Prosím o kontrolu

[Vicious]

Logfile of random's system information tool 1.09 (written by random/random)
Run by Vicious at 2011-12-04 12:25:51
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 33 GB (43%) free of 76 GB
Total RAM: 1791 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:26:16, on 4.12.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Documents and Settings\All Users\Data aplikací\LangSoft\OETRN.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
C:\Program Files\Nero\Update\NASvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\OO Software\Defrag\oodag.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
c:\Documents and Settings\Vicious\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Vicious.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\Snagit 9\SnagitBHO.dll
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O3 - Toolbar: Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\Snagit 9\SnagitIEAddin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [OEXPRESS] C:\Documents and Settings\All Users\Data aplikací\LangSoft\OETRN.EXE
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Převést do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Připojit cíl vazby k existujícímu PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Připojit k existujícímu PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: iolo System Service (ioloSystemService) - iolo technologies, LLC - C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: O&O Defrag Agent (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe

--
End of file - 12183 bytes

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Vicious\Data aplikací\Mozilla\Firefox\Profiles\botbqghb.default

prefs.js - "browser.startup.homepage" - "http://www.google.cz/"

"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"smartwebprinting@hp.com"=C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"web2pdfextension@web2pdf.adobedotcom"=C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Acrobat]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\Vicious\Data aplikací\Mozilla\Firefox\Profiles\botbqghb.default\extensions\
mozilla_cc@internetdownloadmanager.com
{003D3EDC-99B9-4a34-9C20-60CB94F7E829}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2010-12-23 202160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00C6482D-C502-44C8-8409-FCE54AD9C208}]
SnagIt Toolbar Loader - C:\Program Files\TechSmith\Snagit 9\SnagitBHO.dll [2008-11-06 68936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21 328248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll [2011-12-02 798771]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05 339872]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-11-26 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-11-26 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05 339872]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21 509496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05 339872]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll [2011-12-02 798771]
{8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - Snagit - C:\Program Files\TechSmith\Snagit 9\SnagitIEAddin.dll [2008-11-06 211272]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-04-14 13684736]
"nwiz"=nwiz.exe /install []
"HDAudDeck"=C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe [2009-12-03 33718272]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2011-09-23 258512]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2011-10-20 2497352]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-30 937920]
""= []
"Adobe Acrobat Speed Launcher"=C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [2011-09-05 36760]
"Acrobat Assistant 8.0"=C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2011-09-05 2904984]
"NBAgent"=C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe [2011-09-20 1493288]
"CloneCDTray"=C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2009-01-29 57344]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"DAEMON Tools Pro Agent"=C:\Program Files\DAEMON Tools Pro\DTAgent.exe [2011-08-17 4527424]
"IDMan"=C:\Program Files\Internet Download Manager\IDMan.exe [2011-12-01 3265944]
"Nektra OEAPI"= []
"OEXPRESS"=C:\Documents and Settings\All Users\Data aplikací\LangSoft\OETRN.EXE [2011-12-02 26624]
"WEBTRAN"= []

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" C:\WINDOWS\system32\guard32.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-05-04 551296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 4221328]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2011-07-19 113024]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ioloSystemService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ioloSystemService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Java\jre6\launch4j-tmp\frd.exe"="C:\Program Files\Java\jre6\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxs08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxs08.exe:*:Enabled:hpofxs08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqfxt08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqfxt08.exe:*:Enabled:hpqfxt08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe:*:Enabled:hpqusgm.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe:*:Enabled:hpqusgh.exe"
"C:\Program Files\HP\HP Software Update\HPWUCli.exe"="C:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:hpwucli.exe"
"C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe"="C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe"
"C:\Program Files\Microsoft Office\Office14\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office14\GROOVE.EXE:*:Enabled:Microsoft SharePoint Workspace"
"C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE:*:Enabled:Microsoft OneNote"
"C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\WINDOWS\Keygen.exe"="C:\WINDOWS\Keygen.exe:*:Enabled:Keygen"
"C:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe"="C:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (CLI)"
"C:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe"="C:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (SRV)"
"C:\Program Files\Activision\Wolfenstein\MP\Wolf2MP.exe"="C:\Program Files\Activision\Wolfenstein\MP\Wolf2MP.exe:*:Enabled:Wolfenstein(TM)"
"C:\Program Files\Activision\Wolfenstein\MP\Wolf2MPLite.exe"="C:\Program Files\Activision\Wolfenstein\MP\Wolf2MPLite.exe:*:Enabled:Wolfenstein(TM)"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxs08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxs08.exe:*:Enabled:hpofxs08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqfxt08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqfxt08.exe:*:Enabled:hpqfxt08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe:*:Enabled:hpqusgm.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe:*:Enabled:hpqusgh.exe"
"C:\Program Files\HP\HP Software Update\HPWUCli.exe"="C:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:hpwucli.exe"
"C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe"="C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - open - NOTEPAD.EXE %1
.reg - open - NOTEPAD.EXE %1
.scr - open - NOTEPAD.EXE %1
.vbs - open - NOTEPAD.EXE %1

[Vicious]

