VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o kontrolu mého logu

https://forum.viry.cz:443/viewtopic.php?t=138947

Stránka 1 z 2

Prosím o kontrolu mého logu

Napsal: 04 črc 2014 09:32
od Camron
Dobrý den Vám přeji.
Jestli si na mě najdete chvíli času tak budu rád kdyby jsme mi mrkly na můj log, myslím si že tam určitě něco bude.
Děkuji Vám.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Profik at 2014-07-04 10:24:12
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 21 GB (28%) free of 76 GB
Total RAM: 1014 MB (21% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:29:30, on 4.7.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\IObit\Advanced SystemCare 7\RealTimeProtector.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Documents and Settings\Profik\Dokumenty\Downloads\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\Profik.exe
C:\Program Files\Google\Chrome\Application\chrome.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT1750559
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Documents and Settings\Profik\Data aplikací\Slick Savings\Coupons.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Ads Removal - {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} - C:\Program Files\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll
O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~1\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 7 (AdvancedSystemCareService7) - IObit - C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 6130 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\ASC7_PerformanceMonitor.job - C:\Program Files\IObit\Advanced SystemCare 7\Monitor.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\WINDOWS\tasks\Driver Booster Scan.job - C:\Program Files\IObit\Driver Booster\Scheduler.exe /scan
C:\WINDOWS\tasks\Driver Booster Update.job - C:\Program Files\IObit\Driver Booster\AutoUpdate.exe /auto
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\SmartDefrag3_Update.job - C:\Program Files\IObit\Smart Defrag 3\AutoUpdate.exe /autorun
C:\WINDOWS\tasks\WGASetup.job - C:\WINDOWS\system32\KB905474\wgasetup.exe /autoauto

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Profik\Data aplikací\Mozilla\Firefox\Profiles\l0ckzaxo.default

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.55.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@t.garena.com/garenatalk]
"Description"=Garena Talk Plugin
"Path"=C:\Program Files\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeExManDetect]
"Description"=
"Path"=C:\Program Files\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll


C:\Documents and Settings\Profik\Data aplikací\Mozilla\Firefox\Profiles\l0ckzaxo.default\extensions\
adremoveext@adremoveext.net
ascsurfingprotection@iobit.com

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}]
Slick Savings - C:\Documents [2014-05-23 64]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-03-17 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F}]
Ads Removal - C:\Program Files\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll [2014-06-11 464720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}]
Advanced SystemCare Browser Protection - C:\PROGRA~1\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL [2014-02-20 669504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-03-17 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2004-10-14 1404928]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-11-08 3568312]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2013-12-13 131072]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2013-12-13 163840]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2013-12-13 135168]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoStartNPSAgent]
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GarenaPlus]
C:\Program Files\Garena Plus\GarenaMessenger.exe -autolaunch []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
C:\WINDOWS\system32\dumprep 0 -k []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SearchSettings]
C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Slick Savings]
C:\Documents [2014-05-23 64]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SlimDrivers]
C:\Program Files\SlimDrivers\SlimDrivers.exe -boot []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Profik^Nabídka Start^Programy^Po spuštění^abb278f5f94f5be17c28e4761048b650.exe]
C:\Documents [2014-05-23 64]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2013-12-13 204800]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:rundll32"
"C:\Program Files\Warcraft III\Warcraft III.exe"="C:\Program Files\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\Program Files\Java\jre7\bin\javaw.exe"="C:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe"="C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe:*:Enabled:Counter-Strike"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\EA Sports\NHL 09\nhl2009.exe"="C:\Program Files\EA Sports\NHL 09\nhl2009.exe:*:Enabled:nhl2009"
"C:\Program Files\Ventrilo\ventrilo_srv.exe"="C:\Program Files\Ventrilo\ventrilo_srv.exe:*:Enabled:ventrilo_srv"
"C:\Documents and Settings\Profik\Data aplikací\uTorrent\utorrent.exe"="C:\Documents and Settings\Profik\Data aplikací\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\GameforgeLive\gfl_client.exe"="C:\Program Files\GameforgeLive\gfl_client.exe:*:Enabled:Gameforge Live"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Ekura\game.exe"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Ekura\game.exe:*:Enabled:game"
"C:\Program Files\QuadCoreM2\pack\core.bin"="C:\Program Files\QuadCoreM2\pack\core.bin:*:Enabled:core"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Firenze2 Version 1.2\Firenze2.exe"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Firenze2 Version 1.2\Firenze2.exe:*:Enabled:Metin2Client"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Attomey ---\metin2client.bin"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Attomey ---\metin2client.bin:*:Enabled:metin2client"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\NewGeneration\Microsoft.WindowsLauncher.dll"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\NewGeneration\Microsoft.WindowsLauncher.dll:*:Enabled:Metin2Client"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"MSACM.MSNAUDIO"=msnaudio.acm
"msacm.vorbis"=vorbis.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.VP60"=vp6vfw.dll
"vidc.VP61"=vp6vfw.dll
"vidc.VP62"=vp6vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.tscc"=C:\WINDOWS\system32\tsccvid.dll
"vidc.tsc2"=C:\WINDOWS\system32\tsc2_codec32.dll
"VIDC.FPS1"=frapsvid.dll

======List of files/folders created in the last 1 month======

2014-07-04 10:24:13 ----D---- C:\Program Files\trend micro
2014-07-04 10:24:12 ----D---- C:\rsit
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\yeqc.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xitroqxj.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xhepiahgu.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xdu.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xabxrnwognq.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\uaqqwmjt.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\tgp.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\okbzdweogsf.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\netcd.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\mxdvmytw.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\kaddzumq.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\jxqxva.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\ifvbafbi.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\hgdxppghmnp.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\gbx.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\dmtlsnues.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\cntaml.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\cbgvboorrjj.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\aclcvmx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zyadeizbstq.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zmpm.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zlvlgaoro.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zbu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yruogei.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yqwnxmuqkr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ynbpico.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yft.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yfddtyco.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xrjmwls.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xratz.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xnrwoffi.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xkiazoygsu.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xhliavnncf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xhi.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xei.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xbwudob.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wztapis.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wvpmojcpagc.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wuienx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wmaeoulj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wjd.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wgfzxqxc.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vwx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vwvpxtf.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vtccpjjxhbl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vpymgh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vky.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vhgdwwy.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vexcv.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\uuknvmo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\upqsk.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\uilhoi.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ugh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tubh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tmksiwyo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tjerrruiu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tgysztaa.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\szanch.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\swrosmstc.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\svh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\surl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\sthnpbr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\skjqlknoa.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rvitifkhda.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ruwy.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rtsquze.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rnaxcorvnpm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rmkgnn.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rfbddh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rckntimj.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rbou.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qzegqoobxiy.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qqqewpfdl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qpghwlpi.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qnretzig.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qheefqe.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qbdvroefxtf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pvsbacopgo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\puxozpwjj.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ptfcgaof.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\psxulyb.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\psuezqksw.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pqjjgvrcrr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pplmagu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pefaimbebk.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\oxxpcqneqfk.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\onuhfaqdr.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\olcfhmx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ogn.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ogknbwh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ocduhsoaeky.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ndpxrjvfik.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mpuqpwyjjoe.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mlfml.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mhymnl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mhefcltipun.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mcrrrdylbyb.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mbpbf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lxjydaq.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lvjfqnrfy.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lmkwvtfa.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\liif.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lhlcj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ldna.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ktkvvqws.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kokjkgnayl.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kgqeevfnt.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kfkegdfzsmf.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kblu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ixrmyzmuf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\itshnv.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ibqvywo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hxpuo.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\htzs.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hqwxnfwmq.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hoboh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hmzimwaq.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hhxjfatux.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hgu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hfaptb.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hbqnkzjqm.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gzswrdxw.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gxveh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gxiglgpq.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gswxesatox.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gksspjwk.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gjrxn.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\giemuzl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ggjxmqh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gecrm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fyvyvw.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fqat.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fnyj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fkuuzbgv.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ezafudvoiyt.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ehe.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\egskehx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\edsljcdivuy.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\dxrnzku.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\dqajfj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\cqbt.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\civwzqm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\cfclssx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\cdntf.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\bzyz.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\bsmobir.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\blxcchdo.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\aso.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\arembuqqlhl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\apluecjxljh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ajfm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\rnni.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\qgqkumwr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\fas.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\err.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\ecisfvuhpa.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\zzmbkjttcv.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\zhbezzk.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\yztg.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ywcotf.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ybcwdcj.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wvmaql.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wtkvqxla.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wmcwjfwebcg.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wjjkwjxof.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\vekhfmquvd.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\uhgxcxne.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ubomomrwsdk.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\tttpgilubhz.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\tcu.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\swmx.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\sqrvkkbktxz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\sfsz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rzuc.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rumiqlhw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\riffaw.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rifbww.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rhw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\qxbus.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\qsopsnklrnj.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\qrpcq.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\pedcjlq.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\pcpmvigyknw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ousspnt.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\oicryjbsxhd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\mwuwz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\mbufohzbd.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lwcnbd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lvzw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lnm.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lffhqjpt.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\jvanbm.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\jscxtijpp.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\jecbuzopv.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ivz.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\isnvgwxvzx.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\imisiwl.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ikvd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\iduxw.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ict.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\hulemjbpzih.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\htubwk.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\gcgii.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\fmlgoxxnn.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\fhagevihj.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\epuzw.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\dkfd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\detwvkklv.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\defhdp.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\byoqvakieh.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\bxqecmpfn.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\bulcyfilrrd.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\betjex.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ayyyufnvi.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\akjgqsepny.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ajnzyssdz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\aesvs.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\refyhravcw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\pxluctu.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\baxqskha.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\xibfo.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\zvxuplfqaiv.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\zmulmsalvp.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\zgtn.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\yfguqg.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\xhxj.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\xbeumyws.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\vuzy.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\uvhkeoo.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ujupkolaxz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\udixx.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\tixbprzs.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\srt.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\sntlrnm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\slfzi.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\skcx.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\sjzadmi.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\rpz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\qttwzyei.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\qqqt.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pqognjycvt.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pjtdqi.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\phcioojd.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pclkwlz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pathdekgnl.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\otvbczqzr.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\otorwgb.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\oofzxmm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\oofsbkfk.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ooaomuyhvz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\olhdsirhbjm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ntpp.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\npuailglpt.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\narceunvfsr.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\mwzhlh.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\mvhxlyyr.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\minowwpnhw.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\mflohpswrxl.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\maynwlp.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\lqya.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\kppamcnflm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\knk.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\kkrk.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\kjvzwobzke.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\jvpytddxshm.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\jazdltqdat.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ithugwck.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ilppyukvb.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\hxokmtz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\hrfumedgw.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\hiushfclfla.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\gwegf.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ghdvcccqxcv.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\fzzu.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\fnxe.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\eesejbzog.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dmuuqmc.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\djzobvavx.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dgppwo.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dgckkqqq.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dfswulgomz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ctxnogspj.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\cbqynozbpo.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\bsxkwl.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\azuxhafgo.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\auemdu.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\kragnbr.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\eewo.ini
2014-06-27 13:14:37 ----D---- C:\Temp
2014-06-12 15:30:12 ----D---- C:\Documents and Settings\Profik\Data aplikací\Mozilla
2014-06-12 15:30:03 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-06-12 15:30:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Mozilla
2014-06-12 15:29:55 ----D---- C:\Program Files\Mozilla Firefox
2014-06-07 18:28:01 ----D---- C:\Program Files\QuadCoreM2
2014-06-05 22:28:08 ----A---- C:\WINDOWS\system32\drivers\PnkBstrK.sys
2014-06-05 22:28:08 ----A---- C:\Documents and Settings\Profik\Data aplikací\PnkBstrK.sys
2014-06-05 22:27:47 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2014-06-05 22:27:41 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2014-06-05 22:09:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\EA Core
2014-06-05 22:07:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\EA Logs
2014-06-05 22:02:02 ----HD---- C:\Program Files\Common Files\EAInstaller
2014-06-05 21:04:09 ----D---- C:\Program Files\Origin Games
2014-06-05 20:43:16 ----D---- C:\Documents and Settings\Profik\Data aplikací\Origin
2014-06-05 20:40:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Origin
2014-06-05 20:40:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts

======List of files/folders modified in the last 1 month======

2014-07-04 10:24:25 ----D---- C:\WINDOWS\Prefetch
2014-07-04 10:24:13 ----RD---- C:\Program Files
2014-07-04 10:13:18 ----D---- C:\WINDOWS\Temp
2014-07-04 10:05:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\ProductData
2014-07-04 10:04:26 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-06-29 18:47:54 ----D---- C:\WINDOWS\Minidump
2014-06-29 18:47:54 ----D---- C:\WINDOWS
2014-06-29 12:04:50 ----D---- C:\Documents and Settings\Profik\Data aplikací\TS3Client
2014-06-28 17:36:48 ----D---- C:\WINDOWS\system32\CatRoot2
2014-06-28 17:35:54 ----D---- C:\Documents and Settings\Profik\Data aplikací\uTorrent
2014-06-28 16:52:22 ----D---- C:\Program Files\Steam
2014-06-28 10:15:47 ----D---- C:\WINDOWS\SoftwareDistribution
2014-06-28 10:14:28 ----D---- C:\WINDOWS\Debug
2014-06-28 10:14:24 ----D---- C:\WINDOWS\system32
2014-06-28 00:49:49 ----SD---- C:\WINDOWS\Tasks
2014-06-28 00:42:15 ----D---- C:\Program Files\Garena Plus
2014-06-28 00:42:14 ----D---- C:\Program Files\Warcraft III
2014-06-28 00:37:38 ----SHD---- C:\WINDOWS\Installer
2014-06-28 00:37:20 ----DC---- C:\WINDOWS\system32\DRVSTORE
2014-06-28 00:37:20 ----D---- C:\WINDOWS\system32\drivers
2014-06-28 00:37:17 ----HD---- C:\WINDOWS\inf
2014-06-28 00:30:50 ----HD---- C:\Program Files\InstallShield Installation Information
2014-06-28 00:29:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-06-28 00:28:42 ----D---- C:\Program Files\Common Files
2014-06-27 20:01:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\GarenaMessenger
2014-06-27 20:01:23 ----D---- C:\Documents and Settings\Profik\Data aplikací\GarenaPlus
2014-06-26 15:17:53 ----D---- C:\Documents and Settings\Profik\Data aplikací\Skype
2014-06-14 12:34:23 ----D---- C:\Program Files\Electronic Arts
2014-06-14 11:56:43 ----RSD---- C:\WINDOWS\assembly
2014-06-14 11:56:16 ----D---- C:\WINDOWS\system32\DirectX
2014-06-14 11:54:04 ----SHD---- C:\RECYCLER
2014-06-14 11:54:03 ----D---- C:\Documents and Settings
2014-06-11 21:21:12 ----D---- C:\Program Files\winrar 4.11 full cz 32bit
2014-06-11 15:52:45 ----D---- C:\WINDOWS\system32\MRT
2014-06-11 15:49:56 ----A---- C:\WINDOWS\system32\MRT.exe
2014-06-07 16:58:33 ----D---- C:\WINDOWS\Logs
2014-06-06 19:26:11 ----D---- C:\Program Files\EA GAMES
2014-06-05 22:47:00 ----D---- C:\Documents and Settings\Profik\Data aplikací\Hamachi
2014-06-05 22:27:39 ----D---- C:\WINDOWS\system32\LogFiles

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2013-11-08 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2013-11-08 178304]
R0 SmartDefragDriver;SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [2013-12-24 15808]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2014-05-01 643072]
R1 aswRdr;aswRdr; \??\C:\WINDOWS\system32\drivers\aswRdr.sys []
R1 aswSnx;aswSnx; \??\C:\WINDOWS\system32\drivers\aswSnx.sys []
R1 aswSP;aswSP; \??\C:\WINDOWS\system32\drivers\aswSP.sys []
R1 aswTdi;aswTdi; \??\C:\WINDOWS\system32\drivers\aswTdi.sys []
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2013-04-15 113608]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 aswFsBlk;aswFsBlk; \??\C:\WINDOWS\system32\drivers\aswFsBlk.sys []
R2 aswMonFlt;aswMonFlt; \??\C:\WINDOWS\system32\drivers\aswMonFlt.sys []
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2013-12-17 239928]
R3 dtscsi;dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys [2014-05-01 223128]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2014-04-25 25280]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2013-12-13 5672032]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 VIAudio;Vinyl AC'97 Audio Controller (WDM); C:\WINDOWS\system32\drivers\vinyl97.sys [2014-04-17 207488]
S3 EagleXNt;EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys []
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files\Garena Plus\Room\safedrv.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys []
S3 RegFilter;RegFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wxp_x86\regfilter.sys []
S3 senfilt;senfilt; C:\WINDOWS\system32\drivers\senfilt.sys [2004-09-17 732928]
S3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2005-03-22 260224]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINDOWS\system32\DRIVERS\ss_bbus.sys [2012-06-27 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys [2012-06-27 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys [2012-06-27 123648]
S3 UrlFilter;UrlFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wxp_x86\UrlFilter.sys []
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S4 FileMonitor;FileMonitor; \??\C:\Program Files\IObit\IObit Malware Fighter\Drivers\wxp_x86\FileMonitor.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdvancedSystemCareService7;Advanced SystemCare Service 7; C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe [2014-01-14 881952]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-11-08 50344]
R2 IMFservice;IMF Service; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [2013-11-11 341824]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2014-03-17 182696]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2014-06-05 75136]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2014-06-06 189248]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-22 116648]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2013-12-03 2151200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-22 116648]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-06 119408]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2013-02-06 4545768]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Re: Prosím o kontrolu mého logu

Napsal: 04 črc 2014 09:58
od cernohous13
Zdravím,

:???: vzpomeneš si co jsi prováděl 2014-06-27 23:58:46 ?

