Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Zpomalení systemu

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
TPY
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 26 říj 2010 13:46

Zpomalení systemu

#1 Příspěvek od TPY »

zdravim, kolegovi se nejak zadejchava pocitac, AVAST nasel v docasnych souborech nejaky napadeny exe soubor, vic nic
spusteni ComboFix zamrzne na oznameni ze to bude trvat deset minut, nepomohlo prejmenovani spousteciho souboru, v nouzovem rezimu se chova stejne.

log z RSIT:

info.txt logfile of random's system information tool 1.09 2011-11-07 13:33:51

======Uninstall list======

-->E:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
-->E:\Program Files\Nero\Nero8\\nero\uninstall\UNNERO.exe /UNINSTALL
-->E:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
-->E:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
-->E:\WINDOWS\UNNeroVision.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 E:\WINDOWS\INF\PCHealth.inf
32 Bit HP BiDi Channel Components Installer-->MsiExec.exe /I{9DE3F260-B88E-42CE-90E7-73C78C37D95E}
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
Adobe Flash Player 10 ActiveX-->E:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->E:\WINDOWS\system32\Macromed\Flash\FlashUtil10w_Plugin.exe -maintain plugin
Adobe Reader 8 - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-A81200000003}
Aktualizace systému Windows Internet Explorer 8 (KB2447568)-->"E:\WINDOWS\ie8updates\KB2447568-IE8\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2141007)-->"E:\WINDOWS\$NtUninstallKB2141007$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2345886)-->"E:\WINDOWS\$NtUninstallKB2345886$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2467659)-->"E:\WINDOWS\$NtUninstallKB2467659$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2541763)-->"E:\WINDOWS\$NtUninstallKB2541763$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB898461)-->"E:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB951978)-->"E:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB955759)-->"E:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB955839)-->"E:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB967715)-->"E:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB968389)-->"E:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB971029)-->"E:\WINDOWS\$NtUninstallKB971029$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB971737)-->"E:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB973687)-->"E:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB973815)-->"E:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB976749)-->"E:\WINDOWS\$NtUninstallKB976749$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB978207)-->"E:\WINDOWS\$NtUninstallKB978207$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB980182)-->"E:\WINDOWS\$NtUninstallKB980182$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB2378111)-->"E:\WINDOWS\$NtUninstallKB2378111_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB952069)-->"E:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB954155)-->"E:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB968816)-->"E:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB973540)-->"E:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB975558)-->"E:\WINDOWS\$NtUninstallKB975558_WM8$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB978695)-->"E:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player 11 (KB936782)-->"E:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player 11 (KB954154)-->"E:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Aktualizace zabezpečení produktu Windows XP (KB941569)-->"E:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2510531)-->"E:\WINDOWS\ie8updates\KB2510531-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2530548)-->"E:\WINDOWS\ie8updates\KB2530548-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2544521)-->"E:\WINDOWS\ie8updates\KB2544521-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2559049)-->"E:\WINDOWS\ie8updates\KB2559049-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB982381)-->"E:\WINDOWS\ie8updates\KB982381-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2079403)-->"E:\WINDOWS\$NtUninstallKB2079403$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2115168)-->"E:\WINDOWS\$NtUninstallKB2115168$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2121546)-->"E:\WINDOWS\$NtUninstallKB2121546$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2160329)-->"E:\WINDOWS\$NtUninstallKB2160329$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2183461)-->"E:\WINDOWS\$NtUninstallKB2183461$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2229593)-->"E:\WINDOWS\$NtUninstallKB2229593$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2259922)-->"E:\WINDOWS\$NtUninstallKB2259922$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2279986)-->"E:\WINDOWS\$NtUninstallKB2279986$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2286198)-->"E:\WINDOWS\$NtUninstallKB2286198$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2296011)-->"E:\WINDOWS\$NtUninstallKB2296011$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2296199)-->"E:\WINDOWS\$NtUninstallKB2296199$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2347290)-->"E:\WINDOWS\$NtUninstallKB2347290$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2360131)-->"E:\WINDOWS\$NtUninstallKB2360131$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2360937)-->"E:\WINDOWS\$NtUninstallKB2360937$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2387149)-->"E:\WINDOWS\$NtUninstallKB2387149$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2393802)-->"E:\WINDOWS\$NtUninstallKB2393802$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2412687)-->"E:\WINDOWS\$NtUninstallKB2412687$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2416400)-->"E:\WINDOWS\$NtUninstallKB2416400$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2419632)-->"E:\WINDOWS\$NtUninstallKB2419632$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2423089)-->"E:\WINDOWS\$NtUninstallKB2423089$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2436673)-->"E:\WINDOWS\$NtUninstallKB2436673$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2440591)-->"E:\WINDOWS\$NtUninstallKB2440591$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2443105)-->"E:\WINDOWS\$NtUninstallKB2443105$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2476490)-->"E:\WINDOWS\$NtUninstallKB2476490$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2476687)-->"E:\WINDOWS\$NtUninstallKB2476687$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2478960)-->"E:\WINDOWS\$NtUninstallKB2478960$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2478971)-->"E:\WINDOWS\$NtUninstallKB2478971$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2479628)-->"E:\WINDOWS\$NtUninstallKB2479628$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2479943)-->"E:\WINDOWS\$NtUninstallKB2479943$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2481109)-->"E:\WINDOWS\$NtUninstallKB2481109$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2482017)-->"E:\WINDOWS\$NtUninstallKB2482017$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2483185)-->"E:\WINDOWS\$NtUninstallKB2483185$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2485376)-->"E:\WINDOWS\$NtUninstallKB2485376$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2485663)-->"E:\WINDOWS\$NtUninstallKB2485663$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2497640)-->"E:\WINDOWS\$NtUninstallKB2497640$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2503658)-->"E:\WINDOWS\$NtUninstallKB2503658$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2503665)-->"E:\WINDOWS\$NtUninstallKB2503665$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2506212)-->"E:\WINDOWS\$NtUninstallKB2506212$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2506223)-->"E:\WINDOWS\$NtUninstallKB2506223$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2507618)-->"E:\WINDOWS\$NtUninstallKB2507618$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2507938)-->"E:\WINDOWS\$NtUninstallKB2507938$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2508272)-->"E:\WINDOWS\$NtUninstallKB2508272$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2508429)-->"E:\WINDOWS\$NtUninstallKB2508429$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2509553)-->"E:\WINDOWS\$NtUninstallKB2509553$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2510581)-->"E:\WINDOWS\$NtUninstallKB2510581$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2511455)-->"E:\WINDOWS\$NtUninstallKB2511455$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2524375)-->"E:\WINDOWS\$NtUninstallKB2524375$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2530548)-->"E:\WINDOWS\$NtUninstallKB2530548$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2535512)-->"E:\WINDOWS\$NtUninstallKB2535512$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2536276)-->"E:\WINDOWS\$NtUninstallKB2536276$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2536276-v2)-->"E:\WINDOWS\$NtUninstallKB2536276-v2$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2544521)-->"E:\WINDOWS\$NtUninstallKB2544521$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2544893)-->"E:\WINDOWS\$NtUninstallKB2544893$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2555917)-->"E:\WINDOWS\$NtUninstallKB2555917$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2562937)-->"E:\WINDOWS\$NtUninstallKB2562937$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2566454)-->"E:\WINDOWS\$NtUninstallKB2566454$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2567680)-->"E:\WINDOWS\$NtUninstallKB2567680$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2570222)-->"E:\WINDOWS\$NtUninstallKB2570222$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB923561)-->"E:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB923789)-->E:\WINDOWS\system32\MacroMed\Flash\genuinst.exe E:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Aktualizace zabezpečení systému Windows XP (KB938464)-->"E:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB946648)-->"E:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB950762)-->"E:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB950974)-->"E:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951066)-->"E:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951376-v2)-->"E:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951698)-->"E:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951748)-->"E:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB952004)-->"E:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB952954)-->"E:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB954211)-->"E:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB954459)-->"E:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB954600)-->"E:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB955069)-->"E:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956391)-->"E:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956572)-->"E:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956744)-->"E:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956802)-->"E:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956803)-->"E:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956841)-->"E:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956844)-->"E:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB957095)-->"E:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB957097)-->"E:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958215)-->"E:\WINDOWS\$NtUninstallKB958215$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958644)-->"E:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958687)-->"E:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958690)-->"E:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958869)-->"E:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB959426)-->"E:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960225)-->"E:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960714)-->"E:\WINDOWS\$NtUninstallKB960714$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960715)-->"E:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960803)-->"E:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960859)-->"E:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB961371)-->"E:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB961373)-->"E:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB961501)-->"E:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB963027)-->"E:\WINDOWS\$NtUninstallKB963027$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB968537)-->"E:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB969059)-->"E:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB969897)-->"E:\WINDOWS\$NtUninstallKB969897$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB969898)-->"E:\WINDOWS\$NtUninstallKB969898$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB969947)-->"E:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB970238)-->"E:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB970430)-->"E:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971468)-->"E:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971486)-->"E:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971557)-->"E:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971633)-->"E:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971657)-->"E:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971961)-->"E:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB972260)-->"E:\WINDOWS\$NtUninstallKB972260$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB972270)-->"E:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973346)-->"E:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973354)-->"E:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973507)-->"E:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973525)-->"E:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973869)-->"E:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973904)-->"E:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974112)-->"E:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974318)-->"E:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974392)-->"E:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974455)-->"E:\WINDOWS\$NtUninstallKB974455$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974571)-->"E:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975025)-->"E:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975467)-->"E:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975560)-->"E:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975561)-->"E:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975562)-->"E:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975713)-->"E:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB976325)-->"E:\WINDOWS\$NtUninstallKB976325$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB977165)-->"E:\WINDOWS\$NtUninstallKB977165$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB977816)-->"E:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB977914)-->"E:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978037)-->"E:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978251)-->"E:\WINDOWS\$NtUninstallKB978251$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978262)-->"E:\WINDOWS\$NtUninstallKB978262$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978338)-->"E:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978542)-->"E:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978601)-->"E:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978706)-->"E:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979309)-->"E:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979482)-->"E:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979559)-->"E:\WINDOWS\$NtUninstallKB979559$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979683)-->"E:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979687)-->"E:\WINDOWS\$NtUninstallKB979687$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980195)-->"E:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980218)-->"E:\WINDOWS\$NtUninstallKB980218$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980232)-->"E:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980436)-->"E:\WINDOWS\$NtUninstallKB980436$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981322)-->"E:\WINDOWS\$NtUninstallKB981322$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981349)-->"E:\WINDOWS\$NtUninstallKB981349$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981852)-->"E:\WINDOWS\$NtUninstallKB981852$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981957)-->"E:\WINDOWS\$NtUninstallKB981957$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981997)-->"E:\WINDOWS\$NtUninstallKB981997$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982132)-->"E:\WINDOWS\$NtUninstallKB982132$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982214)-->"E:\WINDOWS\$NtUninstallKB982214$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982381)-->"E:\WINDOWS\$NtUninstallKB982381$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982665)-->"E:\WINDOWS\$NtUninstallKB982665$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982802)-->"E:\WINDOWS\$NtUninstallKB982802$\spuninst\spuninst.exe"
ASUS Virtual Camera-->MsiExec.exe /I{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}
Atheros Communications Inc.(R) L2 Fast Ethernet Driver-->RunDll32 E:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "E:\Program Files\InstallShield Installation Information\{0A755762-EED8-47AB-A446-505766F93D43}\SETUP.EXE" -l0x9 -removeonly
ATI Catalyst Control Center-->RunDll32 E:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "E:\Program Files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe" -l0x0
ATI Display Driver-->rundll32 E:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
ATI Parental Control & Encoder-->MsiExec.exe /I{36CDA33B-909B-4719-97D1-C4B99309BDC7}
avast! Free Antivirus-->E:\Program Files\AVAST Software\Avast\aswRunDll.exe "E:\Program Files\AVAST Software\Avast\Setup\setiface.dll" RunSetup
Bluetooth Stack for Windows by Toshiba-->MsiExec.exe /X{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}
Brother DCP-375CW-->RunDll32 E:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "E:\Program Files\InstallShield Installation Information\{1AE71C13-F341-4774-AA74-EE4A24E34384}\setup.exe" -l0x5 -removeonly /uninst
Canon Utilities Solution Menu-->E:\Program Files\Canon\SolutionMenu\uninst.exe uninst.ini
Combined Community Codec Pack 2007-07-22-->"E:\Program Files\Combined Community Codec Pack\unins001.exe"
DivX Codec-->E:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Converter-->E:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Player-->E:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Plus DirectShow Filters-->E:\Program Files\DivX\DivXDSFiltersUninstall.exe /DSFILTERS
DivX Web Player-->E:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Důležitá aktualizace aplikace Windows Media Player 11 (KB959772)-->"E:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
Free Easy Burner V 3.8-->"E:\Program Files\Free Easy Burner\unins000.exe"
FreeCommander 2007.10-->"E:\Program Files\FreeCommander\unins000.exe"
Google Chrome-->"E:\Program Files\Google\Chrome\Application\15.0.874.106\Installer\setup.exe" --uninstall --system-level
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->E:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->E:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Hotfix for Windows Media Format 11 SDK (KB929399)-->"E:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB915800-v4)-->"E:\WINDOWS\$NtUninstallKB915800-v4$\spuninst\spuninst.exe"
Java(TM) 6 Update 29-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216021FF}
LightScribe System Software 1.12.33.2-->MsiExec.exe /X{582287DA-0806-4AC0-BF19-C15E3A466034}
Microsoft .NET Framework 1.1 Czech Language Pack-->MsiExec.exe /X{5E65E94D-69F2-4850-9E93-6459C53A0F50}
Microsoft .NET Framework 1.1 Security Update (KB2416447)-->"E:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "E:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M2416447\M2416447Uninstall.msp"
Microsoft .NET Framework 1.1 Security Update (KB979906)-->"E:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "E:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M979906\M979906Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Language Pack - CSY-->E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - CSY\install.exe
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->E:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Compression Client Pack 1.0 for Windows XP-->"E:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"E:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Mozilla Firefox 6.0.2 (x86 cs)-->E:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Nero 8 Essentials-->MsiExec.exe /X{8410B358-107A-4FB7-AB2B-6FD952F15A8F}
Nero 8 Essentials-->MsiExec.exe /X{F0AAE3C5-D70C-4F3C-8B6A-EC3992921029}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
OpenOffice.org 3.0-->MsiExec.exe /I{BE8BE32F-F595-4693-9F82-1E0A5A047BB6}
Oprava hotfix aplikace Windows Media Player 11 (KB939683)-->"E:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB2158563)-->"E:\WINDOWS\$NtUninstallKB2158563$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB2443685)-->"E:\WINDOWS\$NtUninstallKB2443685$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB2570791)-->"E:\WINDOWS\$NtUninstallKB2570791$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB952287)-->"E:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB961118)-->"E:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB970653-v3)-->"E:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB976098-v2)-->"E:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB979306)-->"E:\WINDOWS\$NtUninstallKB979306$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB981793)-->"E:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe"
Readiris Pro 10-->RunDll32 E:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "E:\Program Files\InstallShield Installation Information\{14D08502-FEE4-40E5-90D3-8A967A1D8BA2}\setup.exe" -l0x9
Realtek High Definition Audio Driver-->RunDll32 E:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "E:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\SETUP.EXE" -l0x5 -removeonly
Registrace uživatele zařízení Canon MP620 series-->E:\Program Files\Canon\IJEREG\MP620 series\UNINST.EXE
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)-->E:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A8894F19-59C8-38D2-8A75-36C0CCE56A5B} /qb+ REBOOTPROMPT=""
Security Update for Windows Search 4 - KB963093-->"E:\WINDOWS\$NtUninstallKB963093$\spuninst\spuninst.exe"
Skype Click to Call-->MsiExec.exe /I{B6CF2967-C81E-40C0-9815-C05774FEF120}
Skype™ 5.5-->MsiExec.exe /X{AA59DDE4-B672-4621-A016-4C248204957A}
SmarThru 4-->RunDll32 E:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "E:\Program Files\InstallShield Installation Information\{90F1943D-EA4A-4460-B59F-30023F3BA69A}\Setup.exe" -l0x9 uninstall -l0009
SmarThru PC Fax-->E:\WINDOWS\prinst.exe /m"Samsung" /u"SmarThru PC Fax"
Softarová utilita ATI - Odinstalovat-->E:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
Spybot - Search & Destroy-->"E:\Program Files\Spybot - Search & Destroy\unins000.exe"
Synaptics Pointing Device Driver-->rundll32.exe "E:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->E:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
VC80CRTRedist - 8.0.50727.762-->MsiExec.exe /I{767CC44C-9BBC-438D-BAD3-FD4595DD148B}
VCRedistSetup-->MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027}
Windows Internet Explorer 8-->"E:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows Media Format 11 runtime-->"E:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"E:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"E:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Windows Media Player 11-->"E:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Search 4.0-->"E:\WINDOWS\$NtUninstallKB940157$\spuninst\spuninst.exe"
WinRAR 4.00 (32-bit)-->E:\Program Files\WinRAR\uninstall.exe

======Security center information======

AV: avast! Antivirus

======System event log======

Computer Name: U-BCB9F840B14B4
Event Code: 7035
Message: Řídící příkaz Spuštěno byl službě Služba modelu COM pro zápis na disk CD (IMAPI) úspěšně odeslán.

Record Number: 849244
Source Name: Service Control Manager
Time Written: 20110830072649.000000+120
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: U-BCB9F840B14B4
Event Code: 7036
Message: Stav služby Služba rozpoznávání pomocí protokolu SSDP byl změněn na: Spuštěno

Record Number: 849243
Source Name: Service Control Manager
Time Written: 20110830072649.000000+120
Event Type: Informace
User:

Computer Name: U-BCB9F840B14B4
Event Code: 7035
Message: Řídící příkaz Spuštěno byl službě Služba rozpoznávání pomocí protokolu SSDP úspěšně odeslán.

