VIRY.CZ

Prosím o kontrolu logu,ESET online scanner mi našel 16 infikovaných souborů tak pro jistotu

Logfile of random's system information tool 1.09 (written by random/random)
Run by Admin at 2012-02-13 15:43:00
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 10 GB (14%) free of 70 GB
Total RAM: 3582 MB (76% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:43:15, on 13.2.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17106)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\IObit\Advanced SystemCare 4\PMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\GamePark2\gpcl.exe
C:\Program Files\IObit\Advanced SystemCare 4\ASC.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Admin\Plocha\RSIT.exe
C:\Program Files\trend micro\Admin.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?AF=100888&ba ... 1fd06b81ea
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O2 - BHO: IeCatch5 Class - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\PROGRA~1\FlashGet\jccatch.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [Bonus.SSR.FR11] "C:\Program Files\ABBYY FineReader 11\Bonus.ScreenshotReader.exe" /autorun
O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Admin\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Advanced SystemCare 4] C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - Global Startup: GamePark klient 2.lnk = C:\Program Files\GamePark2\gpcl.exe
O8 - Extra context menu item: &Stáhnout &vše FlashGetem - C:\PROGRA~1\FlashGet\jc_all.htm
O8 - Extra context menu item: &Stáhnout FlashGetem - C:\PROGRA~1\FlashGet\jc_link.htm
O8 - Extra context menu item: &Stáhnout všechno FlashGetem - C:\PROGRA~1\FlashGet\jc_all.htm
O8 - Extra context menu item: Add to AMV/AVI Video Converter... - C:\Program Files\Media Player Utilities 4.22\AMVConverter\grab.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O8 - Extra context menu item: Stahnou vse FlashGet3 - C:\Documents and Settings\Admin\Data aplikací\FlashGetBHO\GetAllUrl.htm
O8 - Extra context menu item: Stahnout FlashGet3 - C:\Documents and Settings\Admin\Data aplikací\FlashGetBHO\GetUrl.htm
O8 - Extra context menu item: Stáhnout pomocí FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Stáhnout vše pomocí FlashGet - C:\Program Files\FlashGet\jc_all.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O15 - Trusted Zone: http://software.kuaiche.com
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 2454824570
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Advanced SystemCare Service (AdvancedSystemCareService) - IObit - C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe
O23 - Service: Apache - Unknown owner - C:\apache\Apache.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: MySql - Unknown owner - C:/apache/mysql/bin/mysqld-nt.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

--
End of file - 12488 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\ASC4_PerformanceMonitor.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1614895754-220523388-1801674531-1004Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1614895754-220523388-1801674531-1004UA.job
C:\WINDOWS\tasks\MP Scheduled Scan.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{99B98C2C-7274-45a3-A640-D9DF1A1C8460}:1.4, {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.2.9.4, {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13, {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15, {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17, {20a82645-c095-46ed-80e3-08825760534b}:0.0.0, {003D3EDC-99B9-4a34-9C20-60CB94F7E829}:2010.25.36, {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}:3.3.3.2, wrc@avast.com:20110101, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"
prefs.js - "keyword.URL" - "http://search.babylon.com/?AF=100888&ba ... 06b81ea&q="

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{FFB96CC1-7EB3-449D-B827-DB661701C6BB}"=C:\Program Files\CheckPoint\ZAForceField\TrustChecker
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nppl3260.xpt
nsILegitCheckPlugin.xpt
nsIOGAPlugin.xpt
nsIQTScriptablePlugin.xpt
nsJSRealPlayerPlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
npLegitCheckPlugin.dll
npOGAPlugin.dll
nppdf32.dll
np_gp.dll
QuickTimePlugin.class

C:\Program Files\Mozilla Firefox\searchplugins\
babylon.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
MyHeritage.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default\extensions\
info@thebflix.com
{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
{1018e4d6-728f-4b20-ad56-37578a4de76b}
{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}(2)
{20a82645-c095-46ed-80e3-08825760534b}(2)
{99B98C2C-7274-45a3-A640-D9DF1A1C8460}
{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}(2)
{EEE6C361-6118-11DC-9C72-001320C79847}

C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default\searchplugins\
conduit.xml
icqplugin.xml
subbiee.xml
sweetim.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll [2011-05-12 798771]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}]
IeCatch5 Class - C:\PROGRA~1\FlashGet\jccatch.dll [2006-05-16 81920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2011-11-10 325408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2011-11-28 809040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-11-10 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-11-10 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetIM Toolbar Helper - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2011-08-24 1299248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll [2011-05-12 798771]
{E0E899AB-F487-11D5-8D29-0050BA6940E3} - FlashGet Bar - C:\PROGRA~1\FlashGet\fgiebar.dll [2005-06-07 86016]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2011-11-28 809040]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2011-08-24 1299248]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvMediaCenter"=NvMCTray.dll,NvTaskbarInit []
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"LogMeIn Hamachi Ui"=C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2011-08-04 1955208]
"Bonus.SSR.FR11"=C:\Program Files\ABBYY FineReader 11\Bonus.ScreenshotReader.exe [2011-08-30 925960]
"avast"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2011-11-28 3744552]
"SweetIM"=C:\Program Files\SweetIM\Messenger\SweetIM.exe [2011-08-01 114992]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-02 843712]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=C:\Documents and Settings\Admin\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2011-07-08 136176]
"Advanced SystemCare 4"=C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe [2011-08-09 417112]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2007-01-05 204288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [2007-08-01 222592]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2011-08-04 1955208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Program Files\uTorrent\utorrent.exe [2011-01-26 395640]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Admin^Nabídka Start^Programy^Po spuštění^FlashGet.lnk]
C:\PROGRA~1\FlashGet\flashget.exe [2006-05-31 1368064]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
GamePark klient 2.lnk - C:\Program Files\GamePark2\gpcl.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2008-09-03 143360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WINDOW~4\MpShHook.dll [2006-11-03 83224]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\FlashGet\flashget.exe"="C:\Program Files\FlashGet\flashget.exe:*:Enabled:Flashget"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"F:\PC HRY INSTAL\Need for Speed Hot Pursuit (2010) CZ\NFS11.exe"="F:\PC HRY INSTAL\Need for Speed Hot Pursuit (2010) CZ\NFS11.exe:*:Enabled:Need for Speed(TM) Hot Pursuit Application"
"F:\PC HRY INSTAL\iw3mpHAMACHI 1.7.exe"="F:\PC HRY INSTAL\iw3mpHAMACHI 1.7.exe:*:Enabled:iw3mpHAMACHI 1.7"
"C:\Program Files\Microsoft Office\Office14\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office14\GROOVE.EXE:*:Enabled:Microsoft SharePoint Workspace"
"C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE:*:Enabled:Microsoft OneNote"
"C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Run a DLL as an App"
"F:\PC HRY INSTAL\COD4\iw3mp.exe"="F:\PC HRY INSTAL\COD4\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) "
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"F:\PC HRY INSTAL\Need for Speed Hot Pursuit (2010) CZ\Launcher.exe"="F:\PC HRY INSTAL\Need for Speed Hot Pursuit (2010) CZ\Launcher.exe:*:Enabled:Need for Speed(TM) Hot Pursuit"
"I:\MW2\iw4mp.dat"="I:\MW2\iw4mp.dat:*:Enabled:iw4mp"
"F:\PC HRY INSTAL\MW2\iw4mp.dat"="F:\PC HRY INSTAL\MW2\iw4mp.dat:*:Enabled:iw4mp"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"aux2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv
"VIDC.FFDS"=C:\PROGRA~1\COMBIN~1\Filters\FFDShow\ff_vfw.dll

======List of files/folders created in the last 1 month======

2012-02-13 15:43:00 ----D---- C:\rsit
2012-02-12 16:05:08 ----A---- C:\Documents and Settings\Admin\Data aplikací\steam_md4.dat
2012-01-28 09:21:02 ----D---- C:\Program Files\Windows Sidebar
2012-01-28 09:20:53 ----A---- C:\user.js
2012-01-28 09:20:52 ----D---- C:\Program Files\BabylonToolbar
2012-01-28 09:20:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\Babylon
2012-01-28 09:20:28 ----D---- C:\Documents and Settings\Admin\Data aplikací\Babylon
2012-01-27 13:51:44 ----D---- C:\Program Files\Common Files\Java
2012-01-27 13:51:31 ----A---- C:\WINDOWS\system32\javaws.exe
2012-01-27 13:51:31 ----A---- C:\WINDOWS\system32\javaw.exe
2012-01-27 13:51:31 ----A---- C:\WINDOWS\system32\java.exe
2012-01-15 01:18:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$

======List of files/folders modified in the last 1 month======

2012-02-13 15:43:15 ----D---- C:\Program Files\trend micro
2012-02-13 15:43:07 ----D---- C:\WINDOWS\Prefetch
2012-02-13 15:43:00 ----D---- C:\WINDOWS\temp
2012-02-13 14:19:10 ----D---- C:\Program Files\ESET
2012-02-13 14:01:51 ----D---- C:\Documents and Settings\Admin\Data aplikací\Skype
2012-02-13 14:00:00 ----D---- C:\WINDOWS\Logs
2012-02-13 14:00:00 ----D---- C:\WINDOWS\Debug
2012-02-13 14:00:00 ----D---- C:\WINDOWS
2012-02-13 13:57:38 ----D---- C:\Documents and Settings\Admin\Data aplikací\.minecraft
2012-02-13 09:24:03 ----D---- C:\Program Files\Mozilla Firefox
2012-02-13 08:33:06 ----SD---- C:\WINDOWS\Tasks
2012-02-13 08:30:28 ----D---- C:\WINDOWS\system32\CatRoot2
2012-02-12 23:28:52 ----N---- C:\WINDOWS\SchedLgU.Txt
2012-02-12 13:52:51 ----D---- C:\WINDOWS\system32
2012-02-12 13:52:46 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2012-02-10 22:26:36 ----HD---- C:\WINDOWS\inf
2012-02-10 22:26:18 ----RSD---- C:\WINDOWS\assembly
2012-02-10 22:25:56 ----D---- C:\WINDOWS\system32\DirectX
2012-02-10 22:25:47 ----SHD---- C:\WINDOWS\Installer
2012-02-10 22:24:53 ----D---- C:\Config.Msi
2012-02-10 22:24:45 ----HD---- C:\Program Files\InstallShield Installation Information
2012-02-10 22:18:50 ----D---- C:\Program Files\Activision
2012-02-10 21:59:26 ----A---- C:\WINDOWS\NeroDigital.ini
2012-02-07 21:21:08 ----RD---- C:\Program Files
2012-02-06 23:36:18 ----D---- C:\Program Files\FlashGet
2012-02-05 20:11:16 ----D---- C:\Program Files\SMS Posílač 3
2012-02-05 20:09:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\Monotea
2012-02-05 18:33:27 ----D---- C:\Documents and Settings\Admin\Data aplikací\HLSW
2012-02-05 18:32:24 ----D---- C:\Program Files\Electronic Arts
2012-02-05 18:30:35 ----D---- C:\WINDOWS\system32\drivers
2012-02-05 18:30:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\Norton
2012-02-05 17:55:02 ----D---- C:\WINDOWS\WinSxS
2012-02-04 16:35:06 ----D---- C:\WINDOWS\system32\Adobe
2012-02-03 21:00:27 ----D---- C:\Program Files\Common Files\Symantec Shared
2012-02-03 18:48:22 ----D---- C:\Documents and Settings\Admin\Data aplikací\Adobe
2012-02-03 10:48:03 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2012-02-03 07:25:49 ----D---- C:\Program Files\Common Files\Blizzard Entertainment
2012-01-28 09:20:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\InstallMate
2012-01-27 13:51:44 ----D---- C:\Program Files\Common Files
2012-01-27 13:51:25 ----D---- C:\Program Files\Java
2012-01-27 00:21:24 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2012-01-22 17:50:12 ----D---- C:\Documents and Settings\All Users\Data aplikací\Blizzard Entertainment
2012-01-22 13:52:51 ----A---- C:\WINDOWS\wincmd.ini
2012-01-22 11:59:09 ----D---- C:\Documents and Settings
2012-01-21 19:42:24 ----A---- C:\WINDOWS\win.ini
2012-01-15 01:18:08 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-01-14 10:32:09 ----HD---- C:\WINDOWS\$hf_mig$

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI NEC FireWarden; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 snapman380;Acronis Snapshots Manager (Build 380); C:\WINDOWS\system32\DRIVERS\snman380.sys [2009-11-26 134272]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-04-18 639224]
R0 tdrpman147;Acronis Try&Decide and Restore Points filter (build 147); C:\WINDOWS\system32\DRIVERS\tdrpm147.sys [2009-11-26 971232]
R0 timounter;Acronis True Image Backup Archive Explorer; C:\WINDOWS\system32\DRIVERS\timntr.sys [2009-11-26 540000]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-01-18 77696]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-11-28 30808]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43008]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-11-28 34392]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2011-11-28 435032]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-11-28 314456]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-11-28 52952]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-11-28 20568]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-11-28 111320]
R2 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2006-12-26 15440]
R2 MLPTDR_Q;MLPTDR_Q; \??\C:\WINDOWS\system32\MLPTDR_Q.sys []
R2 thdudf;TOSHIBA UDF2.5 Reader File System Driver; C:\WINDOWS\system32\DRIVERS\thdudf.sys [2006-11-11 66944]
R2 tifsfilter;Acronis True Image FS Filter; C:\WINDOWS\system32\DRIVERS\tifsfilt.sys [2009-11-26 44704]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-09-03 3300864]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2008-07-02 89600]
R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2006-12-26 34760]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-09-05 4611072]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2007-06-28 45824]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2007-06-28 20480]
R3 PAC207;VideoCAM GF112; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2005-04-08 162176]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2009-01-24 47360]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys []
S1 asusgsb;ASUS Virtual Video Capture Device Driver; C:\WINDOWS\system32\drivers\asusgsb32.sys []
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S2 EIO;EIO; \??\C:\WINDOWS\system32\drivers\EIO.sys []
S3 61883;61883 Unit Device; C:\WINDOWS\system32\DRIVERS\61883.sys [2008-04-13 48128]
S3 a1a8wfus;a1a8wfus; C:\WINDOWS\system32\drivers\a1a8wfus.sys []
S3 a85k6kic;a85k6kic; C:\WINDOWS\system32\drivers\a85k6kic.sys []
S3 Avc;AVC Device; C:\WINDOWS\system32\DRIVERS\avc.sys [2008-04-13 38912]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BTHMODEM;Ovladač komunikace modemu Bluetooth; C:\WINDOWS\system32\DRIVERS\bthmodem.sys [2008-04-13 37888]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 catchme;catchme; \??\C:\DOCUME~1\Admin\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 ComproHID;VideoMate Root Enumerated Hid Device; C:\WINDOWS\system32\DRIVERS\ComproHID.sys [2008-02-27 7040]
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 EagleXNt;EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2011-08-20 25280]
S3 MPE;BDA MPE Filter; C:\WINDOWS\system32\DRIVERS\MPE.sys [2004-07-09 15104]
S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2004-07-09 52096]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-06-01 3925920]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 RTL2831UBDA;REALTEK 2831U BDA Driver; C:\WINDOWS\system32\drivers\RTL2831UBDA.sys []
S3 RTL2831UUSB;REALTEK 2831U USB Driver; C:\WINDOWS\System32\Drivers\RTL2831UUSB.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys []
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 Video3D;ASUS Video3D Service; C:\WINDOWS\System32\Drivers\Video3D32.sys []
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2008-03-27 503008]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-01-18 83328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [2008-11-10 554264]
R2 AdvancedSystemCareService;Advanced SystemCare Service; C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe [2011-08-09 328536]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-09-03 573440]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-11-28 44768]
R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2011-08-04 1361288]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-11-10 153376]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2011-10-10 75136]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 STI Simulator;STI Simulator; C:\WINDOWS\System32\PAStiSvc.exe [2005-01-14 53248]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-05-07 1051976]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R2 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S2 Apache;Apache; C:\apache\Apache.exe [2000-10-10 20480]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2008-09-02 593920]
S2 MySql;MySql; C:/apache/mysql/bin/mysqld-nt.exe []
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-06-01 155715]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 getPlusHelper;getPlus(R) Helper; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-01-26 652800]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2010-08-17 435016]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-10-09 724992]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

...jo ještě bych potřeboval nějak "opravit" nebo mám něco blbě nastavené.Při spouštění Microsoft Outlook mi vyskakuje prohlížeč,a v tom adresa tato:
file:///C:/Documents%20and%20Settings/Admin/Local%20Settings/Temporary%20Internet%20Files/%7B68EDAFE0-D53F-42D7-9C63-D0F0A4D013E8%7D/%7B93D48A44-5B39-4A1A-A1F4-56AFF461BD30%7D.html
a prázdná stránka s nápisem : Pro toto zobrazení není k dispozici žádná položka.
nevím něco mám v tom outlooku ale nedaří se mi to najít