======List of files/folders created in the last 1 month======

2011-12-04 12:25:52 ----D---- C:\Program Files\trend micro
2011-12-04 12:25:51 ----D---- C:\rsit
2011-12-03 17:10:43 ----A---- C:\WINDOWS\system32\BASSMOD.dll
2011-12-03 17:00:48 ----D---- C:\Program Files\SlySoft
2011-12-03 16:48:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\TechSmith
2011-12-03 16:48:17 ----D---- C:\Program Files\TechSmith
2011-12-03 16:46:12 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2011-12-03 16:38:18 ----D---- C:\Program Files\DVDFab 8 Qt
2011-12-03 12:54:43 ----D---- C:\Program Files\uTorrent
2011-12-03 12:52:42 ----D---- C:\Documents and Settings\Vicious\Data aplikací\uTorrent
2011-12-02 18:19:14 ----A---- C:\LOGFILE.TXT
2011-12-02 18:15:18 ----A---- C:\WINDOWS\TRNCOM.INI
2011-12-02 17:49:26 ----D---- C:\TRANSLAT
2011-12-02 17:49:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\LangSoft
2011-12-02 17:44:05 ----D---- C:\Documents and Settings\Vicious\Data aplikací\LangSoft
2011-12-02 17:14:45 ----D---- C:\Documents and Settings\Vicious\Data aplikací\Nero
2011-12-02 17:00:38 ----D---- C:\Program Files\Common Files\Nero
2011-12-02 17:00:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\Nero
2011-12-02 16:55:48 ----A---- C:\WINDOWS\system32\drivers\NBVolUp.sys
2011-12-02 16:55:47 ----D---- C:\Program Files\Nero
2011-12-02 16:55:47 ----A---- C:\WINDOWS\system32\drivers\NBVol.sys
2011-12-02 16:36:52 ----HDC---- C:\WINDOWS\$NtUninstallKB942288-v3$
2011-12-02 15:46:28 ----D---- C:\Program Files\Music Label 2009
2011-12-02 12:15:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\firebird
2011-12-02 12:14:01 ----D---- C:\Documents and Settings\Vicious\Data aplikací\Music Label
2011-12-01 17:36:34 ----D---- C:\Documents and Settings\Vicious\Data aplikací\IDM
2011-12-01 17:36:34 ----D---- C:\Documents and Settings\Vicious\Data aplikací\DMCache
2011-12-01 17:36:29 ----D---- C:\Program Files\Internet Download Manager
2011-11-30 17:49:22 ----D---- C:\RTSStavitel
2011-11-30 17:38:14 ----D---- C:\Program Files\DB
2011-11-30 17:38:14 ----D---- C:\Program Files\Borland
2011-11-28 13:21:56 ----A---- C:\WINDOWS\treeskp.sys
2011-11-28 13:08:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
2011-11-28 13:04:31 ----D---- C:\Program Files\Common Files\Adobe
2011-11-28 13:04:31 ----D---- C:\Program Files\Adobe
2011-11-28 13:04:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2011-11-27 20:53:55 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2011-11-27 20:41:43 ----D---- C:\Program Files\MSXML 4.0
2011-11-27 18:35:29 ----D---- C:\Program Files\Activision
2011-11-27 18:33:09 ----SHD---- C:\WINDOWS\ftpcache
2011-11-27 18:01:19 ----D---- C:\Program Files\OO Software
2011-11-27 16:54:09 ----D---- C:\Documents and Settings\Vicious\Data aplikací\HPAppData
2011-11-27 12:46:16 ----D---- C:\Program Files\THQ
2011-11-27 11:33:31 ----A---- C:\WINDOWS\system32\unrar.dll
2011-11-27 11:33:28 ----D---- C:\Program Files\K-Lite Codec Pack
2011-11-27 11:28:45 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2011-11-27 11:28:45 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2011-11-27 11:28:44 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2011-11-27 11:28:44 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2011-11-27 11:28:44 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2011-11-27 11:28:44 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2011-11-27 11:28:44 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2011-11-27 11:28:44 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2011-11-27 11:28:43 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2011-11-27 11:28:43 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2011-11-27 11:28:43 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2011-11-27 11:28:43 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2011-11-27 11:28:43 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2011-11-27 11:28:43 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2011-11-27 11:28:42 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2011-11-27 11:28:42 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2011-11-27 11:28:42 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2011-11-27 11:28:42 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2011-11-27 11:28:42 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2011-11-27 11:28:41 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2011-11-27 11:28:41 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2011-11-27 11:28:41 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2011-11-27 11:28:41 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2011-11-27 11:28:41 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2011-11-27 11:28:41 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2011-11-27 11:28:40 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2011-11-27 11:28:40 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2011-11-27 11:28:40 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2011-11-27 11:28:40 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2011-11-27 11:28:40 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2011-11-27 11:28:40 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2011-11-27 11:28:40 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2011-11-27 11:28:39 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2011-11-27 11:28:39 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2011-11-27 11:28:39 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2011-11-27 11:28:39 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2011-11-27 11:28:39 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2011-11-27 11:28:39 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2011-11-27 11:28:38 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2011-11-27 11:28:38 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2011-11-27 11:28:38 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2011-11-27 11:28:38 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2011-11-27 11:28:38 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2011-11-27 11:28:38 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2011-11-27 11:28:38 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2011-11-27 11:28:37 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2011-11-27 11:28:37 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2011-11-27 11:28:37 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2011-11-27 11:28:37 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2011-11-27 11:28:37 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2011-11-27 11:28:37 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2011-11-27 11:28:36 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2011-11-27 11:28:36 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2011-11-27 11:28:36 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2011-11-27 11:28:36 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2011-11-27 11:28:35 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2011-11-27 11:28:35 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2011-11-27 11:28:35 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2011-11-27 11:28:35 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2011-11-27 11:28:35 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2011-11-27 11:28:34 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2011-11-27 11:28:34 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2011-11-27 11:28:34 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2011-11-27 11:28:34 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2011-11-27 11:28:34 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2011-11-27 11:28:34 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2011-11-27 11:28:33 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2011-11-27 11:28:33 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2011-11-27 11:28:33 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2011-11-27 11:28:32 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2011-11-27 11:28:32 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2011-11-27 11:28:32 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2011-11-27 11:28:31 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2011-11-27 11:28:31 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2011-11-27 11:28:31 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2011-11-27 11:28:31 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2011-11-27 11:28:31 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2011-11-27 11:28:31 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2011-11-27 11:28:30 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2011-11-27 11:28:30 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2011-11-27 11:28:30 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2011-11-27 11:28:28 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2011-11-27 11:28:28 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2011-11-27 11:28:28 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2011-11-27 11:28:28 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2011-11-27 11:28:27 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2011-11-27 11:28:27 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2011-11-27 11:28:27 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2011-11-27 11:28:26 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2011-11-27 11:28:26 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2011-11-27 11:28:25 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2011-11-27 11:09:08 ----D---- C:\WINDOWS\Logs
2011-11-27 10:59:45 ----D---- C:\TopCD
2011-11-27 10:49:08 ----D---- C:\Documents and Settings\Vicious\Data aplikací\SUPERAntiSpyware.com
2011-11-27 10:48:21 ----D---- C:\Program Files\SUPERAntiSpyware
2011-11-27 10:48:21 ----D---- C:\Documents and Settings\All Users\Data aplikací\SUPERAntiSpyware.com
2011-11-27 10:46:04 ----D---- C:\Program Files\7-Zip
2011-11-27 10:16:03 ----A---- C:\WINDOWS\system32\Incinerator32.dll
2011-11-27 10:15:56 ----A---- C:\WINDOWS\system32\smrgdf.exe
2011-11-27 10:15:56 ----A---- C:\WINDOWS\system32\offreg.dll
2011-11-27 10:15:56 ----A---- C:\WINDOWS\system32\iolobtdfg.exe
2011-11-27 10:15:54 ----D---- C:\Program Files\iolo
