Kontrola po policejním

[Mates86]

Zdravím,
Starší notebook, měl policejní virus. Toho jsem se zbavil Hitmanem Pro. Potom jsem to projel ještě nainstalovaným avastem a nainstaloval SP3. Před instalací SP3 mi to otvíralo nesmyslně okna a často hrabalo na disk. Teď se to zdá lepší ale stejně poprosím o kontrolu logu z FRST. Addition přiložen v rar souboru.

Předem díky


Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-09-2013 02
Ran by Raducoj (administrator) on RADUCOJ-STREP on 12-09-2013 19:23:22
Running from C:\Documents and Settings\Raducoj\Plocha
Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Secunia) C:\Program Files\Secunia\PSI\PSIA.exe
() C:\Program Files\Tor\tor.exe
(Secunia) C:\Program Files\Secunia\PSI\sua.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\avastUI.exe
() C:\Program Files\CT24\ct24crawl.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Secunia) C:\Program Files\Secunia\PSI\psi_tray.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDCPL] - C:\Windows\RTHDCPL.EXE [16206848 2006-05-04] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] - C:\Windows\ALCMTR.EXE [69632 2005-05-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [708697 2005-05-11] (Synaptics, Inc.)
HKLM\...\Run: [] - [x]
HKLM\...\Run: [avast] - C:\Program Files\Alwil Software\Avast5\avastUI.exe [4858968 2013-08-30] (AVAST Software)
Winlogon\Notify\AtiExtEvent: Ati2evxx.dll (ATI Technologies Inc.)
HKCU\...\Run: [ct24crawl] - C:\Program Files\CT24\ct24crawl.exe [929280 2010-08-09] ()
HKCU\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [19875432 2013-06-21] (Skype Technologies S.A.)
MountPoints2: {16add437-0be9-11e2-8b0a-0018f3738477} - F:\jetflash220.exe
MountPoints2: {1d093b0c-81a1-11e1-9c89-0018f3738477} - F:\urDrive.exe
MountPoints2: {3482ff0e-332a-11e1-9bb8-0018f3738477} - "F:\WD SmartWare.exe" autoplay=true
MountPoints2: {69a21d80-0231-11e0-992b-0018f3738477} - F:\urDrive.exe
MountPoints2: {72738418-ea56-11e0-9b11-0018f3738477} - "F:\WD SmartWare.exe" autoplay=true
MountPoints2: {72738419-ea56-11e0-9b11-0018f3738477} - G:\setup.exe
MountPoints2: {f580e380-57fe-11e1-9c1b-0018f3738477} - F:\urDrive.exe
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files\Secunia\PSI\psi_tray.exe (Secunia)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-search.com/?affID=1197 ... 18f3739fa7
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://start.qip.ru/
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = http://search.icq.com/search/results.ph ... &ch_id=osd
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www.delta-search.com/?affID=1197 ... 18f3739fa7
URLSearchHook: (No Name) - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - No File
SearchScopes: HKLM - DefaultScope {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL = http://search.qip.ru/?query={searchTerms}
SearchScopes: HKLM - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL = http://search.qip.ru/?query={searchTerms}
SearchScopes: HKCU - DefaultScope {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL = http://search.qip.ru/?query={searchTerms}
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.delta-search.com/?q={searchT ... 18f3739fa7
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = http://search.icq.com/search/results.ph ... &ch_id=osd
SearchScopes: HKCU - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL = http://search.qip.ru/?query={searchTerms}
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT3220468
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2210608 2006-10-27] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.88.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: gophoto - C:\Documents and Settings\Raducoj\Data aplikací\Mozilla\Firefox\profiles\extensions\gophoto@gophoto.it.xpi
FF Extension: Conduit Engine - \Extensions\engine@conduit.com
FF Extension: uTorrentBar Community Toolbar - \Extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

Chrome:
=======
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.160.1) - C:\Program Files\Java\jre6\bin\new_plugin\npdeploytk.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U16) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (Windows Presentation Foundation) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (Seznam Li\u0161ti\u010Dka - Email) - C:\DOCUME~1\Raducoj\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig\1.3.13_0
CHR Extension: (Seznam Li\u0161ti\u010Dka - Slovn\u00EDk) - C:\DOCUME~1\Raducoj\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd\1.2.13_0
CHR Extension: (YouTube) - C:\DOCUME~1\Raducoj\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (savenasHHarie ) - C:\DOCUME~1\Raducoj\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\cmiopagnlfnbkbbaanoenggdkmgfdeah\1
CHR Extension: (Google Search) - C:\DOCUME~1\Raducoj\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (uTorrentControl_v2) - C:\DOCUME~1\Raducoj\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda\2.5.0.1_0
CHR Extension: (Torntv) - C:\DOCUME~1\Raducoj\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\jbpkiefagocgkmemidfngdkamloieekf\1.1_0
CHR Extension: (Skype Click to Call) - C:\DOCUME~1\Raducoj\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.9.0.12585_0
CHR Extension: (Chrome In-App Payments service) - C:\DOCUME~1\Raducoj\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Seznam Li\u0161ti\u010Dka - Rychl\u00E1 volba) - C:\DOCUME~1\Raducoj\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak\1.5.14_0
CHR Extension: (GoPhoto.it) - C:\DOCUME~1\Raducoj\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk\1.6_0
CHR Extension: (Gmail) - C:\DOCUME~1\Raducoj\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [bgnnidmnbdkmhfkjgdnngciimpdgohok] - C:\Program Files\LSHunter.TV\stv12.crx
CHR HKLM\...\Chrome\Extension: [ejpbbhjlbipncjklfjjaedaieimbmdda] - C:\Documents and Settings\Raducoj\Local Settings\Data aplikací\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx
CHR HKLM\...\Chrome\Extension: [jbpkiefagocgkmemidfngdkamloieekf] - C:\Program Files\TornTV.com\torn11.crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR HKLM\...\Chrome\Extension: [niapdbllcanepiiimjjndipklodoedlc] - C:\Program Files\Yontoo\YontooLayers.crx
CHR HKLM\...\Chrome\Extension: [pfmopbbadnfoelckkcmjjeaaegjpjjbk] - C:\Program Files\Gophoto.it\gophotoit14.crx

========================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [29920 2013-06-03] (The OpenVPN Project)
S4 Pml Driver HPZ12; C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\HPZipm12.exe [65536 2004-11-26] (HP)
R2 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1228504 2013-07-03] (Secunia)
R2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [660184 2013-07-03] (Secunia)
R2 tor; C:\Program Files\Tor\tor.exe [3233806 2013-09-04] ()
R2 JavaQuickStarterService; "C:\Program Files\Java\jre7\bin\jqs.exe" -service -config "C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf"