Dobrý večer
Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix

ComboFix 12-02-13.01 - Admin 15.02.2012 11:46:21.10.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.3582.2786 [GMT 1:00]
Spuštěný z: c:\documents and settings\Admin\Plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-01-15 do 2012-02-15 )))))))))))))))))))))))))))))))
.
.
2012-02-15 07:05 . 2012-02-15 07:05 -------- d-----w- c:\windows\LastGood
2012-02-14 07:04 . 2012-01-06 04:19 6557240 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Windows Defender\Definition Updates\{2A2E6791-3CBE-47F0-8B25-B824DABDBF07}\mpengine.dll
2012-02-13 14:43 . 2012-02-13 14:43 -------- d-----w- C:\rsit
2012-02-12 15:04 . 2012-02-12 15:04 -------- d-----w- c:\documents and settings\Admin\Local Settings\Data aplikací\CrashRpt
2012-01-28 08:21 . 2012-01-28 08:21 -------- d-----w- c:\program files\Windows Sidebar
2012-01-28 08:20 . 2012-01-28 08:20 237 ----a-w- C:\user.js
2012-01-28 08:20 . 2012-01-28 08:20 -------- d-----w- c:\program files\BabylonToolbar
2012-01-28 08:20 . 2012-01-28 08:20 -------- d-----w- c:\documents and settings\Admin\Local Settings\Data aplikací\Babylon
2012-01-28 08:20 . 2012-01-28 08:20 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Babylon
2012-01-28 08:20 . 2012-01-28 08:20 -------- d-----w- c:\documents and settings\Admin\Data aplikací\Babylon
2012-01-27 12:51 . 2012-01-27 12:51 -------- d-----w- c:\program files\Common Files\Java
2012-01-22 10:59 . 2012-01-22 10:59 -------- d-----w- c:\documents and settings\Administrator
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-13 15:41 . 2009-06-09 07:18 138160 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2012-02-13 15:40 . 2009-06-09 07:18 271200 ----a-w- c:\windows\system32\PnkBstrB.exe
2012-02-13 15:40 . 2009-06-09 07:18 271200 ----a-w- c:\windows\system32\PnkBstrB.xtr
2012-02-12 12:52 . 2009-06-09 07:18 271200 ----a-w- c:\windows\system32\PnkBstrB.ex0
2012-01-26 23:21 . 2009-10-02 16:57 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-01-06 04:19 . 2009-01-21 21:23 6557240 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2011-11-28 18:01 . 2010-07-08 13:43 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 18:01 . 2010-02-13 20:35 199816 ----a-w- c:\windows\system32\aswBoot.exe
2011-11-28 17:53 . 2011-02-27 12:12 435032 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-11-28 17:53 . 2010-02-13 20:35 314456 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-11-28 17:52 . 2010-02-13 20:35 34392 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-11-28 17:52 . 2010-02-13 20:35 52952 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-11-28 17:52 . 2010-02-13 20:35 111320 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-11-28 17:51 . 2010-02-13 20:35 105176 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-11-28 17:51 . 2010-02-13 20:35 20568 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-11-28 17:48 . 2010-02-13 20:35 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-11-25 21:57 . 2006-03-02 12:00 293376 ----a-w- c:\windows\system32\winsrv.dll
2011-11-23 14:40 . 2006-03-02 12:00 1859584 ----a-w- c:\windows\system32\win32k.sys
2011-11-20 06:12 . 2006-03-02 12:00 60416 ----a-w- c:\windows\system32\packager.exe
2011-11-26 15:47 . 2011-05-12 19:35 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{EEE6C35D-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll" [2011-08-24 130864]
.
[HKEY_CLASSES_ROOT\clsid\{eee6c35d-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2011-08-24 17:21 1299248 ----a-r- c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2011-08-24 1299248]
.
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2011-08-24 1299248]
.
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-11-28 18:01 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 4"="c:\program files\IObit\Advanced SystemCare 4\ASCTray.exe" [2011-08-09 417112]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2007-01-05 204288]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvMediaCenter"="NvMCTray.dll" [2006-06-01 86016]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"Bonus.SSR.FR11"="c:\program files\ABBYY FineReader 11\Bonus.ScreenshotReader.exe" [2011-08-30 925960]
"avast"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2011-11-28 3744552]
"SweetIM"="c:\program files\SweetIM\Messenger\SweetIM.exe" [2011-08-01 114992]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
.
c:\documents and settings\Admin\Nabídka Start\Programy\Po spuštění\
FlashGet.lnk - c:\program files\FlashGet\flashget.exe [2010-2-14 1368064]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^GamePark klient 2.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\GamePark klient 2.lnk
backup=c:\windows\pss\GamePark klient 2.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
2007-08-01 18:17 222592 ----a-w- c:\program files\Alcohol Soft\Alcohol 120\AxCmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
2011-08-04 12:34 1955208 ----a-w- c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
2011-01-26 20:27 395640 ----a-w- c:\program files\uTorrent\utorrent.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"uTorrent"="c:\program files\uTorrent\utorrent.exe"
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe"
"Skype"="c:\program files\Skype\Phone\Skype.exe" /nosplash /minimized
"FlashGet"=c:\program files\FlashGet\flashget.exe
"OEXPRESS"=c:\documents and settings\All Users\Data aplikací\LangSoft\OETRN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Predplacenky"="c:\program files\Predplacenky.cz\webicon.exe"
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"TrueImageMonitor.exe"=c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe
"Acronis Scheduler2 Service"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe"
"CloneCDTray"="c:\program files\SlySoft\CloneCD\CloneCDTray.exe" /s
"Flashget"=c:\progra~1\FlashGet\Flashget.exe /min
"AcronisTimounterMonitor"=c:\program files\Acronis\TrueImageHome\TimounterMonitor.exe
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\FlashGet\\flashget.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"f:\\PC HRY INSTAL\\Need for Speed Hot Pursuit (2010) CZ\\NFS11.exe"=
"f:\\PC HRY INSTAL\\iw3mpHAMACHI 1.7.exe"=
"c:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"f:\\PC HRY INSTAL\\COD4\\iw3mp.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"f:\\PC HRY INSTAL\\Need for Speed Hot Pursuit (2010) CZ\\Launcher.exe"=
"f:\\PC HRY INSTAL\\MW2\\iw4mp.dat"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5985:TCP"= 5985:TCP:*:Disabled:Vzdálená správa systému Windows
"3724:TCP"= 3724:TCP:Blizzard Downloader: 3724
.
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [21.1.2009 16:57 639224]
R0 tdrpman147;Acronis Try&Decide and Restore Points filter (build 147);c:\windows\system32\drivers\tdrpm147.sys [26.11.2009 21:51 971232]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [27.2.2011 13:12 435032]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [13.2.2010 21:35 314456]
R2 AdvancedSystemCareService;Advanced SystemCare Service;c:\program files\IObit\Advanced SystemCare 4\ASCService.exe [3.12.2011 19:50 328536]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [13.2.2010 21:35 20568]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [4.8.2011 13:34 1361288]
R2 MLPTDR_Q;MLPTDR_Q;c:\windows\system32\MLPTDR_Q.SYS [23.7.2003 10:44 18848]
R2 thdudf;TOSHIBA UDF2.5 Reader File System Driver;c:\windows\system32\drivers\thdudf.sys [29.1.2010 19:38 66944]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [7.5.2010 17:04 1051976]
R2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [3.11.2006 19:19 13592]
R3 PAC207;VideoCAM GF112;c:\windows\system32\drivers\pfc027.sys [8.4.2005 10:46 162176]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [24.1.2009 20:29 47360]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [25.2.2010 10:18 10064]
S3 ComproHID;VideoMate Root Enumerated Hid Device;c:\windows\system32\drivers\ComproHID.sys [25.10.2010 17:51 7040]
S3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [23.6.2011 17:02 500704]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [12.6.2011 10:15 31125880]
S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [9.1.2010 20:37 4640000]
S3 RTL2831UBDA;REALTEK 2831U BDA Driver;c:\windows\system32\drivers\RTL2831UBDA.sys --> c:\windows\system32\drivers\RTL2831UBDA.sys [?]
S3 RTL2831UUSB;REALTEK 2831U USB Driver;c:\windows\system32\Drivers\RTL2831UUSB.sys --> c:\windows\system32\Drivers\RTL2831UUSB.sys [?]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2.3.2006 13:00 14336]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
getPlusHelper REG_MULTI_SZ getPlusHelper
WINRM REG_MULTI_SZ WINRM
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
2012-02-15 c:\windows\Tasks\ASC4_PerformanceMonitor.job
- c:\program files\IObit\Advanced SystemCare 4\PMonitor.exe [2011-12-03 15:40]
.
2012-02-15 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 18:20]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://home.sweetim.com/?st=1&barid={5489CFB8-2D4D-11E1-AEB4-001FD06B81EA}
mStart Page = hxxp://home.sweetim.com/?st=1&barid={5489CFB8-2D4D-11E1-AEB4-001FD06B81EA}
uInternet Connection Wizard,ShellNext = iexplore
IE: &Stáhnout &vše FlashGetem - c:\progra~1\FlashGet\jc_all.htm
IE: &Stáhnout FlashGetem - c:\progra~1\FlashGet\jc_link.htm
IE: &Stáhnout všechno FlashGetem - c:\progra~1\FlashGet\jc_all.htm
IE: Add to AMV/AVI Video Converter... - c:\program files\Media Player Utilities 4.22\AMVConverter\grab.html
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Search the Web - c:\program files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
IE: Stahnou vse FlashGet3 - c:\documents and settings\Admin\Data aplikací\FlashGetBHO\GetAllUrl.htm
IE: Stahnout FlashGet3 - c:\documents and settings\Admin\Data aplikací\FlashGetBHO\GetUrl.htm
IE: Stáhnout pomocí FlashGet - c:\program files\FlashGet\jc_link.htm
IE: Stáhnout vše pomocí FlashGet - c:\program files\FlashGet\jc_all.htm
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
Trusted Zone: kuaiche.com\software
TCP: DhcpNameServer = 192.168.0.1 82.100.29.65
FF - ProfilePath - c:\documents and settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?AF=100888&babsrc=adbartrp&mntrId=b0514483000000000000001fd06b81ea&q=
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=100888
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.id - b0514483000000000000001fd06b81ea
FF - user.js: extensions.BabylonToolbar_i.hardId - b0514483000000000000001fd06b81ea
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15367
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.179:20
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-02-15 11:55
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
.
C:\## aswSnx private storage
.
sken byl úspešně dokončen
skryté soubory: 1
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\MySql]
"ImagePath"="C:/apache/mysql/bin/mysqld-nt.exe"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\MySql]
"ImagePath"="C:/apache/mysql/bin/mysqld-nt.exe"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1614895754-220523388-1801674531-1004\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
"??"=hex:2f,f6,af,b0,76,39,3f,50,43,65,90,79,d6,6c,2d,bf,3b,e1,7c,b0,a5,a2,0e,
56,89,28,e9,9e,05,8d,22,7e,e5,01,45,d8,e3,88,df,d0,9a,db,4a,ec,1a,33,46,1f,\
"??"=hex:c2,85,69,05,2d,1d,8e,58,d2,f4,47,98,c7,f4,07,b7
.
[HKEY_USERS\S-1-5-21-1614895754-220523388-1801674531-1004\Software\SecuROM\License information*]
"datasecu"=hex:bc,be,40,8b,f6,3d,89,f6,a2,5c,1a,db,55,81,42,3f,91,23,e6,34,1b,
61,79,cf,02,4b,0c,21,62,1d,c9,e7,ab,b5,49,4a,1a,45,d4,b6,91,8f,2c,db,68,b1,\
"rkeysecu"=hex:8f,0c,9a,91,b7,52,d0,19,e2,cc,b2,c1,3d,01,7b,6c
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1404)
c:\windows\system32\Ati2evxx.dll
.
- - - - - - - > 'explorer.exe'(2100)
c:\progra~1\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf
c:\progra~1\MICROS~2\Office14\1029\GrooveIntlResource.dll
c:\windows\system32\wpdshext.dll
c:\windows\system32\PortableDeviceApi.dll
c:\windows\system32\Audiodev.dll
c:\windows\system32\WMVCore.DLL
c:\windows\system32\WMASF.DLL
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
.
Celkový čas: 2012-02-15 11:59:13
ComboFix-quarantined-files.txt 2012-02-15 10:59
.
Před spuštěním: 9 367 863 296
Po spuštění: 9 355 243 520
.
- - End Of File - - AC049232A5FFCBD7A033BB4500BD9BD0

Změnilo se něco?

Hmm,asi nic,zdá se vše při starém

Pokud nemáte, přesuňte Combofix na plochu
-otevřete si Poznámkový blok
-Do něj zkopírujte text z tohoto okénka
-uložte Vámi vytvořený TXT soubor jako CFScript.txt na plochu
-po uložení uchopte vámi vytvořený skript levým myšítkem a -přesuňte ho nad ikonu Combofixu, kde ho upustíte:

