsp.dll
[2011.02.02 13:59:11 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msscds32.ax
[2011.02.02 13:59:10 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msscp.dll
[2011.02.02 13:59:10 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswmdm.dll
[2011.02.02 13:59:09 | 000,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll
[2011.02.02 13:59:09 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll
[2011.02.02 13:59:09 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll
[2011.02.02 13:59:02 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe
[2011.02.02 13:59:02 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shmedia.dll
[2011.02.02 13:59:00 | 000,247,326 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\strmdll.dll
[2011.02.02 13:58:58 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unregmp2.exe
[2011.02.02 13:58:53 | 000,670,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmadmoe.dll
[2011.02.02 13:58:53 | 000,408,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmadmod.dll
[2011.02.02 13:58:53 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmasf.dll
[2011.02.02 13:58:52 | 001,053,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\WMNetmgr.dll
[2011.02.02 13:58:52 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmdmlog.dll
[2011.02.02 13:58:52 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmdmps.dll
[2011.02.02 13:58:52 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpcd.dll
[2011.02.02 13:58:52 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmp.ocx
[2011.02.02 13:58:51 | 002,957,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmploc.dll
[2011.02.02 13:58:51 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe
[2011.02.02 13:58:51 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpcore.dll
[2011.02.02 13:58:50 | 000,759,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmsdmod.dll
[2011.02.02 13:58:50 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmsdmoe.dll
[2011.02.02 13:58:50 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpshell.dll
[2011.02.02 13:58:50 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpui.dll
[2011.02.02 13:58:49 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmstream.dll
[2011.02.02 13:58:49 | 000,278,559 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmv8ds32.ax
[2011.02.02 13:58:48 | 002,113,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\WMVCore.dll
[2011.02.02 13:58:48 | 000,809,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmvdmod.dll
[2011.02.02 13:58:48 | 000,258,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmvds32.ax
[2011.02.02 13:52:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2011.02.02 13:52:07 | 000,144,384 | ---- | C] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\drivers\hdaudbus.sys
[2011.02.02 13:20:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tata\Local Settings\Data aplikací\Mozilla
[2011.02.02 13:20:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tata\Data aplikací\Mozilla
[2011.02.02 13:20:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Mozilla Firefox
[2011.02.02 13:20:26 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011.02.02 12:49:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2011.02.02 12:49:05 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2011.02.02 11:43:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2011.02.02 11:43:32 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2011.02.01 16:06:31 | 000,083,968 | ---- | C] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\drivers\Rtnicxp.sys
[2011.01.28 02:58:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2011.01.28 02:54:30 | 000,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab
[2011.01.28 02:54:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab
[2011.01.28 02:54:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Kaspersky Internet Security 2010
[2011.01.28 02:54:12 | 000,296,976 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys
[2011.01.28 02:52:56 | 000,010,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\gameenum.sys
[2011.01.28 02:52:17 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2011.01.28 02:52:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2011.01.28 02:52:16 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys
[2011.01.28 02:52:16 | 000,084,480 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\drivers\ac97via.sys
[2011.01.28 02:52:16 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2011.01.28 02:52:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab Setup Files
[2011.01.28 02:51:59 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll
[2011.01.28 02:50:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Filmy
[2011.01.28 02:50:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2011.01.28 02:50:32 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll
[2011.01.28 02:50:32 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll
[2011.01.28 02:50:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2011.01.28 02:50:30 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll
[2011.01.28 02:50:30 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe
[2011.01.28 02:50:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2011.01.28 02:50:29 | 000,000,000 | R--D | C] -- C:\Program Files
[2011.01.28 02:50:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2011.01.28 02:50:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2011.01.28 02:50:26 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll
[2011.01.28 02:50:26 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll
[2011.01.28 02:50:26 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll
[2011.01.28 02:50:26 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll
[2011.01.28 02:50:26 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll
[2011.01.28 02:50:26 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll
[2011.01.28 02:50:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll
[2011.01.28 02:50:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll
[2011.01.28 02:50:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll
[2011.01.28 02:50:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll
[2011.01.28 02:50:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll
[2011.01.28 02:50:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll
[2011.01.28 02:50:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll
[2011.01.28 02:50:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll
[2011.01.28 02:50:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll
[2011.01.28 02:50:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll
[2011.01.28 02:50:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll
[2011.01.28 02:50:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll
[2011.01.28 02:50:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll
[2011.01.28 02:50:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll
[2011.01.28 02:50:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll
[2011.01.28 02:50:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll
[2011.01.28 02:50:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll
[2011.01.28 02:50:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll
[2011.01.28 02:50:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll
[2011.01.28 02:50:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll
[2011.01.28 02:50:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll
[2011.01.28 02:50:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll
[2011.01.28 02:50:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll
[2011.01.28 02:50:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll
[2011.01.28 02:50:22 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll
[2011.01.28 02:50:22 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll
[2011.01.28 02:50:22 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll
[2011.01.28 02:50:22 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll
[2011.01.28 02:50:22 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll
[2011.01.28 02:50:22 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll
[2011.01.28 02:50:22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll
[2011.01.28 02:50:22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll
[2011.01.28 02:50:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll
[2011.01.28 02:50:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll
[2011.01.28 02:50:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll
[2011.01.28 02:50:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll
[2011.01.28 02:50:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll
[2011.01.28 02:50:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll
[2011.01.28 02:50:21 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll
[2011.01.28 02:50:21 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll
[2011.01.28 02:50:21 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll
[2011.01.28 02:50:21 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll
[2011.01.28 02:50:21 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll
[2011.01.28 02:50:21 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll
[2011.01.28 02:50:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll
[2011.01.28 02:50:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll
[2011.01.28 02:50:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll
[2011.01.28 02:50:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll
[2011.01.28 02:50:18 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll
[2011.01.28 02:50:18 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll
[2011.01.28 02:50:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll
[2011.01.28 02:50:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll
[2011.01.28 02:50:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll
[2011.01.28 02:50:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll
[2011.01.28 02:50:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll
[2011.01.28 02:50:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll
[2011.01.28 02:50:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll
[2011.01.28 02:50:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll
[2011.01.28 02:50:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll
[2011.01.28 02:50:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll
[2011.01.28 02:50:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL
[2011.01.28 02:50:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll
[2011.01.28 02:50:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll
[2011.01.28 02:50:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll
[2011.01.28 02:50:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll
[2011.01.28 02:50:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll
[2011.01.28 02:50:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll
[2011.01.28 02:50:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll
[2011.01.28 02:50:16 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll
[2011.01.28 02:50:16 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll
[2011.01.28 02:50:16 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll

čast2
[2011.01.28 02:50:16 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll
[2011.01.28 02:50:16 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll
[2011.01.28 02:50:16 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll
[2011.01.28 02:50:16 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2011.01.28 02:50:16 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2011.01.28 02:50:16 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2011.01.28 02:50:16 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2011.01.28 02:50:15 | 000,127,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msvideo.dll
[2011.01.28 02:50:15 | 000,127,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL
[2011.01.28 02:50:15 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\olecli.dll
[2011.01.28 02:50:15 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL
[2011.01.28 02:50:15 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\olesvr.dll
[2011.01.28 02:50:15 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL
[2011.01.28 02:50:15 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tapi.dll
[2011.01.28 02:50:15 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL
[2011.01.28 02:50:15 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wfwnet.drv
[2011.01.28 02:50:15 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV
[2011.01.28 02:50:15 | 000,009,291 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ver.dll
[2011.01.28 02:50:15 | 000,009,291 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL
[2011.01.28 02:50:15 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shell.dll
[2011.01.28 02:50:15 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL
[2011.01.28 02:50:15 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\timer.drv
[2011.01.28 02:50:15 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV
[2011.01.28 02:50:15 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\system.drv
[2011.01.28 02:50:15 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV
[2011.01.28 02:50:15 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vga.drv
[2011.01.28 02:50:15 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV
[2011.01.28 02:50:15 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sound.drv
[2011.01.28 02:50:15 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV
[2011.01.28 02:50:14 | 000,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avifile.dll
[2011.01.28 02:50:14 | 000,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL
[2011.01.28 02:50:14 | 000,073,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mciavi.drv
[2011.01.28 02:50:14 | 000,073,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV
[2011.01.28 02:50:14 | 000,070,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avicap.dll
[2011.01.28 02:50:14 | 000,070,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL
[2011.01.28 02:50:14 | 000,069,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\mmsystem.dll
[2011.01.28 02:50:14 | 000,033,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\commdlg.dll
[2011.01.28 02:50:14 | 000,033,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL
[2011.01.28 02:50:14 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mciwave.drv
[2011.01.28 02:50:14 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV
[2011.01.28 02:50:14 | 000,025,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mciseq.drv
[2011.01.28 02:50:14 | 000,025,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV
[2011.01.28 02:50:14 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE
[2011.01.28 02:50:14 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe
[2011.01.28 02:50:14 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lzexpand.dll
[2011.01.28 02:50:14 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL
[2011.01.28 02:50:14 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mouse.drv
[2011.01.28 02:50:14 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV
[2011.01.28 02:50:14 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\keyboard.drv
[2011.01.28 02:50:14 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV
[2011.01.28 02:50:14 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mmtask.tsk
[2011.01.28 02:50:14 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK
[2011.01.28 02:50:13 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\winspool.drv
[2011.01.28 02:50:13 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll
[2011.01.28 02:50:11 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll
[2011.01.28 02:50:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
[2011.01.28 02:50:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Nabídka Start
[2011.01.28 02:50:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty
[2011.01.28 02:50:02 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Šablony
[2011.01.28 02:50:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Plocha
[2011.01.28 02:50:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Oblíbené položky
[2011.01.28 02:49:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2011.01.28 02:49:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2011.01.28 02:49:10 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Data aplikací\Microsoft
[2011.01.28 02:49:10 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Data aplikací
[2011.01.28 02:48:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2011.01.28 02:42:40 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2011.01.28 02:42:40 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2011.01.28 02:42:40 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2011.01.28 02:42:40 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1029
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2011.01.28 02:42:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2011.01.28 02:42:37 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys
[2011.01.28 02:42:37 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsdupd.exe
[2011.01.28 02:42:33 | 000,004,255 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll
[2011.01.28 02:42:33 | 000,003,967 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll
[2011.01.28 02:42:33 | 000,003,775 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll
[2011.01.28 02:42:33 | 000,003,711 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll
[2011.01.28 02:42:33 | 000,003,647 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll
[2011.01.28 02:42:33 | 000,003,615 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll
[2011.01.28 02:42:33 | 000,003,135 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll
[2011.01.28 02:42:32 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys
[2011.01.28 02:42:32 | 000,326,912 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys
[2011.01.28 02:42:32 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys
[2011.01.28 02:42:32 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys
[2011.01.28 02:42:32 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys
[2011.01.28 02:42:32 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys
[2011.01.28 02:42:32 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys
[2011.01.28 02:42:32 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys
[2011.01.28 02:42:32 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys
[2011.01.28 02:42:32 | 000,043,008 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\drivers\amdagp.sys
[2011.01.28 02:42:32 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys
[2011.01.28 02:42:32 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys
[2011.01.28 02:42:32 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys
[2011.01.28 02:42:32 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys
[2011.01.28 02:42:32 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys
[2011.01.28 02:42:32 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys
[2011.01.28 02:42:32 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys
[2011.01.28 02:42:32 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys
[2011.01.28 02:42:32 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys
[2011.01.28 02:42:32 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys
[2011.01.28 02:42:32 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys
[2011.01.28 02:42:32 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys
[2011.01.28 02:42:32 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys
[2011.01.28 02:42:31 | 000,036,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthprint.sys
[2011.01.28 02:42:31 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll
[2011.01.28 02:42:31 | 000,021,183 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll
[2011.01.28 02:42:31 | 000,017,279 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll
[2011.01.28 02:42:31 | 000,015,423 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll
[2011.01.28 02:42:31 | 000,014,143 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll
[2011.01.28 02:42:31 | 000,011,359 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll
[2011.01.28 02:42:30 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2011.01.28 02:42:30 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2011.01.28 02:42:30 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2011.01.28 02:42:30 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2011.01.28 02:42:30 | 000,030,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismpx.sys
[2011.01.28 02:42:30 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys
[2011.01.28 02:42:30 | 000,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mutohpen.sys
[2011.01.28 02:42:29 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2011.01.28 02:42:29 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2011.01.28 02:42:29 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys
[2011.01.28 02:42:29 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2011.01.28 02:42:29 | 000,040,960 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\drivers\sisagp.sys
[2011.01.28 02:42:29 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2011.01.28 02:42:29 | 000,011,935 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2011.01.28 02:42:29 | 000,011,871 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2011.01.28 02:42:29 | 000,011,807 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2011.01.28 02:42:29 | 000,011,325 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\vchnt5.dll
[2011.01.28 02:42:29 | 000,011,295 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2011.01.28 02:42:29 | 000,005,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\smbali.sys
[2011.01.28 02:42:29 | 000,003,901 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\siint5.dll
[2011.01.28 02:42:28 | 001,888,992 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3duag.dll
[2011.01.28 02:42:28 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll
[2011.01.28 02:42:28 | 000,516,768 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll
[2011.01.28 02:42:28 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll
[2011.01.28 02:42:28 | 000,229,376 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll
[2011.01.28 02:42:28 | 000,201,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll
[2011.01.28 02:42:28 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll
[2011.01.28 02:42:28 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2011.01.28 02:42:28 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax
[2011.01.28 02:42:28 | 000,022,271 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2011.01.28 02:42:28 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax
[2011.01.28 02:42:27 | 001,689,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3d9.dll
[2011.01.28 02:42:27 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bthprops.cpl
[2011.01.28 02:42:27 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\blastcln.exe
[2011.01.28 02:42:27 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\btpanui.dll
[2011.01.28 02:42:27 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bthci.dll
[2011.01.28 02:42:27 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\auditusr.exe
[2011.01.28 02:42:27 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmsetacl.dll
[2011.01.28 02:42:27 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll
[2011.01.28 02:42:27 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll
[2011.01.28 02:42:26 | 002,113,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dxdiagn.dll
[2011.01.28 02:42:26 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\html.iec
[2011.01.28 02:42:26 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fsquirt.exe
[2011.01.28 02:42:26 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\firewall.cpl
[2011.01.28 02:42:26 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fwcfg.dll
[2011.01.28 02:42:26 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll
[2011.01.28 02:42:26 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\httpapi.dll
[2011.01.28 02:42:26 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltmc.exe
[2011.01.28 02:42:26 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hccoin.dll
[2011.01.28 02:42:25 | 000,848,384 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ir41_32.ax
[2011.01.28 02:42:25 | 000,755,200 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ir50_32.dll
[2011.01.28 02:42:25 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irprops.cpl
[2011.01.28 02:42:25 | 000,338,432 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ir41_qcx.dll
[2011.01.28 02:42:25 | 000,200,192 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ir50_qc.dll
[2011.01.28 02:42:25 | 000,199,680 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\iac25_32.ax
[2011.01.28 02:42:25 | 000,183,808 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ir50_qcx.dll
[2011.01.28 02:42:25 | 000,154,624 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ivfsrc.ax
[2011.01.28 02:42:25 | 000,120,320 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ir41_qc.dll
[2011.01.28 02:42:24 | 000,384,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mp4sdmod.dll
[2011.01.28 02:42:24 | 000,310,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mp43dmod.dll
[2011.01.28 02:42:24 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdadiag.dll
[2011.01.28 02:42:24 | 000,086,016 | ---- | C] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll
[2011.01.28 02:42:24 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsmsno.dll
[2011.01.28 02:42:24 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsmsfi.dll
[2011.01.28 02:42:24 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdukx.dll
[2011.01.28 02:42:24 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdno1.dll
[2011.01.28 02:42:24 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdfi1.dll
[2011.01.28 02:42:24 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdinmal.dll
[2011.01.28 02:42:24 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmlt48.dll
[2011.01.28 02:42:24 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmlt47.dll
[2011.01.28 02:42:24 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdinben.dll
[2011.01.28 02:42:24 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdinbe1.dll
[2011.01.28 02:42:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmaori.dll
[2011.01.28 02:42:23 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll
[2011.01.28 02:42:23 | 000,463,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpob2res.dll
[2011.01.28 02:42:23 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\p2pgraph.dll
[2011.01.28 02:42:23 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\p2p.dll
[2011.01.28 02:42:23 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\p2pnetsh.dll
[2011.01.28 02:42:23 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\p2pgasvc.dll
[2011.01.28 02:42:23 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\powercfg.exe
[2011.01.28 02:42:23 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netsetup.cpl
[2011.01.28 02:42:22 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll
[2011.01.28 02:42:22 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll
[2011.01.28 02:42:22 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slgen.dll
[2011.01.28 02:42:22 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll
[2011.01.28 02:42:22 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slserv.exe
[2011.01.28 02:42:22 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe
[2011.01.28 02:42:22 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sdhcinst.dll
[2011.01.28 02:42:22 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smbinst.exe
[2011.01.28 02:42:21 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmerror.dll
[2011.01.28 02:42:21 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmidx.dll
[2011.01.28 02:42:21 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\strmfilt.dll
[2011.01.28 02:42:21 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax
[2011.01.28 02:42:21 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winshfhc.dll
[2011.01.28 02:42:20 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpasf.dll
[2011.01.28 02:42:19 | 001,119,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmsdmoe2.dll
[2011.01.28 02:42:19 | 001,001,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmvdmoe2.dll