Record Number: 849242
Source Name: Service Control Manager
Time Written: 20110830072645.000000+120
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: U-BCB9F840B14B4
Event Code: 7036
Message: Stav služby Adaptér výkonu služby WMI byl změněn na: Spuštěno

Record Number: 849241
Source Name: Service Control Manager
Time Written: 20110830072640.000000+120
Event Type: Informace
User:

Computer Name: U-BCB9F840B14B4
Event Code: 7035
Message: Řídící příkaz Spuštěno byl službě Adaptér výkonu služby WMI úspěšně odeslán.

Record Number: 849240
Source Name: Service Control Manager
Time Written: 20110830072640.000000+120
Event Type: Informace
User: NT AUTHORITY\SYSTEM

=====Application event log=====

Computer Name: U-BCB9F840B14B4
Event Code: 1800
Message: Služba Centrum zabezpečení systému Windows byla spuštěna.

Record Number: 7662
Source Name: SecurityCenter
Time Written: 20110129194447.000000+060
Event Type: Informace
User:

Computer Name: U-BCB9F840B14B4
Event Code: 0
Message:
Record Number: 7661
Source Name: TOSHIBA Bluetooth Service
Time Written: 20110129194442.000000+060
Event Type: Informace
User:

Computer Name: U-BCB9F840B14B4
Event Code: 0
Message:
Record Number: 7660
Source Name: RichVideo
Time Written: 20110129194442.000000+060
Event Type: Informace
User:

Computer Name: U-BCB9F840B14B4
Event Code: 0
Message:
Record Number: 7659
Source Name: gupdate1ca30b5d30de05a
Time Written: 20110129194441.000000+060
Event Type: Informace
User:

Computer Name: U-BCB9F840B14B4
Event Code: 4
Message: The LightScribe Service started successfully.

Record Number: 7658
Source Name: LightScribeService
Time Written: 20110129194441.000000+060
Event Type: Informace
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\wbem;E:\Program Files\ATI Technologies\ATI.ACE\Core-Static;E:\Program Files\Common Files\DivX Shared
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 13, GenuineIntel
"PROCESSOR_REVISION"=0f0d
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------


Logfile of random's system information tool 1.09 (written by random/random)
Run by Uzivatel at 2011-11-07 13:33:45
Microsoft Windows XP Home Edition Service Pack 3
System drive E: has 288 GB (94%) free of 305 GB
Total RAM: 2943 MB (77% free)

HijackThis download failed

======Scheduled tasks folder======

E:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
E:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - E:\Documents and Settings\Uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6mmmvn1v.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26, jqs@sun.com:1.0, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, wrc@avast.com:6.0.1203, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.19"

"{20a82645-c095-46ed-80e3-08825760534b}"=e:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=E:\Program Files\AVAST Software\Avast\WebRep\FF
"jqs@sun.com"=E:\Program Files\Java\jre6\lib\deploy\jqs\ff


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=E:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Web Player
"Path"=E:\Program Files\DivX\DivX Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0]
"Description"=DivX® Player Plugin for VOD Content
"Path"=E:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=E:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=e:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=E:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=E:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

E:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}

E:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

E:\Program Files\Mozilla Firefox\plugins\
libdivx.dll
npdeployJava1.dll
npdivx32.dll
npdivx32.xpt
npDivxPlayerPlugin.dll
nppdf32.dll
nsIDivxPlayerPlugin.xpt
ssldivx.dll

E:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

E:\Documents and Settings\Uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6mmmvn1v.default\extensions\
{20a82645-c095-46ed-80e3-08825760534b}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - E:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - E:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - E:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10 3834016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - E:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-10-18 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-10-18 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - E:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=E:\WINDOWS\RTHDCPL.EXE [2006-10-30 16269312]
"SkyTel"=E:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
"Alcmtr"=E:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"SynTPEnh"=E:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-05-25 786521]
"NeroFilterCheck"=E:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [2008-06-19 570664]
"NBKeyScan"=E:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe []
"CanonSolutionMenu"=E:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2008-03-10 689488]
"Adobe Reader Speed Launcher"=E:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"avast"=E:\Program Files\AVAST Software\Avast\avastUI.exe [2011-09-06 3722416]
"SunJavaUpdateSched"=E:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=E:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
""= []
"StartCCC"=E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=E:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2008-06-24 1840424]
"LightScribe Control Panel"=E:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2008-02-26 2289664]
"MSMSGS"=E:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"Skype"=E:\Program Files\Skype\Phone\Skype.exe [2011-10-13 17351304]
"SpybotSD TeaTimer"=E:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-01-26 2144088]

E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Bluetooth Manager.lnk - E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
Windows Search.lnk - E:\Program Files\Windows Desktop Search\WindowsSearch.exe

E:\Documents and Settings\Uzivatel\Nabídka Start\Programy\Po spuštění
CCC.lnk - E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
E:\WINDOWS\system32\Ati2evxx.dll [2007-02-02 110592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - E:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=E:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\Program Files\Common Files\Nero\Nero Web\SetupX.exe"="E:\Program Files\Common Files\Nero\Nero Web\SetupX.exe:*:Enabled:Nero ControlCenter"
"E:\Documents and Settings\Uzivatel\Local Settings\Temp\OnlineUpdate8\SetupXu.exe"="E:\Documents and Settings\Uzivatel\Local Settings\Temp\OnlineUpdate8\SetupXu.exe:*:Enabled:Nero ControlCenter"
"E:\WINDOWS\twain_32\Samsung\ScanMgr.exe"="E:\WINDOWS\twain_32\Samsung\ScanMgr.exe:*:Enabled:Scan Manger"
"E:\WINDOWS\twain_32\Samsung\CLX3170\Scan2Pc.exe"="E:\WINDOWS\twain_32\Samsung\CLX3170\Scan2Pc.exe:*:Enabled:ScanToPC"
"E:\WINDOWS\twain_32\Samsung\CLX3170\Sscan2io.exe"="E:\WINDOWS\twain_32\Samsung\CLX3170\Sscan2io.exe:*:Enabled:SScanToIO"
"E:\Program Files\Skype\Phone\Skype.exe"="E:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=E:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=E:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=serwvdrv.dll
"wave2"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.ffds"=E:\PROGRA~1\COMBIN~1\Filters\FFDShow\ff_vfw.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"VIDC.MPG4"=mpg4c32.dll
"VIDC.MP42"=mpg4c32.dll

======List of files/folders created in the last 1 month======

2011-11-07 13:33:46 ----D---- E:\Program Files\trend micro
2011-11-07 13:33:45 ----D---- E:\rsit
2011-11-07 13:19:29 ----D---- E:\Program Files\Ultimate Process Manager
2011-11-07 13:16:10 ----D---- E:\Program Files\Spybot - Search & Destroy
2011-11-07 13:16:10 ----D---- E:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2011-11-07 13:10:25 ----ASH---- E:\hiberfil.sys
2011-11-07 12:57:02 ----SD---- E:\brekekeke
2011-11-07 12:51:26 ----A---- E:\WINDOWS\ntbtlog.txt
2011-11-07 11:31:17 ----A---- E:\Boot.bak
2011-11-07 11:31:08 ----RASHD---- E:\cmdcons
2011-11-07 11:27:39 ----A---- E:\WINDOWS\zip.exe
2011-11-07 11:27:39 ----A---- E:\WINDOWS\SWXCACLS.exe
2011-11-07 11:27:39 ----A---- E:\WINDOWS\SWSC.exe
2011-11-07 11:27:39 ----A---- E:\WINDOWS\SWREG.exe
2011-11-07 11:27:39 ----A---- E:\WINDOWS\sed.exe
2011-11-07 11:27:39 ----A---- E:\WINDOWS\PEV.exe
2011-11-07 11:27:39 ----A---- E:\WINDOWS\NIRCMD.exe
2011-11-07 11:27:39 ----A---- E:\WINDOWS\MBR.exe
2011-11-07 11:27:39 ----A---- E:\WINDOWS\grep.exe
2011-11-07 11:27:22 ----D---- E:\WINDOWS\ERDNT
2011-11-07 11:27:05 ----D---- E:\Qoobox
2011-11-07 11:23:35 ----D---- E:\Program Files\Common Files\Java
2011-11-07 11:22:20 ----A---- E:\WINDOWS\system32\javaws.exe
2011-11-07 11:22:20 ----A---- E:\WINDOWS\system32\javaw.exe
2011-11-07 11:22:20 ----A---- E:\WINDOWS\system32\java.exe
2011-11-07 11:02:51 ----A---- E:\Nero Scout.lnk
2011-10-22 20:32:36 ----D---- E:\Documents and Settings\Uzivatel\Data aplikací\Skype
2011-10-22 20:32:14 ----RD---- E:\Program Files\Skype
2011-10-22 20:32:01 ----D---- E:\Documents and Settings\All Users\Data aplikací\Skype

======List of files/folders modified in the last 1 month======

2011-11-07 13:33:46 ----RD---- E:\Program Files
2011-11-07 13:33:25 ----D---- E:\Program Files\FreeCommander
2011-11-07 13:32:21 ----D---- E:\WINDOWS
2011-11-07 13:31:55 ----D---- E:\Program Files\Core Design
2011-11-07 13:30:24 ----HD---- E:\WINDOWS\inf
2011-11-07 13:30:24 ----D---- E:\WINDOWS\system32\drivers
2011-11-07 13:30:24 ----D---- E:\WINDOWS\system32\CatRoot
2011-11-07 13:29:43 ----SHD---- E:\WINDOWS\Installer
2011-11-07 13:29:43 ----SHD---- E:\Config.Msi
2011-11-07 13:28:21 ----HD---- E:\Program Files\InstallShield Installation Information
2011-11-07 13:28:15 ----D---- E:\Program Files\CyberLink
2011-11-07 13:25:33 ----D---- E:\WINDOWS\Temp
2011-11-07 13:25:10 ----SHD---- E:\System Volume Information
2011-11-07 13:25:10 ----D---- E:\WINDOWS\system32\Restore
2011-11-07 13:12:55 ----D---- E:\WINDOWS\system32\CatRoot2
2011-11-07 13:12:29 ----D---- E:\WINDOWS\system32\ias
2011-11-07 13:11:59 ----A---- E:\WINDOWS\ModemLog_Standardní modem 33 600 bitů za sekundu.txt
2011-11-07 12:59:07 ----D---- E:\WINDOWS\system32
2011-11-07 12:03:18 ----A---- E:\WINDOWS\SchedLgU.Txt
2011-11-07 11:31:17 ----ASH---- E:\boot.ini
2011-11-07 11:27:24 ----D---- E:\WINDOWS\Prefetch
2011-11-07 11:26:58 ----HD---- E:\WINDOWS\$hf_mig$
2011-11-07 11:23:35 ----D---- E:\Program Files\Common Files
2011-11-07 11:22:12 ----D---- E:\Program Files\Java
2011-11-07 11:21:38 ----A---- E:\WINDOWS\system32\PerfStringBackup.INI
2011-11-06 14:55:47 ----D---- E:\Program Files\Mozilla Firefox

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 PxHelp20;PxHelp20; E:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-07-14 43528]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; E:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 Aavmker4;avast! Asynchronous Virus Monitor; E:\WINDOWS\system32\drivers\Aavmker4.sys [2011-09-06 30808]
R1 aswRdr;aswRdr; E:\WINDOWS\system32\drivers\aswRdr.sys [2011-09-06 34392]
R1 aswSnx;aswSnx; E:\WINDOWS\system32\drivers\aswSnx.sys [2011-09-06 442200]
R1 aswSP;aswSP; E:\WINDOWS\system32\drivers\aswSP.sys [2011-09-06 320856]
R1 aswTdi;avast! Network Shield Support; E:\WINDOWS\system32\drivers\aswTdi.sys [2011-09-06 52568]
R1 intelppm;Řadič procesoru Intel; E:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; E:\WINDOWS\system32\DRIVERS\tcpip6.sys [2010-02-11 226880]
R1 Tosrfcom;Bluetooth RFCOMM; E:\WINDOWS\System32\Drivers\tosrfcom.sys [2007-05-24 64000]
R2 aswFsBlk;aswFsBlk; E:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-09-06 20568]
R2 aswMon2;avast! Standard Shield Support; E:\WINDOWS\system32\drivers\aswMon2.sys [2011-09-06 110552]
R3 AR5211;Atheros Wireless Network Adapter Service; E:\WINDOWS\system32\DRIVERS\ar5211.sys [2007-10-25 549184]
R3 AtcL002;NDIS Miniport Driver for Atheros L2 Fast Ethernet Controller; E:\WINDOWS\system32\DRIVERS\l251x86.sys [2007-08-21 30208]
R3 ati2mtag;ati2mtag; E:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2007-02-02 1975296]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; E:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); E:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-11-03 4394496]
R3 MTsensor;ATK0100 ACPI UTILITY; E:\WINDOWS\system32\DRIVERS\ATKACPI.sys [2007-08-24 5760]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; E:\WINDOWS\System32\Drivers\RootMdm.sys [2008-04-14 5888]
R3 SynTP;Synaptics TouchPad Driver; E:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-05-25 193088]
R3 tosporte;Bluetooth COM Port; E:\WINDOWS\system32\DRIVERS\tosporte.sys [2006-10-10 41600]
R3 tosrfbd;Bluetooth RFBUS; E:\WINDOWS\system32\DRIVERS\tosrfbd.sys [2007-04-24 113920]
R3 tosrfbnp;Bluetooth RFBNEP; E:\WINDOWS\System32\Drivers\tosrfbnp.sys [2006-11-20 36480]
R3 Tosrfhid;Bluetooth RFHID; E:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2007-03-01 73728]
R3 tosrfnds;Bluetooth Personal Area Network; E:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
R3 tosrfusb;Bluetooth USB Controller; E:\WINDOWS\system32\DRIVERS\tosrfusb.sys [2007-06-11 41856]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; E:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-14 12288]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; E:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; E:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbvideo;Zobrazovací zařízení USB (WDM); E:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-14 121984]
S2 DgiVecp;DgiVecp; \??\E:\WINDOWS\system32\Drivers\DgiVecp.sys []
S2 SSPORT;SSPORT; \??\E:\WINDOWS\system32\Drivers\SSPORT.sys []
S3 catchme;catchme; \??\E:\DOCUME~1\Uzivatel\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; E:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 HidUsb;Ovladač třídy standardu HID; E:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 MODEMCSA;Unimodem Streaming Filter Device; E:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
S3 mouhid;Ovladač myši standardu HID; E:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; E:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; E:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; E:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 SLIP;BDA Slip De-Framer; E:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 smserial;smserial; E:\WINDOWS\system32\DRIVERS\smserial.sys []
S3 streamip;BDA IPSink; E:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 TosRfSnd;Bluetooth Audio; E:\WINDOWS\system32\drivers\tosrfsnd.sys [2007-01-22 53376]
S3 usbprint;Třída USB Printer; E:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; E:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 WpdUsb;WpdUsb; E:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; E:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; E:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 6to4;Pomocná služba protokolu IPv6; E:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 Ati HotKey Poller;Ati HotKey Poller; E:\WINDOWS\system32\Ati2evxx.exe [2007-02-02 446464]
R2 avast! Antivirus;avast! Antivirus; E:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-09-06 44768]
R2 JavaQuickStarterService;Java Quick Starter; E:\Program Files\Java\jre6\bin\jqs.exe [2011-10-03 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; E:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-02-26 73728]
R2 Net Driver HPZ12;Net Driver HPZ12; E:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 Pml Driver HPZ12;Pml Driver HPZ12; E:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-02-25 125048]
R2 WSearch;Windows Search; E:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; E:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 NMIndexingService;NMIndexingService; E:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-06-24 537896]
S2 gupdate1ca30b5d30de05a;Služba Google Update (gupdate1ca30b5d30de05a); E:\Program Files\Google\Update\GoogleUpdate.exe [2009-09-08 133104]
S2 PEVSystemStart;PEVSystemStart; E:\brekekeke\pev.3XE [2011-06-26 256000]
S3 aspnet_state;Stavová služba ASP.NET; E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; e:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); E:\Program Files\Google\Update\GoogleUpdate.exe [2009-09-08 133104]
S3 idsvc;Windows CardSpace; e:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; E:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; e:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119510
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zpomalení systemu

#2 Příspěvek od Rudy »

Pokud před skenem RSIT provedete sken ComboFix, zahladíte všechny stopy po případné nákaze a navíc riskujete pád systému. Dejte log z ComboFix. Najdete ho v C:\combofix.txt.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
TPY
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 26 říj 2010 13:46

Re: Zpomalení systemu

#3 Příspěvek od TPY »

Combofix prave ze vubec neprobehne, zasekne se na oznameni ze normalne to trva deset minut, ale pokud je pocitac hodne napadenej tak to muze trvat dele. ... Normalne po tehle hlasce zacnou probihat hlaseni test 1 kompletni, test 2 kompletni ... tady to proste zamrzne
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119510
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zpomalení systemu

#4 Příspěvek od Rudy »

Zkuste ho spustit v nouz. režimu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
TPY
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 26 říj 2010 13:46

Re: Zpomalení systemu

#5 Příspěvek od TPY »

v nouzovem rezimu se to chova stejne, nepomohlo ani prejmenovani na neco.com
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119510
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zpomalení systemu

#6 Příspěvek od Rudy »

OK. Zkuste OTL: http://oldtimer.geekstogo.com/OTL.exe . Uložte na plochu a spusťte. Zaškrtněte "Pro všechny uživatele" a kontrola na havěť "lop" a "purity". Pak klikněte na "Prohledat". Dejte report OTL a Extras.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
TPY
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 26 říj 2010 13:46