Než začneme s dezinsekcí doporučuji odinstalovat
Advanced SystemCare 7
IObit Malware Fighter
případně i další od IObit - našel bys tu více případů, kdy dokázaly tyto "programy"
slušně nabořit systém

:arrow: Pak mi dej nový RSIT

Re: Prosím o kontrolu mého logu

Napsal: 04 črc 2014 10:14
od Camron
Byla to myslím sobota den po prázdninách, v takový čas většinou hraji nějaké hry, nebo jsem na facebooku a volám například na skype/teamspeak.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Profik at 2014-07-04 11:05:41
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 21 GB (28%) free of 76 GB
Total RAM: 1014 MB (27% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:06:07, on 4.7.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\TeamSpeak 3 Client\ts3client_win32.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Profik\Dokumenty\Downloads\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\Profik.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT1750559
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Documents and Settings\Profik\Data aplikací\Slick Savings\Coupons.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 5341 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\WGASetup.job - C:\WINDOWS\system32\KB905474\wgasetup.exe /autoauto

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Profik\Data aplikací\Mozilla\Firefox\Profiles\l0ckzaxo.default

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.55.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@t.garena.com/garenatalk]
"Description"=Garena Talk Plugin
"Path"=C:\Program Files\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeExManDetect]
"Description"=
"Path"=C:\Program Files\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}]
Slick Savings - C:\Documents [2014-05-23 64]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-03-17 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-03-17 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2004-10-14 1404928]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-11-08 3568312]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2013-12-13 131072]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2013-12-13 163840]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2013-12-13 135168]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoStartNPSAgent]
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GarenaPlus]
C:\Program Files\Garena Plus\GarenaMessenger.exe -autolaunch []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
C:\WINDOWS\system32\dumprep 0 -k []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SearchSettings]
C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Slick Savings]
C:\Documents [2014-05-23 64]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SlimDrivers]
C:\Program Files\SlimDrivers\SlimDrivers.exe -boot []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Profik^Nabídka Start^Programy^Po spuštění^abb278f5f94f5be17c28e4761048b650.exe]
C:\Documents [2014-05-23 64]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2013-12-13 204800]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:rundll32"
"C:\Program Files\Warcraft III\Warcraft III.exe"="C:\Program Files\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\Program Files\Java\jre7\bin\javaw.exe"="C:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe"="C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe:*:Enabled:Counter-Strike"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\EA Sports\NHL 09\nhl2009.exe"="C:\Program Files\EA Sports\NHL 09\nhl2009.exe:*:Enabled:nhl2009"
"C:\Program Files\Ventrilo\ventrilo_srv.exe"="C:\Program Files\Ventrilo\ventrilo_srv.exe:*:Enabled:ventrilo_srv"
"C:\Documents and Settings\Profik\Data aplikací\uTorrent\utorrent.exe"="C:\Documents and Settings\Profik\Data aplikací\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\GameforgeLive\gfl_client.exe"="C:\Program Files\GameforgeLive\gfl_client.exe:*:Enabled:Gameforge Live"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Ekura\game.exe"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Ekura\game.exe:*:Enabled:game"
"C:\Program Files\QuadCoreM2\pack\core.bin"="C:\Program Files\QuadCoreM2\pack\core.bin:*:Enabled:core"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Firenze2 Version 1.2\Firenze2.exe"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Firenze2 Version 1.2\Firenze2.exe:*:Enabled:Metin2Client"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Attomey ---\metin2client.bin"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Attomey ---\metin2client.bin:*:Enabled:metin2client"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\NewGeneration\Microsoft.WindowsLauncher.dll"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\NewGeneration\Microsoft.WindowsLauncher.dll:*:Enabled:Metin2Client"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"MSACM.MSNAUDIO"=msnaudio.acm
"msacm.vorbis"=vorbis.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.VP60"=vp6vfw.dll
"vidc.VP61"=vp6vfw.dll
"vidc.VP62"=vp6vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.tscc"=C:\WINDOWS\system32\tsccvid.dll
"vidc.tsc2"=C:\WINDOWS\system32\tsc2_codec32.dll
"VIDC.FPS1"=frapsvid.dll

======List of files/folders created in the last 1 month======

2014-07-04 10:24:13 ----D---- C:\Program Files\trend micro
2014-07-04 10:24:12 ----D---- C:\rsit
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\yeqc.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xitroqxj.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xhepiahgu.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xdu.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xabxrnwognq.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\uaqqwmjt.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\tgp.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\okbzdweogsf.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\netcd.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\mxdvmytw.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\kaddzumq.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\jxqxva.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\ifvbafbi.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\hgdxppghmnp.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\gbx.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\dmtlsnues.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\cntaml.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\cbgvboorrjj.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\aclcvmx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zyadeizbstq.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zmpm.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zlvlgaoro.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zbu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yruogei.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yqwnxmuqkr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ynbpico.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yft.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yfddtyco.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xrjmwls.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xratz.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xnrwoffi.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xkiazoygsu.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xhliavnncf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xhi.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xei.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xbwudob.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wztapis.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wvpmojcpagc.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wuienx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wmaeoulj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wjd.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wgfzxqxc.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vwx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vwvpxtf.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vtccpjjxhbl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vpymgh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vky.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vhgdwwy.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vexcv.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\uuknvmo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\upqsk.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\uilhoi.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ugh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tubh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tmksiwyo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tjerrruiu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tgysztaa.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\szanch.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\swrosmstc.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\svh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\surl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\sthnpbr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\skjqlknoa.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rvitifkhda.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ruwy.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rtsquze.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rnaxcorvnpm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rmkgnn.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rfbddh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rckntimj.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rbou.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qzegqoobxiy.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qqqewpfdl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qpghwlpi.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qnretzig.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qheefqe.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qbdvroefxtf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pvsbacopgo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\puxozpwjj.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ptfcgaof.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\psxulyb.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\psuezqksw.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pqjjgvrcrr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pplmagu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pefaimbebk.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\oxxpcqneqfk.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\onuhfaqdr.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\olcfhmx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ogn.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ogknbwh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ocduhsoaeky.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ndpxrjvfik.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mpuqpwyjjoe.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mlfml.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mhymnl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mhefcltipun.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mcrrrdylbyb.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mbpbf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lxjydaq.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lvjfqnrfy.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lmkwvtfa.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\liif.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lhlcj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ldna.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ktkvvqws.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kokjkgnayl.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kgqeevfnt.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kfkegdfzsmf.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kblu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ixrmyzmuf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\itshnv.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ibqvywo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hxpuo.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\htzs.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hqwxnfwmq.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hoboh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hmzimwaq.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hhxjfatux.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hgu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hfaptb.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hbqnkzjqm.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gzswrdxw.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gxveh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gxiglgpq.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gswxesatox.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gksspjwk.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gjrxn.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\giemuzl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ggjxmqh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gecrm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fyvyvw.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fqat.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fnyj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fkuuzbgv.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ezafudvoiyt.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ehe.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\egskehx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\edsljcdivuy.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\dxrnzku.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\dqajfj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\cqbt.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\civwzqm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\cfclssx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\cdntf.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\bzyz.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\bsmobir.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\blxcchdo.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\aso.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\arembuqqlhl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\apluecjxljh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ajfm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\rnni.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\qgqkumwr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\fas.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\err.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\ecisfvuhpa.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\zzmbkjttcv.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\zhbezzk.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\yztg.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ywcotf.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ybcwdcj.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wvmaql.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wtkvqxla.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wmcwjfwebcg.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wjjkwjxof.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\vekhfmquvd.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\uhgxcxne.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ubomomrwsdk.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\tttpgilubhz.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\tcu.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\swmx.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\sqrvkkbktxz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\sfsz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rzuc.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rumiqlhw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\riffaw.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rifbww.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rhw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\qxbus.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\qsopsnklrnj.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\qrpcq.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\pedcjlq.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\pcpmvigyknw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ousspnt.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\oicryjbsxhd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\mwuwz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\mbufohzbd.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lwcnbd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lvzw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lnm.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lffhqjpt.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\jvanbm.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\jscxtijpp.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\jecbuzopv.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ivz.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\isnvgwxvzx.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\imisiwl.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ikvd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\iduxw.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ict.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\hulemjbpzih.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\htubwk.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\gcgii.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\fmlgoxxnn.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\fhagevihj.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\epuzw.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\dkfd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\detwvkklv.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\defhdp.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\byoqvakieh.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\bxqecmpfn.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\bulcyfilrrd.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\betjex.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ayyyufnvi.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\akjgqsepny.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ajnzyssdz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\aesvs.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\refyhravcw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\pxluctu.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\baxqskha.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\xibfo.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\zvxuplfqaiv.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\zmulmsalvp.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\zgtn.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\yfguqg.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\xhxj.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\xbeumyws.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\vuzy.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\uvhkeoo.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ujupkolaxz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\udixx.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\tixbprzs.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\srt.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\sntlrnm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\slfzi.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\skcx.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\sjzadmi.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\rpz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\qttwzyei.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\qqqt.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pqognjycvt.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pjtdqi.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\phcioojd.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pclkwlz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pathdekgnl.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\otvbczqzr.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\otorwgb.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\oofzxmm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\oofsbkfk.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ooaomuyhvz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\olhdsirhbjm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ntpp.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\npuailglpt.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\narceunvfsr.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\mwzhlh.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\mvhxlyyr.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\minowwpnhw.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\mflohpswrxl.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\maynwlp.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\lqya.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\kppamcnflm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\knk.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\kkrk.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\kjvzwobzke.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\jvpytddxshm.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\jazdltqdat.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ithugwck.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ilppyukvb.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\hxokmtz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\hrfumedgw.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\hiushfclfla.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\gwegf.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ghdvcccqxcv.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\fzzu.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\fnxe.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\eesejbzog.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dmuuqmc.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\djzobvavx.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dgppwo.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dgckkqqq.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dfswulgomz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ctxnogspj.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\cbqynozbpo.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\bsxkwl.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\azuxhafgo.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\auemdu.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\kragnbr.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\eewo.ini
2014-06-27 13:14:37 ----D---- C:\Temp
2014-06-12 15:30:12 ----D---- C:\Documents and Settings\Profik\Data aplikací\Mozilla
2014-06-12 15:30:03 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-06-12 15:30:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Mozilla
2014-06-12 15:29:55 ----D---- C:\Program Files\Mozilla Firefox
2014-06-07 18:28:01 ----D---- C:\Program Files\QuadCoreM2
2014-06-05 22:28:08 ----A---- C:\WINDOWS\system32\drivers\PnkBstrK.sys
2014-06-05 22:28:08 ----A---- C:\Documents and Settings\Profik\Data aplikací\PnkBstrK.sys
2014-06-05 22:27:47 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2014-06-05 22:27:41 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2014-06-05 22:09:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\EA Core
2014-06-05 22:07:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\EA Logs
2014-06-05 22:02:02 ----HD---- C:\Program Files\Common Files\EAInstaller
2014-06-05 21:04:09 ----D---- C:\Program Files\Origin Games
2014-06-05 20:43:16 ----D---- C:\Documents and Settings\Profik\Data aplikací\Origin
2014-06-05 20:40:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Origin
2014-06-05 20:40:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts

======List of files/folders modified in the last 1 month======

2014-07-04 11:05:01 ----D---- C:\WINDOWS\Prefetch
2014-07-04 11:04:51 ----D---- C:\WINDOWS\system32\drivers
2014-07-04 11:04:51 ----D---- C:\WINDOWS\system32
2014-07-04 11:04:42 ----SD---- C:\WINDOWS\Tasks
2014-07-04 11:03:39 ----D---- C:\Program Files\IObit
2014-07-04 10:36:02 ----D---- C:\Documents and Settings\Profik\Data aplikací\TS3Client
2014-07-04 10:24:13 ----RD---- C:\Program Files
2014-07-04 10:13:18 ----D---- C:\WINDOWS\Temp
2014-07-04 10:05:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\ProductData
2014-07-04 10:04:26 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-06-29 18:47:54 ----D---- C:\WINDOWS\Minidump
2014-06-29 18:47:54 ----D---- C:\WINDOWS
2014-06-28 17:36:48 ----D---- C:\WINDOWS\system32\CatRoot2
2014-06-28 17:35:54 ----D---- C:\Documents and Settings\Profik\Data aplikací\uTorrent
2014-06-28 16:52:22 ----D---- C:\Program Files\Steam
2014-06-28 10:15:47 ----D---- C:\WINDOWS\SoftwareDistribution
2014-06-28 10:14:28 ----D---- C:\WINDOWS\Debug
2014-06-28 00:42:15 ----D---- C:\Program Files\Garena Plus
2014-06-28 00:42:14 ----D---- C:\Program Files\Warcraft III
2014-06-28 00:42:14 ----D---- C:\Program Files\Ventrilo
2014-06-28 00:37:38 ----SHD---- C:\WINDOWS\Installer
2014-06-28 00:37:20 ----DC---- C:\WINDOWS\system32\DRVSTORE
2014-06-28 00:37:17 ----HD---- C:\WINDOWS\inf
2014-06-28 00:30:50 ----HD---- C:\Program Files\InstallShield Installation Information
2014-06-28 00:29:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-06-28 00:28:42 ----D---- C:\Program Files\Common Files
2014-06-27 20:01:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\GarenaMessenger
2014-06-27 20:01:23 ----D---- C:\Documents and Settings\Profik\Data aplikací\GarenaPlus
2014-06-26 15:17:53 ----D---- C:\Documents and Settings\Profik\Data aplikací\Skype
2014-06-14 12:34:23 ----D---- C:\Program Files\Electronic Arts
2014-06-14 11:56:44 ----D---- C:\WINDOWS\system32\DirectX
2014-06-14 11:56:43 ----RSD---- C:\WINDOWS\assembly
2014-06-14 11:54:04 ----SHD---- C:\RECYCLER
2014-06-14 11:54:03 ----D---- C:\Documents and Settings
2014-06-11 21:21:12 ----D---- C:\Program Files\winrar 4.11 full cz 32bit
2014-06-11 15:58:39 ----D---- C:\WINDOWS\system32\MRT
2014-06-11 15:49:56 ----A---- C:\WINDOWS\system32\MRT.exe
2014-06-07 16:58:33 ----D---- C:\WINDOWS\Logs
2014-06-06 19:26:11 ----D---- C:\Program Files\EA GAMES
2014-06-05 22:47:00 ----D---- C:\Documents and Settings\Profik\Data aplikací\Hamachi
2014-06-05 22:27:39 ----D---- C:\WINDOWS\system32\LogFiles

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2013-11-08 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2013-11-08 178304]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2014-05-01 643072]
R1 aswRdr;aswRdr; \??\C:\WINDOWS\system32\drivers\aswRdr.sys []
R1 aswSnx;aswSnx; \??\C:\WINDOWS\system32\drivers\aswSnx.sys []
R1 aswSP;aswSP; \??\C:\WINDOWS\system32\drivers\aswSP.sys []
R1 aswTdi;aswTdi; \??\C:\WINDOWS\system32\drivers\aswTdi.sys []
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2013-04-15 113608]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 aswFsBlk;aswFsBlk; \??\C:\WINDOWS\system32\drivers\aswFsBlk.sys []
R2 aswMonFlt;aswMonFlt; \??\C:\WINDOWS\system32\drivers\aswMonFlt.sys []
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2013-12-17 239928]
R3 dtscsi;dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys [2014-05-01 223128]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2014-04-25 25280]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2013-12-13 5672032]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 VIAudio;Vinyl AC'97 Audio Controller (WDM); C:\WINDOWS\system32\drivers\vinyl97.sys [2014-04-17 207488]
S3 EagleXNt;EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys []
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files\Garena Plus\Room\safedrv.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys []
S3 senfilt;senfilt; C:\WINDOWS\system32\drivers\senfilt.sys [2004-09-17 732928]
S3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2005-03-22 260224]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINDOWS\system32\DRIVERS\ss_bbus.sys [2012-06-27 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys [2012-06-27 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys [2012-06-27 123648]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-11-08 50344]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2014-03-17 182696]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2014-06-05 75136]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2014-06-06 189248]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-22 116648]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2013-12-03 2151200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-22 116648]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-06 119408]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2013-02-06 4545768]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

