VIRY.CZ

Cau prosim o preventivní kontrolu logu.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Minecraft at 2012-02-01 20:00:10
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 8 GB (21%) free of 38 GB
Total RAM: 1279 MB (71% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:00:52, on 1.2.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Box\SimpleShare\simpleshare.exe
H:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\java.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
H:\Instal\RSIT.exe
C:\Program Files\trend micro\Minecraft.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/bsprpc/{4556D ... FD3AACD3E1}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/bsprpc/{4556D ... FD3AACD3E1}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O1 - Hosts: 188.40.142.146 bf2web.gamespy.com
O1 - Hosts: 178.21.113.74 www.minecraft.net
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~4\Office12\GRA8E1~1.DLL
O2 - BHO: Funmoods Helper Object - {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - C:\Program Files\Funmoods\funmoods\1.5.11.16\bh\funmoods.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - (no file)
O3 - Toolbar: Funmoods Toolbar - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - C:\Program Files\Funmoods\funmoods\1.5.11.16\funmoodsTlbr.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SimpleShare] "C:\Program Files\Box\SimpleShare\simpleshare.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftup ... 6809844562
O16 - DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} - https://www.mojedatovaschranka.cz/stati ... ctivex.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 7346423750
O16 - DPF: {98B23776-D845-49B4-876F-32486810E89C} (Video Web Phone Installer) - http://160.218.160.89/Install/VWPSetup.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = Microsoft
O17 - HKLM\Software\..\Telephony: DomainName = Microsoft
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = Microsoft
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: Domain = Microsoft
O17 - HKLM\System\CS4\Services\Tcpip\Parameters: Domain = Microsoft
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~4\Office12\GR99D3~1.DLL
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - Unknown owner - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (file missing)
O23 - Service: Client Virtualization Handler (cvhsvc) - Unknown owner - C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Update Service (gupdate1c98ddeeb627848) (gupdate1c98ddeeb627848) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Microsoft security update service (msupdate) - Unknown owner - c:\windows\system32\..\svchost.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O24 - Desktop Component 0: (no name) - http://www.misch.cz/w/lovosice/images/2010/mmmm.jpg

--
End of file - 10221 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Driver Robot.job
C:\WINDOWS\tasks\GlaryInitialize.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cc9408bc6c11b0.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-413027322-839522115-1003Core1cc4ea5278f7e2c.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-413027322-839522115-1029Core.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\MpIdleTask.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Minecraft\Data aplikací\Mozilla\Firefox\Profiles\hlx2qnct.default

prefs.js - "browser.startup.homepage" - "http://www.centrum.cz/?utm_source=ch-br ... _medium=ff"
prefs.js - "keyword.URL" - "http://search.centrum.cz/?charset=UTF-8 ... toolbar-ff, search-web&q="

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@funwebproducts.com/Plugin]
"Description"=Fun Web Products Plugin
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.0.50917.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00]
"Description"=Plug-in to check PlayStation(R)Network Downloader.
"Path"=C:\Program Files\Sony\PLAYSTATION Network Downloader\nppsndl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0]
"Description"=
"Path"=C:\Program Files\Sony\Media Go\npmediago.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

h:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}

h:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

h:\Program Files\Mozilla Firefox\searchplugins\
google.xml
wikipedia-cz.xml

C:\Documents and Settings\Minecraft\Data aplikací\Mozilla\Firefox\Profiles\hlx2qnct.default\extensions\
centrumpomocnik@centrum.cz
staged
{ec8030f7-c20a-464f-9b0e-13a3a9e97384}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~4\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}]
Funmoods Helper Object - C:\Program Files\Funmoods\funmoods\1.5.11.16\bh\funmoods.dll [2012-01-25 241888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2011-11-10 325408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10 3834016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2011-08-23 1515688]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-11-10 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-11-10 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2011-08-23 1515688]
{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}
{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - Funmoods Toolbar - C:\Program Files\Funmoods\funmoods\1.5.11.16\funmoodsTlbr.dll [2012-01-25 251856]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2004-10-29 4620288]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2004-10-29 86016]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2010-11-30 997408]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2012-01-03 37296]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-02 843712]
"NPSStartup"= []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"SimpleShare"=C:\Program Files\Box\SimpleShare\simpleshare.exe [2011-12-09 1267752]
"Google Update"=C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2012-01-30 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-02 843712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2012-01-03 37296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
C:\Program Files\Ask.com\Updater\Updater.exe [2011-08-23 887976]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BtTray]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdate]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Software Kodak EasyShare.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"VMware NAT Service"=3
"VMUSBArbService"=3
"VMnetDHCP"=2
"VMAuthdService"=3
"6to4"=2

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~4\Office12\GRA8E1~1.DLL [2006-10-27 2210608]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2008-05-26 304128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ksupmgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SolutoService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ksupmgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SolutoService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=255
"NoResolveSearch"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\system32\dpnsvr.exe"="C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server"
"C:\WINDOWS\system32\mmc.exe"="C:\WINDOWS\system32\mmc.exe:*:Enabled:Konzola Microsoft Management Console"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE"="C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE:*:Enabled:Microsoft Office Word"
"C:\WINDOWS\pchealth\helpctr\binaries\helpctr.exe"="C:\WINDOWS\pchealth\helpctr\binaries\helpctr.exe:*:Enabled:Vzdálená pomoc - Windows Messenger a přenos hlasu"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE"="C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE:*:Enabled:Microsoft Office Excel"
"C:\WINDOWS\system32\usmt\migwiz.exe"="C:\WINDOWS\system32\usmt\migwiz.exe:*:Enabled:Průvodce přenesením souborů a nastavení"
"C:\Program Files\RealVNC\VNC4\vncviewer.exe"="C:\Program Files\RealVNC\VNC4\vncviewer.exe:*:Enabled:VNC Viewer Free Edition for Win32"
"C:\Documents and Settings\User\Data aplikací\IMVUClient\1VivoxVoice.exe"="C:\Documents and Settings\User\Data aplikací\IMVUClient\1VivoxVoice.exe:*:Enabled:1VivoxVoice"
"D:\EasySetupAssistant\EasySetupAssistant.exe"="D:\EasySetupAssistant\EasySetupAssistant.exe:*:Enabled:TP-LINK Easy Setup Assistant"
"C:\Program Files\xerox\nwwia\XrxFTPLt.exe"="C:\Program Files\xerox\nwwia\XrxFTPLt.exe:*:Enabled:XrxFTPLt"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:VSTO Deployment Manifest 9014006104050000"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"C:\Program Files\DsNET Corp\aTube Catcher 2.0\yct.exe"="C:\Program Files\DsNET Corp\aTube Catcher 2.0\yct.exe:*:Enabled:aTube Catcher to download and convert videos."
"C:\Program Files\EA GAMES\Battlefield 2 Demo\BF2.exe"="C:\Program Files\EA GAMES\Battlefield 2 Demo\BF2.exe:*:Enabled:Battlefield 2"
"C:\WINDOWS\system32\dxdiag.exe"="C:\WINDOWS\system32\dxdiag.exe:*:Enabled:Microsoft DirectX Diagnostic Tool"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Luxriot Digital Video Recorder\DVRServer.exe"="C:\Program Files\Luxriot Digital Video Recorder\DVRServer.exe:*:Enabled:Luxriot Digital Video Recorder Server Application"
"C:\Program Files\Luxriot Digital Video Recorder\DVRServerBroadcast.exe"="C:\Program Files\Luxriot Digital Video Recorder\DVRServerBroadcast.exe:*:Enabled:Luxriot Digital Video Recorder Server Broadcast Application"
"C:\Program Files\Java\jre6\launch4j-tmp\frd.exe"="C:\Program Files\Java\jre6\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Documents and Settings\User\Plocha\sindicakte\Sindicate\client.bin"="C:\Documents and Settings\User\Plocha\sindicakte\Sindicate\client.bin:*:Enabled:client"
"C:\Documents and Settings\User\Plocha\Sindicate\client.bin"="C:\Documents and Settings\User\Plocha\Sindicate\client.bin:*:Enabled:client"
"H:\fpr-small\fpr.exe"="H:\fpr-small\fpr.exe:*:Enabled:FTP Password Recovery"
"C:\Program Files\FlatOut2\FlatOut2.exe"="C:\Program Files\FlatOut2\FlatOut2.exe:*:Enabled:FlatOut2"
"C:\Program Files\EA GAMES\Battlefield 2\Bf2_w32ded.exe"="C:\Program Files\EA GAMES\Battlefield 2\Bf2_w32ded.exe:*:Enabled:Bf2_w32ded"
"C:\Program Files\EA GAMES\Battlefield 2 Demo\Bf2_w32ded.exe"="C:\Program Files\EA GAMES\Battlefield 2 Demo\Bf2_w32ded.exe:*:Enabled:Bf2_w32ded"
"H:\Instal\Free_Internetcam\Free_Internetcam.exe"="H:\Instal\Free_Internetcam\Free_Internetcam.exe:*:Enabled:Free Internetcam"
"C:\Program Files\EA GAMES\Battlefield 2 Demo\BF2VoipServer_w32ded.exe"="C:\Program Files\EA GAMES\Battlefield 2 Demo\BF2VoipServer_w32ded.exe:*:Enabled:BF2VoipServer_w32ded"
"C:\WINDOWS\msde.exe"="C:\WINDOWS\msde.exe:*:Enabled:Services controller"
"C:\Program Files\MondialMt2\mondialmt2.exe"="C:\Program Files\MondialMt2\mondialmt2.exe:*:Enabled:mondialmt2"
"H:\Instal\solutoinstaller.exe"="H:\Instal\solutoinstaller.exe:*:Enabled:SolutoInstaller"
"C:\Program Files\Cyanide\Pro Cycling Manager - Saison 2006 - Demo\PCM.exe"="C:\Program Files\Cyanide\Pro Cycling Manager - Saison 2006 - Demo\PCM.exe:*:Disabled:pcm"
"H:\Instal\terraria\Terraria\Hra\TerrariaServer.exe"="H:\Instal\terraria\Terraria\Hra\TerrariaServer.exe:*:Enabled:Terraria"
"H:\Program Files\video spin\Programs\RM.exe"="H:\Program Files\video spin\Programs\RM.exe:*:Enabled:Render Manager"
"H:\Program Files\video spin\Programs\umi.exe"="H:\Program Files\video spin\Programs\umi.exe:*:Enabled:umi"
"H:\Program Files\video spin\Programs\VideoSpin.exe"="H:\Program Files\video spin\Programs\VideoSpin.exe:*:Enabled:Pinnacle VideoSpin"
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth"
"C:\WINDOWS\system32\java.exe"="C:\WINDOWS\system32\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"
"C:\Documents and Settings\User\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe"="C:\Documents and Settings\User\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin"
"C:\Program Files\Mount&Blade Warband\mb_warband.exe"="C:\Program Files\Mount&Blade Warband\mb_warband.exe:*:Enabled:Mount&Blade: Warband"
"H:\Instal\teamspeak3-server_win32-3.0.1\teamspeak3-server_win32\ts3server_win32.exe"="H:\Instal\teamspeak3-server_win32-3.0.1\teamspeak3-server_win32\ts3server_win32.exe:*:Enabled:TeamSpeak 3 Server"
"H:\Program Files\VirtualDJ\virtualdj_home.exe"="H:\Program Files\VirtualDJ\virtualdj_home.exe:*:Enabled:VirtualDJ"
"C:\Program Files\Sony\Media Go\MediaGo.exe"="C:\Program Files\Sony\Media Go\MediaGo.exe:*:Enabled:Media Go"
"C:\Documents and Settings\Minecraft\Data aplikací\Dropbox\bin\Dropbox.exe"="C:\Documents and Settings\Minecraft\Data aplikací\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox"
"C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe"="C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe:LocalSubNet:Enabled:Visual Studio Remote Debugging Monitor"
"H:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe"="H:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server"
"H:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe"="H:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"F:\ICQ7.0\ICQ.exe"="F:\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"F:\ICQ7.0\aolload.exe"="F:\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"MIDI1"=SYNCOR11.DLL
"MSVideo8"=VfWWDM32.dll
"vidc.VP60"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.VP61"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.VP62"=vp6vfw.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave1"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave5"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer5"=wdmaud.drv
"VIDC.MPG4"=mpg4c32.dll
"VIDC.MP42"=mpg4c32.dll
"wave7"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer7"=wdmaud.drv
"aux4"=wdmaud.drv
"msacm.lhacm"=lhacm.acm
"wave8"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer8"=wdmaud.drv
"aux5"=wdmaud.drv
"wave9"=wdmaud.drv
"mixer9"=wdmaud.drv
"aux6"=wdmaud.drv
"VIDC.FMVC"=fmcodec.dll
"aux7"=wdmaud.drv
"msacm.l3codecp"=l3codecp.acm
"vidc.tscc"=C:\WINDOWS\system32\tsccvid.dll
"VIDC.FPS1"=frapsvid.dll
"wave6"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer6"=wdmaud.drv