==================== Drivers (Whitelisted) ====================

S3 ASNDIS5; C:\WINDOWS\system32\ASNDIS5.SYS [16269 2002-09-09] (Printing Communications Assoc., Inc. (PCAUSA))
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [29816 2013-08-30] (AVAST Software)
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [24408 2012-03-07] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [66336 2013-08-30] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswRdr.sys [49760 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49376 2013-08-30] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [770344 2013-08-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [369584 2013-08-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [56080 2013-08-30] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [177864 2013-08-30] ()
S3 BCM43XX; C:\Windows\System32\DRIVERS\bcmwl5.sys [371712 2005-02-11] (Broadcom Corporation)
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [30976 2013-09-11] ()
R3 irsir; C:\Windows\System32\DRIVERS\irsir.sys [18688 2001-08-17] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [5632 2005-02-18] ()
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_x86.sys [16024 2013-07-03] (Secunia)
R3 Rasirda; C:\Windows\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
R3 rtl8139; C:\Windows\System32\DRIVERS\RTL8139.SYS [20992 2004-08-04] (Realtek Semiconductor Corporation)
R3 SynMini; C:\Windows\System32\Drivers\SynMini.sys [1056512 2006-07-03] ()
R3 SynScan; C:\Windows\System32\Drivers\SynScan.sys [8064 2006-06-30] ()
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [31360 2013-02-08] (The OpenVPN Project)
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 smserial; system32\DRIVERS\smserial.sys [x]
U1 WS2IFSL;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-12 19:22 - 2013-09-11 22:34 - 01082587 _____ (Farbar) C:\Documents and Settings\Raducoj\Plocha\FRST.exe
2013-09-12 19:08 - 2013-09-12 19:08 - 00000226 _____ C:\WINDOWS\DtcInstall.log
2013-09-12 19:07 - 2013-09-12 19:12 - 00002166 _____ C:\WINDOWS\wmsetup.log
2013-09-12 19:06 - 2013-09-12 19:06 - 00000265 _____ C:\WINDOWS\system32\spupdwxp.log
2013-09-12 19:06 - 2013-09-12 19:06 - 00000187 _____ C:\WINDOWS\spupdsvc.log.1.log
2013-09-12 18:49 - 2013-09-12 19:08 - 00070489 _____ C:\WINDOWS\spupdsvc.log
2013-09-12 18:49 - 2013-09-12 18:49 - 00000259 _____ C:\WINDOWS\sessmgr.setup.log
2013-09-12 18:49 - 2013-09-12 18:49 - 00000200 _____ C:\WINDOWS\cmsetacl.log
2013-09-12 18:47 - 2008-04-14 08:52 - 00023040 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativmvxx.ax
2013-09-12 18:47 - 2008-04-14 08:52 - 00009728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativdaxx.ax
2013-09-12 18:47 - 2008-04-14 08:51 - 01306624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00870784 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3d1ag.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00651264 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00377984 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvaa.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00233472 ____N (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00184832 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00179200 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00136192 ____N (Microsoft Corporation) C:\WINDOWS\system32\aaclient.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00132608 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00126976 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00094208 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00081920 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieencode.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00059392 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapqec.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00057856 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3cfg.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00056320 ____N (Společnost Microsoft) C:\WINDOWS\system32\dot3msm.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00048640 ____N (Microsoft Corporation) C:\WINDOWS\system32\dhcpqec.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00040960 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3gpclnt.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapsvc.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00032768 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativtmxx.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00032285 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\hsfcisp2.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00030720 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapolqec.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00026112 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00019456 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsntfy.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00010752 ____N (Microsoft Corporation) C:\WINDOWS\system32\smtpapi.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00009728 ____N (Microsoft Corporation) C:\WINDOWS\system32\rwnh.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00009216 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3dlg.dll
2013-09-12 18:47 - 2008-04-14 08:51 - 00007168 ____N (Microsoft Corporation) C:\WINDOWS\system32\bitsprx4.dll
2013-09-12 18:47 - 2008-04-14 08:50 - 00086016 ____C (Sipro Lab Telecom Inc.) C:\WINDOWS\system32\dllcache\sl_anet.acm
2013-09-12 18:47 - 2008-04-14 08:49 - 00102912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpcdll.dll
2013-09-12 18:47 - 2008-04-14 08:48 - 00294912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msaud32.acm
2013-09-12 18:47 - 2008-04-14 08:48 - 00290816 ____C (Fraunhofer Institut Integrierte Schaltungen IIS) C:\WINDOWS\system32\dllcache\l3codeca.acm
2013-09-12 18:47 - 2008-04-14 08:00 - 00080896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6r.dll
2013-09-12 18:47 - 2008-04-14 00:15 - 00046592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irbus.sys
2013-09-12 18:47 - 2008-04-14 00:13 - 00009728 ____N (Microsoft Corporation) C:\WINDOWS\system32\comsdupd.exe
2013-09-12 18:47 - 2007-06-26 11:30 - 00572557 ____C C:\WINDOWS\system32\dllcache\rtuner.wmv
2013-09-12 18:47 - 2007-06-26 11:30 - 00457607 ____C C:\WINDOWS\system32\dllcache\mdlib.wmv
2013-09-12 18:47 - 2007-06-26 11:30 - 00381425 ____C C:\WINDOWS\system32\dllcache\copycd.wmv
2013-09-12 18:47 - 2007-06-26 11:30 - 00375519 ____C C:\WINDOWS\system32\dllcache\nuskin.wmv
2013-09-12 18:47 - 2007-06-26 11:30 - 00354468 ____C C:\WINDOWS\system32\dllcache\wmpaud1.wav
2013-09-12 18:47 - 2007-06-26 11:30 - 00343204 ____C C:\WINDOWS\system32\dllcache\wmpaud7.wav
2013-09-12 18:47 - 2007-06-26 11:30 - 00343204 ____C C:\WINDOWS\system32\dllcache\wmpaud6.wav
2013-09-12 18:47 - 2007-06-26 11:30 - 00300969 ____C C:\WINDOWS\system32\dllcache\viz.wmv
2013-09-12 18:47 - 2007-06-26 11:30 - 00172196 ____C C:\WINDOWS\system32\dllcache\wmpaud9.wav
2013-09-12 18:47 - 2007-06-26 11:30 - 00172196 ____C C:\WINDOWS\system32\dllcache\wmpaud8.wav
2013-09-12 18:47 - 2007-06-26 11:30 - 00172196 ____C C:\WINDOWS\system32\dllcache\wmpaud3.wav
2013-09-12 18:47 - 2007-06-26 11:30 - 00086196 ____C C:\WINDOWS\system32\dllcache\wmpaud5.wav
2013-09-12 18:47 - 2007-06-26 11:30 - 00086180 ____C C:\WINDOWS\system32\dllcache\wmpaud4.wav
2013-09-12 18:47 - 2007-06-26 11:30 - 00086180 ____C C:\WINDOWS\system32\dllcache\wmpaud2.wav
2013-09-12 18:47 - 2007-06-26 11:30 - 00022060 ____C C:\WINDOWS\system32\dllcache\npds.zip
2013-09-12 18:47 - 2007-06-26 11:30 - 00010457 ____C C:\WINDOWS\system32\dllcache\wmptour.hta
2013-09-12 18:47 - 2007-06-26 11:30 - 00009585 ____C C:\WINDOWS\system32\dllcache\controls.css
2013-09-12 18:47 - 2007-06-26 11:30 - 00008298 ____C C:\WINDOWS\system32\dllcache\contents.htm
2013-09-12 18:47 - 2007-06-26 11:30 - 00006878 ____C C:\WINDOWS\system32\dllcache\controls.js
2013-09-12 18:47 - 2007-06-26 11:30 - 00005971 ____C C:\WINDOWS\system32\dllcache\events.js
2013-09-12 18:47 - 2007-06-26 11:30 - 00003187 ____C C:\WINDOWS\system32\dllcache\tour.js
2013-09-12 18:47 - 2007-06-26 11:30 - 00001771 ____C C:\WINDOWS\system32\dllcache\wmptour.css
2013-09-12 18:47 - 2007-06-26 11:30 - 00001148 ____C C:\WINDOWS\system32\dllcache\snd.htm
2013-09-12 18:47 - 2007-06-26 11:30 - 00000420 ____C C:\WINDOWS\system32\dllcache\wmploc.js
2013-09-12 18:47 - 2007-06-26 11:29 - 00097117 ____C C:\WINDOWS\system32\dllcache\mplayer2.hlp
2013-09-12 18:47 - 2007-06-26 11:29 - 00001885 ____C C:\WINDOWS\system32\dllcache\mplayer2.cnt
2013-09-12 18:47 - 2007-06-26 11:26 - 00000403 ____C C:\WINDOWS\system32\dllcache\npdrmv2.zip
2013-09-12 18:47 - 2007-03-14 17:13 - 00069570 ____C C:\WINDOWS\system32\dllcache\wmplayer.adm
2013-09-12 18:47 - 2007-03-14 16:01 - 00028164 ____C C:\WINDOWS\system32\dllcache\wmplay.chm
2013-09-12 18:47 - 2007-03-14 15:36 - 00674168 ____C C:\WINDOWS\system32\dllcache\wmplayer.chm
2013-09-12 18:47 - 2007-03-14 15:36 - 00184130 ____C C:\WINDOWS\system32\dllcache\compact.wmz
2013-09-12 18:47 - 2007-03-14 15:36 - 00066170 ____C C:\WINDOWS\system32\dllcache\revert.wmz
2013-09-12 18:47 - 2007-03-14 15:36 - 00001483 ____C C:\WINDOWS\system32\dllcache\plylst6.wpl
2013-09-12 18:47 - 2007-03-14 15:36 - 00001480 ____C C:\WINDOWS\system32\dllcache\plylst5.wpl
2013-09-12 18:47 - 2007-03-14 15:36 - 00001479 ____C C:\WINDOWS\system32\dllcache\plylst3.wpl
2013-09-12 18:47 - 2007-03-14 15:36 - 00001465 ____C C:\WINDOWS\system32\dllcache\plylst12.wpl
2013-09-12 18:47 - 2007-03-14 15:36 - 00001462 ____C C:\WINDOWS\system32\dllcache\plylst4.wpl
