Dobrý den,
mám problém s externím diskem. Ze všech složek se vytvořili zástupci a nejdou otevřít.
Při pokusu o otevření se objeví: Systém Windows nemůže najít položku G:\RECYCLER\f4448e25.exe. Ujistěte se, zda je název zadán správně, a akci opakujte.
Předem děkuji za pomoc či rady jak tento problém vyřešit.
Přikládám UsbFix:
############################## | UsbFix 7.014 | [Deletion]
User: XXX (Administrator) # THORVALD [Hewlett-Packard HP EliteBook 8440p]
Updated 24/06/10 by El Desaparecido / C_XX
Started at 21:37:31 | 20/06/2011
Website: http://pagesperso-orange.fr/NosTools/index.html
Contact: FindyKill.Contact@gmail.com
CPU: Intel(R) Core(TM) i5 CPU M 520 @ 2.40GHz
CPU 2: Intel(R) Core(TM) i5 CPU M 520 @ 2.40GHz
Microsoft Windows 7 Professional (6.1.7600 32-Bit) #
Internet Explorer 8.0.7600.16385
Windows Firewall: Enabled
RAM -> 2991 Mb
C:\ (%systemdrive%) -> Fixed drive # 216 Gb (135 Mb free - 63%) [] # NTFS
D:\ -> Fixed drive # 15 Gb (4 Mb free - 24%) [HP_RECOVERY] # NTFS
E:\ -> Fixed drive # 2 Gb (1 Mb free - 73%) [HP_TOOLS] # FAT32
F:\ -> CD-ROM
G:\ -> Fixed drive # 466 Gb (22 Mb free - 5%) [VERBATIM] # FAT32
################## | Files # Infected Folders |
Not deleted ! F:\Autorun.inf
################## | Registry |
################## | Mountpoints2 |
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{92c97fef-8d3c-11e0-9ebe-806e6f6e6963}
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{9db8ff81-8d25-11e0-8577-cc52af038443}
################## | Listing |
[20/06/2011 - 21:44:44 | SHD ] C:\$Recycle.Bin
[03/06/2011 - 20:25:49 | D ] C:\Autodesk
[10/06/2009 - 23:42:20 | A | 24] C:\autoexec.bat
[20/06/2011 - 17:24:31 | SHD ] C:\Config.Msi
[10/06/2009 - 23:42:20 | A | 10] C:\config.sys
[14/07/2009 - 06:53:55 | SHD ] C:\Documents and Settings
[02/06/2011 - 21:35:40 | D ] C:\Firefox
[02/06/2011 - 22:54:37 | D ] C:\Games
[20/06/2011 - 17:24:32 | ASH | 3136688128] C:\hiberfil.sys
[02/06/2011 - 18:36:57 | D ] C:\hp
[10/06/2011 - 17:15:33 | A | 186] C:\hpqlb.log
[02/06/2011 - 17:06:02 | D ] C:\Intel
[03/06/2011 - 13:24:40 | D ] C:\MITSI 2012 Temporary Files
[03/06/2011 - 19:09:27 | D ] C:\NVIDIA
[20/06/2011 - 17:24:40 | ASH | 3136688128] C:\pagefile.sys
[14/07/2009 - 04:37:05 | D ] C:\PerfLogs
[20/06/2011 - 17:33:21 | RD ] C:\Program Files
[17/06/2011 - 12:31:02 | HD ] C:\ProgramData
[02/06/2011 - 16:46:41 | SHD ] C:\Recovery
[17/06/2011 - 12:29:48 | D ] C:\SWSetup
[20/06/2011 - 20:11:41 | SHD ] C:\System Volume Information
[02/06/2011 - 19:40:46 | D ] C:\system.sav
[20/06/2011 - 21:44:44 | D ] C:\UsbFix
[20/06/2011 - 21:37:32 | A | 2303] C:\UsbFix.txt
[02/06/2011 - 16:46:46 | RD ] C:\Users
[20/06/2011 - 17:33:21 | D ] C:\Windows
[20/06/2011 - 21:44:44 | SHD ] D:\$RECYCLE.BIN
[08/05/2011 - 05:23:57 | D ] D:\boot
[17/06/2011 - 14:28:04 | A | 20] D:\HPSF_Rep.txt
[08/05/2011 - 04:48:51 | A | 37] D:\HP_WINRE
[08/05/2011 - 06:49:46 | ASH | 536870912] D:\pagefile.sys
[08/05/2011 - 05:23:57 | D ] D:\Recovery
[13/06/2011 - 16:41:47 | SHD ] D:\System Volume Information
[08/05/2011 - 07:20:12 | D ] D:\system.sav
[07/05/2011 - 18:48:32 | A | 33] E:\HP_Tools
[07/05/2011 - 19:33:10 | SHD ] E:\$RECYCLE.BIN
[17/06/2011 - 14:28:06 | A | 20] E:\HPSF_Rep.txt
[07/05/2011 - 20:19:00 | D ] E:\Hewlett-Packard
[04/10/2007 - 16:56:09 | RA | 6775] F:\0x0405.ini
[04/10/2007 - 16:55:59 | RA | 7497] F:\0x040c.ini
[04/10/2007 - 16:57:02 | RA | 6703] F:\0x040e.ini
[04/10/2007 - 16:58:48 | RA | 6971] F:\0x0415.ini
[10/10/2006 - 17:57:10 | RA | 6129] F:\0x0809.ini
[25/10/2007 - 00:55:17 | RA | 225792] F:\1029.mst
[25/10/2007 - 00:55:17 | RA | 231424] F:\1036.mst
[25/10/2007 - 00:55:17 | RA | 294400] F:\1038.mst
[25/10/2007 - 00:55:17 | RA | 216064] F:\1045.mst
[25/10/2007 - 00:55:17 | RA | 3584] F:\2057.mst
[25/10/2007 - 00:48:49 | RA | 322177] F:\AllOther.cab
[25/10/2007 - 00:48:36 | RA | 954271744] F:\AllOth~1.cab
[25/10/2007 - 00:48:49 | RA | 379178769] F:\AllOth~2.cab
[05/11/2007 - 15:07:18 | RAD ] F:\autorun
[19/07/2007 - 16:53:44 | RA | 58] F:\Autorun.inf
[25/10/2007 - 00:11:40 | RA | 4318432] F:\AutoRunCD.exe
[25/10/2007 - 00:45:57 | RA | 19066803] F:\Binari~1.cab
[25/10/2007 - 00:46:04 | RA | 17010578] F:\Binari~2.cab
[05/11/2007 - 15:07:18 | RAD ] F:\comrade
[05/11/2007 - 15:07:25 | RAD ] F:\Crysis
[25/10/2007 - 00:55:23 | RA | 5555200] F:\Crysis.msi
[25/10/2007 - 00:55:16 | RA | 149844938] F:\Czech.cab
[05/11/2007 - 15:07:31 | RAD ] F:\directx9c
[25/10/2007 - 00:54:59 | RA | 160120114] F:\English.cab
[25/10/2007 - 00:45:48 | RA | 7115] F:\Englis~1.cab
[05/11/2007 - 15:28:37 | RAD ] F:\Eurodocs
[25/10/2007 - 00:54:42 | RA | 148551272] F:\French.cab
[25/10/2007 - 00:54:25 | RA | 390442198] F:\Genera~1.cab
[25/10/2007 - 00:53:42 | RA | 149819775] F:\Hungar~1.cab
[16/05/2006 - 10:58:16 | RA | 2003176] F:\instmsi30.exe
[25/10/2007 - 00:45:48 | RA | 117] F:\Langua~1.cab
[25/10/2007 - 00:53:25 | RA | 393510722] F:\Levels1.cab
[25/10/2007 - 00:52:23 | RA | 347847636] F:\Levels2.cab
[25/10/2007 - 00:51:30 | RA | 288335825] F:\Levels3.cab
[25/10/2007 - 00:50:36 | RA | 282945625] F:\LevelsMP.cab
[25/10/2007 - 00:45:48 | RA | 301027135] F:\LowSpe~1.cab
[25/10/2007 - 00:45:20 | RA | 1653065089] F:\Object~1.cab
[25/10/2007 - 00:49:06 | RA | 149882798] F:\Polish.cab
[05/11/2007 - 15:07:31 | RAD ] F:\punkbustersvc
[25/10/2007 - 00:48:49 | RA | 1407636] F:\PunkBu~1.cab
[05/11/2007 - 15:07:32 | RAD ] F:\Sandbox2
[25/10/2007 - 00:55:21 | RA | 316640] F:\setup.exe
[25/10/2007 - 00:55:18 | RA | 1899] F:\Setup.ini
[25/10/2007 - 00:41:34 | RA | 564202554] F:\Sounds~1.cab
[05/11/2007 - 15:07:37 | RAD ] F:\support
[25/10/2007 - 00:48:49 | RA | 3305] F:\Support.cab
[25/10/2007 - 00:40:19 | RA | 2439842] F:\Suppor~1.cab
[05/11/2007 - 15:07:56 | RAD ] F:\tools
[05/11/2007 - 15:07:57 | RAD ] F:\vc80_redist
[09/06/2010 - 13:15:52 | SHD ] G:\K disku
[09/06/2010 - 13:15:54 | SHD ] G:\System Volume Information
[09/06/2010 - 13:23:14 | SHD ] G:\Záloha
[09/06/2010 - 16:09:04 | SHD ] G:\Hudba
[09/06/2010 - 16:21:14 | SHD ] G:\Chimera
[09/06/2010 - 16:25:10 | SHD ] G:\Knihy
[09/06/2010 - 16:31:14 | SHD ] G:\P
[10/06/2010 - 09:26:20 | SHD ] G:\Recycled
[09/06/2010 - 16:02:58 | SHD ] G:\FOTO, video
[09/08/2010 - 23:08:18 | SHD ] G:\Filmy, seriály
[30/08/2010 - 13:55:50 | SHD ] G:\Otec
[30/08/2010 - 13:56:20 | SHD ] G:\Mama
[08/03/2010 - 23:05:28 | A | 17408] G:\Tel seznam I.xls
[04/01/2011 - 01:35:18 | SHD ] G:\Hry
[12/04/2011 - 21:08:36 | SHD ] G:\ČVUT
[15/04/2011 - 16:35:58 | SHD ] G:\$RECYCLE.BIN
[15/05/2011 - 22:18:22 | SHD ] G:\100_FUJI
[01/06/2011 - 13:33:14 | SHD ] G:\Z plochy
[06/06/2011 - 15:08:06 | HD ] G:\RECYCLER
[06/06/2011 - 15:08:08 | A | 1455] G:\K disku.lnk
[06/06/2011 - 15:08:08 | A | 1491] G:\System Volume Information.lnk
[06/06/2011 - 15:08:08 | A | 1453] G:\Záloha.lnk
[06/06/2011 - 15:08:08 | A | 1451] G:\Hudba.lnk
[06/06/2011 - 15:08:08 | A | 1455] G:\Chimera.lnk
[06/06/2011 - 15:08:08 | A | 1451] G:\Knihy.lnk
[06/06/2011 - 15:08:08 | A | 1443] G:\P.lnk
[06/06/2011 - 15:08:08 | A | 1457] G:\Recycled.lnk
[06/06/2011 - 15:08:08 | A | 1463] G:\FOTO, video.lnk
[18/06/2011 - 09:03:56 | A | 1469] G:\Filmy, seriály.lnk
[06/06/2011 - 15:08:08 | A | 1449] G:\Otec.lnk
[06/06/2011 - 15:08:08 | A | 1449] G:\Mama.lnk
[06/06/2011 - 15:08:08 | A | 1447] G:\Hry.lnk
[06/06/2011 - 15:08:08 | A | 1449] G:\ČVUT.lnk
[06/06/2011 - 15:08:08 | A | 1465] G:\$RECYCLE.BIN.lnk
[06/06/2011 - 15:08:08 | A | 1457] G:\100_FUJI.lnk
[06/06/2011 - 15:08:08 | A | 1457] G:\Z plochy.lnk
[06/06/2011 - 15:08:08 | A | 1491] G:\## aswSnx private storage.lnk
################## | Vaccin |
C:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
D:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
E:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
G:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
################## | Upload |
Please send the file: C:\UsbFix_Upload_Me_THORVALD.zip
http://chiquitine.changelog.fr/Sample/Upload.php
Thank you for your contribution.