2011-11-27 10:11:17 ----D---- C:\Documents and Settings\Vicious\Data aplikací\iolo
2011-11-27 08:16:07 ----N---- C:\WINDOWS\system32\spmsg.dll
2011-11-27 08:16:05 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2011-11-27 08:15:48 ----D---- C:\Program Files\Windows Media Connect 2
2011-11-27 08:15:42 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2011-11-27 08:15:09 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2011-11-27 08:14:50 ----D---- C:\WINDOWS\system32\drivers\UMDF
2011-11-27 08:14:45 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2011-11-27 08:03:16 ----A---- C:\WINDOWS\system32\wmpns.dll
2011-11-27 07:59:35 ----A---- C:\WINDOWS\system32\muweb.dll
2011-11-27 07:59:35 ----A---- C:\WINDOWS\system32\mucltui.dll
2011-11-27 07:50:00 ----D---- C:\Program Files\Microsoft Synchronization Services
2011-11-27 07:49:57 ----D---- C:\Program Files\Common Files\DESIGNER
2011-11-27 07:49:21 ----D---- C:\Program Files\Microsoft Sync Framework
2011-11-27 07:49:21 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2011-11-27 07:48:12 ----D---- C:\Program Files\Microsoft Visual Studio 8
2011-11-27 07:47:16 ----D---- C:\WINDOWS\SHELLNEW
2011-11-27 07:47:14 ----D---- C:\Program Files\Microsoft Analysis Services
2011-11-27 07:46:47 ----D---- C:\Program Files\Microsoft Office
2011-11-27 07:46:46 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2011-11-27 07:46:27 ----RHD---- C:\MSOCache
2011-11-27 07:33:42 ----D---- C:\WINDOWS\system32\oodag
2011-11-26 20:50:49 ----D---- C:\WINDOWS\system32\XPSViewer
2011-11-26 20:50:46 ----D---- C:\Program Files\MSBuild
2011-11-26 20:50:40 ----D---- C:\Program Files\Reference Assemblies
2011-11-26 20:50:21 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2011-11-26 20:50:21 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2011-11-26 20:50:21 ----N---- C:\WINDOWS\system32\prntvpt.dll
2011-11-26 20:50:20 ----D---- C:\bfbb9cf1ce92f25aeada90ad46b7e006
2011-11-26 20:29:22 ----A---- C:\WINDOWS\system32\drivers\sptd.sys
2011-11-26 20:29:04 ----D---- C:\Program Files\DAEMON Tools Pro
2011-11-26 20:28:10 ----D---- C:\Documents and Settings\Vicious\Data aplikací\DAEMON Tools Pro
2011-11-26 20:28:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Pro
2011-11-26 19:20:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\WEBREG
2011-11-26 19:20:17 ----D---- C:\Documents and Settings\Vicious\Data aplikací\HP
2011-11-26 19:19:26 ----RA---- C:\WINDOWS\system32\drivers\HPZipr12.sys
2011-11-26 19:19:25 ----RA---- C:\WINDOWS\system32\drivers\HPZid412.sys
2011-11-26 19:19:03 ----RA---- C:\WINDOWS\system32\hpzids01.dll
2011-11-26 19:18:57 ----RA---- C:\WINDOWS\system32\drivers\HPZius12.sys
2011-11-26 19:18:38 ----RA---- C:\WINDOWS\system32\hpwwiax6.dll
2011-11-26 19:18:38 ----RA---- C:\WINDOWS\system32\hpwvst01.dll
2011-11-26 19:18:38 ----RA---- C:\WINDOWS\system32\hpwtiop5.dll
2011-11-26 19:18:38 ----RA---- C:\WINDOWS\system32\hppldcoi.dll
2011-11-26 19:15:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\HP Product Assistant
2011-11-26 19:14:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\HP
2011-11-26 19:13:46 ----D---- C:\Program Files\Common Files\HP
2011-11-26 19:13:43 ----D---- C:\Program Files\Common Files\Hewlett-Packard
2011-11-26 19:13:17 ----D---- C:\WINDOWS\hpoj4500g510g-m
2011-11-26 19:12:14 ----A---- C:\WINDOWS\system32\hpf3l70w.dll
2011-11-26 19:11:23 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys
2011-11-26 19:11:15 ----HD---- C:\Config.Msi
2011-11-26 19:10:38 ----D---- C:\Program Files\HP
2011-11-26 19:09:21 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys
2011-11-26 19:09:06 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2011-11-26 19:08:43 ----N---- C:\WINDOWS\hpwmdl26.dat
2011-11-26 19:08:43 ----A---- C:\WINDOWS\hpwins26.dat
2011-11-26 17:52:17 ----D---- C:\WINDOWS\system32\LogFiles
2011-11-26 16:54:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2011-11-26 16:53:55 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2011-11-26 16:44:42 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2011-11-26 15:56:15 ----D---- C:\Documents and Settings\Vicious\Data aplikací\VitySoft
2011-11-26 15:55:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2011-11-26 15:55:56 ----D---- C:\Program Files\Common Files\Java
2011-11-26 15:54:07 ----A---- C:\WINDOWS\system32\javaws.exe
2011-11-26 15:54:07 ----A---- C:\WINDOWS\system32\javaw.exe
2011-11-26 15:54:07 ----A---- C:\WINDOWS\system32\java.exe
2011-11-26 15:54:07 ----A---- C:\WINDOWS\system32\deployJava1.dll
2011-11-26 15:53:52 ----D---- C:\Program Files\Java
2011-11-26 15:49:46 ----D---- C:\Documents and Settings\Vicious\Data aplikací\Sun
2011-11-26 15:47:59 ----D---- C:\Program Files\FreeRapid-0.86u1
2011-11-26 12:47:32 ----A---- C:\WINDOWS\system32\mfc45.dll
2011-11-26 12:39:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\Comodo
2011-11-26 12:39:36 ----D---- C:\Program Files\COMODO
2011-11-26 12:28:19 ----D---- C:\Documents and Settings\Vicious\Data aplikací\Avira
2011-11-26 12:27:55 ----A---- C:\WINDOWS\system32\drivers\ssmdrv.sys
2011-11-26 12:27:54 ----A---- C:\WINDOWS\system32\drivers\avkmgr.sys
2011-11-26 12:27:54 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys
2011-11-26 12:27:54 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys
2011-11-26 12:27:53 ----D---- C:\Program Files\Avira
2011-11-26 12:27:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\Avira
2011-11-26 11:25:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\iolo
2011-11-26 11:00:47 ----AD---- C:\WINDOWS\VDLL.DLL
2011-11-26 11:00:47 ----AD---- C:\WINDOWS\system32\runouce.exe
2011-11-26 11:00:47 ----AD---- C:\WINDOWS\rundll16.exe
2011-11-26 11:00:47 ----AD---- C:\WINDOWS\RUNDL132.EXE
2011-11-26 11:00:47 ----AD---- C:\WINDOWS\logo1_.exe
2011-11-26 11:00:47 ----AD---- C:\WINDOWS\logo_1.exe
2011-11-26 09:52:49 ----A---- C:\WINDOWS\system32\msvcr80.dll
2011-11-26 09:52:48 ----A---- C:\WINDOWS\system32\msvcp80.dll
2011-11-26 09:52:47 ----A---- C:\WINDOWS\system32\eEmpty.exe
2011-11-26 09:52:45 ----A---- C:\WINDOWS\system32\TASKMGR.COM
2011-11-26 09:52:45 ----A---- C:\WINDOWS\system32\T.COM
2011-11-26 09:52:45 ----A---- C:\WINDOWS\REGEDIT.COM
2011-11-26 09:52:45 ----A---- C:\WINDOWS\R.COM
2011-11-26 09:52:44 ----D---- C:\Program Files\Common Files\MicroWorld
2011-11-26 09:52:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\MicroWorld
2011-11-26 09:42:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2011-11-26 09:40:04 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2011-11-26 09:39:59 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2011-11-26 09:39:55 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2011-11-26 09:39:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2011-11-26 09:39:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2567680$
2011-11-26 09:39:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2011-11-26 09:39:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893-v2$
2011-11-26 09:39:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2011-11-26 09:39:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2011-11-26 09:39:16 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2011-11-26 09:39:11 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2011-11-26 09:39:05 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2011-11-26 09:39:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2011-11-26 09:38:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2011-11-26 09:38:20 ----D---- C:\WINDOWS\ie8updates
2011-11-26 09:38:04 ----D---- C:\WINDOWS\WBEM
2011-11-26 09:37:52 ----HDC---- C:\WINDOWS\ie8
2011-11-26 09:32:32 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2011-11-26 09:32:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2011-11-26 09:32:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2011-11-26 09:32:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2011-11-26 09:32:14 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2011-11-26 09:32:10 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2011-11-26 09:32:05 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2011-11-26 09:32:01 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2011-11-26 09:31:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2011-11-26 09:31:12 ----A---- C:\WINDOWS\system32\MRT.exe
2011-11-26 09:31:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2510581$
2011-11-26 09:31:00 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2011-11-26 09:30:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2476490$
2011-11-26 09:30:52 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2011-11-26 09:30:45 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2011-11-26 09:30:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2011-11-26 09:30:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2641690$
2011-11-26 09:30:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2011-11-26 09:30:20 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2011-11-26 09:30:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2011-11-26 09:30:11 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2011-11-26 09:30:07 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2011-11-26 09:30:02 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2011-11-26 09:29:56 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2011-11-26 09:29:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2567053$
2011-11-26 09:29:48 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2011-11-26 09:29:42 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2011-11-26 09:29:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2570222$
2011-11-26 09:29:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2011-11-26 09:29:13 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2011-11-26 09:25:45 ----D---- C:\Documents and Settings\Vicious\Data aplikací\Macromedia
2011-11-26 09:25:45 ----D---- C:\Documents and Settings\Vicious\Data aplikací\Adobe
2011-11-26 09:24:13 ----D---- C:\Documents and Settings\All Users\Data aplikací\McAfee
2011-11-26 09:10:27 ----D---- C:\Documents and Settings\Vicious\Data aplikací\Smarty Uninstaller
2011-11-26 08:47:33 ----RSD---- C:\WINDOWS\assembly
2011-11-26 08:47:06 ----D---- C:\WINDOWS\system32\en-US
2011-11-26 08:47:02 ----D---- C:\Program Files\Microsoft.NET
2011-11-26 08:47:00 ----D---- C:\WINDOWS\Microsoft.NET