======List of files/folders created in the last 1 month======

2012-02-01 20:00:10 ----D---- C:\rsit
2012-02-01 19:52:30 ----D---- C:\Documents and Settings\Minecraft\Data aplikací\Funmoods
2012-02-01 19:33:24 ----A---- C:\user.js
2012-02-01 19:33:15 ----D---- C:\Program Files\Funmoods
2012-01-31 14:23:37 ----SHD---- C:\found.002
2012-01-29 17:04:42 ----D---- C:\Program Files\Sony Ericsson
2012-01-29 11:58:02 ----D---- C:\Documents and Settings\Minecraft\Data aplikací\.minecraft
2012-01-28 17:09:54 ----A---- C:\WINDOWS\BsMobileModel.ini
2012-01-28 13:26:52 ----HDC---- C:\WINDOWS\$NtUninstallWudf01009$
2012-01-28 13:25:28 ----A---- C:\WINDOWS\ModemLog_Nokia 6300 Bluetooth Modem.txt
2012-01-28 13:24:50 ----D---- C:\Documents and Settings\Minecraft\Data aplikací\Nokia
2012-01-28 12:07:22 ----D---- C:\Documents and Settings\Minecraft\Data aplikací\MyPhoneExplorer
2012-01-27 14:58:28 ----D---- C:\Program Files\Common Files\Java
2012-01-27 14:50:38 ----A---- C:\WINDOWS\system32\javaws.exe
2012-01-27 14:50:38 ----A---- C:\WINDOWS\system32\javaw.exe
2012-01-27 14:50:38 ----A---- C:\WINDOWS\system32\java.exe
2012-01-24 14:27:31 ----D---- C:\Documents and Settings\Minecraft\Data aplikací\Audacity
2012-01-23 13:36:53 ----D---- C:\Documents and Settings\Minecraft\Data aplikací\PC Suite
2012-01-23 13:33:35 ----D---- C:\Documents and Settings\Minecraft\Data aplikací\Samsung
2012-01-23 13:32:49 ----D---- C:\Program Files\MarkAny
2012-01-21 19:25:33 ----ASH---- C:\hiberfil.sys
2012-01-21 19:22:12 ----A---- C:\WINDOWS\ntbtlog.txt
2012-01-12 17:14:32 ----RD---- C:\Program Files\Skype
2012-01-12 01:19:16 ----A---- C:\WINDOWS\system32\GPhotos.scr
2012-01-09 21:40:15 ----D---- C:\Program Files\Microsoft Sync Framework
2012-01-09 21:40:04 ----D---- C:\Program Files\Microsoft Synchronization Services
2012-01-09 21:40:03 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2012-01-09 21:32:04 ----D---- C:\Program Files\Microsoft ASP.NET
2012-01-09 21:31:57 ----D---- C:\Program Files\IIS
2012-01-09 21:11:41 ----D---- C:\Program Files\Microsoft SDKs
2012-01-09 21:11:40 ----D---- C:\Program Files\Microsoft Help Viewer
2012-01-09 20:17:26 ----N---- C:\WINDOWS\system32\spmsg.dll
2012-01-09 20:16:31 ----HDC---- C:\WINDOWS\$NtUninstallKB958655-v2$
2012-01-08 17:40:07 ----D---- C:\Program Files\Box
2012-01-07 10:53:14 ----A---- C:\WINDOWS\system32\drivers\dne2000.sys
2012-01-07 10:53:14 ----A---- C:\WINDOWS\system32\dneinobj.dll
2012-01-05 17:21:22 ----D---- C:\WINDOWS\system32\QuickTime
2012-01-05 17:20:14 ----D---- C:\Program Files\QuickTime
2012-01-05 17:19:39 ----D---- C:\Program Files\Common Files\TechSmith Shared
2012-01-05 17:18:59 ----D---- C:\Documents and Settings\All Users\Data aplikací\TechSmith
2012-01-04 18:03:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\WeGame
2012-01-04 17:56:48 ----D---- C:\Documents and Settings\Minecraft\Data aplikací\WeGame
2012-01-04 17:56:09 ----A---- C:\WINDOWS\system32\Ltfil15u.dll
2012-01-04 17:56:08 ----A---- C:\WINDOWS\system32\Ltkrn15u.dll
2012-01-04 17:56:08 ----A---- C:\WINDOWS\system32\Lfcmp15u.dll
2012-01-04 15:45:37 ----D---- C:\Documents and Settings\Minecraft\Data aplikací\Wireshark
2012-01-02 10:28:51 ----D---- C:\Documents and Settings\Minecraft\Data aplikací\Ascaron Entertainment

======List of files/folders modified in the last 1 month======

2012-02-01 20:00:18 ----D---- C:\Program Files\trend micro
2012-02-01 20:00:17 ----D---- C:\WINDOWS\Prefetch
2012-02-01 19:51:07 ----D---- C:\WINDOWS\Temp
2012-02-01 19:33:15 ----D---- C:\Program Files
2012-02-01 15:37:06 ----D---- C:\WINDOWS\system32\inetsrv
2012-02-01 15:35:28 ----SD---- C:\WINDOWS\Tasks
2012-01-31 20:41:32 ----SHD---- C:\WINDOWS\Installer
2012-01-31 20:41:31 ----D---- C:\Config.Msi
2012-01-31 20:41:23 ----D---- C:\Program Files\Common Files
2012-01-31 20:41:18 ----HD---- C:\WINDOWS\inf
2012-01-31 20:40:43 ----DC---- C:\WINDOWS\system32\DRVSTORE
2012-01-31 20:38:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2012-01-31 20:38:27 ----D---- C:\Documents and Settings\Minecraft\Data aplikací\Skype
2012-01-31 20:30:32 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-01-31 14:34:38 ----D---- C:\WINDOWS\system32
2012-01-31 14:34:38 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-01-31 14:33:56 ----D---- C:\WINDOWS\system32\CatRoot2
2012-01-31 13:44:05 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2012-01-29 16:32:41 ----D---- C:\WINDOWS\security
2012-01-29 16:31:39 ----D---- C:\WINDOWS\system32\drivers
2012-01-28 17:09:54 ----D---- C:\WINDOWS
2012-01-28 13:26:24 ----D---- C:\WINDOWS\system32\drivers\umdf
2012-01-28 13:26:22 ----D---- C:\Documents and Settings\All Users\Data aplikací\PC Suite
2012-01-28 13:25:17 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-01-28 13:25:10 ----D---- C:\WINDOWS\system32\ReinstallBackups
2012-01-28 13:21:50 ----D---- C:\Program Files\PC Connectivity Solution
2012-01-28 13:19:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\Installations
2012-01-27 14:50:34 ----D---- C:\Program Files\Java
2012-01-14 11:17:15 ----RSD---- C:\WINDOWS\assembly
2012-01-14 11:17:04 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-01-12 19:44:11 ----D---- C:\Program Files\Common Files\Adobe
2012-01-12 19:44:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2012-01-11 18:22:08 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2012-01-10 17:43:54 ----D---- C:\WINDOWS\system32\usmt
2012-01-10 17:43:54 ----D---- C:\WINDOWS\system32\Restore
2012-01-10 17:43:54 ----D---- C:\Program Files\Windows NT
2012-01-10 17:43:54 ----D---- C:\Program Files\Windows Media Player
2012-01-10 17:43:54 ----D---- C:\Program Files\Outlook Express
2012-01-10 17:43:54 ----D---- C:\Program Files\Internet Explorer
2012-01-10 17:43:54 ----D---- C:\Program Files\Common Files\System
2012-01-10 17:43:53 ----D---- C:\WINDOWS\srchasst
2012-01-10 17:01:26 ----D---- C:\WINDOWS\Microsoft.NET
2012-01-10 15:06:22 ----D---- C:\WINDOWS\WinSxS
2012-01-10 15:01:44 ----D---- C:\Program Files\MSBuild
2012-01-10 14:56:37 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2012-01-10 14:55:39 ----D---- C:\WINDOWS\system32\1033
2012-01-10 14:08:01 ----HD---- C:\WINDOWS\NiwradSoft Shell Pack
2012-01-09 21:46:01 ----D---- C:\Program Files\Microsoft SQL Server
2012-01-09 21:31:01 ----SD---- C:\Documents and Settings\Minecraft\Data aplikací\Microsoft
2012-01-09 20:17:45 ----A---- C:\WINDOWS\imsins.BAK
2012-01-07 11:24:07 ----A---- C:\WINDOWS\iun6002.exe
2012-01-07 11:02:32 ----D---- C:\WINDOWS\system32\ias
2012-01-04 20:45:37 ----A---- C:\WINDOWS\win.ini
2012-01-04 14:33:15 ----D---- C:\WINDOWS\system32\NtmsData
2012-01-03 19:26:26 ----D---- C:\Program Files\DAEMON Tools Lite