2013-09-12 18:47 - 2007-03-14 15:36 - 00001263 ____C C:\WINDOWS\system32\dllcache\plylst1.wpl
2013-09-12 18:47 - 2007-03-14 15:36 - 00001059 ____C C:\WINDOWS\system32\dllcache\plylst2.wpl
2013-09-12 18:47 - 2007-03-14 15:36 - 00001042 ____C C:\WINDOWS\system32\dllcache\plylst7.wpl
2013-09-12 18:47 - 2007-03-14 15:36 - 00001034 ____C C:\WINDOWS\system32\dllcache\plylst8.wpl
2013-09-12 18:47 - 2007-03-14 15:36 - 00000809 ____C C:\WINDOWS\system32\dllcache\plylst11.wpl
2013-09-12 18:47 - 2007-03-14 15:36 - 00000806 ____C C:\WINDOWS\system32\dllcache\plylst10.wpl
2013-09-12 18:47 - 2007-03-14 15:36 - 00000783 ____C C:\WINDOWS\system32\dllcache\plylst13.wpl
2013-09-12 18:47 - 2007-03-14 15:36 - 00000777 ____C C:\WINDOWS\system32\dllcache\plylst9.wpl
2013-09-12 18:47 - 2007-03-14 15:36 - 00000774 ____C C:\WINDOWS\system32\dllcache\plylst14.wpl
2013-09-12 18:47 - 2007-03-14 15:36 - 00000722 ____C C:\WINDOWS\system32\dllcache\plylst15.wpl
2013-09-12 18:47 - 2007-03-14 15:35 - 00086446 ____C C:\WINDOWS\system32\dllcache\plyr_err.chm
2013-09-12 18:46 - 2013-09-12 18:46 - 00000000 ____D C:\WINDOWS\system32\cs
2013-09-12 18:46 - 2013-09-12 18:46 - 00000000 ____D C:\WINDOWS\system32\bits
2013-09-12 18:46 - 2013-09-12 18:46 - 00000000 ____D C:\WINDOWS\l2schemas
2013-09-12 18:46 - 2008-04-14 08:52 - 00176640 ____N (Microsoft Corporation) C:\WINDOWS\system32\napstat.exe
2013-09-12 18:46 - 2008-04-14 08:52 - 00073796 ____N (Smart Link) C:\WINDOWS\system32\slserv.exe
2013-09-12 18:46 - 2008-04-14 08:52 - 00069120 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2013-09-12 18:46 - 2008-04-14 08:52 - 00060416 ____N (Microsoft Corporation) C:\WINDOWS\system32\tzchange.exe
2013-09-12 18:46 - 2008-04-14 08:52 - 00053248 ____N (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2013-09-12 18:46 - 2008-04-14 08:52 - 00050688 ____N (Microsoft Corporation) C:\WINDOWS\system32\tspkg.dll
2013-09-12 18:46 - 2008-04-14 08:52 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcperf.exe
2013-09-12 18:46 - 2008-04-14 08:52 - 00032866 ____N (Smart Link) C:\WINDOWS\system32\slrundll.exe
2013-09-12 18:46 - 2008-04-14 08:52 - 00032866 ____N (Smart Link) C:\WINDOWS\slrundll.exe
2013-09-12 18:46 - 2008-04-14 08:52 - 00032768 ____N (Microsoft Corporation) C:\WINDOWS\system32\setupn.exe
2013-09-12 18:46 - 2008-04-14 08:52 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\verclsid.exe
2013-09-12 18:46 - 2008-04-14 08:51 - 04274816 ____N (NVIDIA Corporation) C:\WINDOWS\system32\nv4_disp.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 01737856 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\mtxparhd.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00397312 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcex.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00397056 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\s3gnb.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00293376 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagentrt.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00290304 ____N (Microsoft Corporation) C:\WINDOWS\system32\rhttpaa.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00286792 ____N (Smart Link) C:\WINDOWS\system32\slextspk.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00197632 ____N (Microsoft Corporation) C:\WINDOWS\system32\napmontr.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00188508 ____N (Smart Link) C:\WINDOWS\system32\slgen.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\microsoft.managementconsole.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00155136 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssha.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00150528 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagent.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00144384 ____N (Microsoft Corporation) C:\WINDOWS\system32\onex.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00106496 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcfxcommon.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00086016 ____N (Conexant) C:\WINDOWS\system32\mdmxsdk.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\qutil.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00073832 ____N (Smart Link) C:\WINDOWS\system32\slcoinst.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00062464 ____N (Microsoft Corporation) C:\WINDOWS\system32\qcliprov.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00061952 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasqec.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00061440 ____N (Microsoft Corporation) C:\WINDOWS\system32\kmsvc.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00037376 ____N (Microsoft Corporation) C:\WINDOWS\system32\l2gpstore.dll
2013-09-12 18:46 - 2008-04-14 08:51 - 00030720 ____N (Microsoft Corporation) C:\WINDOWS\system32\napipsec.dll
2013-09-12 18:46 - 2008-04-14 08:48 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdpash.dll
2013-09-12 18:46 - 2008-04-14 08:48 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdnepr.dll
2013-09-12 18:46 - 2008-04-14 08:48 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdiultn.dll
2013-09-12 18:46 - 2008-04-14 08:48 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdbhc.dll
2013-09-12 18:46 - 2008-04-14 07:58 - 00078848 ____N (Microsoft Corporation) C:\WINDOWS\system32\msshavmsg.dll
2013-09-12 18:46 - 2008-04-14 00:09 - 00717312 ____N (Microsoft Corporation) C:\WINDOWS\system32\xpsp3res.dll
2013-09-12 18:36 - 2013-09-12 18:47 - 00000000 ____D C:\WINDOWS\ServicePackFiles
2013-09-12 18:35 - 2008-04-14 08:52 - 00294912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dlimport.exe
2013-09-12 18:28 - 2013-09-12 18:47 - 00103141 _____ C:\WINDOWS\updspapi.log
2013-09-12 18:28 - 2008-04-14 08:52 - 00011325 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\vchnt5.dll
2013-09-12 18:28 - 2008-04-14 08:51 - 00025471 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv04nt5.dll
2013-09-12 18:28 - 2008-04-14 08:51 - 00021183 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv01nt5.dll
2013-09-12 18:28 - 2008-04-14 08:51 - 00017279 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv10nt5.dll
2013-09-12 18:28 - 2008-04-14 08:51 - 00015423 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\ch7xxnt5.dll
2013-09-12 18:28 - 2008-04-14 08:51 - 00014143 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv06nt5.dll
2013-09-12 18:28 - 2008-04-14 08:51 - 00011359 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv02nt5.dll
2013-09-12 18:28 - 2008-04-14 08:51 - 00004255 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv01nt5.dll
2013-09-12 18:28 - 2008-04-14 08:51 - 00003967 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv02nt5.dll
2013-09-12 18:28 - 2008-04-14 08:51 - 00003901 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\siint5.dll
2013-09-12 18:28 - 2008-04-14 08:51 - 00003775 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv11nt5.dll
2013-09-12 18:28 - 2008-04-14 08:51 - 00003711 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv09nt5.dll
2013-09-12 18:28 - 2008-04-14 08:51 - 00003647 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv07nt5.dll
2013-09-12 18:28 - 2008-04-14 08:51 - 00003615 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv05nt5.dll
2013-09-12 18:28 - 2008-04-14 08:51 - 00003135 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv08nt5.dll
2013-09-12 18:28 - 2008-04-14 07:49 - 00025600 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2013-09-12 18:28 - 2008-04-14 07:45 - 00272896 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2013-09-12 18:28 - 2008-04-14 07:40 - 00326912 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtaa.sys
2013-09-12 18:28 - 2008-04-14 00:26 - 00030592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rndismpx.sys
2013-09-12 18:28 - 2008-04-14 00:26 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023x.sys
2013-09-12 18:28 - 2008-04-14 00:21 - 00101120 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2013-09-12 18:28 - 2008-04-14 00:16 - 00121984 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2013-09-12 18:28 - 2008-04-14 00:16 - 00059136 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2013-09-12 18:28 - 2008-04-14 00:16 - 00037888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys
2013-09-12 18:28 - 2008-04-14 00:16 - 00036480 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthprint.sys
2013-09-12 18:28 - 2008-04-14 00:16 - 00018944 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthusb.sys
2013-09-12 18:28 - 2008-04-14 00:16 - 00017024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2013-09-12 18:28 - 2008-04-14 00:15 - 00019200 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidir.sys
2013-09-12 18:28 - 2008-04-14 00:13 - 00014208 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wacompen.sys
2013-09-12 18:28 - 2008-04-14 00:13 - 00012672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mutohpen.sys
2013-09-12 18:28 - 2008-04-14 00:10 - 00010240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sffp_mmc.sys
2013-09-12 18:28 - 2008-04-14 00:06 - 00046464 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gagp30kx.sys
2013-09-12 18:28 - 2008-04-14 00:06 - 00044928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agpcpq.sys
2013-09-12 18:28 - 2008-04-14 00:06 - 00044672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uagp35.sys
2013-09-12 18:28 - 2008-04-14 00:06 - 00043008 ____N (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdagp.sys
2013-09-12 18:28 - 2008-04-14 00:06 - 00042752 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\alim1541.sys
