VIRY.CZ

Prosím o kontrolu logu. Nejde spusti antivir a ani přeinstalovat, MS Update nefunguje, nejde ani tiskárna, kryž jsem chtěl přeinstalovat drivery tak se nezadařilo. Nevím si s tím rady. Pokud chci přes msconfig vypnout nějaké služby nebo programy po spuštění nelze provedené změny uložit. Prostě se to vrátí do původního stavu před úpravami.

Log:

Logfile of random's system information tool 1.09 (written by random/random)
Run by Tatínek at 2011-09-13 18:32:45
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 65 GB (14%) free of 477 GB
Total RAM: 3070 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:33:11, on 13.9.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Windows Live\Family Safety\fsui.exe
C:\Program Files\Luxand\Blink!\LuxandBlinkTray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files\CT24\ct24crawl.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\WinFast\WFDTV\WFWIZ.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\explorer.exe
C:\Users\Tatínek\Downloads\RSIT(1).exe
C:\Program Files\trend micro\Tatínek.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.myheritage.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.myheritage.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun
O4 - HKLM\..\Run: [Luxand Blink!] C:\Program Files\Luxand\Blink!\LuxandBlinkTray.exe /s
O4 - HKLM\..\Run: [LWS] C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe -hide
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [WinFastDTV] C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
O4 - HKCU\..\Run: [ct24crawl] C:\Program Files\CT24\ct24crawl.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WinFast Schedule] C:\Program Files\WinFast\WFDTV\WFWIZ.exe
O4 - HKCU\..\Run: [PCSpeedUp] C:\Program Files\Zrychleni Pocitace\PCSpeedUp.lnk
O4 - HKCU\..\Run: [5ED3BF1C2C8D4711EBCA1BD56124F238C8B58B48._service_run] "C:\Users\Tatínek\AppData\Local\Google\Chrome\Application\chrome.exe" --type=service
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout Free Download Managerem - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout video Free Download Managerem - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Stáhnout vše Free Download Managerem - file://C:\Program Files\Free Download Manager\dlall.htm
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIF5BA~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\Windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\Windows\Network Diagnostic\xpnetdiag.exe
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {6218F7B5-0D3A-48BA-AE4C-49DCFA63D400} (CSEQueryObject Object) - http://www.myheritage.cz/Genoogle/Compo ... eQuery.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - Unknown owner - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (file missing)
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)

--
End of file - 7196 bytes

======Scheduled tasks folder======

C:\Windows\tasks\1-Click Maintenance.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-573735546-682003330-1003Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-573735546-682003330-1003UA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-573735546-682003330-1006Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-573735546-682003330-1006UA.job
C:\Windows\tasks\Wise Disk Cleaner 4.job
C:\Windows\tasks\Wise Registry Cleaner 4.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Tatínek\AppData\Roaming\Mozilla\Firefox\Profiles\0ydcq9mj.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - "http://www.google.com/search?ie=UTF-8&o ... &gfns=1&q="

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files\Garmin GPS Plugin\npGarmin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3]
"Description"=Office Live Update v1.3
"Path"=C:\Program Files\Microsoft\Office Live\npOLW.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5]
"Description"=Office Live Update v1.5
"Path"=C:\Program Files\Microsoft\Office Live\npOLW.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/wpi,version=1.0]
"Description"=
"Path"=C:\Program Files\Microsoft\Web Platform Installer\\npwpidetector.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=1.1.11]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=1.1.9]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1]
"Description"=Yahoo! activeX Plug-in Bridge
"Path"=C:\Program Files\Yahoo!\Common\npyaxmpb.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsILegitCheckPlugin.xpt
nsIQTScriptablePlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
npLegitCheckPlugin.dll
NPOFF12.DLL
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nsiqtscriptableplugin.xpt
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
Complitly.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\Tatínek\AppData\Roaming\Mozilla\Firefox\Profiles\0ydcq9mj.default\extensions\
DeviceDetection@logitech.com
facepad@lazyrussian.com
nostmp
{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
{20cc25e2-48c9-45e1-9a1f-1ccc1882b81b}
{33e0daa6-3af3-d8b5-6752-10e949c61516}
{6e84150a-d526-41f1-a480-a67d3fed910d}
{ea614400-e918-4741-9a97-7a972ff7c30b}

C:\Users\Tatínek\AppData\Roaming\Mozilla\Firefox\Profiles\0ydcq9mj.default\searchplugins\
askcom.xml
icqplugin.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-01-30 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-05-23 115072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2011-05-13 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdm2.dll [2008-12-30 98304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-05-04 42272]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"fssui"=C:\Program Files\Windows Live\Family Safety\fsui.exe [2011-05-13 884584]
"Luxand Blink!"=C:\Program Files\Luxand\Blink!\LuxandBlinkTray.exe [2010-10-18 7143224]
"LWS"=C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe [2011-03-01 190808]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2011-06-15 997920]
"WinFastDTV"=C:\Program Files\WinFast\WFDTV\DTVSchdl.exe [2011-06-08 101888]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ct24crawl"=C:\Program Files\CT24\ct24crawl.exe [2010-08-09 929280]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-06-15 15141768]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"WinFast Schedule"=C:\Program Files\WinFast\WFDTV\WFWIZ.exe [2010-08-11 2920448]
"PCSpeedUp"=C:\Program Files\Zrychleni Pocitace\PCSpeedUp.lnk [2011-08-29 2397]
"5ED3BF1C2C8D4711EBCA1BD56124F238C8B58B48._service_run"=C:\Users\Tatínek\AppData\Local\Google\Chrome\Application\chrome.exe [2011-08-17 1017912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-30 937920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-06-08 37296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service]
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2009-02-06 170496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Family Tree Builder Update]
C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe [2011-06-21 225280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Tatínek\AppData\Local\Google\Update\GoogleUpdate.exe [2010-06-02 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]
C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-03-26 1234216]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2011-07-05 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Tatínek^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk]
C:\PROGRA~1\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2005-03-16 113664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Tatínek^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^AnyDATA NetWork – zástupce.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Tatínek^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~1\MIF5BA~1\Office12\ONENOTEM.EXE [2009-02-26 97680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\Windows\system32\WgaLogon.dll [2007-04-10 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2011-04-25 203776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=2
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"legalnoticecaption"=
"legalnoticetext"=
"EnableLUA"=0
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
"DisallowRun"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe"="C:\Program Files\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe:*:Enabled:Crysis_32"
"C:\Program Files\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe"="C:\Program Files\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe:*:Enabled:CrysisDedicatedServer_32"
"C:\Program Files\Electronic Arts\Medal of Honor Airborne\UnrealEngine3\Binaries\MOHA.exe"="C:\Program Files\Electronic Arts\Medal of Honor Airborne\UnrealEngine3\Binaries\MOHA.exe:*:Enabled:Medal of Honor Airborne"
"C:\Program Files\Electronic Arts\The Battle for Middle-earth (tm) II\game.dat"="C:\Program Files\Electronic Arts\The Battle for Middle-earth (tm) II\game.dat:*:Enabled:The Battle for Middle-earth(tm) II"
"C:\Program Files\Electronic Arts\The Lord of the Rings, The Rise of the Witch-king\game.dat"="C:\Program Files\Electronic Arts\The Lord of the Rings, The Rise of the Witch-king\game.dat:*:Enabled:The Lord of the Rings, The Rise of the Witch-king"
"C:\Program Files\Knights Of The Temple\Templar.exe"="C:\Program Files\Knights Of The Temple\Templar.exe:*:Enabled:Templar"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Pinnacle\MediaCenter\PMC.exe"="C:\Program Files\Pinnacle\MediaCenter\PMC.exe:LocalSubNet:Enabled:Pmc.exe"
"C:\Program Files\Pinnacle\MediaCenter\PMSInstallInit.exe"="C:\Program Files\Pinnacle\MediaCenter\PMSInstallInit.exe:LocalSubNet:Enabled:PMSInstallInit.exe"
"C:\Program Files\Pinnacle\MediaCenter\PSST.exe"="C:\Program Files\Pinnacle\MediaCenter\PSST.exe:LocalSubNet:Enabled:PSST.exe"
"C:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe"="C:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe:LocalSubNet:Enabled:PMC.Service.Main.exe"
"C:\Program Files\StrongDC\StrongDC.exe"="C:\Program Files\StrongDC\StrongDC.exe:*:Enabled:StrongDC++"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcodec2.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"MSVideo"=vfwwdm32.dll
"msacm.msaudio1"=msaud32.acm
"msacm.msg723"=msg723.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.trspch"=tssoft32.acm
"VIDC.HFYU"=huffyuv.dll
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iv50"=ir50_32.dll
"VIDC.VIFP"=VFCodec.dll
"VIDC.WMV3"=wmv9vcm.dll
"wave"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer2"=wdmaud.drv
"msacm.siren"=sirenacm.dll
"VIDC.FMVC"=fmcodec.dll
"wave1"=wdmaud.drv
"midi"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2011-09-13 18:32:45 ----D---- C:\Program Files\trend micro
2011-08-29 15:42:27 ----D---- C:\Users\Tatínek\AppData\Roaming\MyHeritage
2011-08-29 15:42:27 ----D---- C:\ProgramData\MyHeritage
2011-08-29 14:53:07 ----D---- C:\Program Files\WinPcap
2011-08-29 14:46:01 ----D---- C:\Program Files\Zrychleni Pocitace
2011-08-29 14:45:16 ----D---- C:\Users\Tatínek\AppData\Roaming\OpenCandy
2011-08-24 15:15:17 ----D---- C:\Program Files\QuickTime
2011-08-24 15:14:13 ----D---- C:\Program Files\Common Files\Apple
2011-08-24 15:14:01 ----D---- C:\Program Files\Apple Software Update
2011-08-24 08:36:50 ----A---- C:\Windows\system32\tzres.dll
2011-08-14 12:19:46 ----D---- C:\Program Files\Complitly
2011-08-14 12:18:17 ----D---- C:\Program Files\RelevantKnowledge

======List of files/folders modified in the last 1 month======

2011-09-13 18:32:50 ----D---- C:\Windows\system32\drivers\etc
2011-09-13 18:32:45 ----RD---- C:\Program Files
2011-09-13 18:32:45 ----D---- C:\rsit
2011-09-13 18:26:48 ----AHD---- C:\Users\Tatínek\AppData\Roaming\Skype
2011-09-13 18:26:38 ----D---- C:\Windows\temp
2011-09-13 18:26:36 ----D---- C:\Windows
2011-09-13 18:26:10 ----A---- C:\Windows\SchedLgU.Txt
2011-09-13 18:26:09 ----D---- C:\ProgramData\NVIDIA
2011-09-13 14:24:08 ----D---- C:\Program Files\Call of Duty 2
2011-09-12 20:29:34 ----SHD---- C:\System Volume Information
2011-09-11 22:41:48 ----D---- C:\Windows\system32\catroot2
2011-09-11 19:32:46 ----D---- C:\Windows\system32\catroot
2011-09-11 19:32:46 ----D---- C:\Windows\inf
2011-09-11 13:19:06 ----D---- C:\FreeRapid-0.85u1
2011-09-09 06:53:54 ----SD---- C:\ProgramData\Microsoft
2011-09-09 06:52:58 ----D---- C:\Windows\system32\FxsTmp
2011-09-09 06:52:36 ----D---- C:\Windows\System32
2011-09-08 20:52:57 ----D---- C:\Program Files\Mozilla Firefox
2011-09-08 19:49:51 ----D---- C:\Windows\Prefetch
2011-09-08 17:16:08 ----D---- C:\Windows\system32\config
2011-08-29 22:10:24 ----SHD---- C:\Windows\Installer
2011-08-29 22:10:24 ----D---- C:\Config.Msi
2011-08-29 16:46:13 ----A---- C:\Windows\MyHeritage.INI
2011-08-29 16:18:02 ----D---- C:\Windows\system32\Tasks
2011-08-29 15:46:29 ----D---- C:\Windows\Downloaded Program Files
2011-08-29 15:42:27 ----D---- C:\ProgramData
2011-08-29 15:42:15 ----D---- C:\Windows\winsxs
2011-08-29 15:42:06 ----D---- C:\Program Files\MyHeritage
2011-08-29 14:53:07 ----D---- C:\Windows\system32\drivers
2011-08-29 14:38:07 ----D---- C:\Users\Tatínek\AppData\Roaming\Dropbox
2011-08-27 08:50:17 ----D---- C:\Windows\Minidump
2011-08-27 08:21:48 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-08-25 11:24:47 ----D---- C:\Windows\rescache
2011-08-25 10:45:21 ----RSD---- C:\Windows\assembly
2011-08-25 10:45:21 ----D---- C:\Windows\Microsoft.NET
2011-08-24 15:14:13 ----D---- C:\Program Files\Common Files
2011-08-24 12:40:14 ----D---- C:\Windows\system32\cs-CZ
2011-08-23 09:59:14 ----D---- C:\Program Files\Avidemux 2.5
2011-08-23 09:58:56 ----D---- C:\Program Files\ProgDVB
2011-08-22 10:17:15 ----D---- C:\Users\Tatínek\AppData\Roaming\NVIDIA
2011-08-18 11:45:18 ----A---- C:\Windows\system32\PnkBstrB.exe
2011-08-15 18:15:13 ----A---- C:\Windows\system32\Dvbpws.dll
2011-08-15 18:12:55 ----D---- C:\Windows\system32\wfp
2011-08-15 18:12:53 ----D---- C:\Windows\system32\wbem
2011-08-15 18:11:50 ----SD---- C:\Windows\Tasks
2011-08-15 18:11:50 ----D---- C:\Windows\system32\DriverStore
2011-08-15 18:11:50 ----D---- C:\Users\Tatínek\AppData\Roaming\vlc
2011-08-15 18:11:49 ----HD---- C:\Windows\system32\GroupPolicy
2011-08-15 18:11:47 ----D---- C:\Program Files\ChrisTV Lite
2011-08-15 18:11:45 ----D---- C:\Windows\registration