################## | E.O.F |
RSIT:
Logfile of random's system information tool 1.08 (written by random/random)
Run by XXX at 2011-06-20 21:49:24
Microsoft Windows 7 Professional
System drive C: has 140 GB (63%) free of 221 GB
Total RAM: 2991 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:49:35, on 20.6.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16800)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Windows\explorer.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\XXX\Desktop\RSIT.exe
C:\Program Files\trend micro\XXX.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: HP ProtectTools Security Manager Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: PandoraTV Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [IFXSPMGT] "C:\Program Files\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe" /NotifyLogon
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden
O4 - HKLM\..\Run: [HPPowerAssistant] C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe /hidden
O4 - HKLM\..\Run: [IMSS] "C:\Program Files\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: OpenOffice.org 3.3.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: ActivIdentity Shared Store Service (ac.sharedstore) - ActivIdentity - C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\aestsrv.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: Autodesk Content Service - Unknown owner - C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: DisplayLinkManager (DisplayLinkService) - DisplayLink Corp. - C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: Auditování/zamknutí zařízení nástroje HP ProtectTools (FLCDLOCK) - Hewlett-Packard Ltd - C:\Windows\system32\flcdlock.exe
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - C:\Program Files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - McAfee, Inc. - C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\Windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - C:\Program Files\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - C:\Program Files\Hewlett-Packard\Embedded Security Software\ifxtcs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Správce úloh aplikace Autodesk Moldflow Inventor Tool Suite Integration 2012 (mitsijm2012) - Autodesk, Inc. - c:\Program Files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: Služba jednotky Personal Secure Drive (PersonalSecureDriveService) - Infineon Technologies AG - C:\Program Files\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Qualcomm Gobi 2000 Download Service (HP) (QDLService2kHP) - QUALCOMM, Inc. - C:\Program Files\QUALCOMM\QDLService2k\QDLService2kHP.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%SystemRoot%\system32\stlang.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Broadcom Corporation - C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
--
End of file - 10898 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP ProtectTools Security Manager Extension - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2010-01-22 1471752]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-05-10 819840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
PandoraTV Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2011-05-17 1490312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-06-10 42272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440} - PandoraTV Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2011-05-17 1490312]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-05-10 819840]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IFXSPMGT"=C:\Program Files\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [2009-10-02 1107232]
"Broadcom Wireless Manager UI"=C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe [2011-06-02 4695552]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-03-04 137752]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-03-04 171032]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-03-04 172568]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-03 1791272]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2010-09-08 495708]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2010-02-25 287800]
"PDF Complete"=C:\Program Files\PDF Complete\pdfsty.exe [2011-02-01 656920]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2010-04-05 186904]
"HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2010-07-21 8192]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [2010-08-23 1691192]
"IMSS"=C:\Program Files\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2010-03-03 111640]
"ApnUpdater"=C:\Program Files\Ask.com\Updater\Updater.exe [2011-05-17 395144]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-05-10 3459712]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
""= []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2010-05-19 2736128]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\accrdsub]
C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [2009-06-03 400936]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\acevents]
C:\Program Files\ActivIdentity\ActivClient\acevents.exe [2009-06-03 153640]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG_TRAY]
C:\Program Files\AVG\AVG10\avgtray.exe [2010-10-22 2745696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Comrade.exe]
C:\Program Files\GameSpy\Comrade\Comrade.exe [2007-06-29 36864]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Users\XXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OpenOffice.org 3.3.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\DeviceNP]
C:\Windows\system32\DeviceNP.dll [2009-11-17 75320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-02-11 228864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
wlnotify.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 months======
2011-06-20 21:49:24 ----D---- C:\rsit
2011-06-20 21:49:24 ----D---- C:\Program Files\trend micro
2011-06-20 21:44:46 ----RASHD---- C:\Autorun.inf
2011-06-20 21:37:31 ----A---- C:\UsbFix.txt
2011-06-20 21:36:40 ----D---- C:\UsbFix
2011-06-20 18:33:14 ----D---- C:\Users\XXX\AppData\Roaming\AVG
2011-06-20 17:33:21 ----D---- C:\Windows\XSxS
2011-06-20 17:33:21 ----D---- C:\Program Files\Xenocode
2011-06-20 17:12:49 ----SHD---- C:\Config.Msi
2011-06-18 01:48:50 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2011-06-18 01:48:50 ----A---- C:\Windows\system32\drivers\sdbus.sys
2011-06-17 12:31:02 ----D---- C:\ProgramData\{E91883C8-8CDC-46A4-A45F-CB40EB82ED60}
2011-06-15 22:41:09 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-06-15 22:41:09 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-06-15 22:41:09 ----A---- C:\Windows\system32\drivers\srv.sys
2011-06-15 22:41:04 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-06-15 22:41:04 ----A---- C:\Windows\system32\drivers\afd.sys
2011-06-15 22:40:55 ----A---- C:\Windows\system32\oleaut32.dll
2011-06-15 22:40:54 ----A---- C:\Windows\system32\drivers\dfsc.sys
2011-06-15 22:40:53 ----A---- C:\Windows\system32\inetcomm.dll
2011-06-15 22:40:52 ----A---- C:\Windows\system32\d3d10_1.dll
2011-06-15 22:40:49 ----A---- C:\Windows\system32\mshtml.dll
2011-06-15 22:40:48 ----A---- C:\Windows\system32\iertutil.dll
2011-06-15 22:40:48 ----A---- C:\Windows\system32\ieframe.dll
2011-06-15 22:40:47 ----A---- C:\Windows\system32\urlmon.dll
2011-06-15 22:40:46 ----A---- C:\Windows\system32\msfeeds.dll
2011-06-15 22:40:45 ----A---- C:\Windows\system32\wininet.dll
2011-06-15 22:40:45 ----A---- C:\Windows\system32\mstime.dll
2011-06-15 22:40:45 ----A---- C:\Windows\system32\mshtmled.dll
2011-06-15 22:40:45 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-06-15 22:40:45 ----A---- C:\Windows\system32\licmgr10.dll
2011-06-15 22:40:45 ----A---- C:\Windows\system32\jsproxy.dll
2011-06-15 22:40:45 ----A---- C:\Windows\system32\ieui.dll
2011-06-15 22:40:45 ----A---- C:\Windows\system32\iepeers.dll
2011-06-15 22:40:45 ----A---- C:\Windows\system32\iedkcs32.dll
2011-06-15 22:40:44 ----A---- C:\Windows\system32\msfeedssync.exe
2011-06-15 22:40:32 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-06-15 22:40:32 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-06-15 22:40:32 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-06-13 16:38:30 ----N---- C:\Windows\system32\MpSigStub.exe
2011-06-13 16:23:09 ----A---- C:\Windows\myClean.bat
2011-06-11 17:37:39 ----D---- C:\Program Files\GameSpy
2011-06-11 17:37:05 ----RHD---- C:\Users\XXX\AppData\Roaming\SecuROM
2011-06-11 17:36:32 ----D---- C:\Windows\system32\URTTEMP
2011-06-11 17:35:14 ----A---- C:\Windows\system32\drivers\PnkBstrK.sys
2011-06-11 17:35:14 ----A---- C:\Users\XXX\AppData\Roaming\PnkBstrK.sys
2011-06-11 17:34:59 ----A---- C:\Windows\system32\PnkBstrB.exe
2011-06-11 17:34:58 ----A---- C:\Windows\system32\PnkBstrA.exe
2011-06-11 17:34:56 ----A---- C:\Windows\system32\pbsvc.exe
2011-06-11 17:18:10 ----D---- C:\Program Files\Electronic Arts
2011-06-10 20:18:42 ----D---- C:\Program Files\DsNET Corp
2011-06-10 19:05:32 ----D---- C:\Program Files\LightScribe Template Labeler
2011-06-10 18:33:17 ----D---- C:\ProgramData\LightScribe
2011-06-10 17:13:03 ----D---- C:\ProgramData\Intel
2011-06-10 17:10:08 ----D---- C:\Program Files\Common Files\LightScribe