2013-09-12 18:28 - 2008-04-14 00:06 - 00042368 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agp440.sys
2013-09-12 18:28 - 2008-04-14 00:06 - 00042240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\viaagp.sys
2013-09-12 18:28 - 2008-04-14 00:06 - 00040960 ____N (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\Drivers\sisagp.sys
2013-09-12 18:28 - 2008-04-14 00:06 - 00005888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\smbali.sys
2013-09-12 18:28 - 2008-04-13 23:53 - 01309184 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlstrm.sys
2013-09-12 18:28 - 2008-04-13 23:53 - 01041536 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfdpsp2.sys
2013-09-12 18:28 - 2008-04-13 23:53 - 00685056 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfcxts2.sys
2013-09-12 18:28 - 2008-04-13 23:53 - 00404990 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slntamr.sys
2013-09-12 18:28 - 2008-04-13 23:53 - 00220032 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfbs2s2.sys
2013-09-12 18:28 - 2008-04-13 23:53 - 00180360 ____N (Smart Link) C:\WINDOWS\system32\Drivers\ntmtlfax.sys
2013-09-12 18:28 - 2008-04-13 23:53 - 00129535 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnt7554.sys
2013-09-12 18:28 - 2008-04-13 23:53 - 00126686 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlmnt5.sys
2013-09-12 18:28 - 2008-04-13 23:53 - 00095424 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnthal.sys
2013-09-12 18:28 - 2008-04-13 23:53 - 00013776 ____N (Smart Link) C:\WINDOWS\system32\Drivers\recagent.sys
2013-09-12 18:28 - 2008-04-13 23:53 - 00013240 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slwdmsup.sys
2013-09-12 18:28 - 2008-04-13 23:53 - 00011868 ____N (Conexant) C:\WINDOWS\system32\Drivers\mdmxsdk.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 01897408 ____N (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nv4_mini.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00452736 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\Drivers\mtxparhm.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00166912 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\Drivers\s3gnbm.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00104960 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinrvxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00073216 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atintuxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00063663 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1rvxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00063488 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxsxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00057856 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinbtxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00056623 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1btxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00052224 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinraxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00036463 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1tuxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00034735 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xsxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00031744 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxbxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00030671 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1raxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00029455 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xbxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00028672 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinsnxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00026367 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1snxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00025471 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\watv10nt.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00022271 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\watv06nt.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00021343 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1ttxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00014336 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinpdxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinttxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinmdxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00012047 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1pdxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00011935 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv11nt.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00011871 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv09nt.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00011807 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv07nt.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00011615 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1mdxx.sys
2013-09-12 18:28 - 2008-04-13 22:04 - 00011295 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv08nt.sys
2013-09-12 18:28 - 2007-04-02 21:36 - 00129045 ____N C:\WINDOWS\system32\Drivers\cxthsfs2.cty
2013-09-12 18:28 - 2006-12-29 20:21 - 00064352 ____N C:\WINDOWS\system32\Drivers\ativmc20.cod
2013-09-12 18:28 - 2006-12-29 20:02 - 00067866 ____N C:\WINDOWS\system32\Drivers\netwlan5.img
2013-09-12 18:25 - 2007-08-10 20:43 - 00018296 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsg.dll
2013-09-12 18:23 - 2013-09-12 19:08 - 00000778 _____ C:\WINDOWS\tabletoc.log
2013-09-12 18:23 - 2013-09-12 19:03 - 00006076 _____ C:\WINDOWS\iis6.log
2013-09-12 18:23 - 2013-09-12 19:03 - 00004700 _____ C:\WINDOWS\tsoc.log
2013-09-12 18:23 - 2013-09-12 19:03 - 00003549 _____ C:\WINDOWS\comsetup.log
2013-09-12 18:23 - 2013-09-12 19:03 - 00002675 _____ C:\WINDOWS\imsins.log
2013-09-12 18:23 - 2013-09-12 19:03 - 00001891 _____ C:\WINDOWS\ntdtcsetup.log
2013-09-12 18:23 - 2013-09-12 19:03 - 00000591 _____ C:\WINDOWS\ocmsn.log
2013-09-12 18:23 - 2013-09-12 18:54 - 00012367 _____ C:\WINDOWS\FaxSetup.log
2013-09-12 18:23 - 2013-09-12 18:54 - 00005821 _____ C:\WINDOWS\ocgen.log
2013-09-12 18:23 - 2013-09-12 18:54 - 00001840 _____ C:\WINDOWS\netfxocm.log
2013-09-12 18:23 - 2013-09-12 18:54 - 00000462 _____ C:\WINDOWS\msgsocm.log
2013-09-12 18:23 - 2013-09-12 18:53 - 00003728 _____ C:\WINDOWS\msmqinst.log
2013-09-12 18:23 - 2006-12-29 00:31 - 00019569 _____ C:\WINDOWS\002914_.tmp
2013-09-12 18:16 - 2013-09-12 19:06 - 00002621 _____ C:\WINDOWS\medctroc.Log
2013-09-12 18:16 - 2013-09-12 18:22 - 00000000 __HDC C:\WINDOWS\$NtServicePackUninstall$
2013-09-12 16:42 - 2013-09-12 16:42 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-09-12 16:42 - 2013-09-12 16:42 - 00000000 _____ C:\WINDOWS\setupact.log
2013-09-12 16:40 - 2013-09-12 19:03 - 00526614 _____ C:\WINDOWS\svcpack.log
2013-09-12 00:25 - 2013-09-12 00:23 - 00867240 _____ (Oracle Corporation) C:\WINDOWS\system32\npDeployJava1.dll
2013-09-12 00:25 - 2013-09-12 00:23 - 00789416 _____ (Oracle Corporation) C:\WINDOWS\system32\deployJava1.dll
2013-09-12 00:25 - 2013-09-12 00:23 - 00263592 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-09-12 00:25 - 2013-09-12 00:23 - 00144896 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2013-09-12 00:24 - 2013-09-12 00:23 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-09-12 00:24 - 2013-09-12 00:23 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-09-12 00:24 - 2013-09-12 00:23 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-09-12 00:17 - 2013-09-12 00:17 - 00000719 _____ C:\Documents and Settings\All Users\Plocha\VLC media player.lnk
2013-09-12 00:16 - 2013-09-12 00:16 - 00000000 ____D C:\Documents and Settings\Default User\Data aplikací\Sun
2013-09-12 00:07 - 2013-09-12 00:07 - 00000000 __SHD C:\Documents and Settings\Default User\IETldCache
2013-09-12 00:06 - 2013-09-12 18:46 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-09-11 23:34 - 2013-09-12 18:52 - 00028244 _____ C:\WINDOWS\setupapi.log
2013-09-11 23:34 - 2013-09-11 23:34 - 00000000 ____D C:\Program Files\Secunia
2013-09-11 23:22 - 2013-09-11 23:23 - 00084034 _____ C:\Documents and Settings\Raducoj\Dokumenty\cc_20130911_232224.reg
2013-09-11 22:17 - 2013-09-11 22:27 - 00000000 ____D C:\WINDOWS\SxsCaPendDel
2013-09-11 21:52 - 2013-09-11 21:53 - 00000000 ____D C:\Program Files\CCleaner
2013-09-11 21:52 - 2013-09-11 21:52 - 00000682 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2013-09-11 21:48 - 2013-09-11 21:49 - 00001734 _____ C:\Documents and Settings\All Users\Plocha\Adobe Reader XI.lnk
2013-09-11 21:45 - 2013-09-11 21:56 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-09-11 21:37 - 2013-09-11 21:37 - 00030976 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2013-09-11 21:35 - 2013-09-11 21:35 - 00004102 _____ C:\WINDOWS\system32\.crusader
2013-09-11 21:15 - 2008-04-14 08:51 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidserv.dll
2013-09-11 21:15 - 2008-04-14 07:59 - 00014592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2013-09-11 21:14 - 2013-09-11 21:35 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\HitmanPro
2013-09-04 23:17 - 2013-09-11 21:35 - 95025368 ____T C:\Documents and Settings\All Users\Data aplikací\frod8z0v0.pff
2013-09-04 23:17 - 2013-09-11 21:15 - 00000000 _____ C:\Documents and Settings\All Users\Data aplikací\frod8z0v0.ctrl
2013-09-04 20:11 - 2013-09-12 19:17 - 00000000 ____D C:\Documents and Settings\LocalService\Data aplikací\tor
2013-09-04 20:10 - 2013-09-04 20:10 - 00000000 ____D C:\Program Files\Tor