[2011.01.28 02:42:19 | 000,897,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmspdmoe.dll
[2011.01.28 02:42:19 | 000,485,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmspdmod.dll
[2011.01.28 02:42:19 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wscui.cpl
[2011.01.28 02:42:18 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll
[2011.01.28 02:42:18 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll
[2011.01.28 02:42:18 | 000,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll
[2011.01.28 02:42:18 | 000,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll
[2011.01.28 02:42:18 | 000,217,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl
[2011.01.28 02:42:18 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll
[2011.01.28 02:42:18 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe
[2011.01.28 02:42:18 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll
[2011.01.28 02:42:18 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll
[2011.01.28 02:42:17 | 000,209,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll
[2011.01.28 02:42:17 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xmlprovi.dll
[2011.01.28 02:42:17 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe
[2011.01.28 02:42:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\peernet
[2011.01.28 02:42:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\provisioning
[2011.01.28 02:39:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2011.01.28 02:36:29 | 000,017,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2011.01.28 02:36:04 | 000,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2011.01.28 02:33:47 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2011.01.28 02:33:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome
[2011.01.28 02:17:02 | 000,081,920 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszht.dll
[2011.01.28 02:17:02 | 000,045,056 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrszht.dll
[2011.01.28 02:17:02 | 000,045,056 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrszhc.dll
[2011.01.28 02:17:01 | 000,131,072 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrstr.dll
[2011.01.28 02:17:01 | 000,126,976 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssv.dll
[2011.01.28 02:17:01 | 000,081,920 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrstr.dll
[2011.01.28 02:17:01 | 000,081,920 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszhc.dll
[2011.01.28 02:17:01 | 000,077,824 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrssv.dll
[2011.01.28 02:17:01 | 000,077,824 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrssl.dll
[2011.01.28 02:17:00 | 001,286,144 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssl.dll
[2011.01.28 02:17:00 | 000,131,072 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssk.dll
[2011.01.28 02:17:00 | 000,131,072 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsru.dll
[2011.01.28 02:17:00 | 000,086,016 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsru.dll
[2011.01.28 02:17:00 | 000,086,016 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsptb.dll
[2011.01.28 02:17:00 | 000,081,920 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrssk.dll
[2011.01.28 02:16:59 | 000,135,168 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspt.dll
[2011.01.28 02:16:59 | 000,131,072 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsptb.dll
[2011.01.28 02:16:59 | 000,126,976 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspl.dll
[2011.01.28 02:16:59 | 000,086,016 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrspt.dll
[2011.01.28 02:16:59 | 000,081,920 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrspl.dll
[2011.01.28 02:16:59 | 000,077,824 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsno.dll
[2011.01.28 02:16:58 | 000,131,072 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsnl.dll
[2011.01.28 02:16:58 | 000,122,880 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsno.dll
[2011.01.28 02:16:58 | 000,098,304 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsja.dll
[2011.01.28 02:16:58 | 000,094,208 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsko.dll
[2011.01.28 02:16:58 | 000,081,920 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsnl.dll
[2011.01.28 02:16:58 | 000,057,344 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsja.dll
[2011.01.28 02:16:58 | 000,053,248 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsko.dll
[2011.01.28 02:16:57 | 000,266,240 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshe.dll
[2011.01.28 02:16:57 | 000,135,168 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsit.dll
[2011.01.28 02:16:57 | 000,131,072 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshu.dll
[2011.01.28 02:16:57 | 000,086,016 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsit.dll
[2011.01.28 02:16:57 | 000,081,920 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrshu.dll
[2011.01.28 02:16:57 | 000,069,632 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrshe.dll
[2011.01.28 02:16:56 | 000,135,168 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrses.dll
[2011.01.28 02:16:56 | 000,131,072 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfr.dll
[2011.01.28 02:16:56 | 000,126,976 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfi.dll
[2011.01.28 02:16:56 | 000,086,016 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrses.dll
[2011.01.28 02:16:56 | 000,081,920 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsfr.dll
[2011.01.28 02:16:56 | 000,081,920 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsfi.dll
[2011.01.28 02:16:56 | 000,073,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrseng.dll
[2011.01.28 02:16:55 | 000,139,264 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsel.dll
[2011.01.28 02:16:55 | 000,131,072 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsde.dll
[2011.01.28 02:16:55 | 000,126,976 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsda.dll
[2011.01.28 02:16:55 | 000,122,880 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrseng.dll
[2011.01.28 02:16:55 | 000,090,112 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsel.dll
[2011.01.28 02:16:55 | 000,086,016 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsde.dll
[2011.01.28 02:16:55 | 000,077,824 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsda.dll
[2011.01.28 02:16:55 | 000,073,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrscs.dll
[2011.01.28 02:16:54 | 000,126,976 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrscs.dll
[2011.01.28 02:16:54 | 000,118,784 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsar.dll
[2011.01.28 02:16:54 | 000,073,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsar.dll
[2011.01.28 02:16:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview
[2011.01.28 02:16:53 | 000,364,544 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nwiz.exe
[2011.01.28 02:16:53 | 000,344,138 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvshell.dll
[2011.01.28 02:16:53 | 000,266,240 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dmcpl.exe
[2011.01.28 02:16:53 | 000,106,496 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvtuicpl.cpl
[2011.01.28 02:16:52 | 000,528,456 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nview.dll
[2011.01.28 02:16:52 | 000,118,784 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvqtwk.dll
[2011.01.28 02:16:51 | 001,515,520 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2011.01.28 02:16:50 | 002,904,064 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2011.01.28 02:16:48 | 003,416,141 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2011.01.28 02:16:47 | 000,086,016 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvinstnt.dll
[2011.01.28 02:16:36 | 000,909,501 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2011.01.28 02:13:37 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2011.01.28 02:12:55 | 000,006,144 | R--- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\drivers\viaidexp.sys
[2011.01.28 02:12:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2011.01.28 02:12:38 | 000,003,279 | ---- | C] (VIA Technologies. Inc.) -- C:\WINDOWS\System32\drivers\VIAPFD.SYS
[2011.01.28 02:12:37 | 000,306,688 | ---- | C] (InstallShield Software Corporation) -- C:\WINDOWS\IsUninst.exe
[2011.01.28 02:12:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tata\WINDOWS
[2011.01.28 02:11:07 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2011.01.28 02:11:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tata\Data aplikací\Identities
[2011.01.28 02:10:57 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2011.01.28 02:10:56 | 000,000,000 | R--D | C] -- C:\Documents and Settings\tata\Dokumenty\Obrázky
[2011.01.28 02:10:56 | 000,000,000 | R--D | C] -- C:\Documents and Settings\tata\Dokumenty\Hudba
[2011.01.28 02:10:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tata\Local Settings\Data aplikací\Microsoft
[2011.01.28 02:10:45 | 000,000,000 | --SD | C] -- C:\Documents and Settings\tata\Data aplikací\Microsoft
[2011.01.28 02:10:45 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\tata\SendTo
[2011.01.28 02:10:45 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\tata\Data aplikací
[2011.01.28 02:10:45 | 000,000,000 | R--D | C] -- C:\Documents and Settings\tata\Nabídka Start\Programy\Příslušenství
[2011.01.28 02:10:45 | 000,000,000 | R--D | C] -- C:\Documents and Settings\tata\Nabídka Start\Programy\Po spuštění
[2011.01.28 02:10:45 | 000,000,000 | R--D | C] -- C:\Documents and Settings\tata\Oblíbené položky
[2011.01.28 02:10:45 | 000,000,000 | R--D | C] -- C:\Documents and Settings\tata\Nabídka Start
[2011.01.28 02:10:45 | 000,000,000 | R--D | C] -- C:\Documents and Settings\tata\Dokumenty
[2011.01.28 02:10:45 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\tata\Cookies
[2011.01.28 02:10:45 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\tata\Šablony
[2011.01.28 02:10:45 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\tata\Okolní tiskárny
[2011.01.28 02:10:45 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\tata\Okolní síť
[2011.01.28 02:10:45 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\tata\Local Settings
[2011.01.28 02:10:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tata\Plocha
[2011.01.28 02:08:55 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2011.01.28 02:08:53 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Data aplikací\Microsoft
[2011.01.28 02:08:53 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Data aplikací\Microsoft
[2011.01.28 02:08:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Microsoft
[2011.01.28 02:08:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Microsoft
[2011.01.28 02:07:32 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2011.01.28 02:07:31 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2011.01.28 02:07:31 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2011.01.28 02:07:30 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2011.01.28 02:07:30 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2011.01.28 02:07:30 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2011.01.28 02:07:29 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2011.01.28 02:07:28 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2011.01.28 02:07:27 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll
[2011.01.28 02:07:26 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll
[2011.01.28 02:07:25 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll
[2011.01.28 02:07:25 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2011.01.28 02:07:25 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll
[2011.01.28 02:07:24 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2011.01.28 02:07:24 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2011.01.28 02:07:22 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2011.01.28 02:07:22 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2011.01.28 02:07:21 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2011.01.28 02:07:19 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe
[2011.01.28 02:07:19 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe
[2011.01.28 02:07:19 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2011.01.28 02:07:18 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2011.01.28 02:07:18 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2011.01.28 02:07:17 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2011.01.28 02:07:17 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2011.01.28 02:07:17 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2011.01.28 02:07:15 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll
[2011.01.28 02:07:14 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2011.01.28 02:07:12 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2011.01.28 02:07:11 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll
[2011.01.28 02:07:10 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll
[2011.01.28 02:07:09 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll
[2011.01.28 02:07:08 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll
[2011.01.28 02:07:08 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpapi.dll
[2011.01.28 02:07:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll
[2011.01.28 02:07:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll
[2011.01.28 02:07:07 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2011.01.28 02:07:07 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2011.01.28 02:07:07 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2011.01.28 02:07:07 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2011.01.28 02:07:07 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2011.01.28 02:07:06 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2011.01.28 02:07:06 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2011.01.28 02:07:06 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2011.01.28 02:07:06 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2011.01.28 02:07:06 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2011.01.28 02:07:05 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2011.01.28 02:07:05 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2011.01.28 02:07:05 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2011.01.28 02:07:05 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll
[2011.01.28 02:07:01 | 000,205,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seo.dll
[2011.01.28 02:07:01 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll
[2011.01.28 02:07:00 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2011.01.28 02:06:59 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2011.01.28 02:06:59 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_rwnh.dll
[2011.01.28 02:06:58 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2011.01.28 02:06:57 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2011.01.28 02:06:56 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2011.01.28 02:06:55 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2011.01.28 02:06:54 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2011.01.28 02:06:54 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2011.01.28 02:06:53 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2011.01.28 02:06:51 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2011.01.28 02:06:51 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2011.01.28 02:06:51 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2011.01.28 02:06:50 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2011.01.28 02:06:50 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2011.01.28 02:06:49 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2011.01.28 02:06:49 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2011.01.28 02:06:49 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2011.01.28 02:06:48 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll
[2011.01.28 02:06:48 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll
[2011.01.28 02:06:47 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2011.01.28 02:06:47 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2011.01.28 02:06:47 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2011.01.28 02:06:47 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2011.01.28 02:06:44 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll
[2011.01.28 02:06:42 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll
[2011.01.28 02:06:40 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2011.01.28 02:06:34 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2011.01.28 02:06:34 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2011.01.28 02:06:27 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2011.01.28 02:06:27 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2011.01.28 02:06:26 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll
[2011.01.28 02:06:26 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll
[2011.01.28 02:06:24 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll
[2011.01.28 02:06:22 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2011.01.28 02:06:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll

část3
[2011.01.28 02:06:21 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll
[2011.01.28 02:06:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2011.01.28 02:06:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll
[2011.01.28 02:06:20 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll
[2011.01.28 02:06:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll
[2011.01.28 02:06:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll
[2011.01.28 02:06:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll
[2011.01.28 02:06:19 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2011.01.28 02:06:19 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2011.01.28 02:06:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2011.01.28 02:06:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll
[2011.01.28 02:06:18 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll
[2011.01.28 02:06:18 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll
[2011.01.28 02:06:17 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll
[2011.01.28 02:06:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll
[2011.01.28 02:06:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll
[2011.01.28 02:06:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll
[2011.01.28 02:06:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll
[2011.01.28 02:06:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll
[2011.01.28 02:06:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll
[2011.01.28 02:06:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll
[2011.01.28 02:06:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll
[2011.01.28 02:06:15 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll
[2011.01.28 02:06:14 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll
[2011.01.28 02:06:14 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll
[2011.01.28 02:06:14 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll
[2011.01.28 02:06:13 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2011.01.28 02:06:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll
[2011.01.28 02:06:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll
[2011.01.28 02:06:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll
[2011.01.28 02:06:12 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2011.01.28 02:06:12 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll
[2011.01.28 02:06:11 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll
[2011.01.28 02:06:10 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll
[2011.01.28 02:06:09 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2011.01.28 02:06:09 | 000,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2011.01.28 02:06:08 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2011.01.28 02:06:08 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe
[2011.01.28 02:06:08 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2011.01.28 02:06:08 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2011.01.28 02:06:07 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe
[2011.01.28 02:06:07 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe
[2011.01.28 02:06:07 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe
[2011.01.28 02:06:07 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2011.01.28 02:06:06 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2011.01.28 02:06:06 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2011.01.28 02:06:06 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe
[2011.01.28 02:06:06 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2011.01.28 02:06:06 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2011.01.28 02:06:05 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2011.01.28 02:06:05 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2011.01.28 02:06:05 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2011.01.28 02:06:04 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2011.01.28 02:06:04 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2011.01.28 02:06:04 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2011.01.28 02:06:04 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2011.01.28 02:06:04 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2011.01.28 02:06:03 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe
[2011.01.28 02:06:03 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll
[2011.01.28 02:06:02 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll
[2011.01.28 02:06:02 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll
[2011.01.28 02:05:55 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2011.01.28 02:05:44 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2011.01.28 02:05:41 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2011.01.28 02:05:38 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll
[2011.01.28 02:05:38 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe
[2011.01.28 02:05:37 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll
[2011.01.28 02:05:36 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll
[2011.01.28 02:05:35 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll
[2011.01.28 02:05:35 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2011.01.28 02:05:32 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll
[2011.01.28 02:05:32 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2011.01.28 02:05:30 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2011.01.28 02:05:30 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2011.01.28 02:05:29 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2011.01.28 02:05:29 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2011.01.28 02:05:28 | 000,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll
[2011.01.28 02:05:23 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2011.01.28 02:05:21 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe
[2011.01.28 02:05:21 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2011.01.28 02:05:20 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe
[2011.01.28 02:05:20 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll
[2011.01.28 02:05:20 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll
[2011.01.28 02:05:16 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe
[2011.01.28 02:05:16 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2011.01.28 02:05:16 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2011.01.28 02:05:15 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2011.01.28 02:05:15 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2011.01.28 02:05:15 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2011.01.28 02:05:14 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2011.01.28 02:05:14 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2011.01.28 02:05:13 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2011.01.28 02:05:13 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2011.01.28 02:05:13 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2011.01.28 02:05:13 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2011.01.28 02:05:11 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2011.01.28 02:05:11 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2011.01.28 02:05:11 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2011.01.28 02:05:10 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll
[2011.01.28 02:05:08 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll
[2011.01.28 02:05:08 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll
[2011.01.28 02:05:08 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll
[2011.01.28 02:05:07 | 000,312,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqueue.dll
[2011.01.28 02:05:07 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll
[2011.01.28 02:05:04 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll
[2011.01.28 02:05:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll
[2011.01.28 02:05:04 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll
[2011.01.28 02:04:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll
[2011.01.28 02:04:56 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpsnap.dll
[2011.01.28 02:04:55 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpadm.dll
[2011.01.28 02:04:48 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll
[2011.01.28 02:04:48 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe
[2011.01.28 02:04:47 | 000,171,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll
[2011.01.28 02:04:47 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe
[2011.01.28 02:04:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll
[2011.01.28 02:04:46 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll
[2011.01.28 02:04:40 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx
[2011.01.28 02:04:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2011.01.28 02:04:34 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2011.01.28 02:04:34 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2011.01.28 02:03:33 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll
[2011.01.28 02:02:32 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2011.01.28 02:02:17 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2011.01.28 02:02:17 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2011.01.28 02:01:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2011.01.28 02:01:12 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll
[2011.01.28 02:01:12 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll
[2011.01.28 02:01:12 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll
[2011.01.28 02:01:11 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe
[2011.01.28 02:01:11 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll
[2011.01.28 02:01:11 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe
[2011.01.28 02:01:11 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brpinfo.dll
[2011.01.28 02:01:11 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atrace.dll
[2011.01.28 02:01:11 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll
[2011.01.28 02:01:11 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hcappres.dll
[2011.01.28 02:01:03 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe
[2011.01.28 02:01:02 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll
[2011.01.28 02:01:02 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll
[2011.01.28 02:01:02 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmevtmsg.dll
[2011.01.28 02:01:01 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe
[2011.01.28 02:01:01 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe
[2011.01.28 02:01:01 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe
[2011.01.28 02:01:00 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\acctres.dll
[2011.01.28 02:01:00 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll
[2011.01.28 02:01:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2011.01.28 02:00:59 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll
[2011.01.28 02:00:56 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll
[2011.01.28 02:00:56 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll
[2011.01.28 02:00:56 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll
[2011.01.28 02:00:56 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2011.01.28 02:00:55 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll
[2011.01.28 02:00:55 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trialoc.dll
[2011.01.28 02:00:55 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll
[2011.01.28 02:00:55 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icfgnt5.dll
[2011.01.28 02:00:54 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoap1.dll
[2011.01.28 02:00:54 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe
[2011.01.28 02:00:54 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwres.dll
[2011.01.28 02:00:54 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wisc10.dll
[2011.01.28 02:00:54 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoapr.dll
[2011.01.28 02:00:54 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe
[2011.01.28 02:00:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2011.01.28 02:00:52 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieinfo5.ocx
[2011.01.28 02:00:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2011.01.28 02:00:48 | 000,520,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpvis.dll
[2011.01.28 02:00:48 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll
[2011.01.28 02:00:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2011.01.28 02:00:47 | 000,323,647 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmmres.dll
[2011.01.28 02:00:47 | 000,163,897 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmmutil.dll
[2011.01.28 02:00:47 | 000,110,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmmfilt.dll
[2011.01.28 02:00:47 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2011.01.28 02:00:42 | 000,240,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll
[2011.01.28 02:00:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2011.01.28 02:00:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\PCHealth
[2011.01.28 02:00:41 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll
[2011.01.28 02:00:41 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll
[2011.01.28 02:00:41 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll
[2011.01.28 02:00:41 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll
[2011.01.28 02:00:39 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll
[2011.01.28 02:00:39 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll
[2011.01.28 02:00:39 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2011.01.28 02:00:37 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe
[2011.01.28 02:00:37 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2011.01.28 02:00:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2011.01.28 02:00:32 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2011.01.28 02:00:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Obrázky
[2011.01.28 02:00:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Hudba
[2011.01.28 01:59:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Hry
[2011.01.28 01:59:36 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2011.01.28 01:59:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2011.01.28 01:59:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Nástroje pro správu
[2011.01.28 01:59:22 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2011.01.28 01:59:22 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services
[2011.01.28 01:59:21 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2011.01.28 01:59:14 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2011.01.28 01:59:12 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll
[2011.01.28 01:59:12 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll
[2011.01.28 01:59:12 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe
[2011.01.28 01:59:11 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll
[2011.01.28 01:59:11 | 000,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll
[2011.01.28 01:59:11 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll
[2011.01.28 01:59:11 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll
[2011.01.28 01:59:11 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll
[2011.01.28 01:59:11 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe
[2011.01.28 01:59:11 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe
[2011.01.28 01:59:11 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe
[2011.01.28 01:59:11 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe
[2011.01.28 01:59:11 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll
[2011.01.28 01:59:10 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll
[2011.01.28 01:59:10 | 001,040,467 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll
[2011.01.28 01:59:10 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll
[2011.01.28 01:59:10 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll
[2011.01.28 01:59:10 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll
[2011.01.28 01:59:10 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll
[2011.01.28 01:59:10 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll
[2011.01.28 01:59:10 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll
[2011.01.28 01:59:09 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll
[2011.01.28 01:59:09 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe
[2011.01.28 01:59:09 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll
[2011.01.28 01:59:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe
[2011.01.28 01:59:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe
[2011.01.28 01:59:09 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2011.01.28 01:59:00 | 000,351,232 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll
[2011.01.28 01:59:00 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe
[2011.01.28 01:59:00 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe
[2011.01.28 01:59:00 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe
[2011.01.28 01:59:00 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe
[2011.01.28 01:59:00 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl
[2011.01.28 01:58:59 | 000,228,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll
[2011.01.28 01:58:59 | 000,228,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll
[2011.01.28 01:58:59 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll
[2011.01.28 01:58:59 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll
[2011.01.28 01:58:59 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll
[2011.01.28 01:58:59 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe
[2011.01.28 01:58:59 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe
[2011.01.28 01:58:59 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll
[2011.01.28 01:58:59 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll
[2011.01.28 01:58:59 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll
[2011.01.28 01:58:53 | 000,670,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll
[2011.01.28 01:58:53 | 000,670,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll
[2011.01.28 01:58:52 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe
[2011.01.28 01:58:52 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe
[2011.01.28 01:58:52 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe
[2011.01.28 01:58:52 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe
[2011.01.28 01:58:52 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe
[2011.01.28 01:58:52 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe
[2011.01.28 01:58:52 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe
[2011.01.28 01:58:52 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe
[2011.01.28 01:58:51 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe
[2011.01.28 01:58:51 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe
[2011.01.28 01:58:51 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe
[2011.01.28 01:58:51 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe
[2011.01.28 01:58:51 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe
[2011.01.28 01:58:51 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe
[2011.01.28 01:58:51 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe
[2011.01.28 01:58:51 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe
[2011.01.28 01:58:51 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe
[2011.01.28 01:58:51 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe
[2011.01.28 01:58:51 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe
[2011.01.28 01:58:51 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe
[2011.01.28 01:58:51 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe
[2011.01.28 01:58:50 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe
[2011.01.28 01:58:50 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe
[2011.01.28 01:58:50 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe
[2011.01.28 01:58:50 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe
[2011.01.28 01:58:50 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe
[2011.01.28 01:58:50 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe
[2011.01.28 01:58:50 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe
[2011.01.28 01:58:50 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe
[2011.01.28 01:58:50 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe
[2011.01.28 01:58:50 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe
[2011.01.28 01:58:50 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe
[2011.01.28 01:58:50 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll
[2011.01.28 01:58:50 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll
[2011.01.28 01:58:50 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe
[2011.01.28 01:58:50 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe
[2011.01.28 01:58:50 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe
[2011.01.28 01:58:50 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe
[2011.01.28 01:58:50 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe
[2011.01.28 01:58:50 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe
[2011.01.28 01:58:50 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll
[2011.01.28 01:58:50 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll
[2011.01.28 01:58:49 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll
[2011.01.28 01:58:49 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll
[2011.01.28 01:58:49 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll
[2011.01.28 01:58:49 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll
[2011.01.28 01:58:49 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll
[2011.01.28 01:58:48 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll
[2011.01.28 01:58:48 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll
[2011.01.28 01:58:48 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb
[2011.01.28 01:58:48 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe
[2011.01.28 01:58:48 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll
[2011.01.28 01:58:47 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll
[2011.01.28 01:58:47 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll
[2011.01.28 01:58:47 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll
[2011.01.28 01:58:47 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll
[2011.01.28 01:58:47 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll
[2011.01.28 01:58:47 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll
[2011.01.28 01:58:47 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll
[2011.01.28 01:58:47 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll
[2011.01.28 01:58:47 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll
[2011.01.28 01:58:46 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll
[2011.01.28 01:58:42 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll
[2011.01.28 01:58:42 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll
[2011.01.28 01:58:42 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll
[2011.01.28 01:58:41 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll
[2011.01.28 01:58:41 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll
[2011.01.28 01:58:41 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb
[2011.01.28 01:58:41 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll
[2011.01.28 01:58:41 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb
[2011.01.28 01:58:41 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll
[2011.01.28 01:58:41 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe
[2011.01.28 01:58:41 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe
[2011.01.28 01:58:41 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll
[2011.01.28 01:58:40 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll
[2011.01.28 01:58:40 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll
[2011.01.28 01:58:39 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll
[2011.01.28 01:58:39 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll
[2011.01.28 01:58:39 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll
[2011.01.28 01:58:39 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll
[2011.01.28 01:58:38 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll
[2011.01.28 01:58:33 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe
[2011.01.28 01:58:33 | 000,343,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe
[2011.01.28 01:58:33 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe
[2011.01.28 01:58:33 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe
[2011.01.28 01:58:33 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2011.01.28 01:58:33 | 000,000,000 | ---D | C] -- C:\Program Files\MSN
[2011.01.28 01:58:32 | 001,929,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll
[2011.01.28 01:58:32 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll
[2011.01.28 01:58:32 | 000,053,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe
[2011.01.28 01:58:31 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll
[2011.01.28 01:58:31 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll
[2011.01.28 01:58:31 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe
[2011.01.28 01:58:31 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscupgrd.exe
[2011.01.28 01:58:31 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll
[2011.01.28 01:58:31 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe
[2011.01.28 01:58:30 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll
[2011.01.28 01:58:30 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll
[2011.01.28 01:58:30 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll
[2011.01.28 01:58:30 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll
[2011.01.28 01:58:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2011.01.28 01:58:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2011.01.28 01:58:29 | 001,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll
[2011.01.28 01:58:26 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll
[2011.01.28 01:57:58 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Příslušenství
[2011.01.21 15:44:07 | 000,440,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shimgvw.dll
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011.02.12 17:22:20 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\tata\Plocha\OTL.exe
[2011.02.12 17:19:37 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.02.12 17:19:35 | 267,964,416 | -HS- | M] () -- C:\hiberfil.sys
[2011.02.11 16:32:04 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011.02.11 16:07:32 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.02.11 15:54:18 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2011.02.09 00:34:57 | 000,311,740 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011.02.09 00:34:57 | 000,040,128 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011.02.09 00:34:56 | 000,309,990 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2011.02.09 00:34:56 | 000,046,196 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2011.02.09 00:30:00 | 000,095,072 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.02.08 23:57:37 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2011.02.08 23:32:12 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak
[2011.02.02 14:39:06 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2011.02.02 13:51:23 | 000,250,576 | RHS- | M] () -- C:\ntldr
[2011.02.02 13:20:55 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2011.02.02 13:20:32 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
[2011.02.02 11:52:17 | 000,114,243 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat
[2011.02.02 11:52:16 | 000,097,859 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat
[2011.02.02 11:38:20 | 000,604,140 | -HS- | M] () -- C:\WINDOWS\System32\drivers\ISwift3.dat
[2011.01.28 02:54:12 | 000,296,976 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys
[2011.01.28 02:43:54 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2011.01.28 02:36:56 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2011.01.28 02:20:54 | 000,000,129 | ---- | M] () -- C:\Documents and Settings\tata\Plocha\Zástupce - Místní disk (D).lnk
[2011.01.28 02:20:52 | 000,000,293 | ---- | M] () -- C:\Documents and Settings\tata\Plocha\Zástupce - Místní disk (C).lnk
[2011.01.28 02:16:28 | 000,000,026 | ---- | M] () -- C:\WINDOWS\tsctv.ini
[2011.01.28 02:12:24 | 000,000,017 | ---- | M] () -- C:\WINDOWS\System32\auto.ini
[2011.01.28 02:11:05 | 000,025,065 | ---- | M] () -- C:\WINDOWS\System32\wmpscheme.xml
[2011.01.28 02:08:48 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2011.01.28 02:07:46 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2011.01.28 02:03:47 | 000,002,504 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011.01.28 02:03:47 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2011.01.28 02:03:47 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2011.01.28 02:03:47 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2011.01.28 02:03:47 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2011.01.28 02:03:43 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2011.01.28 02:03:43 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2011.01.28 02:03:41 | 000,299,552 | ---- | M] () -- C:\WINDOWS\WMSysPrx.prx
[2011.01.28 02:03:33 | 000,004,265 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2011.01.28 01:59:46 | 000,021,812 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2011.01.21 15:44:07 | 008,466,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shell32.dll
[2011.01.21 15:44:07 | 000,440,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shimgvw.dll
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.02.11 15:54:18 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2011.02.11 15:54:14 | 000,261,312 | RHS- | C] () -- C:\cmldr
[2011.02.11 15:53:04 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2011.02.11 15:53:04 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2011.02.11 15:53:04 | 000,089,088 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2011.02.11 15:53:04 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2011.02.11 15:53:04 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2011.02.08 23:57:36 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2011.02.08 23:32:14 | 000,013,646 | ---- | C] () -- C:\WINDOWS\System32\wpa.bak
[2011.02.02 14:18:26 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2011.02.02 14:18:26 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2011.02.02 14:18:25 | 000,001,746 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2011.02.02 14:18:25 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2011.02.02 14:18:23 | 000,674,168 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2011.02.02 14:18:23 | 000,069,570 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm
[2011.02.02 14:18:23 | 000,028,164 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm
[2011.02.02 14:18:22 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2011.02.02 14:18:22 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2011.02.02 14:18:22 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2011.02.02 14:18:21 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2011.02.02 14:18:21 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2011.02.02 14:18:21 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2011.02.02 14:18:21 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2011.02.02 14:18:21 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2011.02.02 14:18:21 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2011.02.02 14:18:20 | 000,058,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf
[2011.02.02 14:18:19 | 000,013,540 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2011.02.02 14:18:18 | 000,034,548 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2011.02.02 14:18:17 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2011.02.02 14:18:17 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2011.02.02 14:18:17 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2011.02.02 14:18:17 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2011.02.02 14:18:17 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2011.02.02 14:18:17 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2011.02.02 14:18:17 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2011.02.02 14:18:17 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2011.02.02 14:18:17 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2011.02.02 14:18:16 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2011.02.02 14:18:16 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2011.02.02 14:18:16 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2011.02.02 14:18:15 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2011.02.02 14:18:15 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2011.02.02 14:18:15 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2011.02.02 14:18:15 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2011.02.02 14:18:14 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2011.02.02 14:18:14 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2011.02.02 14:18:14 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2011.02.02 14:18:14 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2011.02.02 14:18:14 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2011.02.02 14:18:14 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2011.02.02 14:18:13 | 000,001,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2011.02.02 14:18:13 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2011.02.02 14:18:12 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2011.02.02 14:18:12 | 000,066,170 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz
[2011.02.02 14:18:11 | 000,086,446 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2011.02.02 14:18:11 | 000,001,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl
[2011.02.02 14:18:11 | 000,001,480 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl
[2011.02.02 14:18:11 | 000,001,479 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl
[2011.02.02 14:18:11 | 000,001,462 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl
[2011.02.02 14:18:11 | 000,001,059 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl
[2011.02.02 14:18:11 | 000,001,042 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl
[2011.02.02 14:18:11 | 000,001,034 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl
[2011.02.02 14:18:11 | 000,000,777 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl
[2011.02.02 14:18:11 | 000,000,722 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl
[2011.02.02 14:18:10 | 000,001,465 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl
[2011.02.02 14:18:10 | 000,001,263 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl
[2011.02.02 14:18:10 | 000,000,809 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl
[2011.02.02 14:18:10 | 000,000,806 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl
[2011.02.02 14:18:10 | 000,000,783 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl
[2011.02.02 14:18:10 | 000,000,774 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl
[2011.02.02 14:18:09 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2011.02.02 14:18:09 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2011.02.02 14:18:08 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2011.02.02 14:18:05 | 000,036,870 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2011.02.02 14:18:05 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2011.02.02 14:18:05 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2011.02.02 14:18:03 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2011.02.02 14:18:02 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2011.02.02 14:17:58 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2011.02.02 14:17:58 | 000,184,130 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz
[2011.02.02 14:17:58 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2011.02.02 14:17:58 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2011.02.02 14:17:58 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2011.02.02 14:17:57 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2011.02.02 14:17:57 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2011.02.02 14:17:57 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2011.02.02 14:17:57 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2011.02.02 14:17:57 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2011.02.02 14:17:55 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2011.02.02 13:20:55 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2011.02.02 13:20:32 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
[2011.02.02 11:38:20 | 000,604,140 | -HS- | C] () -- C:\WINDOWS\System32\drivers\ISwift3.dat
[2011.01.28 02:56:12 | 000,114,243 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat
[2011.01.28 02:56:12 | 000,097,859 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat
[2011.01.28 02:50:33 | 000,004,265 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011.01.28 02:50:31 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2011.01.28 02:50:31 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2011.01.28 02:50:30 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2011.01.28 02:50:30 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2011.01.28 02:50:13 | 000,001,592 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT

poslední část logu OTL.tx
[2011.01.28 02:49:27 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2011.01.28 02:49:27 | 000,007,407 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2011.01.28 02:49:26 | 000,809,394 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2011.01.28 02:49:26 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2011.01.28 02:49:26 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2011.01.28 02:49:26 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2011.01.28 02:48:44 | 000,095,072 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.01.28 02:47:50 | 000,000,327 | RHS- | C] () -- C:\boot.ini
[2011.01.28 02:47:47 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2011.01.28 02:43:42 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2011.01.28 02:42:37 | 000,239,616 | ---- | C] () -- C:\WINDOWS\System32\wstrenderer.ax
[2011.01.28 02:42:37 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\wstpager.ax
[2011.01.28 02:42:37 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\vbicodec.ax
[2011.01.28 02:42:32 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2011.01.28 02:42:31 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2011.01.28 02:42:30 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2011.01.28 02:42:24 | 000,118,272 | ---- | C] () -- C:\WINDOWS\System32\mpeg2data.ax
[2011.01.28 02:20:54 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\tata\Plocha\Zástupce - Místní disk (D).lnk
[2011.01.28 02:20:52 | 000,000,293 | ---- | C] () -- C:\Documents and Settings\tata\Plocha\Zástupce - Místní disk (C).lnk
[2011.01.28 02:16:28 | 000,000,026 | ---- | C] () -- C:\WINDOWS\tsctv.ini
[2011.01.28 02:12:27 | 000,002,238 | ---- | C] () -- C:\WINDOWS\System32\Autorun.ico
[2011.01.28 02:12:26 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\Autorun.exe
[2011.01.28 02:12:24 | 000,000,017 | ---- | C] () -- C:\WINDOWS\System32\auto.ini
[2011.01.28 02:11:04 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\tata\Nabídka Start\Programy\Outlook Express.lnk
[2011.01.28 02:10:57 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\tata\Nabídka Start\Programy\Internet Explorer.lnk
[2011.01.28 02:10:45 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\tata\Nabídka Start\Programy\Vzdálená pomoc.lnk
[2011.01.28 02:10:45 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\tata\Nabídka Start\Programy\Windows Media Player.lnk
[2011.01.28 02:10:43 | 267,964,416 | -HS- | C] () -- C:\hiberfil.sys
[2011.01.28 02:08:48 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2011.01.28 02:07:46 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011.01.28 02:06:49 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2011.01.28 02:06:22 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2011.01.28 02:06:08 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2011.01.28 02:06:07 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2011.01.28 02:06:04 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2011.01.28 02:05:49 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2011.01.28 02:05:41 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2011.01.28 02:05:15 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2011.01.28 02:03:47 | 000,002,504 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2011.01.28 02:03:47 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2011.01.28 02:03:47 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2011.01.28 02:03:47 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2011.01.28 02:03:47 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2011.01.28 02:03:44 | 000,025,065 | ---- | C] () -- C:\WINDOWS\System32\wmpscheme.xml
[2011.01.28 02:03:43 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2011.01.28 02:03:43 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2011.01.28 02:03:41 | 000,299,552 | ---- | C] () -- C:\WINDOWS\WMSysPrx.prx
[2011.01.28 02:01:47 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2011.01.28 02:01:09 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2011.01.28 02:01:09 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2011.01.28 02:01:03 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2011.01.28 01:59:50 | 000,000,863 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Windows Messenger.lnk
[2011.01.28 01:59:47 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2011.01.28 01:59:22 | 000,001,954 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\MSN Explorer.lnk
[2011.01.28 01:58:54 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prérijní vítr.bmp
[2011.01.28 01:58:54 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Omítka Santa Fe.bmp
[2011.01.28 01:58:54 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Řeka Sumida.bmp
[2011.01.28 01:58:54 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Zelený kámen.bmp
[2011.01.28 01:58:54 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp
[2011.01.28 01:58:54 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybách.bmp
[2011.01.28 01:58:54 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Zrnko kávy.bmp
[2011.01.28 01:58:54 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Textura peří.bmp
[2011.01.28 01:58:54 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp
[2011.01.28 01:58:53 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Mýdlové bubliny.bmp
[2011.01.28 01:58:53 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Modrá krajka 16.bmp
[2011.01.28 01:58:51 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2011.01.28 01:58:51 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2011.01.28 01:58:49 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2011.01.28 01:58:39 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc

========== LOP Check ==========

[2011.02.09 15:50:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP

========== Purity Check ==========

========== Custom Scans ==========

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >

< c:\windows\*.* /U >
[4 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2011.02.07 23:05:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tata\Data aplikací\Adobe
[2011.01.28 02:11:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tata\Data aplikací\Identities
[2011.02.07 23:05:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tata\Data aplikací\Macromedia
[2011.02.12 10:31:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tata\Data aplikací\Malwarebytes
[2011.02.08 23:48:12 | 000,000,000 | --SD | M] -- C:\Documents and Settings\tata\Data aplikací\Microsoft
[2011.02.02 13:20:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tata\Data aplikací\Mozilla

< %APPDATA%\*.exe /s >

< MD5 for: AGP440.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:AGP440.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ERDNT\cache\agp440.sys
[2008.04.14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
[2004.08.03 23:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\$NtServicePackUninstall$\agp440.sys

< MD5 for: ATAPI.SYS >
[2003.04.16 13:00:00 | 010,174,968 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp1.cab:atapi.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2003.04.16 13:00:00 | 000,086,912 | ---- | M] (Microsoft Corporation) MD5=95B858761A00E1D4F81F79A0DA019ACA -- C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys

< MD5 for: CDROM.SYS >
[2003.04.16 13:00:00 | 010,174,968 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp1.cab:cdrom.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2004.08.17 15:49:04 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 08:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ERDNT\cache\cryptsvc.dll
[2008.04.14 08:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 08:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll

< MD5 for: EVENTLOG.DLL >
[2008.04.14 08:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2008.04.14 08:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 08:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2004.08.17 15:49:08 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004.08.17 15:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: HAL.DLL >
[2003.04.16 13:00:00 | 010,174,968 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp1.cab:hal.dll
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2004.08.03 22:59:08 | 000,081,280 | ---- | M] (Microsoft Corporation) MD5=4AF58CA3425F28FC5E3DB47DC122F722 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll
[2008.04.14 00:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008.04.14 00:01:28 | 000,081,152 | ---- | M] (Microsoft Corporation) MD5=C4BA879B581BE34536FE01F79AC28631 -- C:\WINDOWS\system32\HAL.DLL

< MD5 for: CHANGER.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:Changer.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.14 00:11:00 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
[2004.08.03 23:00:14 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=DAF1A8193B6CAF0FB858CADCC5C4AF4A -- C:\WINDOWS\$NtServicePackUninstall$\changer.sys

< MD5 for: ISAPNP.SYS >
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2003.04.16 13:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2008.04.14 07:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 07:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys

< MD5 for: LSASS.EXE >
[2004.08.17 15:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 08:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ERDNT\cache\lsass.exe
[2008.04.14 08:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 08:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2008.04.14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004.08.03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

< MD5 for: NETLOGON.DLL >
[2004.08.17 15:49:14 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 08:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2008.04.14 08:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 08:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: SCECLI.DLL >
[2004.08.17 15:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SMSS.EXE >
[2004.08.17 15:49:28 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2004.08.17 15:49:28 | 000,164,864 | ---- | M] (Microsoft Corporation) MD5=3C100B7FDB179B63829103DF6541337F -- C:\cmdcons\SYSTEM32\SMSS.EXE
[2008.04.14 08:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 08:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe

< MD5 for: SVCHOST.EXE >
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.17 15:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\ERDNT\cache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\SoftwareDistribution\Download\1d2803a1f84cfd41d61e509943d67213\sp3gdr\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2004.08.03 23:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\SoftwareDistribution\Download\1d2803a1f84cfd41d61e509943d67213\sp3qfe\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.17 15:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004.08.17 15:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< MD5 for: WS2_32.DLL >
[2004.08.17 15:49:22 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 08:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ERDNT\cache\ws2_32.dll
[2008.04.14 08:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 08:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2008.04.14 08:51:42 | 000,380,445 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\expsrv.dll
[2003.04.16 13:00:00 | 001,355,776 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\msvbvm50.dll
[2008.04.14 08:51:50 | 001,384,479 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\msvbvm60.dll
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2011.01.28 02:47:49 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2011.01.28 02:47:49 | 000,630,784 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2011.01.28 02:47:49 | 000,389,120 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >
[2008.04.14 08:51:42 | 000,380,445 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\expsrv.dll
[2003.04.16 13:00:00 | 001,355,776 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\msvbvm50.dll
[2008.04.14 08:51:50 | 001,384,479 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\msvbvm60.dll
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2011.02.11 16:07:32 | 000,013,646 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