ComboFix 12-02-13.01 - Admin 17.02.2012 9:58.11.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.3582.2557 [GMT 1:00]
Spuštěný z: c:\documents and settings\Admin\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Admin\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\SweetIM
c:\program files\SweetIM\Messenger\ContentPackagesActivationHandler.exe
c:\program files\SweetIM\Messenger\default.xml
c:\program files\SweetIM\Messenger\mgAdaptersProxy.dll
c:\program files\SweetIM\Messenger\mgArchive.dll
c:\program files\SweetIM\Messenger\mgcommon.dll
c:\program files\SweetIM\Messenger\mgcommunication.dll
c:\program files\SweetIM\Messenger\mgconfig.dll
c:\program files\SweetIM\Messenger\mgFlashPlayer.dll
c:\program files\SweetIM\Messenger\mghooking.dll
c:\program files\SweetIM\Messenger\mgICQAuto.dll
c:\program files\SweetIM\Messenger\mgICQMessengerAdapter.dll
c:\program files\SweetIM\Messenger\mglogger.dll
c:\program files\SweetIM\Messenger\mgMediaPlayer.dll
c:\program files\SweetIM\Messenger\mgMsnAuto.dll
c:\program files\SweetIM\Messenger\mgMsnMessengerAdapter.dll
c:\program files\SweetIM\Messenger\mgsimcommon.dll
c:\program files\SweetIM\Messenger\mgSweetIM.dll
c:\program files\SweetIM\Messenger\mgUpdateSupport.dll
c:\program files\SweetIM\Messenger\mgxml_wrapper.dll
c:\program files\SweetIM\Messenger\mgYahooAuto.dll
c:\program files\SweetIM\Messenger\mgYahooMessengerAdapter.dll
c:\program files\SweetIM\Messenger\msvcp71.dll
c:\program files\SweetIM\Messenger\msvcr71.dll
c:\program files\SweetIM\Messenger\resources\images\AudibleButton.png
c:\program files\SweetIM\Messenger\resources\images\DisplayPicturesButton.png
c:\program files\SweetIM\Messenger\resources\images\EmoticonButton.png
c:\program files\SweetIM\Messenger\resources\images\GamesButton.png
c:\program files\SweetIM\Messenger\resources\images\KeyboardButton.png
c:\program files\SweetIM\Messenger\resources\images\NudgeButton.png
c:\program files\SweetIM\Messenger\resources\images\SoundFxButton.png
c:\program files\SweetIM\Messenger\resources\images\WinksButton.png
c:\program files\SweetIM\Messenger\resources\sqlite\mgSqlite3.dll
c:\program files\SweetIM\Messenger\SweetIM.exe
c:\program files\SweetIM\Toolbars\Internet Explorer\ClearHist.exe
c:\program files\SweetIM\Toolbars\Internet Explorer\conf\logger.xml
c:\program files\SweetIM\Toolbars\Internet Explorer\default.xml
c:\program files\SweetIM\Toolbars\Internet Explorer\mgcommon.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgconfig.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe
c:\program files\SweetIM\Toolbars\Internet Explorer\mghooking.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mglogger.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgsimcommon.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgxml_wrapper.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\Microsoft.VC90.CRT.manifest
c:\program files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcm90.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcp90.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcr90.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\about.html
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\affid.dat
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\basis.xml
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\bing.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_bing.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_current.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_dictionary.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_google.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_hover.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_left.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_photo.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_video.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_web.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_yahoo.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\clear-history.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier-anim-over.gif
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier-anim.gif
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier.js
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\dating.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\dictionary.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\e_cards.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\eye_icon.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\eye_icon_over.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\find.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\free_stuff.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\games.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\glitter.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\google.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_bing.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_current.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_dictionary.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_google.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_hover.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_left.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_photo.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_video.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_web.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_yahoo.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\help.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\highlight.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\locales.xml
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\logo_16x16.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\logo_21x18.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\logo_32x32.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\logo_about.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\MenuExt.html
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\more-search-providers.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\music.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\news.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\options.html
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_bing.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_current.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_dictionary.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_google.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_hover.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_left.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_photo.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_video.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_web.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_yahoo.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\photos.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\search-current-site.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\shopping.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\SmileySmile.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\SmileyWink.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\sweetim_text.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\toolbar.xml
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\video.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\web-search.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\web-toolbar.js
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\yahoo.png
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-01-17 do 2012-02-17 )))))))))))))))))))))))))))))))
.
.
2012-02-17 06:41 . 2012-01-06 04:19 6557240 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Windows Defender\Definition Updates\{92E45B10-ECCE-4645-B004-CEB8F9E730E7}\mpengine.dll
2012-02-15 07:05 . 2012-01-11 19:07 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2012-02-15 07:05 . 2012-01-11 19:07 3072 ------w- c:\windows\system32\iacenc.dll
2012-02-13 14:43 . 2012-02-13 14:43 -------- d-----w- C:\rsit
2012-02-12 15:04 . 2012-02-12 15:04 -------- d-----w- c:\documents and settings\Admin\Local Settings\Data aplikací\CrashRpt
2012-01-28 08:21 . 2012-01-28 08:21 -------- d-----w- c:\program files\Windows Sidebar
2012-01-28 08:20 . 2012-01-28 08:20 237 ----a-w- C:\user.js
2012-01-28 08:20 . 2012-01-28 08:20 -------- d-----w- c:\program files\BabylonToolbar
2012-01-28 08:20 . 2012-01-28 08:20 -------- d-----w- c:\documents and settings\Admin\Local Settings\Data aplikací\Babylon
2012-01-28 08:20 . 2012-01-28 08:20 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Babylon
2012-01-28 08:20 . 2012-01-28 08:20 -------- d-----w- c:\documents and settings\Admin\Data aplikací\Babylon
2012-01-27 12:51 . 2012-01-27 12:51 -------- d-----w- c:\program files\Common Files\Java
2012-01-22 10:59 . 2012-01-22 10:59 -------- d-----w- c:\documents and settings\Administrator
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-16 11:45 . 2009-06-09 07:18 138160 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2012-02-16 11:44 . 2009-06-09 07:18 271200 ----a-w- c:\windows\system32\PnkBstrB.exe
2012-02-16 11:44 . 2009-06-09 07:18 271200 ----a-w- c:\windows\system32\PnkBstrB.xtr
2012-02-13 15:40 . 2009-06-09 07:18 271200 ----a-w- c:\windows\system32\PnkBstrB.ex0
2012-01-26 23:21 . 2009-10-02 16:57 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-01-12 17:20 . 2006-03-02 12:00 1859968 ----a-w- c:\windows\system32\win32k.sys
2012-01-06 04:19 . 2009-01-21 21:23 6557240 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2011-12-19 08:08 . 2006-03-02 12:00 832512 ----a-w- c:\windows\system32\wininet.dll
2011-12-19 08:08 . 2006-03-02 12:00 1830912 ------w- c:\windows\system32\inetcpl.cpl
2011-12-19 08:08 . 2006-03-02 12:00 78336 ----a-w- c:\windows\system32\ieencode.dll
2011-12-19 08:08 . 2006-03-02 12:00 17408 ----a-w- c:\windows\system32\corpol.dll
2011-11-28 18:01 . 2010-07-08 13:43 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 18:01 . 2010-02-13 20:35 199816 ----a-w- c:\windows\system32\aswBoot.exe
2011-11-28 17:53 . 2011-02-27 12:12 435032 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-11-28 17:53 . 2010-02-13 20:35 314456 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-11-28 17:52 . 2010-02-13 20:35 34392 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-11-28 17:52 . 2010-02-13 20:35 52952 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-11-28 17:52 . 2010-02-13 20:35 111320 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-11-28 17:51 . 2010-02-13 20:35 105176 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-11-28 17:51 . 2010-02-13 20:35 20568 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-11-28 17:48 . 2010-02-13 20:35 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-11-25 21:57 . 2006-03-02 12:00 293376 ----a-w- c:\windows\system32\winsrv.dll
2011-11-20 06:12 . 2006-03-02 12:00 60416 ----a-w- c:\windows\system32\packager.exe
2011-11-26 15:47 . 2011-05-12 19:35 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-02-15_10.55.22 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-02-17 06:38 . 2012-02-17 06:38 16384 c:\windows\temp\Perflib_Perfdata_d78.dat
- 2006-03-02 12:00 . 2011-10-31 23:37 44544 c:\windows\system32\pngfilt.dll
+ 2006-03-02 12:00 . 2011-12-19 08:08 44544 c:\windows\system32\pngfilt.dll
- 2006-03-02 12:00 . 2012-01-13 09:45 69688 c:\windows\system32\perfc009.dat
+ 2006-03-02 12:00 . 2012-02-15 12:13 69688 c:\windows\system32\perfc009.dat
+ 2006-03-02 12:00 . 2012-02-15 12:13 80958 c:\windows\system32\perfc005.dat
- 2006-03-02 12:00 . 2012-01-13 09:45 80958 c:\windows\system32\perfc005.dat
- 2007-08-13 17:54 . 2011-10-31 23:37 52224 c:\windows\system32\msfeedsbs.dll
+ 2007-08-13 17:54 . 2011-12-19 08:08 52224 c:\windows\system32\msfeedsbs.dll
+ 2006-03-02 12:00 . 2011-12-19 08:08 27648 c:\windows\system32\jsproxy.dll
- 2006-03-02 12:00 . 2011-10-31 23:37 27648 c:\windows\system32\jsproxy.dll
- 2007-08-13 17:39 . 2011-10-31 20:56 13824 c:\windows\system32\ieudinit.exe
+ 2007-08-13 17:39 . 2011-12-16 12:22 13824 c:\windows\system32\ieudinit.exe
- 2006-03-02 12:00 . 2011-10-31 23:37 44544 c:\windows\system32\iernonce.dll
+ 2006-03-02 12:00 . 2011-12-19 08:08 44544 c:\windows\system32\iernonce.dll
- 2006-03-02 12:00 . 2011-10-31 20:56 70656 c:\windows\system32\ie4uinit.exe
+ 2006-03-02 12:00 . 2011-12-16 12:22 70656 c:\windows\system32\ie4uinit.exe
+ 2007-08-13 17:36 . 2011-12-19 08:08 63488 c:\windows\system32\icardie.dll
- 2007-08-13 17:36 . 2011-10-31 23:37 63488 c:\windows\system32\icardie.dll
+ 2007-08-13 17:36 . 2011-12-19 08:08 44544 c:\windows\system32\dllcache\pngfilt.dll
- 2007-08-13 17:36 . 2011-10-31 23:37 44544 c:\windows\system32\dllcache\pngfilt.dll
+ 2009-01-20 14:05 . 2011-12-19 08:08 52224 c:\windows\system32\dllcache\msfeedsbs.dll
- 2009-01-20 14:05 . 2011-10-31 23:37 52224 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2007-08-13 17:54 . 2011-12-19 08:08 27648 c:\windows\system32\dllcache\jsproxy.dll
- 2007-08-13 17:54 . 2011-10-31 23:37 27648 c:\windows\system32\dllcache\jsproxy.dll
+ 2009-01-20 14:05 . 2011-12-16 12:22 13824 c:\windows\system32\dllcache\ieudinit.exe
- 2009-01-20 14:05 . 2011-10-31 20:56 13824 c:\windows\system32\dllcache\ieudinit.exe
+ 2007-08-13 17:39 . 2011-12-19 08:08 44544 c:\windows\system32\dllcache\iernonce.dll
- 2007-08-13 17:39 . 2011-10-31 23:37 44544 c:\windows\system32\dllcache\iernonce.dll
+ 2007-08-13 17:45 . 2011-12-19 08:08 78336 c:\windows\system32\dllcache\ieencode.dll
- 2007-08-13 17:45 . 2011-10-31 23:37 78336 c:\windows\system32\dllcache\ieencode.dll
+ 2007-08-13 17:39 . 2011-12-16 12:22 70656 c:\windows\system32\dllcache\ie4uinit.exe
- 2007-08-13 17:39 . 2011-10-31 20:56 70656 c:\windows\system32\dllcache\ie4uinit.exe
- 2009-01-20 14:05 . 2011-10-31 23:37 63488 c:\windows\system32\dllcache\icardie.dll
+ 2009-01-20 14:05 . 2011-12-19 08:08 63488 c:\windows\system32\dllcache\icardie.dll
+ 2007-08-13 17:42 . 2011-12-19 08:08 17408 c:\windows\system32\dllcache\corpol.dll
- 2007-08-13 17:42 . 2011-10-31 23:37 17408 c:\windows\system32\dllcache\corpol.dll
+ 2011-06-23 21:50 . 2012-02-15 12:13 34144 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\oisicon.exe
- 2011-06-23 21:50 . 2012-01-11 11:48 34144 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\oisicon.exe
+ 2011-06-23 21:50 . 2012-02-15 12:13 42848 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\msouc.exe
- 2011-06-23 21:50 . 2012-01-11 11:48 42848 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\msouc.exe
+ 2011-06-23 21:50 . 2012-02-15 12:13 19296 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\cagicon.exe
- 2011-06-23 21:50 . 2012-01-11 11:48 19296 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\cagicon.exe
+ 2010-12-13 19:51 . 2012-02-15 22:28 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
- 2010-12-13 19:51 . 2011-10-13 10:08 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 44544 c:\windows\ie7updates\KB2647516-IE7\pngfilt.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 52224 c:\windows\ie7updates\KB2647516-IE7\msfeedsbs.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 27648 c:\windows\ie7updates\KB2647516-IE7\jsproxy.dll
+ 2012-02-15 12:07 . 2011-10-31 20:56 13824 c:\windows\ie7updates\KB2647516-IE7\ieudinit.exe
+ 2012-02-15 12:07 . 2011-10-31 23:37 44544 c:\windows\ie7updates\KB2647516-IE7\iernonce.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 78336 c:\windows\ie7updates\KB2647516-IE7\ieencode.dll
+ 2012-02-15 12:07 . 2011-10-31 20:56 70656 c:\windows\ie7updates\KB2647516-IE7\ie4uinit.exe
+ 2012-02-15 12:07 . 2011-10-31 23:37 63488 c:\windows\ie7updates\KB2647516-IE7\icardie.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 17408 c:\windows\ie7updates\KB2647516-IE7\corpol.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\dab766b18e6fe0a8f53a93c56be7b40e\System.Windows.Presentation.ni.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\31b65443e56a470d199f293085576e05\System.Web.DynamicData.Design.ni.dll
+ 2012-02-15 15:45 . 2012-02-15 15:45 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\89dfd3999ad1d72c59243d7b4bf40d5a\System.ComponentModel.DataAnnotations.ni.dll
+ 2012-02-15 12:13 . 2012-02-15 12:13 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\3aa4296d4aa01fe0533de2c15f818d5f\PresentationFontCache.ni.exe
+ 2012-02-15 12:13 . 2012-02-15 12:13 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\820acb71782d9cd006800b3ac7e1ca53\PresentationCFFRasterizer.ni.dll
+ 2012-02-15 15:45 . 2012-02-15 15:45 17920 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.WSMan.Run#\34f5b348d1b44c212fa9e91d092e8af7\Microsoft.WSMan.Runtime.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\d07f0222f62dbed7898a6e2e909d407a\Microsoft.Vsa.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 51712 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\fc4d6c5f9e0b808173f8c1efde40fdee\Microsoft.VisualStudio.Tools.Applications.Runtime.v10.0.ni.dll
+ 2012-02-15 15:42 . 2012-02-15 15:42 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\e21106b9afc7590985daca688e1749e1\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v9.0.ni.dll
+ 2012-02-15 15:45 . 2012-02-15 15:45 66560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\88f0d3b7f1900808e3e2f2b251478213\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v10.0.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 58368 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\55669fd34342f39cd0709fb634fb09c4\Microsoft.VisualStudio.Tools.Applications.HostAdapter.v10.0.ni.dll
+ 2012-02-15 15:42 . 2012-02-15 15:42 42496 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\395b63fe26a7460dfbc33c5712de3d1d\Microsoft.VisualStudio.Tools.Office.Excel.AddInAdapter.v9.0.ni.dll
+ 2012-02-15 15:42 . 2012-02-15 15:42 42496 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\371458b677f7da0ca8e48bd3ae9eaad9\Microsoft.VisualStudio.Tools.Office.Word.AddInAdapter.v9.0.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 86016 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\2417b11176712a5ea517f7ba7c576c07\Microsoft.VisualStudio.Tools.Office.Outlook.HostAdapter.v10.0.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 91648 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Backgroun#\c27da951a1739077901b201137925795\Microsoft.BackgroundIntelligentTransfer.Management.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\ipdmctrl\51f76e5ca2698979a0be4edb9a2379fa\ipdmctrl.ni.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2012-01-05 23:35 . 2012-01-05 23:35 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2012-01-05 23:35 . 2012-01-05 23:35 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2006-03-02 12:00 . 2011-12-19 08:08 233472 c:\windows\system32\webcheck.dll
- 2006-03-02 12:00 . 2011-10-31 23:37 233472 c:\windows\system32\webcheck.dll
- 2006-03-02 12:00 . 2011-10-31 23:37 106496 c:\windows\system32\url.dll
+ 2006-03-02 12:00 . 2011-12-19 08:08 106496 c:\windows\system32\url.dll
- 2006-03-02 12:00 . 2012-01-13 09:45 439044 c:\windows\system32\perfh009.dat
+ 2006-03-02 12:00 . 2012-02-15 12:13 439044 c:\windows\system32\perfh009.dat
- 2006-03-02 12:00 . 2012-01-13 09:45 436290 c:\windows\system32\perfh005.dat
+ 2006-03-02 12:00 . 2012-02-15 12:13 436290 c:\windows\system32\perfh005.dat
+ 2006-03-02 12:00 . 2011-12-19 08:08 102912 c:\windows\system32\occache.dll
- 2006-03-02 12:00 . 2011-10-31 23:37 102912 c:\windows\system32\occache.dll
- 2006-03-02 12:00 . 2011-10-31 23:37 671232 c:\windows\system32\mstime.dll
+ 2006-03-02 12:00 . 2011-12-19 08:08 671232 c:\windows\system32\mstime.dll
+ 2006-03-02 12:00 . 2011-12-19 08:08 193024 c:\windows\system32\msrating.dll
- 2006-03-02 12:00 . 2011-10-31 23:37 193024 c:\windows\system32\msrating.dll
+ 2006-03-02 12:00 . 2011-12-19 08:08 478720 c:\windows\system32\mshtmled.dll
- 2006-03-02 12:00 . 2011-10-31 23:37 478720 c:\windows\system32\mshtmled.dll
- 2007-08-13 17:54 . 2011-10-31 23:37 468480 c:\windows\system32\msfeeds.dll
+ 2007-08-13 17:54 . 2011-12-19 08:08 468480 c:\windows\system32\msfeeds.dll
- 2007-08-13 17:34 . 2011-10-31 23:37 268288 c:\windows\system32\iertutil.dll
+ 2007-08-13 17:34 . 2011-12-19 08:08 268288 c:\windows\system32\iertutil.dll
- 2006-03-02 12:00 . 2011-10-31 23:37 192512 c:\windows\system32\iepeers.dll
+ 2006-03-02 12:00 . 2011-12-19 08:08 192512 c:\windows\system32\iepeers.dll
+ 2006-03-02 12:00 . 2011-12-19 08:08 384512 c:\windows\system32\iedkcs32.dll
- 2006-03-02 12:00 . 2011-10-31 23:37 384512 c:\windows\system32\iedkcs32.dll
- 2007-07-11 11:27 . 2011-10-31 23:37 380928 c:\windows\system32\ieapfltr.dll
+ 2007-07-11 11:27 . 2011-12-19 08:08 380928 c:\windows\system32\ieapfltr.dll
+ 2006-03-02 12:00 . 2011-12-16 10:58 161792 c:\windows\system32\ieakui.dll
- 2006-03-02 12:00 . 2011-10-27 12:49 161792 c:\windows\system32\ieakui.dll
- 2006-03-02 12:00 . 2011-10-31 23:37 230400 c:\windows\system32\ieaksie.dll
+ 2006-03-02 12:00 . 2011-12-19 08:08 230400 c:\windows\system32\ieaksie.dll
+ 2006-03-02 12:00 . 2011-12-19 08:08 153088 c:\windows\system32\ieakeng.dll
- 2006-03-02 12:00 . 2011-10-31 23:37 153088 c:\windows\system32\ieakeng.dll
+ 2009-01-20 19:20 . 2012-02-15 14:10 273376 c:\windows\system32\FNTCACHE.DAT
- 2009-01-20 19:20 . 2011-12-15 14:14 273376 c:\windows\system32\FNTCACHE.DAT
+ 2006-03-02 12:00 . 2011-12-19 08:08 133120 c:\windows\system32\extmgr.dll
- 2006-03-02 12:00 . 2011-10-31 23:37 133120 c:\windows\system32\extmgr.dll
+ 2006-03-02 12:00 . 2011-12-19 08:08 214528 c:\windows\system32\dxtrans.dll
- 2006-03-02 12:00 . 2011-10-31 23:37 214528 c:\windows\system32\dxtrans.dll
- 2006-03-02 12:00 . 2011-10-31 23:37 347136 c:\windows\system32\dxtmsft.dll
+ 2006-03-02 12:00 . 2011-12-19 08:08 347136 c:\windows\system32\dxtmsft.dll
- 2009-01-20 13:34 . 2011-10-31 23:37 832512 c:\windows\system32\dllcache\wininet.dll
+ 2009-01-20 13:34 . 2011-12-19 08:08 832512 c:\windows\system32\dllcache\wininet.dll
+ 2007-08-13 17:54 . 2011-12-19 08:08 233472 c:\windows\system32\dllcache\webcheck.dll
- 2007-08-13 17:54 . 2011-10-31 23:37 233472 c:\windows\system32\dllcache\webcheck.dll
+ 2007-08-13 17:44 . 2011-12-19 08:08 106496 c:\windows\system32\dllcache\url.dll
- 2007-08-13 17:44 . 2011-10-31 23:37 106496 c:\windows\system32\dllcache\url.dll
+ 2007-08-13 17:44 . 2011-12-19 08:08 102912 c:\windows\system32\dllcache\occache.dll
- 2007-08-13 17:44 . 2011-10-31 23:37 102912 c:\windows\system32\dllcache\occache.dll
- 2007-08-13 17:54 . 2011-10-31 23:37 671232 c:\windows\system32\dllcache\mstime.dll
+ 2007-08-13 17:54 . 2011-12-19 08:08 671232 c:\windows\system32\dllcache\mstime.dll
- 2007-08-13 17:44 . 2011-10-31 23:37 193024 c:\windows\system32\dllcache\msrating.dll
+ 2007-08-13 17:44 . 2011-12-19 08:08 193024 c:\windows\system32\dllcache\msrating.dll
- 2007-08-13 17:54 . 2011-10-31 23:37 478720 c:\windows\system32\dllcache\mshtmled.dll
+ 2007-08-13 17:54 . 2011-12-19 08:08 478720 c:\windows\system32\dllcache\mshtmled.dll
+ 2009-01-20 14:05 . 2011-12-19 08:08 468480 c:\windows\system32\dllcache\msfeeds.dll
- 2009-01-20 14:05 . 2011-10-31 23:37 468480 c:\windows\system32\dllcache\msfeeds.dll
+ 2007-08-13 17:43 . 2011-12-16 11:00 634680 c:\windows\system32\dllcache\iexplore.exe
+ 2009-01-20 14:05 . 2011-12-19 08:08 268288 c:\windows\system32\dllcache\iertutil.dll
- 2009-01-20 14:05 . 2011-10-31 23:37 268288 c:\windows\system32\dllcache\iertutil.dll
- 2007-08-13 17:54 . 2011-10-31 23:37 192512 c:\windows\system32\dllcache\iepeers.dll
+ 2007-08-13 17:54 . 2011-12-19 08:08 192512 c:\windows\system32\dllcache\iepeers.dll
- 2007-08-13 17:39 . 2011-10-31 23:37 384512 c:\windows\system32\dllcache\iedkcs32.dll
+ 2007-08-13 17:39 . 2011-12-19 08:08 384512 c:\windows\system32\dllcache\iedkcs32.dll
+ 2009-01-20 14:05 . 2011-12-19 08:08 380928 c:\windows\system32\dllcache\ieapfltr.dll
- 2009-01-20 14:05 . 2011-10-31 23:37 380928 c:\windows\system32\dllcache\ieapfltr.dll
+ 2006-03-02 12:00 . 2011-12-16 10:58 161792 c:\windows\system32\dllcache\ieakui.dll
- 2006-03-02 12:00 . 2011-10-27 12:49 161792 c:\windows\system32\dllcache\ieakui.dll
- 2007-08-13 17:39 . 2011-10-31 23:37 230400 c:\windows\system32\dllcache\ieaksie.dll
+ 2007-08-13 17:39 . 2011-12-19 08:08 230400 c:\windows\system32\dllcache\ieaksie.dll
+ 2007-08-13 17:39 . 2011-12-19 08:08 153088 c:\windows\system32\dllcache\ieakeng.dll
- 2007-08-13 17:39 . 2011-10-31 23:37 153088 c:\windows\system32\dllcache\ieakeng.dll
+ 2007-08-13 17:54 . 2011-12-19 08:08 133120 c:\windows\system32\dllcache\extmgr.dll
- 2007-08-13 17:54 . 2011-10-31 23:37 133120 c:\windows\system32\dllcache\extmgr.dll
- 2007-08-13 17:35 . 2011-10-31 23:37 214528 c:\windows\system32\dllcache\dxtrans.dll
+ 2007-08-13 17:35 . 2011-12-19 08:08 214528 c:\windows\system32\dllcache\dxtrans.dll
+ 2007-08-13 17:35 . 2011-12-19 08:08 347136 c:\windows\system32\dllcache\dxtmsft.dll
- 2007-08-13 17:35 . 2011-10-31 23:37 347136 c:\windows\system32\dllcache\dxtmsft.dll
+ 2007-08-13 17:39 . 2011-12-19 08:08 124928 c:\windows\system32\dllcache\advpack.dll
- 2007-08-13 17:39 . 2011-10-31 23:37 124928 c:\windows\system32\dllcache\advpack.dll
+ 2006-03-02 12:00 . 2011-12-19 08:08 124928 c:\windows\system32\advpack.dll
- 2006-03-02 12:00 . 2011-10-31 23:37 124928 c:\windows\system32\advpack.dll
- 2011-06-23 21:50 . 2012-01-11 11:48 415584 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\pubs.exe
+ 2011-06-23 21:50 . 2012-02-15 12:13 415584 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\pubs.exe
+ 2011-06-23 21:50 . 2012-02-15 12:13 303456 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\outicon.exe
- 2011-06-23 21:50 . 2012-01-11 11:48 303456 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\outicon.exe
+ 2011-06-23 21:50 . 2012-02-15 12:13 571232 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\misc.exe
- 2011-06-23 21:50 . 2012-01-11 11:48 571232 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\misc.exe
- 2011-06-23 21:50 . 2012-01-11 11:48 326496 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\joticon.exe
+ 2011-06-23 21:50 . 2012-02-15 12:13 326496 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\joticon.exe
+ 2011-06-23 21:50 . 2012-02-15 12:13 469856 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\inficon.exe
- 2011-06-23 21:50 . 2012-01-11 11:48 469856 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\inficon.exe
- 2011-06-23 21:50 . 2012-01-11 11:48 178528 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\grvicons.exe
+ 2011-06-23 21:50 . 2012-02-15 12:13 178528 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\grvicons.exe
+ 2012-02-15 12:07 . 2011-10-31 23:37 832512 c:\windows\ie7updates\KB2647516-IE7\wininet.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 233472 c:\windows\ie7updates\KB2647516-IE7\webcheck.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 106496 c:\windows\ie7updates\KB2647516-IE7\url.dll
+ 2012-02-15 12:07 . 2010-07-05 13:13 391032 c:\windows\ie7updates\KB2647516-IE7\spuninst\updspapi.dll
+ 2012-02-15 12:07 . 2010-07-05 13:13 233848 c:\windows\ie7updates\KB2647516-IE7\spuninst\spuninst.exe
+ 2012-02-15 12:07 . 2011-10-31 23:37 102912 c:\windows\ie7updates\KB2647516-IE7\occache.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 671232 c:\windows\ie7updates\KB2647516-IE7\mstime.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 193024 c:\windows\ie7updates\KB2647516-IE7\msrating.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 478720 c:\windows\ie7updates\KB2647516-IE7\mshtmled.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 468480 c:\windows\ie7updates\KB2647516-IE7\msfeeds.dll
+ 2012-02-15 12:07 . 2011-10-31 10:46 634504 c:\windows\ie7updates\KB2647516-IE7\iexplore.exe
+ 2012-02-15 12:07 . 2011-10-31 23:37 268288 c:\windows\ie7updates\KB2647516-IE7\iertutil.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 192512 c:\windows\ie7updates\KB2647516-IE7\iepeers.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 384512 c:\windows\ie7updates\KB2647516-IE7\iedkcs32.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 380928 c:\windows\ie7updates\KB2647516-IE7\ieapfltr.dll
+ 2012-02-15 12:07 . 2011-10-27 12:49 161792 c:\windows\ie7updates\KB2647516-IE7\ieakui.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 230400 c:\windows\ie7updates\KB2647516-IE7\ieaksie.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 153088 c:\windows\ie7updates\KB2647516-IE7\ieakeng.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 133120 c:\windows\ie7updates\KB2647516-IE7\extmgr.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 214528 c:\windows\ie7updates\KB2647516-IE7\dxtrans.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 347136 c:\windows\ie7updates\KB2647516-IE7\dxtmsft.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 124928 c:\windows\ie7updates\KB2647516-IE7\advpack.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 321536 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\edc5691acfb65ac37f49de2ec497083a\WsatConfig.ni.exe
+ 2012-02-15 14:13 . 2012-02-15 14:13 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\4ad8369d6a60765d7e9b43cdf9023f41\WindowsFormsIntegration.ni.dll
+ 2012-02-15 14:13 . 2012-02-15 14:13 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\68f4157e570c77df653057c0583395bd\UIAutomationClient.ni.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 400896 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\c2a12bd4056b44f8005a7eb3af161e6a\System.Xml.Linq.ni.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\fc63b434b2f253cd27625487f7b02ac0\System.Web.Routing.ni.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\67877f896b2b0e42286e838fe307f3fd\System.Web.RegularExpressions.ni.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\86650d4fb220f94f25bb5da42a03d454\System.Web.Extensions.Design.ni.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\654465871e547e131668874de7c60b8c\System.Web.Entity.ni.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\f0d6895f6e709d425cb5da6053c603d2\System.Web.Entity.Design.ni.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\3f3b7dc7208e302e39a2dfb5b2cb953b\System.Web.DynamicData.ni.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\e9cddd213343f15d611b14620d649bb0\System.Web.Abstractions.ni.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\f25d114cb629d1f512f98883c6535a75\System.Transactions.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\11dcb806c92f55111f5fa9f1a90e3bdd\System.ServiceProcess.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 679936 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\5fb9981f4147b537b53be9d58bf4e9b4\System.Security.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 311296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\1335dd98ce5ce22ad1f51cc274ca5a1d\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 621056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Net\a4b2b1ee81acd843970d9a81b281f1c1\System.Net.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 998400 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\a2a14380e8c9149d5b212d0100ef588a\System.Management.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 330752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\e3436edde657a5111d39d5b2eecf9715\System.Management.Instrumentation.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\974ded7dd3bca225a1b90de778846c78\System.IO.Log.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\01eba24390736a59c39becd825b5756e\System.IdentityModel.Selectors.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\c0d15fb6308587fef8744d568e64bcda\System.EnterpriseServices.Wrapper.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\c0d15fb6308587fef8744d568e64bcda\System.EnterpriseServices.ni.dll
+ 2012-02-15 14:12 . 2012-02-15 14:12 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\e9ae7ae6d1e9edc7aaf819889cd1c692\System.Drawing.Design.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\78a370dc153011708dd9e4cb0e606bfc\System.DirectoryServices.Protocols.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 881152 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\6e644fc7464d9fe23fc9cd6001296f2f\System.DirectoryServices.AccountManagement.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 939008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\bac39be66bb9f987c1948b766833f8e6\System.Data.Services.Client.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 354816 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\2b5ecd231320e57010043c408783d80b\System.Data.Services.Design.ni.dll
+ 2012-02-15 15:45 . 2012-02-15 15:45 756736 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\4ac9ac2326720485aefd4d79d2024945\System.Data.Entity.Design.ni.dll
+ 2012-02-15 15:45 . 2012-02-15 15:45 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\d504d550fd0a6994fcb1466ea7be92af\System.Data.DataSetExtensions.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\94a40f415bfa947e251888bbe88bb973\System.Configuration.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\28637135c6939e74450bbbf110b12643\System.Configuration.Install.ni.dll
+ 2012-02-15 15:42 . 2012-02-15 15:42 633856 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\958b5c0114d664ab5ba72575c301e2ea\System.AddIn.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 366080 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\4dcff3b0e79fc27e31549bb2af00efb5\SMSvcHost.ni.exe
+ 2012-02-15 15:43 . 2012-02-15 15:43 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\bd3bfd5b6ef659dac4d6cccb34577d33\SMDiagnostics.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\edec83be646eb52204c991371751a428\ServiceModelReg.ni.exe
+ 2012-02-15 14:12 . 2012-02-15 14:12 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\52015457bc28e7a9a563d9eab8ab0015\PresentationFramework.Royale.ni.dll
+ 2012-02-15 14:12 . 2012-02-15 14:12 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\46a680814559114706a33282e9df4b7a\PresentationFramework.Classic.ni.dll
+ 2012-02-15 14:12 . 2012-02-15 14:12 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\2713754549b1114c9152d33efe5f72c7\PresentationFramework.Aero.ni.dll
+ 2012-02-15 14:12 . 2012-02-15 14:12 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\1552f18ca434c1dca6d082df476d089a\PresentationFramework.Luna.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\7c51497b188c82e2ccbe6315549ce023\MSBuild.ni.exe
+ 2012-02-15 15:45 . 2012-02-15 15:45 508928 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.WSMan.Man#\9a51f6f48b8bb88e1ffe0276a18724a7\Microsoft.WSMan.Management.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 196608 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\fd9b2a0c92f312f43d8c6188b61b0dbe\Microsoft.VisualStudio.Tools.Office.Word.HostAdapter.v10.0.ni.dll
+ 2012-02-15 15:45 . 2012-02-15 15:45 303104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\c2eeb51c4cf6c5bd6c26a0c12df9230b\Microsoft.VisualStudio.Tools.Office.AppInfoDocument.v9.0.ni.dll
+ 2012-02-15 15:45 . 2012-02-15 15:45 617472 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\b3d2eabe430bacb6e0c8ecc39cc209b0\Microsoft.VisualStudio.Tools.Office.Runtime.v10.0.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 179200 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\ab2956e279414e75bcd64ca00e73b837\Microsoft.VisualStudio.Tools.Office.Excel.HostAdapter.v10.0.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 134144 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\947dd7cdbe99fd60f47e3013bff20623\Microsoft.VisualStudio.Tools.Office.HostAdapter.v10.0.ni.dll
+ 2012-02-15 15:45 . 2012-02-15 15:45 145920 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\7c06c5460638a2392da05d6d26c0f1ab\Microsoft.VisualStudio.Tools.Office.ContainerControl.v10.0.ni.dll
+ 2012-02-15 15:45 . 2012-02-15 15:45 337920 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\6ad3e35af29ed14c222748e455abf53d\Microsoft.VisualStudio.Tools.Applications.ServerDocument.v9.0.ni.dll
+ 2012-02-15 15:45 . 2012-02-15 15:45 161280 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\5b110b2fd49f8aab104d96743e9149a1\Microsoft.VisualStudio.Tools.Office.Word.AddInProxy.v9.0.ni.dll
+ 2012-02-15 15:45 . 2012-02-15 15:45 363008 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\5183d299b86789b570c8a86bb5578924\Microsoft.VisualStudio.Tools.Applications.Hosting.v10.0.ni.dll
+ 2012-02-15 15:45 . 2012-02-15 15:45 285184 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\4513873215c270570a078aa7781d7dcb\Microsoft.VisualStudio.Tools.Applications.Hosting.v9.0.ni.dll
+ 2012-02-15 15:45 . 2012-02-15 15:45 161792 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\2a1704cff78255c7feb478c758f8e3ed\Microsoft.VisualStudio.Tools.Office.Excel.AddInProxy.v9.0.ni.dll
+ 2012-02-15 15:45 . 2012-02-15 15:45 650240 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\21be7d49ea9856842acacb339488498a\Microsoft.VisualStudio.Tools.Applications.ServerDocument.v10.0.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 133120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\1ec47c8f617d0d08d6d69c6f6ec6457c\Microsoft.VisualStudio.Tools.Applications.Runtime.v9.0.ni.dll
+ 2012-02-15 15:42 . 2012-02-15 15:42 215040 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\02efe4d8a684ae6d8004d59ad80ab19c\Microsoft.VisualStudio.Tools.Office.AddInAdapter.v9.0.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\f0f6dd614d294295c5d8386cc4192034\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 515584 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\b99685b2729aa2b6cfd3c81ffb50ec29\Microsoft.PowerShell.ConsoleHost.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 156160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\7c6965d456a41e7f939b717cf8ae70fd\Microsoft.PowerShell.Security.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 291328 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\75c6e8d5775b6a34f5f8076a9840c83a\Microsoft.PowerShell.Commands.Diagnostics.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 729600 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\71311f01dfd70eef8195a85741fea78d\Microsoft.PowerShell.GraphicalHost.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 737792 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\7022f53018b2dbbd1db3918bba4b5614\Microsoft.PowerShell.Commands.Management.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 854528 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.To#\f4e36adcbc27b9c28597f52d6c8fdec3\Microsoft.Office.Tools.Word.v9.0.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 167424 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.To#\d4249393424f255150a91231c560f59a\Microsoft.Office.Tools.Outlook.v9.0.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 815616 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.To#\b4733fe46420b03239b36d136f548bb9\Microsoft.Office.Tools.Common.v9.0.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 152064 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.To#\0efd03aee130586a02a23f54897685e8\Microsoft.Office.Tools.v9.0.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 114688 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.In#\bc713f204ed6dce1ddbd57657d17e102\Microsoft.Office.InfoPath.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 268800 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.Bu#\b7ec182c921c1ed80b9108f9aab2157e\Microsoft.Office.BusinessApplications.Diagnostics.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 343040 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.BusinessD#\02bf1e69e27e79cddee43d65d88cade7\Microsoft.BusinessData.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\fd1338828beec8737fed8f50f4fcc567\Microsoft.Build.Utilities.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\0d5f999c4b7e51151548c37c676c1b8e\Microsoft.Build.Utilities.v3.5.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 839680 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\792168ce8fe03a3db43e12cf736cf91e\Microsoft.Build.Engine.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\0a5277c34ddc1f55df1defb4231e814f\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\a8df37aadb089f1f34d3d2f103966fbc\ComSvcConfig.ni.exe
+ 2012-02-15 15:42 . 2012-02-15 15:42 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\25ce400b547f517258c8afb0480390ea\AspNetMMCExt.ni.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
- 2006-03-02 12:00 . 2011-10-31 23:37 1168896 c:\windows\system32\urlmon.dll
+ 2006-03-02 12:00 . 2011-12-19 08:08 1168896 c:\windows\system32\urlmon.dll
+ 2006-03-02 12:00 . 2011-12-19 08:08 3616768 c:\windows\system32\mshtml.dll
- 2007-08-13 17:54 . 2011-10-31 23:37 6076416 c:\windows\system32\ieframe.dll
+ 2007-08-13 17:54 . 2011-12-19 08:08 6076416 c:\windows\system32\ieframe.dll
+ 2009-01-20 13:32 . 2012-01-12 17:20 1859968 c:\windows\system32\dllcache\win32k.sys
- 2009-01-20 13:34 . 2011-10-31 23:37 1168896 c:\windows\system32\dllcache\urlmon.dll
+ 2009-01-20 13:34 . 2011-12-19 08:08 1168896 c:\windows\system32\dllcache\urlmon.dll
+ 2009-01-20 13:31 . 2011-12-19 08:08 3616768 c:\windows\system32\dllcache\mshtml.dll
- 2009-01-20 14:05 . 2011-10-31 23:37 6076416 c:\windows\system32\dllcache\ieframe.dll
+ 2009-01-20 14:05 . 2011-12-19 08:08 6076416 c:\windows\system32\dllcache\ieframe.dll
+ 2011-10-26 02:39 . 2011-10-26 02:39 3186688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
+ 2011-11-18 17:52 . 2011-11-18 17:52 9183232 c:\windows\Installer\1192218.msp
+ 2011-10-30 21:54 . 2011-10-30 21:54 2748416 c:\windows\Installer\1192200.msp
+ 2012-01-05 05:21 . 2012-01-05 05:21 4964864 c:\windows\Installer\11921f7.msp
+ 2012-01-25 00:32 . 2012-01-25 00:32 3458560 c:\windows\Installer\11921df.msp
+ 2011-06-23 21:50 . 2012-02-15 12:13 1479520 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\xlicons.exe
- 2011-06-23 21:50 . 2012-01-11 11:48 1479520 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\xlicons.exe
- 2011-06-23 21:50 . 2012-01-11 11:48 1858400 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\wordicon.exe
+ 2011-06-23 21:50 . 2012-02-15 12:13 1858400 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\wordicon.exe
- 2011-06-23 21:50 . 2012-01-11 11:48 3792736 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\pptico.exe
+ 2011-06-23 21:50 . 2012-02-15 12:13 3792736 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\pptico.exe
- 2011-06-23 21:50 . 2012-01-11 11:48 1449312 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\accicons.exe
+ 2011-06-23 21:50 . 2012-02-15 12:13 1449312 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\accicons.exe
+ 2012-02-15 12:07 . 2011-10-31 23:37 1168896 c:\windows\ie7updates\KB2647516-IE7\urlmon.dll
+ 2012-02-15 12:07 . 2011-11-04 15:17 3616256 c:\windows\ie7updates\KB2647516-IE7\mshtml.dll
+ 2012-02-15 12:07 . 2011-10-31 23:37 6076416 c:\windows\ie7updates\KB2647516-IE7\ieframe.dll
+ 2012-02-15 12:14 . 2012-02-15 12:14 3325440 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\174c2f776741812aed02c337bbcd1dae\WindowsBase.ni.dll
+ 2012-02-15 14:13 . 2012-02-15 14:13 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\94f5164ff4f664c5e4e7fb4c3af1abad\UIAutomationClientsideProviders.ni.dll
+ 2012-02-15 12:13 . 2012-02-15 12:13 7953408 c:\windows\assembly\NativeImages_v2.0.50727_32\System\9e3803cd2a11f056291862e306a8e2b2\System.ni.dll
+ 2012-02-15 14:13 . 2012-02-15 14:13 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\77e1279cbf4eecfb0284b63316fe43fe\System.Xml.ni.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\c4c671c737b553db8e07664816475333\System.WorkflowServices.ni.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 1908224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\248ea47105ff4af6ee75e6fdd5b450a1\System.Workflow.Runtime.ni.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\80a288b6611668160334668cc2608e4a\System.Workflow.ComponentModel.ni.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\4c27548df5897320840ee0d65db38742\System.Workflow.Activities.ni.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\e9ba004858dcdb5958d86f26f043f85a\System.Web.Services.ni.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\030cde14924eefebc06c240dbfe093a4\System.Web.Mobile.ni.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 2405888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\6379c8ca8ae11effb415139990923ff1\System.Web.Extensions.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 1917440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\e456140d5d6c43d7383bd36d3f9e12c6\System.Speech.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 1706496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\285dfbf2380436e187cb624bd1cd4683\System.ServiceModel.Web.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 2345472 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\f2532204217dc10f152afd077b09927c\System.Runtime.Serialization.ni.dll
+ 2012-02-15 14:12 . 2012-02-15 14:12 1035776 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\d51e6bb07124a1d780d1e024858e0dc1\System.Printing.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 8365056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.A#\864ca331ebf1bcc1390374b2fa826a3c\System.Management.Automation.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 1070080 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\8ef05061cd205c4f2a8583d97f32a603\System.IdentityModel.ni.dll
+ 2012-02-15 14:12 . 2012-02-15 14:12 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\9351cf29bb1ba951e45a9b3b0edab937\System.Drawing.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\77d0e93f024055d04c07cc2700b4c590\System.DirectoryServices.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\707a05a7d5a8d99dd56d1d50311a60d2\System.Deployment.ni.dll
+ 2012-02-15 14:12 . 2012-02-15 14:12 6616576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\ae888f8633fce3ff1de98e32bce0abbf\System.Data.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 2510336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\857300fa64d09c69125451fd8894f3da\System.Data.SqlXml.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 1328128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\e9d4a1fb13572c769ddd9b86e55baab4\System.Data.Services.ni.dll
+ 2012-02-15 14:12 . 2012-02-15 14:12 2516480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\c3d9c33f71d15a3e2e240092a244eba3\System.Data.Linq.ni.dll
+ 2012-02-15 15:45 . 2012-02-15 15:45 9924096 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity\424160369b301ccd1b6fd86265611955\System.Data.Entity.ni.dll
+ 2012-02-15 14:12 . 2012-02-15 14:12 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\0a6d6717e76be12295711ff02c7aa1d4\System.Core.ni.dll
+ 2012-02-15 14:12 . 2012-02-15 14:12 2128896 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\33cdfb4c322a528260016ac759230501\ReachFramework.ni.dll
+ 2012-02-15 14:12 . 2012-02-15 14:12 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\a6def83aee1aaf3336675ce58ac09013\PresentationUI.ni.dll
+ 2012-02-15 12:13 . 2012-02-15 12:13 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\59cd6ce5a254006179eee92952cd2272\PresentationBuildTasks.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 1301504 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\c43ed235345a4018280fba62955fae06\Microsoft.VisualStudio.Tools.Applications.Adapter.v9.0.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\96e485c02ad346a2bd26a635e7fcb023\Microsoft.VisualBasic.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 1093120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\f7071f9a1c0523540f6aa7f11c302fb6\Microsoft.Transactions.Bridge.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 1704448 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\95bf3f263a4283cdb67bf8f92c518d3c\Microsoft.PowerShell.GPowerShell.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 3722752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\4344be5b3ca782a09d101084bd706f41\Microsoft.PowerShell.Editor.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 1609728 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\073475f74ecf11e74fd4d68676c65f41\Microsoft.PowerShell.Commands.Utility.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 1354240 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.To#\96051ed65cb1df28ff6ed31e1b79ab1a\Microsoft.Office.Tools.Excel.v9.0.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 1787904 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.In#\c91d1ece8dbe6d1e213a46c0311af629\Microsoft.Office.InfoPath.Client.Internal.Host.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 1184256 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.In#\0a770169f111f7eb1aa17abe9cc6cf6f\Microsoft.Office.Interop.InfoPath.SemiTrust.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 1564160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.Bu#\d0eec7b8fe89deb26fc1d43226fc92df\Microsoft.Office.BusinessApplications.Runtime.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 2091008 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.Bu#\5068463ba48868e31e4f2a951f2b09c9\Microsoft.Office.BusinessApplications.RuntimeUi.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 4751872 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.Bu#\29741db25bcfe48d136693b98c622faa\Microsoft.Office.BusinessApplications.SyncServices.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 3237376 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.Bu#\13f92c4193e6307b6164940621501de0\Microsoft.Office.BusinessData.ni.dll
+ 2012-02-15 15:46 . 2012-02-15 15:46 2332160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\806b1d127ed3e906db972751e87585c4\Microsoft.JScript.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 1966080 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\912789fd859e0887e10a935cade08e72\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2012-02-15 15:44 . 2012-02-15 15:44 1620992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\6c1d3eec78906cc2a2ecffb013114c50\Microsoft.Build.Tasks.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 1888768 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\d6edd4b4619a9052d3dfe50c3067d5e0\Microsoft.Build.Engine.ni.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 3186688 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 5246976 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 5246976 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2012-02-15 12:12 . 2012-02-15 12:12 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
- 2012-01-05 23:35 . 2012-01-05 23:35 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2009-01-20 13:54 . 2012-02-15 12:09 52550552 c:\windows\system32\MRT.exe
+ 2012-02-15 22:28 . 2012-02-15 22:28 20333056 c:\windows\Installer\1c7f979.msp
+ 2012-02-15 14:13 . 2012-02-15 14:13 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\ad99ac6b5666edb8ee742dd64f9578af\System.Windows.Forms.ni.dll
+ 2012-02-15 16:03 . 2012-02-15 16:03 11817472 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\29bdc8352d3c26e3c572ea60639dec3b\System.Web.ni.dll
+ 2012-02-15 15:43 . 2012-02-15 15:43 17403904 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\1cdcd6d97627d345d5ff446e6ec88b97\System.ServiceModel.ni.dll
+ 2012-02-15 14:12 . 2012-02-15 14:12 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\7c8f8fb506c32500acc1b6190d054f26\System.Design.ni.dll
+ 2012-02-15 14:12 . 2012-02-15 14:12 14328320 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\5060105fb9e169399fe45600b1e9215e\PresentationFramework.ni.dll
+ 2012-02-15 14:11 . 2012-02-15 14:11 12215808 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\0665bba8c9962deadc418881eb3a2a2a\PresentationCore.ni.dll
.