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvata;nvata; C:\Windows\system32\DRIVERS\nvata.sys [2005-08-18 93568]
R0 nvstor32;nvstor32; C:\Windows\system32\DRIVERS\nvstor32.sys [2008-11-12 146464]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 PxHelp20;PxHelp20; C:\Windows\system32\DRIVERS\PxHelp20.sys [2008-02-16 20016]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2009-10-31 691696]
R1 AsIO;AsIO; C:\Windows\system32\drivers\AsIO.sys [2006-10-18 12664]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 EIO;EIO; \??\C:\WINDOWS\system32\drivers\EIO.sys [2007-07-12 12288]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2011-04-18 165648]
R2 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 39272]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2008-02-22 25416]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-06-25 35088]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2010-11-20 117760]
R3 3xHybrid;WinFast DTV1000 S; C:\Windows\system32\DRIVERS\3xHybrid.sys [2010-10-13 1040512]
R3 ASAPIW2k;ASAPIW2K; C:\Windows\system32\drivers\ASAPIW2k.sys [2005-05-26 11264]
R3 c65013264;C-Media CM6501 Like Sound UDAX Interface; C:\Windows\system32\drivers\c6501.sys [2007-07-20 1313792]
R3 LVRS;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs.sys [2011-04-01 291424]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBSta.sys [2008-12-17 41752]
R3 LVUVC;Logitech QuickCam Pro 9000(UVC); C:\Windows\system32\DRIVERS\lvuvc.sys [2011-04-01 4333280]
R3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2011-04-18 43392]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2006-10-18 7680]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2011-04-27 65024]
R3 NVENETFD;NVIDIA nForce Ethernet ; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2008-08-01 1052704]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2008-01-09 27632]
R3 ULCDRHlp;ULCDRHlp; C:\Windows\System32\Drivers\ULCDRHlp.sys [2004-12-23 27392]
S1 MpKsl11c88f81;MpKsl11c88f81; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D4F57C8D-D552-4415-91C4-4DFFB74DCB7C}\MpKsl11c88f81.sys []
S1 MpKsl19fcefe0;MpKsl19fcefe0; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{323C9C93-E01F-42A1-814C-8B9DF3540D30}\MpKsl19fcefe0.sys []
S1 MpKsl2a55c2f7;MpKsl2a55c2f7; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{51053273-6CA1-4C7C-A670-BDC75BD81FCE}\MpKsl2a55c2f7.sys []
S1 MpKsl2b2bf4c9;MpKsl2b2bf4c9; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6B562C46-0F31-4C27-A222-2F1EF2FB9A4D}\MpKsl2b2bf4c9.sys []
S1 MpKsl2ce76865;MpKsl2ce76865; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{51053273-6CA1-4C7C-A670-BDC75BD81FCE}\MpKsl2ce76865.sys []
S1 MpKsl38696ea0;MpKsl38696ea0; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2A744BE8-FA6B-4A34-8E5F-310308B85F93}\MpKsl38696ea0.sys []
S1 MpKsl3cd4b65b;MpKsl3cd4b65b; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1DBD40BA-F5E1-4D53-B478-534F3D6E7C37}\MpKsl3cd4b65b.sys []
S1 MpKsl3ea79b86;MpKsl3ea79b86; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3A8C08D6-A797-4514-AB86-3D4A12BA1269}\MpKsl3ea79b86.sys []
S1 MpKsl4b587299;MpKsl4b587299; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{15F8768E-3604-4C7B-9593-985C5693A448}\MpKsl4b587299.sys []
S1 MpKsl58794b03;MpKsl58794b03; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{46E7E3A9-3184-45F6-BAD1-BC3769A334BB}\MpKsl58794b03.sys []
S1 MpKsl803a28ab;MpKsl803a28ab; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CC4789DE-B52A-450D-A372-A2391BC3B4F4}\MpKsl803a28ab.sys []
S1 MpKsl8fffb4d3;MpKsl8fffb4d3; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9FF77443-98F5-4C3F-A893-71EEA0439B1F}\MpKsl8fffb4d3.sys []
S1 MpKsl9e69f259;MpKsl9e69f259; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AEB52634-4D57-4D86-B0DA-D2D5C941F4BD}\MpKsl9e69f259.sys []
S1 MpKsl9f3468fc;MpKsl9f3468fc; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{81EE0D44-A440-4F6F-8384-5DCF9FC7B7FF}\MpKsl9f3468fc.sys []
S1 MpKslafa6617a;MpKslafa6617a; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{45E3B215-E9C4-4C79-AB17-41655059FDBE}\MpKslafa6617a.sys []
S1 MpKslbfb50482;MpKslbfb50482; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3891B673-F25A-499D-9849-4FE0E74E271F}\MpKslbfb50482.sys []
S1 MpKslc19e520e;MpKslc19e520e; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4F14B338-138C-4387-B2A1-C86E064899F1}\MpKslc19e520e.sys []
S1 MpKsld1cddd6e;MpKsld1cddd6e; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D4F57C8D-D552-4415-91C4-4DFFB74DCB7C}\MpKsld1cddd6e.sys []
S1 MpKsld33b3313;MpKsld33b3313; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4F14B338-138C-4387-B2A1-C86E064899F1}\MpKsld33b3313.sys []
S1 MpKsld8949feb;MpKsld8949feb; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6E58F60F-36F3-4FAB-B979-3C7DABC3FFAD}\MpKsld8949feb.sys []
S1 MpKsle0159672;MpKsle0159672; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3891B673-F25A-499D-9849-4FE0E74E271F}\MpKsle0159672.sys []
S2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2008-02-22 278984]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 96EW;96EW Filter; C:\Windows\system32\DRIVERS\96EW.sys []
S3 adusbmdm6501;AnyDATA CDMA USB Modem Driver (PID 6501); C:\Windows\system32\DRIVERS\adusbmdm65.sys [2005-05-02 64896]
S3 adusbser;AnyDATA USB Device for Legacy Serial Communication; C:\Windows\system32\DRIVERS\adusbser.sys [2006-12-20 97920]
S3 adusbser6501;AnyDATA CDMA USB Serial Port (PID 6501); C:\Windows\system32\DRIVERS\adusbser65.sys [2005-05-02 64896]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 asusgsb;ASUS Virtual Video Capture Device Driver; C:\Windows\system32\drivers\asusgsb.sys [2007-07-12 12416]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 catchme;catchme; \??\C:\Users\TATNEK~1\AppData\Local\Temp\catchme.sys []
S3 cm102u32;C-Media CM6501 Like Sound Interface; C:\Windows\system32\drivers\c6501.sys [2007-07-20 1313792]
S3 ENTECH;ENTECH; \??\C:\Windows\system32\DRIVERS\ENTECH.sys [2004-10-25 21664]
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2009-09-25 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2009-09-25 25512]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2009-10-06 17664]
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2009-10-06 22016]
S3 nvnetbus;NVIDIA Network Bus Enumerator; C:\Windows\system32\DRIVERS\nvnetbus.sys [2005-09-30 13056]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 PGR1394b;HS 3d Sensor IEEE 1394 Bus host controllers; C:\Windows\system32\DRIVERS\HS3dSensor1394.sys [2008-02-19 72704]
S3 Ph3xIB32;Philips 713x Inbox PCI TV Card; C:\Windows\system32\DRIVERS\Ph3xIB32.sys [2007-04-03 1131136]
S3 RDPDISPM;RDPDISPM; C:\Windows\system32\DRIVERS\rdpdispm.sys [2010-08-05 9040]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM); C:\Windows\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS); C:\Windows\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM); C:\Windows\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
S3 s0017bus;Sony Ericsson Device 0017 driver (WDM); C:\Windows\system32\DRIVERS\s0017bus.sys [2008-10-21 86824]
S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s0017mdfl.sys [2008-10-21 15016]
S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s0017mdm.sys [2008-10-21 114600]
S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s0017mgmt.sys [2008-10-21 108328]
S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS); C:\Windows\system32\DRIVERS\s0017nd5.sys [2008-10-21 26024]
S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s0017obex.sys [2008-10-21 104616]
S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM); C:\Windows\system32\DRIVERS\s0017unic.sys [2008-10-21 109736]
S3 s115bus;Sony Ericsson Device 115 driver (WDM); C:\Windows\system32\DRIVERS\s115bus.sys [2007-04-23 83208]
S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s115mdfl.sys [2007-04-23 15112]
S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s115mdm.sys [2007-04-23 108680]
S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s115mgmt.sys [2007-04-23 100488]
S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s115obex.sys [2007-04-23 98568]
S3 s117bus;Sony Ericsson Device 117 driver (WDM); C:\Windows\system32\DRIVERS\s117bus.sys [2007-06-25 82984]
S3 s117mdfl;Sony Ericsson Device 117 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s117mdfl.sys [2007-06-25 14888]
S3 s117mdm;Sony Ericsson Device 117 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s117mdm.sys [2007-06-25 108456]
S3 s117mgmt;Sony Ericsson Device 117 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s117mgmt.sys [2007-06-25 100264]
S3 s117nd5;Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (NDIS); C:\Windows\system32\DRIVERS\s117nd5.sys [2007-06-25 22952]
S3 s117obex;Sony Ericsson Device 117 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s117obex.sys [2007-06-25 98344]
S3 s117unic;Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (WDM); C:\Windows\system32\DRIVERS\s117unic.sys [2007-06-25 98856]
S3 s125bus;Sony Ericsson Device 125 driver (WDM); C:\Windows\system32\DRIVERS\s125bus.sys [2007-04-24 83336]
S3 s125mdfl;Sony Ericsson Device 125 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s125mdfl.sys [2007-04-24 15112]
S3 s125mdm;Sony Ericsson Device 125 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s125mdm.sys [2007-04-24 108680]
S3 s125mgmt;Sony Ericsson Device 125 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s125mgmt.sys [2007-04-24 100488]
S3 s125obex;Sony Ericsson Device 125 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s125obex.sys [2007-04-24 98696]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2009-10-06 7936]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2009-10-06 7936]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2011-05-13 1492840]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\Antimalware\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-04-27 208944]
R4 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-10-16 73728]
R4 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-08-03 599144]
R4 OMSI download service;Sony Ericsson OMSI download service; C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2009-04-30 90112]
R4 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2011-04-19 75136]
R4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-08-03 379496]
R4 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
R4 UMVPFSrv;UMVPFSrv; C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2011-04-01 428640]
S2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2011-04-27 11736]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-06-10 31064]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe []
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 DAUpdaterSvc;Dragon Age: Prameny - aktualizace obsahu; C:\Program Files\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-12-15 25832]
S4 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S4 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2011-03-29 598312]
S4 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-08-03 2255464]
S4 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2010-06-25 117264]
S4 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-10-27 657408]
S4 TlntSvr;@%SystemRoot%\system32\tlntsvr.exe,-119; C:\Windows\System32\tlntsvr.exe [2009-07-14 71680]
S4 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]

-----------------EOF-----------------

Poprosím o log z ComboFix.