2011-06-10 17:08:57 ----A---- C:\Windows\system32\VBAR332.DLL
2011-06-10 17:08:57 ----A---- C:\Windows\system32\MSRD2X35.DLL
2011-06-10 17:08:57 ----A---- C:\Windows\system32\MSJTER35.DLL
2011-06-10 17:08:57 ----A---- C:\Windows\system32\MSJINT35.DLL
2011-06-10 17:08:57 ----A---- C:\Windows\system32\MSJET35.DLL
2011-06-10 16:36:02 ----D---- C:\ProgramData\HP
2011-06-10 15:21:39 ----D---- C:\ProgramData\Sun
2011-06-10 15:21:38 ----D---- C:\Program Files\Common Files\Java
2011-06-10 15:21:23 ----A---- C:\Windows\system32\javaws.exe
2011-06-10 15:21:23 ----A---- C:\Windows\system32\javaw.exe
2011-06-10 15:21:23 ----A---- C:\Windows\system32\java.exe
2011-06-10 15:21:23 ----A---- C:\Windows\system32\deployJava1.dll
2011-06-10 15:20:42 ----D---- C:\Program Files\Java
2011-06-10 15:18:29 ----D---- C:\Program Files\GeoGebra
2011-06-06 16:49:03 ----AD---- C:\ProgramData\TEMP
2011-06-06 14:07:10 ----D---- C:\Users\XXX\AppData\Roaming\FreshDiagnose
2011-06-06 14:06:48 ----D---- C:\Program Files\FreshDevices
2011-06-04 05:06:43 ----A---- C:\Windows\system32\FntCache.dll
2011-06-04 05:06:43 ----A---- C:\Windows\system32\DWrite.dll
2011-06-04 05:06:42 ----A---- C:\Windows\system32\d2d1.dll
2011-06-04 04:57:58 ----D---- C:\Windows\system32\Wat
2011-06-03 21:39:01 ----A---- C:\Windows\system32\msv1_0.dll
2011-06-03 21:34:43 ----A---- C:\Windows\system32\MRT.exe
2011-06-03 21:21:36 ----A---- C:\Windows\system32\browserchoice.exe
2011-06-03 21:20:05 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2011-06-03 21:20:05 ----A---- C:\Windows\system32\drivers\ks.sys
2011-06-03 21:19:34 ----D---- C:\Program Files\MSXML 4.0
2011-06-03 21:19:14 ----A---- C:\Windows\system32\wcncsvc.dll
2011-06-03 19:09:27 ----D---- C:\NVIDIA
2011-06-03 13:58:42 ----D---- C:\Program Files\HWiNFO32
2011-06-03 13:24:40 ----D---- C:\MITSI 2012 Temporary Files
2011-06-03 13:23:51 ----D---- C:\Program Files\Microsoft Chart Controls
2011-06-03 13:22:12 ----D---- C:\Program Files\Microsoft WSE
2011-06-03 13:21:38 ----D---- C:\Program Files\Common Files\Designer
2011-06-03 13:21:36 ----D---- C:\Program Files\Microsoft Office
2011-06-03 12:48:48 ----D---- C:\ProgramData\FLEXnet
2011-06-03 12:37:00 ----A---- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2011-06-03 12:36:04 ----D---- C:\Program Files\Common Files\Macrovision Shared
2011-06-03 12:31:15 ----D---- C:\Program Files\Autodesk
2011-06-03 12:29:55 ----D---- C:\Program Files\Common Files\Autodesk Shared
2011-06-03 11:55:54 ----A---- C:\Windows\system32\drivers\aswSP.sys
2011-06-03 11:55:54 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2011-06-03 11:55:53 ----A---- C:\Windows\system32\drivers\aswRdr.sys
2011-06-03 11:55:52 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2011-06-03 11:55:51 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2011-06-03 11:55:50 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2011-06-03 11:55:08 ----A---- C:\Windows\system32\aswBoot.exe
2011-06-03 11:54:58 ----D---- C:\ProgramData\AVAST Software
2011-06-03 11:54:58 ----D---- C:\Program Files\AVAST Software
2011-06-03 11:16:07 ----D---- C:\Windows\system32\appmgmt
2011-06-03 11:02:26 ----D---- C:\Program Files\Microsoft.NET
2011-06-03 11:01:49 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2011-06-03 11:01:49 ----A---- C:\Windows\system32\PresentationHost.exe
2011-06-03 11:01:49 ----A---- C:\Windows\system32\mscoree.dll
2011-06-03 11:01:48 ----A---- C:\Windows\system32\netfxperf.dll
2011-06-03 11:01:48 ----A---- C:\Windows\system32\dfshim.dll
2011-06-03 11:00:45 ----D---- C:\Users\XXX\AppData\Roaming\Autodesk
2011-06-03 11:00:45 ----D---- C:\ProgramData\Autodesk
2011-06-03 10:50:48 ----D---- C:\Autodesk
2011-06-03 10:50:29 ----A---- C:\Windows\system32\ole32.dll
2011-06-03 10:50:23 ----A---- C:\Windows\system32\drivers\fvevol.sys
2011-06-03 10:50:12 ----A---- C:\Windows\system32\spoolsv.exe
2011-06-03 10:50:11 ----A---- C:\Windows\system32\prevhost.exe
2011-06-03 10:50:11 ----A---- C:\Windows\system32\jscript.dll
2011-06-03 10:50:10 ----A---- C:\Windows\system32\vbscript.dll
2011-06-03 10:50:09 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-06-03 10:50:09 ----A---- C:\Windows\system32\dnsapi.dll
2011-06-03 10:50:08 ----A---- C:\Windows\system32\dnscacheugc.exe
2011-06-03 10:50:07 ----A---- C:\Windows\system32\ir32_32.dll
2011-06-03 10:50:07 ----A---- C:\Windows\system32\iccvid.dll
2011-06-03 10:50:04 ----A---- C:\Windows\system32\atmfd.dll
2011-06-03 10:50:03 ----A---- C:\Windows\system32\atmlib.dll
2011-06-03 10:49:59 ----A---- C:\Windows\system32\winlogon.exe
2011-06-03 10:49:57 ----A---- C:\Windows\system32\t2embed.dll
2011-06-03 10:49:47 ----A---- C:\Windows\system32\tzres.dll
2011-06-03 10:49:37 ----A---- C:\Windows\system32\msdri.dll
2011-06-03 10:49:36 ----A---- C:\Windows\system32\psisdecd.dll
2011-06-03 10:49:34 ----A---- C:\Windows\system32\schannel.dll
2011-06-03 10:49:33 ----A---- C:\Windows\system32\wmicmiplugin.dll
2011-06-03 10:49:33 ----A---- C:\Windows\system32\taskschd.dll
2011-06-03 10:49:33 ----A---- C:\Windows\system32\taskeng.exe
2011-06-03 10:49:33 ----A---- C:\Windows\system32\taskcomp.dll
2011-06-03 10:49:33 ----A---- C:\Windows\system32\schedsvc.dll
2011-06-03 10:49:32 ----A---- C:\Windows\system32\schtasks.exe
2011-06-03 10:49:32 ----A---- C:\Windows\system32\msasn1.dll
2011-06-03 10:49:30 ----A---- C:\Windows\system32\lsasrv.dll
2011-06-03 10:49:30 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2011-06-03 10:49:28 ----A---- C:\Windows\system32\rtutils.dll
2011-06-03 10:49:26 ----A---- C:\Windows\system32\kerberos.dll
2011-06-03 10:49:24 ----A---- C:\Windows\system32\odbc32.dll
2011-06-03 10:49:20 ----A---- C:\Windows\system32\winload.exe
2011-06-03 10:49:20 ----A---- C:\Windows\system32\CertEnroll.dll
2011-06-03 10:49:19 ----A---- C:\Windows\system32\winresume.exe
2011-06-03 10:49:10 ----A---- C:\Windows\system32\asycfilt.dll
2011-06-03 10:49:09 ----A---- C:\Windows\system32\comctl32.dll
2011-06-03 10:49:08 ----A---- C:\Windows\system32\mfc40u.dll
2011-06-03 10:49:08 ----A---- C:\Windows\system32\mfc40.dll
2011-06-03 10:48:58 ----A---- C:\Windows\system32\wmp.dll
2011-06-03 10:48:57 ----A---- C:\Windows\system32\wmploc.DLL
2011-06-03 10:48:56 ----A---- C:\Windows\system32\win32k.sys
2011-06-03 10:48:55 ----A---- C:\Windows\system32\FXSCOVER.exe
2011-06-03 10:48:54 ----A---- C:\Windows\system32\fontsub.dll
2011-06-03 10:48:53 ----A---- C:\Windows\system32\XpsPrint.dll
2011-06-03 10:48:52 ----A---- C:\Windows\system32\kernel32.dll
2011-06-03 10:48:51 ----A---- C:\Windows\system32\apphelp.dll
2011-06-03 10:48:50 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-06-03 10:48:49 ----A---- C:\Windows\system32\quartz.dll
2011-06-03 10:48:49 ----A---- C:\Windows\system32\mciavi32.dll
2011-06-03 10:48:48 ----A---- C:\Windows\system32\msvidc32.dll
2011-06-03 10:48:48 ----A---- C:\Windows\system32\avifil32.dll
2011-06-03 10:48:47 ----A---- C:\Windows\system32\tsbyuv.dll
2011-06-03 10:48:47 ----A---- C:\Windows\system32\msyuv.dll
2011-06-03 10:48:47 ----A---- C:\Windows\system32\msrle32.dll
2011-06-03 10:48:47 ----A---- C:\Windows\system32\iyuv_32.dll
2011-06-03 10:48:46 ----A---- C:\Windows\system32\sbe.dll
2011-06-03 10:48:46 ----A---- C:\Windows\system32\EncDec.dll
2011-06-03 10:48:46 ----A---- C:\Windows\system32\CPFilters.dll
2011-06-03 10:48:43 ----A---- C:\Windows\explorer.exe
2011-06-03 10:48:42 ----A---- C:\Windows\system32\webio.dll
2011-06-03 10:48:42 ----A---- C:\Windows\system32\shell32.dll
2011-06-03 10:48:41 ----A---- C:\Windows\system32\mstscax.dll
2011-06-03 10:48:41 ----A---- C:\Windows\system32\mstsc.exe
2011-06-03 10:48:32 ----A---- C:\Windows\system32\srvsvc.dll
2011-06-03 10:48:30 ----A---- C:\Windows\system32\ntdll.dll
2011-06-03 10:48:29 ----A---- C:\Windows\system32\mf.dll
2011-06-03 10:48:29 ----A---- C:\Windows\system32\d3d10warp.dll
2011-06-03 10:48:28 ----A---- C:\Windows\system32\WMVDECOD.DLL
2011-06-03 10:48:28 ----A---- C:\Windows\system32\mfreadwrite.dll
2011-06-03 10:48:28 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-06-03 10:48:28 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-06-03 10:48:27 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-06-03 10:48:22 ----A---- C:\Windows\system32\upnp.dll
2011-06-03 10:48:22 ----A---- C:\Windows\system32\msxml6.dll
2011-06-03 10:48:22 ----A---- C:\Windows\system32\msxml3.dll
2011-06-03 10:48:21 ----A---- C:\Windows\system32\wscsvc.dll
2011-06-03 10:48:21 ----A---- C:\Windows\system32\wscapi.dll
2011-06-03 10:48:21 ----A---- C:\Windows\system32\winhttp.dll
2011-06-03 10:48:21 ----A---- C:\Windows\system32\WebClnt.dll
2011-06-03 10:48:21 ----A---- C:\Windows\system32\slwga.dll
2011-06-03 10:48:21 ----A---- C:\Windows\system32\davclnt.dll
2011-06-03 10:48:19 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-06-03 10:48:19 ----A---- C:\Windows\system32\ntkrnlpa.exe
2011-06-03 10:48:16 ----A---- C:\Windows\system32\wmpmde.dll
2011-06-03 10:48:16 ----A---- C:\Windows\system32\consent.exe
2011-06-03 10:48:15 ----A---- C:\Windows\system32\secproc_isv.dll
2011-06-03 10:48:15 ----A---- C:\Windows\system32\secproc.dll
2011-06-03 10:48:15 ----A---- C:\Windows\system32\RMActivate_isv.exe