Re: Zpomalení systemu

#7 Příspěvek od TPY »

extras.txt:
OTL Extras logfile created on: 7.11.2011 20:07:10 - Run 2
OTL by OldTimer - Version 3.2.31.0 Folder = E:\Documents and Settings\Uzivatel\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,87 Gb Total Physical Memory | 2,27 Gb Available Physical Memory | 78,84% Memory free
4,72 Gb Paging File | 4,16 Gb Available in Paging File | 88,26% Paging File free
Paging file location(s): E:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = E: | %SystemRoot% = E:\WINDOWS | %ProgramFiles% = E:\Program Files
Drive E: | 298,08 Gb Total Space | 280,92 Gb Free Space | 94,24% Space Free | Partition Type: NTFS

Computer Name: U-BCB9F840B14B4 | User Name: Uzivatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

[HKEY_USERS\S-1-5-21-854245398-1682526488-1801674531-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- E:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"E:\Program Files\Common Files\Nero\Nero Web\SetupX.exe" = E:\Program Files\Common Files\Nero\Nero Web\SetupX.exe:*:Enabled:Nero ControlCenter -- (Nero AG)
"E:\Documents and Settings\Uzivatel\Local Settings\Temp\OnlineUpdate8\SetupXu.exe" = E:\Documents and Settings\Uzivatel\Local Settings\Temp\OnlineUpdate8\SetupXu.exe:*:Enabled:Nero ControlCenter
"E:\WINDOWS\twain_32\Samsung\ScanMgr.exe" = E:\WINDOWS\twain_32\Samsung\ScanMgr.exe:*:Enabled:Scan Manger -- (Samsung Electronics)
"E:\WINDOWS\twain_32\Samsung\CLX3170\Scan2Pc.exe" = E:\WINDOWS\twain_32\Samsung\CLX3170\Scan2Pc.exe:*:Enabled:ScanToPC
"E:\WINDOWS\twain_32\Samsung\CLX3170\Sscan2io.exe" = E:\WINDOWS\twain_32\Samsung\CLX3170\Sscan2io.exe:*:Enabled:SScanToIO
"E:\Program Files\Spyware Terminator\SpywareTerminator.exe" = E:\Program Files\Spyware Terminator\SpywareTerminator.exe:*:Enabled:Spyware Terminator 2012 -- (Crawler.com)
"E:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe" = E:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Spyware Terminator 2012 -- (Crawler.com)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01FF2C26-DBCE-DADA-BEE5-0928E0F8F623}" = CCC Help German
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{05F4ABAC-8697-2291-16D8-4BFD7DD78B59}" = CCC Help Japanese
"{07C85A90-668F-A807-5C67-975E0777A9E8}" = Catalyst Control Center Localization Russian
"{0A755762-EED8-47AB-A446-505766F93D43}" = Atheros Communications Inc.(R) L2 Fast Ethernet Driver
"{0EA06F05-4320-E4DC-4374-E6C0986C964D}" = Catalyst Control Center Localization Finnish
"{137C5C08-8B6F-497A-1529-502359B3BA88}" = Catalyst Control Center Localization Polish
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{14D08502-FEE4-40E5-90D3-8A967A1D8BA2}" = Readiris Pro 10
"{17EE76BB-5264-8946-DA8F-D564ED25EDDD}" = CCC Help English
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1AE71C13-F341-4774-AA74-EE4A24E34384}" = Brother DCP-375CW
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 29
"{27599825-6BD9-1081-D1CC-0BFC01157204}" = CCC Help Hungarian
"{2E13776F-DEAF-7C83-C2A9-3BF073D51BFD}" = Catalyst Control Center Localization Swedish
"{3482A5D0-F16D-A6C9-397F-8D85EA61BF93}" = Catalyst Control Center Localization Norwegian
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3C3CA756-9FB1-60D9-4435-6D9FEB42C637}" = Catalyst Control Center Localization Dutch
"{3E4039F8-5DA8-0414-B7E1-8DA8C8FC1565}" = Catalyst Control Center Localization Thai
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{48D4215F-414F-1554-8534-E3D8156C0666}" = Skins
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A0FAC3C-852D-C0A3-1715-6F844C184CF0}" = CCC Help Portuguese
"{4B29B49E-F274-58CE-25D2-791570F1619A}" = CCC Help French
"{4B546AE5-DF17-6D39-A846-A9ECD0153C9A}" = Catalyst Control Center Localization Greek
"{56736259-613E-4A3B-B428-6235F2E76F44}_is1" = Spyware Terminator 2012
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57EF4BC7-0C52-1872-C0CE-AEAB996E5626}" = Catalyst Control Center Localization Korean
"{582287DA-0806-4AC0-BF19-C15E3A466034}" = LightScribe System Software 1.12.33.2
"{5B701396-48C3-A3FA-43DB-FF975446759C}" = Catalyst Control Center Localization French
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{5ECA8F33-8F8E-1042-2082-5F02E64D6140}" = CCC Help Polish
"{68B84920-CD46-8C5B-DABE-EC0FF6F0C703}" = Catalyst Control Center Localization German
"{6AF75C96-2093-51F4-0412-501CB317A7F9}" = CCC Help Thai
"{6D219284-A368-A0A5-AA55-8BAAE9EA60CC}" = Catalyst Control Center Localization Japanese
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{732442CA-AFFC-E75D-C586-2A3C71D8CFFE}" = CCC Help Finnish
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
"{767EE8DA-A2AA-00A9-1A21-9584E00867B8}" = Catalyst Control Center Core Implementation
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7F947BFE-C2DF-4779-9909-5BEE746BD0C4}" = Microsoft .NET Framework 2.0 Language Pack - CSY
"{815B5312-F7B5-EDD5-A899-B0228C3C7F3A}" = CCC Help Turkish
"{8410B358-107A-4FB7-AB2B-6FD952F15A8F}" = Nero 8 Essentials
"{857D4360-762B-978B-76AD-491AA719E47A}" = ccc-core-static
"{86552A3A-0437-319B-46C5-569FC9F7ACA9}" = ccc-utility
"{89EAD7B4-1CAC-CC9E-F040-FE041A2EA77C}" = Catalyst Control Center Localization Spanish
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8BE3174F-3BFE-8822-4493-A0519D1E4E94}" = Catalyst Control Center Localization Portuguese
"{90F1943D-EA4A-4460-B59F-30023F3BA69A}" = SmarThru 4
"{9D7802F0-3C39-ED52-10D9-AE8A7FB5A94C}" = Catalyst Control Center Localization Hungarian
"{9DE3F260-B88E-42CE-90E7-73C78C37D95E}" = 32 Bit HP BiDi Channel Components Installer
"{9F303CF8-2998-4541-C9F7-C3AAEC2B88B0}" = Catalyst Control Center Graphics Full Existing
"{A042FD6F-D051-ECE5-71C9-52ABFE36EBF9}" = Catalyst Control Center Localization Czech
"{A125DDDB-E0C0-08E0-F04C-7B5409DFFC79}" = Catalyst Control Center Graphics Light
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AB1E9EC2-42E4-E801-83BB-AAFF86DDEC7E}" = CCC Help Czech
"{AC76BA86-7AD7-1029-7B44-A81200000003}" = Adobe Reader 8 - Czech
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{B02A3921-F7B7-C73F-395B-8172C9EE4006}" = Catalyst Control Center Localization Italian
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{BD17DEF2-8970-E4F5-337A-C10DE4D33F29}" = CCC Help Korean
"{BE8BE32F-F595-4693-9F82-1E0A5A047BB6}" = OpenOffice.org 3.0
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C5A2542D-CF79-3EE6-7673-2CEDA2338172}" = CCC Help Greek
"{C69B9631-B617-B714-7FE2-6FCD5B891ACD}" = Catalyst Control Center Localization Chinese Traditional
"{C6D7BC96-A608-0908-F6E7-53C118423087}" = CCC Help Chinese Standard
"{C8A4038E-4DA5-879D-A353-7443FC3EE22C}" = CCC Help Spanish
"{C9B7D4A2-7A42-96BC-DE77-6EB23F1116A8}" = CCC Help Swedish
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE344E77-B015-C6D0-9A1B-0EA0043E7A52}" = CCC Help Russian
"{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}" = Bluetooth Stack for Windows by Toshiba
"{D9D45F79-D38C-9BCA-4023-6F3E365D5D25}" = CCC Help Dutch
"{DCE907E3-4D72-4CD3-A08A-BEFC8C7A5869}" = Branding
"{E4BCF2E7-B181-C240-B6EC-04A8FA633EEF}" = Catalyst Control Center Graphics Full New
"{E91EBA1F-DA25-58B2-365F-FB76BDC81F86}" = Catalyst Control Center Localization Turkish
"{EA2F03AD-BF9D-EECC-F24C-549046AEC17A}" = Catalyst Control Center Localization Danish
"{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}" = ASUS Virtual Camera
"{EE78C2A7-1413-105B-DC86-3F9FA6B10C2F}" = CCC Help Danish
"{F0AAE3C5-D70C-4F3C-8B6A-EC3992921029}" = Nero 8 Essentials
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2AAE965-966C-104E-ECCD-9F111A83139C}" = CCC Help Italian
"{F3AEE6A8-5FA3-F9AA-8CA7-D1AAD6352065}" = Catalyst Control Center Localization Chinese Standard
"{F7F564DD-A790-D01A-5390-6D1386AA5621}" = CCC Help Norwegian
"{FD9B0D38-7B82-5A3A-E046-D8DBF3F06A93}" = CCC Help Chinese Traditional
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"All ATI Software" = Softarová utilita ATI - Odinstalovat
"ATI Display Driver" = ATI Display Driver
"avast" = avast! Free Antivirus
"CanonSolutionMenu" = Canon Utilities Solution Menu
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2007-07-22
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"Free Easy Burner_is1" = Free Easy Burner V 3.8
"FreeCommander_is1" = FreeCommander 2007.10
"Google Chrome" = Google Chrome
"ie8" = Windows Internet Explorer 8
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0 Language Pack - CSY" = Microsoft .NET Framework 2.0 Language Pack - CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox 6.0.2 (x86 cs)" = Mozilla Firefox 6.0.2 (x86 cs)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Registrace uživatele zařízení Canon MP620 series" = Registrace uživatele zařízení Canon MP620 series
"SmarThru PC Fax" = SmarThru PC Fax
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"WinRAR archiver" = WinRAR 4.00 (32-bit)
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 8.5.2009 6:23:04 | Computer Name = U-BCB9F840B14B4 | Source = avast! | ID = 33554522
Description =

Error - 2.6.2009 9:53:44 | Computer Name = U-BCB9F840B14B4 | Source = avast! | ID = 33554522
Description =

Error - 20.10.2009 17:52:35 | Computer Name = U-BCB9F840B14B4 | Source = avast! | ID = 33554522
Description =

Error - 10.5.2010 6:01:33 | Computer Name = U-BCB9F840B14B4 | Source = avast! | ID = 33554522
Description =

Error - 10.5.2010 6:28:21 | Computer Name = U-BCB9F840B14B4 | Source = avast! | ID = 33554522
Description =

Error - 31.5.2010 2:58:09 | Computer Name = U-BCB9F840B14B4 | Source = avast! | ID = 33554522
Description =

Error - 2.2.2011 12:50:15 | Computer Name = U-BCB9F840B14B4 | Source = avast! | ID = 33554522
Description =

Error - 21.2.2011 15:02:09 | Computer Name = U-BCB9F840B14B4 | Source = avast! | ID = 33554522
Description =

Error - 23.5.2011 13:34:40 | Computer Name = U-BCB9F840B14B4 | Source = avast! | ID = 33554522
Description =

Error - 24.5.2011 13:55:31 | Computer Name = U-BCB9F840B14B4 | Source = avast! | ID = 33554522
Description =

[ Application Events ]
Error - 15.9.2011 10:12:31 | Computer Name = U-BCB9F840B14B4 | Source = Application Error | ID = 1000
Description = Chybující aplikace nmindexstoresvr.exe, verze 3.3.8.0, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x006892cf.

Error - 18.9.2011 7:45:34 | Computer Name = U-BCB9F840B14B4 | Source = Application Error | ID = 1000
Description = Chybující aplikace nmindexstoresvr.exe, verze 3.3.8.0, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x01f34d3e.

Error - 19.9.2011 11:46:34 | Computer Name = U-BCB9F840B14B4 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 6.0.2.4262, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 19.9.2011 11:46:34 | Computer Name = U-BCB9F840B14B4 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 6.0.2.4262, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 25.9.2011 13:55:18 | Computer Name = U-BCB9F840B14B4 | Source = Application Error | ID = 1000
Description = Chybující aplikace nmindexstoresvr.exe, verze 3.3.8.0, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x00000000.

Error - 30.9.2011 14:17:52 | Computer Name = U-BCB9F840B14B4 | Source = Application Error | ID = 1000
Description = Chybující aplikace nmindexstoresvr.exe, verze 3.3.8.0, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x8bc35e04.

Error - 22.10.2011 15:29:25 | Computer Name = U-BCB9F840B14B4 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 6.0.2.4262, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 7.11.2011 6:59:58 | Computer Name = U-BCB9F840B14B4 | Source = Application Error | ID = 1000
Description = Chybující aplikace nmindexstoresvr.exe, verze 3.3.8.0, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x0069a357.

Error - 7.11.2011 13:10:48 | Computer Name = U-BCB9F840B14B4 | Source = Application Error | ID = 1000
Description = Chybující aplikace nmindexstoresvr.exe, verze 3.3.8.0, chybující modul
nmindexstoresvr.exe, verze 3.3.8.0, adresa chyby 0x000b29e7.

Error - 7.11.2011 15:07:29 | Computer Name = U-BCB9F840B14B4 | Source = Application Error | ID = 1000
Description = Chybující aplikace spywareterminatorupdate.exe, verze 3.0.0.28, chybující
modul ntdll.dll, verze 5.1.2600.6055, adresa chyby 0x00011295.

[ System Events ]
Error - 7.11.2011 14:24:34 | Computer Name = U-BCB9F840B14B4 | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: Aavmker4 AFD aswRdr aswSnx aswSP aswTdi Fips intelppm IPSec MRxSmb NetBIOS NetBT
RasAcd
Rdbss
Tcpip
Tcpip6
Tosrfcom

Error - 7.11.2011 14:24:41 | Computer Name = U-BCB9F840B14B4 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 7.11.2011 14:24:42 | Computer Name = U-BCB9F840B14B4 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 7.11.2011 14:39:50 | Computer Name = U-BCB9F840B14B4 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby netman
s argumenty za účelem spuštění serveru: {BA126AE5-2166-11D1-B1D0-00805FC1270E}

Error - 7.11.2011 14:42:19 | Computer Name = U-BCB9F840B14B4 | Source = Service Control Manager | ID = 7000
Description = Služba DgiVecp neuspěla při spuštění v důsledku následující chyby:
%%20

Error - 7.11.2011 14:42:19 | Computer Name = U-BCB9F840B14B4 | Source = Service Control Manager | ID = 7000
Description = Služba SSPORT neuspěla při spuštění v důsledku následující chyby:
%%2

Error - 7.11.2011 14:42:19 | Computer Name = U-BCB9F840B14B4 | Source = Service Control Manager | ID = 7023
Description = Služba Automatic Updates byla ukončena s následující chybou: %%126

Error - 7.11.2011 15:04:15 | Computer Name = U-BCB9F840B14B4 | Source = Service Control Manager | ID = 7000
Description = Služba DgiVecp neuspěla při spuštění v důsledku následující chyby:
%%20

Error - 7.11.2011 15:04:15 | Computer Name = U-BCB9F840B14B4 | Source = Service Control Manager | ID = 7000
Description = Služba SSPORT neuspěla při spuštění v důsledku následující chyby:
%%2

Error - 7.11.2011 15:04:15 | Computer Name = U-BCB9F840B14B4 | Source = Service Control Manager | ID = 7023
Description = Služba Automatic Updates byla ukončena s následující chybou: %%126


< End of report >
OTL.txt:
OTL logfile created on: 7.11.2011 20:07:10 - Run 2
OTL by OldTimer - Version 3.2.31.0 Folder = E:\Documents and Settings\Uzivatel\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,87 Gb Total Physical Memory | 2,27 Gb Available Physical Memory | 78,84% Memory free
4,72 Gb Paging File | 4,16 Gb Available in Paging File | 88,26% Paging File free
Paging file location(s): E:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = E: | %SystemRoot% = E:\WINDOWS | %ProgramFiles% = E:\Program Files
Drive E: | 298,08 Gb Total Space | 280,92 Gb Free Space | 94,24% Space Free | Partition Type: NTFS

Computer Name: U-BCB9F840B14B4 | User Name: Uzivatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011.11.07 19:49:36 | 000,584,192 | ---- | M] (OldTimer Tools) -- E:\Documents and Settings\Uzivatel\Plocha\OTL.exe
PRC - [2011.09.28 03:20:18 | 000,482,992 | ---- | M] (Crawler.com) -- E:\Program Files\Spyware Terminator\st_rsser.exe
PRC - [2011.09.28 03:20:14 | 003,609,776 | ---- | M] (Crawler.com) -- E:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
PRC - [2011.09.28 03:20:04 | 002,775,728 | ---- | M] (Crawler.com) -- E:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
PRC - [2011.09.06 21:45:30 | 003,722,416 | ---- | M] (AVAST Software) -- E:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011.09.06 21:45:28 | 000,044,768 | ---- | M] (AVAST Software) -- E:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2009.01.26 15:31:16 | 002,144,088 | RHS- | M] (Safer Networking Limited) -- E:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2008.06.24 16:06:06 | 001,840,424 | ---- | M] (Nero AG) -- E:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
PRC - [2008.04.14 13:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\explorer.exe
PRC - [2007.06.14 16:57:08 | 000,282,624 | ---- | M] (TOSHIBA CORPORATION.) -- E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
PRC - [2007.05.22 16:57:26 | 002,756,608 | ---- | M] (TOSHIBA CORPORATION.) -- E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
PRC - [2007.05.18 16:14:14 | 002,170,880 | ---- | M] (TOSHIBA CORPORATION.) -- E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtProc.exe
PRC - [2007.04.26 14:53:38 | 000,274,432 | ---- | M] (TOSHIBA CORPORATION.) -- E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHSP.exe
PRC - [2007.02.27 20:21:08 | 000,278,528 | ---- | M] (TOSHIBA CORPORATION.) -- E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
PRC - [2007.02.25 21:55:18 | 000,125,048 | ---- | M] (TOSHIBA CORPORATION) -- E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
PRC - [2007.01.30 17:47:46 | 000,307,200 | ---- | M] (TOSHIBA CORPORATION.) -- E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosOBEX.exe
PRC - [2006.01.23 23:14:10 | 000,069,632 | ---- | M] (TOSHIBA CORPORATION.) -- E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe


========== Modules (No Company Name) ==========

MOD - [2011.11.07 10:25:19 | 001,608,192 | ---- | M] () -- E:\Program Files\AVAST Software\Avast\defs\11110700\algo.dll
MOD - [2011.11.03 17:42:38 | 000,239,432 | ---- | M] () -- E:\Program Files\AVAST Software\Avast\defs\11110700\aswRep.dll
MOD - [2011.08.30 08:51:59 | 011,800,576 | ---- | M] () -- E:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\40893760431f8f0dcce3e18630e45b23\System.Web.ni.dll
MOD - [2011.08.30 08:50:08 | 000,971,264 | ---- | M] () -- E:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\77df2cd21a5b85a1605b335aa9ad9d44\System.Configuration.ni.dll
MOD - [2011.08.30 07:53:21 | 005,450,752 | ---- | M] () -- E:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\10154dcad2d62f226af2fd4211460a4b\System.Xml.ni.dll
MOD - [2011.08.30 07:53:14 | 012,430,848 | ---- | M] () -- E:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d00cc387e462e4c3cdcd112b137cac87\System.Windows.Forms.ni.dll
MOD - [2011.08.30 07:52:59 | 001,587,200 | ---- | M] () -- E:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\7ed09623172a292eaee51e2e3bcaf784\System.Drawing.ni.dll
MOD - [2011.08.30 07:51:41 | 007,950,848 | ---- | M] () -- E:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\e6c79e1d71b0c9000afd7e5e439b5c54\System.ni.dll
MOD - [2011.08.30 07:51:32 | 011,490,816 | ---- | M] () -- E:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\0309936a8e1672d39b9cf14463ce69f9\mscorlib.ni.dll
MOD - [2011.08.30 07:50:39 | 000,372,736 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
MOD - [2011.08.30 07:50:37 | 000,303,104 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
MOD - [2008.12.10 22:17:33 | 000,225,280 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.2589.34534__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
MOD - [2008.12.10 22:17:33 | 000,040,960 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.2589.34570__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
MOD - [2008.12.10 22:17:32 | 001,671,168 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.2589.34579__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll
MOD - [2008.12.10 22:17:32 | 000,184,320 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.2589.34592__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
MOD - [2008.12.10 22:17:32 | 000,073,728 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.2589.34808__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
MOD - [2008.12.10 22:17:32 | 000,061,440 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.2589.34761__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
MOD - [2008.12.10 22:17:32 | 000,032,768 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Runtime\2.0.2589.34591__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Runtime.dll
MOD - [2008.12.10 22:17:32 | 000,020,480 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.2589.34555__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
MOD - [2008.12.10 22:17:32 | 000,015,360 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.2589.34693__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
MOD - [2008.12.10 22:17:30 | 000,483,328 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.2589.34851__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll
MOD - [2008.12.10 22:16:57 | 000,073,728 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.2589.34549__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll
MOD - [2008.12.10 22:16:56 | 000,344,064 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.2589.34776__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
MOD - [2008.12.10 22:16:56 | 000,135,168 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.2589.34857__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll
MOD - [2008.12.10 22:16:56 | 000,102,400 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Dashboard\2.0.2589.34584__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Dashboard.dll
MOD - [2008.12.10 22:16:56 | 000,090,112 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.2589.34781__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
MOD - [2008.12.10 22:16:56 | 000,057,344 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.2589.34773__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
MOD - [2008.12.10 22:16:56 | 000,024,576 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Runtime\2.0.2589.34584__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Runtime.dll
MOD - [2008.12.10 22:16:55 | 000,667,648 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.2589.34707__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
MOD - [2008.12.10 22:16:55 | 000,573,440 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.2589.34606__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
MOD - [2008.12.10 22:16:55 | 000,475,136 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.2589.34698__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
MOD - [2008.12.10 22:16:55 | 000,438,272 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.2589.34557__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
MOD - [2008.12.10 22:16:55 | 000,401,408 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.2589.34795__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll
MOD - [2008.12.10 22:16:55 | 000,401,408 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.2589.34748__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll
MOD - [2008.12.10 22:16:55 | 000,303,104 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.2589.34613__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll
MOD - [2008.12.10 22:16:55 | 000,262,144 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Dashboard\2.0.2589.34628__90ba9c70f846762e\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Dashboard.dll
MOD - [2008.12.10 22:16:55 | 000,208,896 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.2589.34599__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
MOD - [2008.12.10 22:16:55 | 000,118,784 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.2589.34728__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
MOD - [2008.12.10 22:16:55 | 000,053,248 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.2589.34694__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
MOD - [2008.12.10 22:16:55 | 000,045,056 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.2589.34703__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll
MOD - [2008.12.10 22:16:55 | 000,040,960 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.2589.34702__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
MOD - [2008.12.10 22:16:55 | 000,036,864 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.2589.34727__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
MOD - [2008.12.10 22:16:55 | 000,036,864 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.2589.34612__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
MOD - [2008.12.10 22:16:55 | 000,032,768 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.2589.34747__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
MOD - [2008.12.10 22:16:55 | 000,020,480 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Runtime\2.0.2589.34633__90ba9c70f846762e\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Runtime.dll
MOD - [2008.12.10 22:16:54 | 000,049,152 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation\2.0.2560.25961__90ba9c70f846762e\CLI.Foundation.dll
MOD - [2008.12.10 22:16:54 | 000,049,152 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.2560.25971__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
MOD - [2008.12.10 22:16:54 | 000,045,056 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2537.29860__90ba9c70f846762e\DEM.Graphics.I0601.dll
MOD - [2008.12.10 22:16:54 | 000,032,768 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.2560.25959__90ba9c70f846762e\LOG.Foundation.dll
MOD - [2008.12.10 22:16:54 | 000,028,672 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.2560.26040__90ba9c70f846762e\CLI.Foundation.XManifest.dll
MOD - [2008.12.10 22:16:54 | 000,024,576 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.2560.25964__90ba9c70f846762e\NEWAEM.Foundation.dll
MOD - [2008.12.10 22:16:54 | 000,020,480 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.2560.25982__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
MOD - [2008.12.10 22:16:54 | 000,020,480 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.2560.25973__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll
MOD - [2008.12.10 22:16:54 | 000,020,480 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.2560.25968__90ba9c70f846762e\CLI.Component.Client.Shared.dll
MOD - [2008.12.10 22:16:54 | 000,016,384 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.2560.25974__90ba9c70f846762e\MOM.Foundation.dll
MOD - [2008.12.10 22:16:54 | 000,016,384 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\DEM.OS.I0602\2.0.2560.26001__90ba9c70f846762e\DEM.OS.I0602.dll
MOD - [2008.12.10 22:16:54 | 000,016,384 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\DEM.OS\2.0.2560.26002__90ba9c70f846762e\DEM.OS.dll
MOD - [2008.12.10 22:16:54 | 000,016,384 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics\2.0.2560.25997__90ba9c70f846762e\DEM.Graphics.dll
MOD - [2008.12.10 22:16:54 | 000,016,384 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\DEM.Foundation\2.0.2531.19989__90ba9c70f846762e\DEM.Foundation.dll
MOD - [2008.12.10 22:16:54 | 000,016,384 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.2560.25988__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
MOD - [2008.12.10 22:16:54 | 000,016,384 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.2560.26010__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
MOD - [2008.12.10 22:16:54 | 000,006,656 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll
MOD - [2008.12.10 22:16:53 | 000,057,344 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.2560.26001__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll
MOD - [2008.12.10 22:16:53 | 000,053,248 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Shared\2.0.2560.25988__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Shared.dll
MOD - [2008.12.10 22:16:53 | 000,053,248 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.2560.25998__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
MOD - [2008.12.10 22:16:53 | 000,045,056 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.2560.26000__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll
MOD - [2008.12.10 22:16:53 | 000,040,960 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.2560.26012__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll
MOD - [2008.12.10 22:16:53 | 000,040,960 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.2560.25998__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
MOD - [2008.12.10 22:16:53 | 000,040,960 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.2560.26000__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll
MOD - [2008.12.10 22:16:53 | 000,032,768 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.2560.25999__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll
MOD - [2008.12.10 22:16:53 | 000,028,672 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.2560.25988__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
MOD - [2008.12.10 22:16:53 | 000,028,672 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.2560.25987__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
MOD - [2008.12.10 22:16:53 | 000,024,576 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.2560.25999__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
MOD - [2008.12.10 22:16:53 | 000,024,576 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.2560.25986__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
MOD - [2008.12.10 22:16:53 | 000,024,576 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.2560.25982__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll
MOD - [2008.12.10 22:16:53 | 000,020,480 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Shared\2.0.2560.25988__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Shared.dll
MOD - [2008.12.10 22:16:53 | 000,020,480 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Shared\2.0.2560.25989__90ba9c70f846762e\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Shared.dll
MOD - [2008.12.10 22:16:53 | 000,020,480 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.2560.25987__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
MOD - [2008.12.10 22:16:53 | 000,016,384 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.2560.25987__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll
MOD - [2008.12.10 22:16:52 | 000,024,576 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\APM.Foundation\2.0.2560.26001__90ba9c70f846762e\APM.Foundation.dll
MOD - [2008.12.10 22:16:52 | 000,024,576 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\AEM.Foundation\2.0.2560.25960__90ba9c70f846762e\AEM.Foundation.dll
MOD - [2008.12.10 22:16:52 | 000,024,576 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2531.19989__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll
MOD - [2008.12.10 22:16:52 | 000,016,384 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\AEM.Server.Shared\2.0.2560.25970__90ba9c70f846762e\AEM.Server.Shared.dll
MOD - [2008.12.10 22:16:46 | 000,466,944 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.2589.34565__90ba9c70f846762e\CLI.Component.Wizard.dll
MOD - [2008.12.10 22:16:46 | 000,110,592 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray.resources\2.0.2589.34827_cs_90ba9c70f846762e\CLI.Component.Systemtray.resources.dll
MOD - [2008.12.10 22:16:46 | 000,098,304 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.2589.34834__90ba9c70f846762e\MOM.Implementation.dll
MOD - [2008.12.10 22:16:46 | 000,057,344 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.2589.34833__90ba9c70f846762e\LOG.Foundation.Implementation.dll
MOD - [2008.12.10 22:16:46 | 000,032,768 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.2560.25964__90ba9c70f846762e\LOG.Foundation.Private.dll
MOD - [2008.12.10 22:16:46 | 000,032,768 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.2589.34878__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
MOD - [2008.12.10 22:16:46 | 000,024,576 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.2560.26010__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
MOD - [2008.12.10 22:16:46 | 000,020,480 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.2560.25982__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
MOD - [2008.12.10 22:16:46 | 000,020,480 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.2560.25966__90ba9c70f846762e\CLI.Foundation.Private.dll
MOD - [2008.12.10 22:16:45 | 001,404,928 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.2589.34543__90ba9c70f846762e\CLI.Component.Dashboard.dll
MOD - [2008.12.10 22:16:45 | 000,389,120 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.2589.34827__90ba9c70f846762e\CLI.Component.Systemtray.dll
MOD - [2008.12.10 22:16:45 | 000,090,112 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.2589.34533__90ba9c70f846762e\CLI.Component.Runtime.dll
MOD - [2008.12.10 22:16:45 | 000,053,248 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\ATIDEMOS\2.0.2589.34533__90ba9c70f846762e\ATIDEMOS.dll
MOD - [2008.12.10 22:16:45 | 000,040,960 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.2560.25970__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
MOD - [2008.12.10 22:16:45 | 000,036,864 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.2560.25980__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
MOD - [2008.12.10 22:16:45 | 000,036,864 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.2589.34532__90ba9c70f846762e\AEM.Server.dll
MOD - [2008.12.10 22:16:45 | 000,032,768 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
MOD - [2008.12.10 22:16:45 | 000,020,480 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.2560.25981__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
MOD - [2008.12.10 22:16:45 | 000,020,480 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.2560.26004__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll
MOD - [2008.12.10 22:16:45 | 000,019,968 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.2589.34834__90ba9c70f846762e\CCC.Implementation.dll
MOD - [2008.12.10 16:56:49 | 000,425,984 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_cs_b77a5c561934e089\System.Windows.Forms.resources.dll
MOD - [2008.12.10 16:56:46 | 000,303,104 | ---- | M] () -- E:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
MOD - [2008.04.14 13:00:00 | 000,014,336 | ---- | M] () -- E:\WINDOWS\system32\msdmo.dll
MOD - [2007.12.27 15:38:58 | 000,094,208 | ---- | M] () -- E:\WINDOWS\system32\SamFaxPort.dll
MOD - [2007.10.15 15:36:00 | 000,163,840 | ---- | M] () -- E:\Program Files\asus\ASUS Virtual Camera\virtualCamera.ax
MOD - [2007.08.14 12:59:54 | 006,365,184 | ---- | M] () -- E:\Program Files\Common Files\LightScribe\QtGui4.dll
MOD - [2007.07.12 12:55:52 | 000,131,072 | ---- | M] () -- E:\Program Files\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
MOD - [2007.07.12 12:55:28 | 001,581,056 | ---- | M] () -- E:\Program Files\Common Files\LightScribe\QtCore4.dll
MOD - [2007.01.10 14:22:38 | 000,016,384 | R--- | M] () -- E:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
MOD - [2005.07.22 21:30:18 | 000,065,536 | ---- | M] () -- E:\WINDOWS\system32\TosCommAPI.dll
MOD - [2004.10.14 10:18:24 | 000,040,960 | ---- | M] () -- E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtAfh.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (wuauserv)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.09.28 03:20:18 | 000,482,992 | ---- | M] (Crawler.com) [Auto | Running] -- E:\Program Files\Spyware Terminator\st_rsser.exe -- (ST2012_Svc)
SRV - [2011.09.06 21:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- E:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011.06.26 07:45:56 | 000,256,000 | R--- | M] () [Auto | Stopped] -- E:\brekekeke\pev.3XE -- (PEVSystemStart)
SRV - [2007.02.25 21:55:18 | 000,125,048 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- (TOSHIBA Bluetooth Service)


========== Driver Services (SafeList) ==========

DRV - [2011.09.06 21:38:05 | 000,442,200 | ---- | M] (AVAST Software) [File_System | System | Running] -- E:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011.09.06 21:37:53 | 000,320,856 | ---- | M] (AVAST Software) [Kernel | System | Running] -- E:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.09.06 21:36:38 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- E:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.09.06 21:36:36 | 000,052,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- E:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.09.06 21:36:23 | 000,110,552 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- E:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011.09.06 21:36:12 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- E:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011.09.06 21:33:11 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- E:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011.06.21 11:24:06 | 000,032,768 | ---- | M] () [Kernel | System | Running] -- E:\WINDOWS\system32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2010.02.11 13:02:15 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- E:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2007.10.25 18:20:36 | 000,549,184 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\ar5211.sys -- (AR5211)
DRV - [2007.10.22 07:55:46 | 000,041,984 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto | Stopped] -- E:\WINDOWS\system32\drivers\DgivEcp.sys -- (DgiVecp)
DRV - [2007.08.24 04:46:48 | 000,005,760 | R--- | M] () [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\ATKACPI.sys -- (MTsensor)
DRV - [2007.08.21 09:50:54 | 000,030,208 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\l251x86.sys -- (AtcL002)
DRV - [2007.06.11 14:25:28 | 000,041,856 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\tosrfusb.sys -- (tosrfusb)
DRV - [2007.05.24 14:27:30 | 000,064,000 | ---- | M] (TOSHIBA Corporation) [Kernel | System | Running] -- E:\WINDOWS\system32\drivers\tosrfcom.sys -- (Tosrfcom)
DRV - [2007.04.24 13:20:06 | 000,113,920 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\tosrfbd.sys -- (tosrfbd)
DRV - [2007.03.01 16:53:10 | 000,073,728 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\Tosrfhid.sys -- (Tosrfhid)
DRV - [2007.02.02 08:03:24 | 001,975,296 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007.01.22 10:43:26 | 000,053,376 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\TosRfSnd.sys -- (TosRfSnd)
DRV - [2006.11.20 17:55:16 | 000,036,480 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\tosrfbnp.sys -- (tosrfbnp)
DRV - [2006.11.03 02:32:30 | 004,394,496 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006.10.10 19:33:00 | 000,041,600 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\tosporte.sys -- (tosporte)
DRV - [2005.01.06 13:42:00 | 000,018,612 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\tosrfnds.sys -- (tosrfnds)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-854245398-1682526488-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-854245398-1682526488-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Seznam"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: wrc@avast.com:6.0.1203

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: E:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: E:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: E:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: E:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: e:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: E:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: E:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: E:\Program Files\AVAST Software\Avast\WebRep\FF [2011.10.25 05:34:40 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2011.09.14 10:52:29 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2011.08.30 08:30:47 | 000,000,000 | ---D | M]