-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-11-28 18:01 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 4"="c:\program files\IObit\Advanced SystemCare 4\ASCTray.exe" [2011-08-09 417112]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2007-01-05 204288]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvMediaCenter"="NvMCTray.dll" [2006-06-01 86016]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"Bonus.SSR.FR11"="c:\program files\ABBYY FineReader 11\Bonus.ScreenshotReader.exe" [2011-08-30 925960]
"avast"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2011-11-28 3744552]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
.
c:\documents and settings\Admin\Nabídka Start\Programy\Po spuštění\
FlashGet.lnk - c:\program files\FlashGet\flashget.exe [2010-2-14 1368064]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^GamePark klient 2.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\GamePark klient 2.lnk
backup=c:\windows\pss\GamePark klient 2.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
2007-08-01 18:17 222592 ----a-w- c:\program files\Alcohol Soft\Alcohol 120\AxCmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
2011-08-04 12:34 1955208 ----a-w- c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
2011-01-26 20:27 395640 ----a-w- c:\program files\uTorrent\utorrent.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"uTorrent"="c:\program files\uTorrent\utorrent.exe"
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe"
"Skype"="c:\program files\Skype\Phone\Skype.exe" /nosplash /minimized
"FlashGet"=c:\program files\FlashGet\flashget.exe
"OEXPRESS"=c:\documents and settings\All Users\Data aplikací\LangSoft\OETRN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Predplacenky"="c:\program files\Predplacenky.cz\webicon.exe"
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"TrueImageMonitor.exe"=c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe
"Acronis Scheduler2 Service"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe"
"CloneCDTray"="c:\program files\SlySoft\CloneCD\CloneCDTray.exe" /s
"Flashget"=c:\progra~1\FlashGet\Flashget.exe /min
"AcronisTimounterMonitor"=c:\program files\Acronis\TrueImageHome\TimounterMonitor.exe
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\FlashGet\\flashget.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"f:\\PC HRY INSTAL\\Need for Speed Hot Pursuit (2010) CZ\\NFS11.exe"=
"f:\\PC HRY INSTAL\\iw3mpHAMACHI 1.7.exe"=
"c:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"f:\\PC HRY INSTAL\\COD4\\iw3mp.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"f:\\PC HRY INSTAL\\Need for Speed Hot Pursuit (2010) CZ\\Launcher.exe"=
"f:\\PC HRY INSTAL\\MW2\\iw4mp.dat"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5985:TCP"= 5985:TCP:*:Disabled:Vzdálená správa systému Windows
"3724:TCP"= 3724:TCP:Blizzard Downloader: 3724
.
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [21.1.2009 16:57 639224]
R0 tdrpman147;Acronis Try&Decide and Restore Points filter (build 147);c:\windows\system32\drivers\tdrpm147.sys [26.11.2009 21:51 971232]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [27.2.2011 13:12 435032]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [13.2.2010 21:35 314456]
R2 AdvancedSystemCareService;Advanced SystemCare Service;c:\program files\IObit\Advanced SystemCare 4\ASCService.exe [3.12.2011 19:50 328536]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [13.2.2010 21:35 20568]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [4.8.2011 13:34 1361288]
R2 MLPTDR_Q;MLPTDR_Q;c:\windows\system32\MLPTDR_Q.SYS [23.7.2003 10:44 18848]
R2 thdudf;TOSHIBA UDF2.5 Reader File System Driver;c:\windows\system32\drivers\thdudf.sys [29.1.2010 19:38 66944]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [7.5.2010 17:04 1051976]
R2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [3.11.2006 19:19 13592]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [9.1.2010 20:37 4640000]
R3 PAC207;VideoCAM GF112;c:\windows\system32\drivers\pfc027.sys [8.4.2005 10:46 162176]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [24.1.2009 20:29 47360]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [25.2.2010 10:18 10064]
S3 ComproHID;VideoMate Root Enumerated Hid Device;c:\windows\system32\drivers\ComproHID.sys [25.10.2010 17:51 7040]
S3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [23.6.2011 17:02 500704]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [12.6.2011 10:15 31125880]
S3 RTL2831UBDA;REALTEK 2831U BDA Driver;c:\windows\system32\drivers\RTL2831UBDA.sys --> c:\windows\system32\drivers\RTL2831UBDA.sys [?]
S3 RTL2831UUSB;REALTEK 2831U USB Driver;c:\windows\system32\Drivers\RTL2831UUSB.sys --> c:\windows\system32\Drivers\RTL2831UUSB.sys [?]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2.3.2006 13:00 14336]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
getPlusHelper REG_MULTI_SZ getPlusHelper
WINRM REG_MULTI_SZ WINRM
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
2012-02-17 c:\windows\Tasks\ASC4_PerformanceMonitor.job
- c:\program files\IObit\Advanced SystemCare 4\PMonitor.exe [2011-12-03 15:40]
.
2012-02-17 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 18:20]
.
.
------- Doplňkový sken -------
.
uInternet Connection Wizard,ShellNext = iexplore
IE: &Stáhnout &vše FlashGetem - c:\progra~1\FlashGet\jc_all.htm
IE: &Stáhnout FlashGetem - c:\progra~1\FlashGet\jc_link.htm
IE: &Stáhnout všechno FlashGetem - c:\progra~1\FlashGet\jc_all.htm
IE: Add to AMV/AVI Video Converter... - c:\program files\Media Player Utilities 4.22\AMVConverter\grab.html
IE: Download All by FlashGet - c:\program files\FlashGet\jc_all.htm
IE: Download using FlashGet - c:\program files\FlashGet\jc_link.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Search the Web - c:\program files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
IE: Stahnou vse FlashGet3 - c:\documents and settings\Admin\Data aplikací\FlashGetBHO\GetAllUrl.htm
IE: Stahnout FlashGet3 - c:\documents and settings\Admin\Data aplikací\FlashGetBHO\GetUrl.htm
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
Trusted Zone: kuaiche.com\software
TCP: DhcpNameServer = 192.168.0.1 82.100.29.65
FF - ProfilePath - c:\documents and settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?AF=100888&babsrc=adbartrp&mntrId=b0514483000000000000001fd06b81ea&q=
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=100888
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.id - b0514483000000000000001fd06b81ea
FF - user.js: extensions.BabylonToolbar_i.hardId - b0514483000000000000001fd06b81ea
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15367
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.179:20
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
URLSearchHooks-{EEE6C35D-6118-11DC-9C72-001320C79847} - (no file)
Toolbar-{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
HKLM-Run-SweetIM - c:\program files\SweetIM\Messenger\SweetIM.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-02-17 10:12
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\MySql]
"ImagePath"="C:/apache/mysql/bin/mysqld-nt.exe"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\MySql]
"ImagePath"="C:/apache/mysql/bin/mysqld-nt.exe"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1614895754-220523388-1801674531-1004\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
"??"=hex:2f,f6,af,b0,76,39,3f,50,43,65,90,79,d6,6c,2d,bf,3b,e1,7c,b0,a5,a2,0e,
56,89,28,e9,9e,05,8d,22,7e,e5,01,45,d8,e3,88,df,d0,9a,db,4a,ec,1a,33,46,1f,\
"??"=hex:c2,85,69,05,2d,1d,8e,58,d2,f4,47,98,c7,f4,07,b7
.
[HKEY_USERS\S-1-5-21-1614895754-220523388-1801674531-1004\Software\SecuROM\License information*]
"datasecu"=hex:bc,be,40,8b,f6,3d,89,f6,a2,5c,1a,db,55,81,42,3f,91,23,e6,34,1b,
61,79,cf,02,4b,0c,21,62,1d,c9,e7,ab,b5,49,4a,1a,45,d4,b6,91,8f,2c,db,68,b1,\
"rkeysecu"=hex:8f,0c,9a,91,b7,52,d0,19,e2,cc,b2,c1,3d,01,7b,6c
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1236)
c:\windows\system32\Ati2evxx.dll
.
Celkový čas: 2012-02-17 10:16:24
ComboFix-quarantined-files.txt 2012-02-17 09:16
ComboFix2.txt 2012-02-15 10:59
.
Před spuštěním: 8 306 425 856
Po spuštění: 8 299 966 464
.
- - End Of File - - 63EA9770CFAA39775E347D47628E77D4