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 BtHidBus;Bluetooth HID Bus Service; C:\WINDOWS\System32\Drivers\BtHidBus.sys [2009-01-07 20744]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-04-28 44944]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2006-03-26 51200]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2006-03-13 6656]
R0 sfvfs02;StarForce Protection VFS Driver (version 2.x); C:\WINDOWS\System32\drivers\sfvfs02.sys [2005-11-03 63488]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-12-25 691696]
R0 uagp35;Filtr Microsoft AGPv3.5; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-13 44672]
R0 viaagp1;VIA AGP Filter; C:\WINDOWS\system32\DRIVERS\viaagp1.sys [2003-07-02 27904]
R0 viadsk;viadsk; C:\WINDOWS\system32\DRIVERS\viadsk.sys [2003-06-19 56576]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-07-13 91904]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41600]
R1 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2010-10-24 165264]
R1 vmm;Virtual Machine Monitor; \??\C:\WINDOWS\system32\Drivers\vmm.sys []
R2 DgiVecp;DgiVecp; \??\C:\WINDOWS\system32\Drivers\DgiVecp.sys []
R2 LightLogger;LightLogger driver; \??\C:\WINDOWS\system32\Drivers\LightLogger.sys []
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816]
R3 FETNDISB;VIA Rhine Family Fast Ethernet Adapter Driver Service; C:\WINDOWS\system32\DRIVERS\fetnd5b.sys [2003-07-29 41984]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2004-10-29 2826944]
R3 Sftplay;Sftplay; C:\WINDOWS\system32\DRIVERS\Sftplayxp.sys [2009-12-02 211304]
R3 Sftvol;Sftvol; C:\WINDOWS\system32\DRIVERS\Sftvolxp.sys [2009-12-02 18280]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-07-15 578368]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-13 12288]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VPCNetS2;Virtual Machine Network Services Driver; C:\WINDOWS\system32\DRIVERS\VMNetSrv.sys [2008-02-05 59960]
S0 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\system32\DRIVERS\vbtenum.sys []
S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys []
S0 Lbd;Lbd; C:\WINDOWS\system32\DRIVERS\Lbd.sys []
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys []
S2 AVWEBCAM;AV WebCam, WDM Video Capture; C:\WINDOWS\system32\DRIVERS\avwebcam.sys [2008-01-11 13696]
S2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys []
S2 SSPORT;SSPORT; \??\C:\WINDOWS\system32\Drivers\SSPORT.sys []
S3 2hotspot controller;2hotspot Miniport; C:\WINDOWS\system32\DRIVERS\acontrol.sys []
S3 abkgdlai;abkgdlai; C:\WINDOWS\system32\drivers\abkgdlai.sys []
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2000-01-01 2284864]
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
S3 Bridge;Most MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 BridgeMP;Miniport mostu MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys []
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BTHMODEM;Ovladač pro sériovou komunikaci protokolem Bluetooth; C:\WINDOWS\system32\DRIVERS\bthmodem.sys [2008-04-13 37888]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\WINDOWS\System32\Drivers\btnetBus.sys [2008-12-07 30088]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 CVirtA;Cisco Systems VPN Adapter; C:\WINDOWS\system32\DRIVERS\CVirtA.sys [2007-01-18 5275]
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.SYS []
S3 FET5X86V;VIA Rhine-Family Fast-Ethernet Adapter Driver Service; C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys [2008-09-22 43520]
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 HidBth;Miniport Bluetooth HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidbth.sys [2008-04-14 25600]
S3 hidgame;Microsoft Hid to Joystick Port Enabler; C:\WINDOWS\system32\DRIVERS\hidgame.sys [2001-08-17 8576]
S3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys []
S3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [2008-07-02 26248]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
S3 MSICDSetup;MSICDSetup; \??\D:\CDriver.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nm;Ovladač programu Sledování sítě; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
S3 NTSIM;NTSIM; \??\C:\WINDOWS\system32\ntsim.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2010-04-12 47360]
S3 PSSDK42;PSSDK42; \??\C:\WINDOWS\system32\Drivers\pssdk42.sys []
S3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM); C:\WINDOWS\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS); C:\WINDOWS\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM); C:\WINDOWS\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
S3 SCREAMINGBDRIVER;Screaming Bee Audio; C:\WINDOWS\system32\drivers\screamingbdriver.sys [2005-11-21 13824]
S3 se3ebus;Sony Ericsson Device 062 (WDM); C:\WINDOWS\system32\DRIVERS\se3ebus.sys [2007-04-10 83080]
S3 se3emdfl;Sony Ericsson Device 062 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\se3emdfl.sys [2007-04-10 15112]
S3 se3emdm;Sony Ericsson Device 062 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\se3emdm.sys [2007-04-10 108552]
S3 se3emgmt;Sony Ericsson Device 062 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\se3emgmt.sys [2007-04-10 100360]
S3 se3eobex;Sony Ericsson Device 062 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\se3eobex.sys [2007-04-10 98568]
S3 se44bus;Sony Ericsson Device 068 driver (WDM); C:\WINDOWS\system32\DRIVERS\se44bus.sys [2006-11-30 61536]
S3 se44mdfl;Sony Ericsson Device 068 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\se44mdfl.sys [2006-11-30 9360]
S3 se44mdm;Sony Ericsson Device 068 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\se44mdm.sys [2006-11-30 97088]
S3 se44mgmt;Sony Ericsson Device 068 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\se44mgmt.sys [2006-11-30 88624]
S3 se44nd5;Sony Ericsson Device 068 USB Ethernet Emulation SEMC44 (NDIS); C:\WINDOWS\system32\DRIVERS\se44nd5.sys [2006-11-30 18704]
S3 se44obex;Sony Ericsson Device 068 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\se44obex.sys [2006-11-30 86432]
S3 se44unic;Sony Ericsson Device 068 USB Ethernet Emulation SEMC44 (WDM); C:\WINDOWS\system32\DRIVERS\se44unic.sys [2006-11-30 90800]
S3 Sftfs;Sftfs; C:\WINDOWS\system32\DRIVERS\Sftfsxp.sys [2009-12-02 554344]
S3 Sftredir;Sftredir; C:\WINDOWS\system32\DRIVERS\Sftredirxp.sys [2009-12-02 20584]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 sonypvs1;Sony Digital Imaging Video2; C:\WINDOWS\system32\DRIVERS\sonypvs1.sys [2002-10-15 102220]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINDOWS\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S3 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2007-10-25 5632]
S3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2001-10-24 6784]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 SymIM;Symantec Network Security Intermediate Filter Service; C:\WINDOWS\system32\DRIVERS\SymIM.sys [2011-01-07 35888]
S3 SymIMMP;SymIMMP; C:\WINDOWS\system32\DRIVERS\SymIM.sys [2011-01-07 35888]
S3 tap0901;TAP-Win32 Adapter V9; C:\WINDOWS\system32\DRIVERS\tap0901.sys [2009-07-16 25984]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\WINDOWS\system32\DRIVERS\vcsvad.sys [2008-12-26 17792]
S3 VHidMinidrv;Bluetooth HID Device Service; C:\WINDOWS\system32\drivers\VHIDMini.sys []
S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\WINDOWS\system32\DRIVERS\vmnetadapter.sys []
S3 VMUVC;Vimicro Camera Service VMUVC; C:\WINDOWS\System32\Drivers\VMUVC.sys [2008-08-29 256512]
S3 vvftUVC;Vimicro Camera Filter Service VMUVC; C:\WINDOWS\system32\drivers\vvftUVC.sys [2008-07-01 398720]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-07-13 132224]
S3 zebratap;NeoRouter Network Interface; C:\WINDOWS\system32\DRIVERS\zebratap.sys [2009-03-29 25216]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 FsUsbExService;FsUsbExService; C:\WINDOWS\system32\FsUsbExService.Exe [2009-03-31 233472]
R2 Iprip;Naslouchání RIP; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-11-10 153376]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2006-10-26 335872]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2010-11-11 11736]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2004-10-29 127043]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2011-01-31 75064]
R2 SimpTcp;Jednoduché služby TCP/IP; C:\WINDOWS\system32\tcpsvcs.exe [2001-10-25 19456]
R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe [2009-12-02 209768]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 cvhsvc;Client Virtualization Handler; C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE []
S2 gupdate1c98ddeeb627848;Google Update Service (gupdate1c98ddeeb627848); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-11 133104]
S2 IISADMIN;Správa služby IIS; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
S2 MSFtpsvc;Publikování FTP; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
S2 msupdate;Microsoft security update service; c:\windows\system32\..\svchost.exe [2008-06-18 20992]
S2 sftlist;Application Virtualization Client; C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe [2009-12-02 483688]
S2 W3SVC;Publikování na webu; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe []
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-06-07 654848]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-11 133104]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-06-11 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 nosGetPlusHelper;getPlus(R) Helper 3004; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 p2pgasvc;Ověřování v síti skupiny rovnocenných počítačů; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 p2pimsvc;Správce identit sítě rovnocenných počítačů; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 p2psvc;Síť rovnocenných počítačů; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 PNRPSvc;Protokol PNRP; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe []

-----------------EOF-----------------

Zdravím.

Dej mi minutku, hnedle se na to mrknu.

Hlídej si místo na systémovém disku C:\ => 8 GB už je na hranici, systém by se mohl začít dusit. Volné místo doporučuji udržovat na hranici +/- 10 GB, jinak se může systém zpomalovat.
Pokud je tam najdeš, tak v nabídce Přidat nebo odebrat programy odinstaluj tyto toolbary: Ask Toolbar, Funmoods Toolbar a vůbec vše od Funmoods.

• Jsou to veliká "zdržovadla" systému a v případě například Ask.com Toolbar, Conduit Engine a dalších se dá hovořit už i o havěti.

Následující soubory otestuj na stránkách VirusTotal.

• C:\Program Files\Box\SimpleShare\simpleshare.exe
• Klikni na [Choose File].
• Soubor nehledej, jen vlož cestu souboru, který chci otestovat.
• Klikni na [Scan it!].
• Pokud na Tebe vyskočí obrazovka podobná té, co je níže, klikni na [Reanalyse].
  
• Výsledek analýzy mi sem vlož (jako odkaz).

Potom fixni v HJT níže uvedené položky.

• Fixnout znamená, že spustíš HJT, zvolíš možnost [Do a system scan only] a zaškrtneš čtvereček vlevo od mnou vypsaných položek. Poté klikneš na [Fix checked] a odsouhlasíš [ANO].
• Položky, které v seznamu nenajdeš, prostě přeskoč.
• HJT najdeš zde: C:\Program Files\trend micro\Minecraft.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/bsprpc/{4556D ... FD3AACD3E1}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/bsprpc/{4556D ... FD3AACD3E1}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O1 - Hosts: 188.40.142.146 bf2web.gamespy.com
O1 - Hosts: 178.21.113.74 http://www.minecraft.net
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Funmoods Helper Object - {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - C:\Program Files\Funmoods\funmoods\1.5.11.16\bh\funmoods.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - (no file)
O3 - Toolbar: Funmoods Toolbar - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - C:\Program Files\Funmoods\funmoods\1.5.11.16\funmoodsTlbr.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\WINDOWS\system32\shdocvw.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll


A ještě stáhni OTL z tohoto odkazu a ulož jej na Plochu.

• Pokud používáš Win Vista či Win7, klikni na OTL pravým myšítkem a dej Run As Administrator či Spustit jako správce.
• Pokud používáš 64bitový OS, zkontroluj, zda-li je zaškrtnutý čtvereček Pro 64 bitové OS. Pokud ne, zaškrtni jej.
• Zaškrtni okénko Pro všechny uživatele.
• Zaškrtni okénko Kontrola na havěť "LOP".
• Zaškrtni okénko Kontrola na havěť "Purity".
• Stáři souborů změň z 30 dnů na 7 dnů!!
• Do spodního okénka Vlastní skenování/opravy vlož tento script (pouze zelená písmenka v bílém poli!):

• Klikni na tlačítko [Prohledat].
• Po dokončení skenu se objeví logy OTL.txt a Extras.txt, oba mi sem vlož.
• Logy se nevejdou do jednoho, rozděl je tedy prosím do více příspěvků.

ok ale ted nemam cas az pridu ze skoly tak to udelam

No problémo.

tady je ten odkaz v virustotalu https://www.virustotal.com/file/b5586d4 ... 328189592/

OK, je to čisté.

Tak jdi na ty toolbary, fix a pak scan s OTL.

ahoj omylem jsem vytvořil nové téma a tak hodil log z toho OTL tak tady je link http://forum.viry.cz/viewtopic.php?f=30 ... 4#p1083504

Já vím, psal jsem Ti PMku. Tam to smaž a log hoď sem.

ale jak ten thread smažu??

vytvořil se mi jenom jeden log kterej se jmenuje OTL.txe ale ne ten druhej ??

OTL logfile created on: 3.2.2012 15:37:41 - Run 2
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Minecraft\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1,25 Gb Total Physical Memory | 0,76 Gb Available Physical Memory | 60,92% Memory free
2,98 Gb Paging File | 2,68 Gb Available in Paging File | 89,78% Paging File free
Paging file location(s): [Binary data over 100 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37,26 Gb Total Space | 9,58 Gb Free Space | 25,71% Space Free | Partition Type: NTFS
Drive H: | 298,09 Gb Total Space | 184,11 Gb Free Space | 61,76% Space Free | Partition Type: NTFS

Computer Name: FILIP | User Name: Minecraft | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2012.02.02 14:51:23 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Minecraft\Plocha\OTL.exe
PRC - [2011.12.09 15:56:42 | 001,267,752 | ---- | M] () -- C:\Program Files\Box\SimpleShare\simpleshare.exe
PRC - [2010.11.30 13:20:36 | 000,997,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2010.11.11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2009.12.02 23:23:52 | 000,209,768 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
PRC - [2009.03.31 09:39:36 | 000,233,472 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe
PRC - [2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2002.09.20 16:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe


========== Modules (No Company Name) ==========

MOD - [2011.12.09 15:56:42 | 001,267,752 | ---- | M] () -- C:\Program Files\Box\SimpleShare\simpleshare.exe
MOD - [2011.09.27 19:33:24 | 002,552,320 | ---- | M] () -- C:\Program Files\Box\SimpleShare\QtCore4.dll
MOD - [2011.09.27 19:33:24 | 000,399,360 | ---- | M] () -- C:\Program Files\Box\SimpleShare\QtXml4.dll
MOD - [2011.09.27 19:33:22 | 009,869,824 | ---- | M] () -- C:\Program Files\Box\SimpleShare\QtGui4.dll
MOD - [2011.09.27 19:33:22 | 002,178,048 | ---- | M] () -- C:\Program Files\Box\SimpleShare\QtScript4.dll
MOD - [2011.09.27 19:33:22 | 001,215,488 | ---- | M] () -- C:\Program Files\Box\SimpleShare\QtNetwork4.dll
MOD - [2011.09.27 19:33:20 | 000,351,744 | ---- | M] () -- C:\Program Files\Box\SimpleShare\plugins\imageformats\qmng4.dll
MOD - [2011.09.27 19:33:20 | 000,287,232 | ---- | M] () -- C:\Program Files\Box\SimpleShare\plugins\imageformats\qjpeg4.dll
MOD - [2011.09.27 19:33:20 | 000,083,456 | ---- | M] () -- C:\Program Files\Box\SimpleShare\plugins\imageformats\qico4.dll
MOD - [2011.09.27 19:33:20 | 000,083,456 | ---- | M] () -- C:\Program Files\Box\SimpleShare\plugins\imageformats\qgif4.dll
MOD - [2011.08.17 11:55:20 | 000,043,008 | ---- | M] () -- C:\Program Files\Box\SimpleShare\libgcc_s_dw2-1.dll
MOD - [2011.08.17 11:55:20 | 000,011,362 | ---- | M] () -- C:\Program Files\Box\SimpleShare\mingwm10.dll
MOD - [2011.08.14 03:54:18 | 000,735,744 | ---- | M] () -- C:\Program Files\Box\SimpleShare\avformat-52.dll
MOD - [2011.08.14 03:54:18 | 000,135,680 | ---- | M] () -- C:\Program Files\Box\SimpleShare\swscale-0.dll
MOD - [2011.08.14 03:54:18 | 000,077,312 | ---- | M] () -- C:\Program Files\Box\SimpleShare\avutil-50.dll
MOD - [2011.08.14 03:54:00 | 004,981,760 | ---- | M] () -- C:\Program Files\Box\SimpleShare\avcodec-52.dll
MOD - [2009.02.18 13:44:25 | 000,026,624 | ---- | M] () -- C:\WINDOWS\system32\sso1ml3.dll
MOD - [2008.10.11 21:18:46 | 000,319,488 | ---- | M] () -- C:\Program Files\WinRAR\rarlng.dll
MOD - [2008.09.16 19:18:06 | 000,132,608 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (NMIndexingService)
SRV - File not found [Auto | Stopped] -- -- (cvhsvc)
SRV - File not found [On_Demand | Stopped] -- -- (ACDaemon)
SRV - [2011.06.08 13:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2011.06.07 17:14:11 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010.11.11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2010.07.26 15:01:58 | 000,066,112 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper_3004.dll -- (nosGetPlusHelper) getPlus(R)
SRV - [2009.12.02 23:23:52 | 000,209,768 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2009.12.02 23:23:46 | 000,483,688 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2009.03.31 09:39:36 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2008.06.18 14:47:25 | 000,020,992 | R--- | M] () [Auto | Stopped] -- C:\WINDOWS\System32\..\svchost.exe -- (msupdate)
SRV - [2008.04.14 04:22:26 | 000,015,872 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (W3SVC)
SRV - [2008.04.14 04:22:26 | 000,015,872 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (MSFtpsvc)
SRV - [2008.04.14 04:22:26 | 000,015,872 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (IISADMIN)
SRV - [2008.04.14 04:21:53 | 000,105,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\p2pgasvc.dll -- (p2pgasvc)
SRV - [2008.04.14 04:21:44 | 000,035,840 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\iprip.dll -- (Iprip)
SRV - [2002.09.20 16:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Running] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | Unknown | Running] -- -- (MpKsla53cf2c5)
DRV - [2012.02.03 15:33:01 | 000,029,904 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{689B3513-735E-4004-BEB8-AC56C33E15B8}\MpKsl3addf25a.sys -- (MpKsl3addf25a)
DRV - [2011.01.07 08:39:02 | 000,035,888 | R--- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SymIM.sys -- (SymIMMP)
DRV - [2011.01.07 08:39:02 | 000,035,888 | R--- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SymIM.sys -- (SymIM)
DRV - [2010.12.25 19:53:11 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010.09.24 19:50:31 | 000,038,976 | ---- | M] (microOLAP Technologies LTD) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pssdk42.sys -- (PSSDK42)
DRV - [2009.12.02 23:23:52 | 000,020,584 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Sftredirxp.sys -- (Sftredir)
DRV - [2009.12.02 23:23:52 | 000,018,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Sftvolxp.sys -- (Sftvol)
DRV - [2009.12.02 23:23:50 | 000,211,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Sftplayxp.sys -- (Sftplay)
DRV - [2009.12.02 23:23:46 | 000,554,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Sftfsxp.sys -- (Sftfs)
DRV - [2009.07.16 10:20:26 | 000,025,984 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tap0901.sys -- (tap0901)
DRV - [2009.03.31 09:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009.03.29 21:24:16 | 000,025,216 | ---- | M] (Zebra Network Systems) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\zebratap.sys -- (zebratap)
DRV - [2009.03.20 10:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV - [2009.03.20 10:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM)
DRV - [2009.03.20 10:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter)
DRV - [2009.03.18 17:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2009.02.16 14:27:13 | 000,038,400 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\DgivEcp.sys -- (DgiVecp)
DRV - [2009.01.07 23:39:36 | 000,020,744 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\BtHidBus.sys -- (BtHidBus)
DRV - [2008.12.26 11:56:04 | 000,017,792 | ---- | M] (Avnex) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vcsvad.sys -- (VCSVADHWSer) Avnex Virtual Audio Device (WDM)
DRV - [2008.12.07 12:44:54 | 000,030,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btnetBus.sys -- (btnetBUs)
DRV - [2008.08.29 15:29:44 | 000,256,512 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VMUVC.sys -- (VMUVC)
DRV - [2008.08.26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.07.02 14:58:48 | 000,026,248 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\IvtBtBus.sys -- (IvtBtBUs)
DRV - [2008.07.01 11:12:32 | 000,398,720 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vvftUVC.sys -- (vvftUVC)
DRV - [2008.05.16 10:33:14 | 000,115,752 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016unic.sys -- (s0016unic) Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM)
DRV - [2008.05.16 10:33:14 | 000,025,512 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016nd5.sys -- (s0016nd5) Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS)
DRV - [2008.05.16 10:33:14 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mdfl.sys -- (s0016mdfl)
DRV - [2008.05.16 10:33:12 | 000,120,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mdm.sys -- (s0016mdm)
DRV - [2008.05.16 10:33:12 | 000,114,216 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mgmt.sys -- (s0016mgmt) Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM)
DRV - [2008.05.16 10:33:12 | 000,110,632 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016obex.sys -- (s0016obex)
DRV - [2008.05.16 10:33:12 | 000,089,256 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016bus.sys -- (s0016bus) Sony Ericsson Device 0016 driver (WDM)
DRV - [2008.04.13 19:53:09 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2008.04.13 19:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008.02.12 02:42:38 | 000,232,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\VMM.sys -- (vmm)
DRV - [2008.02.05 00:50:44 | 000,059,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VMNetSrv.sys -- (VPCNetS2)
DRV - [2008.01.11 17:23:44 | 000,013,696 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\avwebcam.sys -- (AVWEBCAM)
DRV - [2007.12.03 08:53:20 | 000,009,216 | ---- | M] (HeavenWard) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LightLogger.sys -- (LightLogger)
DRV - [2007.10.25 17:26:10 | 000,005,632 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2007.04.10 13:14:18 | 000,098,568 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se3eobex.sys -- (se3eobex)
DRV - [2007.04.10 13:14:16 | 000,100,360 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se3emgmt.sys -- (se3emgmt) Sony Ericsson Device 062 USB WMC Device Management Drivers (WDM)
DRV - [2007.04.10 13:14:14 | 000,108,552 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se3emdm.sys -- (se3emdm)
DRV - [2007.04.10 13:14:14 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se3emdfl.sys -- (se3emdfl)
DRV - [2007.04.10 13:14:02 | 000,083,080 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se3ebus.sys -- (se3ebus) Sony Ericsson Device 062 (WDM)
DRV - [2007.01.18 15:28:02 | 000,005,275 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CVirtA.sys -- (CVirtA)
DRV - [2006.11.30 13:58:42 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se44unic.sys -- (se44unic) Sony Ericsson Device 068 USB Ethernet Emulation SEMC44 (WDM)
DRV - [2006.11.30 13:58:34 | 000,086,432 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se44obex.sys -- (se44obex)
DRV - [2006.11.30 13:58:32 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se44nd5.sys -- (se44nd5) Sony Ericsson Device 068 USB Ethernet Emulation SEMC44 (NDIS)
DRV - [2006.11.30 13:58:30 | 000,088,624 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se44mgmt.sys -- (se44mgmt) Sony Ericsson Device 068 USB WMC Device Management Drivers (WDM)
DRV - [2006.11.30 13:58:26 | 000,097,088 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se44mdm.sys -- (se44mdm)
DRV - [2006.11.30 13:58:24 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se44mdfl.sys -- (se44mdfl)
DRV - [2006.11.30 13:58:18 | 000,061,536 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se44bus.sys -- (se44bus) Sony Ericsson Device 068 driver (WDM)
DRV - [2006.03.26 13:22:14 | 000,051,200 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2006.03.13 10:38:23 | 000,006,656 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2005.11.21 00:08:08 | 000,013,824 | R--- | M] (Screaming Bee LLC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\screamingbdriver.sys -- (SCREAMINGBDRIVER)
DRV - [2005.11.03 15:40:07 | 000,063,488 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2003.07.02 04:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1)
DRV - [2003.06.19 18:00:00 | 000,056,576 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\viadsk.sys -- (viadsk)
DRV - [2002.10.15 21:41:06 | 000,102,220 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sonypvs1.sys -- (sonypvs1)
DRV - [2001.08.17 22:02:32 | 000,008,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hidgame.sys -- (hidgame)
DRV - [2001.08.17 21:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir)
DRV - [2000.01.01 01:00:00 | 002,284,864 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found


IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2025429265-413027322-839522115-1029\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
IE - HKU\S-1-5-21-2025429265-413027322-839522115-1029\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKU\S-1-5-21-2025429265-413027322-839522115-1029\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKU\S-1-5-21-2025429265-413027322-839522115-1029\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultEngineName: "Centrum.cz - Hledání v internetu"
FF - prefs.js..browser.search.selectedEngine: "Centrum.cz - Hledání v internetu"
FF - prefs.js..browser.startup.homepage: "http://www.centrum.cz/?utm_source=ch-br ... _medium=ff"
FF - prefs.js..browser.startup.homepage: "data:text/plain,browser.startup.homepage=http://www.centrum.cz/?utm_source=ch-br ... _medium=ff"
FF - prefs.js..keyword.URL: "http://search.centrum.cz/?charset=UTF-8 ... rch-web&q="


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: File not found
FF - HKLM\Software\MozillaPlugins\@funwebproducts.com/Plugin: File not found
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.50917.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00: C:\Program Files\Sony\PLAYSTATION Network Downloader\nppsndl.dll (Sony Computer Entertainment Inc.)
FF - HKLM\Software\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0: C:\Program Files\Sony\Media Go\npmediago.dll (Sony Network Entertainment International LLC)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Components: h:\Program Files\Mozilla Firefox\components [2011.12.16 15:41:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Plugins: h:\Program Files\Mozilla Firefox\plugins

[2011.12.16 15:42:03 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Minecraft\Data aplikací\Mozilla\Extensions
[2012.02.01 19:33:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Minecraft\Data aplikací\Mozilla\Firefox\Profiles\hlx2qnct.default\extensions
[2011.12.16 15:42:04 | 000,000,000 | ---D | M] (Centrum.cz nastavenĂ) -- C:\Documents and Settings\Minecraft\Data aplikací\Mozilla\Firefox\Profiles\hlx2qnct.default\extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2011.12.16 15:42:04 | 000,000,000 | ---D | M] (Centrum domĂ©novĂ˝ pomocnĂ­k) -- C:\Documents and Settings\Minecraft\Data aplikací\Mozilla\Firefox\Profiles\hlx2qnct.default\extensions\centrumpomocnik@centrum.cz
[2012.02.01 19:33:16 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Minecraft\Data aplikací\Mozilla\Firefox\Profiles\hlx2qnct.default\extensions\staged
[2011.04.19 18:55:36 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010.01.11 20:03:52 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011.02.24 20:36:21 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011.02.02 21:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2009.08.03 14:07:42 | 000,373,104 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\npOGAPlugin.dll

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\Minecraft\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Minecraft\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\17.0.963.46\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Minecraft\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\17.0.963.46\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Minecraft\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\17.0.963.46\pdf.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.300.12 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U30 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Minecraft\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.99\npGoogleUpdate3.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - plugin: Media Go Detector (Enabled) = C:\Program Files\Sony\Media Go\npmediago.dll
CHR - plugin: PlayStation(R)Network Downloader Check Plug-in (Enabled) = C:\Program Files\Sony\PLAYSTATION Network Downloader\nppsndl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.0.50917.0\npctrl.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: Google Translate = C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb\1.2.3.1_0\
CHR - Extension: Brushed = C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\bfjgbcjfpbbfepcccpaffkjofcmglifg\1.0_0\
CHR - Extension: YouTube = C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.3_0\
CHR - Extension: Chrome YouTube Downloader = C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\cbdjiinahkdjdcdlgfimlcolkjpbooja\2.6.2_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.16_0\
CHR - Extension: timeStats beta = C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ejifodhjoeeenihgfpjijjmpomaphmah\0.61_0\
CHR - Extension: Highlight to Search (by Google) = C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\floipahigmmkfhkoapmnijnlnboniglg\1.0.34_0\
CHR - Extension: Cargo Bridge: Armor Games Edition = C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\hlpiaibleklmjieibbnmkignbggodmmj\2.1.1_0\
CHR - Extension: Picnik = C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\inmnggcpelemfookhlhkdfbechcdadfp\1.0.6_0\
CHR - Extension: Downloads = C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jfchnphgogjhineanplmfkofljiagjfb\1_0\
CHR - Extension: Cargo Bridge = C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\keembkgclppcbilkekfgpobhldjjhpmn\1.5.7_0\
CHR - Extension: HootSuite = C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\kneloppijbcidgidihgdjnooihjcdbij\5.244_0\
CHR - Extension: Extensions Manager (aka Switcher) = C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lpleipinonnoibneeejgjnoeekmbopbc\0.1.7.35_0\

O1 HOSTS File: ([2012.02.02 14:50:22 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O3 - HKU\S-1-5-21-2025429265-413027322-839522115-1029\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NPSStartup] File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKU\S-1-5-21-2025429265-413027322-839522115-1029..\Run: [SimpleShare] C:\Program Files\Box\SimpleShare\simpleshare.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Privacy present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2025429265-413027322-839522115-1029\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O16 - DPF: {00000055-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... BC/fhg.CAB (Reg Error: Value error.)
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/ ... ontrol.cab (Office Genuine Advantage Validation Tool)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/microsoftup ... 6809844562 (WUWebControl Class)
O16 - DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} https://www.mojedatovaschranka.cz/stati ... ctivex.cab (Reg Error: Key error.)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftup ... 7346423750 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {98B23776-D845-49B4-876F-32486810E89C} http://160.218.160.89/Install/VWPSetup.cab (Video Web Phone Installer)
O16 - DPF: {99FE5072-78AA-4FEE-89BA-69A5FA55343F} http://download.microsoft.com/download/ ... dtoolx.cab (IGDTester Class)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} http://icq.oberon-media.com/Gameshell/G ... meHost.cab (Oberon Flash Game Host)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = Microsoft
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B8F30718-B03E-499A-9A65-E70274163652}: DhcpNameServer = 10.0.0.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 () - http://www.misch.cz/w/lovosice/images/2010/mmmm.jpg
O24 - Desktop Components:1 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.02.02 18:19:31 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009.01.22 07:51:59 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.VIA -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