2011-11-26 08:32:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2011-11-26 08:32:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2011-11-25 20:17:30 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2011-11-25 20:17:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2570791$
2011-11-25 20:17:23 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2011-11-25 20:17:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2011-11-25 20:17:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2011-11-25 20:17:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2011-11-25 20:17:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2011-11-25 20:17:04 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2011-11-25 20:17:01 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2011-11-25 20:16:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2011-11-25 20:16:53 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2011-11-25 20:16:49 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2011-11-25 20:16:45 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2011-11-25 20:16:41 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2011-11-25 20:16:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2592799$
2011-11-25 20:16:34 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2011-11-25 20:16:30 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2011-11-25 20:16:26 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2011-11-25 20:16:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2412687$
2011-11-25 20:16:20 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2011-11-25 20:16:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2570947$
2011-11-25 20:16:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2508272$
2011-11-25 20:16:09 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2011-11-25 20:16:05 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2011-11-25 20:16:02 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2011-11-25 20:15:58 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2011-11-25 20:15:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2507618$
2011-11-25 20:15:51 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2011-11-25 20:15:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2011-11-25 20:15:40 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2011-11-25 20:15:32 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2011-11-25 20:15:27 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2011-11-25 20:15:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2011-11-25 20:15:18 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2011-11-25 20:15:14 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2011-11-25 20:15:08 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2011-11-25 20:15:04 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2011-11-25 20:15:01 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2011-11-25 20:14:57 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2011-11-25 20:14:53 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2011-11-25 20:14:49 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2011-11-25 20:14:45 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2011-11-25 20:14:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2586448$
2011-11-25 20:14:32 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2011-11-25 20:14:28 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2011-11-25 20:14:24 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2011-11-25 20:14:20 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2011-11-25 20:14:11 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2011-11-25 20:14:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2541763$
2011-11-25 20:14:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2544521$
2011-11-25 20:14:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2011-11-25 20:13:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2011-11-25 20:13:49 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2011-11-25 20:13:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2011-11-25 20:13:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2562937$
2011-11-25 20:13:38 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2011-11-25 20:13:34 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2011-11-25 20:13:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2011-11-25 20:12:08 ----D---- C:\Program Files\Smarty Uninstaller
2011-11-25 20:12:08 ----A---- C:\WINDOWS\system32\DevComponents.DotNetBar2.dll
2011-11-25 20:05:33 ----A---- C:\WINDOWS\system32\msvcr71.dll
2011-11-25 20:05:33 ----A---- C:\WINDOWS\system32\mfc71.dll
2011-11-25 20:05:33 ----A---- C:\WINDOWS\system32\gdiplus.dll
2011-11-25 20:04:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\Comodo Downloader
2011-11-25 19:57:01 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2011-11-25 19:02:35 ----D---- C:\Documents and Settings\Vicious\Data aplikací\Thunderbird
2011-11-25 19:02:28 ----D---- C:\Program Files\Mozilla Thunderbird
2011-11-25 18:57:56 ----D---- C:\Program Files\totalcmd
2011-11-25 18:57:56 ----D---- C:\Documents and Settings\Vicious\Data aplikací\GHISLER
2011-11-25 18:57:56 ----A---- C:\WINDOWS\UC.PIF
2011-11-25 18:57:56 ----A---- C:\WINDOWS\RAR.PIF
2011-11-25 18:57:56 ----A---- C:\WINDOWS\PKZIP.PIF
2011-11-25 18:57:56 ----A---- C:\WINDOWS\PKUNZIP.PIF
2011-11-25 18:57:56 ----A---- C:\WINDOWS\LHA.PIF
2011-11-25 18:57:56 ----A---- C:\WINDOWS\ARJ.PIF
2011-11-25 18:45:19 ----D---- C:\Documents and Settings\Vicious\Data aplikací\WinRAR
2011-11-25 18:45:17 ----D---- C:\Program Files\WinRAR
2011-11-25 18:29:43 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2011-11-25 18:21:14 ----D---- C:\Documents and Settings\Vicious\Data aplikací\Mozilla
2011-11-25 18:21:08 ----D---- C:\Program Files\Mozilla Firefox
2011-11-25 18:16:14 ----A---- C:\WINDOWS\system32\h323log.txt
2011-11-25 18:15:27 ----A---- C:\WINDOWS\system32\drivers\audstub.sys
2011-11-25 18:15:11 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2011-11-25 18:14:48 ----A---- C:\WINDOWS\system32\usbui.dll
2011-11-25 18:14:16 ----A---- C:\WINDOWS\imsins.BAK
2011-11-25 18:14:13 ----SHD---- C:\WINDOWS\Installer
2011-11-25 18:14:13 ----D---- C:\Program Files\Common Files\ODBC
2011-11-25 18:14:13 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-11-25 18:14:13 ----A---- C:\WINDOWS\ODBCINST.INI
2011-11-25 18:14:10 ----D---- C:\Program Files\Common Files\SpeechEngines
2011-11-25 18:14:09 ----RD---- C:\Program Files
2011-11-25 18:14:09 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-11-25 18:14:09 ----D---- C:\Program Files\Common Files
2011-11-25 18:14:06 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2011-11-25 18:14:06 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2011-11-25 18:14:06 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2011-11-25 18:14:04 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2011-11-25 18:14:04 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2011-11-25 18:14:04 ----RA---- C:\WINDOWS\system32\kbdur.dll
2011-11-25 18:14:04 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2011-11-25 18:14:04 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2011-11-25 18:14:04 ----RA---- C:\WINDOWS\system32\kbdru.dll
2011-11-25 18:14:04 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2011-11-25 18:14:04 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2011-11-25 18:14:04 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2011-11-25 18:14:04 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2011-11-25 18:14:04 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2011-11-25 18:14:04 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2011-11-25 18:14:02 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2011-11-25 18:14:02 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2011-11-25 18:14:02 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2011-11-25 18:14:02 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2011-11-25 18:14:02 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2011-11-25 18:14:02 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2011-11-25 18:14:01 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2011-11-25 18:14:00 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2011-11-25 18:14:00 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2011-11-25 18:14:00 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2011-11-25 18:14:00 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2011-11-25 18:14:00 ----RA---- C:\WINDOWS\system32\kbdest.dll
2011-11-25 18:13:56 ----A---- C:\WINDOWS\system32\kbdycl.dll
2011-11-25 18:13:56 ----A---- C:\WINDOWS\system32\kbdsl1.dll
2011-11-25 18:13:56 ----A---- C:\WINDOWS\system32\kbdsl.dll
2011-11-25 18:13:56 ----A---- C:\WINDOWS\system32\kbdro.dll
2011-11-25 18:13:56 ----A---- C:\WINDOWS\system32\kbdpl1.dll
2011-11-25 18:13:56 ----A---- C:\WINDOWS\system32\kbdpl.dll
2011-11-25 18:13:56 ----A---- C:\WINDOWS\system32\kbdhu1.dll
2011-11-25 18:13:56 ----A---- C:\WINDOWS\system32\kbdhu.dll
2011-11-25 18:13:56 ----A---- C:\WINDOWS\system32\kbdcr.dll
2011-11-25 18:13:56 ----A---- C:\WINDOWS\system32\KBDAL.DLL
2011-11-25 18:13:55 ----A---- C:\WINDOWS\system32\irclass.dll
2011-11-25 18:13:54 ----A---- C:\WINDOWS\system32\spxcoins.dll
2011-11-25 18:13:54 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2011-11-25 18:13:54 ----A---- C:\WINDOWS\system32\dgsetup.dll
2011-11-25 18:13:54 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2011-11-25 18:13:52 ----A---- C:\WINDOWS\TASKMAN.EXE
2011-11-25 18:13:51 ----A---- C:\WINDOWS\system32\drivers\irenum.sys
2011-11-25 18:13:51 ----A---- C:\WINDOWS\system32\batt.dll
2011-11-25 18:13:50 ----A---- C:\WINDOWS\system32\storprop.dll
2011-11-25 18:13:50 ----A---- C:\WINDOWS\NOTEPAD.EXE
2011-11-25 18:13:47 ----ASH---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2011-11-25 18:13:44 ----RA---- C:\WINDOWS\SET8.tmp
2011-11-25 18:13:42 ----RA---- C:\WINDOWS\SET4.tmp
2011-11-25 18:13:41 ----RA---- C:\WINDOWS\SET3.tmp
2011-11-25 18:13:36 ----D---- C:\WINDOWS\system32\CatRoot2
2011-11-25 18:13:36 ----D---- C:\WINDOWS\system32\CatRoot
2011-11-25 18:13:30 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-11-25 18:13:12 ----A---- C:\WINDOWS\setuplog.txt