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware

Tak jsem spustil ComboFix a ejhle, hlásil mi, že je spuštěn antivir. Jenže systém hlásí, že není spuštěn, tudíž jsem podle varování nemohl tento antivir ani vynout, protože jsem nevěděl jak, tak jsem na vlastní riziko scan nechal pokračovat. A tady je výsledný log:

ComboFix 11-09-13.03 - Tatínek 13.09.2011 19:36:49.2.2 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.3070.1480 [GMT 2:00]
Spuštěný z: c:\users\TatÝnek\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\cmd.exe
C:\patch.exe
c:\program files\RelevantKnowledge
c:\program files\RelevantKnowledge\rloci.bin
c:\program files\RelevantKnowledge\shfscp.dat
c:\programdata\hpe2627.dll
c:\programdata\hpeA958.dll
c:\programdata\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge
c:\users\Tatínek\AppData\Roaming\Microsoft\Windows\Recent\cb.drv
c:\users\Tatínek\AppData\Roaming\Microsoft\Windows\Recent\CLSV.exe
c:\users\Tatínek\AppData\Roaming\Microsoft\Windows\Recent\exec.tmp
c:\windows\IsUn0405.exe
c:\windows\iun6002.exe
c:\windows\msvrc20.dll
c:\windows\system32\c6501a3d.dll
c:\windows\system32\Dvbpws.dll
c:\windows\system32\lvci11901262.dll
c:\windows\system32\lvci13251014.dll
c:\windows\system32\mfc100deu.dll
c:\windows\system32\nvdispco3220140.dll
c:\windows\system32\paypal.url
c:\windows\system32\ShellManager310E2D762.dll
c:\windows\system32\winx.url
D:\install.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-08-13 do 2011-09-13 )))))))))))))))))))))))))))))))
.
.
2011-09-13 17:45 . 2011-09-13 17:46 -------- d-----w- c:\users\Tatínek\AppData\Local\temp
2011-09-13 17:45 . 2011-09-13 17:45 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2011-09-13 17:45 . 2011-09-13 17:45 -------- d-----w- c:\users\Public\AppData\Local\temp
2011-09-13 17:45 . 2011-09-13 17:45 -------- d-----w- c:\users\Matěj\AppData\Local\temp
2011-09-13 17:45 . 2011-09-13 17:45 -------- d-----w- c:\users\Filip\AppData\Local\temp
2011-09-13 17:45 . 2011-09-13 17:45 -------- d-----w- c:\users\Maminka\AppData\Local\temp
2011-09-13 17:45 . 2011-09-13 17:45 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-09-13 16:32 . 2011-09-13 16:33 -------- d-----w- c:\program files\trend micro
2011-09-13 16:27 . 2011-09-13 16:27 -------- d-----w- c:\users\Tatínek\AppData\Local\{E500FD87-1103-4A23-B785-8FC6F4C11681}
2011-09-13 16:27 . 2011-09-13 16:27 -------- d-----w- c:\users\Tatínek\AppData\Local\{94CFA486-6364-4C9E-9232-C6EDA3D52C89}
2011-09-13 16:00 . 2011-09-13 16:00 -------- d-----w- c:\users\Tatínek\AppData\Local\{2F0C3779-E095-47DD-B647-E3046632B3FC}
2011-09-13 15:59 . 2011-09-13 16:00 -------- d-----w- c:\users\Tatínek\AppData\Local\{2D4B5E2C-134A-44BF-B368-533C608C994C}
2011-09-12 17:46 . 2011-09-12 17:46 -------- d-----w- c:\users\Tatínek\AppData\Local\{C06D25C7-05C9-4F25-8197-69729B69DC3D}
2011-09-12 17:46 . 2011-09-12 17:46 -------- d-----w- c:\users\Tatínek\AppData\Local\{B57B668D-1153-4BB8-BDDA-A92FC32B9E76}
2011-09-11 20:42 . 2011-09-11 20:42 -------- d-----w- c:\users\Tatínek\AppData\Local\{ABED0E8C-4706-470A-8630-71D95BE4746E}
2011-09-11 20:41 . 2011-09-11 20:42 -------- d-----w- c:\users\Tatínek\AppData\Local\{E27C7FCD-7BAD-4891-A44D-AE5D0F23E729}
2011-09-11 17:51 . 2011-09-11 17:51 -------- d-----w- c:\users\Tatínek\AppData\Local\{7368AB41-D220-4B0B-B0C4-CDB0DE6C5CCF}
2011-09-11 17:51 . 2011-09-11 17:51 -------- d-----w- c:\users\Tatínek\AppData\Local\{0C51F0D1-36A7-429B-8756-083239DFB53C}
2011-09-11 17:27 . 2011-09-11 17:27 -------- d-----w- c:\users\Tatínek\AppData\Local\{405E39A7-C0A9-42D6-B6F6-5A3CC1863278}
2011-09-11 17:26 . 2011-09-11 17:27 -------- d-----w- c:\users\Tatínek\AppData\Local\{75512964-CE71-47B9-9ABD-BA6072C92AE3}
2011-09-11 17:17 . 2011-09-11 17:17 -------- d-----w- c:\users\Tatínek\AppData\Local\{E68E48FD-9010-4DB8-A83D-6A36FE4350CB}
2011-09-11 17:17 . 2011-09-11 17:17 -------- d-----w- c:\users\Tatínek\AppData\Local\{DA9D9445-EFEC-4EF5-BD55-094BBEDDF405}
2011-09-11 16:42 . 2011-09-11 16:42 -------- d-----w- c:\users\Tatínek\AppData\Local\{C38497B0-E80E-4D8D-A67E-2C823D81019A}
2011-09-11 16:42 . 2011-09-11 16:42 -------- d-----w- c:\users\Tatínek\AppData\Local\{2C55C38A-26B5-489B-BBC0-B496F6FBBDAE}
2011-09-11 09:25 . 2011-09-11 09:25 -------- d-----w- c:\users\Tatínek\AppData\Local\{94C194BD-8D38-40F4-BF60-B9DE5DDD1424}
2011-09-11 09:25 . 2011-09-11 09:25 -------- d-----w- c:\users\Tatínek\AppData\Local\{0035E1A5-E6EC-41C5-9A27-A62EA7880425}
2011-09-09 14:18 . 2011-09-09 14:18 -------- d-----w- c:\users\Tatínek\AppData\Local\{A4D9D0C3-8C78-4AF5-8366-82AE89EB4FCD}
2011-09-09 14:18 . 2011-09-09 14:18 -------- d-----w- c:\users\Tatínek\AppData\Local\{E5ED3F24-FD55-4BF0-AED2-0E7D6CB23B01}
2011-09-09 04:53 . 2011-09-09 04:53 -------- d-----w- c:\users\Tatínek\AppData\Local\{957244F7-F148-4293-BA6C-73551EF3B147}
2011-09-09 04:52 . 2011-09-09 04:53 -------- d-----w- c:\users\Tatínek\AppData\Local\{D89E78AD-1511-4CCF-AB2D-3758075A7D1F}
2011-09-08 15:21 . 2011-09-08 15:21 -------- d-----w- c:\users\Tatínek\AppData\Local\{C485C629-E239-4287-A6BA-24D36CE7C939}
2011-09-08 15:21 . 2011-09-08 15:21 -------- d-----w- c:\users\Tatínek\AppData\Local\{21713F5A-85C5-471F-AC7E-3AEEDA5FDC10}
2011-09-07 18:05 . 2011-08-12 02:44 7152464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{9778E31A-4873-43D6-9E99-94C0DD49B132}\mpengine.dll
2011-09-07 17:56 . 2011-09-07 17:57 -------- d-----w- c:\users\Tatínek\AppData\Local\{255CDA1F-261A-412F-AE7A-F846863337C1}
2011-09-07 17:56 . 2011-09-07 17:56 -------- d-----w- c:\users\Tatínek\AppData\Local\{A6AF5A16-E7AB-449D-B07D-EA7AB1BA1C7E}
2011-09-06 15:57 . 2011-09-06 15:57 -------- d-----w- c:\users\Tatínek\AppData\Local\{533C3298-4197-483A-9244-D65DB9203A48}
2011-09-06 15:57 . 2011-09-06 15:57 -------- d-----w- c:\users\Tatínek\AppData\Local\{BDD49655-B889-4E0D-B6C4-C2C8B816FCC5}
2011-09-05 15:33 . 2011-09-05 15:33 -------- d-----w- c:\users\Tatínek\AppData\Local\{6249B682-408A-433B-9E3B-906F26AFBCCE}
2011-09-05 15:33 . 2011-09-05 15:33 -------- d-----w- c:\users\Tatínek\AppData\Local\{53783121-CAEA-4CE7-8588-96DC70B22BC0}
2011-09-04 09:30 . 2011-09-04 09:30 -------- d-----w- c:\users\Tatínek\AppData\Local\{675839B1-A466-417C-A5B5-147ACEBF670A}
2011-09-04 09:30 . 2011-09-04 09:30 -------- d-----w- c:\users\Tatínek\AppData\Local\{865F46BE-E00E-4B6E-BC53-D6B6C450BB7E}
2011-09-03 21:29 . 2011-09-03 21:30 -------- d-----w- c:\users\Tatínek\AppData\Local\{CBE98F9F-C453-48B3-8C44-30FDCC5DED62}
2011-09-03 21:29 . 2011-09-03 21:29 -------- d-----w- c:\users\Tatínek\AppData\Local\{066DDC81-7835-4C1B-923B-A64C370488E4}
2011-09-03 09:29 . 2011-09-03 09:29 -------- d-----w- c:\users\Tatínek\AppData\Local\{D7794E4D-1FE1-4835-B3DF-AC46B86CA264}
2011-09-03 09:29 . 2011-09-03 09:29 -------- d-----w- c:\users\Tatínek\AppData\Local\{5FF7E51E-D26C-4AF2-BB40-CFCE2D0EB315}
2011-09-02 19:53 . 2011-09-02 19:54 -------- d-----w- c:\users\Tatínek\AppData\Local\{04D0D970-A3E4-4E1B-9E2D-FEEE7B3EE92C}
2011-09-02 19:53 . 2011-09-02 19:53 -------- d-----w- c:\users\Tatínek\AppData\Local\{7CEBC344-BCD8-4896-AC2A-4E3139B4E880}
2011-09-02 07:53 . 2011-09-02 07:53 -------- d-----w- c:\users\Tatínek\AppData\Local\{73ACE51D-1CEC-447E-B4BF-26A92F21AC34}
2011-09-02 07:53 . 2011-09-02 07:53 -------- d-----w- c:\users\Tatínek\AppData\Local\{E96694B2-4F57-4919-8781-CDB917247360}
2011-09-01 16:59 . 2011-09-01 16:59 -------- d-----w- c:\users\Tatínek\AppData\Local\{A6812625-8917-4687-A735-5235909238D0}
2011-09-01 16:59 . 2011-09-01 16:59 -------- d-----w- c:\users\Tatínek\AppData\Local\{97DA9B90-50F1-4A0D-99A9-5C97B9D933A9}
2011-09-01 09:51 . 2011-09-01 09:52 -------- d-----w- c:\users\Matěj\AppData\Roaming\ArcSoft
2011-08-31 07:22 . 2011-08-31 07:23 -------- d-----w- c:\users\Tatínek\AppData\Local\{C0D55E79-3828-44DA-8E7D-A0820672A591}
2011-08-31 07:22 . 2011-08-31 07:22 -------- d-----w- c:\users\Tatínek\AppData\Local\{6EE8FAF4-D25F-4F84-8477-43245EAE6717}
2011-08-30 19:22 . 2011-08-30 19:22 -------- d-----w- c:\users\Tatínek\AppData\Local\{E46407AC-E9BA-4FB7-AC31-CF66C830800B}
2011-08-30 07:21 . 2011-08-30 07:22 -------- d-----w- c:\users\Tatínek\AppData\Local\{9FBE213D-B9E3-4CE8-A33E-8A24C2DD403A}
2011-08-30 07:21 . 2011-08-30 19:22 -------- d-----w- c:\users\Tatínek\AppData\Local\{5CD58FBB-A74F-47D5-AE45-EB75D6A9A61C}
2011-08-29 19:10 . 2011-08-29 19:10 -------- d-----w- c:\users\Tatínek\AppData\Local\{E49F539A-CBB2-4504-B9A0-42E2801379BF}
2011-08-29 19:09 . 2011-08-29 19:10 -------- d-----w- c:\users\Tatínek\AppData\Local\{445111A7-3FA9-4E22-B412-7BA3C12F4343}
2011-08-29 13:42 . 2011-08-29 13:45 -------- d-----w- c:\users\Tatínek\AppData\Roaming\MyHeritage
2011-08-29 13:42 . 2011-08-29 13:43 -------- d-----w- c:\programdata\MyHeritage
2011-08-29 12:53 . 2011-08-29 12:53 -------- d-----w- c:\program files\WinPcap
2011-08-29 12:46 . 2011-08-29 18:43 -------- d-----w- c:\program files\Zrychleni Pocitace
2011-08-29 12:45 . 2011-08-29 19:08 -------- d-----w- c:\users\Tatínek\AppData\Local\OpenCandy
2011-08-29 12:45 . 2011-08-29 12:45 -------- d-----w- c:\users\Tatínek\AppData\Roaming\OpenCandy
2011-08-29 06:47 . 2011-08-29 06:47 -------- d-----w- c:\users\Tatínek\AppData\Local\{C352E83F-6AED-47F7-88C4-A4917FDC6DAD}
2011-08-29 06:47 . 2011-08-29 06:47 -------- d-----w- c:\users\Tatínek\AppData\Local\{27C65213-2FBD-463C-83B7-67E701F17E0E}
2011-08-28 18:30 . 2011-08-28 18:30 -------- d-----w- c:\users\Tatínek\AppData\Local\{DE43D131-DB35-480D-BDF3-9F2983BB20A3}
2011-08-28 06:29 . 2011-08-28 06:30 -------- d-----w- c:\users\Tatínek\AppData\Local\{62EAF6E6-C709-4FF8-85A1-A3CCDA2AF0D3}
2011-08-28 06:29 . 2011-08-28 18:30 -------- d-----w- c:\users\Tatínek\AppData\Local\{F0F10941-78E6-4930-AD2D-0153C8436045}
2011-08-27 06:18 . 2011-08-27 06:18 -------- d-----w- c:\users\Tatínek\AppData\Local\{E9F3C936-739E-4EDB-91D7-9FD6D943142D}
2011-08-27 06:17 . 2011-08-27 06:18 -------- d-----w- c:\users\Tatínek\AppData\Local\{96562A74-FB85-4CC8-9D5D-86078874A5C1}
2011-08-26 09:02 . 2011-08-26 09:02 -------- d-----w- c:\users\Tatínek\AppData\Local\{E0279A2F-EE49-40E8-888E-965FEB27A73B}
2011-08-26 09:02 . 2011-08-26 09:02 -------- d-----w- c:\users\Tatínek\AppData\Local\{8A510931-086D-47BB-8B4F-365E0CE535A6}
2011-08-25 21:01 . 2011-08-25 21:01 -------- d-----w- c:\users\Tatínek\AppData\Local\{CFBB84EB-22FC-4332-877A-4F98D9DA573A}
2011-08-25 21:01 . 2011-08-25 21:01 -------- d-----w- c:\users\Tatínek\AppData\Local\{4F9246D8-1964-4771-8F44-8A1AD0AB6728}
2011-08-25 09:01 . 2011-08-25 09:01 -------- d-----w- c:\users\Tatínek\AppData\Local\{E27372A6-CA9D-4A2B-81FB-A2A93CADD0DF}
2011-08-25 09:00 . 2011-08-25 09:01 -------- d-----w- c:\users\Tatínek\AppData\Local\{ED5F6B9F-D0DD-43C0-BA05-52370844C086}
2011-08-24 21:00 . 2011-08-24 21:00 -------- d-----w- c:\users\Tatínek\AppData\Local\{451A3FE4-8CC2-4D5B-8F7E-9FDABBD0AF44}
2011-08-24 21:00 . 2011-08-24 21:00 -------- d-----w- c:\users\Tatínek\AppData\Local\{26B343EE-6369-444F-A5B6-21E8971D4269}
2011-08-24 13:14 . 2011-08-24 13:14 -------- d-----w- c:\program files\Common Files\Apple
2011-08-24 13:14 . 2011-08-24 13:14 -------- d-----w- c:\program files\Apple Software Update
2011-08-24 08:59 . 2011-08-24 09:00 -------- d-----w- c:\users\Tatínek\AppData\Local\{46B52D98-57EB-4C31-9B64-892CAEEEBF4A}