Kromě toho outloku to vypadá jak?

Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
-do bílého okna dole skopírujte tento skript: - zaškrtněte okénko Pro všechny uživatele.
-označte okénka Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
-po dokončení skenu se objeví logy OTL.Txt a Extras.txt, vložte je zde

OTL Extras logfile created on: 17.2.2012 21:02:40 - Run 1
OTL by OldTimer - Version 3.2.32.0 Folder = C:\Documents and Settings\Admin\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,50 Gb Total Physical Memory | 2,68 Gb Available Physical Memory | 76,47% Memory free
4,84 Gb Paging File | 4,21 Gb Available in Paging File | 87,04% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 68,36 Gb Total Space | 8,12 Gb Free Space | 11,88% Space Free | Partition Type: NTFS
Drive E: | 164,52 Gb Total Space | 63,72 Gb Free Space | 38,73% Space Free | Partition Type: NTFS
Drive F: | 465,76 Gb Total Space | 108,01 Gb Free Space | 23,19% Space Free | Partition Type: NTFS

Computer Name: ADMIN-71E0702F0 | User Name: Admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-1614895754-220523388-1801674531-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
https [open] -- Reg Error: Key error.
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"UpdatesDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"5985:TCP" = 5985:TCP:*:Disabled:Vzdálená správa systému Windows
"3724:TCP" = 3724:TCP:*:Enabled:Blizzard Downloader: 3724
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\uTorrent\utorrent.exe" = C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\FlashGet\flashget.exe" = C:\Program Files\FlashGet\flashget.exe:*:Enabled:Flashget -- (FlashGet.com)
"C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"F:\PC HRY INSTAL\Need for Speed Hot Pursuit (2010) CZ\NFS11.exe" = F:\PC HRY INSTAL\Need for Speed Hot Pursuit (2010) CZ\NFS11.exe:*:Enabled:Need for Speed(TM) Hot Pursuit Application -- (Electronic Arts)
"F:\PC HRY INSTAL\iw3mpHAMACHI 1.7.exe" = F:\PC HRY INSTAL\iw3mpHAMACHI 1.7.exe:*:Enabled:iw3mpHAMACHI 1.7 -- ()
"C:\Program Files\Microsoft Office\Office14\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office14\GROOVE.EXE:*:Enabled:Microsoft SharePoint Workspace -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE:*:Enabled:Microsoft OneNote -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"F:\PC HRY INSTAL\COD4\iw3mp.exe" = F:\PC HRY INSTAL\COD4\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) -- ()
"F:\PC HRY INSTAL\Need for Speed Hot Pursuit (2010) CZ\Launcher.exe" = F:\PC HRY INSTAL\Need for Speed Hot Pursuit (2010) CZ\Launcher.exe:*:Enabled:Need for Speed(TM) Hot Pursuit -- (Electronic Arts)
"F:\PC HRY INSTAL\MW2\iw4mp.dat" = F:\PC HRY INSTAL\MW2\iw4mp.dat:*:Enabled:iw4mp -- ()


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{129DDEC1-A6A3-3D60-AABE-76E6E5334922}" = Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - CSY
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 30
"{29C22873-B939-4EF9-B6E3-1EFE7FA391D1}" = ASUS nVidia Driver
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{37C8899D-FD70-481F-94AA-1F1B08765E22}" = Acronis True Image Home
"{3EA9D975-BFDC-4E8E-B88B-0446FBC8CA66}" = ATI HYDRAVISION
"{43C67D92-F56E-4729-8673-9A2D5A6036F8}" = ASUS Utilities
"{47E16407-05D3-4D2A-B2B9-C30700B7C2AD}" = LogMeIn Hamachi
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{52E5D8A7-B129-4A29-AD4B-EBB749DCC3A3}_is1" = GamePark klient 2.0.9.0
"{5DB65884-C963-4454-AABA-4CA3089281FA}" = NVIDIA PhysX
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6FE8B722-4D7E-3CD7-BB3A-3AD1684B1295}" = Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - CSY
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7397EDED-F38A-4654-B669-BF61065803D0}" = PC Connectivity Solution
"{74DCC43B-33C9-3389-BD0D-33EB37973657}" = Microsoft .NET Framework 3.5 Language Pack - csy
"{76C24F39-B161-498F-BD8B-C64789812D13}_is1" = ConvertXtoDVD 3.2.3.81
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{83A606F5-BF6F-42ED-9F33-B9F74297CDED}" = Need for Speed(TM) Hot Pursuit
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}" = Media Player Utilities 4.22
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90140000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 14
"{90140000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0015-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0016-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0018-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-0019-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001A-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001B-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{2304F942-79D2-46F7-A512-269A7F5B7EFC}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-001F-041B-0000-0000000FF1CE}_Office14.PROPLUSR_{A162C5E6-7778-4D5B-9F0A-38F0122DD859}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-002C-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{8148DB19-71B1-4415-8B26-DF5B9E873FC3}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-0044-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-006E-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{EEF3E2C0-135B-44DC-BEDD-7F01CFBEFF46}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00A1-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{90140000-00BA-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{91140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}" = Microsoft Games for Windows - LIVE Redistributable
"{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9DF0196F-B6B8-4C3A-8790-DE42AA530101}" = SPORE™
"{9E976BE0-B8C1-4DF2-AA84-7048F3075158}" = VideoMate Pure DVB-T USB Driver
"{A06275F4-324B-4E85-95E6-87B2CD729401}" = Windows Defender
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}" = MSXML 6.0 Parser
"{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}" = SweetIM Toolbar for Internet Explorer 4.2
"{A81A974F-8A22-43E6-9243-5198FF758DA1}" = SweetIM for Messenger 3.6
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AC76BA86-7AD7-1029-7B44-A95000000001}" = Adobe Reader 9.5.0 - Czech
"{AC76BA86-7AD7-5670-0000-900000000003}" = Korean Fonts Support For Adobe Reader 9
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D323A4C4-A02D-4B8C-AE50-DFAE5BC8C7F0}_is1" = Monotea SMS Posílač 3 verze 3.15
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{E17141A6-211D-5854-61D9-69827A430D82}" = EA Download Manager UI
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{F1100000-0008-0000-0001-074957833700}" = ABBYY FineReader 11
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F14B8ECC-BDA0-4987-9201-D7B7DBE11029}" = Nero 7 Ultra Edition
"{F8C02517-4AC3-4026-8292-ACF23E98A7D7}" = Activision(R)
"{FE3997D3-6B56-4AC4-A99C-9DDFC45359BF}" = TuneUp Utilities Language Pack (en-US)
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"µTorrent CZ_is1" = µTorrent CZ 1.8.1 (build 12639)
"3FA1705966809259F916AF817C59B4F389F4572C" = Balíček ovladače systému Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"Absolute Uninstaller_is1" = Absolute Uninstaller 2.4
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Advanced SystemCare 4_is1" = Advanced SystemCare 4
"All ATI Software" = Softarová utilita ATI - Odinstalovat
"ATI Display Driver" = ATI Display Driver
"avast" = avast! Free Antivirus
"AVI MPEG RM WMV Joiner_is1" = AVI/MPEG/RM/WMV Joiner 4.82
"BabylonToolbar" = Babylon toolbar on IE
"BFGC" = Big Fish Games: Game Manager
"CCleaner" = CCleaner
"CloneCD" = CloneCD
"com.ea.Vault.919CACB699904AC5D41B606703500DD39747C02D.1" = EA Download Manager UI
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2010-10-10
"conduitEngine" = Conduit Engine
"Cool's_Codec_pack_4.12" = Codec Pack - VobSub 5.0.4.7
"Čeština do Daemon tools 4.08HE" = Čeština do Daemon tools 4.08HE
"Defraggler" = Defraggler
"Drakensang Online" = Drakensang Online
"DVD Shrink_is1" = DVD Shrink 3.2
"DVDFab (Platinum/Gold/HD Decrypter) (Option: Mobile) 5_is1" = DVDFab (Platinum/Gold/HD Decrypter) (Option: Mobile) 5.1.2.0
"EA Download Manager" = EA Download Manager
"Easy CD-DA Extractor 12" = Easy CD-DA Extractor 12
"ESET Online Scanner" = ESET Online Scanner v3
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"FlashGet(JetCar)" = FlashGet(JetCar)
"FLVPlayer4Free Free FLV Player_is1" = FLVPlayer4Free Free FLV Player 3.4.0.0
"GameParkClient_is1" = GamePark
"Hardlock Device Driver" = Hardlock Device Driver
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"InstallShield_{12AF2BD8-797C-426F-8FCA-79716DBA4B10}" = FLOCK!
"InstallShield_{43C67D92-F56E-4729-8673-9A2D5A6036F8}" = ASUS Utilities
"InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"InstallShield_{F8C02517-4AC3-4026-8292-ACF23E98A7D7}" = Madagaskar 2(TM)
"JDownloader" = JDownloader
"KONICA MINOLTA PagePro 1350W" = KONICA MINOLTA PagePro 1350W
"Kreslení pro děti (doporučená instalace)" = Kreslení pro děti (doporučená instalace)
"LogMeIn Hamachi" = LogMeIn Hamachi
"Luxor - Quest for the Afterlife" = Luxor - Quest for the Afterlife (remove only)
"Luxor 3" = Luxor 3 (remove only)
"Luxor: Amun Rising" = Luxor: Amun Rising (remove only)
"Microsoft .NET Framework 3.5 Language Pack - csy" = Microsoft .NET Framework 3.5 Language Pack - CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox 8.0.1 (x86 cs)" = Mozilla Firefox 8.0.1 (x86 cs)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"Predplacenky.cz 2.0.1" = Predplacenky.cz 2.0.1
"PunkBusterSvc" = PunkBuster Services
"Share Rapid Uploader_is1" = Uploader 1.0
"Táta hrdina" = Táta hrdina
"The Treasures Of Montezuma" = The Treasures Of Montezuma
"Totalcmd" = Total Commander (Remove or Repair)
"TS PRAVOPIS" = TS PRAVOPIS
"TuneUp Utilities" = TuneUp Utilities
"Uloz.to Uploader" = Uloz.to Uploader 1.1.1.122
"uTorrent" = µTorrent
"uTorrentBar Toolbar" = uTorrentBar Toolbar
"Video Download Toolbar" = Video Download Toolbar
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"winusb0100" = Microsoft WinUsb 1.0
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01007" = Microsoft User-Mode Driver Framework Feature Pack 1.7
"Xilisoft Video Converter Ultimate" = Xilisoft Video Converter Ultimate
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
"xvid" = XviD MPEG-4 Video Codec
"ZonerPhotoStudio13_CZ_is1" = Zoner Photo Studio 13
"Zuma Deluxe RA" = Zuma Deluxe RA

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1614895754-220523388-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"UnityWebPlayer" = Unity Web Player

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 16.2.2012 4:05:07 | Computer Name = ADMIN-71E0702F0 | Source = Apache Service | ID = 3299
Description = The Apache service named Apache reported the following error: >>> Apache:
could not open document config file c:/apache/conf/httpd.conf <<< before the error.log
file could be opened. More information may be available in the error.log file.
.

Error - 16.2.2012 9:01:22 | Computer Name = ADMIN-71E0702F0 | Source = Apache Service | ID = 3299
Description = The Apache service named Apache reported the following error: >>> fopen:
No such file or directory <<< before the error.log file could be opened. More information
may be available in the error.log file. .

Error - 16.2.2012 9:01:22 | Computer Name = ADMIN-71E0702F0 | Source = Apache Service | ID = 3299
Description = The Apache service named Apache reported the following error: >>> Apache:
could not open document config file c:/apache/conf/httpd.conf <<< before the error.log
file could be opened. More information may be available in the error.log file.
.

Error - 16.2.2012 11:56:48 | Computer Name = ADMIN-71E0702F0 | Source = Apache Service | ID = 3299
Description = The Apache service named Apache reported the following error: >>> fopen:
No such file or directory <<< before the error.log file could be opened. More information
may be available in the error.log file. .

Error - 16.2.2012 11:56:48 | Computer Name = ADMIN-71E0702F0 | Source = Apache Service | ID = 3299
Description = The Apache service named Apache reported the following error: >>> Apache:
could not open document config file c:/apache/conf/httpd.conf <<< before the error.log
file could be opened. More information may be available in the error.log file.
.

Error - 17.2.2012 2:38:51 | Computer Name = ADMIN-71E0702F0 | Source = Apache Service | ID = 3299
Description = The Apache service named Apache reported the following error: >>> fopen:
No such file or directory <<< before the error.log file could be opened. More information
may be available in the error.log file. .

Error - 17.2.2012 2:38:51 | Computer Name = ADMIN-71E0702F0 | Source = Apache Service | ID = 3299
Description = The Apache service named Apache reported the following error: >>> Apache:
could not open document config file c:/apache/conf/httpd.conf <<< before the error.log
file could be opened. More information may be available in the error.log file.
.

Error - 17.2.2012 5:06:00 | Computer Name = ADMIN-71E0702F0 | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: The server name or address could not be resolved

Error - 17.2.2012 15:56:07 | Computer Name = ADMIN-71E0702F0 | Source = Apache Service | ID = 3299
Description = The Apache service named Apache reported the following error: >>> fopen:
No such file or directory <<< before the error.log file could be opened. More information
may be available in the error.log file. .

Error - 17.2.2012 15:56:07 | Computer Name = ADMIN-71E0702F0 | Source = Apache Service | ID = 3299
Description = The Apache service named Apache reported the following error: >>> Apache:
could not open document config file c:/apache/conf/httpd.conf <<< before the error.log
file could be opened. More information may be available in the error.log file.
.

[ OSession Events ]
Error - 26.7.2009 9:26:22 | Computer Name = ADMIN-71E0702F0 | Source = Microsoft Office 12 Sessions | ID = 7001
Description =

Error - 5.9.2009 7:57:48 | Computer Name = ADMIN-71E0702F0 | Source = Microsoft Office 12 Sessions | ID = 7001
Description =

Error - 7.9.2009 10:42:56 | Computer Name = ADMIN-71E0702F0 | Source = Microsoft Office 12 Sessions | ID = 7001
Description =

Error - 29.9.2009 6:36:50 | Computer Name = ADMIN-71E0702F0 | Source = Microsoft Office 12 Sessions | ID = 7001
Description =

Error - 14.10.2009 9:40:12 | Computer Name = ADMIN-71E0702F0 | Source = Microsoft Office 12 Sessions | ID = 7001
Description =

Error - 2.6.2011 0:49:41 | Computer Name = ADMIN-71E0702F0 | Source = Microsoft Office 12 Sessions | ID = 7001
Description =

[ System Events ]
Error - 17.2.2012 15:56:02 | Computer Name = ADMIN-71E0702F0 | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 17.2.2012 15:56:02 | Computer Name = ADMIN-71E0702F0 | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 17.2.2012 15:56:02 | Computer Name = ADMIN-71E0702F0 | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 17.2.2012 15:56:02 | Computer Name = ADMIN-71E0702F0 | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 17.2.2012 15:56:02 | Computer Name = ADMIN-71E0702F0 | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 17.2.2012 15:56:15 | Computer Name = ADMIN-71E0702F0 | Source = Service Control Manager | ID = 7000
Description = Služba EIO neuspěla při spuštění v důsledku následující chyby: %%2

Error - 17.2.2012 15:57:40 | Computer Name = ADMIN-71E0702F0 | Source = Service Control Manager | ID = 7022
Description = Služba Apache přestala během spouštění reagovat.