==================== One Month Modified Files and Folders =======

2013-09-12 19:22 - 2013-09-12 19:22 - 00000000 ____D C:\FRST
2013-09-12 19:22 - 2010-08-30 10:58 - 00000000 ___HD C:\Documents and Settings\Raducoj\Local Settings\Data aplikací
2013-09-12 19:22 - 2010-08-30 10:58 - 00000000 ____D C:\Documents and Settings\Raducoj\Plocha
2013-09-12 19:17 - 2013-09-04 20:11 - 00000000 ____D C:\Documents and Settings\LocalService\Data aplikací\tor
2013-09-12 19:13 - 2010-08-31 00:11 - 00000000 ____D C:\Documents and Settings\Raducoj\Data aplikací\Skype
2013-09-12 19:13 - 2010-05-06 05:31 - 00410273 _____ C:\WINDOWS\WindowsUpdate.log
2013-09-12 19:12 - 2013-09-12 19:07 - 00002166 _____ C:\WINDOWS\wmsetup.log
2013-09-12 19:12 - 2012-08-06 23:06 - 00000318 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2013-09-12 19:12 - 2010-10-14 15:32 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cb6ba42f8e9c78.job
2013-09-12 19:12 - 2010-08-30 10:58 - 00000792 _____ C:\Documents and Settings\Raducoj\Nabídka Start\Programy\Windows Media Player.lnk
2013-09-12 19:12 - 2010-08-30 10:58 - 00000738 _____ C:\Documents and Settings\Raducoj\Nabídka Start\Programy\Outlook Express.lnk
2013-09-12 19:12 - 2010-08-30 10:58 - 00000000 ___RD C:\Documents and Settings\Raducoj\Nabídka Start\Programy
2013-09-12 19:12 - 2010-05-06 05:33 - 00316640 _____ C:\WINDOWS\WMSysPr9.prx
2013-09-12 19:11 - 2010-10-14 15:32 - 00000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cb6ba42feb982e.job
2013-09-12 19:08 - 2013-09-12 19:08 - 00000226 _____ C:\WINDOWS\DtcInstall.log
2013-09-12 19:08 - 2013-09-12 18:49 - 00070489 _____ C:\WINDOWS\spupdsvc.log
2013-09-12 19:08 - 2013-09-12 18:23 - 00000778 _____ C:\WINDOWS\tabletoc.log
2013-09-12 19:08 - 2001-10-25 14:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2013-09-12 19:06 - 2013-09-12 19:06 - 00000265 _____ C:\WINDOWS\system32\spupdwxp.log
2013-09-12 19:06 - 2013-09-12 19:06 - 00000187 _____ C:\WINDOWS\spupdsvc.log.1.log
2013-09-12 19:06 - 2013-09-12 18:16 - 00002621 _____ C:\WINDOWS\medctroc.Log
2013-09-12 19:06 - 2010-05-06 06:17 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-09-12 19:06 - 2010-05-06 06:17 - 00000049 _____ C:\WINDOWS\wiaservc.log
2013-09-12 19:06 - 2010-05-06 05:38 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-09-12 19:05 - 2010-05-06 06:13 - 00288496 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-09-12 19:04 - 2010-08-30 10:58 - 00000178 ___SH C:\Documents and Settings\Raducoj\ntuser.ini
2013-09-12 19:04 - 2010-05-06 05:38 - 00032626 _____ C:\WINDOWS\SchedLgU.Txt
2013-09-12 19:03 - 2013-09-12 18:23 - 00006076 _____ C:\WINDOWS\iis6.log
2013-09-12 19:03 - 2013-09-12 18:23 - 00004700 _____ C:\WINDOWS\tsoc.log
2013-09-12 19:03 - 2013-09-12 18:23 - 00003549 _____ C:\WINDOWS\comsetup.log
2013-09-12 19:03 - 2013-09-12 18:23 - 00002675 _____ C:\WINDOWS\imsins.log
2013-09-12 19:03 - 2013-09-12 18:23 - 00001891 _____ C:\WINDOWS\ntdtcsetup.log
2013-09-12 19:03 - 2013-09-12 18:23 - 00000591 _____ C:\WINDOWS\ocmsn.log
2013-09-12 19:03 - 2013-09-12 16:40 - 00526614 _____ C:\WINDOWS\svcpack.log
2013-09-12 19:00 - 2010-05-06 06:05 - 00000000 ____D C:\WINDOWS\security
2013-09-12 18:54 - 2013-09-12 18:23 - 00012367 _____ C:\WINDOWS\FaxSetup.log
2013-09-12 18:54 - 2013-09-12 18:23 - 00005821 _____ C:\WINDOWS\ocgen.log
2013-09-12 18:54 - 2013-09-12 18:23 - 00001840 _____ C:\WINDOWS\netfxocm.log
2013-09-12 18:54 - 2013-09-12 18:23 - 00000462 _____ C:\WINDOWS\msgsocm.log
2013-09-12 18:53 - 2013-09-12 18:23 - 00003728 _____ C:\WINDOWS\msmqinst.log
2013-09-12 18:52 - 2013-09-11 23:34 - 00028244 _____ C:\WINDOWS\setupapi.log
2013-09-12 18:49 - 2013-09-12 18:49 - 00000259 _____ C:\WINDOWS\sessmgr.setup.log
2013-09-12 18:49 - 2013-09-12 18:49 - 00000200 _____ C:\WINDOWS\cmsetacl.log
2013-09-12 18:49 - 2010-05-06 06:14 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start
2013-09-12 18:49 - 2010-05-06 05:33 - 00001563 _____ C:\Documents and Settings\All Users\Nabídka Start\Přístup a výchozí nastavení programů.lnk
2013-09-12 18:47 - 2013-09-12 18:36 - 00000000 ____D C:\WINDOWS\ServicePackFiles
2013-09-12 18:47 - 2013-09-12 18:28 - 00103141 _____ C:\WINDOWS\updspapi.log
2013-09-12 18:47 - 2010-05-06 06:05 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2013-09-12 18:47 - 2010-05-06 06:05 - 00000000 ____D C:\WINDOWS\ime
2013-09-12 18:47 - 2010-05-06 06:05 - 00000000 ____D C:\WINDOWS\Help
2013-09-12 18:47 - 2010-05-06 05:28 - 00000000 ___RD C:\Documents and Settings\All Users\Dokumenty\Hudba
2013-09-12 18:47 - 2010-05-06 05:28 - 00000000 ____D C:\Program Files\Messenger
2013-09-12 18:46 - 2013-09-12 18:46 - 00000000 ____D C:\WINDOWS\system32\cs
2013-09-12 18:46 - 2013-09-12 18:46 - 00000000 ____D C:\WINDOWS\system32\bits
2013-09-12 18:46 - 2013-09-12 18:46 - 00000000 ____D C:\WINDOWS\l2schemas
2013-09-12 18:46 - 2013-09-12 00:06 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-09-12 18:46 - 2010-05-06 06:05 - 00000000 ____D C:\WINDOWS\system32\usmt
2013-09-12 18:46 - 2010-05-06 06:05 - 00000000 ____D C:\WINDOWS\PeerNet
2013-09-12 18:46 - 2010-05-06 05:30 - 00000000 ____D C:\Program Files\Movie Maker
2013-09-12 18:35 - 2010-05-06 06:05 - 00000000 ____D C:\WINDOWS\system32\npp
2013-09-12 18:35 - 2010-05-06 06:05 - 00000000 ____D C:\WINDOWS\msagent
2013-09-12 18:35 - 2010-05-06 05:30 - 00000000 ____D C:\WINDOWS\system32\Restore
2013-09-12 18:35 - 2010-05-06 05:30 - 00000000 ____D C:\WINDOWS\srchasst
2013-09-12 18:35 - 2010-05-06 05:30 - 00000000 ____D C:\Program Files\NetMeeting
2013-09-12 18:35 - 2010-05-06 05:29 - 00000000 ____D C:\Program Files\Outlook Express
2013-09-12 18:35 - 2010-05-06 05:29 - 00000000 ____D C:\Program Files\Common Files\System
2013-09-12 18:35 - 2010-05-06 05:27 - 00000000 ____D C:\WINDOWS\system32\Com
2013-09-12 18:35 - 2010-05-06 05:27 - 00000000 ____D C:\Program Files\Windows NT
2013-09-12 18:33 - 2010-05-06 06:05 - 00000000 ____D C:\WINDOWS\system
2013-09-12 18:27 - 2004-08-03 22:59 - 00250576 __RSH C:\ntldr
2013-09-12 18:23 - 2010-05-06 22:34 - 00000000 ____D C:\WINDOWS\system32\ReinstallBackups
2013-09-12 18:22 - 2013-09-12 18:16 - 00000000 __HDC C:\WINDOWS\$NtServicePackUninstall$
2013-09-12 16:42 - 2013-09-12 16:42 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-09-12 16:42 - 2013-09-12 16:42 - 00000000 _____ C:\WINDOWS\setupact.log
2013-09-12 16:12 - 2010-05-06 05:33 - 00000002 _____ C:\WINDOWS\system32\CONFIG.NT
2013-09-12 16:09 - 2010-05-07 17:18 - 00000000 ___RD C:\Program Files\Skype
2013-09-12 16:09 - 2010-05-07 17:18 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Skype