2011-08-24 08:59 . 2011-08-24 08:59 -------- d-----w- c:\users\Tatínek\AppData\Local\{1B1ADE58-0BEE-4D1E-9073-A4C52FB05EE6}
2011-08-24 06:36 . 2011-07-09 04:29 2048 ----a-w- c:\windows\system32\tzres.dll
2011-08-24 06:09 . 2011-08-24 06:09 -------- d-----w- c:\users\Tatínek\AppData\Local\{39EFBB7A-D80A-4391-98F1-A69F7D7BC70C}
2011-08-23 07:55 . 2011-08-23 07:56 -------- d-----w- c:\users\Tatínek\AppData\Local\{65A0C6CA-DEF7-4E01-B62D-83BC8CFAD2C5}
2011-08-23 07:55 . 2011-08-23 07:55 -------- d-----w- c:\users\Tatínek\AppData\Local\{799E3C3C-9811-4BCD-93D9-2E9269B56000}
2011-08-22 19:55 . 2011-08-22 19:55 -------- d-----w- c:\users\Tatínek\AppData\Local\{5BFD36AB-FE86-4726-8FA7-B1A4A2925EB7}
2011-08-22 19:55 . 2011-08-22 19:55 -------- d-----w- c:\users\Tatínek\AppData\Local\{74ED41D8-678D-446E-AB2D-F178FC7DD766}
2011-08-22 07:54 . 2011-08-22 07:54 -------- d-----w- c:\users\Tatínek\AppData\Local\{F54D6869-68FB-4EC4-853B-54CF3566FBEA}
2011-08-22 07:53 . 2011-08-22 07:53 -------- d-----w- c:\users\Tatínek\AppData\Local\{1F089335-E234-40F8-9E29-0871C734E0DA}
2011-08-22 07:45 . 2011-08-22 07:45 -------- d-----w- c:\users\Tatínek\AppData\Local\{82063D12-FDA0-45E9-AC08-26D48AA4F28B}
2011-08-22 07:44 . 2011-08-22 07:45 -------- d-----w- c:\users\Tatínek\AppData\Local\{4B1715FD-6B4F-4678-8BAE-E36D364B4028}
2011-08-20 06:27 . 2011-08-20 06:27 -------- d-----w- c:\users\Tatínek\AppData\Local\{D7F25180-87CE-490C-9F76-6B3A9FC5E416}
2011-08-20 06:27 . 2011-08-20 06:27 -------- d-----w- c:\users\Tatínek\AppData\Local\{4422A73D-4D90-4560-ADAF-428DA8F0CDC8}
2011-08-19 12:45 . 2011-08-19 12:45 -------- d-----w- c:\users\Tatínek\AppData\Local\{9F1A406F-C499-44C4-B0C5-A15F31A6CAD0}
2011-08-19 12:45 . 2011-08-19 12:45 -------- d-----w- c:\users\Tatínek\AppData\Local\{9CCDBBD5-EF0F-4FB9-A5F9-D611B5065F40}
2011-08-18 18:16 . 2011-08-18 18:17 -------- d-----w- c:\users\Maminka\AppData\Roaming\ArcSoft
2011-08-18 16:06 . 2011-08-18 16:06 -------- d-----w- c:\users\Tatínek\AppData\Local\{348F6442-4095-4753-B6D1-1F06455F5BE6}
2011-08-18 16:06 . 2011-08-18 16:06 -------- d-----w- c:\users\Tatínek\AppData\Local\{FB64E685-4D38-41C4-8A5E-382DBCCC40E1}
2011-08-17 19:15 . 2011-08-17 19:15 -------- d-----w- c:\users\Filip\AppData\Roaming\Babylon
2011-08-17 05:58 . 2011-08-17 05:58 -------- d-----w- c:\users\Filip\AppData\Roaming\ArcSoft
2011-08-16 18:36 . 2011-08-16 18:36 -------- d-----w- c:\users\Tatínek\AppData\Local\{D7C3D4FD-3864-4C3A-BA58-1755434363C9}
2011-08-16 18:35 . 2011-08-16 18:35 -------- d-----w- c:\users\Tatínek\AppData\Local\{C235B0C9-9113-49AD-838B-8307CE31DCB2}
2011-08-15 16:15 . 2011-08-15 16:15 -------- d-----w- c:\users\Tatínek\AppData\Local\{D331B493-3598-4653-930F-5C9CEF016994}
2011-08-15 16:14 . 2011-08-15 16:15 -------- d-----w- c:\users\Tatínek\AppData\Local\{39E8ADC8-55D5-4670-B78B-34E3D738C878}
2011-08-15 16:03 . 2011-08-15 16:04 -------- d-----w- c:\users\Tatínek\AppData\Local\{61853987-33C7-4721-A993-D8AE6836BF50}
2011-08-15 16:03 . 2011-08-15 16:03 -------- d-----w- c:\users\Tatínek\AppData\Local\{C47814EB-405B-4C78-AC73-E571B9D9E026}
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-08-18 09:45 . 2011-07-30 11:27 138184 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2011-08-18 09:45 . 2011-04-19 19:40 183112 ----a-w- c:\windows\system32\PnkBstrB.exe
2011-08-13 11:35 . 2011-05-28 06:44 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-08-12 02:44 . 2011-08-11 15:17 7152464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-08-09 20:42 . 2011-08-11 15:17 439632 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2011-08-09 20:42 . 2011-08-11 15:17 439632 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C6464C71-B59D-4CBE-B889-AF79AF9795A6}\gapaengine.dll
2011-08-03 11:50 . 2011-08-09 19:08 57960 ----a-w- c:\windows\system32\OpenCL.dll
2011-08-03 11:50 . 2011-08-09 19:08 16595560 ----a-w- c:\windows\system32\nvoglv32.dll
2011-08-03 11:50 . 2011-08-09 19:08 10304104 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2011-08-03 11:50 . 2011-08-09 19:08 914024 ----a-w- c:\windows\system32\nvdispco32.dll
2011-08-03 11:50 . 2011-08-09 19:08 875112 ----a-w- c:\windows\system32\nvgenco32.dll
2011-08-03 11:50 . 2011-08-09 19:08 5404776 ----a-w- c:\windows\system32\nvcuda.dll
2011-08-03 11:50 . 2011-08-09 19:08 2391656 ----a-w- c:\windows\system32\nvcuvid.dll
2011-08-03 11:50 . 2011-08-09 19:08 2090088 ----a-w- c:\windows\system32\nvcuvenc.dll
2011-08-03 11:50 . 2011-08-09 19:08 17193576 ----a-w- c:\windows\system32\nvcompiler.dll
2011-08-03 11:50 . 2011-04-26 09:02 12636776 ----a-w- c:\windows\system32\nvd3dum.dll
2011-08-03 11:50 . 2011-04-07 20:43 600680 ----a-w- c:\windows\system32\easyupdatusapiu.dll
2011-08-03 11:50 . 2011-04-07 20:43 599144 ----a-w- c:\windows\system32\nvvsvc.exe
2011-08-03 11:50 . 2011-04-07 20:43 2560616 ----a-w- c:\windows\system32\nvsvcr.dll
2011-08-03 11:50 . 2011-04-07 20:43 111208 ----a-w- c:\windows\system32\nvmctray.dll
2011-08-03 11:50 . 2011-04-07 20:43 3730024 ----a-w- c:\windows\system32\nvcpl.dll
2011-08-03 11:50 . 2011-04-07 20:43 2558568 ----a-w- c:\windows\system32\nvsvc.dll
2011-08-03 11:50 . 2009-09-27 16:47 66664 ----a-w- c:\windows\system32\nvshext.dll
2011-08-03 11:50 . 2009-09-27 15:12 2412136 ----a-w- c:\windows\system32\nvapi.dll
2011-08-03 11:50 . 2009-07-13 22:09 6613096 ----a-w- c:\windows\system32\nvwgf2um.dll
2011-08-03 01:31 . 2011-08-03 01:31 311912 ----a-w- c:\windows\system32\nvStreaming.exe
2011-07-29 15:55 . 2010-06-24 09:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-07-24 10:51 . 2009-10-29 18:40 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2011-07-24 10:51 . 2009-01-09 09:39 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-07-22 20:51 . 2011-07-22 20:51 94208 ----a-w- c:\windows\system32\dpl100.dll
2011-07-22 02:54 . 2011-08-10 16:08 1797632 ----a-w- c:\windows\system32\jscript9.dll
2011-07-22 02:48 . 2011-08-10 16:08 1126912 ----a-w- c:\windows\system32\wininet.dll
2011-07-22 02:44 . 2011-08-10 16:08 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-07-16 04:27 . 2011-08-10 15:32 290816 ----a-w- c:\windows\system32\KernelBase.dll
2011-07-16 04:15 . 2011-08-10 15:32 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 4096 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 3584 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2011-07-16 04:15 . 2011-08-10 15:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2011-07-16 02:17 . 2011-08-10 15:32 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-07-16 02:17 . 2011-08-10 15:32 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-16 02:17 . 2011-08-10 15:32 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-07-16 02:17 . 2011-08-10 15:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-07-09 02:30 . 2011-08-10 15:32 223744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-07-05 16:37 . 2011-07-05 16:37 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2011-07-05 16:37 . 2011-07-05 16:37 69632 ----a-w- c:\windows\system32\QuickTime.qts
2011-06-24 04:27 . 2011-08-10 15:32 169984 ----a-w- c:\windows\system32\winsrv.dll
2011-06-24 04:22 . 2011-08-10 15:32 271360 ----a-w- c:\windows\system32\conhost.exe
2011-06-23 04:33 . 2011-08-10 15:32 3967872 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-06-23 04:33 . 2011-08-10 15:32 3912576 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-06-21 21:23 . 2011-06-21 21:23 389136 ----a-w- c:\windows\system32\FTBSaver.scr
2011-06-21 05:34 . 2011-08-10 15:32 1290624 ----a-w- c:\windows\system32\drivers\tcpip.sys
2011-09-08 18:52 . 2011-03-25 23:28 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2009-12-09 01:19 94208 ----a-w- c:\users\Tatínek\AppData\Roaming\Dropbox\bin\DropboxExt.13.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2009-12-09 01:19 94208 ----a-w- c:\users\Tatínek\AppData\Roaming\Dropbox\bin\DropboxExt.13.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2009-12-09 01:19 94208 ----a-w- c:\users\Tatínek\AppData\Roaming\Dropbox\bin\DropboxExt.13.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ct24crawl"="c:\program files\CT24\ct24crawl.exe" [2010-08-09 929280]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-06-15 15141768]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"WinFast Schedule"="c:\program files\WinFast\WFDTV\WFWIZ.exe" [2010-08-11 2920448]
"PCSpeedUp"="c:\program files\Zrychleni Pocitace\PCSpeedUp.lnk" [2011-08-29 2397]
"5ED3BF1C2C8D4711EBCA1BD56124F238C8B58B48._service_run"="c:\users\Tatínek\AppData\Local\Google\Chrome\Application\chrome.exe" [2011-08-17 1017912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"fssui"="c:\program files\Windows Live\Family Safety\fsui.exe" [2011-05-13 884584]
"Luxand Blink!"="c:\program files\Luxand\Blink!\LuxandBlinkTray.exe" [2010-10-18 7143224]
"LWS"="c:\program files\Logitech\LWS\Webcam Software\LWS.exe" [2011-03-01 190808]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 997920]
"WinFastDTV"="c:\program files\WinFast\WFDTV\DTVSchdl.exe" [2011-06-08 101888]
.
c:\users\Maminka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Věýezy obrazovky a spuçtŘnˇ aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
c:\users\MatŘj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Věýezy obrazovky a spuçtŘnˇ aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 2 (0x2)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLUA"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKLM\~\startupfolder\C:^Users^Tatínek^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk]
backup=c:\windows\pss\Adobe Gamma.lnk.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\C:^Users^Tatínek^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^AnyDATA NetWork – zástupce.lnk]
backup=c:\windows\pss\AnyDATA NetWork – zástupce.lnk.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\C:^Users^Tatínek^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
backup=c:\windows\pss\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2011-03-30 04:59 937920 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2011-06-08 04:02 37296 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service]
2009-02-06 15:02 170496 ----a-w- c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2009-10-30 11:57 369200 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
2011-07-28 23:08 1259376 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Family Tree Builder Update]
2011-06-21 21:18 225280 ----a-w- c:\program files\MyHeritage\Bin\FTBCheckUpdates.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2010-06-02 16:00 136176 ----atw- c:\users\Tatínek\AppData\Local\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2008-10-25 09:44 31072 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]
2010-03-26 08:52 1234216 ----a-w- c:\program files\Nero\Nero 10\Nero BackItUp\NBAgent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2011-07-05 16:36 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
R1 MpKsl11c88f81;MpKsl11c88f81;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D4F57C8D-D552-4415-91C4-4DFFB74DCB7C}\MpKsl11c88f81.sys [x]
R1 MpKsl19fcefe0;MpKsl19fcefe0;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{323C9C93-E01F-42A1-814C-8B9DF3540D30}\MpKsl19fcefe0.sys [x]