Error - 17.2.2012 15:57:40 | Computer Name = ADMIN-71E0702F0 | Source = Service Control Manager | ID = 7034
Description = Služba Apache byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error - 17.2.2012 15:57:40 | Computer Name = ADMIN-71E0702F0 | Source = Service Control Manager | ID = 7034
Description = Služba MySql byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error - 17.2.2012 15:58:45 | Computer Name = ADMIN-71E0702F0 | Source = System Error | ID = 1003
Description = Kód chyby 000000ea, parametr1 87690a38, parametr2 871615d0, parametr3
88e21818, parametr4 00000001.

[ TuneUp Events ]
Error - 6.1.2010 7:35:32 | Computer Name = ADMIN-71E0702F0 | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 10.1.2010 16:56:11 | Computer Name = ADMIN-71E0702F0 | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 10.1.2010 17:07:56 | Computer Name = ADMIN-71E0702F0 | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 13.2.2010 7:43:32 | Computer Name = ADMIN-71E0702F0 | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 13.2.2010 7:44:27 | Computer Name = ADMIN-71E0702F0 | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 13.2.2010 7:44:37 | Computer Name = ADMIN-71E0702F0 | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 13.2.2010 7:56:56 | Computer Name = ADMIN-71E0702F0 | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 13.2.2010 17:00:32 | Computer Name = ADMIN-71E0702F0 | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 15.2.2010 11:17:24 | Computer Name = ADMIN-71E0702F0 | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 5.11.2011 16:41:45 | Computer Name = ADMIN-71E0702F0 | Source = TuneUp.UtilitiesSvc | ID = 300
Description =


< End of report >

OTL logfile created on: 17.2.2012 21:02:40 - Run 1
OTL by OldTimer - Version 3.2.32.0 Folder = C:\Documents and Settings\Admin\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,50 Gb Total Physical Memory | 2,68 Gb Available Physical Memory | 76,47% Memory free
4,84 Gb Paging File | 4,21 Gb Available in Paging File | 87,04% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 68,36 Gb Total Space | 8,12 Gb Free Space | 11,88% Space Free | Partition Type: NTFS
Drive E: | 164,52 Gb Total Space | 63,72 Gb Free Space | 38,73% Space Free | Partition Type: NTFS
Drive F: | 465,76 Gb Total Space | 108,01 Gb Free Space | 23,19% Space Free | Partition Type: NTFS

Computer Name: ADMIN-71E0702F0 | User Name: Admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012.02.17 21:00:47 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Plocha\OTL.exe
PRC - [2011.11.28 19:01:24 | 003,744,552 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011.11.28 19:01:23 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2011.11.26 16:47:35 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011.08.09 16:56:40 | 000,417,112 | ---- | M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe
PRC - [2011.08.09 16:40:34 | 000,763,224 | ---- | M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare 4\PMonitor.exe
PRC - [2011.08.09 16:38:38 | 000,328,536 | ---- | M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe
PRC - [2011.08.04 13:34:46 | 001,361,288 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2010.05.07 17:06:04 | 000,719,688 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
PRC - [2010.05.07 17:04:20 | 001,051,976 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
PRC - [2008.11.10 20:26:26 | 000,554,264 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
PRC - [2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.05.28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2006.11.03 19:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MsMpEng.exe
PRC - [2006.05.31 22:55:42 | 001,368,064 | ---- | M] (FlashGet.com) -- C:\Program Files\FlashGet\flashget.exe
PRC - [2005.01.14 08:32:38 | 000,053,248 | ---- | M] () -- C:\WINDOWS\system32\PAStiSvc.exe


========== Modules (No Company Name) ==========

MOD - [2012.02.17 20:14:37 | 001,707,008 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\12021701\algo.dll
MOD - [2012.02.17 10:51:19 | 001,706,496 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\12021700\algo.dll
MOD - [2011.11.26 16:47:35 | 001,989,592 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011.08.21 08:46:33 | 006,277,280 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2011.03.17 00:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2005.01.14 08:32:38 | 000,053,248 | ---- | M] () -- C:\WINDOWS\system32\PAStiSvc.exe


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.11.28 19:01:23 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011.08.09 16:38:38 | 000,328,536 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe -- (AdvancedSystemCareService)
SRV - [2011.08.04 13:34:46 | 001,361,288 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2011.06.12 10:15:00 | 031,125,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2010.08.17 18:08:03 | 000,435,016 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2010.05.07 17:04:20 | 001,051,976 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2010.05.07 17:01:04 | 000,030,024 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2010.03.29 07:53:22 | 000,068,000 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus(R)
SRV - [2010.01.26 11:41:08 | 000,652,800 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008.11.10 20:26:26 | 000,554,264 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2007.05.28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2006.11.03 19:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2005.01.14 08:32:38 | 000,053,248 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\PAStiSvc.exe -- (STI Simulator)
SRV - [2001.01.22 23:20:54 | 001,089,536 | ---- | M] () [Auto | Stopped] -- C:/apache/mysql/bin/mysqld-nt.exe -- (MySql)
SRV - [2000.10.10 19:56:16 | 000,020,480 | ---- | M] () [Auto | Stopped] -- C:\apache\Apache.exe -- (Apache)


========== Driver Services (SafeList) ==========

DRV - [2011.11.28 18:53:53 | 000,435,032 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011.11.28 18:53:35 | 000,314,456 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.11.28 18:52:19 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.11.28 18:52:16 | 000,052,952 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.11.28 18:52:02 | 000,111,320 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011.11.28 18:51:50 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011.11.28 18:48:49 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011.08.20 13:10:25 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2011.06.23 17:02:50 | 000,500,704 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EagleXNt.sys -- (EagleXNt)
DRV - [2010.04.18 12:07:17 | 000,639,224 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010.02.25 10:18:08 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2009.11.26 21:52:48 | 000,540,000 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\timntr.sys -- (timounter)
DRV - [2009.11.26 21:52:48 | 000,044,704 | ---- | M] (Acronis) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter)
DRV - [2009.11.26 21:51:45 | 000,971,232 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\tdrpm147.sys -- (tdrpman147) Acronis Try&Decide and Restore Points filter (build 147)
DRV - [2009.11.26 21:51:27 | 000,134,272 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\snman380.sys -- (snapman380) Acronis Snapshots Manager (Build 380)
DRV - [2009.01.20 19:45:39 | 000,015,600 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2008.09.03 06:02:58 | 003,300,864 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2008.08.26 08:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.07.02 20:38:14 | 000,089,600 | R--- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2008.02.27 00:22:00 | 000,007,040 | ---- | M] (Compro Tech., Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ComproHID.sys -- (ComproHID)
DRV - [2007.09.05 10:31:30 | 004,611,072 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007.06.28 12:46:42 | 000,020,480 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2007.06.28 12:46:40 | 000,045,824 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2006.12.26 13:54:35 | 000,034,760 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV - [2006.11.11 02:25:20 | 000,066,944 | ---- | M] (TOSHIBA Corporation) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\thdudf.sys -- (thdudf)
DRV - [2006.07.01 21:42:58 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2005.04.08 09:46:18 | 000,162,176 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc027.sys -- (PAC207)
DRV - [2004.07.09 03:26:38 | 000,015,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
DRV - [2003.07.23 10:44:18 | 000,018,848 | ---- | M] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\MLPTDR_Q.SYS -- (MLPTDR_Q)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1614895754-220523388-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.defaultthis.engineName: " "
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledItems: {99B98C2C-7274-45a3-A640-D9DF1A1C8460}:1.4
FF - prefs.js..extensions.enabledItems: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.2.9.4
FF - prefs.js..extensions.enabledItems: {003D3EDC-99B9-4a34-9C20-60CB94F7E829}:2010.25.36
FF - prefs.js..extensions.enabledItems: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}:3.3.3.2
FF - prefs.js..extensions.enabledItems: wrc@avast.com:20110101
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..keyword.URL: "http://search.babylon.com/?AF=100888&ba ... 06b81ea&q="
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaulturl: "http://search.conduit.com/ResultsExt.as ... earchTerms}"
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.google.cz/firefox"


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Admin\Local Settings\Data aplikací\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Admin\Local Settings\Data aplikací\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\Admin\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}: C:\Program Files\CheckPoint\ZAForceField\TrustChecker
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2011.12.07 09:44:02 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.11.26 16:47:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.01.12 14:56:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

[2009.01.20 19:22:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Extensions
[2012.02.14 08:03:12 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default\extensions
[2011.05.12 20:51:16 | 000,000,000 | ---D | M] (WebTran) -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default\extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
[2012.02.14 08:03:11 | 000,000,000 | ---D | M] (Flagfox) -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
[2009.09.06 16:17:41 | 000,000,000 | ---D | M] (FlashGot) -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}(2)
[2009.09.02 10:53:40 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}(2)
[2010.01.07 09:10:36 | 000,000,000 | ---D | M] (CookieCuller) -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default\extensions\{99B98C2C-7274-45a3-A640-D9DF1A1C8460}
[2009.01.27 14:25:49 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}(2)
[2011.12.23 11:03:30 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
[2012.01.28 21:44:34 | 000,000,000 | ---D | M] (Bflix extension) -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default\extensions\info@thebflix.com
[2011.08.16 10:18:40 | 000,000,863 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default\searchplugins\conduit.xml
[2012.02.17 09:47:35 | 000,000,944 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default\searchplugins\icqplugin.xml
[2009.06.26 19:33:54 | 000,000,986 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default\searchplugins\subbiee.xml
[2011.12.23 11:03:24 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default\searchplugins\sweetim.xml
[2012.01.27 13:51:32 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012.01.27 13:51:32 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMIN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\LZHODMMD.DEFAULT\EXTENSIONS\{1018E4D6-728F-4B20-AD56-37578A4DE76B}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMIN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\LZHODMMD.DEFAULT\EXTENSIONS\{19503E42-CA3C-4C27-B1E2-9CDB2170EE34}.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMIN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\LZHODMMD.DEFAULT\EXTENSIONS\{99B98C2C-7274-45A3-A640-D9DF1A1C8460}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMIN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\LZHODMMD.DEFAULT\EXTENSIONS\INFO@THEBFLIX.COM
[2011.11.26 16:47:36 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.11.10 05:54:13 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2009.08.03 14:07:42 | 000,373,104 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\npOGAPlugin.dll
[2012.01.28 09:20:35 | 000,002,310 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2011.10.16 06:26:54 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2011.10.16 06:26:54 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2010.11.02 16:54:31 | 000,003,803 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\MyHeritage.xml
[2011.10.16 06:26:54 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2011.10.16 06:26:54 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.10.16 06:26:54 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - default_search_provider: Search the web (Babylon) (Enabled)
CHR - default_search_provider: search_url = http://search.babylon.com/?q={searchTer ... 1fd06b81ea
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Admin\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\16.0.912.77\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Java Deployment Toolkit 6.0.240.7 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U24 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Admin\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\16.0.912.77\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Admin\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\16.0.912.77\pdf.dll
CHR - plugin: Windows Genuine Advantage (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll
CHR - plugin: Office Genuine Advantage (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npOGAPlugin.dll
CHR - plugin: getPlusPlus for Adobe 16263 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np_gp.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Admin\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Unity Player (Enabled) = C:\Documents and Settings\Admin\Local Settings\Data aplikac\u00ED\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\Admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.3_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Documents and Settings\Admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.17_0\
CHR - Extension: avast! WebRep = C:\Documents and Settings\Admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1374_0\
CHR - Extension: Gmail = C:\Documents and Settings\Admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012.02.17 10:11:59 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O2 - BHO: (IeCatch5 Class) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\Jccatch.dll (FlashGet)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O3 - HKLM\..\Toolbar: (FlashGet Bar) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\Program Files\FlashGet\fgiebar.dll (Amaze Soft)
O4 - HKLM..\Run: [avast] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [Bonus.SSR.FR11] C:\Program Files\ABBYY FineReader 11\Bonus.ScreenshotReader.exe (ABBYY.)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKU\S-1-5-21-1614895754-220523388-1801674531-1004..\Run: [Advanced SystemCare 4] C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe (IObit)
O4 - Startup: C:\Documents and Settings\Admin\Nabídka Start\Programy\Po spuštění\FlashGet.lnk = C:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1614895754-220523388-1801674531-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1614895754-220523388-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1614895754-220523388-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1614895754-220523388-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: &Stáhnout &vše FlashGetem - C:\Program Files\FlashGet\jc_all.htm ()
O8 - Extra context menu item: &Stáhnout FlashGetem - C:\Program Files\FlashGet\jc_link.htm ()
O8 - Extra context menu item: &Stáhnout všechno FlashGetem - C:\Program Files\FlashGet\jc_all.htm ()
O8 - Extra context menu item: Add to AMV/AVI Video Converter... - C:\Program Files\Media Player Utilities 4.22\AMVConverter\grab.html ()
O8 - Extra context menu item: Download All by FlashGet - C:\Program Files\FlashGet\jc_all.htm ()
O8 - Extra context menu item: Download using FlashGet - C:\Program Files\FlashGet\jc_link.htm ()
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Od&eslat do aplikace OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O8 - Extra context menu item: Stahnou vse FlashGet3 - C:\Documents and Settings\Admin\Data aplikací\FlashGetBHO\GetAllUrl.htm ()
O8 - Extra context menu item: Stahnout FlashGet3 - C:\Documents and Settings\Admin\Data aplikací\FlashGetBHO\GetUrl.htm ()
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O9 - Extra 'Tools' menuitem : &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O15 - HKU\S-1-5-21-1614895754-220523388-1801674531-1004\..Trusted Domains: kuaiche.com ([software] http in Trusted sites)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/windows ... 2454824570 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 82.100.29.65
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7C74E05C-8AF8-410E-80C2-CB6D7CAAEA42}: DhcpNameServer = 192.168.0.1 82.100.29.65
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Admin\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Admin\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: UxTuneUp - C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\Program Files\Combined Community Codec Pack\Filters\FFDShow\ff_vfw.dll ()
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2012.02.17 21:00:42 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Admin\Plocha\OTL.exe
[2012.02.16 11:43:37 | 004,898,094 | ---- | C] (David Kořínek ) -- C:\Documents and Settings\Admin\Plocha\smsposilac3inst.exe
[2012.02.15 11:44:28 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2012.02.15 11:44:28 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2012.02.15 11:44:28 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2012.02.15 11:44:28 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2012.02.15 11:44:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2012.02.15 11:44:07 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012.02.15 11:42:15 | 004,403,246 | R--- | C] (Swearware) -- C:\Documents and Settings\Admin\Plocha\ComboFix.exe
[2012.02.13 15:43:00 | 000,000,000 | ---D | C] -- C:\rsit
[2012.02.13 14:02:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Admin\Recent
[2012.02.12 16:04:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Local Settings\Data aplikací\CrashRpt
[2012.02.12 13:23:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Plocha\2012-02-12
[2012.02.03 09:53:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Plocha\lunetic__best_of_2
[2012.01.30 16:18:03 | 000,695,296 | ---- | C] (AnjoCaido) -- C:\Documents and Settings\Admin\Plocha\MinecraftSP.exe
[2012.01.28 09:21:02 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar
[2012.01.28 09:20:52 | 000,000,000 | ---D | C] -- C:\Program Files\BabylonToolbar
[2012.01.28 09:20:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Local Settings\Data aplikací\Babylon
[2012.01.28 09:20:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Babylon
[2012.01.28 09:20:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Data aplikací\Babylon
[2012.01.27 13:51:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012.01.27 13:51:31 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2012.01.27 13:51:31 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2012.01.27 13:51:31 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010.11.03 11:33:35 | 000,695,296 | ---- | C] (AnjoCaido) -- C:\Documents and Settings\Admin\Data aplikací\MinecraftSP.exe
[2009.01.24 20:29:24 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Admin\Data aplikací\pcouffin.sys

========== Files - Modified Within 30 Days ==========

[2012.02.17 21:05:45 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.02.17 21:00:47 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Plocha\OTL.exe
[2012.02.17 20:58:55 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2012.02.17 20:56:02 | 000,000,270 | ---- | M] () -- C:\WINDOWS\tasks\ASC4_PerformanceMonitor.job
[2012.02.17 20:55:46 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.02.17 20:55:45 | 000,045,668 | ---- | M] () -- C:\WINDOWS\System32\ativvaxx.cap
[2012.02.17 20:42:25 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2012.02.17 10:11:59 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2012.02.16 12:45:11 | 000,138,160 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2012.02.16 12:44:58 | 000,271,200 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2012.02.16 11:43:41 | 004,898,094 | ---- | M] (David Kořínek ) -- C:\Documents and Settings\Admin\Plocha\smsposilac3inst.exe
[2012.02.15 21:17:56 | 000,006,532 | ---- | M] () -- C:\Documents and Settings\Admin\Plocha\{330194E2-DBFE-4C60-ABFB-B2B96323B078}.html
[2012.02.15 15:10:32 | 000,273,376 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.02.15 13:13:16 | 000,439,044 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.02.15 13:13:16 | 000,436,290 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2012.02.15 13:13:16 | 000,080,958 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2012.02.15 13:13:16 | 000,069,688 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.02.15 13:08:08 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012.02.15 11:42:50 | 004,403,246 | R--- | M] (Swearware) -- C:\Documents and Settings\Admin\Plocha\ComboFix.exe
[2012.02.14 11:26:50 | 000,000,293 | RHS- | M] () -- C:\boot.ini
[2012.02.14 08:55:27 | 004,122,825 | ---- | M] () -- C:\Documents and Settings\Admin\Plocha\Luštěla---Patnactiny.mp3
[2012.02.13 16:40:53 | 000,271,200 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.ex0
[2012.02.13 15:52:00 | 000,591,360 | ---- | M] () -- C:\Documents and Settings\Admin\Plocha\Utopenci_+_hermelinci.pps
[2012.02.13 15:15:10 | 000,781,383 | ---- | M] () -- C:\Documents and Settings\Admin\Plocha\RSIT.exe
[2012.02.12 20:14:06 | 000,000,586 | ---- | M] () -- C:\Documents and Settings\Admin\Plocha\MW2 (2).lnk
[2012.02.12 16:05:08 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\steam_md4.dat
[2012.02.10 22:25:51 | 000,000,767 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Madagaskar 2(TM).lnk
[2012.02.10 21:59:26 | 000,000,229 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012.02.10 18:01:55 | 000,000,102 | ---- | M] () -- C:\Documents and Settings\Admin\default.pls
[2012.02.07 17:11:58 | 000,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.01.28 09:20:54 | 000,000,237 | ---- | M] () -- C:\user.js
[2012.01.27 00:21:24 | 000,237,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2012.01.22 13:52:51 | 000,003,155 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2012.01.21 21:56:19 | 000,136,192 | ---- | M] () -- C:\Documents and Settings\Admin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.01.20 18:13:17 | 000,230,432 | ---- | M] () -- C:\StiImg.dat