2013-09-12 08:09 - 2012-06-12 23:48 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-09-12 08:09 - 2011-06-13 23:01 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-09-12 06:49 - 2013-08-12 20:31 - 00000000 ____D C:\Documents and Settings\Raducoj\Data aplikací\SkypEmoticons
2013-09-12 06:46 - 2013-08-12 20:30 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\savenasHHarie
2013-09-12 00:23 - 2013-09-12 00:25 - 00867240 _____ (Oracle Corporation) C:\WINDOWS\system32\npDeployJava1.dll
2013-09-12 00:23 - 2013-09-12 00:25 - 00789416 _____ (Oracle Corporation) C:\WINDOWS\system32\deployJava1.dll
2013-09-12 00:23 - 2013-09-12 00:25 - 00263592 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-09-12 00:23 - 2013-09-12 00:25 - 00144896 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2013-09-12 00:23 - 2013-09-12 00:24 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-09-12 00:23 - 2013-09-12 00:24 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-09-12 00:23 - 2013-09-12 00:24 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-09-12 00:22 - 2010-05-16 18:22 - 00000000 ____D C:\Program Files\Java
2013-09-12 00:17 - 2013-09-12 00:17 - 00000719 _____ C:\Documents and Settings\All Users\Plocha\VLC media player.lnk
2013-09-12 00:17 - 2010-05-06 06:14 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2013-09-12 00:17 - 2010-05-06 06:14 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2013-09-12 00:16 - 2013-09-12 00:16 - 00000000 ____D C:\Documents and Settings\Default User\Data aplikací\Sun
2013-09-12 00:16 - 2010-05-06 06:13 - 00000000 __RHD C:\Documents and Settings\Default User\Data aplikací
2013-09-12 00:10 - 2012-03-09 19:36 - 00001813 _____ C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2013-09-12 00:07 - 2013-09-12 00:07 - 00000000 __SHD C:\Documents and Settings\Default User\IETldCache
2013-09-11 23:34 - 2013-09-11 23:34 - 00000000 ____D C:\Program Files\Secunia
2013-09-11 23:28 - 2010-05-06 06:12 - 00000211 ___SH C:\boot.ini
2013-09-11 23:28 - 2001-10-25 14:00 - 00000552 _____ C:\WINDOWS\win.ini
2013-09-11 23:28 - 2001-10-25 14:00 - 00000227 _____ C:\WINDOWS\system.ini
2013-09-11 23:23 - 2013-09-11 23:22 - 00084034 _____ C:\Documents and Settings\Raducoj\Dokumenty\cc_20130911_232224.reg
2013-09-11 23:22 - 2010-08-30 10:58 - 00000000 ___RD C:\Documents and Settings\Raducoj\Dokumenty
2013-09-11 22:41 - 2011-03-24 22:07 - 00000000 ____D C:\Documents and Settings\Raducoj\Data aplikací\uTorrent
2013-09-11 22:38 - 2012-06-18 09:36 - 00000000 ____D C:\WINDOWS\Minidump
2013-09-11 22:37 - 2010-08-30 10:58 - 00000000 ____D C:\Documents and Settings\Raducoj
2013-09-11 22:34 - 2013-09-12 19:22 - 01082587 _____ (Farbar) C:\Documents and Settings\Raducoj\Plocha\FRST.exe
2013-09-11 22:31 - 2013-01-23 21:24 - 00000000 ____D C:\Documents and Settings\Raducoj\Data aplikací\Seznam.cz
2013-09-11 22:27 - 2013-09-11 22:17 - 00000000 ____D C:\WINDOWS\SxsCaPendDel
2013-09-11 22:24 - 2010-05-06 08:31 - 00000000 ____D C:\Program Files\ASUS
2013-09-11 22:19 - 2013-07-08 19:46 - 00000000 ____D C:\Program Files\Zrychleni Pocitace
2013-09-11 22:17 - 2010-05-06 08:31 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-09-11 22:17 - 2010-05-06 06:13 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2013-09-11 22:08 - 2012-06-27 09:00 - 00000000 ____D C:\Program Files\pdfsam
2013-09-11 22:01 - 2010-05-08 00:22 - 00000000 ____D C:\Program Files\Common Files\Ahead
2013-09-11 22:01 - 2010-05-08 00:22 - 00000000 ____D C:\Program Files\Ahead
2013-09-11 21:56 - 2013-09-11 21:45 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-09-11 21:56 - 2010-08-30 10:58 - 00000000 __RHD C:\Documents and Settings\Raducoj\Data aplikací
2013-09-11 21:53 - 2013-09-11 21:52 - 00000000 ____D C:\Program Files\CCleaner
2013-09-11 21:52 - 2013-09-11 21:52 - 00000682 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2013-09-11 21:49 - 2013-09-11 21:48 - 00001734 _____ C:\Documents and Settings\All Users\Plocha\Adobe Reader XI.lnk
2013-09-11 21:45 - 2010-05-06 06:51 - 00000000 ____D C:\Program Files\Adobe
2013-09-11 21:45 - 2010-05-06 06:51 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-09-11 21:37 - 2013-09-11 21:37 - 00030976 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2013-09-11 21:35 - 2013-09-11 21:35 - 00004102 _____ C:\WINDOWS\system32\.crusader
2013-09-11 21:35 - 2013-09-11 21:14 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\HitmanPro
2013-09-11 21:35 - 2013-09-04 23:17 - 95025368 ____T C:\Documents and Settings\All Users\Data aplikací\frod8z0v0.pff
2013-09-11 21:35 - 2013-02-07 19:37 - 00000000 ____D C:\Program Files\Yontoo
2013-09-11 21:34 - 2010-08-30 10:58 - 00000000 ___RD C:\Documents and Settings\Raducoj\Nabídka Start\Programy\Po spuštění
2013-09-11 21:16 - 2012-11-01 15:40 - 00000664 _____ C:\WINDOWS\system32\d3d9caps.dat
2013-09-11 21:15 - 2013-09-04 23:17 - 00000000 _____ C:\Documents and Settings\All Users\Data aplikací\frod8z0v0.ctrl
2013-09-04 23:28 - 2013-02-04 21:43 - 00002283 _____ C:\Documents and Settings\All Users\Plocha\Skype.lnk
2013-09-04 23:21 - 2010-05-11 02:40 - 00002218 _____ C:\WINDOWS\WDICT32.INI
2013-09-04 21:10 - 2010-08-30 10:58 - 00000000 ___HD C:\Documents and Settings\Raducoj\Okolní síť
2013-09-04 20:11 - 2010-05-06 05:38 - 00000000 ____D C:\Documents and Settings\LocalService\Data aplikací
2013-09-04 20:10 - 2013-09-04 20:10 - 00000000 ____D C:\Program Files\Tor
2013-08-30 09:48 - 2013-04-22 23:22 - 00177864 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2013-08-30 09:48 - 2013-04-22 23:22 - 00066336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2013-08-30 09:48 - 2013-04-22 23:22 - 00049376 _____ C:\WINDOWS\system32\Drivers\aswRvrt.sys
2013-08-30 09:48 - 2011-05-12 01:16 - 00770344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2013-08-30 09:48 - 2010-05-10 02:28 - 00369584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2013-08-30 09:48 - 2010-05-10 02:28 - 00056080 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2013-08-30 09:48 - 2010-05-10 02:28 - 00049760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2013-08-30 09:48 - 2010-05-10 02:28 - 00029816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswFsBlk.sys
2013-08-30 09:47 - 2010-06-29 13:08 - 00041664 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2013-08-30 09:47 - 2010-05-10 02:28 - 00229648 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2013-08-16 14:58 - 2010-09-14 15:15 - 00000000 ____D C:\Documents and Settings\Raducoj\kbpki