2011-11-25 18:13:10 ----SHD---- C:\System Volume Information
2011-11-25 18:13:10 ----D---- C:\Documents and Settings
2011-11-25 18:13:09 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2011-11-25 18:12:31 ----SH---- C:\boot.ini
2011-11-25 18:10:38 ----N---- C:\WINDOWS\system32\browserchoice.exe
2011-11-25 18:06:25 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-11-25 18:06:25 ----RSD---- C:\WINDOWS\Fonts
2011-11-25 18:06:25 ----RD---- C:\WINDOWS\Web
2011-11-25 18:06:25 ----HD---- C:\WINDOWS\inf
2011-11-25 18:06:25 ----D---- C:\WINDOWS\WinSxS
2011-11-25 18:06:25 ----D---- C:\WINDOWS\twain_32
2011-11-25 18:06:25 ----D---- C:\WINDOWS\Temp
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\wins
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\wbem
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\usmt
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\spool
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\ShellExt
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\Setup
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\ras
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\oobe
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\npp
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\mui
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\inetsrv
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\IME
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\icsxml
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\ias
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\export
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\drivers\etc
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\drivers\disdn
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\drivers
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\dhcp
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\cs-cz
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\cs
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\config
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\3com_dmi
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\3076
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\2052
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\1054
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\1042
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\1041
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\1037
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\1033
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\1031
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\1029
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\1028
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32\1025
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system32
2011-11-25 18:06:25 ----D---- C:\WINDOWS\system
2011-11-25 18:06:25 ----D---- C:\WINDOWS\security
2011-11-25 18:06:25 ----D---- C:\WINDOWS\Resources
2011-11-25 18:06:25 ----D---- C:\WINDOWS\repair
2011-11-25 18:06:25 ----D---- C:\WINDOWS\Provisioning
2011-11-25 18:06:25 ----D---- C:\WINDOWS\pchealth
2011-11-25 18:06:25 ----D---- C:\WINDOWS\PeerNet
2011-11-25 18:06:25 ----D---- C:\WINDOWS\Network Diagnostic
2011-11-25 18:06:25 ----D---- C:\WINDOWS\mui
2011-11-25 18:06:25 ----D---- C:\WINDOWS\msapps
2011-11-25 18:06:25 ----D---- C:\WINDOWS\msagent
2011-11-25 18:06:25 ----D---- C:\WINDOWS\Media
2011-11-25 18:06:25 ----D---- C:\WINDOWS\L2Schemas
2011-11-25 18:06:25 ----D---- C:\WINDOWS\java
2011-11-25 18:06:25 ----D---- C:\WINDOWS\ime
2011-11-25 18:06:25 ----D---- C:\WINDOWS\Help
2011-11-25 18:06:25 ----D---- C:\WINDOWS\ehome
2011-11-25 18:06:25 ----D---- C:\WINDOWS\Driver Cache
2011-11-25 18:06:25 ----D---- C:\WINDOWS\Dell
2011-11-25 18:06:25 ----D---- C:\WINDOWS\Debug
2011-11-25 18:06:25 ----D---- C:\WINDOWS\Cursors
2011-11-25 18:06:25 ----D---- C:\WINDOWS\Connection Wizard
2011-11-25 18:06:25 ----D---- C:\WINDOWS\Config
2011-11-25 18:06:25 ----D---- C:\WINDOWS\AppPatch
2011-11-25 18:06:25 ----D---- C:\WINDOWS\addins
2011-11-25 18:06:25 ----D---- C:\WINDOWS
2011-11-25 18:06:25 ----ASH---- C:\pagefile.sys
2011-11-25 17:57:00 ----D---- C:\WINDOWS\system32\PreInstall
2011-11-25 17:57:00 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2011-11-25 17:56:59 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2011-11-25 17:56:59 ----HD---- C:\WINDOWS\$hf_mig$
2011-11-25 17:46:53 ----SHD---- C:\RECYCLER
2011-11-25 17:34:28 ----DC---- C:\WINDOWS\system32\DRVSTORE
2011-11-25 17:34:28 ----A---- C:\WINDOWS\system32\drivers\AmdK8.sys
2011-11-25 17:34:27 ----D---- C:\Program Files\AMD
2011-11-25 17:34:05 ----D---- C:\Documents and Settings\Vicious\Data aplikací\InstallShield
2011-11-25 17:33:43 ----HD---- C:\Program Files\InstallShield Installation Information
2011-11-25 17:33:19 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2011-11-25 17:33:17 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2011-11-25 17:33:16 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys
2011-11-25 17:33:15 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2011-11-25 17:33:13 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2011-11-25 17:33:12 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2011-11-25 17:33:12 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2011-11-25 17:33:11 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2011-11-25 17:33:10 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys
2011-11-25 17:33:08 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys
2011-11-25 17:33:06 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2011-11-25 17:33:03 ----RA---- C:\WINDOWS\system32\drivers\viahduaa.sys
2011-11-25 17:33:03 ----RA---- C:\WINDOWS\system32\drivers\Monfilt.sys
2011-11-25 17:33:03 ----RA---- C:\WINDOWS\system32\drivers\Ambfilt.sys
2011-11-25 17:33:02 ----A---- C:\WINDOWS\system32\ksuser.dll
2011-11-25 17:33:02 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2011-11-25 17:33:02 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2011-11-25 17:32:40 ----RA---- C:\WINDOWS\system32\difxapi.dll
2011-11-25 17:32:39 ----D---- C:\Program Files\VIA
2011-11-25 17:32:35 ----D---- C:\Program Files\Common Files\InstallShield
2011-11-25 17:31:30 ----D---- C:\WINDOWS\nview
2011-11-25 17:31:29 ----A---- C:\WINDOWS\system32\nvudisp.exe
2011-11-25 17:30:22 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2011-11-25 17:29:52 ----RA---- C:\WINDOWS\system32\NvRCoZht.dll
2011-11-25 17:29:52 ----RA---- C:\WINDOWS\system32\NvRCoZhc.dll
2011-11-25 17:29:52 ----RA---- C:\WINDOWS\system32\NvRCoTr.dll
2011-11-25 17:29:52 ----RA---- C:\WINDOWS\system32\NvRCoTh.dll
2011-11-25 17:29:52 ----RA---- C:\WINDOWS\system32\NvRCoSv.dll
2011-11-25 17:29:52 ----RA---- C:\WINDOWS\system32\NvRCoSl.dll
2011-11-25 17:29:52 ----RA---- C:\WINDOWS\system32\NvRCoSk.dll
2011-11-25 17:29:52 ----RA---- C:\WINDOWS\system32\NvRCoRu.dll
2011-11-25 17:29:52 ----RA---- C:\WINDOWS\system32\NvRCoPtb.dll
2011-11-25 17:29:52 ----RA---- C:\WINDOWS\system32\NvRCoPt.dll
2011-11-25 17:29:52 ----RA---- C:\WINDOWS\system32\NvRCoPl.dll
2011-11-25 17:29:52 ----RA---- C:\WINDOWS\system32\NvRCoNo.dll
2011-11-25 17:29:52 ----RA---- C:\WINDOWS\system32\NvRCoNl.dll
2011-11-25 17:29:51 ----RA---- C:\WINDOWS\system32\NvRCoKo.dll
2011-11-25 17:29:51 ----RA---- C:\WINDOWS\system32\NvRCoJa.dll
2011-11-25 17:29:51 ----RA---- C:\WINDOWS\system32\NvRCoIt.dll
2011-11-25 17:29:51 ----RA---- C:\WINDOWS\system32\NvRCoHu.dll
2011-11-25 17:29:51 ----RA---- C:\WINDOWS\system32\NvRCoHe.dll
2011-11-25 17:29:51 ----RA---- C:\WINDOWS\system32\NvRCoFr.dll
2011-11-25 17:29:51 ----RA---- C:\WINDOWS\system32\NvRCoFi.dll
2011-11-25 17:29:51 ----RA---- C:\WINDOWS\system32\NvRCoEsm.dll
2011-11-25 17:29:51 ----RA---- C:\WINDOWS\system32\NvRCoEs.dll
2011-11-25 17:29:51 ----RA---- C:\WINDOWS\system32\NvRCoENU.dll
2011-11-25 17:29:51 ----RA---- C:\WINDOWS\system32\NvRCoEng.dll
2011-11-25 17:29:51 ----RA---- C:\WINDOWS\system32\NvRCoEl.dll
2011-11-25 17:29:51 ----RA---- C:\WINDOWS\system32\NvRCoDe.dll
2011-11-25 17:29:51 ----RA---- C:\WINDOWS\system32\NvRCoDa.dll
2011-11-25 17:29:51 ----RA---- C:\WINDOWS\system32\NvRCoCs.dll
2011-11-25 17:29:51 ----RA---- C:\WINDOWS\system32\NvRCoAr.dll
2011-11-25 17:29:51 ----RA---- C:\WINDOWS\system32\nvraiins.dll
2011-11-25 17:29:51 ----RA---- C:\WINDOWS\system32\nvraidco.dll
2011-11-25 17:29:50 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-11-25 17:29:14 ----RA---- C:\WINDOWS\system32\fdco1ins.dll
2011-11-25 17:29:14 ----RA---- C:\WINDOWS\system32\fdco1.dll
2011-11-25 17:29:14 ----RA---- C:\WINDOWS\system32\drivers\NVENETFD.sys
2011-11-25 17:29:11 ----A---- C:\WINDOWS\system32\nvunrm.exe
2011-11-25 17:29:10 ----RA---- C:\WINDOWS\system32\nvconrm.dll
2011-11-25 17:29:10 ----RA---- C:\WINDOWS\system32\drivers\nvnrm.sys
2011-11-25 17:29:10 ----RA---- C:\WINDOWS\system32\drivers\nvnetbus.sys
2011-11-25 17:29:10 ----RA---- C:\WINDOWS\system32\bdco1ins.dll
2011-11-25 17:29:10 ----RA---- C:\WINDOWS\system32\bdco1.dll
2011-11-25 17:29:09 ----RA---- C:\WINDOWS\system32\nvusmb.exe
2011-11-25 17:28:05 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2011-11-25 17:24:22 ----D---- C:\Documents and Settings\Vicious\Data aplikací\Identities
2011-11-25 17:24:20 ----HD---- C:\Program Files\Uninstall Information
2011-11-25 17:24:17 ----SD---- C:\Documents and Settings\Vicious\Data aplikací\Microsoft
2011-11-25 17:24:17 ----ASH---- C:\Documents and Settings\Vicious\Data aplikací\desktop.ini
2011-11-25 17:23:23 ----D---- C:\WINDOWS\SoftwareDistribution
2011-11-25 17:23:21 ----SD---- C:\WINDOWS\system32\Microsoft
2011-11-25 17:23:21 ----D---- C:\WINDOWS\Prefetch
2011-11-25 17:23:21 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-11-25 17:22:16 ----AS---- C:\WINDOWS\bootstat.dat
2011-11-25 17:20:25 ----D---- C:\WINDOWS\system32\xircom
2011-11-25 17:20:25 ----D---- C:\Program Files\xerox
2011-11-25 17:20:25 ----D---- C:\Program Files\microsoft frontpage
2011-11-25 17:20:16 ----D---- C:\DELL
2011-11-25 17:20:15 ----RASH---- C:\MSDOS.SYS
2011-11-25 17:20:15 ----RASH---- C:\IO.SYS
2011-11-25 17:20:15 ----N---- C:\AUTOEXEC.BAT
2011-11-25 17:20:15 ----A---- C:\WINDOWS\control.ini
2011-11-25 17:20:15 ----A---- C:\CONFIG.SYS
2011-11-25 17:20:04 ----A---- C:\WINDOWS\OEWABLog.txt
2011-11-25 17:20:02 ----A---- C:\WINDOWS\system32\mapi32.dll
2011-11-25 17:19:27 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-11-25 17:19:27 ----RD---- C:\WINDOWS\Offline Web Pages