Re: Prosím o kontrolu mého logu

Napsal: 04 črc 2014 10:22
od cernohous13
:roll: Ptal jsem se proto, že sis tam o půlnoci natahal slušnou fůru hnoje

Pokračujeme takto
:arrow: Stáhni Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
Ulož jej na plochu a spusť - zobrazí se licenční podminky -> start libovolnou klávesou.
Bude vytvořena záloha a proběhne skenování.
Vyskočí log (nebo je uložen zde c:\JRT jako JRT.txt) - zkopíruj jej sem

:arrow: Stáhni AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Ulož nejlépe na plochu -> ukonči všechny programy -> spusť AdwCleaner -> klikni na Scan po dokončení na Clean
bude provedena oprava, restartuje se - (případně restartuj) a vypadne log C:\AdwCleaner\AdwCleaner[S?].txt , jeho obsah vložíš sem

:arrow: pravděpodobně budeš nucen vypnout na tu chvíli antivir - je to čisté, prověřeno
vyosek píše: :arrow: Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
  • :arrow: Po spuštění do okna vlozte skript nize

    Kód: Vybrat vše

    srinfo;
autoclean;
emptyclsid;
iedefaults;
process;
hijackthis;
emptyalltemp;
resethosts;
  • Nasledne kliknete na Run Script
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
Log bude zde C:\zoek-results.log

:arrow: naskládej mi sem všechny tři logy

Re: Prosím o kontrolu mého logu

Napsal: 04 črc 2014 12:24
od Camron
Udělal jsem, první log:
# AdwCleaner v3.214 - Report created 04/07/2014 at 12:52:25
# Updated 29/06/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Profik - PATRIK
# Running from : C:\Documents and Settings\Profik\Plocha\adwcleaner_3.214.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\apn
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\Conduit
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\ParetoLogic
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\SearchNewTab
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\Surrf anad Keep
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\YoutubeAdblocker
Folder Deleted : C:\Documents and Settings\All Users\Nabídka Start\Programy\RegClean Pro
Folder Deleted : C:\Documents and Settings\Profik\Local Settings\Data aplikací\Conduit
Folder Deleted : C:\Documents and Settings\Profik\Local Settings\Data aplikací\Slick Savings
Folder Deleted : C:\Documents and Settings\Profik\Data aplikací\ParetoLogic
File Deleted : C:\Documents and Settings\Profik\Data aplikací\Explorer.EXE_log.txt
File Deleted : C:\Documents and Settings\Profik\Data aplikací\LiveSupport.exe_log.txt
File Deleted : C:\Documents and Settings\Profik\Data aplikací\regsvr32.exe_log.txt

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SearchSettings
Key Deleted : HKCU\Software\abb278f5f94f5be17c28e4761048b650
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}
Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKCU\Software\RegisteredApplicationsEx
Key Deleted : HKLM\Software\ParetoLogic
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3A787631-66A2-4634-B928-A37E73B58FB6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A35CA8FF-CB7D-8361-1CB9-83219CD11C78}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{3A787631-66A2-4634-B928-A37E73B58FB6}

***** [ Browsers ] *****

-\\ Internet Explorer v6.0.2900.5512


-\\ Mozilla Firefox v30.0 (cs)

[ File : C:\Documents and Settings\Profik\Data aplikací\Mozilla\Firefox\Profiles\l0ckzaxo.default\prefs.js ]


-\\ Google Chrome v35.0.1916.153

[ File : C:\Documents and Settings\Profik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://www.search.ask.com/web?p2=%5EAKE%5EOSJ0 ... earchTerms}
Deleted [Extension] : gkcefkcdkepgkpbgncjchhbjgoanleod

*************************

AdwCleaner[R0].txt - [3643 octets] - [04/07/2014 12:48:28]
AdwCleaner[S0].txt - [3624 octets] - [04/07/2014 12:52:25]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3684 octets] ##########

druhý log:
jrt
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Microsoft Windows XP x86
Ran by Profik on p  04.07.2014 at 12:58:26,26
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on p  04.07.2014 at 13:05:52,35
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

třetí log:
Zoek.exe v5.0.0.0 Updated 30-06-2014
Tool run by Profik on p  04.07.2014 at 13:08:10,89.
Systém Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Profik\Plocha\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

4.7.2014 13:09:01 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-823518204-287218729-1417001333-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} deleted successfully
HKEY_USERS\S-1-5-21-823518204-287218729-1417001333-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully

==== Running Processes ======================

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Profik\Plocha\zoek.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Documents and Settings\Profik\AppData\LocalLow\{044D0067-2A78-5F97-0EEC-EEB1DE136FD8} deleted
C:\Documents and Settings\Profik\AppData\LocalLow\{C4F739E5-2CC7-F12B-5367-9F834B0C68A6} deleted
C:\Documents and Settings\Profik\AppData\LocalLow\{E5695225-D43B-C50B-5B35-DFCD960B04F8} deleted
C:\Program Files\ComPlus Applications deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\ProductData deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\InstallMate deleted
"C:\DOCUME~1\ALLUSE~1\DATAAP~1\641361f7edcde556\{4820778D-AB0D-6D18-C316-52A6A0E1D507}" deleted
"C:\DOCUME~1\ALLUSE~1\DATAAP~1\641361f7edcde556\{A35CA8FF-CB7D-8361-1CB9-83219CD11C78}" deleted
"C:\DOCUME~1\ALLUSE~1\DATAAP~1\641361f7edcde556\{A35CA8FF-CB7D-8361-1CB9-83219CD11C78}.old" deleted
"C:\DOCUME~1\ALLUSE~1\DATAAP~1\641361f7edcde556\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}" deleted
"C:\DOCUME~1\ALLUSE~1\DATAAP~1\641361f7edcde556\{E32743D3-5789-6E4F-3998-06FB87C9214B}" deleted
"C:\DOCUME~1\ALLUSE~1\DATAAP~1\641361f7edcde556" deleted

======== System Restore Points ========

RP210: 18.5.2014 22:18:27 - Kontrolní bod systému
RP211: 19.5.2014 22:34:52 - Kontrolní bod systému
RP212: 21.5.2014 16:59:51 - Kontrolní bod systému
RP213: 22.5.2014 19:09:57 - Kontrolní bod systému
RP214: 23.5.2014 12:50:34 - Nainstalováno rozhraní DirectX
RP215: 23.5.2014 14:07:55 - Removed Stronghold Crusader Extreme
RP216: 23.5.2014 18:48:08 - Installed Battlefield 2(TM)
RP217: 23.5.2014 20:01:22 - Nainstalováno rozhraní DirectX
RP218: 23.5.2014 21:24:46 - Nainstalováno rozhraní DirectX
RP219: 25.5.2014 13:19:23 - Kontrolní bod systému
RP220: 26.5.2014 15:12:56 - Kontrolní bod systému
RP221: 30.5.2014 17:08:17 - Kontrolní bod systému
RP222: 31.5.2014 18:52:54 - Kontrolní bod systému
RP223: 4.6.2014 17:16:54 - Kontrolní bod systému
RP224: 5.6.2014 18:16:50 - Kontrolní bod systému
RP225: 5.6.2014 21:28:45 - Nainstalováno rozhraní DirectX
RP226: 6.6.2014 19:06:03 - Configured Battlefield 2(TM)
RP227: 6.6.2014 19:06:44 - Configured Battlefield 2(TM)
RP228: 6.6.2014 19:07:06 - Removed Battlefield 2(TM)
RP229: 6.6.2014 19:09:18 - Installed Battlefield 2(TM)
RP230: 7.6.2014 18:12:34 - Nainstalováno: QuadcoreM2
RP231: 8.6.2014 19:56:49 - Kontrolní bod systému
RP232: 9.6.2014 21:20:29 - Kontrolní bod systému
RP233: 11.6.2014 14:33:48 - Kontrolní bod systému
RP234: 11.6.2014 15:49:44 - Software Distribution Service 3.0
RP235: 12.6.2014 16:01:19 - Kontrolní bod systému
RP236: 14.6.2014 11:56:16 - Nainstalováno rozhraní DirectX
RP237: 27.6.2014 11:40:17 - Kontrolní bod systému
RP238: 28.6.2014 0:30:48 - Removed Battlefield 2(TM)
RP239: 28.6.2014 0:37:02 - Removed PC Connectivity Solution
RP240: 29.6.2014 14:05:35 - Kontrolní bod systému
RP241: 4.7.2014 13:09:01 - zoek.exe restore point

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [08.11.2013 21:53]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[08.11.2013 21:53]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchT ... {startPage}"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoStartNPSAgent deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GarenaPlus deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Slick Savings deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SlimDrivers deleted successfully

==== HijackThis Entries ======================

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

==== Empty IE Cache ======================

C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Profik\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\Profik\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=34 folders=9 356783 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\Profik\LOCALS~1\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\RECYCLER successfully emptied

==== Deleting Files / Folders ======================

"C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Documents and Settings\Profik\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found

==== EOF on p  04.07.2014 at 13:20:26,15 ======================

Re: Prosím o kontrolu mého logu

Napsal: 04 črc 2014 14:41
od cernohous13
Daří se ti :thumbsup:

:arrow: Udělej mi radost novým logem RSITu

Re: Prosím o kontrolu mého logu

Napsal: 04 črc 2014 14:57
od Camron
To rád sylším. :thumbsup:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Profik at 2014-07-04 15:56:45
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 22 GB (29%) free of 76 GB
Total RAM: 1014 MB (37% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:56:57, on 4.7.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Profik\Dokumenty\Downloads\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\Profik.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 4987 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\WGASetup.job - C:\WINDOWS\system32\KB905474\wgasetup.exe /autoauto

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Profik\Data aplikací\Mozilla\Firefox\Profiles\l0ckzaxo.default

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.55.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@t.garena.com/garenatalk]
"Description"=Garena Talk Plugin
"Path"=C:\Program Files\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeExManDetect]
"Description"=
"Path"=C:\Program Files\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-03-17 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-03-17 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2004-10-14 1404928]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-11-08 3568312]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2013-12-13 131072]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2013-12-13 163840]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2013-12-13 135168]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
C:\WINDOWS\system32\dumprep 0 -k []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Profik^Nabídka Start^Programy^Po spuštění^abb278f5f94f5be17c28e4761048b650.exe]
C:\Documents [2014-05-23 64]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2013-12-13 204800]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:rundll32"
"C:\Program Files\Warcraft III\Warcraft III.exe"="C:\Program Files\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\Program Files\Java\jre7\bin\javaw.exe"="C:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe"="C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe:*:Enabled:Counter-Strike"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\EA Sports\NHL 09\nhl2009.exe"="C:\Program Files\EA Sports\NHL 09\nhl2009.exe:*:Enabled:nhl2009"
"C:\Program Files\Ventrilo\ventrilo_srv.exe"="C:\Program Files\Ventrilo\ventrilo_srv.exe:*:Enabled:ventrilo_srv"
"C:\Documents and Settings\Profik\Data aplikací\uTorrent\utorrent.exe"="C:\Documents and Settings\Profik\Data aplikací\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\GameforgeLive\gfl_client.exe"="C:\Program Files\GameforgeLive\gfl_client.exe:*:Enabled:Gameforge Live"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Ekura\game.exe"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Ekura\game.exe:*:Enabled:game"
"C:\Program Files\QuadCoreM2\pack\core.bin"="C:\Program Files\QuadCoreM2\pack\core.bin:*:Enabled:core"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Firenze2 Version 1.2\Firenze2.exe"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Firenze2 Version 1.2\Firenze2.exe:*:Enabled:Metin2Client"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Attomey ---\metin2client.bin"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Attomey ---\metin2client.bin:*:Enabled:metin2client"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\NewGeneration\Microsoft.WindowsLauncher.dll"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\NewGeneration\Microsoft.WindowsLauncher.dll:*:Enabled:Metin2Client"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"MSACM.MSNAUDIO"=msnaudio.acm
"msacm.vorbis"=vorbis.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.VP60"=vp6vfw.dll
"vidc.VP61"=vp6vfw.dll
"vidc.VP62"=vp6vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.tscc"=C:\WINDOWS\system32\tsccvid.dll
"vidc.tsc2"=C:\WINDOWS\system32\tsc2_codec32.dll
"VIDC.FPS1"=frapsvid.dll