R1 MpKsl2a55c2f7;MpKsl2a55c2f7;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{51053273-6CA1-4C7C-A670-BDC75BD81FCE}\MpKsl2a55c2f7.sys [x]
R1 MpKsl2b2bf4c9;MpKsl2b2bf4c9;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6B562C46-0F31-4C27-A222-2F1EF2FB9A4D}\MpKsl2b2bf4c9.sys [x]
R1 MpKsl2ce76865;MpKsl2ce76865;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{51053273-6CA1-4C7C-A670-BDC75BD81FCE}\MpKsl2ce76865.sys [x]
R1 MpKsl38696ea0;MpKsl38696ea0;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{2A744BE8-FA6B-4A34-8E5F-310308B85F93}\MpKsl38696ea0.sys [x]
R1 MpKsl3cd4b65b;MpKsl3cd4b65b;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{1DBD40BA-F5E1-4D53-B478-534F3D6E7C37}\MpKsl3cd4b65b.sys [x]
R1 MpKsl3ea79b86;MpKsl3ea79b86;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{3A8C08D6-A797-4514-AB86-3D4A12BA1269}\MpKsl3ea79b86.sys [x]
R1 MpKsl4b587299;MpKsl4b587299;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{15F8768E-3604-4C7B-9593-985C5693A448}\MpKsl4b587299.sys [x]
R1 MpKsl58794b03;MpKsl58794b03;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{46E7E3A9-3184-45F6-BAD1-BC3769A334BB}\MpKsl58794b03.sys [x]
R1 MpKsl803a28ab;MpKsl803a28ab;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{CC4789DE-B52A-450D-A372-A2391BC3B4F4}\MpKsl803a28ab.sys [x]
R1 MpKsl8fffb4d3;MpKsl8fffb4d3;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{9FF77443-98F5-4C3F-A893-71EEA0439B1F}\MpKsl8fffb4d3.sys [x]
R1 MpKsl9e69f259;MpKsl9e69f259;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{AEB52634-4D57-4D86-B0DA-D2D5C941F4BD}\MpKsl9e69f259.sys [x]
R1 MpKsl9f3468fc;MpKsl9f3468fc;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{81EE0D44-A440-4F6F-8384-5DCF9FC7B7FF}\MpKsl9f3468fc.sys [x]
R1 MpKslafa6617a;MpKslafa6617a;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{45E3B215-E9C4-4C79-AB17-41655059FDBE}\MpKslafa6617a.sys [x]
R1 MpKslbfb50482;MpKslbfb50482;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{3891B673-F25A-499D-9849-4FE0E74E271F}\MpKslbfb50482.sys [x]
R1 MpKslc19e520e;MpKslc19e520e;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4F14B338-138C-4387-B2A1-C86E064899F1}\MpKslc19e520e.sys [x]
R1 MpKsld1cddd6e;MpKsld1cddd6e;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D4F57C8D-D552-4415-91C4-4DFFB74DCB7C}\MpKsld1cddd6e.sys [x]
R1 MpKsld33b3313;MpKsld33b3313;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4F14B338-138C-4387-B2A1-C86E064899F1}\MpKsld33b3313.sys [x]
R1 MpKsld8949feb;MpKsld8949feb;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6E58F60F-36F3-4FAB-B979-3C7DABC3FFAD}\MpKsld8949feb.sys [x]
R1 MpKsle0159672;MpKsle0159672;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{3891B673-F25A-499D-9849-4FE0E74E271F}\MpKsle0159672.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 96EW;96EW Filter;c:\windows\system32\DRIVERS\96EW.sys [x]
R3 adusbmdm6501;AnyDATA CDMA USB Modem Driver (PID 6501);c:\windows\system32\DRIVERS\adusbmdm65.sys [2005-05-02 64896]
R3 adusbser;AnyDATA USB Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\adusbser.sys [2006-12-20 97920]
R3 adusbser6501;AnyDATA CDMA USB Serial Port (PID 6501);c:\windows\system32\DRIVERS\adusbser65.sys [2005-05-02 64896]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2009-09-25 13224]
R3 PGR1394b;HS 3d Sensor IEEE 1394 Bus host controllers;c:\windows\system32\DRIVERS\HS3dSensor1394.sys [2008-02-19 72704]
R3 Ph3xIB32;Philips 713x Inbox PCI TV Card;c:\windows\system32\DRIVERS\Ph3xIB32.sys [2007-04-03 1131136]
R3 RDPDISPM;RDPDISPM;c:\windows\system32\DRIVERS\rdpdispm.sys [2010-08-05 9040]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
R3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
R3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
R3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
R3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);c:\windows\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
R3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
R3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);c:\windows\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
R3 s0017bus;Sony Ericsson Device 0017 driver (WDM);c:\windows\system32\DRIVERS\s0017bus.sys [2008-10-21 86824]
R3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s0017mdfl.sys [2008-10-21 15016]
R3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s0017mdm.sys [2008-10-21 114600]
R3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s0017mgmt.sys [2008-10-21 108328]
R3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS);c:\windows\system32\DRIVERS\s0017nd5.sys [2008-10-21 26024]
R3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s0017obex.sys [2008-10-21 104616]
R3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM);c:\windows\system32\DRIVERS\s0017unic.sys [2008-10-21 109736]
R3 s115bus;Sony Ericsson Device 115 driver (WDM);c:\windows\system32\DRIVERS\s115bus.sys [2007-04-23 83208]
R3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s115mdfl.sys [2007-04-23 15112]
R3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s115mdm.sys [2007-04-23 108680]
R3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s115mgmt.sys [2007-04-23 100488]
R3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s115obex.sys [2007-04-23 98568]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-24 1343400]
R4 DAUpdaterSvc;Dragon Age: Prameny - aktualizace obsahu;c:\program files\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-12-15 25832]
R4 NAUpdate;Nero Update;c:\program files\Nero\Update\NASvc.exe [2011-03-29 598312]
R4 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-08-03 2255464]
R4 OMSI download service;Sony Ericsson OMSI download service;c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2009-04-30 90112]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2009-10-31 691696]
S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-06-25 35088]
S3 3xHybrid;WinFast DTV1000 S;c:\windows\system32\DRIVERS\3xHybrid.sys [2010-10-13 1040512]
S3 c65013264;C-Media CM6501 Like Sound UDAX Interface;c:\windows\system32\drivers\c6501.sys [2007-07-20 1313792]
S3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [2011-04-18 43392]
S3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2011-04-27 65024]
S3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-04-27 208944]
S3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\DRIVERS\seehcri.sys [2008-01-09 27632]
S4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-08-03 379496]
S4 UMVPFSrv;UMVPFSrv;c:\program files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2011-04-01 428640]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*Deregistered* - aswFsBlk
*Deregistered* - aswRdr
*Deregistered* - aswSP
*Deregistered* - aswTdi
*Deregistered* - LVPr2Mon
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-10-16 11:49 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2011-09-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-573735546-682003330-1006Core.job
- c:\users\Filip\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-28 19:14]
.
2011-09-08 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-573735546-682003330-1006UA.job
- c:\users\Filip\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-28 19:14]
.
2010-03-06 c:\windows\Tasks\Wise Disk Cleaner 4.job
- c:\program files\Wise Disk Cleaner\WiseDiskCleaner.exe [2010-03-06 00:31]
.
2010-03-06 c:\windows\Tasks\Wise Registry Cleaner 4.job
- c:\program files\Wise Registry Cleaner\WiseRegistryCleaner.exe [2010-03-06 21:56]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://search.myheritage.com
mStart Page = hxxp://search.myheritage.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Stáhnout Free Download Managerem - file://c:\program files\Free Download Manager\dllink.htm
IE: Stáhnout video Free Download Managerem - file://c:\program files\Free Download Manager\dlfvideo.htm
IE: Stáhnout vybrané Free Download Managerem - file://c:\program files\Free Download Manager\dlselected.htm
IE: Stáhnout vše Free Download Managerem - file://c:\program files\Free Download Manager\dlall.htm
TCP: DhcpNameServer = 81.200.55.62 81.200.55.34
DPF: {6218F7B5-0D3A-48BA-AE4C-49DCFA63D400} - hxxp://www.myheritage.cz/Genoogle/Components/A ... eQuery.dll
FF - ProfilePath - c:\users\Tatínek\AppData\Roaming\Mozilla\Firefox\Profiles\0ydcq9mj.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8 ... &gfns=1&q=
FF - prefs.js: network.proxy.type - 0
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-Česká kuchařka - c:\windows\IsUn0405.exe
.
.
.
**************************************************************************
.
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 6.1.7601 Disk: WDC_WD50 rev.12.0 -> Harddisk1\DR1 -> \Device\00000098
.
device: opened successfully
user: MBR read successfully
kernel: MBR read successfully
user != kernel MBR !!!
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1757981266-573735546-682003330-1003\Software\SecuROM\License information*]
"datasecu"=hex:71,ec,9f,0e,a2,6b,94,c3,60,f9,e6,55,6f,23,ed,18,95,12,f6,f3,06,
2a,ba,3d,7c,fb,96,a5,fc,8a,46,aa,1a,05,1c,c1,a3,c3,0e,07,ce,3d,fc,3b,93,2b,\
"rkeysecu"=hex:cc,4d,df,d9,07,97,4c,f1,e5,d3,57,d1,83,76,33,2f
.
[HKEY_USERS\S-1-5-21-1757981266-573735546-682003330-1003_Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"scansk"=hex(0):72,a2,b8,1f,2b,3f,92,9d,3a,30,d9,11,56,61,75,b2,0e,a4,f6,27,3f,
85,65,8f,01,ec,0f,f0,cf,33,fd,3d,20,b6,16,36,18,bc,d1,d5,00,00,00,00,00,00,\
.
[HKEY_USERS\S-1-5-21-1757981266-573735546-682003330-1003_Classes\CLSID\{96ba961c-cc2b-4780-b927-01d27035ce53}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"Model"=dword:0000012c
"Therad"=dword:0000001f
"MData"=hex(0):2b,8f,78,29,5a,0c,ce,ec,48,d4,68,e5,9f,6a,96,3e,ab,de,c5,81,26,
38,95,44,85,b1,12,f9,90,dd,23,a1,19,78,3f,6c,0e,ec,5c,e7,4f,43,17,47,c7,91,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0007\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0008\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0009\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0010\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\DISPLAY\Default_Monitor\5&39252fc1&0&UID83886336\Properties\{83da6326-97a6-4088-9453-a1923f573b29}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\DISPLAY\HWP26FA\5&1dc98871&0&UID67109120\Properties\{83da6326-97a6-4088-9453-a1923f573b29}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\DISPLAY\HWP26FA\5&39252fc1&0&UID83886336\Device Parameters\MODES]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\DISPLAY\HWP26FA\5&39252fc1&0&UID83886336\Properties\{540b947e-8b40-45bc-a8a2-6a0b894cbda2}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\DISPLAY\HWP26FA\5&39252fc1&0&UID83886336\Properties\{83da6326-97a6-4088-9453-a1923f573b29}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\DISPLAY\HWP26FA\5&39252fc1&0&UID83886336\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}]
@DACL=(02 0000)
.
Celkový čas: 2011-09-13 19:48:36
ComboFix-quarantined-files.txt 2011-09-13 17:48
.
Před spuštěním: Volných bajtů: 67 740 037 120
Po spuštění: Volných bajtů: 73 695 559 680
.
- - End Of File - - 347C95E3348ED9F2D6E954A4E4CBDBED