2011-06-03 10:48:15 ----A---- C:\Windows\system32\RMActivate.exe
2011-06-03 10:48:14 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2011-06-03 10:48:14 ----A---- C:\Windows\system32\secproc_ssp.dll
2011-06-03 10:48:14 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2011-06-03 10:48:14 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2011-06-03 10:48:13 ----A---- C:\Windows\system32\mfc42u.dll
2011-06-03 10:48:13 ----A---- C:\Windows\system32\mfc42.dll
2011-06-03 10:48:11 ----A---- C:\Windows\system32\drivers\bowser.sys
2011-06-03 10:48:10 ----A---- C:\Windows\system32\StructuredQuery.dll
2011-06-03 10:48:07 ----A---- C:\Windows\system32\poqexec.exe
2011-06-03 10:48:06 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-06-03 10:41:36 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-06-03 10:41:35 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-06-03 10:41:35 ----A---- C:\Windows\system32\cdd.dll
2011-06-02 23:28:57 ----D---- C:\Program Files\Vypínač na dobrou noc
2011-06-02 23:28:28 ----D---- C:\Users\XXX\AppData\Roaming\WinRAR
2011-06-02 23:28:21 ----D---- C:\Program Files\WinRAR
2011-06-02 23:08:51 ----D---- C:\Users\XXX\AppData\Roaming\wargaming.net
2011-06-02 23:07:38 ----A---- C:\Windows\system32\XAudio2_7.dll
2011-06-02 23:07:38 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2011-06-02 23:07:37 ----A---- C:\Windows\system32\XAudio2_6.dll
2011-06-02 23:07:37 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2011-06-02 23:07:37 ----A---- C:\Windows\system32\xactengine3_7.dll
2011-06-02 23:07:37 ----A---- C:\Windows\system32\xactengine3_6.dll
2011-06-02 23:07:37 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2011-06-02 23:07:37 ----A---- C:\Windows\system32\D3DX9_43.dll
2011-06-02 23:07:37 ----A---- C:\Windows\system32\d3dx11_43.dll
2011-06-02 23:07:37 ----A---- C:\Windows\system32\d3dx10_43.dll
2011-06-02 23:07:37 ----A---- C:\Windows\system32\d3dcsx_43.dll
2011-06-02 23:07:37 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2011-06-02 23:07:36 ----A---- C:\Windows\system32\XAudio2_5.dll
2011-06-02 23:07:36 ----A---- C:\Windows\system32\xactengine3_5.dll
2011-06-02 23:07:36 ----A---- C:\Windows\system32\D3DX9_42.dll
2011-06-02 23:07:36 ----A---- C:\Windows\system32\d3dx11_42.dll
2011-06-02 23:07:36 ----A---- C:\Windows\system32\d3dx10_42.dll
2011-06-02 23:07:36 ----A---- C:\Windows\system32\d3dcsx_42.dll
2011-06-02 23:07:36 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2011-06-02 23:07:35 ----A---- C:\Windows\system32\XAudio2_4.dll
2011-06-02 23:07:35 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2011-06-02 23:07:35 ----A---- C:\Windows\system32\xactengine3_4.dll
2011-06-02 23:07:35 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2011-06-02 23:07:35 ----A---- C:\Windows\system32\D3DX9_41.dll
2011-06-02 23:07:35 ----A---- C:\Windows\system32\D3DX9_40.dll
2011-06-02 23:07:35 ----A---- C:\Windows\system32\d3dx10_41.dll
2011-06-02 23:07:35 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2011-06-02 23:07:35 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2011-06-02 23:07:34 ----A---- C:\Windows\system32\XAudio2_3.dll
2011-06-02 23:07:34 ----A---- C:\Windows\system32\XAudio2_2.dll
2011-06-02 23:07:34 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2011-06-02 23:07:34 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2011-06-02 23:07:34 ----A---- C:\Windows\system32\xactengine3_3.dll
2011-06-02 23:07:34 ----A---- C:\Windows\system32\xactengine3_2.dll
2011-06-02 23:07:34 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2011-06-02 23:07:34 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2011-06-02 23:07:33 ----A---- C:\Windows\system32\XAudio2_1.dll
2011-06-02 23:07:33 ----A---- C:\Windows\system32\XAudio2_0.dll
2011-06-02 23:07:33 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2011-06-02 23:07:33 ----A---- C:\Windows\system32\xactengine3_1.dll
2011-06-02 23:07:33 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2011-06-02 23:07:33 ----A---- C:\Windows\system32\D3DX9_39.dll
2011-06-02 23:07:33 ----A---- C:\Windows\system32\D3DX9_38.dll
2011-06-02 23:07:33 ----A---- C:\Windows\system32\d3dx10_39.dll
2011-06-02 23:07:33 ----A---- C:\Windows\system32\d3dx10_38.dll
2011-06-02 23:07:33 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2011-06-02 23:07:32 ----A---- C:\Windows\system32\xactengine3_0.dll
2011-06-02 23:07:32 ----A---- C:\Windows\system32\xactengine2_10.dll
2011-06-02 23:07:32 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2011-06-02 23:07:32 ----A---- C:\Windows\system32\D3DX9_37.dll
2011-06-02 23:07:32 ----A---- C:\Windows\system32\d3dx10_37.dll
2011-06-02 23:07:32 ----A---- C:\Windows\system32\d3dx10_36.dll
2011-06-02 23:07:32 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2011-06-02 23:07:31 ----A---- C:\Windows\system32\xactengine2_9.dll
2011-06-02 23:07:31 ----A---- C:\Windows\system32\d3dx9_36.dll
2011-06-02 23:07:31 ----A---- C:\Windows\system32\d3dx9_35.dll
2011-06-02 23:07:31 ----A---- C:\Windows\system32\d3dx10_35.dll
2011-06-02 23:07:31 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2011-06-02 23:07:31 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2011-06-02 23:07:30 ----A---- C:\Windows\system32\xinput1_3.dll
2011-06-02 23:07:30 ----A---- C:\Windows\system32\xactengine2_8.dll
2011-06-02 23:07:30 ----A---- C:\Windows\system32\xactengine2_7.dll
2011-06-02 23:07:30 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2011-06-02 23:07:30 ----A---- C:\Windows\system32\d3dx9_34.dll
2011-06-02 23:07:30 ----A---- C:\Windows\system32\d3dx10_34.dll
2011-06-02 23:07:30 ----A---- C:\Windows\system32\d3dx10_33.dll
2011-06-02 23:07:30 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2011-06-02 23:07:30 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2011-06-02 23:07:29 ----A---- C:\Windows\system32\xactengine2_6.dll
2011-06-02 23:07:29 ----A---- C:\Windows\system32\xactengine2_5.dll
2011-06-02 23:07:29 ----A---- C:\Windows\system32\d3dx9_33.dll
2011-06-02 23:07:29 ----A---- C:\Windows\system32\d3dx9_32.dll
2011-06-02 23:07:29 ----A---- C:\Windows\system32\d3dx10.dll
2011-06-02 23:07:28 ----A---- C:\Windows\system32\xinput1_2.dll
2011-06-02 23:07:28 ----A---- C:\Windows\system32\xactengine2_4.dll
2011-06-02 23:07:28 ----A---- C:\Windows\system32\xactengine2_3.dll
2011-06-02 23:07:28 ----A---- C:\Windows\system32\xactengine2_2.dll
2011-06-02 23:07:28 ----A---- C:\Windows\system32\x3daudio1_1.dll
2011-06-02 23:07:28 ----A---- C:\Windows\system32\d3dx9_31.dll
2011-06-02 23:07:27 ----A---- C:\Windows\system32\xinput1_1.dll
2011-06-02 23:07:27 ----A---- C:\Windows\system32\xactengine2_1.dll
2011-06-02 23:07:23 ----A---- C:\Windows\system32\d3dx9_30.dll
2011-06-02 23:07:22 ----A---- C:\Windows\system32\xactengine2_0.dll
2011-06-02 23:07:22 ----A---- C:\Windows\system32\x3daudio1_0.dll
2011-06-02 23:07:22 ----A---- C:\Windows\system32\d3dx9_29.dll
2011-06-02 23:07:22 ----A---- C:\Windows\system32\d3dx9_28.dll
2011-06-02 23:07:22 ----A---- C:\Windows\system32\d3dx9_27.dll
2011-06-02 23:07:21 ----A---- C:\Windows\system32\d3dx9_26.dll
2011-06-02 23:07:21 ----A---- C:\Windows\system32\d3dx9_25.dll
2011-06-02 23:07:21 ----A---- C:\Windows\system32\d3dx9_24.dll
2011-06-02 23:02:55 ----D---- C:\Users\XXX\AppData\Roaming\AVG10
2011-06-02 22:59:56 ----HD---- C:\ProgramData\Common Files
2011-06-02 22:59:10 ----D---- C:\ProgramData\AVG10
2011-06-02 22:58:01 ----D---- C:\Program Files\AVG
2011-06-02 22:56:42 ----D---- C:\ProgramData\MFAData
2011-06-02 22:54:37 ----D---- C:\Games
2011-06-02 22:30:16 ----A---- C:\Windows\g_mgpmro411.ini
2011-06-02 22:29:51 ----D---- C:\ProgramData\McNeel
2011-06-02 22:29:51 ----D---- C:\Program Files\Rhinoceros 4.0
2011-06-02 22:21:41 ----D---- C:\Users\XXX\AppData\Roaming\OpenOffice.org
2011-06-02 22:20:24 ----D---- C:\Program Files\OpenOffice.org 3
2011-06-02 21:39:57 ----D---- C:\Users\XXX\AppData\Roaming\ICQ
2011-06-02 21:39:48 ----D---- C:\Program Files\ICQ7.5
2011-06-02 21:35:56 ----D---- C:\Users\XXX\AppData\Roaming\Mozilla
2011-06-02 21:35:49 ----D---- C:\Program Files\Mozilla Firefox
2011-06-02 21:35:40 ----D---- C:\Program Files\Ask.com
2011-06-02 21:35:40 ----D---- C:\Firefox
2011-06-02 21:35:01 ----D---- C:\Program Files\The KMPlayer
2011-06-02 21:33:12 ----D---- C:\Users\XXX\AppData\Roaming\Macromedia
2011-06-02 21:30:31 ----D---- C:\Users\XXX\AppData\Roaming\Adobe
2011-06-02 21:18:42 ----A---- C:\Windows\system32\wintrust.dll
2011-06-02 21:18:41 ----A---- C:\Windows\system32\cabview.dll
2011-06-02 19:44:40 ----A---- C:\Windows\RemoveAuditing.exe
2011-06-02 19:44:16 ----D---- C:\Windows\Hewlett-Packard
2011-06-02 19:42:14 ----A---- C:\Windows\system32\CSVer.dll
2011-06-02 19:34:46 ----A---- C:\Windows\system32\RicohMediadriverVer.dll
2011-06-02 19:34:46 ----A---- C:\Windows\system32\drivers\rismc32.sys
2011-06-02 19:34:45 ----A---- C:\Windows\system32\drivers\rimmptsk.sys
2011-06-02 19:30:31 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2011-06-02 19:30:29 ----N---- C:\Windows\system32\agrsmdel.exe
2011-06-02 19:30:29 ----N---- C:\Windows\system32\agrsco64.dll
2011-06-02 19:30:27 ----D---- C:\Program Files\LSI SoftModem