2011-11-25 17:19:21 ----HD---- C:\Program Files\WindowsUpdate
2011-11-25 17:19:20 ----D---- C:\Program Files\Online Services
2011-11-25 17:19:06 ----D---- C:\WINDOWS\system32\DirectX
2011-11-25 17:19:00 ----A---- C:\WINDOWS\system32\atrace.dll
2011-11-25 17:18:57 ----A---- C:\WINDOWS\system32\desktop.ini
2011-11-25 17:18:57 ----A---- C:\WINDOWS\desktop.ini
2011-11-25 17:18:50 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2011-11-25 17:18:49 ----A---- C:\WINDOWS\system32\acctres.dll
2011-11-25 17:18:48 ----D---- C:\Program Files\Common Files\Services
2011-11-25 17:18:45 ----SD---- C:\WINDOWS\Tasks
2011-11-25 17:18:45 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2011-11-25 17:18:44 ----D---- C:\Program Files\Common Files\MSSoap
2011-11-25 17:18:39 ----D---- C:\WINDOWS\srchasst
2011-11-25 17:18:38 ----D---- C:\WINDOWS\system32\Macromed
2011-11-25 17:18:35 ----A---- C:\WINDOWS\system32\wuweb.dll
2011-11-25 17:18:35 ----A---- C:\WINDOWS\system32\wucltui.dll
2011-11-25 17:18:35 ----A---- C:\WINDOWS\system32\wuauserv.dll
2011-11-25 17:18:35 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2011-11-25 17:18:35 ----A---- C:\WINDOWS\system32\wuaueng.dll
2011-11-25 17:18:34 ----A---- C:\WINDOWS\system32\wups.dll
2011-11-25 17:18:34 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2011-11-25 17:18:34 ----A---- C:\WINDOWS\system32\wuauclt.exe
2011-11-25 17:18:34 ----A---- C:\WINDOWS\system32\wuapi.dll
2011-11-25 17:18:34 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2011-11-25 17:18:34 ----A---- C:\WINDOWS\system32\qmgr.dll
2011-11-25 17:18:34 ----A---- C:\WINDOWS\system32\bitsprx4.dll
2011-11-25 17:18:34 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2011-11-25 17:18:34 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2011-11-25 17:18:30 ----D---- C:\Program Files\Movie Maker
2011-11-25 17:18:09 ----A---- C:\WINDOWS\system32\safrslv.dll
2011-11-25 17:18:09 ----A---- C:\WINDOWS\system32\safrdm.dll
2011-11-25 17:18:09 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2011-11-25 17:18:09 ----A---- C:\WINDOWS\system32\racpldlg.dll
2011-11-25 17:18:04 ----A---- C:\WINDOWS\system32\fltMc.exe
2011-11-25 17:18:04 ----A---- C:\WINDOWS\system32\fltlib.dll
2011-11-25 17:18:04 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2011-11-25 17:18:03 ----D---- C:\WINDOWS\system32\Restore
2011-11-25 17:18:03 ----A---- C:\WINDOWS\system32\srsvc.dll
2011-11-25 17:18:03 ----A---- C:\WINDOWS\system32\srrstr.dll
2011-11-25 17:18:03 ----A---- C:\WINDOWS\system32\srclient.dll
2011-11-25 17:18:03 ----A---- C:\WINDOWS\system32\ils.dll
2011-11-25 17:18:03 ----A---- C:\WINDOWS\system32\drivers\sr.sys
2011-11-25 17:18:02 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2011-11-25 17:18:02 ----A---- C:\WINDOWS\system32\msconf.dll
2011-11-25 17:18:02 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2011-11-25 17:18:02 ----A---- C:\WINDOWS\system32\mnmdd.dll
2011-11-25 17:18:02 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2011-11-25 17:17:59 ----D---- C:\Program Files\NetMeeting
2011-11-25 17:17:59 ----A---- C:\WINDOWS\system32\msoert2.dll
2011-11-25 17:17:59 ----A---- C:\WINDOWS\system32\msoeacct.dll
2011-11-25 17:17:58 ----A---- C:\WINDOWS\system32\inetres.dll
2011-11-25 17:17:57 ----A---- C:\WINDOWS\system32\inetcomm.dll
2011-11-25 17:17:55 ----D---- C:\Program Files\Outlook Express
2011-11-25 17:17:55 ----A---- C:\WINDOWS\system32\schedsvc.dll
2011-11-25 17:17:55 ----A---- C:\WINDOWS\system32\mstinit.exe
2011-11-25 17:17:55 ----A---- C:\WINDOWS\system32\mstask.dll
2011-11-25 17:17:54 ----A---- C:\WINDOWS\system32\isign32.dll
2011-11-25 17:17:54 ----A---- C:\WINDOWS\system32\inetcfg.dll
2011-11-25 17:17:54 ----A---- C:\WINDOWS\system32\icwphbk.dll
2011-11-25 17:17:54 ----A---- C:\WINDOWS\system32\icwdial.dll
2011-11-25 17:17:48 ----D---- C:\Program Files\Common Files\System
2011-11-25 17:17:47 ----D---- C:\Program Files\Internet Explorer
2011-11-25 17:17:31 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2011-11-25 17:17:30 ----D---- C:\Program Files\ComPlus Applications
2011-11-25 17:17:30 ----A---- C:\WINDOWS\vbaddin.ini
2011-11-25 17:17:30 ----A---- C:\WINDOWS\vb.ini
2011-11-25 17:17:29 ----D---- C:\WINDOWS\Registration
2011-11-25 17:17:27 ----D---- C:\Program Files\Windows Media Player
2011-11-25 17:17:24 ----D---- C:\Program Files\Messenger
2011-11-25 17:17:20 ----D---- C:\Program Files\MSN Gaming Zone
2011-11-25 17:17:20 ----A---- C:\WINDOWS\system32\write.exe
2011-11-25 17:17:09 ----A---- C:\WINDOWS\system32\sndvol32.exe
2011-11-25 17:17:09 ----A---- C:\WINDOWS\system32\hticons.dll
2011-11-25 17:17:09 ----A---- C:\WINDOWS\system32\avwav.dll
2011-11-25 17:17:09 ----A---- C:\WINDOWS\system32\avtapi.dll
2011-11-25 17:17:09 ----A---- C:\WINDOWS\system32\avmeter.dll
2011-11-25 17:17:08 ----A---- C:\WINDOWS\system32\winchat.exe
2011-11-25 17:17:00 ----A---- C:\WINDOWS\system32\charmap.exe
2011-11-25 17:17:00 ----A---- C:\WINDOWS\system32\getuname.dll
2011-11-25 17:17:00 ----A---- C:\WINDOWS\system32\calc.exe
2011-11-25 17:16:59 ----A---- C:\WINDOWS\system32\winmine.exe
2011-11-25 17:16:59 ----A---- C:\WINDOWS\system32\sol.exe
2011-11-25 17:16:59 ----A---- C:\WINDOWS\system32\mshearts.exe
2011-11-25 17:16:59 ----A---- C:\WINDOWS\system32\freecell.exe
2011-11-25 17:16:58 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2011-11-25 17:16:58 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2011-11-25 17:16:58 ----A---- C:\WINDOWS\system32\tslabels.ini
2011-11-25 17:16:58 ----A---- C:\WINDOWS\system32\tskill.exe
2011-11-25 17:16:58 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2011-11-25 17:16:58 ----A---- C:\WINDOWS\system32\tscon.exe
2011-11-25 17:16:58 ----A---- C:\WINDOWS\system32\shadow.exe
2011-11-25 17:16:58 ----A---- C:\WINDOWS\system32\rwinsta.exe
2011-11-25 17:16:58 ----A---- C:\WINDOWS\system32\reset.exe
2011-11-25 17:16:58 ----A---- C:\WINDOWS\system32\regini.exe
2011-11-25 17:16:58 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2011-11-25 17:16:58 ----A---- C:\WINDOWS\system32\qwinsta.exe
2011-11-25 17:16:58 ----A---- C:\WINDOWS\system32\qappsrv.exe
2011-11-25 17:16:57 ----A---- C:\WINDOWS\system32\msg.exe
2011-11-25 17:16:57 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2011-11-25 17:16:57 ----A---- C:\WINDOWS\system32\logoff.exe
2011-11-25 17:16:57 ----A---- C:\WINDOWS\system32\cdmodem.dll
2011-11-25 17:16:51 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2011-11-25 17:16:50 ----A---- C:\WINDOWS\system32\accwiz.exe
2011-11-25 17:16:49 ----A---- C:\WINDOWS\system32\sndrec32.exe
2011-11-25 17:16:49 ----A---- C:\WINDOWS\system32\mplay32.exe
2011-11-25 17:16:49 ----A---- C:\WINDOWS\system32\hypertrm.dll
2011-11-25 17:16:48 ----D---- C:\Program Files\Windows NT
2011-11-25 17:16:48 ----A---- C:\WINDOWS\system32\spider.exe
2011-11-25 17:16:48 ----A---- C:\WINDOWS\system32\mspaint.exe
2011-11-25 17:16:48 ----A---- C:\WINDOWS\system32\clipbrd.exe
2011-11-25 17:16:47 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys
2011-11-25 17:16:47 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys
2011-11-25 17:16:47 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2011-11-25 17:16:46 ----A---- C:\WINDOWS\system32\tsgqec.dll
2011-11-25 17:16:46 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2011-11-25 17:16:46 ----A---- C:\WINDOWS\system32\rhttpaa.dll
2011-11-25 17:16:46 ----A---- C:\WINDOWS\system32\aaclient.dll
2011-11-25 17:16:45 ----A---- C:\WINDOWS\system32\remotepg.dll
2011-11-25 17:16:45 ----A---- C:\WINDOWS\system32\rdshost.exe
2011-11-25 17:16:45 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2011-11-25 17:16:45 ----A---- C:\WINDOWS\system32\mstscax.dll
2011-11-25 17:16:45 ----A---- C:\WINDOWS\system32\mstsc.exe
2011-11-25 17:16:44 ----A---- C:\WINDOWS\system32\termsrv.dll
2011-11-25 17:16:44 ----A---- C:\WINDOWS\system32\sessmgr.exe
2011-11-25 17:16:44 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2011-11-25 17:16:44 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2011-11-25 17:16:44 ----A---- C:\WINDOWS\system32\rdpclip.exe
2011-11-25 17:16:44 ----A---- C:\WINDOWS\system32\rdchost.dll
2011-11-25 17:16:44 ----A---- C:\WINDOWS\system32\qprocess.exe
2011-11-25 17:16:44 ----A---- C:\WINDOWS\system32\icaapi.dll
2011-11-25 17:16:44 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2011-11-25 17:16:43 ----D---- C:\WINDOWS\system32\MsDtc
2011-11-25 17:16:43 ----A---- C:\WINDOWS\system32\mtxoci.dll
2011-11-25 17:16:43 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2011-11-25 17:16:43 ----A---- C:\WINDOWS\system32\msdtctm.dll
2011-11-25 17:16:43 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2011-11-25 17:16:42 ----A---- C:\WINDOWS\system32\xolehlp.dll
2011-11-25 17:16:42 ----A---- C:\WINDOWS\system32\msdtclog.dll
2011-11-25 17:16:42 ----A---- C:\WINDOWS\system32\msdtc.exe
2011-11-25 17:16:41 ----D---- C:\WINDOWS\system32\Com
2011-11-25 17:16:41 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2011-11-25 17:16:41 ----A---- C:\WINDOWS\system32\mtxex.dll
2011-11-25 17:16:41 ----A---- C:\WINDOWS\system32\mtxdm.dll
2011-11-25 17:16:41 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2011-11-25 17:16:41 ----A---- C:\WINDOWS\system32\comrepl.dll
2011-11-25 17:16:41 ----A---- C:\WINDOWS\system32\comaddin.dll
2011-11-25 17:16:41 ----A---- C:\WINDOWS\system32\colbact.dll
2011-11-25 17:16:40 ----A---- C:\WINDOWS\system32\stclient.dll
2011-11-25 17:16:40 ----A---- C:\WINDOWS\system32\clbcatex.dll
2011-11-25 17:16:40 ----A---- C:\WINDOWS\system32\catsrvut.dll
2011-11-25 17:16:40 ----A---- C:\WINDOWS\system32\catsrvps.dll
2011-11-25 17:16:40 ----A---- C:\WINDOWS\system32\catsrv.dll
2011-11-25 17:16:39 ----A---- C:\WINDOWS\system32\comuid.dll
2011-11-25 17:16:39 ----A---- C:\WINDOWS\system32\comsvcs.dll
2011-11-25 17:16:39 ----A---- C:\WINDOWS\system32\comsnap.dll
2011-11-25 17:16:38 ----A---- C:\WINDOWS\system32\clbcatq.dll
2011-11-25 17:16:32 ----A---- C:\WINDOWS\system32\servdeps.dll
2011-11-25 17:16:32 ----A---- C:\WINDOWS\system32\mmfutil.dll
2011-11-25 17:16:32 ----A---- C:\WINDOWS\system32\licwmi.dll
2011-11-25 17:16:31 ----A---- C:\WINDOWS\system32\cmprops.dll
2011-11-25 17:16:29 ----A---- C:\WINDOWS\system32\drivers\termdd.sys
2011-11-25 17:16:29 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys

======List of files/folders modified in the last 1 month======

2011-11-28 16:37:23 ----A---- C:\WINDOWS\win.ini
2011-11-25 18:14:09 ----A---- C:\WINDOWS\system.ini
2011-11-25 17:19:54 ----ASH---- C:\WINDOWS\fonts\desktop.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 Inspect;COMODO Internet Security Firewall Driver; C:\WINDOWS\System32\DRIVERS\inspect.sys [2011-10-07 97760]
R0 NBVol;Nero Backup Volume Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVol.sys [2011-07-13 56496]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVolUp.sys [2011-07-13 12464]
R0 nvgts;nvgts; C:\WINDOWS\system32\drivers\nvgts.sys [2008-08-18 145952]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2011-11-26 443448]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43008]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2011-09-18 134344]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2011-09-15 36000]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2011-10-07 492768]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2011-10-07 31704]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2009-02-17 24232]
R1 IDMTDI;IDMTDI; C:\WINDOWS\system32\DRIVERS\idmtdi.sys [2011-01-25 97112]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS []
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2011-09-15 74640]
R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-04-14 6308032]
R3 NVENETFD;NVIDIA nForce 10/100 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2008-03-25 54400]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2008-03-25 22016]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\WINDOWS\system32\drivers\viahduaa.sys [2009-11-25 1617408]
S0 cerc6;cerc6; C:\WINDOWS\system32\drivers\cerc6.sys []
S3 aaddjrse;aaddjrse; C:\WINDOWS\system32\drivers\aaddjrse.sys []
S3 AMBFilt;AMBFilt; C:\WINDOWS\system32\drivers\AMBFilt.sys [2009-06-26 1656960]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2009-05-18 49920]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2009-05-18 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2009-05-18 21568]
S3 MonFilt;MonFilt; C:\WINDOWS\system32\drivers\MonFilt.sys [2008-12-02 1389056]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2011-08-12 116608]
R2 AntiVirService;Avira Realtime Protection; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2011-09-23 110032]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2011-09-23 86224]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2011-10-07 1883328]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 HPSLPSVC;HP Network Devices Support; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 ioloSystemService;iolo System Service; C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe [2011-08-08 722616]
R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2011-09-23 641832]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-04-14 163908]
R2 OODefragAgent;O&O Defrag Agent; C:\Program Files\OO Software\Defrag\oodag.exe [2011-06-29 2468168]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-11-26 153376]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[motji]

Dobrý den,
co jsou za problémy s počítačem?

[Vicious]

Dobrý den,
celkem nic, jen antivir mi několikrát denně hlásí nějakou havěť ve volume information, tak to smažu a za nějakou dobu to hlásí zase.

[motji]

Musíte vypnout obnovu systému, restart pc a pak ji můžete znovu zapnout.


Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

[Vicious]

Malwarebytes' Anti-Malware
www.malwarebytes.org

Verze databáze:

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

4.12.2011 21:14:36
mbam-log-2011-12-04 (21-13-58).txt

Typ: Úplná kontrola (C:\|)
Kontrolované objekty: 220196
Uplynulý čas: 46 minut, 30 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 2
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
HKEY_CLASSES_ROOT\scrfile\shell\open\command\(default) (Broken.OpenCommand) -> Bad: (NOTEPAD.EXE %1) Good: ("%1" /S) -> No action taken.
HKEY_CLASSES_ROOT\regfile\shell\open\command\(default) (Broken.OpenCommand) -> Bad: (NOTEPAD.EXE %1) Good: (regedit.exe "%1") -> No action taken.

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

[motji]

V mbamu vše smažte.

Stáhněte na plochu, ukončete všechna aktivní okna a spusťte ComboFix - http://download.bleepingcomputer.com/sUBs/ComboFix.exe

- ComboFix je třeba spustit pod účtem s právy administrátora

- Před použitím vypněte všechny rezidentní bezpečnostní programy - antiviry, firewally, antispywary

- Po spuštění se zobrazí podmínky užití, potvrďte je stiskem tlačítka Ano

- Dále postupujte dle pokynů, během aplikování ComboFixu neklikejte do zobrazujícího se okna

- Po dokončení skenování, trvajícího maximálně 10 minut, by měl program vytvořit log - C:\ComboFix.txt, zkopírujte celý jeho obsah sem

[Vicious]