CF několik položek smazal, zbytek logu vypadá OK. ještě poprosím o sken TDSSKillerem: http://www.softpedia.com/get/Antivirus/TDSSKiller.shtml . Postupujte podle kolegova návodu:

Utilitu spustte a prikazte ji, at skenuje - klik na Start Scan
Pokud utilita najde infikekci, bude ji chtit lecit (Cure), povolte leceni kliknutim na Continue
Pokud utilita najde podezrely soubor (suspicious), bude jej chtit preskocit (Skip), povolte preskoceni kliknutim na Continue
Po dokonceni skenu bude mozna nutny restart PC, povolte jej kliknutim na Reboot now
Po restartu na Vas vyskoci log, pokud se tak nestane, najdete jej primo na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt - jeho obsah sem vlozte
Pokud restart nebude vyzadovan, kliknete na Close a nasledne na Report - vytvori se log - jeho obsah sem vlozte

Další log:
2011/09/13 20:36:53.0942 0348 TDSS rootkit removing tool 2.5.22.0 Sep 13 2011 15:55:17
2011/09/13 20:36:54.0398 0348 ================================================================================
2011/09/13 20:36:54.0398 0348 SystemInfo:
2011/09/13 20:36:54.0398 0348
2011/09/13 20:36:54.0398 0348 OS Version: 6.1.7601 ServicePack: 1.0
2011/09/13 20:36:54.0398 0348 Product type: Workstation
2011/09/13 20:36:54.0398 0348 ComputerName: DOMA
2011/09/13 20:36:54.0399 0348 UserName: Tatínek
2011/09/13 20:36:54.0399 0348 Windows directory: C:\Windows
2011/09/13 20:36:54.0399 0348 System windows directory: C:\Windows
2011/09/13 20:36:54.0399 0348 Processor architecture: Intel x86
2011/09/13 20:36:54.0399 0348 Number of processors: 2
2011/09/13 20:36:54.0399 0348 Page size: 0x1000
2011/09/13 20:36:54.0399 0348 Boot type: Normal boot
2011/09/13 20:36:54.0399 0348 ================================================================================
2011/09/13 20:36:55.0474 0348 Initialize success
2011/09/13 20:37:31.0099 3992 ================================================================================
2011/09/13 20:37:31.0099 3992 Scan started
2011/09/13 20:37:31.0099 3992 Mode: Manual;
2011/09/13 20:37:31.0099 3992 ================================================================================
2011/09/13 20:37:31.0368 3992 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
2011/09/13 20:37:31.0431 3992 3xHybrid (8906700611c4d90f312459dcd3a8fa2e) C:\Windows\system32\DRIVERS\3xHybrid.sys
2011/09/13 20:37:31.0618 3992 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
2011/09/13 20:37:31.0672 3992 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
2011/09/13 20:37:31.0729 3992 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
2011/09/13 20:37:31.0771 3992 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
2011/09/13 20:37:31.0799 3992 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
2011/09/13 20:37:31.0871 3992 adusbmdm6501 (2f6ebf8ea760fdee8326dfab18ae45c4) C:\Windows\system32\DRIVERS\adusbmdm65.sys
2011/09/13 20:37:31.0935 3992 adusbser (4ae9537ac4df20f857e5db119ef4b1ca) C:\Windows\system32\DRIVERS\adusbser.sys
2011/09/13 20:37:31.0991 3992 adusbser6501 (2f6ebf8ea760fdee8326dfab18ae45c4) C:\Windows\system32\DRIVERS\adusbser65.sys
2011/09/13 20:37:32.0078 3992 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
2011/09/13 20:37:32.0128 3992 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
2011/09/13 20:37:32.0159 3992 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
2011/09/13 20:37:32.0194 3992 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
2011/09/13 20:37:32.0220 3992 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
2011/09/13 20:37:32.0247 3992 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
2011/09/13 20:37:32.0286 3992 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
2011/09/13 20:37:32.0314 3992 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
2011/09/13 20:37:32.0361 3992 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
2011/09/13 20:37:32.0392 3992 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
2011/09/13 20:37:32.0418 3992 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
2011/09/13 20:37:32.0460 3992 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
2011/09/13 20:37:32.0514 3992 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
2011/09/13 20:37:32.0539 3992 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
2011/09/13 20:37:32.0608 3992 ASAPIW2k (875f9079cabee679d34b49e466b61701) C:\Windows\system32\drivers\ASAPIW2k.sys
2011/09/13 20:37:32.0634 3992 AsIO (663f2fb92608073824ee3106886120f3) C:\Windows\system32\drivers\AsIO.sys
2011/09/13 20:37:32.0689 3992 asusgsb (d320732bcf5ff856120bd06855c66867) C:\Windows\system32\drivers\asusgsb.sys
2011/09/13 20:37:32.0744 3992 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/09/13 20:37:32.0801 3992 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
2011/09/13 20:37:32.0841 3992 atksgt (3c4b9850a2631c2263507400d029057b) C:\Windows\system32\DRIVERS\atksgt.sys
2011/09/13 20:37:32.0896 3992 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
2011/09/13 20:37:32.0933 3992 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
2011/09/13 20:37:33.0016 3992 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
2011/09/13 20:37:33.0086 3992 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
2011/09/13 20:37:33.0146 3992 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
2011/09/13 20:37:33.0173 3992 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
2011/09/13 20:37:33.0195 3992 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
2011/09/13 20:37:33.0237 3992 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
2011/09/13 20:37:33.0272 3992 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
2011/09/13 20:37:33.0295 3992 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
2011/09/13 20:37:33.0311 3992 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
2011/09/13 20:37:33.0338 3992 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
2011/09/13 20:37:33.0432 3992 c65013264 (c6d31accf8936d986acf3c69e9d8de91) C:\Windows\system32\drivers\c6501.sys
2011/09/13 20:37:33.0618 3992 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
2011/09/13 20:37:33.0662 3992 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
2011/09/13 20:37:33.0693 3992 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
2011/09/13 20:37:33.0764 3992 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
2011/09/13 20:37:33.0886 3992 cm102u32 (c6d31accf8936d986acf3c69e9d8de91) C:\Windows\system32\drivers\c6501.sys
2011/09/13 20:37:33.0916 3992 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
2011/09/13 20:37:33.0955 3992 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
2011/09/13 20:37:33.0991 3992 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
2011/09/13 20:37:34.0021 3992 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
2011/09/13 20:37:34.0060 3992 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
2011/09/13 20:37:34.0096 3992 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
2011/09/13 20:37:34.0171 3992 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
2011/09/13 20:37:34.0271 3992 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
2011/09/13 20:37:34.0316 3992 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
2011/09/13 20:37:34.0341 3992 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
2011/09/13 20:37:34.0415 3992 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
2011/09/13 20:37:34.0482 3992 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
2011/09/13 20:37:34.0567 3992 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
2011/09/13 20:37:34.0672 3992 EIO (0daf3544804650526751c478aeccce63) C:\WINDOWS\system32\drivers\EIO.sys
2011/09/13 20:37:34.0706 3992 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
2011/09/13 20:37:34.0767 3992 ENTECH (fd9fc82f134b1c91004ffc76a5ae494b) C:\Windows\system32\DRIVERS\ENTECH.sys
2011/09/13 20:37:34.0811 3992 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
2011/09/13 20:37:34.0859 3992 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
2011/09/13 20:37:34.0897 3992 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
2011/09/13 20:37:34.0925 3992 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
2011/09/13 20:37:35.0004 3992 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
2011/09/13 20:37:35.0027 3992 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
2011/09/13 20:37:35.0053 3992 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
2011/09/13 20:37:35.0091 3992 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
2011/09/13 20:37:35.0131 3992 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
2011/09/13 20:37:35.0182 3992 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\Windows\system32\DRIVERS\fssfltr.sys
2011/09/13 20:37:35.0226 3992 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
2011/09/13 20:37:35.0275 3992 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
2011/09/13 20:37:35.0305 3992 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
2011/09/13 20:37:35.0361 3992 ggflt (007aea2e06e7cef7372e40c277163959) C:\Windows\system32\DRIVERS\ggflt.sys
2011/09/13 20:37:35.0403 3992 ggsemc (c73de35960ca75c5ab4ae636b127c64e) C:\Windows\system32\DRIVERS\ggsemc.sys
2011/09/13 20:37:35.0438 3992 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
2011/09/13 20:37:35.0485 3992 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
2011/09/13 20:37:35.0512 3992 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
2011/09/13 20:37:35.0540 3992 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
2011/09/13 20:37:35.0570 3992 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
2011/09/13 20:37:35.0613 3992 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
2011/09/13 20:37:35.0656 3992 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
2011/09/13 20:37:35.0717 3992 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
2011/09/13 20:37:35.0778 3992 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
2011/09/13 20:37:35.0818 3992 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
2011/09/13 20:37:35.0864 3992 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
2011/09/13 20:37:35.0900 3992 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
2011/09/13 20:37:35.0953 3992 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
2011/09/13 20:37:36.0000 3992 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
2011/09/13 20:37:36.0034 3992 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/09/13 20:37:36.0069 3992 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
2011/09/13 20:37:36.0098 3992 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
2011/09/13 20:37:36.0129 3992 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
2011/09/13 20:37:36.0170 3992 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
2011/09/13 20:37:36.0206 3992 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
2011/09/13 20:37:36.0245 3992 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
2011/09/13 20:37:36.0276 3992 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
2011/09/13 20:37:36.0343 3992 KSecDD (412cea1aa78cc02a447f5c9e62b32ff1) C:\Windows\system32\Drivers\ksecdd.sys
2011/09/13 20:37:36.0384 3992 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys
2011/09/13 20:37:36.0461 3992 lirsgt (4127e8b6ddb4090e815c1f8852c277d3) C:\Windows\system32\DRIVERS\lirsgt.sys
2011/09/13 20:37:36.0487 3992 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
2011/09/13 20:37:36.0530 3992 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
2011/09/13 20:37:36.0559 3992 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
2011/09/13 20:37:36.0586 3992 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
2011/09/13 20:37:36.0614 3992 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
2011/09/13 20:37:36.0661 3992 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
2011/09/13 20:37:36.0713 3992 LVRS (b6e1ccd6572984adcae68439afd07011) C:\Windows\system32\DRIVERS\lvrs.sys
2011/09/13 20:37:36.0774 3992 LVUSBSta (5f987fc1aad215ec2c60cf07719b1cce) C:\Windows\system32\drivers\LVUSBSta.sys
2011/09/13 20:37:36.0890 3992 LVUVC (6c42815dd57e397f0cd988304b5eb4b3) C:\Windows\system32\DRIVERS\lvuvc.sys
2011/09/13 20:37:36.0944 3992 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
2011/09/13 20:37:36.0978 3992 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
2011/09/13 20:37:37.0039 3992 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
2011/09/13 20:37:37.0077 3992 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
2011/09/13 20:37:37.0117 3992 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
2011/09/13 20:37:37.0160 3992 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
2011/09/13 20:37:37.0202 3992 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
2011/09/13 20:37:37.0247 3992 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\Windows\system32\DRIVERS\MpFilter.sys
2011/09/13 20:37:37.0293 3992 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
2011/09/13 20:37:37.0996 3992 MpNWMon (2c3489660d4a8d514c123c3f0d67df46) C:\Windows\system32\DRIVERS\MpNWMon.sys
2011/09/13 20:37:38.0080 3992 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
2011/09/13 20:37:38.0132 3992 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
2011/09/13 20:37:38.0183 3992 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/09/13 20:37:38.0245 3992 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/09/13 20:37:38.0282 3992 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/09/13 20:37:38.0327 3992 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
2011/09/13 20:37:38.0369 3992 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
2011/09/13 20:37:38.0426 3992 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
2011/09/13 20:37:38.0448 3992 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
2011/09/13 20:37:38.0496 3992 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
2011/09/13 20:37:38.0538 3992 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
2011/09/13 20:37:38.0616 3992 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/09/13 20:37:38.0640 3992 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
2011/09/13 20:37:38.0663 3992 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
2011/09/13 20:37:38.0694 3992 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
2011/09/13 20:37:38.0718 3992 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
2011/09/13 20:37:38.0748 3992 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
2011/09/13 20:37:38.0790 3992 MTsensor (dcdaab8697a47894a554050ce18d0b56) C:\Windows\system32\DRIVERS\ASACPI.sys
2011/09/13 20:37:38.0812 3992 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
2011/09/13 20:37:38.0853 3992 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
2011/09/13 20:37:38.0940 3992 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
2011/09/13 20:37:38.0990 3992 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
2011/09/13 20:37:39.0019 3992 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
2011/09/13 20:37:39.0064 3992 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
2011/09/13 20:37:39.0110 3992 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
2011/09/13 20:37:39.0162 3992 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
2011/09/13 20:37:39.0189 3992 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
2011/09/13 20:37:39.0243 3992 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
2011/09/13 20:37:39.0320 3992 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
2011/09/13 20:37:39.0371 3992 NisDrv (7b01c6172cfd0b10116175e09200d4b4) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
2011/09/13 20:37:39.0463 3992 nmwcd (357ddb51e03cae598c096d95497373d0) C:\Windows\system32\drivers\ccdcmb.sys
2011/09/13 20:37:39.0502 3992 nmwcdc (7cd443f9d36c80e152fadb274089577a) C:\Windows\system32\drivers\ccdcmbo.sys
2011/09/13 20:37:39.0575 3992 NPF (b48dc6abcd3aeff8618350ccbdc6b09a) C:\Windows\system32\drivers\npf.sys
2011/09/13 20:37:39.0604 3992 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