======List of files/folders created in the last 1 month======

2014-07-04 13:18:31 ----A---- C:\WINDOWS\zoek-delete.exe
2014-07-04 13:18:30 ----D---- C:\WINDOWS\Temp
2014-07-04 13:08:04 ----D---- C:\zoek_backup
2014-07-04 12:49:12 ----A---- C:\WINDOWS\system32\sqlite3.dll
2014-07-04 12:48:13 ----D---- C:\AdwCleaner
2014-07-04 12:29:43 ----D---- C:\WINDOWS\ERUNT
2014-07-04 10:24:13 ----D---- C:\Program Files\trend micro
2014-07-04 10:24:12 ----D---- C:\rsit
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\yeqc.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xitroqxj.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xhepiahgu.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xdu.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xabxrnwognq.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\uaqqwmjt.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\tgp.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\okbzdweogsf.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\netcd.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\mxdvmytw.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\kaddzumq.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\jxqxva.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\ifvbafbi.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\hgdxppghmnp.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\gbx.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\dmtlsnues.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\cntaml.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\cbgvboorrjj.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\aclcvmx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zyadeizbstq.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zmpm.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zlvlgaoro.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zbu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yruogei.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yqwnxmuqkr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ynbpico.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yft.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yfddtyco.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xrjmwls.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xratz.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xnrwoffi.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xkiazoygsu.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xhliavnncf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xhi.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xei.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xbwudob.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wztapis.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wvpmojcpagc.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wuienx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wmaeoulj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wjd.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wgfzxqxc.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vwx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vwvpxtf.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vtccpjjxhbl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vpymgh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vky.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vhgdwwy.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vexcv.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\uuknvmo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\upqsk.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\uilhoi.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ugh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tubh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tmksiwyo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tjerrruiu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tgysztaa.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\szanch.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\swrosmstc.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\svh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\surl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\sthnpbr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\skjqlknoa.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rvitifkhda.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ruwy.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rtsquze.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rnaxcorvnpm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rmkgnn.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rfbddh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rckntimj.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rbou.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qzegqoobxiy.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qqqewpfdl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qpghwlpi.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qnretzig.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qheefqe.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qbdvroefxtf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pvsbacopgo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\puxozpwjj.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ptfcgaof.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\psxulyb.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\psuezqksw.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pqjjgvrcrr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pplmagu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pefaimbebk.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\oxxpcqneqfk.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\onuhfaqdr.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\olcfhmx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ogn.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ogknbwh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ocduhsoaeky.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ndpxrjvfik.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mpuqpwyjjoe.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mlfml.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mhymnl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mhefcltipun.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mcrrrdylbyb.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mbpbf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lxjydaq.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lvjfqnrfy.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lmkwvtfa.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\liif.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lhlcj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ldna.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ktkvvqws.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kokjkgnayl.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kgqeevfnt.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kfkegdfzsmf.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kblu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ixrmyzmuf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\itshnv.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ibqvywo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hxpuo.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\htzs.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hqwxnfwmq.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hoboh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hmzimwaq.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hhxjfatux.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hgu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hfaptb.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hbqnkzjqm.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gzswrdxw.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gxveh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gxiglgpq.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gswxesatox.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gksspjwk.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gjrxn.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\giemuzl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ggjxmqh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gecrm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fyvyvw.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fqat.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fnyj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fkuuzbgv.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ezafudvoiyt.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ehe.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\egskehx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\edsljcdivuy.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\dxrnzku.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\dqajfj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\cqbt.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\civwzqm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\cfclssx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\cdntf.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\bzyz.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\bsmobir.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\blxcchdo.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\aso.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\arembuqqlhl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\apluecjxljh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ajfm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\rnni.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\qgqkumwr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\fas.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\err.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\ecisfvuhpa.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\zzmbkjttcv.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\zhbezzk.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\yztg.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ywcotf.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ybcwdcj.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wvmaql.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wtkvqxla.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wmcwjfwebcg.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wjjkwjxof.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\vekhfmquvd.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\uhgxcxne.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ubomomrwsdk.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\tttpgilubhz.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\tcu.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\swmx.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\sqrvkkbktxz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\sfsz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rzuc.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rumiqlhw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\riffaw.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rifbww.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rhw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\qxbus.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\qsopsnklrnj.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\qrpcq.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\pedcjlq.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\pcpmvigyknw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ousspnt.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\oicryjbsxhd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\mwuwz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\mbufohzbd.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lwcnbd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lvzw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lnm.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lffhqjpt.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\jvanbm.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\jscxtijpp.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\jecbuzopv.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ivz.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\isnvgwxvzx.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\imisiwl.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ikvd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\iduxw.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ict.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\hulemjbpzih.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\htubwk.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\gcgii.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\fmlgoxxnn.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\fhagevihj.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\epuzw.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\dkfd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\detwvkklv.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\defhdp.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\byoqvakieh.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\bxqecmpfn.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\bulcyfilrrd.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\betjex.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ayyyufnvi.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\akjgqsepny.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ajnzyssdz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\aesvs.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\refyhravcw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\pxluctu.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\baxqskha.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\xibfo.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\zvxuplfqaiv.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\zmulmsalvp.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\zgtn.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\yfguqg.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\xhxj.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\xbeumyws.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\vuzy.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\uvhkeoo.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ujupkolaxz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\udixx.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\tixbprzs.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\srt.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\sntlrnm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\slfzi.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\skcx.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\sjzadmi.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\rpz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\qttwzyei.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\qqqt.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pqognjycvt.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pjtdqi.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\phcioojd.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pclkwlz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pathdekgnl.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\otvbczqzr.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\otorwgb.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\oofzxmm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\oofsbkfk.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ooaomuyhvz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\olhdsirhbjm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ntpp.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\npuailglpt.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\narceunvfsr.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\mwzhlh.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\mvhxlyyr.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\minowwpnhw.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\mflohpswrxl.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\maynwlp.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\lqya.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\kppamcnflm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\knk.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\kkrk.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\kjvzwobzke.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\jvpytddxshm.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\jazdltqdat.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ithugwck.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ilppyukvb.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\hxokmtz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\hrfumedgw.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\hiushfclfla.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\gwegf.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ghdvcccqxcv.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\fzzu.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\fnxe.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\eesejbzog.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dmuuqmc.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\djzobvavx.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dgppwo.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dgckkqqq.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dfswulgomz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ctxnogspj.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\cbqynozbpo.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\bsxkwl.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\azuxhafgo.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\auemdu.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\kragnbr.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\eewo.ini
2014-06-27 13:14:37 ----D---- C:\Temp
2014-06-12 15:30:12 ----D---- C:\Documents and Settings\Profik\Data aplikací\Mozilla
2014-06-12 15:30:03 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-06-12 15:30:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Mozilla
2014-06-12 15:29:55 ----D---- C:\Program Files\Mozilla Firefox
2014-06-07 18:28:01 ----D---- C:\Program Files\QuadCoreM2
2014-06-05 22:28:08 ----A---- C:\WINDOWS\system32\drivers\PnkBstrK.sys
2014-06-05 22:28:08 ----A---- C:\Documents and Settings\Profik\Data aplikací\PnkBstrK.sys
2014-06-05 22:27:47 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2014-06-05 22:27:41 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2014-06-05 22:09:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\EA Core
2014-06-05 22:07:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\EA Logs
2014-06-05 22:02:02 ----HD---- C:\Program Files\Common Files\EAInstaller
2014-06-05 21:04:09 ----D---- C:\Program Files\Origin Games
2014-06-05 20:43:16 ----D---- C:\Documents and Settings\Profik\Data aplikací\Origin
2014-06-05 20:40:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Origin
2014-06-05 20:40:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts

======List of files/folders modified in the last 1 month======

2014-07-04 15:11:37 ----D---- C:\Documents and Settings\Profik\Data aplikací\TS3Client
2014-07-04 13:20:12 ----D---- C:\WINDOWS
2014-07-04 13:19:45 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-07-04 13:18:21 ----RD---- C:\Program Files
2014-07-04 13:09:13 ----D---- C:\WINDOWS\system32\drivers\etc
2014-07-04 13:08:09 ----D---- C:\WINDOWS\Prefetch
2014-07-04 13:08:05 ----D---- C:\WINDOWS\system32
2014-07-04 12:53:09 ----D---- C:\WINDOWS\system32\CatRoot2
2014-07-04 12:34:29 ----D---- C:\Program Files\Common Files
2014-07-04 12:29:27 ----D---- C:\Program Files\Steam
2014-07-04 11:04:51 ----D---- C:\WINDOWS\system32\drivers
2014-07-04 11:04:42 ----SD---- C:\WINDOWS\Tasks
2014-07-04 11:03:39 ----D---- C:\Program Files\IObit
2014-06-29 18:47:54 ----D---- C:\WINDOWS\Minidump
2014-06-28 17:35:54 ----D---- C:\Documents and Settings\Profik\Data aplikací\uTorrent
2014-06-28 10:15:47 ----D---- C:\WINDOWS\SoftwareDistribution
2014-06-28 10:14:28 ----D---- C:\WINDOWS\Debug
2014-06-28 00:42:15 ----D---- C:\Program Files\Garena Plus
2014-06-28 00:42:14 ----D---- C:\Program Files\Warcraft III
2014-06-28 00:42:14 ----D---- C:\Program Files\Ventrilo
2014-06-28 00:37:38 ----SHD---- C:\WINDOWS\Installer
2014-06-28 00:37:20 ----DC---- C:\WINDOWS\system32\DRVSTORE
2014-06-28 00:37:17 ----HD---- C:\WINDOWS\inf
2014-06-28 00:30:50 ----HD---- C:\Program Files\InstallShield Installation Information
2014-06-28 00:29:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-06-27 20:01:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\GarenaMessenger
2014-06-27 20:01:23 ----D---- C:\Documents and Settings\Profik\Data aplikací\GarenaPlus
2014-06-26 15:17:53 ----D---- C:\Documents and Settings\Profik\Data aplikací\Skype
2014-06-14 12:34:23 ----D---- C:\Program Files\Electronic Arts
2014-06-14 11:56:44 ----D---- C:\WINDOWS\system32\DirectX
2014-06-14 11:56:43 ----RSD---- C:\WINDOWS\assembly
2014-06-14 11:54:03 ----D---- C:\Documents and Settings
2014-06-11 21:21:12 ----D---- C:\Program Files\winrar 4.11 full cz 32bit
2014-06-11 15:58:39 ----D---- C:\WINDOWS\system32\MRT
2014-06-11 15:49:56 ----A---- C:\WINDOWS\system32\MRT.exe
2014-06-07 16:58:33 ----D---- C:\WINDOWS\Logs
2014-06-06 19:26:11 ----D---- C:\Program Files\EA GAMES
2014-06-05 22:47:00 ----D---- C:\Documents and Settings\Profik\Data aplikací\Hamachi
2014-06-05 22:27:39 ----D---- C:\WINDOWS\system32\LogFiles

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2013-11-08 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2013-11-08 178304]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2014-05-01 643072]
R1 aswRdr;aswRdr; \??\C:\WINDOWS\system32\drivers\aswRdr.sys []
R1 aswSnx;aswSnx; \??\C:\WINDOWS\system32\drivers\aswSnx.sys []
R1 aswSP;aswSP; \??\C:\WINDOWS\system32\drivers\aswSP.sys []
R1 aswTdi;aswTdi; \??\C:\WINDOWS\system32\drivers\aswTdi.sys []
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2013-04-15 113608]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 aswFsBlk;aswFsBlk; \??\C:\WINDOWS\system32\drivers\aswFsBlk.sys []
R2 aswMonFlt;aswMonFlt; \??\C:\WINDOWS\system32\drivers\aswMonFlt.sys []
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2013-12-17 239928]
R3 dtscsi;dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys [2014-05-01 223128]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2014-04-25 25280]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2013-12-13 5672032]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 VIAudio;Vinyl AC'97 Audio Controller (WDM); C:\WINDOWS\system32\drivers\vinyl97.sys [2014-04-17 207488]
S3 EagleXNt;EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys []
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files\Garena Plus\Room\safedrv.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys []
S3 senfilt;senfilt; C:\WINDOWS\system32\drivers\senfilt.sys [2004-09-17 732928]
S3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2005-03-22 260224]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINDOWS\system32\DRIVERS\ss_bbus.sys [2012-06-27 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys [2012-06-27 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys [2012-06-27 123648]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-11-08 50344]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2014-03-17 182696]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2014-06-05 75136]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2014-06-06 189248]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-22 116648]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2013-12-03 2151200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-22 116648]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-06 119408]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2013-02-06 4545768]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Re: Prosím o kontrolu mého logu

Napsal: 04 črc 2014 16:38
od cernohous13
Stáhni OTM z jednoho odkazu a rozbal nejlépe na plochu.
http://oldtimer.geekstogo.com/OTM.exe
http://www.itxassociates.com/OT-Tools/OTM.exe

Spusť program „OTM.exe“ (pro Vistu a Win7 – pravým a „Run As Administrator“).
Do okna pod žlutou čáru vlož celý text zeleným písmem ze „Scriptu“

Klikni na červené „MoveIt!“

Při nabídce restartu „YES“
a log potom najdeš v C:\_OTM\MovedFiles\ - dej mi ho sem na kontrolu
Script OTM

Kód: Vybrat vše

:Commands
[emptytemp]
[emptyflash]
[emptyjava]
[clearallrestorepoints]