[2008.12.10 16:06:07 | 000,000,000 | ---D | M] (No name found) -- E:\Documents and Settings\Uzivatel\Data aplikací\Mozilla\Extensions
[2011.08.30 08:23:24 | 000,000,000 | ---D | M] (No name found) -- E:\Documents and Settings\Uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6mmmvn1v.default\extensions
[2011.06.17 09:04:43 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- E:\Documents and Settings\Uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6mmmvn1v.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011.11.07 11:22:25 | 000,000,000 | ---D | M] (No name found) -- E:\Program Files\Mozilla Firefox\extensions
[2011.10.22 20:54:51 | 000,000,000 | ---D | M] (Skype Click to Call) -- E:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2010.08.10 19:10:26 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2011.06.17 08:49:08 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011.11.07 11:22:27 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
[2011.10.25 05:34:40 | 000,000,000 | ---D | M] (avast! WebRep) -- E:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
[2010.08.10 19:10:08 | 000,000,000 | ---D | M] (Java Quick Starter) -- E:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011.09.14 10:52:29 | 000,134,104 | ---- | M] (Mozilla Foundation) -- E:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.10.03 05:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- E:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011.08.12 05:14:43 | 000,002,208 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2011.08.12 05:14:43 | 000,000,638 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.08.12 05:14:43 | 000,001,367 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2011.08.12 05:14:43 | 000,000,654 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.08.12 05:14:43 | 000,001,179 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = E:\Program Files\Google\Chrome\Application\15.0.874.106\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = E:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = E:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = E:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: DivX Web Player (Enabled) = E:\Program Files\Mozilla Firefox\plugins\npdivx32.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = E:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = E:\Program Files\Google\Chrome\Application\15.0.874.106\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = E:\Program Files\Google\Chrome\Application\15.0.874.106\pdf.dll
CHR - plugin: Skype Toolbars (Enabled) = E:\Documents and Settings\Uzivatel\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0\npSkypeChromePlugin.dll
CHR - plugin: Adobe Acrobat (Disabled) = E:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll
CHR - plugin: DivX Player Netscape Plugin (Enabled) = E:\Program Files\Mozilla Firefox\plugins\npDivxPlayerPlugin.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = E:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = E:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = E:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = e:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: avast! WebRep = E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\
CHR - Extension: Skype Click to Call = E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0\

O1 HOSTS File: ([2008.04.14 13:00:00 | 000,000,737 | ---- | M]) - E:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - E:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - E:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - E:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [Alcmtr] E:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [avast] E:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CanonSolutionMenu] E:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [NBKeyScan] "E:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" File not found
O4 - HKLM..\Run: [NeroFilterCheck] E:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [SpywareTerminatorShield] E:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe (Crawler.com)
O4 - HKLM..\Run: [SpywareTerminatorUpdater] E:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe (Crawler.com)
O4 - HKU\S-1-5-21-854245398-1682526488-1801674531-1004..\Run: [] File not found
O4 - HKU\S-1-5-21-854245398-1682526488-1801674531-1004..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] E:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
O4 - HKU\S-1-5-21-854245398-1682526488-1801674531-1004..\Run: [SpybotSD TeaTimer] E:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O4 - HKU\S-1-5-21-854245398-1682526488-1801674531-1004..\Run: [StartCCC] E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()
O4 - Startup: E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth Manager.lnk = E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe (TOSHIBA CORPORATION.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-854245398-1682526488-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-854245398-1682526488-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O8 - Extra context menu item: SmarThru4 Capture Selection - E:\Program Files\SmarThru 4\WEBCapture.dll2.htm ()
O8 - Extra context menu item: SmarThru4 Save as HTML - E:\Program Files\SmarThru 4\WEBCapture.dll1.htm ()
O8 - Extra context menu item: SmarThru4 Save Selected Text - E:\Program Files\SmarThru 4\WEBCapture.dll.htm ()
O8 - Extra context menu item: SmarThru4 Web Capture - E:\Program Files\SmarThru 4\WebCapture.dll ()
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - E:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftup ... 8922100896 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DF68B97A-8A45-414D-A90D-E9D7B727816E}: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -E:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (E:\WINDOWS\system32\userinit.exe) -E:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - E:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper:
O24 - Desktop BackupWallPaper: E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - E:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011.11.07 19:53:21 | 000,584,192 | ---- | C] (OldTimer Tools) -- E:\Documents and Settings\Uzivatel\Plocha\OTL.exe
[2011.11.07 19:45:33 | 000,000,000 | ---D | C] -- E:\Documents and Settings\Uzivatel\Data aplikací\Spyware Terminator
[2011.11.07 19:45:33 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
[2011.11.07 19:45:29 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Nabídka Start\Programy\Spyware Terminator 2012
[2011.11.07 19:45:27 | 000,000,000 | ---D | C] -- E:\Program Files\Spyware Terminator
[2011.11.07 19:26:17 | 000,000,000 | --SD | C] -- E:\brekekeke
[2011.11.07 18:13:24 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Application Data
[2011.11.07 13:33:46 | 000,000,000 | ---D | C] -- E:\Program Files\trend micro
[2011.11.07 13:33:45 | 000,000,000 | ---D | C] -- E:\rsit
[2011.11.07 13:19:29 | 000,000,000 | ---D | C] -- E:\Program Files\Ultimate Process Manager
[2011.11.07 13:16:15 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Nabídka Start\Programy\Spybot - Search & Destroy
[2011.11.07 13:16:10 | 000,000,000 | ---D | C] -- E:\Program Files\Spybot - Search & Destroy
[2011.11.07 13:16:10 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
[2011.11.07 11:31:08 | 000,000,000 | RHSD | C] -- E:\cmdcons
[2011.11.07 11:27:39 | 000,518,144 | ---- | C] (SteelWerX) -- E:\WINDOWS\SWREG.exe
[2011.11.07 11:27:39 | 000,406,528 | ---- | C] (SteelWerX) -- E:\WINDOWS\SWSC.exe
[2011.11.07 11:27:39 | 000,212,480 | ---- | C] (SteelWerX) -- E:\WINDOWS\SWXCACLS.exe
[2011.11.07 11:27:39 | 000,060,416 | ---- | C] (NirSoft) -- E:\WINDOWS\NIRCMD.exe
[2011.11.07 11:27:22 | 000,000,000 | ---D | C] -- E:\WINDOWS\ERDNT
[2011.11.07 11:27:05 | 000,000,000 | ---D | C] -- E:\Qoobox
[2011.11.07 11:25:07 | 004,285,053 | R--- | C] (Swearware) -- E:\Documents and Settings\Uzivatel\Plocha\brekekeke.com
[2011.11.07 11:23:35 | 000,000,000 | ---D | C] -- E:\Program Files\Common Files\Java
[2011.11.07 11:22:20 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- E:\WINDOWS\System32\javaws.exe
[2011.11.07 11:22:20 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- E:\WINDOWS\System32\javaw.exe
[2011.11.07 11:22:20 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- E:\WINDOWS\System32\java.exe
[2011.10.22 20:32:36 | 000,000,000 | ---D | C] -- E:\Documents and Settings\Uzivatel\Data aplikací\Skype
[2011.10.22 20:32:21 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Nabídka Start\Programy\Skype
[2011.10.22 20:32:14 | 000,000,000 | R--D | C] -- E:\Program Files\Skype
[2011.10.22 20:32:01 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\Skype
[3 E:\WINDOWS\*.tmp files -> E:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011.11.07 20:04:07 | 000,000,936 | ---- | M] () -- E:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.11.07 20:04:00 | 000,002,048 | --S- | M] () -- E:\WINDOWS\bootstat.dat
[2011.11.07 20:03:57 | 3086,209,024 | -HS- | M] () -- E:\hiberfil.sys
[2011.11.07 19:49:36 | 000,584,192 | ---- | M] (OldTimer Tools) -- E:\Documents and Settings\Uzivatel\Plocha\OTL.exe
[2011.11.07 19:45:29 | 000,000,725 | ---- | M] () -- E:\Documents and Settings\All Users\Plocha\Spyware Terminator 2012.lnk
[2011.11.07 18:34:12 | 000,000,940 | ---- | M] () -- E:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.11.07 13:20:34 | 000,001,861 | ---- | M] () -- E:\Documents and Settings\Uzivatel\Nabídka Start\Programy\Po spuštění\CCC.lnk
[2011.11.07 13:20:34 | 000,001,779 | ---- | M] () -- E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk
[2011.11.07 13:20:34 | 000,000,711 | ---- | M] () -- E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth Manager.lnk
[2011.11.07 13:16:16 | 000,000,933 | ---- | M] () -- E:\Documents and Settings\Uzivatel\Plocha\Spybot - Search & Destroy.lnk
[2011.11.07 11:31:17 | 000,000,327 | -HS- | M] () -- E:\boot.ini
[2011.11.07 11:25:42 | 004,285,053 | R--- | M] (Swearware) -- E:\Documents and Settings\Uzivatel\Plocha\brekekeke.com
[2011.11.07 11:21:38 | 000,453,318 | ---- | M] () -- E:\WINDOWS\System32\perfh005.dat
[2011.11.07 11:21:38 | 000,435,180 | ---- | M] () -- E:\WINDOWS\System32\perfh009.dat
[2011.11.07 11:21:38 | 000,088,766 | ---- | M] () -- E:\WINDOWS\System32\perfc005.dat
[2011.11.07 11:21:38 | 000,069,552 | ---- | M] () -- E:\WINDOWS\System32\perfc009.dat
[2011.11.07 11:02:51 | 000,000,124 | ---- | M] () -- E:\Nero Scout.lnk
[2011.11.07 10:20:50 | 000,013,646 | ---- | M] () -- E:\WINDOWS\System32\wpa.dbl
[2011.11.04 21:26:44 | 000,000,692 | ---- | M] () -- E:\Documents and Settings\Uzivatel\Plocha\Zástupce - tatinek-2004-czdub.lnk
[2011.11.04 21:26:39 | 000,096,768 | ---- | M] () -- E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.10.30 17:19:24 | 000,002,283 | ---- | M] () -- E:\Documents and Settings\All Users\Plocha\Skype.lnk
[2011.10.28 18:34:29 | 000,001,813 | ---- | M] () -- E:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2011.10.25 05:34:41 | 000,002,552 | ---- | M] () -- E:\WINDOWS\System32\CONFIG.NT
[3 E:\WINDOWS\*.tmp files -> E:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.11.07 19:45:35 | 000,032,768 | ---- | C] () -- E:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2011.11.07 19:45:29 | 000,000,725 | ---- | C] () -- E:\Documents and Settings\All Users\Plocha\Spyware Terminator 2012.lnk
[2011.11.07 19:41:58 | 3086,209,024 | -HS- | C] () -- E:\hiberfil.sys
[2011.11.07 13:16:16 | 000,000,933 | ---- | C] () -- E:\Documents and Settings\Uzivatel\Plocha\Spybot - Search & Destroy.lnk
[2011.11.07 11:31:17 | 000,000,210 | ---- | C] () -- E:\Boot.bak
[2011.11.07 11:31:15 | 000,261,312 | RHS- | C] () -- E:\cmldr
[2011.11.07 11:27:39 | 000,256,000 | ---- | C] () -- E:\WINDOWS\PEV.exe
[2011.11.07 11:27:39 | 000,208,896 | ---- | C] () -- E:\WINDOWS\MBR.exe
[2011.11.07 11:27:39 | 000,098,816 | ---- | C] () -- E:\WINDOWS\sed.exe
[2011.11.07 11:27:39 | 000,080,412 | ---- | C] () -- E:\WINDOWS\grep.exe
[2011.11.07 11:27:39 | 000,068,096 | ---- | C] () -- E:\WINDOWS\zip.exe
[2011.11.07 11:02:51 | 000,000,124 | ---- | C] () -- E:\Nero Scout.lnk
[2011.11.04 21:26:44 | 000,000,692 | ---- | C] () -- E:\Documents and Settings\Uzivatel\Plocha\Zástupce - tatinek-2004-czdub.lnk
[2011.10.22 20:32:22 | 000,002,283 | ---- | C] () -- E:\Documents and Settings\All Users\Plocha\Skype.lnk
[2011.01.04 18:13:05 | 000,000,416 | ---- | C] () -- E:\WINDOWS\BRWMARK.INI
[2011.01.04 18:12:52 | 000,000,000 | ---- | C] () -- E:\WINDOWS\brmx2001.ini
[2011.01.04 18:11:31 | 000,000,074 | ---- | C] () -- E:\WINDOWS\Brownie.ini
[2011.01.04 18:08:19 | 000,011,521 | ---- | C] () -- E:\WINDOWS\MSUMLT_Q.ini
[2010.08.15 00:44:42 | 000,000,664 | ---- | C] () -- E:\WINDOWS\System32\d3d9caps.dat
[2009.07.15 19:45:40 | 000,000,552 | ---- | C] () -- E:\WINDOWS\System32\d3d8caps.dat
[2009.06.10 15:16:07 | 000,010,974 | ---- | C] () -- E:\Documents and Settings\Uzivatel\Data aplikací\SmarThruOptions.xml
[2009.06.10 15:15:38 | 000,172,032 | ---- | C] () -- E:\WINDOWS\System32\SecSNMP.dll
[2009.06.10 15:15:28 | 000,094,208 | ---- | C] () -- E:\WINDOWS\System32\SamFaxPort.dll
[2009.06.10 15:15:16 | 000,000,124 | ---- | C] () -- E:\WINDOWS\Readiris.ini
[2009.06.10 15:15:13 | 000,023,040 | ---- | C] () -- E:\WINDOWS\System32\irisco32.dll
[2009.06.10 15:13:33 | 000,479,232 | ---- | C] () -- E:\WINDOWS\ssndii.exe
[2009.06.10 15:12:42 | 000,022,723 | ---- | C] () -- E:\WINDOWS\System32\sst1cl3.dll
[2009.06.10 15:11:30 | 000,110,592 | R--- | C] () -- E:\WINDOWS\WiaInst.exe
[2009.06.10 15:11:28 | 000,138,240 | R--- | C] () -- E:\WINDOWS\System32\SaXPUIEx.dll
[2009.06.10 15:11:27 | 000,139,776 | R--- | C] () -- E:\WINDOWS\System32\SaXPEH.dll
[2009.06.10 15:11:27 | 000,138,752 | R--- | C] () -- E:\WINDOWS\System32\SaXPWIA.dll
[2009.06.10 15:11:27 | 000,116,736 | R--- | C] () -- E:\WINDOWS\System32\SaXPIPH.dll
[2009.06.10 15:11:27 | 000,087,040 | R--- | C] () -- E:\WINDOWS\System32\SaXPSTI.dll
[2009.02.01 10:43:48 | 000,000,098 | ---- | C] () -- E:\WINDOWS\WirelessFTP.INI
[2009.01.17 17:34:22 | 000,096,768 | ---- | C] () -- E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.12.31 11:39:25 | 000,000,754 | ---- | C] () -- E:\WINDOWS\WORDPAD.INI
[2008.12.14 18:53:27 | 000,000,112 | ---- | C] () -- E:\Documents and Settings\Uzivatel\Data aplikací\default.pls
[2008.12.12 13:55:22 | 000,000,069 | ---- | C] () -- E:\WINDOWS\NeroDigital.ini
[2008.12.10 23:00:13 | 000,000,000 | ---- | C] () -- E:\WINDOWS\tosOBEX.INI
[2008.12.10 22:44:10 | 000,005,760 | R--- | C] () -- E:\WINDOWS\System32\drivers\ATKACPI.sys
[2008.12.10 22:23:03 | 000,049,152 | R--- | C] () -- E:\WINDOWS\System32\ChCfg.exe
[2008.12.10 22:11:37 | 003,107,788 | R--- | C] () -- E:\WINDOWS\System32\ativvaxx.dat
[2008.12.10 22:11:37 | 000,128,813 | R--- | C] () -- E:\WINDOWS\System32\atiicdxx.dat
[2008.12.10 22:02:07 | 000,004,249 | ---- | C] () -- E:\WINDOWS\ODBCINST.INI
[2008.12.10 22:00:42 | 000,124,520 | ---- | C] () -- E:\WINDOWS\System32\FNTCACHE.DAT
[2008.12.10 21:17:04 | 000,002,048 | --S- | C] () -- E:\WINDOWS\bootstat.dat
[2008.12.10 21:12:01 | 000,021,812 | ---- | C] () -- E:\WINDOWS\System32\emptyregdb.dat
[2008.12.10 16:12:54 | 000,000,434 | ---- | C] () -- E:\WINDOWS\System32\Oeminfo.ini
[2008.12.10 16:11:46 | 000,044,544 | ---- | C] () -- E:\WINDOWS\System32\GIF89.DLL
[2008.12.10 16:11:45 | 000,237,568 | ---- | C] () -- E:\WINDOWS\System32\lame_enc.dll
[2008.12.10 16:06:10 | 000,000,000 | ---- | C] () -- E:\WINDOWS\nsreg.dat
[2008.05.26 22:22:14 | 000,015,552 | ---- | C] () -- E:\WINDOWS\System32\gthrctr.ini
[2008.05.26 22:22:10 | 000,021,464 | ---- | C] () -- E:\WINDOWS\System32\idxcntrs.ini
[2008.05.26 22:22:04 | 000,014,910 | ---- | C] () -- E:\WINDOWS\System32\gsrvctr.ini
[2008.05.26 21:59:42 | 000,018,904 | ---- | C] () -- E:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008.05.26 21:59:40 | 000,106,605 | ---- | C] () -- E:\WINDOWS\System32\structuredqueryschema.bin
[2008.04.14 13:00:00 | 013,107,200 | ---- | C] () -- E:\WINDOWS\System32\oembios.bin
[2008.04.14 13:00:00 | 000,673,088 | ---- | C] () -- E:\WINDOWS\System32\mlang.dat
[2008.04.14 13:00:00 | 000,453,318 | ---- | C] () -- E:\WINDOWS\System32\perfh005.dat
[2008.04.14 13:00:00 | 000,435,180 | ---- | C] () -- E:\WINDOWS\System32\perfh009.dat
[2008.04.14 13:00:00 | 000,272,128 | ---- | C] () -- E:\WINDOWS\System32\perfi009.dat
[2008.04.14 13:00:00 | 000,269,162 | ---- | C] () -- E:\WINDOWS\System32\perfi005.dat
[2008.04.14 13:00:00 | 000,218,003 | ---- | C] () -- E:\WINDOWS\System32\dssec.dat
[2008.04.14 13:00:00 | 000,088,766 | ---- | C] () -- E:\WINDOWS\System32\perfc005.dat
[2008.04.14 13:00:00 | 000,069,552 | ---- | C] () -- E:\WINDOWS\System32\perfc009.dat
[2008.04.14 13:00:00 | 000,046,258 | ---- | C] () -- E:\WINDOWS\System32\mib.bin
[2008.04.14 13:00:00 | 000,032,072 | ---- | C] () -- E:\WINDOWS\System32\perfd005.dat
[2008.04.14 13:00:00 | 000,028,626 | ---- | C] () -- E:\WINDOWS\System32\perfd009.dat
[2008.04.14 13:00:00 | 000,004,569 | ---- | C] () -- E:\WINDOWS\System32\secupd.dat
[2008.04.14 13:00:00 | 000,004,461 | ---- | C] () -- E:\WINDOWS\System32\oembios.dat
[2008.04.14 13:00:00 | 000,001,804 | ---- | C] () -- E:\WINDOWS\System32\Dcache.bin
[2008.04.14 13:00:00 | 000,000,741 | ---- | C] () -- E:\WINDOWS\System32\noise.dat
[2006.12.05 13:05:04 | 000,114,688 | ---- | C] () -- E:\WINDOWS\System32\TosBtAcc.dll
[2005.07.22 21:30:18 | 000,065,536 | ---- | C] () -- E:\WINDOWS\System32\TosCommAPI.dll