Drivers32: MIDI1 - C:\WINDOWS\System32\Syncor11.dll (SoundMAX)
Drivers32: msacm.ac3acm - C:\WINDOWS\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3codecp - C:\WINDOWS\System32\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\WINDOWS\System32\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.lhacm - C:\WINDOWS\System32\lhacm.acm (Microsoft Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: VIDC.FMVC - C:\WINDOWS\System32\fmcodec.DLL (Fox Magic Software)
Drivers32: VIDC.FPS1 - C:\WINDOWS\System32\frapsvid.dll (Beepa P/L)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.MP42 - mpg4c32.dll File not found
Drivers32: VIDC.MPG4 - mpg4c32.dll File not found
Drivers32: vidc.tscc - C:\WINDOWS\system32\tsccvid.dll (TechSmith Corporation)
Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP62 - C:\WINDOWS\System32\vp6vfw.dll (On2.com)
Drivers32: VIDC.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\WINDOWS\System32\yv12vfw.dll (www.helixcommunity.org)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2012.02.02 14:51:28 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Minecraft\Plocha\OTL.exe
[2012.02.01 20:08:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Minecraft\Nabídka Start\Programy\CCleaner
[2012.02.01 20:00:10 | 000,000,000 | ---D | C] -- C:\rsit
[2012.02.01 19:33:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Minecraft\Dokumenty\FotoMorph Data
[2012.01.31 14:23:37 | 000,000,000 | -HSD | C] -- C:\found.002
[2012.01.29 17:04:42 | 000,000,000 | ---D | C] -- C:\Program Files\Sony Ericsson
[2012.01.29 11:58:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Minecraft\Data aplikací\.minecraft
[2012.01.28 17:07:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Minecraft\Dokumenty\Bluetooth
[2012.01.28 17:07:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\bluesoleil
[2012.01.28 13:24:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Minecraft\Data aplikací\Nokia
[2012.01.28 12:07:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Minecraft\Data aplikací\MyPhoneExplorer
[2012.01.28 12:07:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\MyPhoneExplorer
[2011.12.23 11:08:05 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Minecraft\Data aplikací\pcouffin.sys
[1980.01.01 01:01:01 | 004,608,000 | ---- | C] (NVIDIA Corporation) -- C:\Program Files\nvrszhc.dll
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2012.02.03 15:44:24 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.02.03 15:38:42 | 000,000,390 | -H-- | M] () -- C:\WINDOWS\tasks\MpIdleTask.job
[2012.02.03 15:37:46 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2012.02.03 15:37:12 | 000,557,808 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.02.03 15:37:12 | 000,436,006 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.02.03 15:37:11 | 001,404,012 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2012.02.03 15:37:11 | 000,479,630 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2012.02.03 15:33:51 | 000,004,074 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2012.02.03 15:33:40 | 000,000,306 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job
[2012.02.03 15:33:39 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.02.03 15:33:39 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cc9408bc6c11b0.job
[2012.02.03 15:32:40 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.02.03 15:32:38 | 1341,706,240 | -HS- | M] () -- C:\hiberfil.sys
[2012.02.03 15:32:36 | 000,000,000 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP
[2012.02.02 17:21:53 | 000,384,816 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.02.02 14:51:23 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Minecraft\Plocha\OTL.exe
[2012.02.02 14:50:22 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2012.02.02 07:09:00 | 000,000,990 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-413027322-839522115-1029Core1cce1707599c420.job
[2012.02.01 20:11:40 | 000,106,142 | ---- | M] () -- C:\Documents and Settings\Minecraft\Dokumenty\klener 1.2.2012.reg
[2012.02.01 20:08:15 | 000,000,693 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\CCleaner.lnk
[2012.02.01 19:33:24 | 000,000,050 | ---- | M] () -- C:\user.js
[2012.01.31 19:55:23 | 000,002,300 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\Google Chrome.lnk
[2012.01.31 13:44:05 | 000,237,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2012.01.30 14:35:18 | 000,068,637 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\379862_245139622221081_542672348_n.jpg
[2012.01.29 16:31:50 | 000,000,032 | ---- | M] () -- C:\WINDOWS\0
[2012.01.29 12:45:00 | 000,000,970 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-413027322-839522115-1003Core1cc4ea5278f7e2c.job
[2012.01.28 18:20:06 | 000,000,096 | ---- | M] () -- C:\WINDOWS\BsMobileModel.ini
[2012.01.28 13:28:17 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_User_PCCSWpdDriver_01_09_00.Wdf
[2012.01.28 13:28:08 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_user_01_09_00.Wdf
[2012.01.28 12:07:14 | 000,000,870 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\MyPhoneExplorer.lnk
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012.02.03 14:42:18 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.02.02 07:04:01 | 000,000,990 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-413027322-839522115-1029Core1cce1707599c420.job
[2012.02.01 20:11:36 | 000,106,142 | ---- | C] () -- C:\Documents and Settings\Minecraft\Dokumenty\klener 1.2.2012.reg
[2012.02.01 20:08:15 | 000,000,693 | ---- | C] () -- C:\Documents and Settings\Minecraft\Plocha\CCleaner.lnk
[2012.02.01 19:33:24 | 000,000,050 | ---- | C] () -- C:\user.js
[2012.01.31 19:53:02 | 000,000,936 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cc9408bc6c11b0.job
[2012.01.30 14:35:18 | 000,068,637 | ---- | C] () -- C:\Documents and Settings\Minecraft\Plocha\379862_245139622221081_542672348_n.jpg
[2012.01.28 17:09:54 | 000,000,096 | ---- | C] () -- C:\WINDOWS\BsMobileModel.ini
[2012.01.28 13:28:17 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_User_PCCSWpdDriver_01_09_00.Wdf
[2012.01.28 13:28:08 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_user_01_09_00.Wdf
[2012.01.28 12:07:14 | 000,000,870 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\MyPhoneExplorer.lnk
[2012.01.23 13:33:40 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Minecraft\Data aplikací\$_hpcst$.hpc
[2011.12.23 11:08:05 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Minecraft\Data aplikací\inst.exe
[2011.12.23 11:08:05 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Minecraft\Data aplikací\pcouffin.cat
[2011.12.23 11:08:05 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Minecraft\Data aplikací\pcouffin.inf
[2011.10.11 19:54:05 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2011.10.02 16:00:45 | 000,013,312 | ---- | C] () -- C:\Documents and Settings\Minecraft\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.09.30 15:47:03 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
[2011.09.30 15:47:03 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
[2011.09.30 15:47:03 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
[2011.08.28 13:04:21 | 000,299,923 | ---- | C] () -- C:\WINDOWS\System32\drivers\sonyhcs.sys
[2011.08.28 13:04:21 | 000,038,739 | ---- | C] () -- C:\WINDOWS\System32\drivers\sonyhcc.sys
[2011.08.28 13:04:21 | 000,006,097 | ---- | C] () -- C:\WINDOWS\System32\drivers\sonyhcb.sys
[2011.08.28 13:04:21 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll
[2011.08.28 13:04:20 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\SONYHCY.DLL
[2011.08.06 05:57:38 | 000,020,992 | R--- | C] () -- C:\WINDOWS\svchost.exe
[2011.07.01 16:42:39 | 000,000,048 | ---- | C] () -- C:\WINDOWS\netmasher.ini
[2011.06.13 16:31:24 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2011.05.12 17:06:27 | 000,715,038 | ---- | C] () -- C:\WINDOWS\unins000.exe
[2011.05.12 17:06:27 | 000,022,866 | ---- | C] () -- C:\WINDOWS\unins000.dat
[2011.03.31 14:54:31 | 000,000,985 | ---- | C] () -- C:\WINDOWS\Aeditor.INI
[2011.03.31 14:54:10 | 000,000,299 | ---- | C] () -- C:\WINDOWS\ULEAD32.INI
[2011.03.31 14:50:22 | 000,000,014 | ---- | C] () -- C:\WINDOWS\dswplug.ini
[2011.03.30 15:19:48 | 000,011,946 | ---- | C] () -- C:\WINDOWS\System32\ftpctrs.ini
[2011.03.30 15:19:46 | 000,058,716 | ---- | C] () -- C:\WINDOWS\System32\w3ctrs.ini
[2011.03.30 15:19:46 | 000,014,691 | ---- | C] () -- C:\WINDOWS\System32\axperf.ini
[2011.03.30 15:19:44 | 000,018,097 | ---- | C] () -- C:\WINDOWS\System32\infoctrs.ini
[2011.03.19 15:05:46 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\excltmp~.dat
[2011.03.19 15:05:45 | 000,000,140 | -H-- | C] () -- C:\WINDOWS\System32\ctlsw.ini
[2011.03.19 15:05:42 | 000,000,156 | ---- | C] () -- C:\WINDOWS\System32\SWCTL.DLL
[2011.03.05 20:59:45 | 000,001,035 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini
[2011.02.25 12:17:27 | 000,000,070 | ---- | C] () -- C:\WINDOWS\System32\oledb.dll
[2011.02.02 18:25:34 | 000,000,169 | ---- | C] () -- C:\WINDOWS\RtlRack.ini
[2011.02.02 18:21:22 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2011.02.02 18:21:19 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2011.02.02 18:21:19 | 000,040,448 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2011.02.02 18:21:17 | 009,179,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPL.EXE
[2011.01.31 21:02:45 | 000,138,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2011.01.31 21:02:32 | 000,234,536 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2011.01.31 21:02:19 | 000,075,064 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2011.01.27 20:06:55 | 000,000,283 | ---- | C] () -- C:\WINDOWS\d.ini
[2011.01.27 14:12:39 | 000,000,048 | ---- | C] () -- C:\WINDOWS\cgminivw.ini
[2011.01.20 19:46:07 | 000,444,283 | ---- | C] () -- C:\Program Files\Common Files\WinPcapNmap.exe
[2010.12.28 14:46:59 | 000,018,944 | ---- | C] () -- C:\WINDOWS\System32\xrxscnui.dll
[2010.12.25 09:51:13 | 000,482,408 | ---- | C] () -- C:\WINDOWS\ssndii.exe
[2010.12.24 19:11:00 | 000,113,768 | ---- | C] () -- C:\WINDOWS\Wiainst.exe
[2010.12.24 19:10:19 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\sso1ml3.dll
[2010.12.24 19:09:11 | 000,191,488 | ---- | C] () -- C:\WINDOWS\System32\SaXPWIA.dll
[2010.12.24 19:09:11 | 000,140,288 | ---- | C] () -- C:\WINDOWS\System32\SaXPEH.dll
[2010.12.24 19:09:11 | 000,138,240 | ---- | C] () -- C:\WINDOWS\System32\SaXPUIEx.dll
[2010.12.24 19:09:11 | 000,117,248 | ---- | C] () -- C:\WINDOWS\System32\SaXPIPH.dll
[2010.12.24 19:09:11 | 000,088,064 | ---- | C] () -- C:\WINDOWS\System32\SaXPSTI.dll
[2010.12.19 15:41:55 | 000,000,325 | ---- | C] () -- C:\WINDOWS\System32\restore.ini
[2010.12.19 14:11:51 | 000,000,053 | ---- | C] () -- C:\WINDOWS\Eraser.INI
[2010.12.18 18:18:32 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010.12.18 18:18:23 | 000,810,496 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010.12.18 18:18:23 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010.12.18 18:18:22 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010.12.13 16:42:48 | 000,000,000 | ---- | C] () -- C:\WINDOWS\dbgout.INI
[2010.10.28 13:43:53 | 000,000,528 | ---- | C] () -- C:\WINDOWS\b32c4g.dll
[2010.10.28 12:52:54 | 000,001,968 | ---- | C] () -- C:\WINDOWS\System32\u8.dll
[2010.10.17 20:49:34 | 001,089,656 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2010.10.17 10:09:32 | 000,001,370 | ---- | C] () -- C:\WINDOWS\gattaca.ini
[2010.09.18 16:43:01 | 000,000,024 | ---- | C] () -- C:\WINDOWS\LogonStudio.ini
[2010.09.18 16:42:46 | 000,187,392 | ---- | C] () -- C:\WINDOWS\System32\JPGUtils.dll
[2010.08.29 12:58:09 | 000,001,024 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\Events.actmon
[2010.08.29 12:58:09 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\unexptermination
[2010.08.04 11:38:09 | 000,000,193 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\Microsoft.SqlServer.Compact.351.32.bc
[2010.06.13 15:09:13 | 000,001,012 | ---- | C] () -- C:\WINDOWS\pear.ini
[2010.06.10 18:21:13 | 000,000,328 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2010.02.20 15:51:51 | 000,000,189 | ---- | C] () -- C:\WINDOWS\ibutils.ini
[2010.02.20 15:51:06 | 000,000,024 | ---- | C] () -- C:\WINDOWS\IBConnections.ini
[2010.02.15 21:48:18 | 000,000,026 | ---- | C] () -- C:\WINDOWS\Viewer.INI
[2010.01.16 19:33:40 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010.01.16 19:33:39 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010.01.16 19:33:39 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010.01.16 19:33:39 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010.01.16 19:33:39 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2009.12.24 19:58:26 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2009.12.24 19:58:26 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2009.12.23 08:33:54 | 000,000,169 | ---- | C] () -- C:\WINDOWS\Jahoda.ini
[2009.12.23 08:30:13 | 000,000,169 | ---- | C] () -- C:\WINDOWS\Visen.ini
[2009.12.23 08:26:37 | 000,000,149 | ---- | C] () -- C:\WINDOWS\Pomeranc.ini
[2009.12.23 08:24:23 | 000,000,169 | ---- | C] () -- C:\WINDOWS\Citron.ini
[2009.12.23 08:23:27 | 000,000,171 | ---- | C] () -- C:\WINDOWS\Vanilka.ini
[2009.12.23 08:11:37 | 000,000,047 | ---- | C] () -- C:\WINDOWS\Disney.ini
[2009.12.14 15:49:26 | 000,000,103 | ---- | C] () -- C:\WINDOWS\pro.INI
[2009.12.14 15:46:02 | 000,000,008 | ---- | C] () -- C:\WINDOWS\schedule.dat
[2009.12.04 21:57:50 | 000,000,159 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2009.11.20 12:47:43 | 000,003,972 | ---- | C] () -- C:\WINDOWS\System32\drivers\PciBus.sys
[2009.11.11 16:08:29 | 000,056,320 | R--- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
[2009.09.08 14:22:32 | 000,000,044 | ---- | C] () -- C:\WINDOWS\SILCOM_P.INI
[2009.08.03 14:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
[2009.07.13 08:09:06 | 000,000,232 | ---- | C] () -- C:\WINDOWS\CROCCLIP.INI
[2009.07.13 07:51:42 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI
[2009.07.06 17:50:20 | 000,000,054 | ---- | C] () -- C:\WINDOWS\System32\rp_stats.dat
[2009.07.06 17:50:20 | 000,000,039 | ---- | C] () -- C:\WINDOWS\System32\rp_rules.dat
[2009.06.20 20:11:06 | 000,047,104 | ---- | C] () -- C:\WINDOWS\AKDeInstall.exe
[2009.06.17 17:23:32 | 000,000,340 | ---- | C] () -- C:\WINDOWS\ADStahovac.INI
[2009.06.14 08:40:36 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009.06.04 17:18:07 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2009.04.13 07:06:02 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2009.04.10 17:23:44 | 000,011,746 | ---- | C] () -- C:\WINDOWS\mhotkey_reg.ini
[2009.04.10 17:23:41 | 000,580,096 | ---- | C] () -- C:\WINDOWS\mHotkey.exe
[2009.04.10 17:23:41 | 000,294,912 | ---- | C] () -- C:\WINDOWS\PIC.dll
[2009.04.10 17:23:41 | 000,036,864 | ---- | C] () -- C:\WINDOWS\LchDrvKey.exe
[2009.01.26 13:26:09 | 000,000,005 | ---- | C] () -- C:\Program Files\trl.trl
[2009.01.23 19:22:50 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2009.01.22 20:10:46 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009.01.22 19:09:59 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009.01.22 13:10:28 | 000,000,486 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009.01.22 12:41:59 | 000,003,847 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2009.01.22 09:22:51 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\msssc.dll
[2009.01.22 09:21:24 | 000,003,797 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2009.01.22 09:21:22 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2009.01.22 07:54:53 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2009.01.22 07:48:25 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009.01.21 17:35:08 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009.01.21 17:33:58 | 000,384,816 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008.12.07 12:44:54 | 000,030,088 | ---- | C] () -- C:\WINDOWS\System32\drivers\btnetBus.sys
[2008.05.26 22:22:14 | 000,015,552 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2008.05.26 22:22:10 | 000,021,464 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2008.05.26 22:22:04 | 000,014,910 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2008.05.26 21:59:42 | 000,018,904 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008.05.26 21:59:40 | 000,106,605 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschema.bin
[2008.04.22 16:03:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008.04.22 16:03:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2008.04.22 16:03:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2008.04.22 16:03:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2008.04.22 16:03:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2008.04.22 16:03:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2008.04.22 16:03:14 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008.04.22 16:03:14 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll

[2008.04.22 16:03:14 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2007.10.25 17:26:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2005.10.14 11:56:50 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2005.10.14 11:56:50 | 000,344,064 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005.10.14 11:56:50 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2005.10.14 11:56:50 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2005.10.14 11:56:50 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2005.10.14 11:56:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2004.08.17 14:58:58 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004.08.17 14:49:24 | 000,000,039 | ---- | C] () -- C:\WINDOWS\mvpm.ini
[2004.08.02 13:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2002.03.17 01:00:00 | 000,007,420 | ---- | C] () -- C:\WINDOWS\UA000106.DLL
[2002.03.17 01:00:00 | 000,007,420 | ---- | C] () -- C:\WINDOWS\UA000019.DLL
[2001.10.25 15:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001.10.25 15:00:00 | 001,404,012 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2001.10.25 15:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2001.10.25 15:00:00 | 000,557,808 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2001.10.25 15:00:00 | 000,479,630 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2001.10.25 15:00:00 | 000,436,006 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2001.10.25 15:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2001.10.25 15:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2001.10.25 15:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2001.10.25 15:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2001.10.25 15:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2001.10.25 15:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2001.10.25 15:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2001.10.25 15:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[1996.04.03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

========== LOP Check ==========

[2010.08.29 13:28:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Data aplikací\Spyware Terminator
[2010.08.23 12:22:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ActivityMon
[2010.02.18 20:44:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AlawarWrapper
[2011.01.27 15:29:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2011.01.01 14:14:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Astroburn Pro
[2011.09.13 13:51:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AutoHideIP
[2011.02.16 18:18:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Bluetooth
[2011.01.02 20:00:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\BOINC
[2011.12.11 16:22:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
[2011.12.04 07:43:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\BVRP Software
[2011.01.06 00:01:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Canneverbe Limited
[2011.11.03 16:40:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ConMet
[2010.07.26 09:20:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2011.02.03 18:17:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2010.02.18 16:37:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\FarmFrenzy2
[2011.03.31 19:41:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Fraus
[2011.09.13 13:52:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\H__Instal_auto-hide-ip-5-1-2-8-full_Auto Hide IP 5.1.2.8 Full_Crack_AutoHideIP.exe
[2010.02.24 16:18:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2012.01.28 13:19:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2011.10.22 15:45:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2010.02.27 18:21:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IsolatedStorage
[2010.06.26 14:41:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Karen's Power Tools
[2009.01.23 11:32:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\LightScribe
[2010.08.29 12:58:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Logs
[2010.12.28 17:59:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Make A Voozie
[2010.10.12 19:59:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MaskMyIP
[2010.05.04 18:08:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Monotea
[2009.01.26 13:56:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MSScanAppDataDir
[2010.06.12 08:50:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MySQL
[2010.09.24 19:50:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Paessler
[2012.01.28 13:26:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2011.07.22 19:35:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle
[2011.09.13 14:12:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PlatinumHideIP
[2009.12.24 09:02:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Playrix Entertainment
[2010.11.28 15:55:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ReviverSoft
[2011.08.06 07:36:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SimCity Societies
[2011.08.17 15:54:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Soluto
[2009.04.29 17:54:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Sony
[2010.05.20 15:02:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Souptoys
[2010.05.20 15:02:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Souptoys2
[2011.12.25 18:59:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Stardock
[2009.08.05 20:51:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Tages
[2010.06.26 14:34:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TamoSoft
[2012.01.05 17:20:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TechSmith
[2012.01.11 18:22:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2010.12.23 10:09:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TERMINAL Studio
[2011.10.24 09:38:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ulead Systems
[2009.07.04 13:48:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\VirtualFarm
[2010.12.31 08:48:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\VirtualizedApplications
[2009.12.13 00:47:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\vsosdk
[2012.01.04 18:03:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\WeGame
[2009.12.04 07:32:21 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{AAAE891E-DC50-4DD4-A79D-C19DDB94E30E}
[2009.11.02 19:50:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}
[2009.03.02 16:43:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Data aplikací\Spyware Terminator
[2012.02.02 16:13:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\.minecraft
[2012.01.02 10:28:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Ascaron Entertainment
[2012.01.24 14:27:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Audacity
[2011.10.22 08:54:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Avnex
[2011.10.09 07:53:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Blender Foundation
[2011.11.03 16:40:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\ConMet
[2011.11.24 19:04:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\DAEMON Tools Lite
[2011.12.31 10:31:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Dropbox
[2011.12.04 07:50:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\GlarySoft
[2011.10.31 07:25:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\MaskMyIP
[2011.10.16 18:40:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Mount&Blade Warband
[2012.01.29 19:50:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\MyPhoneExplorer
[2012.01.28 13:30:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Nokia
[2011.11.15 18:14:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Notepad++
[2012.01.28 13:26:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\PC Suite
[2011.12.12 17:51:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\pymclevel
[2012.01.23 13:33:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Samsung
[2011.12.22 21:31:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Sony
[2011.12.23 11:10:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Toolbar4
[2011.12.11 16:28:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\TS3Client
[2011.10.24 09:25:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Ulead Systems
[2011.10.13 19:05:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\VitySoft
[2011.12.23 11:08:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Vso
[2012.01.04 17:58:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\WeGame
[2011.12.01 20:06:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Windows Desktop Search
[2011.10.02 15:23:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Windows Search
[2011.08.07 02:43:00 | 000,000,340 | ---- | M] () -- C:\WINDOWS\Tasks\Driver Robot.job
[2012.02.03 15:33:40 | 000,000,306 | ---- | M] () -- C:\WINDOWS\Tasks\GlaryInitialize.job
[2012.02.03 15:37:46 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
[2012.02.03 15:38:42 | 000,000,390 | -H-- | M] () -- C:\WINDOWS\Tasks\MpIdleTask.job