:Files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp /s
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\WGASetup.job - C:\WINDOWS\system32\KB905474\wgasetup.exe /autoauto 
C:\WINDOWS\zoek-delete.exe
C:\zoek_backup
C:\AdwCleaner
C:\WINDOWS\system32\yeqc.ini
C:\WINDOWS\system32\xitroqxj.dat
C:\WINDOWS\system32\xhepiahgu.ini
C:\WINDOWS\system32\xdu.dat
C:\WINDOWS\system32\xabxrnwognq.ini
C:\WINDOWS\system32\uaqqwmjt.ini
C:\WINDOWS\system32\tgp.dat
C:\WINDOWS\system32\okbzdweogsf.ini
C:\WINDOWS\system32\netcd.ini
C:\WINDOWS\system32\mxdvmytw.ini
C:\WINDOWS\system32\kaddzumq.ini
C:\WINDOWS\system32\jxqxva.ini
C:\WINDOWS\system32\ifvbafbi.dat
C:\WINDOWS\system32\hgdxppghmnp.dat
C:\WINDOWS\system32\gbx.ini
C:\WINDOWS\system32\dmtlsnues.dat
C:\WINDOWS\system32\cntaml.ini
C:\WINDOWS\system32\cbgvboorrjj.dat
C:\WINDOWS\system32\aclcvmx.ini
C:\WINDOWS\system32\zyadeizbstq.ini
C:\WINDOWS\system32\zmpm.dat
C:\WINDOWS\system32\zlvlgaoro.dat
C:\WINDOWS\system32\zbu.ini
C:\WINDOWS\system32\yruogei.ini
C:\WINDOWS\system32\yqwnxmuqkr.ini
C:\WINDOWS\system32\ynbpico.ini
C:\WINDOWS\system32\yft.ini
C:\WINDOWS\system32\yfddtyco.ini
C:\WINDOWS\system32\xrjmwls.ini
C:\WINDOWS\system32\xratz.ini
C:\WINDOWS\system32\xnrwoffi.ini
C:\WINDOWS\system32\xkiazoygsu.dat
C:\WINDOWS\system32\xhliavnncf.ini
C:\WINDOWS\system32\xhi.dat
C:\WINDOWS\system32\xei.ini
C:\WINDOWS\system32\xbwudob.ini
C:\WINDOWS\system32\wztapis.ini
C:\WINDOWS\system32\wvpmojcpagc.ini
C:\WINDOWS\system32\wuienx.ini
C:\WINDOWS\system32\wmaeoulj.ini
C:\WINDOWS\system32\wjd.ini
C:\WINDOWS\system32\wgfzxqxc.dat
C:\WINDOWS\system32\vwx.ini
C:\WINDOWS\system32\vwvpxtf.dat
C:\WINDOWS\system32\vtccpjjxhbl.ini
C:\WINDOWS\system32\vpymgh.ini
C:\WINDOWS\system32\vky.dat
C:\WINDOWS\system32\vhgdwwy.ini
C:\WINDOWS\system32\vexcv.ini
C:\WINDOWS\system32\uuknvmo.ini
C:\WINDOWS\system32\upqsk.dat
C:\WINDOWS\system32\uilhoi.dat
C:\WINDOWS\system32\ugh.ini
C:\WINDOWS\system32\tubh.ini
C:\WINDOWS\system32\tmksiwyo.ini
C:\WINDOWS\system32\tjerrruiu.ini
C:\WINDOWS\system32\tgysztaa.ini
C:\WINDOWS\system32\szanch.dat
C:\WINDOWS\system32\swrosmstc.ini
C:\WINDOWS\system32\svh.dat
C:\WINDOWS\system32\surl.ini
C:\WINDOWS\system32\sthnpbr.ini
C:\WINDOWS\system32\skjqlknoa.ini
C:\WINDOWS\system32\rvitifkhda.ini
C:\WINDOWS\system32\ruwy.dat
C:\WINDOWS\system32\rtsquze.dat
C:\WINDOWS\system32\rnaxcorvnpm.ini
C:\WINDOWS\system32\rmkgnn.ini
C:\WINDOWS\system32\rfbddh.dat
C:\WINDOWS\system32\rckntimj.dat
C:\WINDOWS\system32\rbou.dat
C:\WINDOWS\system32\qzegqoobxiy.ini
C:\WINDOWS\system32\qqqewpfdl.ini
C:\WINDOWS\system32\qpghwlpi.ini
C:\WINDOWS\system32\qnretzig.ini
C:\WINDOWS\system32\qheefqe.dat
C:\WINDOWS\system32\qbdvroefxtf.ini
C:\WINDOWS\system32\pvsbacopgo.ini
C:\WINDOWS\system32\puxozpwjj.dat
C:\WINDOWS\system32\ptfcgaof.dat
C:\WINDOWS\system32\psxulyb.ini
C:\WINDOWS\system32\psuezqksw.dat
C:\WINDOWS\system32\pqjjgvrcrr.ini
C:\WINDOWS\system32\pplmagu.ini
C:\WINDOWS\system32\pefaimbebk.ini
C:\WINDOWS\system32\oxxpcqneqfk.dat
C:\WINDOWS\system32\onuhfaqdr.dat
C:\WINDOWS\system32\olcfhmx.ini
C:\WINDOWS\system32\ogn.ini
C:\WINDOWS\system32\ogknbwh.ini
C:\WINDOWS\system32\ocduhsoaeky.ini
C:\WINDOWS\system32\ndpxrjvfik.dat
C:\WINDOWS\system32\mpuqpwyjjoe.ini
C:\WINDOWS\system32\mlfml.ini
C:\WINDOWS\system32\mhymnl.ini
C:\WINDOWS\system32\mhefcltipun.ini
C:\WINDOWS\system32\mcrrrdylbyb.dat
C:\WINDOWS\system32\mbpbf.ini
C:\WINDOWS\system32\lxjydaq.dat
C:\WINDOWS\system32\lvjfqnrfy.dat
C:\WINDOWS\system32\lmkwvtfa.ini
C:\WINDOWS\system32\liif.ini
C:\WINDOWS\system32\lhlcj.ini
C:\WINDOWS\system32\ldna.ini
C:\WINDOWS\system32\ktkvvqws.dat
C:\WINDOWS\system32\kokjkgnayl.dat
C:\WINDOWS\system32\kgqeevfnt.dat
C:\WINDOWS\system32\kfkegdfzsmf.dat
C:\WINDOWS\system32\kblu.ini
C:\WINDOWS\system32\ixrmyzmuf.ini
C:\WINDOWS\system32\itshnv.ini
C:\WINDOWS\system32\ibqvywo.ini
C:\WINDOWS\system32\hxpuo.dat
C:\WINDOWS\system32\htzs.dat
C:\WINDOWS\system32\hqwxnfwmq.ini
C:\WINDOWS\system32\hoboh.dat
C:\WINDOWS\system32\hmzimwaq.dat
C:\WINDOWS\system32\hhxjfatux.dat
C:\WINDOWS\system32\hgu.ini
C:\WINDOWS\system32\hfaptb.dat
C:\WINDOWS\system32\hbqnkzjqm.dat
C:\WINDOWS\system32\gzswrdxw.ini
C:\WINDOWS\system32\gxveh.dat
C:\WINDOWS\system32\gxiglgpq.ini
C:\WINDOWS\system32\gswxesatox.ini
C:\WINDOWS\system32\gksspjwk.dat
C:\WINDOWS\system32\gjrxn.dat
C:\WINDOWS\system32\giemuzl.ini
C:\WINDOWS\system32\ggjxmqh.ini
C:\WINDOWS\system32\gecrm.ini
C:\WINDOWS\system32\fyvyvw.ini
C:\WINDOWS\system32\fqat.dat
C:\WINDOWS\system32\fnyj.ini
C:\WINDOWS\system32\fkuuzbgv.dat
C:\WINDOWS\system32\ezafudvoiyt.ini
C:\WINDOWS\system32\ehe.dat
C:\WINDOWS\system32\egskehx.ini
C:\WINDOWS\system32\edsljcdivuy.ini
C:\WINDOWS\system32\dxrnzku.ini
C:\WINDOWS\system32\dqajfj.ini
C:\WINDOWS\system32\cqbt.ini
C:\WINDOWS\system32\civwzqm.ini
C:\WINDOWS\system32\cfclssx.ini
C:\WINDOWS\system32\cdntf.dat
C:\WINDOWS\system32\bzyz.dat
C:\WINDOWS\system32\bsmobir.dat
C:\WINDOWS\system32\blxcchdo.dat
C:\WINDOWS\system32\aso.dat
C:\WINDOWS\system32\arembuqqlhl.ini
C:\WINDOWS\system32\apluecjxljh.ini
C:\WINDOWS\system32\ajfm.ini
C:\WINDOWS\rnni.ini
C:\WINDOWS\qgqkumwr.ini
C:\WINDOWS\fas.ini
C:\WINDOWS\err.ini
C:\WINDOWS\ecisfvuhpa.ini
C:\WINDOWS\system32\zzmbkjttcv.ini
C:\WINDOWS\system32\zhbezzk.ini
C:\WINDOWS\system32\yztg.dat
C:\WINDOWS\system32\ywcotf.ini
C:\WINDOWS\system32\ybcwdcj.ini
C:\WINDOWS\system32\wvmaql.ini
C:\WINDOWS\system32\wtkvqxla.ini
C:\WINDOWS\system32\wmcwjfwebcg.dat
C:\WINDOWS\system32\wjjkwjxof.dat
C:\WINDOWS\system32\vekhfmquvd.dat
C:\WINDOWS\system32\uhgxcxne.ini
C:\WINDOWS\system32\ubomomrwsdk.dat
C:\WINDOWS\system32\tttpgilubhz.ini
C:\WINDOWS\system32\tcu.ini
C:\WINDOWS\system32\swmx.dat
C:\WINDOWS\system32\sqrvkkbktxz.dat
C:\WINDOWS\system32\sfsz.dat
C:\WINDOWS\system32\rzuc.ini
C:\WINDOWS\system32\rumiqlhw.dat
C:\WINDOWS\system32\riffaw.ini
C:\WINDOWS\system32\rifbww.ini
C:\WINDOWS\system32\rhw.dat
C:\WINDOWS\system32\qxbus.dat
C:\WINDOWS\system32\qsopsnklrnj.dat
C:\WINDOWS\system32\qrpcq.dat
C:\WINDOWS\system32\pedcjlq.ini
C:\WINDOWS\system32\pcpmvigyknw.dat
C:\WINDOWS\system32\ousspnt.ini
C:\WINDOWS\system32\oicryjbsxhd.ini
C:\WINDOWS\system32\mwuwz.dat
C:\WINDOWS\system32\mbufohzbd.dat
C:\WINDOWS\system32\lwcnbd.ini
C:\WINDOWS\system32\lvzw.dat
C:\WINDOWS\system32\lnm.ini
C:\WINDOWS\system32\lffhqjpt.dat
C:\WINDOWS\system32\jvanbm.ini
C:\WINDOWS\system32\jscxtijpp.ini
C:\WINDOWS\system32\jecbuzopv.ini
C:\WINDOWS\system32\ivz.ini
C:\WINDOWS\system32\isnvgwxvzx.ini
C:\WINDOWS\system32\imisiwl.ini
C:\WINDOWS\system32\ikvd.ini
C:\WINDOWS\system32\iduxw.ini
C:\WINDOWS\system32\ict.ini
C:\WINDOWS\system32\hulemjbpzih.dat
C:\WINDOWS\system32\htubwk.ini
C:\WINDOWS\system32\gcgii.ini
C:\WINDOWS\system32\fmlgoxxnn.ini
C:\WINDOWS\system32\fhagevihj.dat
C:\WINDOWS\system32\epuzw.ini
C:\WINDOWS\system32\dkfd.ini
C:\WINDOWS\system32\detwvkklv.ini
C:\WINDOWS\system32\defhdp.ini
C:\WINDOWS\system32\byoqvakieh.ini
C:\WINDOWS\system32\bxqecmpfn.ini
C:\WINDOWS\system32\bulcyfilrrd.dat
C:\WINDOWS\system32\betjex.ini
C:\WINDOWS\system32\ayyyufnvi.ini
C:\WINDOWS\system32\akjgqsepny.ini
C:\WINDOWS\system32\ajnzyssdz.dat
C:\WINDOWS\system32\aesvs.dat
C:\WINDOWS\refyhravcw.dat
C:\WINDOWS\pxluctu.dat
C:\WINDOWS\baxqskha.dat
C:\WINDOWS\xibfo.dat
C:\WINDOWS\system32\zvxuplfqaiv.dat
C:\WINDOWS\system32\zmulmsalvp.ini
C:\WINDOWS\system32\zgtn.dat
C:\WINDOWS\system32\yfguqg.dat
C:\WINDOWS\system32\xhxj.ini
C:\WINDOWS\system32\xbeumyws.ini
C:\WINDOWS\system32\vuzy.ini
C:\WINDOWS\system32\uvhkeoo.dat
C:\WINDOWS\system32\ujupkolaxz.ini
C:\WINDOWS\system32\udixx.ini
C:\WINDOWS\system32\tixbprzs.dat
C:\WINDOWS\system32\srt.ini
C:\WINDOWS\system32\sntlrnm.dat
C:\WINDOWS\system32\slfzi.ini
C:\WINDOWS\system32\skcx.dat
C:\WINDOWS\system32\sjzadmi.ini
C:\WINDOWS\system32\rpz.ini
C:\WINDOWS\system32\qttwzyei.dat
C:\WINDOWS\system32\qqqt.ini
C:\WINDOWS\system32\pqognjycvt.dat
C:\WINDOWS\system32\pjtdqi.ini
C:\WINDOWS\system32\phcioojd.ini
C:\WINDOWS\system32\pclkwlz.ini
C:\WINDOWS\system32\pathdekgnl.dat
C:\WINDOWS\system32\otvbczqzr.dat
C:\WINDOWS\system32\otorwgb.ini
C:\WINDOWS\system32\oofzxmm.dat
C:\WINDOWS\system32\oofsbkfk.ini
C:\WINDOWS\system32\ooaomuyhvz.ini
C:\WINDOWS\system32\olhdsirhbjm.dat
C:\WINDOWS\system32\ntpp.ini
C:\WINDOWS\system32\npuailglpt.dat
C:\WINDOWS\system32\narceunvfsr.ini
C:\WINDOWS\system32\mwzhlh.ini
C:\WINDOWS\system32\mvhxlyyr.dat
C:\WINDOWS\system32\minowwpnhw.dat
C:\WINDOWS\system32\mflohpswrxl.dat
C:\WINDOWS\system32\maynwlp.ini
C:\WINDOWS\system32\lqya.dat
C:\WINDOWS\system32\kppamcnflm.dat
C:\WINDOWS\system32\knk.ini
C:\WINDOWS\system32\kkrk.ini
C:\WINDOWS\system32\kjvzwobzke.ini
C:\WINDOWS\system32\jvpytddxshm.ini
C:\WINDOWS\system32\jazdltqdat.ini
C:\WINDOWS\system32\ithugwck.dat
C:\WINDOWS\system32\ilppyukvb.ini
C:\WINDOWS\system32\hxokmtz.ini
C:\WINDOWS\system32\hrfumedgw.ini
C:\WINDOWS\system32\hiushfclfla.ini
C:\WINDOWS\system32\gwegf.dat
C:\WINDOWS\system32\ghdvcccqxcv.ini
C:\WINDOWS\system32\fzzu.dat
C:\WINDOWS\system32\fnxe.dat
C:\WINDOWS\system32\eesejbzog.ini
C:\WINDOWS\system32\dmuuqmc.ini
C:\WINDOWS\system32\djzobvavx.ini
C:\WINDOWS\system32\dgppwo.dat
C:\WINDOWS\system32\dgckkqqq.ini
C:\WINDOWS\system32\dfswulgomz.ini
C:\WINDOWS\system32\ctxnogspj.ini
C:\WINDOWS\system32\cbqynozbpo.ini
C:\WINDOWS\system32\bsxkwl.dat
C:\WINDOWS\system32\azuxhafgo.ini
C:\WINDOWS\system32\auemdu.ini
C:\WINDOWS\kragnbr.dat
C:\WINDOWS\eewo.ini

:Reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"KernelFaultCheck"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Profik^Nabídka Start^Programy^Po spuštění^abb278f5f94f5be17c28e4761048b650.exe]

:Services
JavaQuickStarterService
:arrow: + přidej nový RSIT

Re: Prosím o kontrolu mého logu

Napsal: 04 črc 2014 16:55
od Camron
Hodilo mi to dva logy - Error: Unable to interpret <C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler> in the current context!
Error: Unable to interpret <C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c> in the current context!
Error: Unable to interpret <C:\WINDOWS\tasks\WGASetup.job - C:\WINDOWS\system32\KB905474\wgasetup.exe /autoauto > in the current context!
Error: Unable to interpret <C:\WINDOWS\zoek-delete.exe> in the current context!
Error: Unable to interpret <C:\zoek_backup> in the current context!
Error: Unable to interpret <C:\AdwCleaner> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yeqc.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xitroqxj.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xhepiahgu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xdu.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xabxrnwognq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\uaqqwmjt.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tgp.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\okbzdweogsf.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\netcd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mxdvmytw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kaddzumq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\jxqxva.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ifvbafbi.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hgdxppghmnp.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gbx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dmtlsnues.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\cntaml.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\cbgvboorrjj.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\aclcvmx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zyadeizbstq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zmpm.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zlvlgaoro.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zbu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yruogei.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yqwnxmuqkr.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ynbpico.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yft.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yfddtyco.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xrjmwls.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xratz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xnrwoffi.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xkiazoygsu.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xhliavnncf.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xhi.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xei.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xbwudob.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wztapis.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wvpmojcpagc.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wuienx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wmaeoulj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wjd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wgfzxqxc.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vwx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vwvpxtf.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vtccpjjxhbl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vpymgh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vky.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vhgdwwy.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vexcv.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\uuknvmo.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\upqsk.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\uilhoi.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ugh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tubh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tmksiwyo.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tjerrruiu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tgysztaa.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\szanch.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\swrosmstc.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\svh.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\surl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\sthnpbr.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\skjqlknoa.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rvitifkhda.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ruwy.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rtsquze.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rnaxcorvnpm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rmkgnn.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rfbddh.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rckntimj.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rbou.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qzegqoobxiy.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qqqewpfdl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qpghwlpi.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qnretzig.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qheefqe.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qbdvroefxtf.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pvsbacopgo.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\puxozpwjj.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ptfcgaof.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\psxulyb.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\psuezqksw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pqjjgvrcrr.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pplmagu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pefaimbebk.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\oxxpcqneqfk.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\onuhfaqdr.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\olcfhmx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ogn.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ogknbwh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ocduhsoaeky.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ndpxrjvfik.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mpuqpwyjjoe.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mlfml.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mhymnl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mhefcltipun.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mcrrrdylbyb.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mbpbf.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lxjydaq.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lvjfqnrfy.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lmkwvtfa.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\liif.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lhlcj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ldna.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ktkvvqws.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kokjkgnayl.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kgqeevfnt.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kfkegdfzsmf.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kblu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ixrmyzmuf.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\itshnv.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ibqvywo.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hxpuo.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\htzs.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hqwxnfwmq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hoboh.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hmzimwaq.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hhxjfatux.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hgu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hfaptb.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hbqnkzjqm.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gzswrdxw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gxveh.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gxiglgpq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gswxesatox.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gksspjwk.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gjrxn.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\giemuzl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ggjxmqh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gecrm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fyvyvw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fqat.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fnyj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fkuuzbgv.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ezafudvoiyt.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ehe.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\egskehx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\edsljcdivuy.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dxrnzku.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dqajfj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\cqbt.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\civwzqm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\cfclssx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\cdntf.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\bzyz.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\bsmobir.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\blxcchdo.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\aso.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\arembuqqlhl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\apluecjxljh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ajfm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\rnni.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\qgqkumwr.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\fas.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\err.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\ecisfvuhpa.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zzmbkjttcv.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zhbezzk.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yztg.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ywcotf.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ybcwdcj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wvmaql.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wtkvqxla.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wmcwjfwebcg.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wjjkwjxof.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vekhfmquvd.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\uhgxcxne.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ubomomrwsdk.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tttpgilubhz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tcu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\swmx.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\sqrvkkbktxz.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\sfsz.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rzuc.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rumiqlhw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\riffaw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rifbww.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rhw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qxbus.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qsopsnklrnj.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qrpcq.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pedcjlq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pcpmvigyknw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ousspnt.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\oicryjbsxhd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mwuwz.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mbufohzbd.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lwcnbd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lvzw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lnm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lffhqjpt.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\jvanbm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\jscxtijpp.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\jecbuzopv.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ivz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\isnvgwxvzx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\imisiwl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ikvd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\iduxw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ict.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hulemjbpzih.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\htubwk.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gcgii.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fmlgoxxnn.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fhagevihj.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\epuzw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dkfd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\detwvkklv.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\defhdp.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\byoqvakieh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\bxqecmpfn.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\bulcyfilrrd.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\betjex.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ayyyufnvi.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\akjgqsepny.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ajnzyssdz.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\aesvs.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\refyhravcw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\pxluctu.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\baxqskha.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\xibfo.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zvxuplfqaiv.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zmulmsalvp.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zgtn.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yfguqg.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xhxj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xbeumyws.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vuzy.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\uvhkeoo.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ujupkolaxz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\udixx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tixbprzs.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\srt.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\sntlrnm.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\slfzi.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\skcx.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\sjzadmi.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rpz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qttwzyei.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qqqt.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pqognjycvt.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pjtdqi.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\phcioojd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pclkwlz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pathdekgnl.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\otvbczqzr.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\otorwgb.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\oofzxmm.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\oofsbkfk.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ooaomuyhvz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\olhdsirhbjm.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ntpp.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\npuailglpt.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\narceunvfsr.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mwzhlh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mvhxlyyr.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\minowwpnhw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mflohpswrxl.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\maynwlp.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lqya.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kppamcnflm.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\knk.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kkrk.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kjvzwobzke.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\jvpytddxshm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\jazdltqdat.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ithugwck.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ilppyukvb.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hxokmtz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hrfumedgw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hiushfclfla.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gwegf.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ghdvcccqxcv.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fzzu.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fnxe.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\eesejbzog.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dmuuqmc.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\djzobvavx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dgppwo.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dgckkqqq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dfswulgomz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ctxnogspj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\cbqynozbpo.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\bsxkwl.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\azuxhafgo.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\auemdu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\kragnbr.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\eewo.ini> in the current context!
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\KernelFaultCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Profik^Nabídka Start^Programy^Po spuštění^abb278f5f94f5be17c28e4761048b650.exe\ deleted successfully.
========== SERVICES/DRIVERS ==========
Service JavaQuickStarterService stopped successfully!
Service JavaQuickStarterService deleted successfully!