========== LOP Check ==========

[2011.08.30 08:12:30 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2011.08.30 08:41:25 | 000,000,000 | -H-D | M] -- E:\Documents and Settings\All Users\Data aplikací\CanonIJScan
[2008.12.12 10:27:03 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\LightScribe
[2011.11.07 20:07:27 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
[2010.04.11 13:24:01 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\Temp
[2011.08.30 09:09:47 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Uzivatel\Data aplikací\Canon
[2008.12.10 16:09:57 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Uzivatel\Data aplikací\OpenOffice.org
[2009.06.10 15:16:10 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Uzivatel\Data aplikací\SmarThru4
[2011.11.07 19:45:33 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Uzivatel\Data aplikací\Spyware Terminator
[2008.12.10 17:02:02 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Uzivatel\Data aplikací\Windows Desktop Search
[2008.12.29 21:07:25 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Uzivatel\Data aplikací\Windows Search

========== Purity Check ==========



< End of report >
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119510
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zpomalení systemu

#8 Příspěvek od Rudy »

Níže napsaný text zkopírujte do dolního okna:
:OTL
CHR - Extension: avast! WebRep = E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\
CHR - Extension: Skype Click to Call = E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0\
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - E:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKU\S-1-5-21-854245398-1682526488-1801674531-1004..\Run: [] File not found
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26

:commands
[Purity]
[EmptyTemp]
[EmptyFlash]
a klikněte na "Opravit". PC bude restartován.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
TPY
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 26 říj 2010 13:46

Re: Zpomalení systemu

#9 Příspěvek od TPY »

All processes killed
========== OTL ==========
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\zh_TW folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\zh_CN folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\vi folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\ur folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\uk folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\tr folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\th folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\sv folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\sr folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\sl folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\sk folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\ru folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\ro folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\pt_PT folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\pt_BR folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\pl folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\nl folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\nb folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\ko folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\ja folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\it folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\id folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\hu folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\hr folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\he folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\fr folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\fi folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\et folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\es folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\en_GB folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\en folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\el folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\de folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\da folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\cs folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\ca folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\bg folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\be folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales\ar folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\_locales folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\skin\images\icons folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\skin\images folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\skin\css folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\skin folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\scripts folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0 folder moved successfully.
E:\Documents and Settings\Uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0 folder moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}\ deleted successfully.
File move failed. E:\Program Files\AVAST Software\Avast\aswWebRepIE.dll scheduled to be moved on reboot.
Registry value HKEY_USERS\S-1-5-21-854245398-1682526488-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Prefs.js: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 removed from extensions.enabledItems
Prefs.js: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26 removed from extensions.enabledItems
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: LocalService
->Temp folder emptied: 65984 bytes
->Temporary Internet Files folder emptied: 71371 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Uzivatel
->Temp folder emptied: 183817603 bytes
->Temporary Internet Files folder emptied: 590808986 bytes
->Java cache emptied: 745763 bytes
->FireFox cache emptied: 245127096 bytes
->Google Chrome cache emptied: 203313487 bytes
->Flash cache emptied: 2834816 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2351732 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 486480 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 104158522 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 1 272,00 mb


[EMPTYFLASH]

User: All Users

User: Default User

User: LocalService

User: NetworkService

User: Uzivatel
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.31.0 log created on 11072011_204726

Files\Folders moved on Reboot...
File move failed. E:\Program Files\AVAST Software\Avast\aswWebRepIE.dll scheduled to be moved on reboot.

Registry entries deleted on Reboot...
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119510
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zpomalení systemu

#10 Příspěvek od Rudy »

Vše smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
TPY
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 26 říj 2010 13:46

Re: Zpomalení systemu

#11 Příspěvek od TPY »

zda se ze je to lepsi ... zkusmo jsem spustil combofix a stale to zamrzne v tom samem miste
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119510
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zpomalení systemu

#12 Příspěvek od Rudy »

Udělejte ještě sken GMER: http://www.viry.cz/forum/viewtopic.php?f=29&t=62878 a dejte oba logy.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
TPY
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 26 říj 2010 13:46

Re: Zpomalení systemu

#13 Příspěvek od TPY »

scan se ukoncil se systemovou chybou "v programu doslo k potizim a je treba jej ukoncit. Odeslat halseni o chybach?"

prvni log:

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2011-11-07 22:25:33
Windows 5.1.2600 Service Pack 3
Running: gmer.exe; Driver: E:\DOCUME~1\Uzivatel\LOCALS~1\Temp\kfpoqfob.sys


---- Disk sectors - GMER 1.0.15 ----

Disk \Device\Harddisk1\DR2 sector 00: rootkit-like behavior

---- System - GMER 1.0.15 ----

SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateKey [0xAF09DD5A]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateValueKey [0xAF09DBC5]

Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0xAF11D9A6]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObInsertObject
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject

---- Devices - GMER 1.0.15 ----

Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/AVAST Software)

AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass1 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)

---- EOF - GMER 1.0.15 ----
Nahoru
TPY
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 26 říj 2010 13:46

Re: Zpomalení systemu

#14 Příspěvek od TPY »

druhy log cast prvni:

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2011-11-07 22:27:41
Windows 5.1.2600 Service Pack 3
Running: gmer.exe; Driver: E:\DOCUME~1\Uzivatel\LOCALS~1\Temp\kfpoqfob.sys


---- System - GMER 1.0.15 ----

SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwAddBootEntry [0xAF079374]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwAllocateVirtualMemory [0xAF1082B8]
SSDT \??\E:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwClose [0xAF1E8444]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateEvent [0xAF07B996]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateEventPair [0xAF07B9EE]
SSDT \??\E:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwCreateFile [0xAF1E7C8A]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateIoCompletion [0xAF07BB04]
SSDT \??\E:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwCreateKey [0xAF1E7958]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateMutant [0xAF07B8EC]
SSDT \??\E:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwCreateSection [0xAF1E9520]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateSemaphore [0xAF07B940]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateTimer [0xAF07BAB2]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwDeleteBootEntry [0xAF079398]
SSDT \??\E:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwDeleteKey [0xAF1E7A68]
SSDT \??\E:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwDeleteValueKey [0xAF1E7B5A]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwDuplicateObject [0xAF07BD88]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateKey [0xAF09DD5A]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateValueKey [0xAF09DBC5]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwFreeVirtualMemory [0xAF108368]
SSDT \??\E:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwLoadDriver [0xAF1E8780]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwModifyBootEntry [0xAF0793BC]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwNotifyChangeKey [0xAF07BEFC]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwNotifyChangeMultipleKeys [0xAF079E54]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenEvent [0xAF07B9C6]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenEventPair [0xAF07BA16]
SSDT \??\E:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwOpenFile [0xAF1E7F9C]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenIoCompletion [0xAF07BB2E]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenKey [0xAF09D539]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenMutant [0xAF07B918]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenProcess [0xAF07BBC0]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenSection [0xAF07BA7E]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenSemaphore [0xAF07B96E]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenThread [0xAF07BCA4]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenTimer [0xAF07BADC]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwProtectVirtualMemory [0xAF108400]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwQueryKey [0xAF09DA40]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwQueryObject [0xAF079D1A]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwQueryValueKey [0xAF09D892]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwRenameKey [0xAF1106E2]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwRestoreKey [0xAF09C850]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetBootEntryOrder [0xAF0793E0]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetBootOptions [0xAF079404]
SSDT \??\E:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwSetInformationFile [0xAF1E80D2]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetSystemInformation [0xAF0791BC]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetSystemPowerState [0xAF0792F8]
SSDT \??\E:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwSetValueKey [0xAF1E777E]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwShutdownSystem [0xAF0792D4]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSystemDebugControl [0xAF07931C]
SSDT \??\E:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwTerminateProcess [0xAF1E86C8]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwVdmControl [0xAF079428]
SSDT \??\E:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwWriteFile [0xAF1E82BC]

Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0xAF11D9A6]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObInsertObject
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject

---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!ZwCallbackReturn + 2C70 8050450C 16 Bytes [96, B9, 07, AF, EE, B9, 07, ...] {XCHG ESI, EAX; MOV ECX, 0xb9eeaf07; POP ES; SCASD ; MOV BH, [ESI+EBX-0x51]; ADD AL, 0xbb; POP ES; SCASD }
.text ntkrnlpa.exe!ZwCallbackReturn + 2DAC 80504648 16 Bytes [C6, B9, 07, AF, 16, BA, 07, ...]
PAGE ntkrnlpa.exe!ZwReplyWaitReceivePortEx + 5EC 805A64A8 4 Bytes CALL AF07A4AF \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
PAGE ntkrnlpa.exe!ObMakeTemporaryObject 805BC556 5 Bytes JMP AF1193DE \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
PAGE ntkrnlpa.exe!ObInsertObject 805C2FDA 5 Bytes JMP AF11AE84 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
PAGE ntkrnlpa.exe!ZwCreateProcessEx 805D117A 7 Bytes JMP AF11D9AA \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
.text win32k.sys!EngFreeUserMem + 674 BF809962 5 Bytes JMP AF07CE48 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngDeleteSurface + 45 BF813956 5 Bytes JMP AF07CD54 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngSetLastError + 79A8 BF824309 5 Bytes JMP AF07C0DA \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngCreateBitmap + F9C BF828C73 5 Bytes JMP AF07CFB2 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngUnmapFontFileFD + 2C50 BF8316BE 5 Bytes JMP AF07D1BA \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngUnmapFontFileFD + B68E BF83A0FC 5 Bytes JMP AF07CCC4 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!FONTOBJ_pxoGetXform + 84ED BF8519C5 5 Bytes JMP AF07C016 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!XLATEOBJ_iXlate + 3581 BF85E554 5 Bytes JMP AF07C326 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!XLATEOBJ_iXlate + 360C BF85E5DF 5 Bytes JMP AF07C4CC \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngCreatePalette + 88 BF85F852 5 Bytes JMP AF07BFFE \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngCreatePalette + 5454 BF864C1E 5 Bytes JMP AF07CD7E \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngGetCurrentCodePage + 411E BF873F63 5 Bytes JMP AF07C4A4 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngGradientFill + 26EE BF8947C0 5 Bytes JMP AF07CEFA \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngStretchBltROP + 583 BF895298 5 Bytes JMP AF07D118 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngCopyBits + 4DEC BF89DBD8 5 Bytes JMP AF07C14A \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngEraseSurface + A9E0 BF8C2150 5 Bytes JMP AF07C1E4 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngFillPath + 1517 BF8CA5B2 5 Bytes JMP AF07C254 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngFillPath + 1797 BF8CA832 5 Bytes JMP AF07C28E \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngDeleteSemaphore + 3B3E BF8EC2A7 5 Bytes JMP AF07BF32 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngCreateClip + 19DF BF9133E5 5 Bytes JMP AF07C096 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngCreateClip + 25B3 BF913FB9 5 Bytes JMP AF07C1AE \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngCreateClip + 4F12 BF916918 5 Bytes JMP AF07C5E6 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
.text win32k.sys!EngPlgBlt + 18FC BF94638A 5 Bytes JMP AF07D070 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)