2011/09/13 20:37:39.0648 3992 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
2011/09/13 20:37:39.0729 3992 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
2011/09/13 20:37:39.0778 3992 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
2011/09/13 20:37:39.0823 3992 nvata (0344aa9113dc16eec379f4652020849d) C:\Windows\system32\DRIVERS\nvata.sys
2011/09/13 20:37:39.0879 3992 NVENETFD (d958a2b5f6ad5c3b8ccdc4d7da62466c) C:\Windows\system32\DRIVERS\nvmfdx32.sys
2011/09/13 20:37:40.0126 3992 nvlddmkm (4152708c0c24e30dae7fa87d5afe1d7b) C:\Windows\system32\DRIVERS\nvlddmkm.sys
2011/09/13 20:37:40.0226 3992 nvnetbus (ea41f641420f3d8271804d287c1ef461) C:\Windows\system32\DRIVERS\nvnetbus.sys
2011/09/13 20:37:40.0266 3992 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
2011/09/13 20:37:40.0303 3992 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
2011/09/13 20:37:40.0341 3992 nvstor32 (bb4dd678706510d9249eed1da0219900) C:\Windows\system32\DRIVERS\nvstor32.sys
2011/09/13 20:37:40.0431 3992 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
2011/09/13 20:37:40.0484 3992 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
2011/09/13 20:37:40.0555 3992 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
2011/09/13 20:37:40.0597 3992 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
2011/09/13 20:37:40.0641 3992 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
2011/09/13 20:37:40.0700 3992 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\Windows\system32\DRIVERS\pccsmcfd.sys
2011/09/13 20:37:40.0737 3992 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
2011/09/13 20:37:40.0764 3992 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
2011/09/13 20:37:40.0792 3992 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
2011/09/13 20:37:40.0826 3992 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
2011/09/13 20:37:40.0867 3992 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
2011/09/13 20:37:40.0950 3992 PGR1394b (6fc9cda0b608dfda41e42d2e9c7d7874) C:\Windows\system32\DRIVERS\HS3dSensor1394.sys
2011/09/13 20:37:41.0008 3992 Ph3xIB32 (9f2f541c52cd7a452e235e885f7d95de) C:\Windows\system32\DRIVERS\Ph3xIB32.sys
2011/09/13 20:37:41.0123 3992 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
2011/09/13 20:37:41.0154 3992 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
2011/09/13 20:37:41.0213 3992 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
2011/09/13 20:37:41.0244 3992 PxHelp20 (b572ed0c3e6165643fa116af20425a54) C:\Windows\system32\DRIVERS\PxHelp20.sys
2011/09/13 20:37:41.0299 3992 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
2011/09/13 20:37:41.0356 3992 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
2011/09/13 20:37:41.0396 3992 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
2011/09/13 20:37:41.0418 3992 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
2011/09/13 20:37:41.0469 3992 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
2011/09/13 20:37:41.0504 3992 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
2011/09/13 20:37:41.0535 3992 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
2011/09/13 20:37:41.0557 3992 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
2011/09/13 20:37:41.0611 3992 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
2011/09/13 20:37:41.0632 3992 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
2011/09/13 20:37:41.0674 3992 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/09/13 20:37:41.0752 3992 RDPDISPM (a862a3a8d7d2d75bdc41b556325e9876) C:\Windows\system32\DRIVERS\rdpdispm.sys
2011/09/13 20:37:41.0790 3992 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
2011/09/13 20:37:41.0823 3992 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
2011/09/13 20:37:41.0845 3992 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
2011/09/13 20:37:41.0905 3992 RdpVideoMiniport (68a0387f58e226deee23d9715955572a) C:\Windows\system32\drivers\rdpvideominiport.sys
2011/09/13 20:37:41.0949 3992 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys
2011/09/13 20:37:42.0012 3992 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
2011/09/13 20:37:42.0079 3992 RMCAST (906dcfc5ebf4ec0433f8d4fffb0ba334) C:\Windows\system32\DRIVERS\RMCAST.sys
2011/09/13 20:37:42.0174 3992 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
2011/09/13 20:37:42.0227 3992 s0016bus (59509ad6cbc28f2c73056268985b3e48) C:\Windows\system32\DRIVERS\s0016bus.sys
2011/09/13 20:37:42.0278 3992 s0016mdfl (b98c3a6f91f4fba285af9606a240c6b4) C:\Windows\system32\DRIVERS\s0016mdfl.sys
2011/09/13 20:37:42.0326 3992 s0016mdm (8a83426f4fb7b5212825d9de76368b1a) C:\Windows\system32\DRIVERS\s0016mdm.sys
2011/09/13 20:37:42.0365 3992 s0016mgmt (7a78bba97feb5e6d24c49e93a3bf7287) C:\Windows\system32\DRIVERS\s0016mgmt.sys
2011/09/13 20:37:42.0427 3992 s0016nd5 (34ef7b5f611957b73e7219dd5a222ad1) C:\Windows\system32\DRIVERS\s0016nd5.sys
2011/09/13 20:37:42.0483 3992 s0016obex (36792935847143e4a3cda0dc87248487) C:\Windows\system32\DRIVERS\s0016obex.sys
2011/09/13 20:37:42.0524 3992 s0016unic (927208754fb27fc3e7a659e77500c5d1) C:\Windows\system32\DRIVERS\s0016unic.sys
2011/09/13 20:37:42.0573 3992 s0017bus (594ff5620661d1386475406e78cb6f2f) C:\Windows\system32\DRIVERS\s0017bus.sys
2011/09/13 20:37:42.0634 3992 s0017mdfl (7258f550419d543bc5c8e80c578a5d54) C:\Windows\system32\DRIVERS\s0017mdfl.sys
2011/09/13 20:37:42.0680 3992 s0017mdm (1de4f6607feb17a15dbd4f1b139e6d2f) C:\Windows\system32\DRIVERS\s0017mdm.sys
2011/09/13 20:37:42.0712 3992 s0017mgmt (9814e6bacc06d2526cd52981c7eeedf0) C:\Windows\system32\DRIVERS\s0017mgmt.sys
2011/09/13 20:37:42.0752 3992 s0017nd5 (2c62cd58225973f26682cd4f783ddede) C:\Windows\system32\DRIVERS\s0017nd5.sys
2011/09/13 20:37:42.0781 3992 s0017obex (f87c3422e84b2fb1b43e0a26247ad5a5) C:\Windows\system32\DRIVERS\s0017obex.sys
2011/09/13 20:37:42.0813 3992 s0017unic (df5e7360a0afa5956bf75da683d0679f) C:\Windows\system32\DRIVERS\s0017unic.sys
2011/09/13 20:37:42.0870 3992 s115bus (e1ab463b36a7ef31d8a73a97a9b57afa) C:\Windows\system32\DRIVERS\s115bus.sys
2011/09/13 20:37:42.0897 3992 s115mdfl (e24113fc13b8737c94cf4e3415488c76) C:\Windows\system32\DRIVERS\s115mdfl.sys
2011/09/13 20:37:42.0925 3992 s115mdm (4029e49e7c673aa0670bd206b0af1b5b) C:\Windows\system32\DRIVERS\s115mdm.sys
2011/09/13 20:37:42.0957 3992 s115mgmt (eb02ab4ca8bccecfde236cad8fc6e135) C:\Windows\system32\DRIVERS\s115mgmt.sys
2011/09/13 20:37:43.0000 3992 s115obex (089869db9ffd2ac807fa87fe82ac7761) C:\Windows\system32\DRIVERS\s115obex.sys
2011/09/13 20:37:43.0042 3992 s117bus (1f561844318914e7eb6e54673a4cc54c) C:\Windows\system32\DRIVERS\s117bus.sys
2011/09/13 20:37:43.0086 3992 s117mdfl (ba93eec3cdf6a63b77ae66221aa4f902) C:\Windows\system32\DRIVERS\s117mdfl.sys
2011/09/13 20:37:43.0126 3992 s117mdm (cba12fd8a8ee5b5cdfbbae2381cd6703) C:\Windows\system32\DRIVERS\s117mdm.sys
2011/09/13 20:37:43.0151 3992 s117mgmt (bd6483e64b1da17e812b34bcdefd9459) C:\Windows\system32\DRIVERS\s117mgmt.sys
2011/09/13 20:37:43.0190 3992 s117nd5 (c7ca36c3054b4cd47a1f6611b046e2f9) C:\Windows\system32\DRIVERS\s117nd5.sys
2011/09/13 20:37:43.0216 3992 s117obex (e290b3a6b58fb72ca97dd48d64e4fc1c) C:\Windows\system32\DRIVERS\s117obex.sys
2011/09/13 20:37:43.0258 3992 s117unic (5c4d1ba23c7511ac880e8ba7baa80dba) C:\Windows\system32\DRIVERS\s117unic.sys
2011/09/13 20:37:43.0327 3992 s125bus (06847aa6f3a9bf7c44134d00a2e578c0) C:\Windows\system32\DRIVERS\s125bus.sys
2011/09/13 20:37:43.0379 3992 s125mdfl (f83f88e1b125308fb5015ea0349502b0) C:\Windows\system32\DRIVERS\s125mdfl.sys
2011/09/13 20:37:43.0427 3992 s125mdm (402a97756c14940ad6ae5169c2fb105e) C:\Windows\system32\DRIVERS\s125mdm.sys
2011/09/13 20:37:43.0456 3992 s125mgmt (82b14c51de76825ec769a6374e4c57d6) C:\Windows\system32\DRIVERS\s125mgmt.sys
2011/09/13 20:37:43.0507 3992 s125obex (bedfc5707c356fd073bf1a4afe442d91) C:\Windows\system32\DRIVERS\s125obex.sys
2011/09/13 20:37:43.0548 3992 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
2011/09/13 20:37:43.0604 3992 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
2011/09/13 20:37:43.0664 3992 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
2011/09/13 20:37:43.0733 3992 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
2011/09/13 20:37:43.0787 3992 seehcri (e5b56569a9f79b70314fede6c953641e) C:\Windows\system32\DRIVERS\seehcri.sys
2011/09/13 20:37:43.0827 3992 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
2011/09/13 20:37:43.0866 3992 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
2011/09/13 20:37:43.0912 3992 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
2011/09/13 20:37:43.0986 3992 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
2011/09/13 20:37:44.0012 3992 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
2011/09/13 20:37:44.0038 3992 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
2011/09/13 20:37:44.0066 3992 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
2011/09/13 20:37:44.0146 3992 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
2011/09/13 20:37:44.0174 3992 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
2011/09/13 20:37:44.0203 3992 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
2011/09/13 20:37:44.0234 3992 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
2011/09/13 20:37:44.0291 3992 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
2011/09/13 20:37:44.0360 3992 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys
2011/09/13 20:37:44.0360 3992 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505
2011/09/13 20:37:44.0368 3992 sptd - detected LockedFile.Multi.Generic (1)
2011/09/13 20:37:44.0408 3992 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
2011/09/13 20:37:44.0459 3992 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
2011/09/13 20:37:44.0486 3992 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
2011/09/13 20:37:44.0546 3992 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
2011/09/13 20:37:44.0590 3992 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
2011/09/13 20:37:44.0615 3992 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
2011/09/13 20:37:44.0665 3992 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
2011/09/13 20:37:44.0805 3992 Tcpip (04e4a7d53a7ace02e8c55b17a498f631) C:\Windows\system32\drivers\tcpip.sys
2011/09/13 20:37:44.0876 3992 TCPIP6 (04e4a7d53a7ace02e8c55b17a498f631) C:\Windows\system32\DRIVERS\tcpip.sys
2011/09/13 20:37:44.0945 3992 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
2011/09/13 20:37:44.0990 3992 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
2011/09/13 20:37:45.0022 3992 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys
2011/09/13 20:37:45.0088 3992 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
2011/09/13 20:37:45.0117 3992 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
2011/09/13 20:37:45.0201 3992 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
2011/09/13 20:37:45.0241 3992 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
2011/09/13 20:37:45.0302 3992 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
2011/09/13 20:37:45.0340 3992 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
2011/09/13 20:37:45.0389 3992 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
2011/09/13 20:37:45.0451 3992 ULCDRHlp (a4e07da3ae2078bd96e84d4baa07b71d) C:\Windows\system32\Drivers\ULCDRHlp.sys
2011/09/13 20:37:45.0505 3992 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
2011/09/13 20:37:45.0554 3992 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
2011/09/13 20:37:45.0579 3992 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
2011/09/13 20:37:45.0652 3992 upperdev (15629e4d65f97ab5432d6d9597cf6a33) C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
2011/09/13 20:37:45.0680 3992 usbaudio (1d9f2bd026e8e2d45033a4df3f16b78c) C:\Windows\system32\drivers\usbaudio.sys
2011/09/13 20:37:45.0723 3992 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
2011/09/13 20:37:45.0765 3992 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
2011/09/13 20:37:45.0805 3992 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
2011/09/13 20:37:45.0864 3992 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\drivers\usbhub.sys
2011/09/13 20:37:45.0920 3992 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\DRIVERS\usbohci.sys
2011/09/13 20:37:45.0948 3992 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
2011/09/13 20:37:46.0013 3992 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
2011/09/13 20:37:46.0059 3992 usbser (31181de6190b39fc8007dffd1a48ffd6) C:\Windows\system32\drivers\usbser.sys
2011/09/13 20:37:46.0115 3992 UsbserFilt (5c17e6a11aa8be53f79fd364ba19f0ce) C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
2011/09/13 20:37:46.0156 3992 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
2011/09/13 20:37:46.0208 3992 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
2011/09/13 20:37:46.0251 3992 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
2011/09/13 20:37:46.0284 3992 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
2011/09/13 20:37:46.0309 3992 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
2011/09/13 20:37:46.0388 3992 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
2011/09/13 20:37:46.0417 3992 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
2011/09/13 20:37:46.0457 3992 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
2011/09/13 20:37:46.0491 3992 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
2011/09/13 20:37:46.0543 3992 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
2011/09/13 20:37:46.0570 3992 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
2011/09/13 20:37:46.0600 3992 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
2011/09/13 20:37:46.0646 3992 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
2011/09/13 20:37:46.0679 3992 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
2011/09/13 20:37:46.0709 3992 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
2011/09/13 20:37:46.0747 3992 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
2011/09/13 20:37:46.0788 3992 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
2011/09/13 20:37:46.0825 3992 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
2011/09/13 20:37:46.0838 3992 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
2011/09/13 20:37:46.0925 3992 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
2011/09/13 20:37:46.0949 3992 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
2011/09/13 20:37:47.0018 3992 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
2011/09/13 20:37:47.0042 3992 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
2011/09/13 20:37:47.0127 3992 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
2011/09/13 20:37:47.0208 3992 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
2011/09/13 20:37:47.0268 3992 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
2011/09/13 20:37:47.0332 3992 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
2011/09/13 20:37:47.0375 3992 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
2011/09/13 20:37:47.0462 3992 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
2011/09/13 20:37:47.0487 3992 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
2011/09/13 20:37:47.0500 3992 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR2
2011/09/13 20:37:48.0300 3992 Boot (0x1200) (32e2031879d6aff64419bd458dd36e7b) \Device\Harddisk0\DR0\Partition0
2011/09/13 20:37:48.0316 3992 Boot (0x1200) (5e6d688a81a458c428f1e9016d1f2345) \Device\Harddisk1\DR1\Partition0
2011/09/13 20:37:48.0332 3992 Boot (0x1200) (9ba85d3c1980e6e00643817f8f5c8461) \Device\Harddisk2\DR2\Partition0
2011/09/13 20:37:48.0343 3992 ================================================================================
2011/09/13 20:37:48.0344 3992 Scan finished
2011/09/13 20:37:48.0344 3992 ================================================================================
2011/09/13 20:37:48.0357 0656 Detected object count: 1
2011/09/13 20:37:48.0357 0656 Actual detected object count: 1
2011/09/13 20:38:30.0753 0656 LockedFile.Multi.Generic(sptd) - User select action: Skip