OTM by OldTimer - Version 3.1.21.0 log created on 07042014_174655


DRUHÝ

Files moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

RSIT LOG:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Profik at 2014-07-04 17:53:58
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 23 GB (30%) free of 76 GB
Total RAM: 1014 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:54:03, on 4.7.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Profik\Dokumenty\Downloads\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\Profik.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 4509 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\WGASetup.job - C:\WINDOWS\system32\KB905474\wgasetup.exe /autoauto

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Profik\Data aplikací\Mozilla\Firefox\Profiles\l0ckzaxo.default

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.55.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@t.garena.com/garenatalk]
"Description"=Garena Talk Plugin
"Path"=C:\Program Files\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeExManDetect]
"Description"=
"Path"=C:\Program Files\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-03-17 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-03-17 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2004-10-14 1404928]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-11-08 3568312]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2013-12-13 131072]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2013-12-13 163840]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2013-12-13 135168]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2013-12-13 204800]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:rundll32"
"C:\Program Files\Warcraft III\Warcraft III.exe"="C:\Program Files\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\Program Files\Java\jre7\bin\javaw.exe"="C:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe"="C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe:*:Enabled:Counter-Strike"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\EA Sports\NHL 09\nhl2009.exe"="C:\Program Files\EA Sports\NHL 09\nhl2009.exe:*:Enabled:nhl2009"
"C:\Program Files\Ventrilo\ventrilo_srv.exe"="C:\Program Files\Ventrilo\ventrilo_srv.exe:*:Enabled:ventrilo_srv"
"C:\Documents and Settings\Profik\Data aplikací\uTorrent\utorrent.exe"="C:\Documents and Settings\Profik\Data aplikací\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\GameforgeLive\gfl_client.exe"="C:\Program Files\GameforgeLive\gfl_client.exe:*:Enabled:Gameforge Live"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Ekura\game.exe"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Ekura\game.exe:*:Enabled:game"
"C:\Program Files\QuadCoreM2\pack\core.bin"="C:\Program Files\QuadCoreM2\pack\core.bin:*:Enabled:core"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Firenze2 Version 1.2\Firenze2.exe"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Firenze2 Version 1.2\Firenze2.exe:*:Enabled:Metin2Client"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Attomey ---\metin2client.bin"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Attomey ---\metin2client.bin:*:Enabled:metin2client"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\NewGeneration\Microsoft.WindowsLauncher.dll"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\NewGeneration\Microsoft.WindowsLauncher.dll:*:Enabled:Metin2Client"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"MSACM.MSNAUDIO"=msnaudio.acm
"msacm.vorbis"=vorbis.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.VP60"=vp6vfw.dll
"vidc.VP61"=vp6vfw.dll
"vidc.VP62"=vp6vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.tscc"=C:\WINDOWS\system32\tsccvid.dll
"vidc.tsc2"=C:\WINDOWS\system32\tsc2_codec32.dll
"VIDC.FPS1"=frapsvid.dll

======List of files/folders created in the last 1 month======

2014-07-04 17:43:00 ----SHD---- C:\RECYCLER
2014-07-04 17:42:45 ----D---- C:\_OTM
2014-07-04 13:18:31 ----A---- C:\WINDOWS\zoek-delete.exe
2014-07-04 13:18:30 ----D---- C:\WINDOWS\Temp
2014-07-04 13:08:04 ----D---- C:\zoek_backup
2014-07-04 12:49:12 ----A---- C:\WINDOWS\system32\sqlite3.dll
2014-07-04 12:48:13 ----D---- C:\AdwCleaner
2014-07-04 12:29:43 ----D---- C:\WINDOWS\ERUNT
2014-07-04 10:24:13 ----D---- C:\Program Files\trend micro
2014-07-04 10:24:12 ----D---- C:\rsit
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\yeqc.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xitroqxj.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xhepiahgu.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xdu.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xabxrnwognq.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\uaqqwmjt.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\tgp.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\okbzdweogsf.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\netcd.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\mxdvmytw.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\kaddzumq.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\jxqxva.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\ifvbafbi.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\hgdxppghmnp.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\gbx.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\dmtlsnues.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\cntaml.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\cbgvboorrjj.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\aclcvmx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zyadeizbstq.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zmpm.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zlvlgaoro.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zbu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yruogei.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yqwnxmuqkr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ynbpico.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yft.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yfddtyco.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xrjmwls.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xratz.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xnrwoffi.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xkiazoygsu.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xhliavnncf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xhi.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xei.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xbwudob.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wztapis.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wvpmojcpagc.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wuienx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wmaeoulj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wjd.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wgfzxqxc.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vwx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vwvpxtf.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vtccpjjxhbl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vpymgh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vky.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vhgdwwy.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vexcv.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\uuknvmo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\upqsk.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\uilhoi.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ugh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tubh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tmksiwyo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tjerrruiu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tgysztaa.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\szanch.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\swrosmstc.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\svh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\surl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\sthnpbr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\skjqlknoa.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rvitifkhda.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ruwy.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rtsquze.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rnaxcorvnpm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rmkgnn.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rfbddh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rckntimj.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rbou.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qzegqoobxiy.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qqqewpfdl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qpghwlpi.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qnretzig.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qheefqe.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qbdvroefxtf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pvsbacopgo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\puxozpwjj.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ptfcgaof.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\psxulyb.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\psuezqksw.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pqjjgvrcrr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pplmagu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pefaimbebk.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\oxxpcqneqfk.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\onuhfaqdr.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\olcfhmx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ogn.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ogknbwh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ocduhsoaeky.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ndpxrjvfik.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mpuqpwyjjoe.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mlfml.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mhymnl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mhefcltipun.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mcrrrdylbyb.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mbpbf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lxjydaq.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lvjfqnrfy.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lmkwvtfa.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\liif.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lhlcj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ldna.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ktkvvqws.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kokjkgnayl.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kgqeevfnt.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kfkegdfzsmf.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kblu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ixrmyzmuf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\itshnv.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ibqvywo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hxpuo.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\htzs.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hqwxnfwmq.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hoboh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hmzimwaq.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hhxjfatux.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hgu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hfaptb.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hbqnkzjqm.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gzswrdxw.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gxveh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gxiglgpq.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gswxesatox.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gksspjwk.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gjrxn.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\giemuzl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ggjxmqh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gecrm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fyvyvw.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fqat.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fnyj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fkuuzbgv.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ezafudvoiyt.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ehe.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\egskehx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\edsljcdivuy.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\dxrnzku.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\dqajfj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\cqbt.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\civwzqm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\cfclssx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\cdntf.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\bzyz.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\bsmobir.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\blxcchdo.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\aso.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\arembuqqlhl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\apluecjxljh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ajfm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\rnni.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\qgqkumwr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\fas.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\err.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\ecisfvuhpa.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\zzmbkjttcv.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\zhbezzk.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\yztg.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ywcotf.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ybcwdcj.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wvmaql.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wtkvqxla.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wmcwjfwebcg.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wjjkwjxof.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\vekhfmquvd.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\uhgxcxne.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ubomomrwsdk.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\tttpgilubhz.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\tcu.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\swmx.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\sqrvkkbktxz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\sfsz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rzuc.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rumiqlhw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\riffaw.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rifbww.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rhw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\qxbus.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\qsopsnklrnj.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\qrpcq.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\pedcjlq.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\pcpmvigyknw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ousspnt.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\oicryjbsxhd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\mwuwz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\mbufohzbd.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lwcnbd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lvzw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lnm.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lffhqjpt.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\jvanbm.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\jscxtijpp.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\jecbuzopv.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ivz.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\isnvgwxvzx.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\imisiwl.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ikvd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\iduxw.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ict.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\hulemjbpzih.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\htubwk.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\gcgii.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\fmlgoxxnn.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\fhagevihj.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\epuzw.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\dkfd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\detwvkklv.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\defhdp.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\byoqvakieh.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\bxqecmpfn.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\bulcyfilrrd.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\betjex.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ayyyufnvi.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\akjgqsepny.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ajnzyssdz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\aesvs.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\refyhravcw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\pxluctu.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\baxqskha.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\xibfo.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\zvxuplfqaiv.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\zmulmsalvp.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\zgtn.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\yfguqg.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\xhxj.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\xbeumyws.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\vuzy.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\uvhkeoo.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ujupkolaxz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\udixx.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\tixbprzs.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\srt.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\sntlrnm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\slfzi.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\skcx.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\sjzadmi.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\rpz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\qttwzyei.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\qqqt.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pqognjycvt.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pjtdqi.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\phcioojd.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pclkwlz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pathdekgnl.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\otvbczqzr.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\otorwgb.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\oofzxmm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\oofsbkfk.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ooaomuyhvz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\olhdsirhbjm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ntpp.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\npuailglpt.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\narceunvfsr.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\mwzhlh.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\mvhxlyyr.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\minowwpnhw.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\mflohpswrxl.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\maynwlp.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\lqya.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\kppamcnflm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\knk.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\kkrk.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\kjvzwobzke.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\jvpytddxshm.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\jazdltqdat.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ithugwck.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ilppyukvb.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\hxokmtz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\hrfumedgw.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\hiushfclfla.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\gwegf.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ghdvcccqxcv.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\fzzu.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\fnxe.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\eesejbzog.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dmuuqmc.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\djzobvavx.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dgppwo.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dgckkqqq.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dfswulgomz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ctxnogspj.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\cbqynozbpo.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\bsxkwl.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\azuxhafgo.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\auemdu.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\kragnbr.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\eewo.ini
2014-06-27 13:14:37 ----D---- C:\Temp
2014-06-12 15:30:12 ----D---- C:\Documents and Settings\Profik\Data aplikací\Mozilla
2014-06-12 15:30:03 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-06-12 15:30:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Mozilla
2014-06-12 15:29:55 ----D---- C:\Program Files\Mozilla Firefox
2014-06-07 18:28:01 ----D---- C:\Program Files\QuadCoreM2
2014-06-05 22:28:08 ----A---- C:\WINDOWS\system32\drivers\PnkBstrK.sys
2014-06-05 22:28:08 ----A---- C:\Documents and Settings\Profik\Data aplikací\PnkBstrK.sys
2014-06-05 22:27:47 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2014-06-05 22:27:41 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2014-06-05 22:09:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\EA Core
2014-06-05 22:07:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\EA Logs
2014-06-05 22:02:02 ----HD---- C:\Program Files\Common Files\EAInstaller
2014-06-05 21:04:09 ----D---- C:\Program Files\Origin Games
2014-06-05 20:43:16 ----D---- C:\Documents and Settings\Profik\Data aplikací\Origin
2014-06-05 20:40:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Origin
2014-06-05 20:40:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts

======List of files/folders modified in the last 1 month======

2014-07-04 17:48:04 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-07-04 17:43:21 ----SHD---- C:\WINDOWS\Installer
2014-07-04 17:43:16 ----D---- C:\WINDOWS\AppPatch
2014-07-04 17:42:58 ----D---- C:\WINDOWS\system32
2014-07-04 17:42:58 ----D---- C:\WINDOWS
2014-07-04 16:52:17 ----D---- C:\Documents and Settings\Profik\Data aplikací\TS3Client
2014-07-04 13:18:21 ----RD---- C:\Program Files
2014-07-04 13:09:13 ----D---- C:\WINDOWS\system32\drivers\etc
2014-07-04 13:08:09 ----D---- C:\WINDOWS\Prefetch
2014-07-04 12:53:09 ----D---- C:\WINDOWS\system32\CatRoot2
2014-07-04 12:34:29 ----D---- C:\Program Files\Common Files
2014-07-04 12:29:27 ----D---- C:\Program Files\Steam
2014-07-04 11:04:51 ----D---- C:\WINDOWS\system32\drivers
2014-07-04 11:04:42 ----SD---- C:\WINDOWS\Tasks
2014-07-04 11:03:39 ----D---- C:\Program Files\IObit
2014-06-29 18:47:54 ----D---- C:\WINDOWS\Minidump
2014-06-28 17:35:54 ----D---- C:\Documents and Settings\Profik\Data aplikací\uTorrent
2014-06-28 10:15:47 ----D---- C:\WINDOWS\SoftwareDistribution
2014-06-28 10:14:28 ----D---- C:\WINDOWS\Debug
2014-06-28 00:42:15 ----D---- C:\Program Files\Garena Plus
2014-06-28 00:42:14 ----D---- C:\Program Files\Warcraft III
2014-06-28 00:42:14 ----D---- C:\Program Files\Ventrilo
2014-06-28 00:37:20 ----DC---- C:\WINDOWS\system32\DRVSTORE
2014-06-28 00:37:17 ----HD---- C:\WINDOWS\inf
2014-06-28 00:30:50 ----HD---- C:\Program Files\InstallShield Installation Information
2014-06-28 00:29:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-06-27 20:01:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\GarenaMessenger
2014-06-27 20:01:23 ----D---- C:\Documents and Settings\Profik\Data aplikací\GarenaPlus
2014-06-26 15:17:53 ----D---- C:\Documents and Settings\Profik\Data aplikací\Skype
2014-06-14 12:34:23 ----D---- C:\Program Files\Electronic Arts
2014-06-14 11:56:44 ----D---- C:\WINDOWS\system32\DirectX
2014-06-14 11:56:43 ----RSD---- C:\WINDOWS\assembly
2014-06-14 11:54:03 ----D---- C:\Documents and Settings
2014-06-11 21:21:12 ----D---- C:\Program Files\winrar 4.11 full cz 32bit
2014-06-11 15:58:39 ----D---- C:\WINDOWS\system32\MRT
2014-06-11 15:49:56 ----A---- C:\WINDOWS\system32\MRT.exe
2014-06-07 16:58:33 ----D---- C:\WINDOWS\Logs
2014-06-06 19:26:11 ----D---- C:\Program Files\EA GAMES
2014-06-05 22:47:00 ----D---- C:\Documents and Settings\Profik\Data aplikací\Hamachi
2014-06-05 22:27:39 ----D---- C:\WINDOWS\system32\LogFiles

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2013-11-08 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2013-11-08 178304]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2014-05-01 643072]
R1 aswRdr;aswRdr; \??\C:\WINDOWS\system32\drivers\aswRdr.sys []
R1 aswSnx;aswSnx; \??\C:\WINDOWS\system32\drivers\aswSnx.sys []
R1 aswSP;aswSP; \??\C:\WINDOWS\system32\drivers\aswSP.sys []
R1 aswTdi;aswTdi; \??\C:\WINDOWS\system32\drivers\aswTdi.sys []
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2013-04-15 113608]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 aswFsBlk;aswFsBlk; \??\C:\WINDOWS\system32\drivers\aswFsBlk.sys []
R2 aswMonFlt;aswMonFlt; \??\C:\WINDOWS\system32\drivers\aswMonFlt.sys []
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2013-12-17 239928]
R3 dtscsi;dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys [2014-05-01 223128]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2014-04-25 25280]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2013-12-13 5672032]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 VIAudio;Vinyl AC'97 Audio Controller (WDM); C:\WINDOWS\system32\drivers\vinyl97.sys [2014-04-17 207488]
S3 EagleXNt;EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys []
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files\Garena Plus\Room\safedrv.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys []
S3 senfilt;senfilt; C:\WINDOWS\system32\drivers\senfilt.sys [2004-09-17 732928]
S3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2005-03-22 260224]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINDOWS\system32\DRIVERS\ss_bbus.sys [2012-06-27 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys [2012-06-27 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys [2012-06-27 123648]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-11-08 50344]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2014-06-05 75136]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2014-06-06 189248]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-22 116648]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2013-12-03 2151200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-22 116648]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-06 119408]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2013-02-06 4545768]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Re: Prosím o kontrolu mého logu

Napsal: 04 črc 2014 19:55
od cernohous13
nezkopíroval jsi celý zelený script - musí tam být na začátku

Kód: Vybrat vše

:Commands
[emptytemp]
[emptyflash]
[emptyjava]
[clearallrestorepoints]

:Files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp /s
+ vše ostatní
tak se zkus opravit :(