---- User code sections - GMER 1.0.15 ----

.text E:\Program Files\Java\jre6\bin\jqs.exe[124] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 001501F8
.text E:\Program Files\Java\jre6\bin\jqs.exe[124] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\Program Files\Java\jre6\bin\jqs.exe[124] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 001503FC
.text E:\Program Files\Java\jre6\bin\jqs.exe[124] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\Program Files\Java\jre6\bin\jqs.exe[124] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 003E1014
.text E:\Program Files\Java\jre6\bin\jqs.exe[124] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 003E0804
.text E:\Program Files\Java\jre6\bin\jqs.exe[124] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 003E0A08
.text E:\Program Files\Java\jre6\bin\jqs.exe[124] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 003E0C0C
.text E:\Program Files\Java\jre6\bin\jqs.exe[124] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 003E0E10
.text E:\Program Files\Java\jre6\bin\jqs.exe[124] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003E01F8
.text E:\Program Files\Java\jre6\bin\jqs.exe[124] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003E03FC
.text E:\Program Files\Java\jre6\bin\jqs.exe[124] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 003E0600
.text E:\Program Files\Java\jre6\bin\jqs.exe[124] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 003F0804
.text E:\Program Files\Java\jre6\bin\jqs.exe[124] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 003F0A08
.text E:\Program Files\Java\jre6\bin\jqs.exe[124] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 003F0600
.text E:\Program Files\Java\jre6\bin\jqs.exe[124] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003F01F8
.text E:\Program Files\Java\jre6\bin\jqs.exe[124] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003F03FC
.text E:\WINDOWS\Explorer.EXE[160] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 000901F8
.text E:\WINDOWS\Explorer.EXE[160] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\Explorer.EXE[160] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 000903FC
.text E:\WINDOWS\Explorer.EXE[160] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\Explorer.EXE[160] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00381014
.text E:\WINDOWS\Explorer.EXE[160] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00380804
.text E:\WINDOWS\Explorer.EXE[160] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00380A08
.text E:\WINDOWS\Explorer.EXE[160] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00380C0C
.text E:\WINDOWS\Explorer.EXE[160] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00380E10
.text E:\WINDOWS\Explorer.EXE[160] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003801F8
.text E:\WINDOWS\Explorer.EXE[160] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003803FC
.text E:\WINDOWS\Explorer.EXE[160] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00380600
.text E:\WINDOWS\Explorer.EXE[160] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00390804
.text E:\WINDOWS\Explorer.EXE[160] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00390A08
.text E:\WINDOWS\Explorer.EXE[160] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00390600
.text E:\WINDOWS\Explorer.EXE[160] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003901F8
.text E:\WINDOWS\Explorer.EXE[160] USER32.dll!UnhookWinEvent 7E3818AC 3 Bytes JMP 003903FC
.text E:\WINDOWS\Explorer.EXE[160] USER32.dll!UnhookWinEvent + 4 7E3818B0 1 Byte [82]
.text E:\Program Files\Common Files\LightScribe\LSSrvc.exe[336] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 001501F8
.text E:\Program Files\Common Files\LightScribe\LSSrvc.exe[336] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\Program Files\Common Files\LightScribe\LSSrvc.exe[336] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 001503FC
.text E:\Program Files\Common Files\LightScribe\LSSrvc.exe[336] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\Program Files\Common Files\LightScribe\LSSrvc.exe[336] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00421014
.text E:\Program Files\Common Files\LightScribe\LSSrvc.exe[336] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00420804
.text E:\Program Files\Common Files\LightScribe\LSSrvc.exe[336] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00420A08
.text E:\Program Files\Common Files\LightScribe\LSSrvc.exe[336] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00420C0C
.text E:\Program Files\Common Files\LightScribe\LSSrvc.exe[336] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00420E10
.text E:\Program Files\Common Files\LightScribe\LSSrvc.exe[336] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 004201F8
.text E:\Program Files\Common Files\LightScribe\LSSrvc.exe[336] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 004203FC
.text E:\Program Files\Common Files\LightScribe\LSSrvc.exe[336] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00420600
.text E:\Program Files\Common Files\LightScribe\LSSrvc.exe[336] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00430804
.text E:\Program Files\Common Files\LightScribe\LSSrvc.exe[336] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00430A08
.text E:\Program Files\Common Files\LightScribe\LSSrvc.exe[336] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00430600
.text E:\Program Files\Common Files\LightScribe\LSSrvc.exe[336] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 004301F8
.text E:\Program Files\Common Files\LightScribe\LSSrvc.exe[336] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 004303FC
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtCreateFile + 6 7C90D0B4 4 Bytes [28, 00, 16, 00]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtCreateFile + B 7C90D0B9 1 Byte [E2]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtMapViewOfSection + 6 7C90D524 1 Byte [28]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtMapViewOfSection + 6 7C90D524 4 Bytes [28, 03, 16, 00]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtMapViewOfSection + B 7C90D529 1 Byte [E2]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtOpenFile + 6 7C90D5A4 4 Bytes [68, 00, 16, 00]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtOpenFile + B 7C90D5A9 1 Byte [E2]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtOpenProcess + 6 7C90D604 4 Bytes [A8, 01, 16, 00]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtOpenProcess + B 7C90D609 1 Byte [E2]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtOpenProcessToken + 6 7C90D614 4 Bytes CALL 7B90EC1A
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtOpenProcessToken + B 7C90D619 1 Byte [E2]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtOpenProcessTokenEx + 6 7C90D624 4 Bytes [A8, 02, 16, 00]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtOpenProcessTokenEx + B 7C90D629 1 Byte [E2]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtOpenThread + 6 7C90D664 4 Bytes [68, 01, 16, 00]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtOpenThread + B 7C90D669 1 Byte [E2]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtOpenThreadToken + 6 7C90D674 4 Bytes [68, 02, 16, 00]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtOpenThreadToken + B 7C90D679 1 Byte [E2]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtOpenThreadTokenEx + 6 7C90D684 4 Bytes CALL 7B90EC8B
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtOpenThreadTokenEx + B 7C90D689 1 Byte [E2]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtQueryAttributesFile + 6 7C90D714 4 Bytes [A8, 00, 16, 00]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtQueryAttributesFile + B 7C90D719 1 Byte [E2]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtQueryFullAttributesFile + 6 7C90D7B4 4 Bytes CALL 7B90EDB9
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtQueryFullAttributesFile + B 7C90D7B9 1 Byte [E2]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtSetInformationFile + 6 7C90DC64 4 Bytes [28, 01, 16, 00]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtSetInformationFile + B 7C90DC69 1 Byte [E2]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtSetInformationThread + 6 7C90DCB4 4 Bytes [28, 02, 16, 00]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtSetInformationThread + B 7C90DCB9 1 Byte [E2]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 1 Byte [68]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 4 Bytes [68, 03, 16, 00]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!NtUnmapViewOfSection + B 7C90DF19 1 Byte [E2]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 001801F8
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 001803FC
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00571014
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00570804
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00570A08
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00570C0C
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00570E10
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 005701F8
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 005703FC
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00570600
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00580804
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00580A08
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00580600
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 005801F8
.text E:\Program Files\Google\Chrome\Application\chrome.exe[424] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 005803FC
.text E:\WINDOWS\System32\smss.exe[508] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\System32\svchost.exe[680] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 000901F8
.text E:\WINDOWS\System32\svchost.exe[680] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\System32\svchost.exe[680] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 000903FC
.text E:\WINDOWS\System32\svchost.exe[680] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\System32\svchost.exe[680] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00301014
.text E:\WINDOWS\System32\svchost.exe[680] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00300804
.text E:\WINDOWS\System32\svchost.exe[680] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00300A08
.text E:\WINDOWS\System32\svchost.exe[680] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00300C0C
.text E:\WINDOWS\System32\svchost.exe[680] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00300E10
.text E:\WINDOWS\System32\svchost.exe[680] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003001F8
.text E:\WINDOWS\System32\svchost.exe[680] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003003FC
.text E:\WINDOWS\System32\svchost.exe[680] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00300600
.text E:\WINDOWS\System32\svchost.exe[680] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00310804
.text E:\WINDOWS\System32\svchost.exe[680] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00310A08
.text E:\WINDOWS\System32\svchost.exe[680] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00310600
.text E:\WINDOWS\System32\svchost.exe[680] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003101F8
.text E:\WINDOWS\System32\svchost.exe[680] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003103FC
.text E:\WINDOWS\System32\svchost.exe[696] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 000901F8
.text E:\WINDOWS\System32\svchost.exe[696] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\System32\svchost.exe[696] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 000903FC
.text E:\WINDOWS\System32\svchost.exe[696] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\System32\svchost.exe[696] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00301014
.text E:\WINDOWS\System32\svchost.exe[696] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00300804
.text E:\WINDOWS\System32\svchost.exe[696] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00300A08
.text E:\WINDOWS\System32\svchost.exe[696] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00300C0C
.text E:\WINDOWS\System32\svchost.exe[696] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00300E10
.text E:\WINDOWS\System32\svchost.exe[696] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003001F8
.text E:\WINDOWS\System32\svchost.exe[696] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003003FC
.text E:\WINDOWS\System32\svchost.exe[696] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00300600
.text E:\WINDOWS\System32\svchost.exe[696] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00310804
.text E:\WINDOWS\System32\svchost.exe[696] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00310A08
.text E:\WINDOWS\System32\svchost.exe[696] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00310600
.text E:\WINDOWS\System32\svchost.exe[696] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003101F8
.text E:\WINDOWS\System32\svchost.exe[696] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003103FC
.text E:\Program Files\Spyware Terminator\st_rsser.exe[736] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 001501F8
.text E:\Program Files\Spyware Terminator\st_rsser.exe[736] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\Program Files\Spyware Terminator\st_rsser.exe[736] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 001503FC
.text E:\Program Files\Spyware Terminator\st_rsser.exe[736] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\Program Files\Spyware Terminator\st_rsser.exe[736] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 003E1014
.text E:\Program Files\Spyware Terminator\st_rsser.exe[736] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 003E0804
.text E:\Program Files\Spyware Terminator\st_rsser.exe[736] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 003E0A08
.text E:\Program Files\Spyware Terminator\st_rsser.exe[736] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 003E0C0C
.text E:\Program Files\Spyware Terminator\st_rsser.exe[736] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 003E0E10
.text E:\Program Files\Spyware Terminator\st_rsser.exe[736] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003E01F8
.text E:\Program Files\Spyware Terminator\st_rsser.exe[736] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003E03FC
.text E:\Program Files\Spyware Terminator\st_rsser.exe[736] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 003E0600
.text E:\Program Files\Spyware Terminator\st_rsser.exe[736] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 003F0804
.text E:\Program Files\Spyware Terminator\st_rsser.exe[736] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 003F0A08
.text E:\Program Files\Spyware Terminator\st_rsser.exe[736] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 003F0600
.text E:\Program Files\Spyware Terminator\st_rsser.exe[736] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003F01F8
.text E:\Program Files\Spyware Terminator\st_rsser.exe[736] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003F03FC
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe[764] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 001501F8
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe[764] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe[764] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 001503FC
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe[764] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe[764] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 003E1014
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe[764] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 003E0804
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe[764] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 003E0A08
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe[764] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 003E0C0C
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe[764] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 003E0E10
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe[764] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003E01F8
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe[764] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003E03FC
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe[764] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 003E0600
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe[764] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 003F0804
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe[764] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 003F0A08
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe[764] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 003F0600
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe[764] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003F01F8
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe[764] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003F03FC
.text E:\WINDOWS\system32\svchost.exe[768] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 000901F8
.text E:\WINDOWS\system32\svchost.exe[768] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\system32\svchost.exe[768] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 000903FC
.text E:\WINDOWS\system32\svchost.exe[768] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\system32\svchost.exe[768] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00301014
.text E:\WINDOWS\system32\svchost.exe[768] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00300804
.text E:\WINDOWS\system32\svchost.exe[768] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00300A08
.text E:\WINDOWS\system32\svchost.exe[768] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00300C0C
.text E:\WINDOWS\system32\svchost.exe[768] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00300E10
.text E:\WINDOWS\system32\svchost.exe[768] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003001F8
.text E:\WINDOWS\system32\svchost.exe[768] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003003FC
.text E:\WINDOWS\system32\svchost.exe[768] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00300600
.text E:\WINDOWS\system32\svchost.exe[768] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00310804
.text E:\WINDOWS\system32\svchost.exe[768] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00310A08
.text E:\WINDOWS\system32\svchost.exe[768] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00310600
.text E:\WINDOWS\system32\svchost.exe[768] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003101F8
.text E:\WINDOWS\system32\svchost.exe[768] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003103FC
.text E:\WINDOWS\system32\csrss.exe[780] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\system32\csrss.exe[780] KERNEL32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\system32\winlogon.exe[808] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 000701F8
.text E:\WINDOWS\system32\winlogon.exe[808] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\system32\winlogon.exe[808] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 000703FC
.text E:\WINDOWS\system32\winlogon.exe[808] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\system32\winlogon.exe[808] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00301014
.text E:\WINDOWS\system32\winlogon.exe[808] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00300804
.text E:\WINDOWS\system32\winlogon.exe[808] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00300A08
.text E:\WINDOWS\system32\winlogon.exe[808] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00300C0C
.text E:\WINDOWS\system32\winlogon.exe[808] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00300E10
.text E:\WINDOWS\system32\winlogon.exe[808] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003001F8
.text E:\WINDOWS\system32\winlogon.exe[808] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003003FC
.text E:\WINDOWS\system32\winlogon.exe[808] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00300600
.text E:\WINDOWS\system32\winlogon.exe[808] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00310804
Nahoru
TPY
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 26 říj 2010 13:46

Re: Zpomalení systemu

#15 Příspěvek od TPY »

druhy log cast druha:

.text E:\WINDOWS\system32\winlogon.exe[808] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00310A08
.text E:\WINDOWS\system32\winlogon.exe[808] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00310600
.text E:\WINDOWS\system32\winlogon.exe[808] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003101F8
.text E:\WINDOWS\system32\winlogon.exe[808] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003103FC
.text E:\WINDOWS\system32\services.exe[860] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 000901F8
.text E:\WINDOWS\system32\services.exe[860] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\system32\services.exe[860] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 000903FC
.text E:\WINDOWS\system32\services.exe[860] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\system32\services.exe[860] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00301014
.text E:\WINDOWS\system32\services.exe[860] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00300804
.text E:\WINDOWS\system32\services.exe[860] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00300A08
.text E:\WINDOWS\system32\services.exe[860] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00300C0C
.text E:\WINDOWS\system32\services.exe[860] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00300E10
.text E:\WINDOWS\system32\services.exe[860] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003001F8
.text E:\WINDOWS\system32\services.exe[860] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003003FC
.text E:\WINDOWS\system32\services.exe[860] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00300600
.text E:\WINDOWS\system32\services.exe[860] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00310804
.text E:\WINDOWS\system32\services.exe[860] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00310A08
.text E:\WINDOWS\system32\services.exe[860] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00310600
.text E:\WINDOWS\system32\services.exe[860] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003101F8
.text E:\WINDOWS\system32\services.exe[860] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003103FC
.text E:\WINDOWS\system32\lsass.exe[872] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 000901F8
.text E:\WINDOWS\system32\lsass.exe[872] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\system32\lsass.exe[872] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 000903FC
.text E:\WINDOWS\system32\lsass.exe[872] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\system32\lsass.exe[872] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00301014
.text E:\WINDOWS\system32\lsass.exe[872] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00300804
.text E:\WINDOWS\system32\lsass.exe[872] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00300A08
.text E:\WINDOWS\system32\lsass.exe[872] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00300C0C
.text E:\WINDOWS\system32\lsass.exe[872] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00300E10
.text E:\WINDOWS\system32\lsass.exe[872] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003001F8
.text E:\WINDOWS\system32\lsass.exe[872] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003003FC
.text E:\WINDOWS\system32\lsass.exe[872] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00300600
.text E:\WINDOWS\system32\lsass.exe[872] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00310804
.text E:\WINDOWS\system32\lsass.exe[872] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00310A08
.text E:\WINDOWS\system32\lsass.exe[872] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00310600
.text E:\WINDOWS\system32\lsass.exe[872] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003101F8
.text E:\WINDOWS\system32\lsass.exe[872] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003103FC
.text E:\WINDOWS\system32\Ati2evxx.exe[1036] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 001401F8
.text E:\WINDOWS\system32\Ati2evxx.exe[1036] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\system32\Ati2evxx.exe[1036] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 001403FC
.text E:\WINDOWS\system32\Ati2evxx.exe[1036] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\system32\Ati2evxx.exe[1036] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 003D0804
.text E:\WINDOWS\system32\Ati2evxx.exe[1036] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 003D0A08
.text E:\WINDOWS\system32\Ati2evxx.exe[1036] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 003D0600
.text E:\WINDOWS\system32\Ati2evxx.exe[1036] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003D01F8
.text E:\WINDOWS\system32\Ati2evxx.exe[1036] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003D03FC
.text E:\WINDOWS\system32\Ati2evxx.exe[1036] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 003E1014
.text E:\WINDOWS\system32\Ati2evxx.exe[1036] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 003E0804
.text E:\WINDOWS\system32\Ati2evxx.exe[1036] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 003E0A08
.text E:\WINDOWS\system32\Ati2evxx.exe[1036] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 003E0C0C
.text E:\WINDOWS\system32\Ati2evxx.exe[1036] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 003E0E10
.text E:\WINDOWS\system32\Ati2evxx.exe[1036] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003E01F8
.text E:\WINDOWS\system32\Ati2evxx.exe[1036] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003E03FC
.text E:\WINDOWS\system32\Ati2evxx.exe[1036] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 003E0600
.text E:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 000901F8
.text E:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 000903FC
.text E:\WINDOWS\system32\svchost.exe[1056] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\system32\svchost.exe[1056] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00301014
.text E:\WINDOWS\system32\svchost.exe[1056] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00300804
.text E:\WINDOWS\system32\svchost.exe[1056] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00300A08
.text E:\WINDOWS\system32\svchost.exe[1056] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00300C0C
.text E:\WINDOWS\system32\svchost.exe[1056] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00300E10
.text E:\WINDOWS\system32\svchost.exe[1056] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003001F8
.text E:\WINDOWS\system32\svchost.exe[1056] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003003FC
.text E:\WINDOWS\system32\svchost.exe[1056] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00300600
.text E:\WINDOWS\system32\svchost.exe[1056] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00310804
.text E:\WINDOWS\system32\svchost.exe[1056] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00310A08
.text E:\WINDOWS\system32\svchost.exe[1056] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00310600
.text E:\WINDOWS\system32\svchost.exe[1056] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003101F8
.text E:\WINDOWS\system32\svchost.exe[1056] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003103FC
.text E:\WINDOWS\system32\svchost.exe[1152] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 000901F8
.text E:\WINDOWS\system32\svchost.exe[1152] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\system32\svchost.exe[1152] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 000903FC
.text E:\WINDOWS\system32\svchost.exe[1152] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\system32\svchost.exe[1152] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00301014
.text E:\WINDOWS\system32\svchost.exe[1152] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00300804
.text E:\WINDOWS\system32\svchost.exe[1152] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00300A08
.text E:\WINDOWS\system32\svchost.exe[1152] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00300C0C
.text E:\WINDOWS\system32\svchost.exe[1152] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00300E10
.text E:\WINDOWS\system32\svchost.exe[1152] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003001F8
.text E:\WINDOWS\system32\svchost.exe[1152] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003003FC
.text E:\WINDOWS\system32\svchost.exe[1152] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00300600
.text E:\WINDOWS\system32\svchost.exe[1152] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00310804
.text E:\WINDOWS\system32\svchost.exe[1152] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00310A08
.text E:\WINDOWS\system32\svchost.exe[1152] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00310600
.text E:\WINDOWS\system32\svchost.exe[1152] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003101F8
.text E:\WINDOWS\system32\svchost.exe[1152] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003103FC
.text E:\WINDOWS\System32\svchost.exe[1192] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 000901F8
.text E:\WINDOWS\System32\svchost.exe[1192] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\System32\svchost.exe[1192] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 000903FC
.text E:\WINDOWS\System32\svchost.exe[1192] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\System32\svchost.exe[1192] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00301014
.text E:\WINDOWS\System32\svchost.exe[1192] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00300804
.text E:\WINDOWS\System32\svchost.exe[1192] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00300A08
.text E:\WINDOWS\System32\svchost.exe[1192] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00300C0C
.text E:\WINDOWS\System32\svchost.exe[1192] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00300E10
.text E:\WINDOWS\System32\svchost.exe[1192] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003001F8
.text E:\WINDOWS\System32\svchost.exe[1192] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003003FC
.text E:\WINDOWS\System32\svchost.exe[1192] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00300600
.text E:\WINDOWS\System32\svchost.exe[1192] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00310804
.text E:\WINDOWS\System32\svchost.exe[1192] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00310A08
.text E:\WINDOWS\System32\svchost.exe[1192] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00310600
.text E:\WINDOWS\System32\svchost.exe[1192] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003101F8
.text E:\WINDOWS\System32\svchost.exe[1192] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003103FC
.text E:\WINDOWS\system32\svchost.exe[1236] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 000901F8
.text E:\WINDOWS\system32\svchost.exe[1236] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\system32\svchost.exe[1236] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 000903FC
.text E:\WINDOWS\system32\svchost.exe[1236] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\system32\svchost.exe[1236] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00301014
.text E:\WINDOWS\system32\svchost.exe[1236] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00300804
.text E:\WINDOWS\system32\svchost.exe[1236] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00300A08
.text E:\WINDOWS\system32\svchost.exe[1236] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00300C0C
.text E:\WINDOWS\system32\svchost.exe[1236] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00300E10
.text E:\WINDOWS\system32\svchost.exe[1236] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003001F8
.text E:\WINDOWS\system32\svchost.exe[1236] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003003FC
.text E:\WINDOWS\system32\svchost.exe[1236] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00300600
.text E:\WINDOWS\system32\svchost.exe[1236] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00310804
.text E:\WINDOWS\system32\svchost.exe[1236] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00310A08
.text E:\WINDOWS\system32\svchost.exe[1236] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00310600
.text E:\WINDOWS\system32\svchost.exe[1236] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003101F8
.text E:\WINDOWS\system32\svchost.exe[1236] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003103FC
.text E:\WINDOWS\system32\Ati2evxx.exe[1264] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 001401F8
.text E:\WINDOWS\system32\Ati2evxx.exe[1264] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\system32\Ati2evxx.exe[1264] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 001403FC
.text E:\WINDOWS\system32\Ati2evxx.exe[1264] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\system32\Ati2evxx.exe[1264] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 003D0804
.text E:\WINDOWS\system32\Ati2evxx.exe[1264] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 003D0A08
.text E:\WINDOWS\system32\Ati2evxx.exe[1264] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 003D0600
.text E:\WINDOWS\system32\Ati2evxx.exe[1264] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003D01F8
.text E:\WINDOWS\system32\Ati2evxx.exe[1264] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003D03FC
.text E:\WINDOWS\system32\Ati2evxx.exe[1264] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 003E1014
.text E:\WINDOWS\system32\Ati2evxx.exe[1264] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 003E0804
.text E:\WINDOWS\system32\Ati2evxx.exe[1264] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 003E0A08
.text E:\WINDOWS\system32\Ati2evxx.exe[1264] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 003E0C0C
.text E:\WINDOWS\system32\Ati2evxx.exe[1264] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 003E0E10
.text E:\WINDOWS\system32\Ati2evxx.exe[1264] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003E01F8
.text E:\WINDOWS\system32\Ati2evxx.exe[1264] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003E03FC
.text E:\WINDOWS\system32\Ati2evxx.exe[1264] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 003E0600
.text E:\Program Files\Google\Chrome\Application\chrome.exe[1384] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 001501F8
.text E:\Program Files\Google\Chrome\Application\chrome.exe[1384] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[1384] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 001503FC
.text E:\Program Files\Google\Chrome\Application\chrome.exe[1384] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[1384] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 003E1014
.text E:\Program Files\Google\Chrome\Application\chrome.exe[1384] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 003E0804
.text E:\Program Files\Google\Chrome\Application\chrome.exe[1384] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 003E0A08
.text E:\Program Files\Google\Chrome\Application\chrome.exe[1384] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 003E0C0C
.text E:\Program Files\Google\Chrome\Application\chrome.exe[1384] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 003E0E10
.text E:\Program Files\Google\Chrome\Application\chrome.exe[1384] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003E01F8
.text E:\Program Files\Google\Chrome\Application\chrome.exe[1384] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003E03FC
.text E:\Program Files\Google\Chrome\Application\chrome.exe[1384] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 003E0600
.text E:\Program Files\Google\Chrome\Application\chrome.exe[1384] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 003F0804
.text E:\Program Files\Google\Chrome\Application\chrome.exe[1384] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 003F0A08
.text E:\Program Files\Google\Chrome\Application\chrome.exe[1384] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 003F0600
.text E:\Program Files\Google\Chrome\Application\chrome.exe[1384] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003F01F8
.text E:\Program Files\Google\Chrome\Application\chrome.exe[1384] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003F03FC
.text E:\WINDOWS\system32\svchost.exe[1392] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 000901F8
.text E:\WINDOWS\system32\svchost.exe[1392] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\system32\svchost.exe[1392] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 000903FC
.text E:\WINDOWS\system32\svchost.exe[1392] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\system32\svchost.exe[1392] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00301014
.text E:\WINDOWS\system32\svchost.exe[1392] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00300804
.text E:\WINDOWS\system32\svchost.exe[1392] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00300A08
.text E:\WINDOWS\system32\svchost.exe[1392] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00300C0C
.text E:\WINDOWS\system32\svchost.exe[1392] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00300E10
.text E:\WINDOWS\system32\svchost.exe[1392] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003001F8
.text E:\WINDOWS\system32\svchost.exe[1392] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003003FC
.text E:\WINDOWS\system32\svchost.exe[1392] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00300600
.text E:\WINDOWS\system32\svchost.exe[1392] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00310804
.text E:\WINDOWS\system32\svchost.exe[1392] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00310A08
.text E:\WINDOWS\system32\svchost.exe[1392] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00310600
.text E:\WINDOWS\system32\svchost.exe[1392] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003101F8
.text E:\WINDOWS\system32\svchost.exe[1392] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003103FC
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe[1448] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 001501F8
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe[1448] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe[1448] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 001503FC
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe[1448] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe[1448] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 006C0804
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe[1448] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 006C0A08
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe[1448] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 006C0600
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe[1448] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 006C01F8
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe[1448] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 006C03FC
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe[1448] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 006D1014
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe[1448] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 006D0804
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe[1448] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 006D0A08
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe[1448] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 006D0C0C
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe[1448] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 006D0E10
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe[1448] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 006D01F8
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe[1448] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 006D03FC
.text E:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe[1448] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 006D0600
.text E:\WINDOWS\system32\svchost.exe[1452] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 000901F8
.text E:\WINDOWS\system32\svchost.exe[1452] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\system32\svchost.exe[1452] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 000903FC
.text E:\WINDOWS\system32\svchost.exe[1452] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\system32\svchost.exe[1452] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00301014
.text E:\WINDOWS\system32\svchost.exe[1452] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00300804
.text E:\WINDOWS\system32\svchost.exe[1452] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00300A08
.text E:\WINDOWS\system32\svchost.exe[1452] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00300C0C
.text E:\WINDOWS\system32\svchost.exe[1452] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00300E10
.text E:\WINDOWS\system32\svchost.exe[1452] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003001F8
.text E:\WINDOWS\system32\svchost.exe[1452] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003003FC
.text E:\WINDOWS\system32\svchost.exe[1452] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00300600
.text E:\WINDOWS\system32\svchost.exe[1452] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00310804
.text E:\WINDOWS\system32\svchost.exe[1452] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00310A08
.text E:\WINDOWS\system32\svchost.exe[1452] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00310600
.text E:\WINDOWS\system32\svchost.exe[1452] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003101F8
.text E:\WINDOWS\system32\svchost.exe[1452] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003103FC
.text E:\Program Files\AVAST Software\Avast\AvastSvc.exe[1544] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\Program Files\AVAST Software\Avast\AvastSvc.exe[1544] kernel32.dll!SetUnhandledExceptionFilter 7C84495D 4 Bytes [C2, 04, 00, 90] {RET 0x4; NOP }
.text E:\Program Files\AVAST Software\Avast\AvastSvc.exe[1544] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\system32\spoolsv.exe[1796] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 000901F8
.text E:\WINDOWS\system32\spoolsv.exe[1796] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\system32\spoolsv.exe[1796] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 000903FC
.text E:\WINDOWS\system32\spoolsv.exe[1796] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\system32\spoolsv.exe[1796] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00301014
.text E:\WINDOWS\system32\spoolsv.exe[1796] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00300804
.text E:\WINDOWS\system32\spoolsv.exe[1796] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00300A08
.text E:\WINDOWS\system32\spoolsv.exe[1796] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00300C0C
.text E:\WINDOWS\system32\spoolsv.exe[1796] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00300E10
.text E:\WINDOWS\system32\spoolsv.exe[1796] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003001F8
.text E:\WINDOWS\system32\spoolsv.exe[1796] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003003FC
.text E:\WINDOWS\system32\spoolsv.exe[1796] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00300600
.text E:\WINDOWS\system32\spoolsv.exe[1796] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00310804
.text E:\WINDOWS\system32\spoolsv.exe[1796] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00310A08
.text E:\WINDOWS\system32\spoolsv.exe[1796] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00310600
.text E:\WINDOWS\system32\spoolsv.exe[1796] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003101F8
.text E:\WINDOWS\system32\spoolsv.exe[1796] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003103FC
.text E:\WINDOWS\system32\svchost.exe[1872] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 000901F8
.text E:\WINDOWS\system32\svchost.exe[1872] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\system32\svchost.exe[1872] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 000903FC
.text E:\WINDOWS\system32\svchost.exe[1872] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\system32\svchost.exe[1872] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00301014
.text E:\WINDOWS\system32\svchost.exe[1872] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00300804
.text E:\WINDOWS\system32\svchost.exe[1872] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00300A08
.text E:\WINDOWS\system32\svchost.exe[1872] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00300C0C
.text E:\WINDOWS\system32\svchost.exe[1872] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00300E10
.text E:\WINDOWS\system32\svchost.exe[1872] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003001F8
.text E:\WINDOWS\system32\svchost.exe[1872] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003003FC
.text E:\WINDOWS\system32\svchost.exe[1872] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00300600
.text E:\WINDOWS\system32\svchost.exe[1872] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00310804
.text E:\WINDOWS\system32\svchost.exe[1872] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00310A08
.text E:\WINDOWS\system32\svchost.exe[1872] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00310600
.text E:\WINDOWS\system32\svchost.exe[1872] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003101F8
.text E:\WINDOWS\system32\svchost.exe[1872] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003103FC
.text E:\WINDOWS\system32\wbem\wmiapsrv.exe[2288] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 000901F8
.text E:\WINDOWS\system32\wbem\wmiapsrv.exe[2288] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\system32\wbem\wmiapsrv.exe[2288] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 000903FC
.text E:\WINDOWS\system32\wbem\wmiapsrv.exe[2288] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\system32\wbem\wmiapsrv.exe[2288] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00301014
.text E:\WINDOWS\system32\wbem\wmiapsrv.exe[2288] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00300804
.text E:\WINDOWS\system32\wbem\wmiapsrv.exe[2288] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00300A08
.text E:\WINDOWS\system32\wbem\wmiapsrv.exe[2288] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00300C0C
.text E:\WINDOWS\system32\wbem\wmiapsrv.exe[2288] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00300E10
.text E:\WINDOWS\system32\wbem\wmiapsrv.exe[2288] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003001F8
.text E:\WINDOWS\system32\wbem\wmiapsrv.exe[2288] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003003FC
.text E:\WINDOWS\system32\wbem\wmiapsrv.exe[2288] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00300600
.text E:\WINDOWS\system32\wbem\wmiapsrv.exe[2288] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00310804
.text E:\WINDOWS\system32\wbem\wmiapsrv.exe[2288] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00310A08
.text E:\WINDOWS\system32\wbem\wmiapsrv.exe[2288] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00310600
.text E:\WINDOWS\system32\wbem\wmiapsrv.exe[2288] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003101F8
.text E:\WINDOWS\system32\wbem\wmiapsrv.exe[2288] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003103FC
.text E:\WINDOWS\RTHDCPL.EXE[2416] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 001401F8
.text E:\WINDOWS\RTHDCPL.EXE[2416] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\RTHDCPL.EXE[2416] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 001403FC
.text E:\WINDOWS\RTHDCPL.EXE[2416] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\RTHDCPL.EXE[2416] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 003D1014
.text E:\WINDOWS\RTHDCPL.EXE[2416] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 003D0804
.text E:\WINDOWS\RTHDCPL.EXE[2416] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 003D0A08
.text E:\WINDOWS\RTHDCPL.EXE[2416] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 003D0C0C
.text E:\WINDOWS\RTHDCPL.EXE[2416] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 003D0E10
.text E:\WINDOWS\RTHDCPL.EXE[2416] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003D01F8
.text E:\WINDOWS\RTHDCPL.EXE[2416] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003D03FC
.text E:\WINDOWS\RTHDCPL.EXE[2416] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 003D0600
.text E:\WINDOWS\RTHDCPL.EXE[2416] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 003E0804
.text E:\WINDOWS\RTHDCPL.EXE[2416] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 003E0A08
.text E:\WINDOWS\RTHDCPL.EXE[2416] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 003E0600
.text E:\WINDOWS\RTHDCPL.EXE[2416] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003E01F8
.text E:\WINDOWS\RTHDCPL.EXE[2416] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003E03FC
.text E:\WINDOWS\System32\alg.exe[2444] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 000901F8
.text E:\WINDOWS\System32\alg.exe[2444] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\WINDOWS\System32\alg.exe[2444] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 000903FC
.text E:\WINDOWS\System32\alg.exe[2444] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\WINDOWS\System32\alg.exe[2444] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 00300804
.text E:\WINDOWS\System32\alg.exe[2444] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 00300A08
.text E:\WINDOWS\System32\alg.exe[2444] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 00300600
.text E:\WINDOWS\System32\alg.exe[2444] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003001F8
.text E:\WINDOWS\System32\alg.exe[2444] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003003FC
.text E:\WINDOWS\System32\alg.exe[2444] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 00311014
.text E:\WINDOWS\System32\alg.exe[2444] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 00310804
.text E:\WINDOWS\System32\alg.exe[2444] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 00310A08
.text E:\WINDOWS\System32\alg.exe[2444] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 00310C0C
.text E:\WINDOWS\System32\alg.exe[2444] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 00310E10
.text E:\WINDOWS\System32\alg.exe[2444] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003101F8
.text E:\WINDOWS\System32\alg.exe[2444] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003103FC
.text E:\WINDOWS\System32\alg.exe[2444] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 00310600
.text E:\Program Files\FreeCommander\FreeCommander.exe[2464] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 001501F8
.text E:\Program Files\FreeCommander\FreeCommander.exe[2464] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\Program Files\FreeCommander\FreeCommander.exe[2464] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 001503FC
.text E:\Program Files\FreeCommander\FreeCommander.exe[2464] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\Program Files\FreeCommander\FreeCommander.exe[2464] advapi32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 003E1014
.text E:\Program Files\FreeCommander\FreeCommander.exe[2464] advapi32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 003E0804
.text E:\Program Files\FreeCommander\FreeCommander.exe[2464] advapi32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 003E0A08
.text E:\Program Files\FreeCommander\FreeCommander.exe[2464] advapi32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 003E0C0C
.text E:\Program Files\FreeCommander\FreeCommander.exe[2464] advapi32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 003E0E10
.text E:\Program Files\FreeCommander\FreeCommander.exe[2464] advapi32.dll!CreateServiceA 77E27211 5 Bytes JMP 003E01F8
.text E:\Program Files\FreeCommander\FreeCommander.exe[2464] advapi32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003E03FC
.text E:\Program Files\FreeCommander\FreeCommander.exe[2464] advapi32.dll!DeleteService 77E274B1 5 Bytes JMP 003E0600
.text E:\Program Files\FreeCommander\FreeCommander.exe[2464] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 003F0804
.text E:\Program Files\FreeCommander\FreeCommander.exe[2464] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 003F0A08
.text E:\Program Files\FreeCommander\FreeCommander.exe[2464] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 003F0600
.text E:\Program Files\FreeCommander\FreeCommander.exe[2464] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003F01F8
.text E:\Program Files\FreeCommander\FreeCommander.exe[2464] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003F03FC
.text E:\Documents and Settings\Uzivatel\Dokumenty\gmer.exe[2488] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 001501F8
.text E:\Documents and Settings\Uzivatel\Dokumenty\gmer.exe[2488] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\Documents and Settings\Uzivatel\Dokumenty\gmer.exe[2488] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 001503FC
.text E:\Documents and Settings\Uzivatel\Dokumenty\gmer.exe[2488] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\Documents and Settings\Uzivatel\Dokumenty\gmer.exe[2488] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 009C1014
.text E:\Documents and Settings\Uzivatel\Dokumenty\gmer.exe[2488] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 009C0804
.text E:\Documents and Settings\Uzivatel\Dokumenty\gmer.exe[2488] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 009C0A08
.text E:\Documents and Settings\Uzivatel\Dokumenty\gmer.exe[2488] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 009C0C0C
.text E:\Documents and Settings\Uzivatel\Dokumenty\gmer.exe[2488] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 009C0E10
.text E:\Documents and Settings\Uzivatel\Dokumenty\gmer.exe[2488] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 009C01F8
.text E:\Documents and Settings\Uzivatel\Dokumenty\gmer.exe[2488] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 009C03FC
.text E:\Documents and Settings\Uzivatel\Dokumenty\gmer.exe[2488] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 009C0600
.text E:\Documents and Settings\Uzivatel\Dokumenty\gmer.exe[2488] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 009D0804
.text E:\Documents and Settings\Uzivatel\Dokumenty\gmer.exe[2488] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 009D0A08
.text E:\Documents and Settings\Uzivatel\Dokumenty\gmer.exe[2488] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 009D0600
.text E:\Documents and Settings\Uzivatel\Dokumenty\gmer.exe[2488] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 009D01F8
.text E:\Documents and Settings\Uzivatel\Dokumenty\gmer.exe[2488] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 009D03FC
.text E:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2552] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 001401F8
.text E:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2552] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2552] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 001403FC
.text E:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2552] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2552] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 003D0804
.text E:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2552] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 003D0A08
.text E:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2552] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 003D0600
.text E:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2552] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003D01F8
.text E:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2552] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003D03FC
.text E:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2552] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 003E1014
.text E:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2552] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 003E0804
.text E:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2552] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 003E0A08
.text E:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2552] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 003E0C0C
.text E:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2552] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 003E0E10
.text E:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2552] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003E01F8
.text E:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2552] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003E03FC
.text E:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2552] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 003E0600
.text E:\Program Files\Google\Chrome\Application\chrome.exe[2772] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 001501F8
.text E:\Program Files\Google\Chrome\Application\chrome.exe[2772] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[2772] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 001503FC
.text E:\Program Files\Google\Chrome\Application\chrome.exe[2772] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\Program Files\Google\Chrome\Application\chrome.exe[2772] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 003E1014
.text E:\Program Files\Google\Chrome\Application\chrome.exe[2772] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 003E0804
.text E:\Program Files\Google\Chrome\Application\chrome.exe[2772] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 003E0A08
.text E:\Program Files\Google\Chrome\Application\chrome.exe[2772] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 003E0C0C
.text E:\Program Files\Google\Chrome\Application\chrome.exe[2772] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 003E0E10
.text E:\Program Files\Google\Chrome\Application\chrome.exe[2772] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 003E01F8
.text E:\Program Files\Google\Chrome\Application\chrome.exe[2772] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 003E03FC
.text E:\Program Files\Google\Chrome\Application\chrome.exe[2772] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 003E0600
.text E:\Program Files\Google\Chrome\Application\chrome.exe[2772] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 003F0804
.text E:\Program Files\Google\Chrome\Application\chrome.exe[2772] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 003F0A08
.text E:\Program Files\Google\Chrome\Application\chrome.exe[2772] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 003F0600
.text E:\Program Files\Google\Chrome\Application\chrome.exe[2772] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 003F01F8
.text E:\Program Files\Google\Chrome\Application\chrome.exe[2772] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 003F03FC
.text E:\Program Files\AVAST Software\Avast\avastUI.exe[2912] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\Program Files\AVAST Software\Avast\avastUI.exe[2912] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62]
.text E:\Program Files\Common Files\Java\Java Update\jusched.exe[2952] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 001501F8
.text E:\Program Files\Common Files\Java\Java Update\jusched.exe[2952] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62]
.text E:\Program Files\Common Files\Java\Java Update\jusched.exe[2952] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 001503FC
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“