OK. Nastala nějaká změna?

Bohužel ne k lepšímu Po kliknutí na Windows Update se proces spuštění zastaví na přesýpacích hodinách. Ovladací panely úplně zamrznou. Ostatní problémy zůstávají beze změn tak jak jsem je popsal výše.

Jen malý dotaz: Máte legální oper. systém?

To, že se počítač chová podivně jsem zjistil vlastně až když jsem chtěl tisknout, což už jsem nějakou dobu nedělal. Po různých pokusech o oživení tiskárny jsem zkoušel její přeinstalování a to se nepovedlo a vlastně ani další zásahy do systému nebyly možný. Nějaké náznaky nestandartního chování jsem postřehl, když jsem zhruda před měsícem instaloval televizní kartu. Nakonec se mi to povedlo i když jsem musel několikrát použít bod obnovení. Těd už ani tato možnost nefunguje. Prosstě to v průběhu přípravy tohoto prcesu hodí chybové hlášení a body obnovení, které v systému ještě před několika dny, už nejsou. Zůstaly poslední tři asi týden starý, které vytvořil systém po instalaci záplat, jenže nefunfuje ani jeden. Bohužel nejsem schopen říct, od kdy přesně se počítač chová takhle. Nemám se čeho chytit.

Ano. Obraz závady je opravdu nestandardní. A to jak v případě tiskárny, tak i vf případě TV karty. Proto jsem položil dotaz:

Rudy píše:Jen malý dotaz: Máte legální oper. systém?

Bohužel nemám

Dancan píše:Bohužel nemám

V tom případě nemám jistotu, čím je problém způsoben. Pár virů sice CF nalezl a smazal, nicméně nelegál. OS se může chovat nevyzpytatelně. Navíc zde máme v pravidlech, že nelagální OS neřešíme

Chápu. Nicméně děkuji za snahu. Myslím, že to zvláštní chování systému může souviset s hardwarem, protože to začalo často padat do modrý smrti, ale naprosto neplánovaně. Vždy stačil jen restart a zase to fungovalo i několik měsíců, pak to třeba padalo i několikrát týdně. Prostě záhada. Napadlo mě i přehřívání, ale to se nepotvrdilo. Ani Bios ani software kritickou teplotu nikdy nevykazoval.

Ještě jednou děkuji a přeji příjemný večer

Nemáte zač!