========== Files Created - No Company Name ==========

[2012.02.17 21:05:45 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.02.15 21:17:56 | 000,006,532 | ---- | C] () -- C:\Documents and Settings\Admin\Plocha\{330194E2-DBFE-4C60-ABFB-B2B96323B078}.html
[2012.02.15 13:07:39 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2012.02.15 11:44:28 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2012.02.15 11:44:28 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2012.02.15 11:44:28 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2012.02.15 11:44:28 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2012.02.15 11:44:28 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2012.02.15 08:05:51 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012.02.15 08:05:51 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\dllcache\iacenc.dll
[2012.02.14 15:23:44 | 000,000,586 | ---- | C] () -- C:\Documents and Settings\Admin\Plocha\MW2 (2).lnk
[2012.02.13 20:08:14 | 000,000,672 | ---- | C] () -- C:\Documents and Settings\Admin\Nabídka Start\Programy\Po spuštění\FlashGet.lnk
[2012.02.13 15:52:00 | 000,591,360 | ---- | C] () -- C:\Documents and Settings\Admin\Plocha\Utopenci_+_hermelinci.pps
[2012.02.13 15:15:07 | 000,781,383 | ---- | C] () -- C:\Documents and Settings\Admin\Plocha\RSIT.exe
[2012.02.12 16:05:08 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\Admin\Data aplikací\steam_md4.dat
[2012.02.10 22:25:51 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Madagaskar 2(TM).lnk
[2012.02.03 09:18:55 | 004,122,825 | ---- | C] () -- C:\Documents and Settings\Admin\Plocha\Luštěla---Patnactiny.mp3
[2012.01.28 09:20:53 | 000,000,237 | ---- | C] () -- C:\user.js
[2012.01.11 22:13:16 | 000,018,432 | ---- | C] () -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.11.05 16:37:48 | 000,000,044 | ---- | C] () -- C:\WINDOWS\Visit MumboJumbo.com.url
[2011.10.10 21:29:37 | 000,000,281 | ---- | C] () -- C:\WINDOWS\game.ini
[2011.09.22 23:11:17 | 000,000,010 | ---- | C] () -- C:\WINDOWS\popcinfo.dat
[2011.05.08 07:40:26 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2011.04.16 17:53:31 | 000,000,064 | ---- | C] () -- C:\WINDOWS\GPlrLanc.dat
[2010.12.12 10:54:40 | 000,000,840 | ---- | C] () -- C:\Documents and Settings\Admin\Local Settings\Data aplikací\SRDownloader.nast
[2010.10.28 15:46:09 | 002,601,752 | ---- | C] () -- C:\WINDOWS\System32\pbsvc_moh.exe
[2010.08.31 14:53:17 | 000,038,468 | ---- | C] () -- C:\Documents and Settings\Admin\Data aplikací\Hodnoty oddělené čárkami (Windows).ADR
[2010.06.30 22:36:59 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\Admin\Data aplikací\PnkBstrK.sys
[2010.06.14 15:44:59 | 000,000,041 | -HS- | C] () -- C:\Documents and Settings\All Users\Data aplikací\.zreglib
[2010.05.30 20:46:52 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\SI.bin
[2010.02.15 10:27:29 | 000,000,144 | ---- | C] () -- C:\WINDOWS\System32\lkfl.dat
[2010.02.15 10:27:17 | 000,004,212 | -H-- | C] () -- C:\WINDOWS\System32\zllictbl.dat
[2010.02.14 11:04:37 | 000,000,025 | ---- | C] () -- C:\WINDOWS\libem.INI
[2010.02.01 17:30:26 | 000,025,088 | ---- | C] () -- C:\WINDOWS\System32\Hlduinst.exe
[2010.02.01 17:30:25 | 000,149,504 | ---- | C] () -- C:\WINDOWS\System32\UNWISE.EXE
[2010.02.01 17:26:14 | 000,305,847 | ---- | C] () -- C:\WINDOWS\ETOSU.EXE
[2010.02.01 17:25:35 | 000,000,146 | ---- | C] () -- C:\WINDOWS\ETOSP.INI
[2010.01.10 19:56:33 | 000,003,155 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2010.01.10 18:16:42 | 000,000,119 | ---- | C] () -- C:\WINDOWS\Circus.ini
[2010.01.10 18:13:34 | 000,000,061 | ---- | C] () -- C:\WINDOWS\Piggybak.ini
[2010.01.10 18:11:19 | 000,000,065 | ---- | C] () -- C:\WINDOWS\PBUpdate.ini
[2009.11.18 18:21:39 | 000,000,166 | ---- | C] () -- C:\WINDOWS\ka.ini
[2009.11.04 16:30:31 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009.10.17 19:15:12 | 000,676,224 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009.10.05 15:50:33 | 000,000,020 | ---- | C] () -- C:\WINDOWS\System32\tscp_arc.ini
[2009.10.05 15:47:02 | 000,110,109 | ---- | C] () -- C:\WINDOWS\SETUP_C3.EXE
[2009.09.21 17:58:38 | 000,000,114 | ---- | C] () -- C:\WINDOWS\mafosav.INI
[2009.09.08 14:19:04 | 000,000,004 | ---- | C] () -- C:\WINDOWS\System32\tscpsnd.ini
[2009.09.03 13:04:54 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\ezsid.dat
[2009.08.24 14:16:35 | 000,045,056 | ---- | C] () -- C:\WINDOWS\TRNOEH.DLL
[2009.08.24 14:16:23 | 000,000,033 | ---- | C] () -- C:\WINDOWS\WTRDCTM.INI
[2009.08.24 14:16:07 | 000,516,096 | ---- | C] () -- C:\WINDOWS\UN32.EXE
[2009.08.24 14:16:07 | 000,002,575 | ---- | C] () -- C:\WINDOWS\UN32P.INI
[2009.07.07 16:13:49 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat
[2009.06.19 19:06:22 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2009.06.19 19:06:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2009.06.19 19:06:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2009.06.19 19:06:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2009.06.19 19:06:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2009.06.19 19:06:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2009.06.19 19:06:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2009.06.19 19:06:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2009.06.19 19:06:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2009.06.19 19:06:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2009.06.09 08:18:21 | 000,138,160 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.06.09 08:18:12 | 000,271,200 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2009.06.09 08:15:59 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2009.06.08 13:02:54 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd.dll
[2009.06.08 13:01:09 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2009.06.08 13:00:47 | 000,887,724 | R--- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2009.06.08 13:00:45 | 003,107,788 | R--- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2009.06.08 13:00:42 | 003,107,788 | R--- | C] () -- C:\WINDOWS\System32\ativvaxx.dat
[2009.06.08 13:00:42 | 000,176,214 | R--- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2009.06.08 12:59:07 | 000,002,601 | ---- | C] () -- C:\WINDOWS\ATICIM.INI
[2009.06.08 12:05:53 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2009.01.24 20:29:41 | 000,000,664 | ---- | C] () -- C:\Documents and Settings\Admin\Data aplikací\vso_ts_preview.xml
[2009.01.24 20:29:24 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Admin\Data aplikací\inst.exe
[2009.01.24 20:29:24 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Admin\Data aplikací\pcouffin.cat
[2009.01.24 20:29:24 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Admin\Data aplikací\pcouffin.inf
[2009.01.23 18:14:22 | 000,000,350 | ---- | C] () -- C:\WINDOWS\orbitz.ini
[2009.01.23 18:14:21 | 000,000,082 | ---- | C] () -- C:\WINDOWS\undomove.ini
[2009.01.22 05:02:49 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\PAStiSvc.exe
[2009.01.21 23:49:26 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2009.01.21 21:57:53 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\bassmod.dll
[2009.01.21 21:19:01 | 000,136,192 | ---- | C] () -- C:\Documents and Settings\Admin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.01.21 20:42:06 | 000,000,229 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009.01.21 18:44:00 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2009.01.20 20:23:36 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009.01.20 20:20:49 | 000,273,376 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009.01.20 19:44:26 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2009.01.20 19:42:25 | 000,001,732 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2009.01.20 19:34:30 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2009.01.20 19:29:56 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009.01.20 19:22:55 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2008.08.05 22:14:12 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\ATIBRTMON.EXE
[2007.11.26 21:56:28 | 000,151,415 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2007.08.21 22:51:16 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ATIODE.exe
[2007.08.21 20:36:12 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ATIODCLI.exe
[2006.06.01 10:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006.06.01 10:22:00 | 001,519,616 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2006.06.01 10:22:00 | 001,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2006.06.01 10:22:00 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2006.06.01 10:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006.06.01 10:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006.06.01 10:22:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2006.06.01 10:22:00 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2006.06.01 10:22:00 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2006.06.01 10:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006.06.01 10:22:00 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2006.03.06 10:41:02 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\AMV_DecDLL.dll
[2006.03.02 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2006.03.02 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2006.03.02 13:00:00 | 000,439,044 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2006.03.02 13:00:00 | 000,436,290 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2006.03.02 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2006.03.02 13:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2006.03.02 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2006.03.02 13:00:00 | 000,080,958 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2006.03.02 13:00:00 | 000,069,688 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2006.03.02 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2006.03.02 13:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2006.03.02 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2006.03.02 13:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2006.03.02 13:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2006.03.02 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2006.03.02 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2005.12.30 20:18:26 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2005.12.30 20:10:30 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2005.04.08 10:46:18 | 000,162,176 | ---- | C] () -- C:\WINDOWS\System32\drivers\pfc027.sys
[2005.01.25 15:15:42 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\PA207Usd.dll
[2004.09.16 13:26:40 | 000,012,634 | ---- | C] () -- C:\WINDOWS\System32\drivers\ADFUUD.SYS
[2003.09.30 10:47:39 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2003.09.30 10:47:39 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2003.09.30 10:47:39 | 000,155,136 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2003.09.30 10:47:39 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2003.09.30 10:47:39 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2003.07.15 06:53:56 | 000,011,521 | ---- | C] () -- C:\WINDOWS\MSUMLT_Q.INI
[2001.05.01 01:01:24 | 001,015,808 | ---- | C] () -- C:\WINDOWS\System32\php4ts.dll
[2001.04.30 23:19:14 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2001.04.30 23:18:38 | 000,659,456 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2001.04.30 18:30:18 | 000,368,640 | ---- | C] () -- C:\WINDOWS\System32\libxml2.dll
[2001.04.13 19:16:02 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\sablot.dll
[2000.11.30 02:18:46 | 000,274,432 | ---- | C] () -- C:\WINDOWS\System32\yaz.dll
[2000.10.22 17:26:44 | 000,438,334 | ---- | C] () -- C:\WINDOWS\System32\expat.dll
[2000.10.22 03:41:26 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\libsasl.dll
[2000.09.27 00:28:20 | 000,040,448 | ---- | C] () -- C:\WINDOWS\System32\libpq.dll
[2000.08.24 17:44:10 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\xmlparse.dll
[2000.08.24 17:44:08 | 000,078,848 | ---- | C] () -- C:\WINDOWS\System32\xmltok.dll
[2000.06.02 19:11:38 | 000,282,679 | ---- | C] () -- C:\WINDOWS\System32\jvm.dll
[1999.05.24 10:26:42 | 000,317,440 | ---- | C] () -- C:\WINDOWS\System32\FdfTk.dll
[1997.09.07 23:13:48 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\mSQL.dll

========== LOP Check ==========

[2012.02.17 15:19:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\.minecraft
[2010.08.28 21:26:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Acronis
[2009.08.30 09:40:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Allstar
[2010.07.28 20:22:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Any Video Converter Professional
[2012.01.28 09:20:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Babylon
[2010.02.14 11:25:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\BITS
[2009.10.04 18:26:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Braid
[2010.02.15 13:54:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\CheckPoint
[2009.01.21 23:25:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2009.09.06 15:23:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\DMCache
[2009.07.07 15:33:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\EleFun Games
[2009.01.21 19:15:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\ESET
[2009.01.27 15:07:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Expert SoftWorks
[2010.02.14 11:04:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\FlashGet
[2010.02.14 11:04:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\FlashGetBHO
[2009.06.09 18:02:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\FLVPlayer4Free
[2009.07.07 15:40:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Gaijin Ent
[2009.11.29 14:48:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\GARMIN
[2009.07.04 09:14:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\GlarySoft
[2010.11.29 16:43:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\gtk-2.0
[2012.02.05 18:33:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\HLSW
[2009.09.14 18:42:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\ICQ
[2009.09.06 16:17:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\IDM
[2011.12.03 19:50:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\IObit
[2011.05.12 20:51:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\LangSoft
[2010.11.11 14:32:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Leadertech
[2010.11.07 15:09:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Mobile Atlas Creator
[2009.07.29 16:05:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Monotea
[2010.11.02 16:56:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\MyHeritage
[2010.06.10 11:27:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Nokia
[2009.07.14 22:00:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\PC Suite
[2011.03.14 19:18:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\PlayFirst
[2010.08.30 20:05:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\SPORE
[2010.01.06 16:39:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\TMNT
[2009.01.21 21:59:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\TuneUp Software
[2010.04.18 12:42:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Ubisoft
[2011.02.12 08:44:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Uniblue
[2011.09.01 16:46:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Unity
[2011.12.28 23:02:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\uTorrent
[2011.07.02 10:52:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\VisualShape
[2011.12.25 15:15:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Vso
[2011.01.03 22:26:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Zoner
[2012.01.22 12:02:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Data aplikací\GlarySoft
[2009.10.04 18:43:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\2DBoy
[2009.06.08 14:25:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Acronis
[2011.07.02 10:51:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AlawarWrapper
[2010.02.13 21:35:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2012.01.28 09:20:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Babylon
[2011.09.29 10:49:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Big Fish Games
[2010.10.28 15:48:28 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\DSS
[2011.01.16 12:14:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EA Core
[2009.11.03 21:05:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Easy CD-DA Extractor
[2011.01.16 12:14:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2009.01.21 19:11:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2011.04.16 17:53:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Frag Games
[2009.09.14 18:26:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2009.07.14 21:53:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2012.01.28 09:20:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\InstallMate
[2011.12.03 20:21:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2011.05.12 20:51:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\LangSoft
[2012.02.16 11:43:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Monotea
[2011.11.05 16:38:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MumboJumbo
[2010.11.11 11:10:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MyHeritage
[2011.03.14 19:59:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MythPeople
[2010.06.09 19:47:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\OviInstallerCache
[2009.07.14 22:00:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2011.12.23 09:53:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Premium
[2011.10.20 19:47:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Solidshield
[2012.01.01 19:14:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SweetIM
[2010.07.28 20:19:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2010.08.16 22:01:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2010.04.18 12:42:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ubisoft
[2011.07.02 10:52:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\VisualShape
[2009.11.18 18:21:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Vivendi Universal Games
[2009.10.11 16:12:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\vsosdk
[2009.11.26 21:59:54 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{55A29068-F2CE-456C-9148-C869879E2357}
[2010.08.16 22:01:04 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2009.01.22 15:46:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\Acronis
[2010.08.17 18:00:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\TuneUp Software
[2012.02.17 20:56:02 | 000,000,270 | ---- | M] () -- C:\WINDOWS\Tasks\ASC4_PerformanceMonitor.job
[2012.02.17 20:58:55 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job

========== Purity Check ==========



========== Custom Scans ==========


< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Advanced SystemCare 4" = C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe -- [2011.08.09 16:56:40 | 000,417,112 | ---- | M] (IObit)
"WMPNSCFG" = C:\Program Files\Windows Media Player\WMPNSCFG.exe -- [2007.01.05 20:57:50 | 000,204,288 | ---- | M] (Microsoft Corporation)
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 04:22:17 | 000,015,360 | ---- | M] (Microsoft Corporation)

< >


< MD5 for: AGP440.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2009.01.20 14:12:46 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2009.01.20 14:12:46 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ERDNT\cache\agp440.sys
[2008.04.13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

< MD5 for: ATAPI.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2009.01.20 14:12:46 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2009.01.20 14:12:46 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2006.03.02 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2006.03.02 13:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2009.01.20 14:12:46 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2009.01.20 14:12:46 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006.03.02 13:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2006.03.02 13:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 04:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ERDNT\cache\cryptsvc.dll
[2008.04.14 04:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 04:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll

< MD5 for: CSRSS.EXE >
[2006.03.02 13:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=490E6E57E54FAF5F23F658EA188405A1 -- C:\WINDOWS\$NtServicePackUninstall$\csrss.exe
[2008.04.14 04:22:17 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=628CE66E3FD35BFC7969DBAC245DC069 -- C:\WINDOWS\ServicePackFiles\i386\csrss.exe
[2008.04.14 04:22:17 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=628CE66E3FD35BFC7969DBAC245DC069 -- C:\WINDOWS\system32\csrss.exe

< MD5 for: EVENTLOG.DLL >
[2008.04.14 04:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2008.04.14 04:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 04:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2006.03.02 13:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2006.03.02 13:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: FASTFAT.SYS >
[2006.03.02 13:00:00 | 000,143,360 | ---- | M] (Microsoft Corporation) MD5=3117F595E9615E04F05A54FC15A03B20 -- C:\WINDOWS\$NtServicePackUninstall$\fastfat.sys
[2008.04.13 20:14:29 | 000,143,744 | ---- | M] (Microsoft Corporation) MD5=38D332A6D56AF32635675F132548343E -- C:\WINDOWS\ServicePackFiles\i386\fastfat.sys
[2008.04.13 20:14:29 | 000,143,744 | ---- | M] (Microsoft Corporation) MD5=38D332A6D56AF32635675F132548343E -- C:\WINDOWS\system32\drivers\fastfat.sys

< MD5 for: HAL.DLL >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2009.01.20 14:12:46 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2009.01.20 14:12:46 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 19:31:28 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 19:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2006.03.02 13:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: CHANGER.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2009.01.20 14:12:46 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2009.01.20 14:12:46 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 19:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys

< MD5 for: ISAPNP.SYS >
[2009.01.20 14:12:46 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2009.01.20 14:12:46 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2006.03.02 13:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2008.04.14 03:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 03:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys

< MD5 for: LSASS.EXE >
[2006.03.02 13:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 04:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ERDNT\cache\lsass.exe
[2008.04.14 04:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 04:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2008.04.13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2006.03.02 13:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

< MD5 for: NETLOGON.DLL >
[2006.03.02 13:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 04:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2008.04.14 04:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 04:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: NTFS.SYS >
[2008.04.13 20:15:53 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\ERDNT\cache\ntfs.sys
[2008.04.13 20:15:53 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\ServicePackFiles\i386\ntfs.sys
[2008.04.13 20:15:53 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\system32\drivers\ntfs.sys
[2004.08.03 22:15:10 | 000,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\cmdcons\NTFS.SYS
[2006.03.02 13:00:00 | 000,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\WINDOWS\$NtServicePackUninstall$\ntfs.sys

< MD5 for: SCECLI.DLL >
[2006.03.02 13:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SERVICES.EXE >
[2009.02.09 12:18:56 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=3D107D45CCFDB266E91D84B52CD7F430 -- C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\services.exe
[2006.03.02 13:00:00 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=6E401E61F952FBBF708AFBECEFAFAE81 -- C:\WINDOWS\$NtServicePackUninstall$\services.exe
[2009.02.09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\ERDNT\cache\services.exe
[2009.02.09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\system32\dllcache\services.exe
[2009.02.09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\system32\services.exe
[2008.04.14 04:22:45 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=F0D2AE69035092BF22DAD6B50FAB85C2 -- C:\WINDOWS\$NtUninstallKB956572$\services.exe
[2008.04.14 04:22:45 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=F0D2AE69035092BF22DAD6B50FAB85C2 -- C:\WINDOWS\ServicePackFiles\i386\services.exe

< MD5 for: SMSS.EXE >
[2006.03.02 13:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2004.08.17 14:49:28 | 000,164,864 | ---- | M] (Microsoft Corporation) MD5=3C100B7FDB179B63829103DF6541337F -- C:\cmdcons\SYSTEM32\SMSS.EXE
[2008.04.14 04:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 04:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe

< MD5 for: SPOOLSV.EXE >
[2006.03.02 13:00:00 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=21B6FAA88044A41640E03EBB68BE93E8 -- C:\WINDOWS\$NtServicePackUninstall$\spoolsv.exe
[2010.08.17 14:19:36 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=258DD5D4283FD9F9A7166BE9AE45CE73 -- C:\WINDOWS\$hf_mig$\KB2347290\SP3QFE\spoolsv.exe
[2010.08.17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=60784F891563FB1B767F70117FC2428F -- C:\WINDOWS\ERDNT\cache\spoolsv.exe
[2010.08.17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=60784F891563FB1B767F70117FC2428F -- C:\WINDOWS\system32\dllcache\spoolsv.exe
[2010.08.17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=60784F891563FB1B767F70117FC2428F -- C:\WINDOWS\system32\spoolsv.exe
[2008.04.14 04:22:48 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=CB1090BCA0E7B40D0B5B4E4D66531809 -- C:\WINDOWS\$NtUninstallKB2347290$\spoolsv.exe
[2008.04.14 04:22:48 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=CB1090BCA0E7B40D0B5B4E4D66531809 -- C:\WINDOWS\ServicePackFiles\i386\spoolsv.exe