========== Purity Check ==========



========== Custom Scans ==========


< netsvc >


< MD5 for: ATAPI.SYS >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2009.01.22 12:26:46 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2009.01.22 12:26:46 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0011\DriverFiles\i386\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2004.08.17 14:49:22 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2009.01.22 12:26:46 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2009.01.22 12:26:46 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.05.02 11:49:39 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\Driver Cache\i386\cdrom.sys
[2008.05.02 11:49:39 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\system32\dllcache\cdrom.sys
[2008.05.02 11:49:39 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004.08.03 21:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004.08.17 14:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: HAL.DLL >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2009.01.22 12:26:46 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2009.01.22 12:26:46 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 19:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008.04.13 19:31:28 | 000,131,840 | ---- | M] (Microsoft Corporation) MD5=6F61D3287A6A15A08A9433222C09D17F -- C:\WINDOWS\system32\HAL.DLL
[2004.08.03 21:59:10 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: SCECLI.DLL >
[2004.08.17 14:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SVCHOST.EXE >
[2008.04.14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2008.04.14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.17 14:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
[2008.06.18 14:47:25 | 000,020,992 | R--- | M] () Unable to obtain MD5 -- C:\WINDOWS\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.06.20 11:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 11:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2008.04.13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\ERDNT\cache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\SoftwareDistribution\Download\fe608cd8d2b8f77abaee7a69a696bcf7\sp3qfe\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2008.04.14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.17 14:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004.08.17 14:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008.04.14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< %systemroot%*.* /U /s >
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[5 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\WINDOWS\CSC\*.tmp files -> C:\WINDOWS\CSC\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\1b755e39cbc7b4281c746a7b5f1cb296\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\1b755e39cbc7b4281c746a7b5f1cb296\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\2754ec1593865b0d91b417b3e3f8ea21\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\2754ec1593865b0d91b417b3e3f8ea21\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\293ae8bbb2eff22fab142479ee7ea4dc\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\293ae8bbb2eff22fab142479ee7ea4dc\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\297e010eedecb73f780d95068d5339ad\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\297e010eedecb73f780d95068d5339ad\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\39aad1bd84f7dfab235459756a24479f\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\39aad1bd84f7dfab235459756a24479f\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\43a1130c21d1f721a5e214c315ddc88b\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\43a1130c21d1f721a5e214c315ddc88b\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\8f6d7f428e2f5d0686db1a5a2675eef6\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\8f6d7f428e2f5d0686db1a5a2675eef6\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\9a2a46df216d84cd0b13bb0966ed011e\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\9a2a46df216d84cd0b13bb0966ed011e\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\aefabcb058c135655383b4d3b91d48b4\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\aefabcb058c135655383b4d3b91d48b4\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\b6623df7bc8dff9560fef2a80ab369be\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\b6623df7bc8dff9560fef2a80ab369be\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\c2170bf11b086dd2760380940bcbdbbc\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\c2170bf11b086dd2760380940bcbdbbc\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\c74d9faef47dc59d455c8f45fa9672fa\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\c74d9faef47dc59d455c8f45fa9672fa\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\c7719471f1ece400e3c4ca6146a753e9\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\c7719471f1ece400e3c4ca6146a753e9\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\cf719f1d7800c04efd4b1796edb2edc3\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\cf719f1d7800c04efd4b1796edb2edc3\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\d5e70aa23b9abe6d0bcb08de43514748\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\d5e70aa23b9abe6d0bcb08de43514748\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\dabd1c9ee4b930386adf1eed0bd396bb\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\dabd1c9ee4b930386adf1eed0bd396bb\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\dbefdbfa5f958742be133870d439deca\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\dbefdbfa5f958742be133870d439deca\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\dbfbea1dd819b4d8043b1a8cb2284259\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\dbfbea1dd819b4d8043b1a8cb2284259\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\df343ae14e0dbb3c6f51596820572d95\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\df343ae14e0dbb3c6f51596820572d95\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\e4557cdba4838588fc862214c9657faa\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\e4557cdba4838588fc862214c9657faa\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\efa32316febcfac09315ad2d1c8c7546\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\efa32316febcfac09315ad2d1c8c7546\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\fac191dbe573e416504e7407a8d3fa3b\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\fac191dbe573e416504e7407a8d3fa3b\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\fdb3bc03625af4bad68eb38e4c852e23\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\fdb3bc03625af4bad68eb38e4c852e23\*.tmp -> ]
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[1 C:\WINDOWS\system32\config\systemprofile\Local Settings\Data aplikací\SoftGrid Client\140061.CSY-90140011-61-405\*.tmp files -> C:\WINDOWS\system32\config\systemprofile\Local Settings\Data aplikací\SoftGrid Client\140061.CSY-90140011-61-405\*.tmp -> ]
[9 C:\WINDOWS\system32\spool\drivers\w32x86\3\*.tmp files -> C:\WINDOWS\system32\spool\drivers\w32x86\3\*.tmp -> ]
[1 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]
[1 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a\*.tmp files -> C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a\*.tmp -> ]
[1 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\*.tmp files -> C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >
[2010.06.19 09:31:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
[2010.08.04 11:37:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Soluto

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2012.02.02 16:13:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\.minecraft
[2011.11.15 21:27:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Adobe
[2012.01.02 10:28:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Ascaron Entertainment
[2012.01.24 14:27:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Audacity
[2011.10.22 08:54:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Avnex
[2011.10.09 07:53:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Blender Foundation
[2011.11.03 16:40:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\ConMet
[2011.11.24 19:04:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\DAEMON Tools Lite
[2011.12.31 10:31:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Dropbox
[2011.12.04 07:50:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\GlarySoft
[2011.10.04 19:43:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Help
[2011.10.02 15:18:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Identities
[2011.10.24 09:18:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\InstallShield
[2011.10.02 15:21:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Macromedia
[2011.10.31 07:25:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\MaskMyIP
[2012.01.09 21:31:01 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Microsoft
[2011.10.16 18:40:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Mount&Blade Warband
[2011.12.16 15:42:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Mozilla
[2012.01.29 19:50:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\MyPhoneExplorer
[2012.01.28 13:30:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Nokia
[2011.11.15 18:14:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Notepad++
[2012.01.28 13:26:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\PC Suite
[2011.12.12 17:51:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\pymclevel
[2012.01.23 13:33:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Samsung
[2012.01.31 20:38:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Skype
[2011.11.01 16:03:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\skypePM
[2011.12.22 21:31:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Sony
[2011.10.02 15:32:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Sun
[2011.12.23 11:10:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Toolbar4
[2011.12.11 16:28:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\TS3Client
[2011.10.24 09:25:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Ulead Systems
[2011.10.13 19:05:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\VitySoft
[2011.12.23 11:08:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Vso
[2012.01.04 17:58:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\WeGame
[2011.12.01 20:06:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Windows Desktop Search
[2011.10.02 15:23:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\Windows Search
[2011.10.02 15:33:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Minecraft\Data aplikací\WinRAR

< %APPDATA%\*.exe /s >
[2011.12.23 11:08:05 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\Minecraft\Data aplikací\inst.exe
[2012.01.08 17:40:13 | 001,267,752 | R--- | M] () -- C:\Documents and Settings\Minecraft\Data aplikací\Microsoft\Installer\{22296944-6793-46EF-9C67-5B6E9048666E}\simpleshare.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2001.07.03 19:33:00 | 000,053,248 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\SONYHCY.DLL
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job >
[2011.08.07 02:43:00 | 000,000,340 | ---- | M] () -- C:\WINDOWS\Tasks\Driver Robot.job
[2012.02.03 15:33:40 | 000,000,306 | ---- | M] () -- C:\WINDOWS\Tasks\GlaryInitialize.job
[2012.02.03 15:33:39 | 000,000,936 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cc9408bc6c11b0.job
[2012.01.29 12:45:00 | 000,000,970 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-413027322-839522115-1003Core1cc4ea5278f7e2c.job
[2012.02.02 07:09:00 | 000,000,990 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-413027322-839522115-1029Core1cce1707599c420.job
[2012.02.03 15:37:46 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
[2012.02.03 16:04:30 | 000,000,390 | -H-- | M] () -- C:\WINDOWS\Tasks\MpIdleTask.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2001.11.05 08:23:14 | 000,006,097 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sonyhcb.sys
[2001.11.05 08:23:20 | 000,038,739 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sonyhcc.sys
[2001.11.05 08:23:52 | 000,299,923 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sonyhcs.sys
[2010.12.25 19:53:11 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys

< %systemroot%\System32\config\*.sav >
[2009.01.21 17:33:03 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2009.01.21 17:33:03 | 000,663,552 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2009.01.21 17:33:03 | 000,458,752 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >
[2001.07.03 19:33:00 | 000,053,248 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\SONYHCY.DLL
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2012.02.02 17:21:53 | 000,384,816 | ---- | M] () -- C:\WINDOWS\system32\FNTCACHE.DAT
[2012.02.03 15:33:51 | 000,004,074 | ---- | M] () -- C:\WINDOWS\system32\nvapps.xml
[2012.02.03 15:37:11 | 000,479,630 | ---- | M] () -- C:\WINDOWS\system32\perfc005.dat
[2012.02.03 15:37:12 | 000,436,006 | ---- | M] () -- C:\WINDOWS\system32\perfc009.dat
[2012.02.03 15:37:11 | 001,404,012 | ---- | M] () -- C:\WINDOWS\system32\perfh005.dat
[2012.02.03 15:37:12 | 000,557,808 | ---- | M] () -- C:\WINDOWS\system32\perfh009.dat
[2012.02.03 15:37:11 | 000,579,536 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI
[2012.02.03 15:33:39 | 000,002,206 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %userprofile%\Plocha\*.* >
[2012.01.30 14:35:18 | 000,068,637 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\379862_245139622221081_542672348_n.jpg
[2011.09.05 16:34:56 | 000,000,916 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\aTube Catcher.lnk
[2012.01.08 17:40:12 | 000,001,974 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\Box SimpleShare.lnk
[2012.02.01 20:08:15 | 000,000,693 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\CCleaner.lnk
[2012.01.18 19:39:14 | 000,012,223 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\Every Little Earthquake.mid
[2012.01.31 19:55:23 | 000,002,300 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\Google Chrome.lnk
[2011.10.08 07:50:04 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\Internet.lnk
[2011.10.08 09:42:55 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\KMPlayer.lnk
[2011.12.12 17:51:05 | 000,000,767 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\MCEdit.lnk
[2012.01.09 15:46:17 | 000,695,296 | ---- | M] (AnjoCaido) -- C:\Documents and Settings\Minecraft\Plocha\MinecraftSP.exe
[2011.11.15 18:12:48 | 000,000,753 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\Notepad++.lnk
[2011.10.06 18:28:19 | 000,000,112 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\Nový zástupce internetové adresy.url
[2012.02.02 14:51:23 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Minecraft\Plocha\OTL.exe
[2012.01.24 14:23:50 | 004,321,426 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\Queen - We Will Rock You.mp3
[2011.12.10 10:06:03 | 000,001,228 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\TeamSpeak 3 Client.lnk
[2011.11.17 19:38:37 | 000,000,785 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\Themes Creator.lnk
[2011.10.08 12:18:47 | 000,000,176 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\tru.txt
[2011.11.13 19:41:48 | 000,000,323 | ---- | M] () -- C:\Documents and Settings\Minecraft\Plocha\Zástupce - Transcend (H).lnk

< %userprofile%\Desktop\*.* >

< %ALLUSERSPROFILE%\Plocha\*.* >
[2012.01.12 19:44:35 | 000,001,740 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2011.09.05 16:35:09 | 000,000,850 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\aTube Catcher.lnk
[2012.01.05 17:21:24 | 000,000,785 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Camtasia Studio 7.lnk
[2011.11.21 18:33:49 | 000,001,633 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Media Go.lnk
[2012.01.16 16:15:42 | 000,000,776 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Minecraft Note Block Studio.lnk
[2012.01.28 12:07:14 | 000,000,870 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\MyPhoneExplorer.lnk
[2012.01.01 11:30:43 | 000,001,778 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\NS Welcome Center.lnk
[2012.01.14 11:09:30 | 000,000,770 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Picasa 3.lnk
[2012.01.23 13:32:51 | 000,001,783 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Samsung New PC Studio.lnk

< %ALLUSERSPROFILE%\Desktop\*.* >

< *crack* /s >
[2011.11.03 16:46:56 | 000,000,777 | ---- | M] () -- \Documents and Settings\Minecraft\Data aplikací\Microsoft\Office\Naposledy otevřené\crack.LNK
[2011.11.03 16:46:56 | 000,000,950 | ---- | M] () -- \Documents and Settings\Minecraft\Data aplikací\Microsoft\Office\Naposledy otevřené\Návod na crack k NOD32---By Puthanek.LNK
[2009.06.25 12:20:28 | 001,485,176 | ---- | M] () -- \WINDOWS\system32\LegitCheckControl.dll.wgacracked
[2006.06.02 16:34:42 | 000,000,101 | ---- | M] () -- \WINDOWS\system32\wgacracked.txt
[2008.09.05 23:31:14 | 000,267,304 | ---- | M] () -- \WINDOWS\system32\wgalogon.dll.wgacracked
[2008.09.05 23:30:04 | 000,951,336 | ---- | M] () -- \WINDOWS\system32\WgaTray.exe.wgacracked
[2 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]

< *keygen* /s >
[2012.01.05 17:16:29 | 000,000,514 | ---- | M] () -- \Documents and Settings\Minecraft\Recent\Camtasia-Studio-7-+-Keygen.lnk
[2012.01.28 16:52:09 | 000,000,507 | ---- | M] () -- \Documents and Settings\Minecraft\Recent\IVT-BlueSoleil-v6.4.249.0+CZ+KeyGen.lnk
[2012.01.05 17:16:29 | 000,000,669 | ---- | M] () -- \Documents and Settings\Minecraft\Recent\Keygen.lnk