ComboFix 11-12-04.04 - Vicious 04.12.2011 21:31:16.1.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1791.1101 [GMT 1:00]
Spuštěný z: c:\documents and settings\Vicious\Dokumenty\Downloads\Programs\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
FW: COMODO Firewall *Enabled* {043803A3-4F86-4ef6-AFC5-F6E02A79969B}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\msmqinst.log
c:\windows\msxml4-KB954430-enu.LOG
c:\windows\msxml4-KB973688-enu.LOG
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\regedit.com
c:\windows\regopt.log
c:\windows\system32\taskmgr.com
c:\windows\system32\TZLog.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-11-04 do 2011-12-04 )))))))))))))))))))))))))))))))
.
.
2011-12-04 11:25 . 2011-12-04 11:26 -------- d-----w- C:\rsit
2011-12-02 16:49 . 2011-12-04 17:22 -------- d-----w- C:\TRANSLAT
2011-11-30 16:49 . 2011-12-02 18:16 -------- d-----w- C:\RTSStavitel
2011-11-27 09:59 . 2011-11-27 09:59 -------- d-----w- C:\TopCD
2011-11-27 06:46 . 2011-11-27 06:46 -------- d-----r- C:\MSOCache
2011-11-26 19:50 . 2011-11-26 19:50 -------- d-----w- C:\bfbb9cf1ce92f25aeada90ad46b7e006
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-26 10:02 . 2011-11-26 10:02 3824851 ----a-w- c:\windows\REGBK00.ZIP
2011-10-07 17:48 . 2011-10-07 17:48 97760 ----a-w- c:\windows\system32\drivers\inspect.sys
2011-10-07 17:48 . 2011-10-07 17:48 492768 ----a-w- c:\windows\system32\drivers\cmdGuard.sys
2011-10-07 17:48 . 2011-10-07 17:48 31704 ----a-w- c:\windows\system32\drivers\cmdhlp.sys
2011-10-07 17:48 . 2011-10-07 17:48 18056 ----a-w- c:\windows\system32\drivers\cmderd.sys
2011-10-07 17:47 . 2011-10-07 17:47 33984 ----a-w- c:\windows\system32\cmdcsr.dll
2011-10-07 17:47 . 2011-10-07 17:47 300200 ----a-w- c:\windows\system32\guard32.dll
2011-09-28 07:06 . 2008-04-14 07:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-09-26 10:41 . 2011-09-26 10:41 613376 ------w- c:\windows\system32\uiautomationcore.dll
2011-09-26 10:41 . 2008-04-14 07:00 22528 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-26 10:41 . 2008-04-14 07:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-06 14:10 . 2008-04-14 07:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-11-21 04:19 . 2011-11-25 17:21 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2011-01-25 10:40 67680 ----a-w- c:\program files\Internet Download Manager\IDMShellExt.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Pro Agent"="c:\program files\DAEMON Tools Pro\DTAgent.exe" [2011-08-17 4527424]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2011-12-01 3265944]
"OEXPRESS"="c:\documents and settings\All Users\Data aplikací\LangSoft\OETRN.EXE" [2011-12-02 26624]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-04-14 13684736]
"nwiz"="nwiz.exe" [2009-04-14 1657376]
"HDAudDeck"="c:\program files\VIA\VIAudioi\HDADeck\HDeck.exe" [2009-12-03 33718272]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-09-23 258512]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2011-10-20 2497352]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
"Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" [2011-09-05 36760]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2011-09-05 2904984]
"NBAgent"="c:\program files\Nero\Nero 11\Nero BackItUp\NBAgent.exe" [2011-09-20 1493288]
"CloneCDTray"="c:\program files\SlySoft\CloneCD\CloneCDTray.exe" [2009-01-29 57344]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-5-21 275768]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLinkedConnections"= 1 (0x1)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2011-05-04 17:54 551296 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\guard32.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ioloSystemService]
@="Service"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Java\\jre6\\launch4j-tmp\\frd.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfcCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxs08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqfxt08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgm.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgh.exe"=
"c:\\Program Files\\HP\\HP Software Update\\HPWUCli.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\smart web printing\\SmartWebPrintExe.exe"=
"c:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"=
"c:\\Program Files\\THQ\\S.T.A.L.K.E.R. - Shadow of Chernobyl\\bin\\XR_3DA.exe"=
"c:\\Program Files\\THQ\\S.T.A.L.K.E.R. - Shadow of Chernobyl\\bin\\dedicated\\XR_3DA.exe"=
"c:\\Program Files\\Activision\\Wolfenstein\\MP\\Wolf2MP.exe"=
"c:\\Program Files\\Activision\\Wolfenstein\\MP\\Wolf2MPLite.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
.
R0 NBVol;Nero Backup Volume Filter Driver;c:\windows\system32\drivers\NBVol.sys [2.12.2011 16:55 56496]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver;c:\windows\system32\drivers\NBVolUp.sys [2.12.2011 16:55 12464]
R0 sptd;sptd;\SystemRoot\\SystemRoot\System32\Drivers\sptd.sys --> \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [?]
R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [26.11.2011 12:27 36000]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdGuard.sys [7.10.2011 18:48 492768]
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [7.10.2011 18:48 31704]
R1 IDMTDI;IDMTDI;c:\windows\system32\drivers\idmtdi.sys [1.2.2011 15:37 97112]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [22.7.2011 17:27 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [12.7.2011 22:55 67664]
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCore.exe [12.8.2011 0:38 116608]
R2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [26.11.2011 12:27 86224]
R2 ioloSystemService;iolo System Service;c:\program files\iolo\Common\Lib\ioloServiceManager.exe [27.11.2011 10:16 722616]
R2 NAUpdate;@c:\program files\Nero\Update\NASvc.exe,-200;c:\program files\Nero\Update\NASvc.exe [23.9.2011 18:37 641832]
R2 OODefragAgent;O&O Defrag Agent;c:\program files\OO Software\Defrag\oodag.exe [29.6.2011 17:22 2468168]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [25.11.2011 17:33 1617408]
S0 cerc6;cerc6; [x]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18.3.2010 13:16 130384]
S3 AMBFilt;AMBFilt;c:\windows\system32\drivers\Ambfilt.sys [25.11.2011 17:33 1656960]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [12.6.2011 11:15 31125880]
S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [9.1.2010 21:37 4640000]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18.3.2010 13:16 753504]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
HPService REG_MULTI_SZ HPSLPSVC
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.cz/
IE: Download all links with IDM - c:\program files\Internet Download Manager\IEGetAll.htm
IE: Download FLV video content with IDM - c:\program files\Internet Download Manager\IEGetVL.htm
IE: Download with IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Převést cíl vazby do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Převést do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Připojit cíl vazby k existujícímu PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Připojit k existujícímu PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\documents and settings\Vicious\Data aplikací\Mozilla\Firefox\Profiles\botbqghb.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/
FF - prefs.js: network.proxy.type - 0
.
.
------- Asociace souborů -------
.
JSEFile=NOTEPAD.EXE %1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKCU-Run-Nektra OEAPI - (no file)
HKCU-Run-WEBTRAN - (no file)
AddRemove-PC Translator - c:\docume~1\Vicious\LOCALS~1\Temp\UN32.EXE
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-12-04 21:36
Windows 5.1.2600 Service Pack 3 NTFS
.
detected NTDLL code modification:
ZwClose
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
HDAudDeck = c:\program files\VIA\VIAudioi\HDADeck\HDeck.exe 1????????????????????????????????????????????????
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG15.00.00.01PROFESSIONAL"="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"
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
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(728)
c:\windows\system32\guard32.dll
c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
- - - - - - - > 'lsass.exe'(792)
c:\windows\system32\MPR.dll
c:\windows\system32\guard32.dll
.
- - - - - - - > 'csrss.exe'(696)
c:\windows\system32\cmdcsr.dll
.
Celkový čas: 2011-12-04 21:38:40
ComboFix-quarantined-files.txt 2011-12-04 20:38
.
Před spuštěním: Volných bajtů: 38 959 468 544
Po spuštění: Volných bajtů: 41 944 121 344
.
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - B4F6CFBB3DACF5EBFB788F14E54F5371

[motji]

Co počítač?

[Vicious]

Všechno v pohodě, děkuju

[motji]

A mohla bych udělat jeden test na rootkity? Něco v combofixu se mi nezdá.

[Vicious]

jj můžeme

[motji]

Stáhněte Gmer http://www.viry.cz/forum/viewtopic.php?f=29&t=62878
- rozbalte a spusťte
-proběhne sken, po skončení se otevře okno s výsledky, klikněte na Save a tím si uložíte log,který sem vložíte

-Podle návodu v odkazu provedete druhý sken a log sem také vložíte.

[Vicious]

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2011-12-05 21:14:12
Windows 5.1.2600 Service Pack 3 Harddisk1\DR1 -> \Device\Scsi\nvgts1Port2Path0Target0Lun0 ST380815 rev.3.AA
Running: gmer.exe; Driver: C:\DOCUME~1\Vicious\LOCALS~1\Temp\kwkdqfod.sys


---- System - GMER 1.0.15 ----

SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwEnumerateKey [0xAE9C26C6]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwEnumerateValueKey [0xAE9C291C]

---- Devices - GMER 1.0.15 ----

Device \Driver\atapi \Device\Ide\IdePort0 [B7DFEB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 [B7DFEB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device \Driver\atapi \Device\Ide\IdePort1 [B7DFEB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c [B7DFEB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device \Driver\a5iwzxwi \Device\Scsi\a5iwzxwi1Port4Path0Target0Lun0 898751E8
Device \Driver\nvgts \Device\Scsi\nvgts1Port2Path0Target0Lun0 89BDB1E8
Device \Driver\nvgts \Device\Scsi\nvgts1 89BDB1E8
Device \Driver\nvgts \Device\Scsi\nvgts2 89BDB1E8
Device \Driver\a5iwzxwi \Device\Scsi\a5iwzxwi1 898751E8
Device \FileSystem\Ntfs \Ntfs 89BDA1E8

AttachedDevice \Driver\Tcpip \Device\Ip cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO)
AttachedDevice \Driver\Tcpip \Device\Tcp cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO)
AttachedDevice \Driver\Tcpip \Device\Udp cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO)
AttachedDevice \Driver\Tcpip \Device\RawIp cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO)

---- EOF - GMER 1.0.15 ----

[motji]

Prosím ještě uplný sken.