< MD5 for: SVCHOST.EXE >
[2008.04.14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2008.04.14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2006.03.02 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=4AFB3B0919649F95C1964AA1FAD27D73 -- C:\WINDOWS\$NtUninstallKB2509553$\tcpip.sys
[2008.04.13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\ERDNT\cache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2006.03.02 13:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2008.04.14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2006.03.02 13:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2006.03.02 13:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008.04.14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< MD5 for: WS2_32.DLL >
[2006.03.02 13:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 04:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ERDNT\cache\ws2_32.dll
[2008.04.14 04:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 04:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll

< >

< C:\windows\system32\spool\prtprocs|dll;true;true;true /FP >
[2008.07.06 13:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
[2003.07.23 10:44:18 | 000,010,240 | ---- | M] (Zenographics, Inc.) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\MIMFPR_Q.DLL
[2006.10.26 19:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\msonpppr.dll
[2008.07.06 13:06:10 | 000,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\x64\filterpipelineprintproc.dll

< %systemroot%\system32\drivers\*.sys /5 >
[2012.02.16 12:45:11 | 000,138,160 | ---- | M] () -- C:\WINDOWS\system32\drivers\PnkBstrK.sys

< %systemroot%\system32\drivers\*.sys /X >
[2008.04.14 04:21:36 | 000,004,255 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv01nt5.dll
[2008.04.14 04:21:36 | 000,003,967 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv02nt5.dll
[2008.04.14 04:21:36 | 000,003,615 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv05nt5.dll
[2008.04.14 04:21:36 | 000,003,647 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv07nt5.dll
[2008.04.14 04:21:36 | 000,003,135 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv08nt5.dll
[2008.04.14 04:21:36 | 000,003,711 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv09nt5.dll
[2008.04.14 04:21:36 | 000,003,775 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv11nt5.dll
[2008.09.03 02:17:56 | 000,053,248 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\drivers\ati2erec.dll
[2004.07.17 11:36:24 | 000,064,352 | ---- | M] () -- C:\WINDOWS\system32\drivers\ativmc20.cod
[2008.04.14 04:21:37 | 000,021,183 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv01nt5.dll
[2008.04.14 04:21:37 | 000,011,359 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv02nt5.dll
[2008.04.14 04:21:37 | 000,025,471 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv04nt5.dll
[2008.04.14 04:21:37 | 000,014,143 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv06nt5.dll
[2008.04.14 04:21:37 | 000,017,279 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv10nt5.dll
[2008.04.14 04:21:38 | 000,015,423 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
[2004.07.17 22:55:24 | 000,129,045 | ---- | M] () -- C:\WINDOWS\system32\drivers\cxthsfs2.cty
[2006.03.02 13:00:00 | 003,440,660 | ---- | M] () -- C:\WINDOWS\system32\drivers\gm.dls
[2006.03.02 13:00:00 | 000,000,646 | ---- | M] () -- C:\WINDOWS\system32\drivers\gmreadme.txt
[2009.07.14 21:39:41 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
[2009.07.14 22:00:36 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
[2009.07.14 22:01:13 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\system32\drivers\MsftWdf_user_01_07_00.Wdf
[2009.07.14 21:39:47 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\system32\drivers\Msft_Kernel_ccdcmb_01005.Wdf
[2009.07.14 22:00:37 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
[2009.07.14 22:01:19 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\system32\drivers\Msft_User_PCCSWpdDriver_01_07_00.Wdf
[2004.07.17 11:35:00 | 000,067,866 | ---- | M] () -- C:\WINDOWS\system32\drivers\netwlan5.img
[2007.05.27 21:57:28 | 000,001,732 | ---- | M] () -- C:\WINDOWS\system32\drivers\nvphy.bin
[2008.04.14 04:21:55 | 000,003,901 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\siint5.dll
[2008.04.14 04:22:04 | 000,011,325 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\vchnt5.dll

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010.04.18 12:07:17 | 000,639,224 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys

< %systemroot%\system32\*.* /5 >
[2012.02.17 20:55:45 | 000,045,668 | ---- | M] () -- C:\WINDOWS\system32\ativvaxx.cap
[2012.02.15 15:10:32 | 000,273,376 | ---- | M] () -- C:\WINDOWS\system32\FNTCACHE.DAT
[2012.02.15 13:09:07 | 052,550,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MRT.exe
[2012.02.15 13:13:16 | 000,080,958 | ---- | M] () -- C:\WINDOWS\system32\perfc005.dat
[2012.02.15 13:13:16 | 000,069,688 | ---- | M] () -- C:\WINDOWS\system32\perfc009.dat
[2012.02.15 13:13:16 | 000,436,290 | ---- | M] () -- C:\WINDOWS\system32\perfh005.dat
[2012.02.15 13:13:16 | 000,439,044 | ---- | M] () -- C:\WINDOWS\system32\perfh009.dat
[2012.02.15 13:13:16 | 000,997,512 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI
[2012.02.13 16:40:53 | 000,271,200 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrB.ex0
[2012.02.16 12:44:58 | 000,271,200 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrB.exe
[2012.02.16 12:44:58 | 000,271,200 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrB.xtr

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\config\*.sav >
[2009.01.20 20:20:03 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2009.01.20 20:20:03 | 000,638,976 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2009.01.20 20:20:03 | 000,458,752 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\*.* /U /s >
[8 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[4 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[1 C:\WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\*.tmp files -> C:\WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\36c65afcc262a2ea53239408df36c097\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\36c65afcc262a2ea53239408df36c097\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\dc5785e9c8b3c9af476ade166b57dd6e\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\dc5785e9c8b3c9af476ade166b57dd6e\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\f1172ec065789780f3e853c2a63ff94c\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\f1172ec065789780f3e853c2a63ff94c\*.tmp -> ]
[2 C:\WINDOWS\system32\CatRoot\*.tmp files -> C:\WINDOWS\system32\CatRoot\*.tmp -> ]
[1 C:\WINDOWS\system32\DirectX\*.tmp files -> C:\WINDOWS\system32\DirectX\*.tmp -> ]

< %systemroot%\*. /mp /s >

< %ALLUSERSPROFILE%\Data Aplikací\*.* >
[2011.12.13 14:07:21 | 000,000,041 | -HS- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\.zreglib
[2009.01.20 20:23:06 | 000,000,062 | -HS- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\desktop.ini
[2009.09.03 13:04:54 | 000,000,032 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\ezsid.dat

< %ALLUSERSPROFILE%\Data Aplikací\*.exe /s >
[2010.09.21 19:37:40 | 000,338,856 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\All Users\Data Aplikací\Adobe\Reader\9.3\ARM\12697\AcrobatUpdater.exe
[2010.09.21 19:37:40 | 000,932,288 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\All Users\Data Aplikací\Adobe\Reader\9.3\ARM\12697\AdobeARM.exe
[2010.09.21 19:37:40 | 000,338,856 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\All Users\Data Aplikací\Adobe\Reader\9.3\ARM\12697\ReaderUpdater.exe
[2012.01.03 18:46:15 | 000,345,520 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\All Users\Data Aplikací\Adobe\Setup\{AC76BA86-7AD7-1029-7B44-A95000000001}\Setup.exe
[2011.08.19 05:31:14 | 015,548,856 | ---- | M] (Big Fish Games) -- C:\Documents and Settings\All Users\Data Aplikací\BigFishGamesCache\Upgrade\clientinstaller\bfgsetup_s1_l1.exe
[2011.08.19 05:31:20 | 000,144,504 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\BigFishGamesCache\Upgrade\stub\luxor-5th-passage_s1_l1_gF6032T1L1_d1475154403.exe
[2011.08.19 05:31:20 | 000,144,504 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\BigFishGamesCache\Upgrade\stub\luxor2_s1_l1_gF1214T1L1_d1473395529.exe
[2011.08.19 05:31:20 | 000,144,504 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\BigFishGamesCache\Upgrade\stub\zumas-revenge-adventure_s1_l1_gF5701T1L1_d1473712708.exe
[2011.09.29 10:48:45 | 015,608,136 | ---- | M] (Big Fish Games) -- C:\Documents and Settings\All Users\Data Aplikací\BigFishGamesCache\Upgrade\Unpack\bfgsetup_s1_l1.exe
[2001.09.05 02:23:24 | 000,056,320 | ---- | M] (InstallShield Software Corporation) -- C:\Documents and Settings\All Users\Data Aplikací\Frag Games\Setup.exe
[2009.07.14 21:53:14 | 033,921,368 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Nokia_PC_Suite_7_1_30_9_cze_web.exe
[2009.07.14 21:53:40 | 000,095,232 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\pcswpcsi.exe
[2009.07.14 21:53:40 | 000,008,192 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstCCD.exe
[2009.07.14 21:53:40 | 000,010,240 | ---- | M] (Nokia) -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstPCS.exe
[2009.07.14 21:53:40 | 000,061,440 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
[2012.01.06 08:31:54 | 000,015,496 | R-S- | M] (Tarma Software Research Pty Ltd) -- C:\Documents and Settings\All Users\Data Aplikací\InstallMate\{365E2145-FF2B-BF95-82D7-7AAAD2B98D5D}\Setup.exe
[2011.12.17 05:10:35 | 000,015,496 | R-S- | M] (Tarma Software Research Pty Ltd) -- C:\Documents and Settings\All Users\Data Aplikací\InstallMate\{DBB02F63-2284-42AA-B1BC-F2912BC5B32B}\Setup.exe
[2011.05.12 20:50:58 | 000,026,624 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\LangSoft\OETRN.EXE
[2009.10.24 09:46:37 | 000,424,448 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Monotea\All Users\SMS Sender 2009\Update\219\smszdarma219.exe
[2009.10.27 16:01:59 | 000,424,448 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Monotea\All Users\SMS Sender 2009\Update\220\smszdarma220.exe
[2010.05.23 15:58:21 | 003,849,337 | ---- | M] (David Kořínek ) -- C:\Documents and Settings\All Users\Data Aplikací\Monotea\All Users\SMSS3\Update\225\update.exe
[2010.06.30 14:42:34 | 003,829,957 | ---- | M] (David Kořínek ) -- C:\Documents and Settings\All Users\Data Aplikací\Monotea\All Users\SMSS3\Update\226\update.exe
[2010.07.21 21:03:26 | 003,833,330 | ---- | M] (David Kořínek ) -- C:\Documents and Settings\All Users\Data Aplikací\Monotea\All Users\SMSS3\Update\301\update.exe
[2010.09.30 14:28:50 | 000,524,288 | ---- | M] (David Kořínek ) -- C:\Documents and Settings\All Users\Data Aplikací\Monotea\All Users\SMSS3\Update\303\update.exe
[2010.11.05 16:10:21 | 003,835,089 | ---- | M] (David Kořínek ) -- C:\Documents and Settings\All Users\Data Aplikací\Monotea\All Users\SMSS3\Update\304\update.exe
[2010.11.15 14:42:56 | 004,205,111 | ---- | M] (David Kořínek ) -- C:\Documents and Settings\All Users\Data Aplikací\Monotea\All Users\SMSS3\Update\305\update.exe
[2010.11.19 15:27:55 | 000,979,320 | ---- | M] (David Kořínek ) -- C:\Documents and Settings\All Users\Data Aplikací\Monotea\All Users\SMSS3\Update\306\update.exe
[2010.12.15 20:36:39 | 000,981,353 | ---- | M] (David Kořínek ) -- C:\Documents and Settings\All Users\Data Aplikací\Monotea\All Users\SMSS3\Update\307\update.exe
[2012.01.25 18:32:55 | 004,869,855 | ---- | M] (David Kořínek ) -- C:\Documents and Settings\All Users\Data Aplikací\Monotea\All Users\SMSS3\Update\311\update.exe
[2012.01.26 18:00:06 | 004,884,187 | ---- | M] (David Kořínek ) -- C:\Documents and Settings\All Users\Data Aplikací\Monotea\All Users\SMSS3\Update\312\update.exe
[2012.02.05 20:09:42 | 004,885,452 | ---- | M] (David Kořínek ) -- C:\Documents and Settings\All Users\Data Aplikací\Monotea\All Users\SMSS3\Update\313\update.exe
[2012.02.16 11:43:26 | 001,250,000 | ---- | M] (David Kořínek ) -- C:\Documents and Settings\All Users\Data Aplikací\Monotea\All Users\SMSS3\Update\316\update.exe
[2009.06.08 13:36:09 | 000,281,625 | R--- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Norton\Norton2009Reset.exe
[2010.06.09 19:46:56 | 098,366,952 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Nokia_Ovi_Suite_PCS_Update.exe
[2010.06.09 21:07:27 | 000,050,000 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\pcswpc.exe
[2010.06.09 21:07:27 | 000,077,824 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\Run_XML6_SP1.exe
[2010.06.09 21:07:27 | 000,058,880 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\WMF11Runx64.exe
[2010.06.09 21:07:28 | 000,061,440 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\WMF11Runx86.exe
[2010.06.09 21:07:31 | 013,930,312 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\All Users\Data Aplikací\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X64-ENU.exe
[2010.06.09 21:07:34 | 012,212,040 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\All Users\Data Aplikací\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X86-ENU.exe
[2009.07.25 15:50:34 | 000,428,032 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Skype Extras\Plugins\7A35F6B8E3B747518F5737995988E6FB\rubit.exe
[2009.07.25 15:50:34 | 005,687,296 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Skype Extras\Plugins\7A35F6B8E3B747518F5737995988E6FB\callburner\CallBurner.exe
[2009.07.25 15:50:34 | 000,428,032 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Skype\Plugins\Plugins\7A35F6B8E3B747518F5737995988E6FB\rubit.exe
[2009.07.25 15:50:34 | 005,687,296 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Skype\Plugins\Plugins\7A35F6B8E3B747518F5737995988E6FB\callburner\CallBurner.exe

< %ALLUSERSPROFILE%\Dáta aplikácií\*.* >

< %ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s >

< %APPDATA%\*. >
[2012.02.17 15:19:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\.minecraft
[2011.09.20 20:05:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\ABBYY
[2010.08.28 21:26:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Acronis
[2012.02.03 18:48:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Adobe
[2009.01.25 12:13:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Ahead
[2009.08.30 09:40:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Allstar
[2010.07.28 20:22:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Any Video Converter Professional
[2012.01.28 09:20:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Babylon
[2010.02.14 11:25:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\BITS
[2009.10.04 18:26:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Braid
[2010.02.15 13:54:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\CheckPoint
[2009.01.21 23:25:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2009.09.06 15:23:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\DMCache
[2009.07.07 15:33:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\EleFun Games
[2009.01.21 19:15:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\ESET
[2009.01.27 15:07:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Expert SoftWorks
[2010.02.14 11:04:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\FlashGet
[2010.02.14 11:04:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\FlashGetBHO
[2009.06.09 18:02:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\FLVPlayer4Free
[2009.07.07 15:40:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Gaijin Ent
[2009.11.29 14:48:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\GARMIN
[2009.07.04 09:14:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\GlarySoft
[2009.11.07 20:09:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Google
[2010.11.29 16:43:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\gtk-2.0
[2011.06.15 17:03:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Hamachi
[2009.10.04 13:04:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Help
[2012.02.05 18:33:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\HLSW
[2009.09.14 18:42:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\ICQ
[2009.01.20 19:39:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Identities
[2009.09.06 16:17:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\IDM
[2009.01.20 19:42:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\InstallShield
[2011.12.03 19:50:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\IObit
[2011.05.12 20:51:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\LangSoft
[2010.11.11 14:32:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Leadertech
[2009.01.21 17:16:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Macromedia
[2010.02.13 12:43:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Malwarebytes
[2011.04.18 15:18:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Media Player Classic
[2011.12.06 21:01:37 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Admin\Data aplikací\Microsoft
[2010.11.08 19:16:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Microsoft Games
[2010.11.07 15:09:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Mobile Atlas Creator
[2009.07.29 16:05:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Monotea
[2009.01.20 19:22:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Mozilla
[2010.11.02 16:56:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\MyHeritage
[2009.01.24 18:52:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Nero
[2010.06.10 11:27:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Nokia
[2009.07.14 22:00:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\PC Suite
[2011.03.14 19:18:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\PlayFirst
[2009.09.21 16:19:03 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\Admin\Data aplikací\SecuROM
[2012.02.17 20:51:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Skype
[2011.06.23 17:02:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\skypePM
[2010.08.30 20:05:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\SPORE
[2009.06.09 09:13:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Sun
[2010.01.06 16:39:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\TMNT
[2009.01.21 21:59:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\TuneUp Software
[2010.04.18 12:42:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Ubisoft
[2011.02.12 08:44:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Uniblue
[2011.09.01 16:46:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Unity
[2011.12.28 23:02:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\uTorrent
[2011.07.02 10:52:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\VisualShape
[2011.12.25 15:15:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Vso
[2011.01.23 14:23:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\WinRAR
[2011.01.03 22:26:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Data aplikací\Zoner

< %APPDATA%\*.* >
[2009.01.20 20:23:06 | 000,000,062 | -HS- | M] () -- C:\Documents and Settings\Admin\Data aplikací\desktop.ini
[2010.11.04 22:19:14 | 000,038,468 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Hodnoty oddělené čárkami (Windows).ADR
[2009.01.24 20:29:24 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\inst.exe
[2010.10.20 15:00:02 | 000,695,296 | ---- | M] (AnjoCaido) -- C:\Documents and Settings\Admin\Data aplikací\MinecraftSP.exe
[2009.01.24 20:29:24 | 000,007,887 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\pcouffin.cat
[2009.01.24 20:29:24 | 000,001,144 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\pcouffin.inf
[2009.01.24 20:29:32 | 000,000,034 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\pcouffin.log
[2009.01.24 20:29:24 | 000,047,360 | ---- | M] (VSO Software) -- C:\Documents and Settings\Admin\Data aplikací\pcouffin.sys
[2011.10.10 21:30:00 | 000,022,328 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\PnkBstrK.sys
[2012.02.12 16:05:08 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\steam_md4.dat
[2011.12.25 15:15:26 | 000,000,664 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\vso_ts_preview.xml

< %APPDATA%\*.exe /s >
[2009.01.24 20:29:24 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\inst.exe
[2010.10.20 15:00:02 | 000,695,296 | ---- | M] (AnjoCaido) -- C:\Documents and Settings\Admin\Data aplikací\MinecraftSP.exe
[2011.09.02 12:42:12 | 000,270,142 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\.minecraft\Minecraft.exe
[2011.04.01 14:35:10 | 000,123,674 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\.minecraft\MinecraftLauncher.exe
[2011.09.02 15:38:56 | 000,695,296 | ---- | M] (AnjoCaido) -- C:\Documents and Settings\Admin\Data aplikací\.minecraft\MinecraftSP.exe
[2011.12.09 13:51:53 | 000,926,710 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\.minecraft\Nová složka\Minecraft_Server.exe
[2010.01.01 14:12:21 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Microsoft\Installer\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}\_2CB28812C6987905FED019.exe
[2010.01.01 14:12:20 | 000,001,518 | R--- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Microsoft\Installer\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}\_3CF308077C90516B1F4B38.exe
[2010.01.01 14:12:21 | 000,001,078 | R--- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Microsoft\Installer\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}\_426B928B2B076954171F35.exe
[2010.01.01 14:12:20 | 000,000,766 | R--- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Microsoft\Installer\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}\_6FEFF9B68218417F98F549.exe
[2010.01.01 14:12:21 | 000,001,078 | R--- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Microsoft\Installer\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}\_B3CD640DEBF0644E1183FA.exe
[2010.01.01 14:12:21 | 000,002,550 | R--- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Microsoft\Installer\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}\_C6CC5DBCD6C60EDD4AD668.exe
[2011.05.12 20:47:32 | 000,188,152 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\lzhodmmd.default\FlashGot.exe
[2010.07.09 09:42:45 | 069,222,840 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Nokia\Ovi Suite\Software Updater\NokiaOviSuite2Installer.exe

< %SYSTEMDRIVE%\*.exe >

< >

< >

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2012-02-17 06:41:55

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\BITS /s >
"StateIndex" = 1

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER
BOOTEXECUTE REG_MULTI_SZ autocheck autochk *\0\0

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER

< >

< type c:\boot.ini >> test.txt /c >
[boot loader]
timeout=3
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect /usepmtimer

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.02.17 21:05:45 | 000,000,512 | ---- | M] () MD5=D85824C04DB0681BAD1F7BCDC0C75F7E -- C:\PhysicalMBR.bin

========== Alternate Data Streams ==========

@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:661DFA1C

< End of report >

No jinak krom toho outlooku to vypadá snad dobře,zatím děkuji

Spustte OTL
-do bílého okna dole skopírujte tento skript:
-klikněte na tlačítko opravit.
-Následně se pc restartuje.
- Log vložte zde