2011-06-02 19:30:20 ----A---- C:\Windows\system32\PROUnstl.exe
2011-06-02 19:30:10 ----D---- C:\Windows\Options
2011-06-02 19:29:50 ----A---- C:\Windows\system32\NicInstK.dll
2011-06-02 19:29:50 ----A---- C:\Windows\system32\NicCo36.dll
2011-06-02 19:29:50 ----A---- C:\Windows\system32\e1kmsg.dll
2011-06-02 19:29:49 ----A---- C:\Windows\system32\drivers\e1k6232.sys
2011-06-02 19:27:33 ----A---- C:\Windows\system32\log.txt
2011-06-02 19:27:19 ----D---- C:\Program Files\Common Files\postureAgent
2011-06-02 19:16:03 ----A---- C:\Windows\system32\HPPA.ini
2011-06-02 19:13:56 ----A---- C:\Windows\system32\drivers\wdfhhai.sys
2011-06-02 19:13:50 ----D---- C:\Windows\system32\pt
2011-06-02 19:12:28 ----N---- C:\Windows\EricssonMobileBroadbandVer.dll
2011-06-02 19:11:58 ----A---- C:\Windows\system32\rsnp2uvc.dll
2011-06-02 19:11:57 ----D---- C:\Program Files\Common Files\SNP2UVC
2011-06-02 19:11:57 ----A---- C:\Windows\system32\vsnp2uvc.dll
2011-06-02 19:11:57 ----A---- C:\Windows\system32\drivers\snp2uvc.sys
2011-06-02 19:11:57 ----A---- C:\Windows\system32\drivers\sncduvc.sys
2011-06-02 19:11:57 ----A---- C:\Windows\system32\csnp2uvc.dll
2011-06-02 19:11:57 ----A---- C:\Windows\snuvcdsm.exe
2011-06-02 19:11:57 ----A---- C:\Windows\snp2uvc.ini
2011-06-02 19:11:38 ----D---- C:\Users\XXX\AppData\Roaming\InstallShield
2011-06-02 19:11:07 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2011-06-02 19:11:07 ----A---- C:\Windows\system32\drivers\storport.sys
2011-06-02 19:11:07 ----A---- C:\Windows\system32\drivers\ntfs.sys
2011-06-02 19:11:07 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2011-06-02 19:11:07 ----A---- C:\Windows\system32\drivers\amdxata.sys
2011-06-02 19:11:07 ----A---- C:\Windows\system32\drivers\amdsata.sys
2011-06-02 19:11:06 ----A---- C:\Windows\system32\esent.dll
2011-06-02 19:11:06 ----A---- C:\Windows\system32\drivers\nvstor.sys
2011-06-02 19:11:06 ----A---- C:\Windows\system32\drivers\nvraid.sys
2011-06-02 19:09:58 ----A---- C:\Windows\system32\drivers\usbhub.sys
2011-06-02 19:09:58 ----A---- C:\Windows\system32\drivers\usbehci.sys
2011-06-02 19:09:50 ----A---- C:\Windows\system32\drivers\hidclass.sys
2011-06-02 19:09:44 ----A---- C:\Windows\system32\evr.dll
2011-06-02 19:09:38 ----A---- C:\Windows\system32\autochk.exe
2011-06-02 19:09:31 ----A---- C:\Windows\system32\drivers\udfs.sys
2011-06-02 19:09:25 ----A---- C:\Windows\system32\drivers\winusb.sys
2011-06-02 19:09:19 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2011-06-02 19:09:06 ----A---- C:\Windows\system32\drivers\msahci.sys
2011-06-02 19:09:05 ----A---- C:\Windows\system32\drivers\ataport.sys
2011-06-02 19:09:00 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2011-06-02 19:08:53 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS
2011-06-02 19:08:53 ----A---- C:\Windows\system32\drivers\bthport.sys
2011-06-02 19:07:27 ----A---- C:\Windows\system32\HPWA.ini
2011-06-02 19:05:53 ----D---- C:\Program Files\HP USB Docking Video
2011-06-02 19:04:24 ----D---- C:\Program Files\DisplayLink Core Software
2011-06-02 19:04:07 ----A---- C:\Windows\system32\dlumd9.dll
2011-06-02 19:04:07 ----A---- C:\Windows\system32\dlumd11.dll
2011-06-02 19:04:07 ----A---- C:\Windows\system32\dlumd10.dll
2011-06-02 19:01:36 ----D---- C:\Program Files\Validity Sensors
2011-06-02 18:58:22 ----A---- C:\Windows\system32\drivers\wdfcoinstaller01005.dll
2011-06-02 18:58:22 ----A---- C:\Windows\system32\drivers\HpqKbFiltr.sys
2011-06-02 18:58:20 ----A---- C:\Windows\system32\BttnCmns.dll
2011-06-02 18:58:20 ----A---- C:\Windows\system32\BttnCmn.dll
2011-06-02 18:57:37 ----A---- C:\Windows\system32\pdfc_port.dll
2011-06-02 18:57:36 ----D---- C:\Program Files\PDF Complete
2011-06-02 18:56:47 ----D---- C:\ProgramData\PDFC
2011-06-02 18:55:51 ----D---- C:\Program Files\Common Files\ActivIdentity
2011-06-02 18:55:51 ----D---- C:\Program Files\ActivIdentity
2011-06-02 18:55:08 ----A---- C:\Windows\system32\aestecap.dll
2011-06-02 18:55:08 ----A---- C:\Windows\system32\aestaren.dll
2011-06-02 18:55:08 ----A---- C:\Windows\system32\aestacap.dll
2011-06-02 18:55:07 ----A---- C:\Windows\system32\stlang.dll
2011-06-02 18:55:07 ----A---- C:\Windows\system32\AESTCom.dll
2011-06-02 18:55:07 ----A---- C:\Windows\sttray.exe
2011-06-02 18:55:03 ----A---- C:\Windows\system32\staco.dll
2011-06-02 18:54:33 ----N---- C:\Windows\system32\stapi32.dll
2011-06-02 18:54:33 ----A---- C:\Windows\system32\stcplx.dll
2011-06-02 18:54:33 ----A---- C:\Windows\system32\stapo.dll
2011-06-02 18:54:33 ----A---- C:\Windows\system32\drivers\stwrt.sys
2011-06-02 18:54:28 ----D---- C:\Program Files\IDT
2011-06-02 18:53:06 ----D---- C:\Program Files\Common Files\Roxio Shared
2011-06-02 18:53:05 ----D---- C:\ProgramData\Uninstall
2011-06-02 18:52:42 ----D---- C:\Users\XXX\AppData\Roaming\Roxio Log Files
2011-06-02 18:50:20 ----HD---- C:\Program Files\InstallShield Installation Information
2011-06-02 18:48:42 ----D---- C:\ProgramData\{23D58E70-3B83-4B83-A227-68770F84F5EC}
2011-06-02 18:47:51 ----D---- C:\Program Files\HP Business Card Reader
2011-06-02 18:47:02 ----D---- C:\Program Files\Synaptics
2011-06-02 18:46:29 ----D---- C:\Windows\system32\Macromed
2011-06-02 18:45:10 ----N---- C:\Windows\HPun2420Version.dll
2011-06-02 18:44:59 ----D---- C:\ProgramData\QUALCOMM
2011-06-02 18:44:59 ----D---- C:\Program Files\QUALCOMM
2011-06-02 18:44:57 ----D---- C:\ProgramData\Hewlett-Packard
2011-06-02 18:41:33 ----A---- C:\Windows\system32\drivers\btwl2cap.sys
2011-06-02 18:41:32 ----A---- C:\Windows\system32\drivers\btwavdt.sys
2011-06-02 18:41:31 ----A---- C:\Windows\system32\drivers\btwrchid.sys
2011-06-02 18:41:30 ----A---- C:\Windows\system32\drivers\btwaudio.sys
2011-06-02 18:41:07 ----D---- C:\Program Files\WIDCOMM
2011-06-02 18:34:29 ----D---- C:\hp
2011-06-02 18:34:12 ----D---- C:\Users\XXX\AppData\Roaming\WinBatch
2011-06-02 18:32:22 ----A---- C:\Windows\system32\drivers\mfetdik.sys
2011-06-02 18:32:17 ----A---- C:\Windows\system32\drivers\mferkdk.sys
2011-06-02 18:32:17 ----A---- C:\Windows\system32\drivers\mfehidk.sys
2011-06-02 18:32:17 ----A---- C:\Windows\system32\drivers\mfebopk.sys
2011-06-02 18:32:17 ----A---- C:\Windows\system32\drivers\mfeavfk.sys
2011-06-02 17:31:11 ----D---- C:\Windows\Panther
2011-06-02 17:10:17 ----D---- C:\Users\XXX\AppData\Roaming\DigitalPersona
2011-06-02 17:05:32 ----D---- C:\Intel
2011-06-02 17:02:05 ----D---- C:\Users\XXX\AppData\Roaming\Infineon
2011-06-02 17:02:05 ----D---- C:\ProgramData\Infineon
2011-06-02 17:01:29 ----D---- C:\Program Files\DIFX
2011-06-02 17:01:25 ----A---- C:\Windows\system32\BCMLogon.dll
2011-06-02 17:01:15 ----A---- C:\Windows\system32\drivers\npf.sys
2011-06-02 17:01:15 ----A---- C:\Windows\system32\drivers\bcm42rly.sys
2011-06-02 17:01:15 ----A---- C:\Windows\system32\bcmwlrmt.dll
2011-06-02 17:01:15 ----A---- C:\Windows\system32\bcmwlrc.dll
2011-06-02 17:01:15 ----A---- C:\Windows\system32\bcmttls.dll
2011-06-02 17:01:14 ----D---- C:\Windows\system32\vs08
2011-06-02 17:01:14 ----A---- C:\Windows\system32\wltrynt.dll
2011-06-02 17:01:14 ----A---- C:\Windows\system32\vcredist_x86.exe
2011-06-02 17:01:14 ----A---- C:\Windows\system32\vcredist_x86.bat
2011-06-02 17:01:13 ----D---- C:\Program Files\Broadcom
2011-06-02 17:00:50 ----D---- C:\system.sav
2011-06-02 16:59:45 ----D---- C:\Users\XXX\AppData\Roaming\Hewlett-Packard
2011-06-02 16:59:39 ----D---- C:\ProgramData\HPQLOG
2011-06-02 16:59:27 ----D---- C:\Windows\DPDrv
2011-06-02 16:59:26 ----D---- C:\Windows\system32\zh-Hant
2011-06-02 16:59:26 ----D---- C:\Windows\system32\zh-Hans
2011-06-02 16:59:26 ----D---- C:\Windows\system32\ko
2011-06-02 16:59:26 ----D---- C:\Windows\system32\ja
2011-06-02 16:59:26 ----D---- C:\Windows\system32\it
2011-06-02 16:59:26 ----D---- C:\Windows\system32\fr
2011-06-02 16:59:26 ----D---- C:\Windows\system32\es
2011-06-02 16:59:26 ----D---- C:\Windows\system32\de
2011-06-02 16:59:25 ----D---- C:\ProgramData\Macrovision
2011-06-02 16:59:25 ----D---- C:\Program Files\Hewlett-Packard
2011-06-02 16:55:12 ----D---- C:\Users\XXX\AppData\Roaming\hpqLog
2011-06-02 16:54:28 ----D---- C:\Users\XXX\AppData\Roaming\Intel
2011-06-02 16:54:23 ----D---- C:\ProgramData\Roaming
2011-06-02 16:54:15 ----D---- C:\Program Files\Intel
2011-06-02 16:54:15 ----D---- C:\Program Files\Common Files\Intel
2011-06-02 16:54:15 ----D---- C:\Program Files\Cisco
2011-06-02 16:54:09 ----SHD---- C:\Windows\Installer
2011-06-02 16:54:08 ----D---- C:\Windows\HPQ
2011-06-02 16:54:01 ----D---- C:\SWSetup
2011-06-02 16:47:32 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-06-02 16:46:55 ----D---- C:\Users\XXX\AppData\Roaming\Identities
2011-06-02 16:46:46 ----SD---- C:\Users\XXX\AppData\Roaming\Microsoft
2011-06-02 16:46:46 ----D---- C:\Users\XXX\AppData\Roaming\Media Center Programs
2011-06-02 16:46:41 ----SHD---- C:\Recovery
2011-06-02 16:46:41 ----SHD---- C:\ProgramData\Šablony
2011-06-02 16:46:41 ----SHD---- C:\ProgramData\Plocha
2011-06-02 16:46:41 ----SHD---- C:\ProgramData\Oblíbené položky
2011-06-02 16:46:41 ----SHD---- C:\ProgramData\Nabídka Start
2011-06-02 16:46:41 ----SHD---- C:\ProgramData\Dokumenty
2011-06-02 16:46:41 ----SHD---- C:\ProgramData\Data aplikací
2011-06-02 16:34:34 ----D---- C:\Windows\SoftwareDistribution