Files to move or delete:
====================
C:\DOCUME~1\Raducoj\LOCALS~1\Temp\MSN1BB.exe
C:\DOCUME~1\Raducoj\LOCALS~1\Temp\SkypeSetup.exe
C:\DOCUME~1\Raducoj\LOCALS~1\Temp\tbuTo2.dll
C:\DOCUME~1\Raducoj\LOCALS~1\Temp\tbuTor.dll
C:\DOCUME~1\Raducoj\LOCALS~1\Temp\uninst1.exe
C:\Documents and Settings\Radučoj\Local Settings\Temp\SkypeSetup.exe

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2004-08-17 15:49] - [2008-04-14 08:52] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1

C:\Windows\System32\winlogon.exe
[2004-08-17 15:49] - [2008-04-14 08:52] - 0507904 ____A (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea

C:\Windows\System32\svchost.exe
[2004-08-17 15:49] - [2008-04-14 08:52] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93

C:\Windows\System32\services.exe
[2004-08-17 15:49] - [2008-04-14 08:52] - 0108544 ____A (Microsoft Corporation) f0d2ae69035092bf22dad6b50fab85c2

C:\Windows\System32\User32.dll
[2004-08-17 15:49] - [2008-04-14 08:52] - 0578560 ____A (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53

C:\Windows\System32\userinit.exe
[2004-08-17 15:49] - [2008-04-14 08:52] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239

C:\Windows\System32\Drivers\volsnap.sys
[2004-08-17 15:44] - [2008-04-14 07:42] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1


==================== Alternate Data Streams (whitelisted) ====

AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:66BB1E73

==================== Loaded Modules (whitelisted) ============

2013-09-12 16:07 - 2013-09-12 12:47 - 02099200 _____ () C:\Program Files\Alwil Software\Avast5\defs\13091200\algo.dll
2012-06-18 16:12 - 2008-04-02 08:29 - 00319488 _____ (CANON INC.) C:\WINDOWS\system32\CnAS0MNK.DLL
2012-05-03 14:11 - 2012-03-15 08:56 - 00023392 _____ (Softland) C:\WINDOWS\system32\dopdfmn7.dll
2010-05-19 03:03 - 2007-11-28 15:13 - 00084574 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_SL2439.DLL
2011-10-23 18:42 - 2010-11-17 01:48 - 00267112 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\hpinksts8711LM.dll
2004-11-26 09:45 - 2004-11-26 09:45 - 00036864 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpz3l043.dll
2004-11-26 09:45 - 2004-11-26 09:45 - 00062976 _____ (Hewlett-Packard Corporation) C:\WINDOWS\System32\spool\PRTPROCS\W32X86\hpzpp043.dll
2010-05-06 20:19 - 2008-07-06 14:06 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\System32\spool\PRTPROCS\W32X86\filterpipelineprintproc.dll
2010-11-18 04:18 - 2006-10-26 20:56 - 00033104 _____ (Microsoft Corporation) C:\WINDOWS\System32\spool\PRTPROCS\W32X86\msonpppr.dll
2010-05-06 20:19 - 2008-07-06 14:06 - 00744960 _____ (Microsoft Corporation) C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\unidrvui.dll
2010-05-06 20:19 - 2008-04-14 08:52 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\UNIDRV.DLL
2010-05-06 05:27 - 2008-04-14 07:49 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbem\WMIApRes.dll
2010-05-06 05:27 - 2008-04-14 08:52 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbem\wmiprov.dll
2001-10-25 14:00 - 2001-10-25 14:00 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mui\0005\HHCTRLui.dll
2011-02-14 21:37 - 2005-05-11 22:03 - 00082012 _____ (Synaptics, Inc.) C:\WINDOWS\system32\SynCOM.dll
2011-02-14 21:37 - 2005-05-11 22:03 - 00090201 _____ (Synaptics, Inc.) C:\WINDOWS\system32\SynTPAPI.dll
2004-08-17 15:49 - 2008-04-14 08:51 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2013-06-21 09:53 - 2013-06-21 09:53 - 00088680 ____R (Skype Technologies) C:\Program Files\Skype\Updater\Updater.dll
2013-09-12 00:08 - 2013-09-02 22:35 - 04053456 _____ () C:\Program Files\Google\Chrome\Application\29.0.1547.66\pdf.dll
2013-09-12 00:08 - 2013-09-02 22:35 - 00410576 _____ () C:\Program Files\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll
2013-09-12 00:08 - 2013-09-02 22:35 - 01604560 _____ () C:\Program Files\Google\Chrome\Application\29.0.1547.66\ffmpegsumo.dll

==================== Scheduled Tasks (whitelisted) ===========

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cb6ba42f8e9c78.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cb6ba42feb982e.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Supplementary Scan (All) ================

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher
"C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HControl
C:\WINDOWS\ATK0100\HControl.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl
"C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Raduoj^Nabdka Start^Programy^Po sputn^OpenOffice.org 3.0.lnk
C:\PROGRA~1\OPENOF~1.ORG\program\QUICKS~1.EXE


HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services
SkypeUpdate REG_DWORD 0x2
Pml Driver HPZ12 REG_DWORD 0x3
ose REG_DWORD 0x3
odserv REG_DWORD 0x3
Microsoft Office Groove Audit Service REG_DWORD 0x3
JavaQuickStarterService REG_DWORD 0x2
idsvc REG_DWORD 0x3
gupdatem REG_DWORD 0x3
gupdate REG_DWORD 0x2
Ati HotKey Poller REG_DWORD 0x2

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\hitmanpro37
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\hitmanpro37.sys
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\HitmanPro37Crusader
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\HitmanPro37CrusaderBoot
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\hitmanpro37
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\hitmanpro37.sys
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\HitmanPro37Crusader
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\HitmanPro37CrusaderBoot

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled"=dword:00000001
"AntiVirusDisableNotify"=dword:00000000
"FirewallDisableNotify"=dword:00000000
"UpdatesDisableNotify"=dword:00000001
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000000


[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\ICQ7.6\\ICQ.exe"="C:\\Program Files\\ICQ7.6\\ICQ.exe:*:Enabled:ICQ7.6"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Opera\\opera.exe"="C:\\Program Files\\Opera\\opera.exe:*:Enabled:Opera Internet Browser"
"C:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"="C:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\\Documents and Settings\\Raduoj\\Dokumenty\\Hry\\quake 3\\quake3.exe"="C:\\Documents and Settings\\Raduoj\\Dokumenty\\Hry\\quake 3\\quake3.exe:*:Enabled:quake3"
"D:\\Hry\\quake 3\\quake3.exe"="D:\\Hry\\quake 3\\quake3.exe:*:Enabled:quake3"
"C:\\Documents and Settings\\Raducoj\\Local Settings\\Data aplikac\\Opera\\Opera\\temporary_downloads\\P1753577.JPG-www.facebook.exe"="C:\\WINDOWS\\nvsvc32.exe:*:Enabled:NVIDIA driver monitor"
"C:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"="C:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe:*:Enabled:Google Earth"
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\\Program Files\\uTorrent\\uTorrent.exe"="C:\\Program Files\\uTorrent\\uTorrent.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\Raducoj\\Local Settings\\Temp\\CProgram FilesOpera\\OperaUpgrader.exe"="C:\\Documents and Settings\\Raducoj\\Local Settings\\Temp\\CProgram FilesOpera\\OperaUpgrader.exe:*:Enabled:Opera Internet Browser"
"C:\\Program Files\\ICQ7.6\\ICQ.exe"="C:\\Program Files\\ICQ7.6\\ICQ.exe:*:Enabled:ICQ7.6"
"C:\\Program Files\\HP\\HP Deskjet 2050 J510 series\\Bin\\USBSetup.exe"="C:\\Program Files\\HP\\HP Deskjet 2050 J510 series\\Bin\\USBSetup.exe:LocalSubNet:Enabled:Instalace zazen HP"
"C:\\Program Files\\Opera\\pluginwrapper\\opera_plugin_wrapper.exe"="C:\\Program Files\\Opera\\pluginwrapper\\opera_plugin_wrapper.exe:*:Enabled:Opera Internet Browser - Plugin wrapper"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"32220:TCP"="32220:TCP:*:Enabled:Tornado-TCP-IN-32220"
"32220:UDP"="32220:UDP:*:Enabled:Tornado-UDP-IN-32220"
"32223:TCP"="32223:TCP:*:Enabled:Tornado-TCP-IN-32223"
"32223:UDP"="32223:UDP:*:Enabled:Tornado-UDP-IN-32223"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"="midimap.dll"
"msacm.imaadpcm"="imaadp32.acm"
"msacm.msadpcm"="msadp32.acm"
"msacm.msg711"="msg711.acm"
"msacm.msgsm610"="msgsm32.acm"
"msacm.trspch"="tssoft32.acm"
"vidc.cvid"="iccvid.dll"
"VIDC.I420"="msh263.drv"
"vidc.iv31"="ir32_32.dll"
"vidc.iv32"="ir32_32.dll"
"vidc.iv41"="ir41_32.ax"
"VIDC.IYUV"="iyuv_32.dll"
"vidc.mrle"="msrle32.dll"
"vidc.msvc"="msvidc32.dll"
"VIDC.UYVY"="msyuv.dll"
"VIDC.YUY2"="msyuv.dll"
"VIDC.YVU9"="tsbyuv.dll"
"VIDC.YVYU"="msyuv.dll"
"wavemapper"="msacm32.drv"
"msacm.msg723"="msg723.acm"
"vidc.M263"="msh263.drv"
"vidc.M261"="msh261.drv"
"msacm.msaudio1"="msaud32.acm"
"msacm.sl_anet"="sl_anet.acm"
"msacm.iac2"="C:\\WINDOWS\\system32\\iac25_32.ax"
"vidc.iv50"="ir50_32.dll"
"msacm.l3acm"="C:\\WINDOWS\\system32\\l3codeca.acm"
"wave"="wdmaud.drv"
"midi"="wdmaud.drv"
"mixer"="wdmaud.drv"
"aux"="wdmaud.drv"
"MSVideo8"="VfWWDM32.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\Terminal Server]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\Terminal Server\RDP]
"wave"="rdpsnd.dll"
"mixer"="rdpsnd.dll"
"MaxBandwidth"=dword:000056b9
"wavemapper"="msacm32.drv"
"EnableMP3Codec"=dword:00000001
"midimapper"="midimap.dll"