< *loader* /s >
[2009.04.22 13:28:16 | 000,021,504 | R--- | M] () -- \$WINDOWS.~BT\Sources\en-us\upgloader.dll.mui
[2012.01.01 11:30:42 | 000,000,820 | ---- | M] () -- \Documents and Settings\All Users\Nabídka Start\Programy\Seven Remix XP\Tools\Reloader.lnk
[2009.01.22 09:22:57 | 000,001,479 | ---- | M] () -- \Documents and Settings\All Users\Nabídka Start\Programy\SoundMAX\DLS Loader.lnk
[2012.02.02 17:21:41 | 000,000,986 | ---- | M] () -- \Documents and Settings\Minecraft\Data aplikací\.minecraft\ModLoader.txt
[2012.02.02 16:14:00 | 000,000,125 | ---- | M] () -- \Documents and Settings\Minecraft\Data aplikací\.minecraft\config\ModLoader.cfg
[2012.01.09 14:13:44 | 000,002,485 | ---- | M] () -- \Documents and Settings\Minecraft\Data aplikací\Mozilla\Firefox\Profiles\hlx2qnct.default\extensions\staged\ffxtlbr@funmoods.com\content\loader.xul
[2012.01.15 18:55:07 | 000,088,347 | ---- | M] () -- \Documents and Settings\Minecraft\Dokumenty\Downloads\ModLoader 1.0.0.zip
[2012.01.15 18:46:06 | 000,089,249 | ---- | M] () -- \Documents and Settings\Minecraft\Dokumenty\Downloads\ModLoader.zip
[4 \Documents and Settings\Minecraft\Dokumenty\Downloads\*.tmp files -> \Documents and Settings\Minecraft\Dokumenty\Downloads\*.tmp -> ]
[2012.01.03 15:23:27 | 000,014,904 | ---- | M] () -- \Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\cbdjiinahkdjdcdlgfimlcolkjpbooja\2.6.2_0\script\Chrome-YouTube-Downloader.js
[2012.02.01 19:52:43 | 000,004,421 | ---- | M] () -- \Documents and Settings\Minecraft\Local Settings\Temporary Internet Files\Content.IE5\0IPNAZKK\moodsLoader[1].js
[2012.02.01 19:52:49 | 000,004,217 | ---- | M] () -- \Documents and Settings\Minecraft\Local Settings\Temporary Internet Files\Content.IE5\0IPNAZKK\mtloader[1].js
[2012.01.29 11:33:08 | 000,005,925 | ---- | M] () -- \Documents and Settings\Minecraft\Plocha\MCA\.minecraft\ModLoader.txt
[2012.01.29 11:33:07 | 000,000,405 | ---- | M] () -- \Documents and Settings\Minecraft\Plocha\MCA\.minecraft\config\ModLoader.cfg
[2012.01.29 11:33:20 | 000,000,046 | ---- | M] () -- \Documents and Settings\Minecraft\Plocha\MCA\.minecraft\config\mod_ModLoaderMp.cfg
[2012.01.29 12:37:50 | 000,000,394 | ---- | M] () -- \Documents and Settings\Minecraft\Recent\ModLoader.lnk
[2007.11.13 03:54:34 | 000,070,944 | ---- | M] () -- \Program Files\AGEIA Technologies\demos\physxloader.dll
[2003.06.26 18:10:12 | 000,106,496 | ---- | M] () -- \Program Files\Analog Devices\SoundMAX\DLSLoader.exe
[2002.08.30 15:09:00 | 000,000,595 | ---- | M] () -- \Program Files\Analog Devices\SoundMAX\DLSLoader.exe.manifest
[2000.11.28 08:09:52 | 000,045,056 | ---- | M] () -- \Program Files\Common Files\GraphBoard 2.50\InternetLoader.dll
[2006.10.26 13:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.dll
[2006.10.26 13:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.tlb
[2010.03.18 23:21:56 | 000,063,312 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader80.dll
[2010.03.18 00:17:14 | 000,004,096 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader80.tlb
[2009.11.08 21:01:54 | 000,249,672 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2009.11.08 21:01:54 | 000,018,248 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2011.07.18 22:33:32 | 000,008,787 | ---- | M] () -- \Program Files\Notepad++\user.manual\sites\all\modules\fancy_login\images\ajax-loader.gif
[2008.02.25 07:05:22 | 000,856,064 | ---- | M] () -- \Program Files\The KMPlayer\ImLoader.dll
[2008.06.20 18:13:32 | 000,044,032 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2011.07.01 16:22:48 | 000,487,685 | ---- | M] () -- \Temp\dwnld\HTTP\www.webdownloader.cz\webdownloader.zip
[2004.08.17 14:49:06 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2011.03.03 16:03:33 | 000,082,784 | ---- | M] () -- \WINDOWS\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2010.07.04 05:13:20 | 000,325,046 | ---- | M] () -- \WINDOWS\NiwradSoft Shell Pack\Tools\Reloader.exe
[2008.04.14 04:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.13 19:31:47 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.13 19:31:48 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 04:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[2008.05.26 11:15:14 | 000,070,936 | ---- | M] () -- \WINDOWS\system32\PhysXLoader.dll
[2 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2011.04.26 06:58:16 | 000,012,532 | ---- | M] () -- \WINDOWS\system32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2010.10.22 12:46:42 | 000,009,622 | ---- | M] () -- \WINDOWS\system32\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr

< *RemoveWAT* /s >

< *minodlogin* /s >

< *tnod* /s >

< *TemDono* /s >

< *AutoKMS* /s >

< *KMSEmulator* /s >

< *activator* /s >

< *serial* /s >
[2004.08.17 14:44:16 | 000,030,301 | ---- | M] () -- \cmdcons\SERIAL.SY_
[2009.08.05 20:51:56 | 000,000,023 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Tages\100663909\Serial.txt
[2012.01.14 11:06:27 | 000,000,024 | ---- | M] () -- \Documents and Settings\Minecraft\Local Settings\Data aplikací\Google\Picasa2\cache\cacheindex_serial.pmp
[2009.04.12 11:25:26 | 000,011,548 | ---- | M] () -- \Program Files\Common Files\Teleca Shared\DSS-20\USBSerialPort.PNF
[2009.04.12 11:25:26 | 000,011,532 | ---- | M] () -- \Program Files\Common Files\Teleca Shared\DSS-25\USBSerialPort.PNF
[2009.08.17 22:35:44 | 000,141,168 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\System.Runtime.Serialization.Json.dll
[2009.04.14 09:47:30 | 000,000,464 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\System.Runtime.Serialization.Json.extmap.xml
[2009.06.11 04:20:48 | 000,006,699 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\System.Runtime.Serialization.Json.xml
[2009.08.17 22:35:44 | 000,321,392 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\System.Xml.Serialization.dll
[2009.04.14 09:56:20 | 000,000,437 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\System.Xml.Serialization.extmap.xml
[2009.06.11 04:20:48 | 000,149,896 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\System.Xml.Serialization.xml
[2009.08.17 22:35:44 | 000,022,408 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\de\System.Runtime.Serialization.Json.Resources.dll
[2009.08.17 22:35:44 | 000,046,976 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\de\System.Xml.Serialization.Resources.dll
[2009.08.17 22:35:44 | 000,022,408 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\es\System.Runtime.Serialization.Json.Resources.dll
[2009.08.17 22:35:44 | 000,046,968 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\es\System.Xml.Serialization.Resources.dll
[2009.08.17 22:35:44 | 000,022,936 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\fr\System.Runtime.Serialization.Json.Resources.dll
[2009.08.17 22:35:44 | 000,046,968 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\fr\System.Xml.Serialization.Resources.dll
[2009.08.17 22:35:44 | 000,022,424 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\it\System.Runtime.Serialization.Json.Resources.dll
[2009.08.17 22:35:44 | 000,046,968 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\it\System.Xml.Serialization.Resources.dll
[2009.08.17 22:35:44 | 000,034,712 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\ja\System.Runtime.Serialization.Json.Resources.dll
[2009.08.17 22:35:44 | 000,051,072 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\ja\System.Xml.Serialization.Resources.dll
[2009.08.17 22:35:44 | 000,022,408 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\ko\System.Runtime.Serialization.Json.Resources.dll
[2009.08.17 22:35:44 | 000,046,968 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\ko\System.Xml.Serialization.Resources.dll
[2009.08.17 22:35:44 | 000,030,616 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\zh-Hans\System.Runtime.Serialization.Json.Resources.dll
[2009.08.17 22:35:44 | 000,042,880 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\zh-Hans\System.Xml.Serialization.Resources.dll
[2009.08.17 22:35:44 | 000,030,616 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\zh-Hant\System.Runtime.Serialization.Json.Resources.dll
[2009.08.17 22:35:44 | 000,042,872 | ---- | M] () -- \Program Files\Microsoft SDKs\Silverlight\v3.0\Libraries\Client\zh-Hant\System.Xml.Serialization.Resources.dll
[2010.09.16 23:07:12 | 000,413,696 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.0.50917.0\System.Runtime.Serialization.dll
[2010.10.17 20:49:00 | 001,186,816 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.0.50917.0\System.Runtime.Serialization.ni.dll
[2005.10.28 15:29:20 | 000,000,592 | ---- | M] () -- \Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\VBSnippets\1033\Connectivity\EnumerateSerialPorts.snippet
[2005.10.28 15:29:20 | 000,001,178 | ---- | M] () -- \Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\VBSnippets\1033\Connectivity\ReadDatafromaSerialPort.snippet
[2005.10.28 15:29:20 | 000,001,492 | ---- | M] () -- \Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\VBSnippets\1033\Connectivity\UseaSerialPorttoDialaPhoneNumber.snippet
[2009.08.17 21:34:48 | 000,415,592 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\Silverlight\v3.0\System.Runtime.Serialization.dll
[2009.06.11 04:20:48 | 000,165,919 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\Silverlight\v3.0\system.runtime.serialization.xml
[2009.08.17 22:09:06 | 000,063,384 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\Silverlight\v3.0\en-us\System.Runtime.Serialization.debug.resources.dll
[2010.04.07 22:57:06 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2004.08.17 14:44:16 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2009.10.07 12:29:02 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC\System.Runtime.Serialization.Formatters.Soap\1.0.5000.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012.01.09 21:46:38 | 000,055,136 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\Microsoft.SqlServer.Management.DacSerialization\10.0.0.0__89845dcd8080cc91\Microsoft.SqlServer.Management.DacSerialization.dll
[2010.08.04 11:35:04 | 000,011,776 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.10.17 20:21:45 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010.08.04 11:35:49 | 000,090,112 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2010.10.17 20:09:32 | 000,970,752 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2009.04.29 17:50:09 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\01dc643b54310ebc5ab7e4696df426bc\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2010.10.17 20:11:29 | 002,347,008 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\5447f46167b9f8575471bde2eacb31cb\System.Runtime.Serialization.ni.dll
[2010.08.04 11:47:16 | 000,310,272 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\d0ff3383438d688a0118d0fa19ed1dc4\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2010.08.04 11:47:53 | 002,625,024 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\e9f8a45b1063d6c6a62718c88a5623d1\System.Runtime.Serialization.ni.dll
[2009.02.19 15:32:02 | 000,966,656 | ---- | M] () -- \WINDOWS\assembly\tmp\07BFJNRW\System.Runtime.Serialization.dll
[2011.02.16 15:59:12 | 000,013,972 | ---- | M] () -- \WINDOWS\inf\SocketSerialBT.PNF
[2010.08.04 10:25:14 | 000,122,264 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010.08.04 10:25:10 | 001,026,936 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2004.07.15 13:31:54 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Serialization.Formatters.Soap.dll
[2008.07.25 11:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2005.09.23 07:56:56 | 000,008,007 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.xml
[2008.09.10 16:46:28 | 000,011,776 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.04.07 22:57:06 | 000,970,752 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010.03.18 12:16:28 | 001,026,936 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 12:16:28 | 000,122,264 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2008.04.14 03:17:25 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008.04.14 03:21:08 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2007.06.27 13:59:02 | 000,131,072 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\system.runtime.serialization.formatters.soap.dll
[2001.10.25 15:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2001.10.25 15:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[2 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2001.10.25 15:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2001.10.25 15:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 03:21:08 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys

< *w7lxe* /s >

< *AutoRearm* /s >

< HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run /s >
"NvCplDaemon" = RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup -- [2008.04.14 04:22:43 | 000,033,280 | ---- | M] (Microsoft Corporation)
"MSC" = "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey -- [2010.11.30 13:20:36 | 000,997,408 | ---- | M] (Microsoft Corporation)
"NPSStartup" =
"BluetoothAuthenticationAgent" = rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents]
"" =
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL]
"" =
"Installed" = 1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI]
"" =
"Installed" = 1
"NoChange" = 1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS]
"" =
"Installed" = 1

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 04:22:17 | 000,015,360 | ---- | M] (Microsoft Corporation)
"SimpleShare" = "C:\Program Files\Box\SimpleShare\simpleshare.exe" -- [2011.12.09 15:56:42 | 001,267,752 | ---- | M] ()

< HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run /s >

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs

< type c:\boot.ini >> test.txt /c >
[boot loader]
timeout=3
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.02.03 15:44:24 | 000,000,512 | ---- | M] () MD5=81D7FAEA420BA5CC22EC891016FF891C -- C:\PhysicalMBR.bin

========== Alternate Data Streams ==========

@Alternate Data Stream - 6144 bytes -> C:\WINDOWS\Cursors\arrow_n.cur:NEDTA.DAT
@Alternate Data Stream - 242 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:9A870F8B
@Alternate Data Stream - 229 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:8FF81EB0
@Alternate Data Stream - 140 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0A8E2C33
@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:08948D52
@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:B1CD2545
@Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:302A9871

< End of report >

Inu, příteli Vrbo... copak mi povíš o legalitě svého systému?

Já jsem mel asi 3krát zavirovanej PC a nekde jsem to mel v oprave přeinstalovat ale jinek jsem ho legální kupoval

No já tam vidím zcela jasně soubory na obcházení legality systému. Dále také cracky a keygeny. My se zde ale nelegálním software nezabýváme, bylo by to zcela proti logice tohoto fóra.