2011-06-02 16:32:28 ----D---- C:\Windows\Prefetch
2011-06-02 16:31:43 ----ASH---- C:\pagefile.sys
2011-06-02 16:31:42 ----SHD---- C:\System Volume Information
2011-06-02 16:31:42 ----ASH---- C:\hiberfil.sys
======List of files/folders modified in the last 1 months======
2011-06-20 21:49:24 ----RD---- C:\Program Files
2011-06-20 21:44:44 ----SHD---- C:\$Recycle.Bin
2011-06-20 21:38:44 ----D---- C:\Windows\Temp
2011-06-20 19:52:52 ----D---- C:\Windows\System32
2011-06-20 19:52:52 ----D---- C:\Windows\inf
2011-06-20 18:52:30 ----D---- C:\Windows\Microsoft.NET
2011-06-20 18:52:28 ----RSD---- C:\Windows\assembly
2011-06-20 18:24:11 ----D---- C:\Windows\system32\NDF
2011-06-20 17:38:45 ----D---- C:\Windows\system32\config
2011-06-20 17:33:21 ----D---- C:\Windows
2011-06-20 17:26:43 ----D---- C:\Windows\system32\Tasks
2011-06-20 17:25:34 ----D---- C:\Windows\winsxs
2011-06-18 01:49:38 ----D---- C:\Windows\system32\DriverStore
2011-06-18 01:49:38 ----D---- C:\Windows\system32\drivers
2011-06-18 01:48:58 ----D---- C:\Windows\system32\catroot
2011-06-17 12:34:10 ----D---- C:\Windows\Help
2011-06-17 12:31:02 ----HD---- C:\ProgramData
2011-06-16 23:45:39 ----D---- C:\Windows\system32\LogFiles
2011-06-16 03:18:04 ----D---- C:\Windows\system32\migration
2011-06-16 03:18:04 ----D---- C:\Program Files\Internet Explorer
2011-06-16 03:01:13 ----D---- C:\Windows\debug
2011-06-15 22:39:52 ----D---- C:\Windows\system32\catroot2
2011-06-13 12:31:59 ----D---- C:\Windows\system32\wdi
2011-06-11 17:37:14 ----D---- C:\Windows\registration
2011-06-10 17:10:08 ----D---- C:\Program Files\Common Files
2011-06-10 14:11:57 ----D---- C:\Windows\rescache
2011-06-06 16:52:53 ----D---- C:\Windows\Downloaded Program Files
2011-06-05 22:38:53 ----RSD---- C:\Windows\Fonts
2011-06-05 22:31:29 ----D---- C:\Windows\system32\cs-CZ
2011-06-05 03:16:25 ----D---- C:\Windows\AppPatch
2011-06-05 01:31:06 ----D---- C:\Windows\Tasks
2011-06-05 01:31:06 ----D---- C:\Windows\system32\wfp
2011-06-05 01:31:03 ----D---- C:\Windows\system32\wbem
2011-06-04 12:20:53 ----D---- C:\Windows\Logs
2011-06-04 04:58:22 ----D---- C:\Program Files\Windows Mail
2011-06-04 04:58:21 ----D---- C:\Windows\ehome
2011-06-04 04:58:16 ----D---- C:\Windows\system32\Boot
2011-06-04 04:58:13 ----D---- C:\Program Files\Windows Media Player
2011-06-03 13:21:37 ----D---- C:\Program Files\Common Files\microsoft shared
2011-06-03 11:02:27 ----D---- C:\Windows\system32\en-US
2011-06-02 21:16:49 ----SD---- C:\ProgramData\Microsoft
2011-06-02 19:13:53 ----D---- C:\Program Files\Common Files\System
2011-06-02 19:13:51 ----D---- C:\Windows\system32\pt-BR
2011-06-02 19:13:51 ----D---- C:\Windows\system32\cs
2011-06-02 19:12:04 ----D---- C:\Windows\twain_32
2011-06-02 19:03:14 ----D---- C:\Windows\system32\zh-TW
2011-06-02 19:03:14 ----D---- C:\Windows\system32\zh-HK
2011-06-02 19:03:14 ----D---- C:\Windows\system32\zh-CN
2011-06-02 19:03:14 ----D---- C:\Windows\system32\tr-TR
2011-06-02 19:03:14 ----D---- C:\Windows\system32\th-TH
2011-06-02 19:03:14 ----D---- C:\Windows\system32\sv-SE
2011-06-02 19:03:14 ----D---- C:\Windows\system32\sl-SI
2011-06-02 19:03:14 ----D---- C:\Windows\system32\sk-SK
2011-06-02 19:03:14 ----D---- C:\Windows\system32\ru-RU
2011-06-02 19:03:14 ----D---- C:\Windows\system32\ro-RO
2011-06-02 19:03:14 ----D---- C:\Windows\system32\pt-PT
2011-06-02 19:03:14 ----D---- C:\Windows\system32\pl-PL
2011-06-02 19:03:14 ----D---- C:\Windows\system32\nl-NL
2011-06-02 19:03:14 ----D---- C:\Windows\system32\nb-NO
2011-06-02 19:03:14 ----D---- C:\Windows\system32\lv-LV
2011-06-02 19:03:14 ----D---- C:\Windows\system32\lt-LT
2011-06-02 19:03:14 ----D---- C:\Windows\system32\ko-KR
2011-06-02 19:03:14 ----D---- C:\Windows\system32\ja-JP
2011-06-02 19:03:14 ----D---- C:\Windows\system32\it-IT
2011-06-02 19:03:14 ----D---- C:\Windows\system32\hu-HU
2011-06-02 19:03:14 ----D---- C:\Windows\system32\hr-HR
2011-06-02 19:03:14 ----D---- C:\Windows\system32\he-IL
2011-06-02 19:03:14 ----D---- C:\Windows\system32\fr-FR
2011-06-02 19:03:14 ----D---- C:\Windows\system32\fi-FI
2011-06-02 19:03:14 ----D---- C:\Windows\system32\et-EE
2011-06-02 19:03:14 ----D---- C:\Windows\system32\es-ES
2011-06-02 19:03:14 ----D---- C:\Windows\system32\el-GR
2011-06-02 19:03:14 ----D---- C:\Windows\system32\de-DE
2011-06-02 19:03:14 ----D---- C:\Windows\system32\da-DK
2011-06-02 19:03:14 ----D---- C:\Windows\system32\bg-BG
2011-06-02 19:03:14 ----D---- C:\Windows\system32\ar-SA
2011-06-02 18:45:17 ----D---- C:\Windows\system32\drivers\UMDF
2011-06-02 18:41:23 ----SD---- C:\Windows\system32\Microsoft
2011-06-02 17:01:51 ----D---- C:\Windows\PolicyDefinitions
2011-06-02 16:59:11 ----D---- C:\Windows\system32\restore
2011-06-02 16:46:46 ----RD---- C:\Users
2011-06-02 16:46:41 ----D---- C:\Windows\system32\Recovery
2011-06-02 16:46:41 ----D---- C:\Program Files\Windows NT
2011-06-02 16:45:53 ----D---- C:\Windows\system32\CodeIntegrity
2011-06-02 16:34:47 ----D---- C:\Windows\system32\sysprep
2011-06-02 16:32:24 ----D---- C:\Windows\CSC
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-03-15 26168]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-04-05 331288]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 SafeBoot;SafeBoot; C:\Windows\system32\drivers\SafeBoot.sys [2009-12-15 110520]
R0 SbAlg;SbAlg; C:\Windows\system32\drivers\SbAlg.sys [2009-12-15 51800]
R0 SbFsLock;SbFsLock; C:\Windows\system32\drivers\SbFsLock.sys [2009-12-15 13256]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-05-10 25432]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-05-10 441176]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-05-10 307928]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-05-10 49240]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 HWiNFO32;HWiNFO32 Kernel Driver; \??\C:\Program Files\HWiNFO32\HWiNFO32.SYS [2011-05-22 20216]
R1 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2009-05-15 214024]
R1 mfetdik;McAfee Inc. mfetdik; C:\Windows\system32\drivers\mfetdik.sys [2009-05-15 55336]
R1 PersonalSecureDrive;PersonalSecureDrive; C:\Windows\System32\drivers\psd.sys [2009-10-02 39712]
R1 RsvLock;RsvLock; C:\Windows\system32\drivers\RsvLock.sys [2009-12-15 40088]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-05-10 19544]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-05-10 53592]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2009-06-25 48128]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-03-15 35896]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2009-07-21 1161760]
R3 BCM42RLY;BCM42RLY; C:\Windows\system32\drivers\BCM42RLY.sys [2011-06-02 18424]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2010-06-24 60416]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-09-17 86056]
R3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\drivers\btwavdt.sys [2009-09-17 108072]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 29472]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-09-17 18472]
R3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K; C:\Windows\system32\DRIVERS\e1k6232.sys [2010-04-06 224424]
R3 HECI;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECI.sys [2009-09-17 41088]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2009-04-29 15872]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2011-02-11 9036800]
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2010-02-26 132480]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-08-31 269824]
R3 NETwNs32;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 32 Bit; C:\Windows\system32\DRIVERS\NETwNs32.sys [2011-01-04 7435264]
R3 qcfilterhp2k;HP un2420 Mobile Broadband Module USB Device Filter; C:\Windows\system32\DRIVERS\qcfilterhp2k.sys [2010-10-21 5248]
R3 qcombushp;Gobi 2000 USB Composite Device Driver(03F0-251D); C:\Windows\system32\DRIVERS\qcombushp.sys [2010-10-21 106184]
R3 qcusbnethp2k;Gobi 2000 USB-NDIS miniport(03F0-251D); C:\Windows\system32\DRIVERS\qcusbnethp2k.sys [2010-10-21 374784]
R3 qcusbserhp2k;Gobi 2000 USB Device for Legacy Serial Communication(03F0-251D); C:\Windows\system32\DRIVERS\qcusbserhp2k.sys [2010-10-21 190592]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 rismc32;RICOH Smart Card Reader; C:\Windows\system32\DRIVERS\rismc32.sys [2009-07-20 49152]
R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2009-10-10 84992]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-12-18 1758464]
R3 STHDA;@%SystemRoot%\system32\stlang.dll,-10322; C:\Windows\system32\DRIVERS\stwrt.sys [2010-09-08 431616]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-06-03 1303728]
R3 TPM;Čip TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 30720]
S0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\drivers\Avgrkx86.sys []
S1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2010-12-08 251728]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2010-06-24 393216]
S3 DAMDrv;DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv.sys [2009-10-21 32312]
S3 FreshIO;FreshIO; \??\C:\Program Files\FreshDevices\FreshDiagnose\FreshIO.sys [2004-10-26 2410]
S3 MfeAVFK;McAfee Inc. MfeAVFK; C:\Windows\system32\drivers\MfeAVFK.sys [2009-05-15 79816]