==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:19.53 GB) (Free:2.78 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:73.62 GB) (Free:20.48 GB) NTFS
Drive f: (HITMANPRO) (Removable) (Total:3.75 GB) (Free:3.73 GB) FAT32

Available physical RAM: 299.62 MB
Total physical RAM: 895.36 MB
Percentage of memory in use: 66%

==================== MBR and Partition Table =================

Disk: 0 (Size: 93 GB) (Disk ID: 2BE92BE8)
Partition 1: (Active) - (Size=20 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=74 GB) - (Type=OF Extended)
Disk: 1 (Size: 4 GB) (Disk ID: C16EE10B)
Partition 1: (Active) - (Size=4 GB) - (Type=0B)


==================== End Of Log ==============================

[Rudy]

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM\...\Run: [] - [x]
MountPoints2: {16add437-0be9-11e2-8b0a-0018f3738477} - F:\jetflash220.exe
MountPoints2: {1d093b0c-81a1-11e1-9c89-0018f3738477} - F:\urDrive.exe
MountPoints2: {3482ff0e-332a-11e1-9bb8-0018f3738477} - "F:\WD SmartWare.exe" autoplay=true
MountPoints2: {69a21d80-0231-11e0-992b-0018f3738477} - F:\urDrive.exe
MountPoints2: {72738418-ea56-11e0-9b11-0018f3738477} - "F:\WD SmartWare.exe" autoplay=true
MountPoints2: {72738419-ea56-11e0-9b11-0018f3738477} - G:\setup.exe
MountPoints2: {f580e380-57fe-11e1-9c1b-0018f3738477} - F:\urDrive.exe
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-search.com/?affID=1197 ... 18f3739fa7
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://start.qip.ru/
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = http://search.icq.com/search/results.ph ... &ch_id=osd
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www.delta-search.com/?affID=1197 ... 18f3739fa7
URLSearchHook: (No Name) - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - No File
SearchScopes: HKLM - DefaultScope {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL = http://search.qip.ru/?query={searchTerms}
SearchScopes: HKLM - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL = http://search.qip.ru/?query={searchTerms}
SearchScopes: HKCU - DefaultScope {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL = http://search.qip.ru/?query={searchTerms}
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.delta-search.com/?q={searchT ... 18f3739fa7
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = http://search.icq.com/search/results.ph ... &ch_id=osd
SearchScopes: HKCU - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL = http://search.qip.ru/?query={searchTerms}
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT3220468
C:\Program Files\Skype\Toolbars
C:\Program Files\Yontoo
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR HKLM\...\Chrome\Extension: [niapdbllcanepiiimjjndipklodoedlc] - C:\Program Files\Yontoo\YontooLayers.crx
C:\WINDOWS\002914_.tmp
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Mates86]

fix log níže:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 09-09-2013 02
Ran by Raducoj at 2013-09-12 21:11:01 Run:1
Running from C:\Documents and Settings\Raducoj\Plocha
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [] - [x]
MountPoints2: {16add437-0be9-11e2-8b0a-0018f3738477} - F:\jetflash220.exe
MountPoints2: {1d093b0c-81a1-11e1-9c89-0018f3738477} - F:\urDrive.exe
MountPoints2: {3482ff0e-332a-11e1-9bb8-0018f3738477} - "F:\WD SmartWare.exe" autoplay=true
MountPoints2: {69a21d80-0231-11e0-992b-0018f3738477} - F:\urDrive.exe
MountPoints2: {72738418-ea56-11e0-9b11-0018f3738477} - "F:\WD SmartWare.exe" autoplay=true
MountPoints2: {72738419-ea56-11e0-9b11-0018f3738477} - G:\setup.exe
MountPoints2: {f580e380-57fe-11e1-9c1b-0018f3738477} - F:\urDrive.exe
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-search.com/?affID=1197 ... 18f3739fa7
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://start.qip.ru/
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = http://search.icq.com/search/results.ph ... &ch_id=osd
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www.delta-search.com/?affID=1197 ... 18f3739fa7
URLSearchHook: (No Name) - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - No File
SearchScopes: HKLM - DefaultScope {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL = http://search.qip.ru/?query={searchTerms}
SearchScopes: HKLM - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL = http://search.qip.ru/?query={searchTerms}
SearchScopes: HKCU - DefaultScope {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL = http://search.qip.ru/?query={searchTerms}
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.delta-search.com/?q={searchT ... 18f3739fa7
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = http://search.icq.com/search/results.ph ... &ch_id=osd
SearchScopes: HKCU - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL = http://search.qip.ru/?query={searchTerms}
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT3220468
C:\Program Files\Skype\Toolbars
C:\Program Files\Yontoo
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR HKLM\...\Chrome\Extension: [niapdbllcanepiiimjjndipklodoedlc] - C:\Program Files\Yontoo\YontooLayers.crx
C:\WINDOWS\002914_.tmp
End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{16add437-0be9-11e2-8b0a-0018f3738477} => Key deleted successfully.
HKCR\CLSID\{16add437-0be9-11e2-8b0a-0018f3738477} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1d093b0c-81a1-11e1-9c89-0018f3738477} => Key deleted successfully.
HKCR\CLSID\{1d093b0c-81a1-11e1-9c89-0018f3738477} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3482ff0e-332a-11e1-9bb8-0018f3738477} => Key deleted successfully.
HKCR\CLSID\{3482ff0e-332a-11e1-9bb8-0018f3738477} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{69a21d80-0231-11e0-992b-0018f3738477} => Key deleted successfully.
HKCR\CLSID\{69a21d80-0231-11e0-992b-0018f3738477} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{72738418-ea56-11e0-9b11-0018f3738477} => Key deleted successfully.
HKCR\CLSID\{72738418-ea56-11e0-9b11-0018f3738477} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{72738419-ea56-11e0-9b11-0018f3738477} => Key deleted successfully.
HKCR\CLSID\{72738419-ea56-11e0-9b11-0018f3738477} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f580e380-57fe-11e1-9c1b-0018f3738477} => Key deleted successfully.
HKCR\CLSID\{f580e380-57fe-11e1-9c1b-0018f3738477} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\ICQ Search => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\bProtector Start Page => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} => Value deleted successfully.
HKCR\CLSID\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\bProtectorDefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{6552C7DD-90A4-4387-B795-F8F96747DE19} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => Key not found.
C:\Program Files\Skype\Toolbars => Moved successfully.
C:\Program Files\Yontoo => Moved successfully.
HKLM\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl => Key deleted successfully.
"C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx" => File/Directory not found.
HKLM\SOFTWARE\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc => Key deleted successfully.
"C:\Program Files\Yontoo\YontooLayers.crx" => File/Directory not found.
C:\WINDOWS\002914_.tmp => Moved successfully.

==== End of Fixlog ====

[Rudy]

Smazáno. PC by již měl být čistý.

[Mates86]

Díky moc za podporu.

[Rudy]

Rádo se stalo!