========== Alternate Data Streams ==========

@Alternate Data Stream - 144 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0B4227B4

< End of report >

první log gmer
GMER 1.0.15.15530 - http://www.gmer.net
Rootkit quick scan 2011-02-12 17:46:27
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 WDC_WD200BB-75DEA0 rev.05.03E05
Running: gmer.exe; Driver: C:\DOCUME~1\tata\LOCALS~1\Temp\afryikoc.sys

---- System - GMER 1.0.15 ----

SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwEnumerateKey [0xF3E2EE3A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwEnumerateValueKey [0xF3E2EEE4]

Code \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) FsRtlCheckLockForReadAccess
Code \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) IoIsOperationSynchronous

---- Devices - GMER 1.0.15 ----

AttachedDevice \Driver\Tcpip \Device\Ip kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
AttachedDevice \Driver\Tcpip \Device\Tcp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
AttachedDevice \Driver\Tcpip \Device\Udp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
AttachedDevice \Driver\Tcpip \Device\RawIp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)

---- EOF - GMER 1.0.15 ----

druhý log gmer
GMER 1.0.15.15530 - http://www.gmer.net
Rootkit scan 2011-02-12 18:29:22
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 WDC_WD200BB-75DEA0 rev.05.03E05
Running: gmer.exe; Driver: C:\DOCUME~1\tata\LOCALS~1\Temp\afryikoc.sys

---- System - GMER 1.0.15 ----

SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwAdjustPrivilegesToken [0xF3E2F36E]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwClose [0xF3E2FA86]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwConnectPort [0xF3E3060C]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateEvent [0xF3E30B40]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateFile [0xF3E2FD78]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateKey [0xF3E2E460]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateMutant [0xF3E30A18]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateNamedPipeFile [0xF3E2DD0A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreatePort [0xF3E308D4]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateSection [0xF3E2F102]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateSemaphore [0xF3E30C72]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateSymbolicLinkObject [0xF3E3240E]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateThread [0xF3E2F886]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateWaitablePort [0xF3E30976]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwDeleteKey [0xF3E2EA20]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwDeleteValueKey [0xF3E2ECF8]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwDeviceIoControlFile [0xF3E3021C]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwDuplicateObject [0xF3E32980]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwEnumerateKey [0xF3E2EE3A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwEnumerateValueKey [0xF3E2EEE4]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwFsControlFile [0xF3E30016]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwLoadDriver [0xF3E31EA6]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwLoadKey [0xF3E2E43C]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwLoadKey2 [0xF3E2E44E]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwNotifyChangeKey [0xF3E2F030]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenEvent [0xF3E30BE2]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenFile [0xF3E2FB08]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenKey [0xF3E2E604]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenMutant [0xF3E30AB0]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenProcess [0xF3E2F56E]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenSection [0xF3E32438]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenSemaphore [0xF3E30D14]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenThread [0xF3E2F492]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQueryKey [0xF3E2EF8E]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQueryMultipleValueKey [0xF3E2EBB6]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQueryValueKey [0xF3E2E8BC]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQueueApcThread [0xF3E32128]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwRenameKey [0xF3E2EB34]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwReplaceKey [0xF3E2E0C2]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwReplyPort [0xF3E3109E]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwReplyWaitReceivePort [0xF3E30F64]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwRequestWaitReplyPort [0xF3E31C30]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwRestoreKey [0xF3E2E224]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwResumeThread [0xF3E32860]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSaveKey [0xF3E2DEC4]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSecureConnectPort [0xF3E30312]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSetContextThread [0xF3E2F984]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSetInformationToken [0xF3E315F2]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSetSecurityObject [0xF3E31FA0]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSetSystemInformation [0xF3E324C2]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSetValueKey [0xF3E2E744]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSuspendProcess [0xF3E325A6]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSuspendThread [0xF3E326D2]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSystemDebugControl [0xF3E31DD2]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwTerminateProcess [0xF3E2F6EA]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwTerminateThread [0xF3E2F63C]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwWriteVirtualMemory [0xF3E2F7C8]

Code \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) FsRtlCheckLockForReadAccess
Code \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) IoIsOperationSynchronous

---- Kernel code sections - GMER 1.0.15 ----

.text ntoskrnl.exe!_abnormal_termination + 114 804E2780 16 Bytes [02, F1, E2, F3, 72, 0C, E3, ...]
.text ntoskrnl.exe!_abnormal_termination + 148 804E27B4 4 Bytes JMP B05BF3E2
.text ntoskrnl.exe!_abnormal_termination + 1D0 804E283C 12 Bytes [A6, 1E, E3, F3, 3C, E4, E2, ...]
.text ntoskrnl.exe!_abnormal_termination + 310 804E297C 4 Bytes CALL 934F1D63
.text ntoskrnl.exe!_abnormal_termination + 34C 804E29B8 16 Bytes [34, EB, E2, F3, C2, E0, E2, ...]
.text ...
.text ntoskrnl.exe!IoIsOperationSynchronous 804E876A 5 Bytes JMP F3E247DE \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab)
.text ntoskrnl.exe!FsRtlCheckLockForReadAccess 80512959 5 Bytes JMP F3E24424 \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab)

---- User code sections - GMER 1.0.15 ----

? C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[132] C:\WINDOWS\system32\ntdll.dll time/date stamp mismatch;
? C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[132] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch;
.text C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[132] USER32.dll!AlignRects + FFFA5598 7E362A78 4 Bytes [70, 11, 32, 6D]
? C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[444] C:\WINDOWS\system32\ntdll.dll time/date stamp mismatch;
? C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[444] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch;
.text C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[444] USER32.dll!AlignRects + FFFA5598 7E362A78 4 Bytes [70, 11, 32, 6D]

---- Kernel IAT/EAT - GMER 1.0.15 ----

IAT \SystemRoot\System32\DRIVERS\tcpip.sys[ntoskrnl.exe!IoCreateDevice] [F9253C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\DRIVERS\tcpip.sys[TDI.SYS!TdiRegisterDeviceObject] [F9253D50] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\DRIVERS\netbt.sys[ntoskrnl.exe!IoCreateDevice] [F9253C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\DRIVERS\netbt.sys[TDI.SYS!TdiRegisterDeviceObject] [F9253D50] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\drivers\afd.sys[ntoskrnl.exe!IoCreateDevice] [F9253C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\DRIVERS\netbios.sys[ntoskrnl.exe!IoCreateDevice] [F9253C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\DRIVERS\rdbss.sys[ntoskrnl.exe!IoCreateDevice] [F9253C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\DRIVERS\mrxsmb.sys[ntoskrnl.exe!IoCreateDevice] [F9253C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\Drivers\Fips.SYS[ntoskrnl.exe!IoCreateDevice] [F9253C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\DRIVERS\ipnat.sys[ntoskrnl.exe!IoCreateDevice] [F9253C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\DRIVERS\wanarp.sys[ntoskrnl.exe!IoCreateDevice] [F9253C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\Drivers\Cdfs.SYS[ntoskrnl.exe!IoCreateDevice] [F9253C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\drivers\wdmaud.sys[ntoskrnl.exe!IoCreateDevice] [F9253C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\drivers\sysaudio.sys[ntoskrnl.exe!IoCreateDevice] [F9253C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\DRIVERS\mrxdav.sys[ntoskrnl.exe!IoCreateDevice] [F9253C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\DRIVERS\srv.sys[ntoskrnl.exe!IoCreateDevice] [F9253C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\Drivers\HTTP.sys[ntoskrnl.exe!IoCreateDevice] [F9253C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)

---- Devices - GMER 1.0.15 ----

AttachedDevice \Driver\Tcpip \Device\Ip kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
AttachedDevice \Driver\Tcpip \Device\Tcp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
AttachedDevice \Driver\Tcpip \Device\Udp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
AttachedDevice \Driver\Tcpip \Device\RawIp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)

---- EOF - GMER 1.0.15 ----

Prosím odstrante logy z citace i code

Logy jsem upravil.

VIRY.CZ

sekaní počítače

sekaní počítače

Re: sekaní počítače

Re: sekaní počítače

Re: sekaní počítače

Re: sekaní počítače

Re: sekaní počítače

Re: sekaní počítače

Re: sekaní počítače

Re: sekaní počítače

Re: sekaní počítače

Re: sekaní počítače

Re: sekaní počítače

Re: sekaní počítače

Re: sekaní počítače

Re: sekaní počítače