S3 MfeBOPK;McAfee Inc. MfeBOPK; C:\Windows\system32\drivers\MfeBOPK.sys [2009-05-15 35272]
S3 MfeRKDK;McAfee Inc. MfeRKDK; C:\Windows\system32\drivers\MfeRKDK.sys [2009-05-15 34248]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S4 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\drivers\AVGIDSDriver.sys []
S4 AVGIDSEH;AVGIDSEH; C:\Windows\system32\drivers\AVGIDSEH.sys []
S4 AVGIDSFilter;AVGIDSFilter; C:\Windows\system32\drivers\AVGIDSFilter.sys []
S4 AVGIDSShim;AVGIDSShim; C:\Windows\system32\drivers\AVGIDSShim.sys []
S4 Avgtdix;AVG TDI Driver; C:\Windows\system32\drivers\Avgtdix.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [2011-02-02 18656]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-05-10 42184]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG10\avgwdsvc.exe [2010-10-22 265400]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-09-04 595232]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DisplayLinkService;DisplayLinkManager; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [2010-09-21 5236072]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2011-02-23 125496]
R2 HP ProtectTools Service;HP ProtectTools Service; C:\Program Files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2010-01-12 36864]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-03 268824]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2011-02-04 797240]
S2 ac.sharedstore;ActivIdentity Shared Store Service; C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe [2009-06-03 207400]
S2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\aestsrv.exe [2009-03-02 81920]
S2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-03-27 14336]
S2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2010-11-23 6128208]
S2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2010-01-22 300808]
S2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2011-01-05 936208]
S2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2010-08-23 103992]
S2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-07-21 103992]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-02-04 92216]
S2 HpFkCryptService;Drive Encryption Service; C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2009-12-15 281192]
S2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-03-15 26168]
S2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2010-04-05 354840]
S2 IFXSpMgtSrv;Security Platform Management Service; C:\Program Files\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [2009-10-02 1107232]
S2 IFXTCS;Trusted Platform Core Service; C:\Program Files\Hewlett-Packard\Embedded Security Software\ifxtcs.exe [2009-10-02 988448]
S2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2010-05-19 73728]
S2 mitsijm2012;Správce úloh aplikace Autodesk Moldflow Inventor Tool Suite Integration 2012; c:\Program Files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe [2010-12-08 579384]
S2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2011-02-01 1127448]
S2 PersonalSecureDriveService;Služba jednotky Personal Secure Drive; C:\Program Files\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe [2009-10-02 214304]
S2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2011-06-11 66872]
S2 QDLService2kHP;Qualcomm Gobi 2000 Download Service (HP); C:\Program Files\QUALCOMM\QDLService2k\QDLService2kHP.exe [2010-10-21 332096]
S2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2011-01-05 477456]
S2 STacSV;@%SystemRoot%\system32\stlang.dll,-10122; C:\Program Files\IDT\WDM\STacSV.exe [2010-09-08 254034]
S2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-03 2320920]
S2 vcsFPService;Validity VCS Fingerprint Service; C:\Windows\system32\vcsFPService.exe [2010-02-18 1664304]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-06-10 31064]
S3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2010-02-25 227896]
S3 FLCDLOCK;Auditování/zamknutí zařízení nástroje HP ProtectTools; C:\Windows\system32\flcdlock.exe [2009-11-17 362040]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-06-03 1044816]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-06-03 1343400]
S4 NetMsmqActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Vir na externim disku
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Vir na externim disku
Dobrý den 
Stáhneme a spustíme SystemLook
http://jpshortstuff.247fixes.com/SystemLook.exe
Do okna vložíme následující script a stiskneme tlačítko Look
Po dokončení se nám otevře log,který mi zkopírujte sem
Stáhneme a spustíme SystemLook http://jpshortstuff.247fixes.com/SystemLook.exe
Do okna vložíme následující script a stiskneme tlačítko Look
Kód: Vybrat vše
:dir
G:\ /sub
Napiš mi: chodnik74@gmail.com nebo 
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| 
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. 
Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni 
Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
Re: Vir na externim disku
Děkuji Vám za rychlou odpověď.
Takle večer jsem ani nedoufal.
Kvůli velikosti to sem nemohu zkopírovat, proto posílám touto cestou:
http://www.ulozto.cz/9440684/systemlook-doc
Takle večer jsem ani nedoufal.
Kvůli velikosti to sem nemohu zkopírovat, proto posílám touto cestou:
http://www.ulozto.cz/9440684/systemlook-doc
-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Vir na externim disku
Připojte svůj hdd
Otevřeme si Poznámkový blok 
Otevřeme si Poznámkový blok
- (stiskneme klávesovou kombinaci WIN+R a napíšeme ,,notepad,, bez úvozovek a dáme enter)
- Vložíme do něj následující script:
Kód: Vybrat vše
@echo off rmdir "G:\$RECYCLE.BIN" /s /q rmdir "G:\RECYCLER" /s /q del "G:\$RECYCLE.BIN.lnk" /q del "G:\K disku.lnk" /q del "G:\System Volume Information.lnk" /q del "G:\Záloha.lnk" /q del "G:\Hudba.lnk" /q del "G:\Chimera.lnk" /q del "G:\Knihy.lnk" /q del "G:\P.lnk" /q del "G:\Recycled.lnk" /q del "G:\FOTO, video.lnk" /q del "G:\Filmy, seriály.lnk" /q del "G:\Otec.lnk" /q del "G:\Mama.lnk" /q del "G:\Hry.lnk" /q del "G:\ČVUT.lnk" /q del "G:\100_FUJI.lnk" /q del "G:\Z plochy.lnk" /q del "G:\## aswSnx private storage.lnk" /q attrib -h -s "G:\K disku.lnk" /q attrib -h -s "G:\System Volume Information.lnk" /q attrib -h -s "G:\Záloha.lnk" /q attrib -h -s "G:\Hudba.lnk" /q attrib -h -s "G:\Chimera.lnk" /q attrib -h -s "G:\Knihy.lnk" /q attrib -h -s "G:\P.lnk" /q attrib -h -s "G:\Recycled.lnk" /q attrib -h -s "G:\FOTO, video.lnk" /q attrib -h -s "G:\Filmy, seriály.lnk" /q attrib -h -s "G:\Otec.lnk" /q attrib -h -s "G:\Mama.lnk" /q attrib -h -s "G:\Hry.lnk" /q attrib -h -s "G:\ČVUT.lnk" /q attrib -h -s "G:\100_FUJI.lnk" /q attrib -h -s "G:\Z plochy.lnk" /q attrib -h -s "G:\## aswSnx private storage.lnk" /q - Soubor uložíme jako oprava.bat (při ukládání nastavte Uložit jako typ:Všechny soubory)
- Poté tento soubor spustíme a vyčkáme
Napiš mi: chodnik74@gmail.com nebo
>RSIT<>MBAM<>VirusTotal
Doporučuji: |
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
Re: Vir na externim disku
Hotovo.
Na disku mi zbyly pouze složky: ČVUT, filmy serialy,Záloha a Tel seznam I - které jsou stále pouze jako zástupci.
Na disku mi zbyly pouze složky: ČVUT, filmy serialy,Záloha a Tel seznam I - které jsou stále pouze jako zástupci.
-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Vir na externim disku
Stáhneme si na Plochu program OTM
- Spustíme soubor OTM.exe (pokud máte Windows Vista nebo Windows 7,tak na soubor klikněte pravým tlačítkem myši a dejte ,,Spustit jako správce,,)
- Spustí se nám program OTM a do levého okna ,,Paste Instructions for Items to be Moved,, vložíme následující skript a stiskneme tlačítko MoveIt
Kód: Vybrat vše
:files C:\Program Files\Ask.com G:\RECYCLER G:\$RECYCLE.BIN G:\$RECYCLE.BIN.lnk G:\K disku.lnk G:\System Volume Information.lnk G:\Záloha.lnk G:\Hudba.lnk G:\Chimera.lnk G:\Knihy.lnk G:\P.lnk G:\Recycled.lnk G:\FOTO, video.lnk G:\Filmy, seriály.lnk G:\Otec.lnk G:\Mama.lnk G:\Hry.lnk G:\ČVUT.lnk G:\100_FUJI.lnk G:\Z plochy.lnk G:\## aswSnx private storage.lnk attrib -h -s "G:\K disku" /c attrib -h -s "G:\System Volume Information" /c attrib -h -s "G:\Záloha" /c attrib -h -s "G:\Hudba" /c attrib -h -s "G:\Chimera" /c attrib -h -s "G:\Knihy" /c attrib -h -s "G:\P" /c attrib -h -s "G:\Recycled" /c attrib -h -s "G:\FOTO, video" /c attrib -h -s "G:\Filmy, seriály" /c attrib -h -s "G:\Otec" /c attrib -h -s "G:\Mama" /c attrib -h -s "G:\Hry" /c attrib -h -s "G:\ČVUT" /c attrib -h -s "G:\100_FUJI" /c attrib -h -s "G:\Z plochy" /c attrib -h -s "G:\## aswSnx private storage" /c :reg [HKCU\Software\Microsoft\Internet Explorer\Main] "Start Page"="" [HKLM\Software\Microsoft\Internet Explorer\Main] "Start Page"="" [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{D4027C7F-154A-4066-A1AD-4243D8127440}"=- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"=- "Persistence"=- "IAAnotif"=- "ApnUpdater"=- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce] ""=- [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\accrdsub] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\acevents] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG_TRAY] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Comrade.exe] :commands [emptytemp] - Po restartu pc se vám objeví log z OTM,ten mi sem prosím vložte..
Napiš mi: chodnik74@gmail.com nebo
>RSIT<>MBAM<>VirusTotal
Doporučuji: |
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
Re: Vir na externim disku
Já vím, jsem si toho vědom. Příště již nebude. Po nástupu na VŠ není čas...
Zde je výsledek:
All processes killed
========== FILES ==========
C:\Program Files\Ask.com\Updater folder moved successfully.
C:\Program Files\Ask.com\assets\oobe folder moved successfully.
C:\Program Files\Ask.com\assets folder moved successfully.
C:\Program Files\Ask.com folder moved successfully.
File/Folder G:\RECYCLER not found.
G:\$RECYCLE.BIN folder moved successfully.
File/Folder G:\$RECYCLE.BIN.lnk not found.
File/Folder G:\K disku.lnk not found.
File/Folder G:\System Volume Information.lnk not found.
G:\Záloha.lnk moved successfully.
File/Folder G:\Hudba.lnk not found.
File/Folder G:\Chimera.lnk not found.
File/Folder G:\Knihy.lnk not found.
File/Folder G:\P.lnk not found.
File/Folder G:\Recycled.lnk not found.
File/Folder G:\FOTO, video.lnk not found.
G:\Filmy, seriály.lnk moved successfully.
File/Folder G:\Otec.lnk not found.
File/Folder G:\Mama.lnk not found.
File/Folder G:\Hry.lnk not found.
G:\ČVUT.lnk moved successfully.
File/Folder G:\100_FUJI.lnk not found.
File/Folder G:\Z plochy.lnk not found.
File/Folder G:\## aswSnx private storage.lnk not found.
< attrib -h -s "G:\K disku" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\System Volume Information" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Záloha" /c >
Soubor nebyl nalezen - G:\Záloha.
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Hudba" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Chimera" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Knihy" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\P" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Recycled" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\FOTO, video" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Filmy, seriály" /c >
Soubor nebyl nalezen - G:\Filmy, seriály.
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Otec" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Mama" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Hry" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\ČVUT" /c >
Soubor nebyl nalezen - G:\ČVUT.
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\100_FUJI" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Z plochy" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\## aswSnx private storage" /c >
Soubor nebyl nalezen - G:\## aswSnx private storage.
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
========== REGISTRY ==========
HKCU\Software\Microsoft\Internet Explorer\Main\\"Start Page"|"" /E : value set successfully!
HKLM\Software\Microsoft\Internet Explorer\Main\\"Start Page"|"" /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\IgfxTray deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Persistence deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\IAAnotif deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ApnUpdater deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\accrdsub\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\acevents\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG_TRAY\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Comrade.exe\ deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Public
User: XXX
->Temp folder emptied: 82762 bytes
->Temporary Internet Files folder emptied: 1108993 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 89166059 bytes
->Flash cache emptied: 2638 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 522752 bytes
Total Files Cleaned = 87,00 mb
OTM by OldTimer - Version 3.1.18.0 log created on 06212011_001616
Files moved on Reboot...
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Zde je výsledek:
All processes killed
========== FILES ==========
C:\Program Files\Ask.com\Updater folder moved successfully.
C:\Program Files\Ask.com\assets\oobe folder moved successfully.
C:\Program Files\Ask.com\assets folder moved successfully.
C:\Program Files\Ask.com folder moved successfully.
File/Folder G:\RECYCLER not found.
G:\$RECYCLE.BIN folder moved successfully.
File/Folder G:\$RECYCLE.BIN.lnk not found.
File/Folder G:\K disku.lnk not found.
File/Folder G:\System Volume Information.lnk not found.
G:\Záloha.lnk moved successfully.
File/Folder G:\Hudba.lnk not found.
File/Folder G:\Chimera.lnk not found.
File/Folder G:\Knihy.lnk not found.
File/Folder G:\P.lnk not found.
File/Folder G:\Recycled.lnk not found.
File/Folder G:\FOTO, video.lnk not found.
G:\Filmy, seriály.lnk moved successfully.
File/Folder G:\Otec.lnk not found.
File/Folder G:\Mama.lnk not found.
File/Folder G:\Hry.lnk not found.
G:\ČVUT.lnk moved successfully.
File/Folder G:\100_FUJI.lnk not found.
File/Folder G:\Z plochy.lnk not found.
File/Folder G:\## aswSnx private storage.lnk not found.
< attrib -h -s "G:\K disku" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\System Volume Information" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Záloha" /c >
Soubor nebyl nalezen - G:\Záloha.
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Hudba" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Chimera" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Knihy" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\P" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Recycled" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\FOTO, video" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Filmy, seriály" /c >
Soubor nebyl nalezen - G:\Filmy, seriály.
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Otec" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Mama" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Hry" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\ČVUT" /c >
Soubor nebyl nalezen - G:\ČVUT.
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\100_FUJI" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\Z plochy" /c >
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
< attrib -h -s "G:\## aswSnx private storage" /c >
Soubor nebyl nalezen - G:\## aswSnx private storage.
C:\Users\XXX\Desktop\cmd.bat deleted successfully.
C:\Users\XXX\Desktop\cmd.txt deleted successfully.
========== REGISTRY ==========
HKCU\Software\Microsoft\Internet Explorer\Main\\"Start Page"|"" /E : value set successfully!
HKLM\Software\Microsoft\Internet Explorer\Main\\"Start Page"|"" /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\IgfxTray deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Persistence deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\IAAnotif deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ApnUpdater deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\accrdsub\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\acevents\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG_TRAY\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Comrade.exe\ deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Public
User: XXX
->Temp folder emptied: 82762 bytes
->Temporary Internet Files folder emptied: 1108993 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 89166059 bytes
->Flash cache emptied: 2638 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 522752 bytes
Total Files Cleaned = 87,00 mb
OTM by OldTimer - Version 3.1.18.0 log created on 06212011_001616
Files moved on Reboot...
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.
Registry entries deleted on Reboot...
-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Vir na externim disku
Jak vypadá nyní disk? 
Napiš mi: chodnik74@gmail.com nebo
>RSIT<>MBAM<>VirusTotal
Doporučuji: |
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
Re: Vir na externim disku
Disk je v pořádku.
Mnohokrát Vám děkuji za pomoc a pohotový přístup.
Mnohokrát Vám děkuji za pomoc a pohotový přístup.
-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Vir na externim disku
Všechny složky a soubory jsme zachránili? Jinak do opravy jsem zahrnul i váš počítač,odistanil brzdu systému ask.com,vynulovali jsme startovací stránky IE a vypnuli pár zbytečností po startu
Pak aktualizujte Service Pack 1 + IE 9
Nemáte za co rádo se stalo...Valím spat..dobrou noc 
Jinak do opravy jsem zahrnul i váš počítač,odistanil brzdu systému ask.com,vynulovali jsme startovací stránky IE a vypnuli pár zbytečností po startu Pak aktualizujte Service Pack 1 + IE 9 Nemáte za co
rádo se stalo...Valím spat..dobrou noc Napiš mi: chodnik74@gmail.com nebo
>RSIT<>MBAM<>VirusTotal
Doporučuji: |
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Vir na externim disku
Preventivně pak proskenujte i svůj pc,zda nemáte v pc nákazu
Malwarebytes' Anti-Malware 
Malwarebytes' Anti-Malware
- Stáhneme,nainstalujeme a spustíme(pokud si nevíte rady jak,klikněte ZDE)
- Vybereme Úplná kontrola a klikneme na tlačítko Prohledat
- Program provede kontrolu počítače a na konci se vám objeví hláska,že bylo skenování dokončeno,tak potvrdíme tlačítkem OK
- Objeví se vám log,který mi sem vložte
- NIC NEMAZAT!!Program mívá občas falešné detekce,takže mazat budeme až po konzultaci
Napiš mi: chodnik74@gmail.com nebo
>RSIT<>MBAM<>VirusTotal
Doporučuji: |
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
Re: Vir na externim disku
Nemohu najít (nezobrazují se) složky: Čvut, Záloha a Filmy, serialy.
Ostatni (plně funkční ) již kopíruji pro jisotu jinam.
Ostatni (plně funkční
) již kopíruji pro jisotu jinam.-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Vir na externim disku
myslel jsem si podle logu,že tyto tři se neobnovili...
Čvut, Záloha a Filmy, serialy. nejsou nikde a nebo ve formě zástupců? Pořešíme zítra..valím do hajan práce máte dost..takže buď zálohujte a nebo Malwarebytes klidně oboje dohromady..
Čvut, Záloha a Filmy, serialy. nejsou nikde a nebo ve formě zástupců? Pořešíme zítra..valím do hajan
práce máte dost..takže buď zálohujte a nebo Malwarebytes klidně oboje dohromady.. Napiš mi: chodnik74@gmail.com nebo
>RSIT<>MBAM<>VirusTotal
Doporučuji: |
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
Re: Vir na externim disku
Nejsou nikde. Tak případně dořešit zítra, kdyby to bylo možné. Každopádně už teď je to velký pokrok za který děkuji.
Přeji dobrou noc.
Přeji dobrou noc.
Re: Vir na externim disku
Tady je výsledek kontroly:
Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org
Verze databáze: 6905
Windows 6.1.7600
Internet Explorer 8.0.7600.16385
21.6.2011 1:08:15
mbam-log-2011-06-21 (01-08-15).txt
Typ: Rychlá kontrola
Kontrolované objekty: 163700
Uplynulý čas: 4 minut, 52 sekund
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)
Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org
Verze databáze: 6905
Windows 6.1.7600
Internet Explorer 8.0.7600.16385
21.6.2011 1:08:15
mbam-log-2011-06-21 (01-08-15).txt
Typ: Rychlá kontrola
Kontrolované objekty: 163700
Uplynulý čas: 4 minut, 52 sekund
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)
Přispějete na provoz fóra?