Re: Prosím o kontrolu mého logu

Napsal: 04 črc 2014 20:32
od Camron
Snad jsem se polepšil - znovu ten log -
Error: Unable to interpret <C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler> in the current context!
Error: Unable to interpret <C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c> in the current context!
Error: Unable to interpret <C:\WINDOWS\tasks\WGASetup.job - C:\WINDOWS\system32\KB905474\wgasetup.exe /autoauto > in the current context!
Error: Unable to interpret <C:\WINDOWS\zoek-delete.exe> in the current context!
Error: Unable to interpret <C:\zoek_backup> in the current context!
Error: Unable to interpret <C:\AdwCleaner> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yeqc.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xitroqxj.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xhepiahgu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xdu.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xabxrnwognq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\uaqqwmjt.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tgp.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\okbzdweogsf.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\netcd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mxdvmytw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kaddzumq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\jxqxva.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ifvbafbi.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hgdxppghmnp.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gbx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dmtlsnues.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\cntaml.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\cbgvboorrjj.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\aclcvmx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zyadeizbstq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zmpm.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zlvlgaoro.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zbu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yruogei.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yqwnxmuqkr.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ynbpico.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yft.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yfddtyco.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xrjmwls.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xratz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xnrwoffi.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xkiazoygsu.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xhliavnncf.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xhi.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xei.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xbwudob.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wztapis.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wvpmojcpagc.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wuienx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wmaeoulj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wjd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wgfzxqxc.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vwx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vwvpxtf.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vtccpjjxhbl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vpymgh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vky.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vhgdwwy.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vexcv.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\uuknvmo.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\upqsk.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\uilhoi.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ugh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tubh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tmksiwyo.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tjerrruiu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tgysztaa.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\szanch.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\swrosmstc.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\svh.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\surl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\sthnpbr.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\skjqlknoa.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rvitifkhda.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ruwy.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rtsquze.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rnaxcorvnpm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rmkgnn.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rfbddh.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rckntimj.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rbou.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qzegqoobxiy.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qqqewpfdl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qpghwlpi.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qnretzig.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qheefqe.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qbdvroefxtf.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pvsbacopgo.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\puxozpwjj.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ptfcgaof.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\psxulyb.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\psuezqksw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pqjjgvrcrr.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pplmagu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pefaimbebk.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\oxxpcqneqfk.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\onuhfaqdr.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\olcfhmx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ogn.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ogknbwh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ocduhsoaeky.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ndpxrjvfik.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mpuqpwyjjoe.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mlfml.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mhymnl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mhefcltipun.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mcrrrdylbyb.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mbpbf.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lxjydaq.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lvjfqnrfy.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lmkwvtfa.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\liif.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lhlcj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ldna.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ktkvvqws.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kokjkgnayl.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kgqeevfnt.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kfkegdfzsmf.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kblu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ixrmyzmuf.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\itshnv.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ibqvywo.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hxpuo.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\htzs.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hqwxnfwmq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hoboh.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hmzimwaq.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hhxjfatux.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hgu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hfaptb.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hbqnkzjqm.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gzswrdxw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gxveh.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gxiglgpq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gswxesatox.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gksspjwk.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gjrxn.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\giemuzl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ggjxmqh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gecrm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fyvyvw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fqat.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fnyj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fkuuzbgv.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ezafudvoiyt.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ehe.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\egskehx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\edsljcdivuy.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dxrnzku.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dqajfj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\cqbt.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\civwzqm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\cfclssx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\cdntf.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\bzyz.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\bsmobir.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\blxcchdo.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\aso.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\arembuqqlhl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\apluecjxljh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ajfm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\rnni.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\qgqkumwr.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\fas.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\err.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\ecisfvuhpa.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zzmbkjttcv.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zhbezzk.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yztg.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ywcotf.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ybcwdcj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wvmaql.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wtkvqxla.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wmcwjfwebcg.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wjjkwjxof.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vekhfmquvd.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\uhgxcxne.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ubomomrwsdk.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tttpgilubhz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tcu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\swmx.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\sqrvkkbktxz.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\sfsz.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rzuc.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rumiqlhw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\riffaw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rifbww.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rhw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qxbus.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qsopsnklrnj.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qrpcq.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pedcjlq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pcpmvigyknw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ousspnt.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\oicryjbsxhd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mwuwz.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mbufohzbd.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lwcnbd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lvzw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lnm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lffhqjpt.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\jvanbm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\jscxtijpp.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\jecbuzopv.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ivz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\isnvgwxvzx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\imisiwl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ikvd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\iduxw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ict.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hulemjbpzih.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\htubwk.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gcgii.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fmlgoxxnn.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fhagevihj.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\epuzw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dkfd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\detwvkklv.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\defhdp.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\byoqvakieh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\bxqecmpfn.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\bulcyfilrrd.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\betjex.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ayyyufnvi.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\akjgqsepny.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ajnzyssdz.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\aesvs.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\refyhravcw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\pxluctu.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\baxqskha.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\xibfo.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zvxuplfqaiv.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zmulmsalvp.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zgtn.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yfguqg.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xhxj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xbeumyws.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vuzy.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\uvhkeoo.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ujupkolaxz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\udixx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tixbprzs.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\srt.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\sntlrnm.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\slfzi.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\skcx.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\sjzadmi.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rpz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qttwzyei.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qqqt.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pqognjycvt.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pjtdqi.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\phcioojd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pclkwlz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pathdekgnl.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\otvbczqzr.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\otorwgb.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\oofzxmm.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\oofsbkfk.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ooaomuyhvz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\olhdsirhbjm.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ntpp.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\npuailglpt.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\narceunvfsr.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mwzhlh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mvhxlyyr.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\minowwpnhw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mflohpswrxl.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\maynwlp.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lqya.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kppamcnflm.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\knk.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kkrk.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kjvzwobzke.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\jvpytddxshm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\jazdltqdat.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ithugwck.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ilppyukvb.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hxokmtz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hrfumedgw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hiushfclfla.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gwegf.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ghdvcccqxcv.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fzzu.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fnxe.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\eesejbzog.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dmuuqmc.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\djzobvavx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dgppwo.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dgckkqqq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dfswulgomz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ctxnogspj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\cbqynozbpo.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\bsxkwl.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\azuxhafgo.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\auemdu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\kragnbr.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\eewo.ini> in the current context!
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\KernelFaultCheck not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Profik^Nabídka Start^Programy^Po spuštění^abb278f5f94f5be17c28e4761048b650.exe\ not found.
========== SERVICES/DRIVERS ==========
Error: No service named JavaQuickStarterService was found to stop!
Service\Driver key JavaQuickStarterService not found.

OTM by OldTimer - Version 3.1.21.0 log created on 07042014_212312




RSIT LOG ZNOVU (PRO JISTOTU)

Logfile of random's system information tool 1.10 (written by random/random)
Run by Profik at 2014-07-04 21:30:30
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 23 GB (30%) free of 76 GB
Total RAM: 1014 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:30:35, on 4.7.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\Profik\Dokumenty\Downloads\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\Profik.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 4509 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\WGASetup.job - C:\WINDOWS\system32\KB905474\wgasetup.exe /autoauto

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Profik\Data aplikací\Mozilla\Firefox\Profiles\l0ckzaxo.default

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.55.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@t.garena.com/garenatalk]
"Description"=Garena Talk Plugin
"Path"=C:\Program Files\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeExManDetect]
"Description"=
"Path"=C:\Program Files\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-03-17 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-03-17 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2004-10-14 1404928]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-11-08 3568312]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2013-12-13 131072]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2013-12-13 163840]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2013-12-13 135168]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2013-12-13 204800]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:rundll32"
"C:\Program Files\Warcraft III\Warcraft III.exe"="C:\Program Files\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\Program Files\Java\jre7\bin\javaw.exe"="C:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe"="C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe:*:Enabled:Counter-Strike"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\EA Sports\NHL 09\nhl2009.exe"="C:\Program Files\EA Sports\NHL 09\nhl2009.exe:*:Enabled:nhl2009"
"C:\Program Files\Ventrilo\ventrilo_srv.exe"="C:\Program Files\Ventrilo\ventrilo_srv.exe:*:Enabled:ventrilo_srv"
"C:\Documents and Settings\Profik\Data aplikací\uTorrent\utorrent.exe"="C:\Documents and Settings\Profik\Data aplikací\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\GameforgeLive\gfl_client.exe"="C:\Program Files\GameforgeLive\gfl_client.exe:*:Enabled:Gameforge Live"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Ekura\game.exe"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Ekura\game.exe:*:Enabled:game"
"C:\Program Files\QuadCoreM2\pack\core.bin"="C:\Program Files\QuadCoreM2\pack\core.bin:*:Enabled:core"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Firenze2 Version 1.2\Firenze2.exe"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Firenze2 Version 1.2\Firenze2.exe:*:Enabled:Metin2Client"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Attomey ---\metin2client.bin"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\Attomey ---\metin2client.bin:*:Enabled:metin2client"
"C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\NewGeneration\Microsoft.WindowsLauncher.dll"="C:\Documents and Settings\Profik\Dokumenty\ALL SLOŽKY\Hry\NewGeneration\Microsoft.WindowsLauncher.dll:*:Enabled:Metin2Client"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"MSACM.MSNAUDIO"=msnaudio.acm
"msacm.vorbis"=vorbis.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.VP60"=vp6vfw.dll
"vidc.VP61"=vp6vfw.dll
"vidc.VP62"=vp6vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.tscc"=C:\WINDOWS\system32\tsccvid.dll
"vidc.tsc2"=C:\WINDOWS\system32\tsc2_codec32.dll
"VIDC.FPS1"=frapsvid.dll

======List of files/folders created in the last 1 month======

2014-07-04 17:43:00 ----SHD---- C:\RECYCLER
2014-07-04 17:42:45 ----D---- C:\_OTM
2014-07-04 13:18:31 ----A---- C:\WINDOWS\zoek-delete.exe
2014-07-04 13:18:30 ----D---- C:\WINDOWS\Temp
2014-07-04 13:08:04 ----D---- C:\zoek_backup
2014-07-04 12:49:12 ----A---- C:\WINDOWS\system32\sqlite3.dll
2014-07-04 12:48:13 ----D---- C:\AdwCleaner
2014-07-04 12:29:43 ----D---- C:\WINDOWS\ERUNT
2014-07-04 10:24:13 ----D---- C:\Program Files\trend micro
2014-07-04 10:24:12 ----D---- C:\rsit
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\yeqc.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xitroqxj.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xhepiahgu.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xdu.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\xabxrnwognq.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\uaqqwmjt.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\tgp.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\okbzdweogsf.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\netcd.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\mxdvmytw.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\kaddzumq.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\jxqxva.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\ifvbafbi.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\hgdxppghmnp.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\gbx.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\dmtlsnues.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\cntaml.ini
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\cbgvboorrjj.dat
2014-06-27 23:58:49 ----A---- C:\WINDOWS\system32\aclcvmx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zyadeizbstq.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zmpm.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zlvlgaoro.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\zbu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yruogei.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yqwnxmuqkr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ynbpico.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yft.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\yfddtyco.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xrjmwls.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xratz.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xnrwoffi.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xkiazoygsu.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xhliavnncf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xhi.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xei.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\xbwudob.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wztapis.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wvpmojcpagc.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wuienx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wmaeoulj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wjd.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\wgfzxqxc.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vwx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vwvpxtf.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vtccpjjxhbl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vpymgh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vky.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vhgdwwy.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\vexcv.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\uuknvmo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\upqsk.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\uilhoi.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ugh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tubh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tmksiwyo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tjerrruiu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\tgysztaa.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\szanch.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\swrosmstc.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\svh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\surl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\sthnpbr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\skjqlknoa.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rvitifkhda.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ruwy.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rtsquze.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rnaxcorvnpm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rmkgnn.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rfbddh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rckntimj.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\rbou.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qzegqoobxiy.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qqqewpfdl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qpghwlpi.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qnretzig.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qheefqe.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\qbdvroefxtf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pvsbacopgo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\puxozpwjj.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ptfcgaof.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\psxulyb.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\psuezqksw.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pqjjgvrcrr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pplmagu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\pefaimbebk.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\oxxpcqneqfk.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\onuhfaqdr.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\olcfhmx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ogn.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ogknbwh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ocduhsoaeky.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ndpxrjvfik.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mpuqpwyjjoe.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mlfml.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mhymnl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mhefcltipun.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mcrrrdylbyb.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\mbpbf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lxjydaq.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lvjfqnrfy.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lmkwvtfa.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\liif.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\lhlcj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ldna.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ktkvvqws.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kokjkgnayl.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kgqeevfnt.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kfkegdfzsmf.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\kblu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ixrmyzmuf.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\itshnv.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ibqvywo.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hxpuo.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\htzs.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hqwxnfwmq.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hoboh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hmzimwaq.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hhxjfatux.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hgu.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hfaptb.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\hbqnkzjqm.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gzswrdxw.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gxveh.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gxiglgpq.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gswxesatox.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gksspjwk.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gjrxn.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\giemuzl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ggjxmqh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\gecrm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fyvyvw.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fqat.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fnyj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\fkuuzbgv.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ezafudvoiyt.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ehe.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\egskehx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\edsljcdivuy.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\dxrnzku.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\dqajfj.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\cqbt.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\civwzqm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\cfclssx.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\cdntf.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\bzyz.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\bsmobir.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\blxcchdo.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\aso.dat
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\arembuqqlhl.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\apluecjxljh.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\system32\ajfm.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\rnni.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\qgqkumwr.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\fas.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\err.ini
2014-06-27 23:58:48 ----A---- C:\WINDOWS\ecisfvuhpa.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\zzmbkjttcv.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\zhbezzk.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\yztg.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ywcotf.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ybcwdcj.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wvmaql.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wtkvqxla.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wmcwjfwebcg.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\wjjkwjxof.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\vekhfmquvd.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\uhgxcxne.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ubomomrwsdk.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\tttpgilubhz.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\tcu.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\swmx.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\sqrvkkbktxz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\sfsz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rzuc.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rumiqlhw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\riffaw.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rifbww.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\rhw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\qxbus.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\qsopsnklrnj.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\qrpcq.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\pedcjlq.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\pcpmvigyknw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ousspnt.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\oicryjbsxhd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\mwuwz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\mbufohzbd.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lwcnbd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lvzw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lnm.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\lffhqjpt.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\jvanbm.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\jscxtijpp.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\jecbuzopv.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ivz.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\isnvgwxvzx.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\imisiwl.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ikvd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\iduxw.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ict.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\hulemjbpzih.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\htubwk.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\gcgii.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\fmlgoxxnn.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\fhagevihj.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\epuzw.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\dkfd.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\detwvkklv.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\defhdp.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\byoqvakieh.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\bxqecmpfn.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\bulcyfilrrd.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\betjex.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ayyyufnvi.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\akjgqsepny.ini
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\ajnzyssdz.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\system32\aesvs.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\refyhravcw.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\pxluctu.dat
2014-06-27 23:58:47 ----A---- C:\WINDOWS\baxqskha.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\xibfo.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\zvxuplfqaiv.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\zmulmsalvp.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\zgtn.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\yfguqg.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\xhxj.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\xbeumyws.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\vuzy.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\uvhkeoo.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ujupkolaxz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\udixx.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\tixbprzs.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\srt.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\sntlrnm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\slfzi.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\skcx.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\sjzadmi.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\rpz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\qttwzyei.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\qqqt.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pqognjycvt.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pjtdqi.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\phcioojd.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pclkwlz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\pathdekgnl.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\otvbczqzr.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\otorwgb.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\oofzxmm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\oofsbkfk.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ooaomuyhvz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\olhdsirhbjm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ntpp.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\npuailglpt.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\narceunvfsr.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\mwzhlh.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\mvhxlyyr.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\minowwpnhw.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\mflohpswrxl.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\maynwlp.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\lqya.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\kppamcnflm.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\knk.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\kkrk.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\kjvzwobzke.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\jvpytddxshm.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\jazdltqdat.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ithugwck.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ilppyukvb.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\hxokmtz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\hrfumedgw.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\hiushfclfla.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\gwegf.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ghdvcccqxcv.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\fzzu.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\fnxe.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\eesejbzog.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dmuuqmc.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\djzobvavx.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dgppwo.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dgckkqqq.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\dfswulgomz.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\ctxnogspj.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\cbqynozbpo.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\bsxkwl.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\azuxhafgo.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\system32\auemdu.ini
2014-06-27 23:58:46 ----A---- C:\WINDOWS\kragnbr.dat
2014-06-27 23:58:46 ----A---- C:\WINDOWS\eewo.ini
2014-06-27 13:14:37 ----D---- C:\Temp
2014-06-12 15:30:12 ----D---- C:\Documents and Settings\Profik\Data aplikací\Mozilla
2014-06-12 15:30:03 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-06-12 15:30:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Mozilla
2014-06-12 15:29:55 ----D---- C:\Program Files\Mozilla Firefox
2014-06-07 18:28:01 ----D---- C:\Program Files\QuadCoreM2
2014-06-05 22:28:08 ----A---- C:\WINDOWS\system32\drivers\PnkBstrK.sys
2014-06-05 22:28:08 ----A---- C:\Documents and Settings\Profik\Data aplikací\PnkBstrK.sys
2014-06-05 22:27:47 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2014-06-05 22:27:41 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2014-06-05 22:09:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\EA Core
2014-06-05 22:07:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\EA Logs
2014-06-05 22:02:02 ----HD---- C:\Program Files\Common Files\EAInstaller
2014-06-05 21:04:09 ----D---- C:\Program Files\Origin Games
2014-06-05 20:43:16 ----D---- C:\Documents and Settings\Profik\Data aplikací\Origin
2014-06-05 20:40:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Origin
2014-06-05 20:40:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts

======List of files/folders modified in the last 1 month======

2014-07-04 21:23:59 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-07-04 20:29:36 ----D---- C:\Program Files\Steam
2014-07-04 20:29:09 ----D---- C:\WINDOWS\system32\CatRoot2
2014-07-04 20:28:56 ----D---- C:\Documents and Settings\Profik\Data aplikací\Hamachi
2014-07-04 17:57:21 ----D---- C:\Documents and Settings\Profik\Data aplikací\TS3Client
2014-07-04 17:43:21 ----SHD---- C:\WINDOWS\Installer
2014-07-04 17:43:16 ----D---- C:\WINDOWS\AppPatch
2014-07-04 17:42:58 ----D---- C:\WINDOWS\system32
2014-07-04 17:42:58 ----D---- C:\WINDOWS
2014-07-04 13:18:21 ----RD---- C:\Program Files
2014-07-04 13:09:13 ----D---- C:\WINDOWS\system32\drivers\etc
2014-07-04 13:08:09 ----D---- C:\WINDOWS\Prefetch
2014-07-04 12:34:29 ----D---- C:\Program Files\Common Files
2014-07-04 11:04:51 ----D---- C:\WINDOWS\system32\drivers
2014-07-04 11:04:42 ----SD---- C:\WINDOWS\Tasks
2014-07-04 11:03:39 ----D---- C:\Program Files\IObit
2014-06-29 18:47:54 ----D---- C:\WINDOWS\Minidump
2014-06-28 17:35:54 ----D---- C:\Documents and Settings\Profik\Data aplikací\uTorrent
2014-06-28 10:15:47 ----D---- C:\WINDOWS\SoftwareDistribution
2014-06-28 10:14:28 ----D---- C:\WINDOWS\Debug
2014-06-28 00:42:15 ----D---- C:\Program Files\Garena Plus
2014-06-28 00:42:14 ----D---- C:\Program Files\Warcraft III
2014-06-28 00:42:14 ----D---- C:\Program Files\Ventrilo
2014-06-28 00:37:20 ----DC---- C:\WINDOWS\system32\DRVSTORE
2014-06-28 00:37:17 ----HD---- C:\WINDOWS\inf
2014-06-28 00:30:50 ----HD---- C:\Program Files\InstallShield Installation Information
2014-06-28 00:29:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-06-27 20:01:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\GarenaMessenger
2014-06-27 20:01:23 ----D---- C:\Documents and Settings\Profik\Data aplikací\GarenaPlus
2014-06-26 15:17:53 ----D---- C:\Documents and Settings\Profik\Data aplikací\Skype
2014-06-14 12:34:23 ----D---- C:\Program Files\Electronic Arts
2014-06-14 11:56:44 ----D---- C:\WINDOWS\system32\DirectX
2014-06-14 11:56:43 ----RSD---- C:\WINDOWS\assembly
2014-06-14 11:54:03 ----D---- C:\Documents and Settings
2014-06-11 21:21:12 ----D---- C:\Program Files\winrar 4.11 full cz 32bit
2014-06-11 15:58:39 ----D---- C:\WINDOWS\system32\MRT
2014-06-11 15:49:56 ----A---- C:\WINDOWS\system32\MRT.exe
2014-06-07 16:58:33 ----D---- C:\WINDOWS\Logs
2014-06-06 19:26:11 ----D---- C:\Program Files\EA GAMES
2014-06-05 22:27:39 ----D---- C:\WINDOWS\system32\LogFiles

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2013-11-08 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2013-11-08 178304]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2014-05-01 643072]
R1 aswRdr;aswRdr; \??\C:\WINDOWS\system32\drivers\aswRdr.sys []
R1 aswSnx;aswSnx; \??\C:\WINDOWS\system32\drivers\aswSnx.sys []
R1 aswSP;aswSP; \??\C:\WINDOWS\system32\drivers\aswSP.sys []
R1 aswTdi;aswTdi; \??\C:\WINDOWS\system32\drivers\aswTdi.sys []
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2013-04-15 113608]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 aswFsBlk;aswFsBlk; \??\C:\WINDOWS\system32\drivers\aswFsBlk.sys []
R2 aswMonFlt;aswMonFlt; \??\C:\WINDOWS\system32\drivers\aswMonFlt.sys []
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2013-12-17 239928]
R3 dtscsi;dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys [2014-05-01 223128]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2014-04-25 25280]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2013-12-13 5672032]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 VIAudio;Vinyl AC'97 Audio Controller (WDM); C:\WINDOWS\system32\drivers\vinyl97.sys [2014-04-17 207488]
S3 EagleXNt;EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys []
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files\Garena Plus\Room\safedrv.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys []
S3 senfilt;senfilt; C:\WINDOWS\system32\drivers\senfilt.sys [2004-09-17 732928]
S3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2005-03-22 260224]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINDOWS\system32\DRIVERS\ss_bbus.sys [2012-06-27 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys [2012-06-27 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys [2012-06-27 123648]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-11-08 50344]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2014-06-05 75136]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2014-06-06 189248]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-22 116648]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2013-12-03 2151200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-22 116648]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-06 119408]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2013-02-06 4545768]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Re: Prosím o kontrolu mého logu

Napsal: 05 črc 2014 05:06
od cernohous13
:roll: bohužel úplně stejně špatné jako předchozí pokus

zkusíme po částech

Kód: Vybrat vše

:Commands
[emptytemp]
[emptyflash]
[emptyjava]
[clearallrestorepoints]

:Files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp /s
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\WGASetup.job - C:\WINDOWS\system32\KB905474\wgasetup.exe /autoauto
C:\WINDOWS\zoek-delete.exe
C:\zoek_backup
C:\AdwCleaner

Re: Prosím o kontrolu mého logu

Napsal: 05 črc 2014 09:16
od Camron
Error: Unable to interpret <C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler> in the current context!
Error: Unable to interpret <C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c> in the current context!
Error: Unable to interpret <C:\WINDOWS\tasks\WGASetup.job - C:\WINDOWS\system32\KB905474\wgasetup.exe /autoauto> in the current context!
Error: Unable to interpret <C:\WINDOWS\zoek-delete.exe> in the current context!
Error: Unable to interpret <C:\zoek_backup> in the current context!
Error: Unable to interpret <C:\AdwCleaner> in the current context!

OTM by OldTimer - Version 3.1.21.0 log created on 07052014_095752

Už od tam těch logů, mi pořád naskočilo GoogleUpdateTaskMachineUA.job a ptalo se mě to v jakém programu to chci otevřít, dal jsem storno, hodilo to nějakou chybičku.

Re: Prosím o kontrolu mého logu

Napsal: 05 črc 2014 09:18
od Camron
Dodávám zbytek - konečně to nehodilo žádnou chybu, prostě problém je v tom Google něco. :-D

Error: Unable to interpret <C:\WINDOWS\system32\yeqc.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xitroqxj.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xhepiahgu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xdu.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xabxrnwognq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\uaqqwmjt.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tgp.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\okbzdweogsf.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\netcd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mxdvmytw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kaddzumq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\jxqxva.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ifvbafbi.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hgdxppghmnp.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gbx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dmtlsnues.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\cntaml.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\cbgvboorrjj.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\aclcvmx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zyadeizbstq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zmpm.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zlvlgaoro.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zbu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yruogei.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yqwnxmuqkr.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ynbpico.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yft.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yfddtyco.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xrjmwls.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xratz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xnrwoffi.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xkiazoygsu.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xhliavnncf.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xhi.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xei.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xbwudob.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wztapis.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wvpmojcpagc.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wuienx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wmaeoulj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wjd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wgfzxqxc.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vwx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vwvpxtf.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vtccpjjxhbl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vpymgh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vky.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vhgdwwy.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vexcv.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\uuknvmo.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\upqsk.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\uilhoi.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ugh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tubh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tmksiwyo.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tjerrruiu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tgysztaa.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\szanch.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\swrosmstc.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\svh.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\surl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\sthnpbr.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\skjqlknoa.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rvitifkhda.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ruwy.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rtsquze.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rnaxcorvnpm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rmkgnn.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rfbddh.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rckntimj.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rbou.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qzegqoobxiy.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qqqewpfdl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qpghwlpi.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qnretzig.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qheefqe.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qbdvroefxtf.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pvsbacopgo.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\puxozpwjj.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ptfcgaof.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\psxulyb.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\psuezqksw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pqjjgvrcrr.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pplmagu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pefaimbebk.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\oxxpcqneqfk.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\onuhfaqdr.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\olcfhmx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ogn.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ogknbwh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ocduhsoaeky.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ndpxrjvfik.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mpuqpwyjjoe.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mlfml.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mhymnl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mhefcltipun.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mcrrrdylbyb.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mbpbf.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lxjydaq.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lvjfqnrfy.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lmkwvtfa.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\liif.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lhlcj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ldna.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ktkvvqws.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kokjkgnayl.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kgqeevfnt.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kfkegdfzsmf.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kblu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ixrmyzmuf.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\itshnv.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ibqvywo.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hxpuo.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\htzs.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hqwxnfwmq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hoboh.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hmzimwaq.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hhxjfatux.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hgu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hfaptb.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hbqnkzjqm.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gzswrdxw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gxveh.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gxiglgpq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gswxesatox.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gksspjwk.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gjrxn.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\giemuzl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ggjxmqh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gecrm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fyvyvw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fqat.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fnyj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fkuuzbgv.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ezafudvoiyt.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ehe.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\egskehx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\edsljcdivuy.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dxrnzku.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dqajfj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\cqbt.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\civwzqm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\cfclssx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\cdntf.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\bzyz.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\bsmobir.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\blxcchdo.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\aso.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\arembuqqlhl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\apluecjxljh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ajfm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\rnni.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\qgqkumwr.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\fas.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\err.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\ecisfvuhpa.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zzmbkjttcv.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zhbezzk.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yztg.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ywcotf.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ybcwdcj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wvmaql.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wtkvqxla.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wmcwjfwebcg.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wjjkwjxof.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vekhfmquvd.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\uhgxcxne.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ubomomrwsdk.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tttpgilubhz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tcu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\swmx.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\sqrvkkbktxz.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\sfsz.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rzuc.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rumiqlhw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\riffaw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rifbww.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rhw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qxbus.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qsopsnklrnj.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qrpcq.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pedcjlq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pcpmvigyknw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ousspnt.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\oicryjbsxhd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mwuwz.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mbufohzbd.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lwcnbd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lvzw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lnm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lffhqjpt.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\jvanbm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\jscxtijpp.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\jecbuzopv.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ivz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\isnvgwxvzx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\imisiwl.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ikvd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\iduxw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ict.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hulemjbpzih.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\htubwk.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gcgii.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fmlgoxxnn.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fhagevihj.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\epuzw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dkfd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\detwvkklv.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\defhdp.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\byoqvakieh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\bxqecmpfn.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\bulcyfilrrd.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\betjex.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ayyyufnvi.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\akjgqsepny.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ajnzyssdz.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\aesvs.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\refyhravcw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\pxluctu.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\baxqskha.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\xibfo.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zvxuplfqaiv.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zmulmsalvp.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\zgtn.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\yfguqg.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xhxj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\xbeumyws.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\vuzy.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\uvhkeoo.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ujupkolaxz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\udixx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\tixbprzs.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\srt.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\sntlrnm.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\slfzi.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\skcx.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\sjzadmi.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\rpz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qttwzyei.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\qqqt.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pqognjycvt.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pjtdqi.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\phcioojd.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pclkwlz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\pathdekgnl.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\otvbczqzr.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\otorwgb.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\oofzxmm.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\oofsbkfk.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ooaomuyhvz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\olhdsirhbjm.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ntpp.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\npuailglpt.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\narceunvfsr.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mwzhlh.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mvhxlyyr.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\minowwpnhw.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\mflohpswrxl.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\maynwlp.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lqya.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kppamcnflm.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\knk.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kkrk.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\kjvzwobzke.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\jvpytddxshm.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\jazdltqdat.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ithugwck.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ilppyukvb.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hxokmtz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hrfumedgw.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\hiushfclfla.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\gwegf.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ghdvcccqxcv.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fzzu.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\fnxe.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\eesejbzog.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dmuuqmc.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\djzobvavx.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dgppwo.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dgckkqqq.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\dfswulgomz.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ctxnogspj.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\cbqynozbpo.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\bsxkwl.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\azuxhafgo.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\auemdu.ini> in the current context!
Error: Unable to interpret <C:\WINDOWS\kragnbr.dat> in the current context!
Error: Unable to interpret <C:\WINDOWS\eewo.ini> in the current context!
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\KernelFaultCheck not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Profik^Nabídka Start^Programy^Po spuštění^abb278f5f94f5be17c28e4761048b650.exe\ not found.
========== SERVICES/DRIVERS ==========
Error: No service named JavaQuickStarterService was found to stop!
Service\Driver key JavaQuickStarterService not found.

OTM by OldTimer - Version 3.1.21.0 log created on 07052014_101748

Re: Prosím o kontrolu mého logu

Napsal: 05 črc 2014 09:27
od Márty84
Zdravim a omlouvam se za vstup :oops:


Vy to tam asi porad spatne kopirujete. Musite zkopirovat fakt vsechno, presne jak to tam je, vcetne mezer a te dvojtecky pred slovem commands atd. Proste cele.

Takze to zkuste jeste jednou. Tady je skript

Kód: Vybrat vše

:Commands
[emptytemp]
[emptyflash]
[emptyjava]
[clearallrestorepoints]

:Files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp /s
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job 
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
C:\WINDOWS\tasks\WGASetup.job
C:\WINDOWS\zoek-delete.exe
C:\zoek_backup
C:\AdwCleaner
C:\WINDOWS\system32\yeqc.ini
C:\WINDOWS\system32\xitroqxj.dat
C:\WINDOWS\system32\xhepiahgu.ini
C:\WINDOWS\system32\xdu.dat
C:\WINDOWS\system32\xabxrnwognq.ini
C:\WINDOWS\system32\uaqqwmjt.ini
C:\WINDOWS\system32\tgp.dat
C:\WINDOWS\system32\okbzdweogsf.ini
C:\WINDOWS\system32\netcd.ini
C:\WINDOWS\system32\mxdvmytw.ini
C:\WINDOWS\system32\kaddzumq.ini
C:\WINDOWS\system32\jxqxva.ini
C:\WINDOWS\system32\ifvbafbi.dat
C:\WINDOWS\system32\hgdxppghmnp.dat
C:\WINDOWS\system32\gbx.ini
C:\WINDOWS\system32\dmtlsnues.dat
C:\WINDOWS\system32\cntaml.ini
C:\WINDOWS\system32\cbgvboorrjj.dat
C:\WINDOWS\system32\aclcvmx.ini
C:\WINDOWS\system32\zyadeizbstq.ini
C:\WINDOWS\system32\zmpm.dat
C:\WINDOWS\system32\zlvlgaoro.dat
C:\WINDOWS\system32\zbu.ini
C:\WINDOWS\system32\yruogei.ini
C:\WINDOWS\system32\yqwnxmuqkr.ini
C:\WINDOWS\system32\ynbpico.ini
C:\WINDOWS\system32\yft.ini
C:\WINDOWS\system32\yfddtyco.ini
C:\WINDOWS\system32\xrjmwls.ini
C:\WINDOWS\system32\xratz.ini
C:\WINDOWS\system32\xnrwoffi.ini
C:\WINDOWS\system32\xkiazoygsu.dat
C:\WINDOWS\system32\xhliavnncf.ini
C:\WINDOWS\system32\xhi.dat
C:\WINDOWS\system32\xei.ini
C:\WINDOWS\system32\xbwudob.ini
C:\WINDOWS\system32\wztapis.ini
C:\WINDOWS\system32\wvpmojcpagc.ini
C:\WINDOWS\system32\wuienx.ini
C:\WINDOWS\system32\wmaeoulj.ini
C:\WINDOWS\system32\wjd.ini
C:\WINDOWS\system32\wgfzxqxc.dat
C:\WINDOWS\system32\vwx.ini
C:\WINDOWS\system32\vwvpxtf.dat
C:\WINDOWS\system32\vtccpjjxhbl.ini
C:\WINDOWS\system32\vpymgh.ini
C:\WINDOWS\system32\vky.dat
C:\WINDOWS\system32\vhgdwwy.ini
C:\WINDOWS\system32\vexcv.ini
C:\WINDOWS\system32\uuknvmo.ini
C:\WINDOWS\system32\upqsk.dat
C:\WINDOWS\system32\uilhoi.dat
C:\WINDOWS\system32\ugh.ini
C:\WINDOWS\system32\tubh.ini
C:\WINDOWS\system32\tmksiwyo.ini
C:\WINDOWS\system32\tjerrruiu.ini
C:\WINDOWS\system32\tgysztaa.ini
C:\WINDOWS\system32\szanch.dat
C:\WINDOWS\system32\swrosmstc.ini
C:\WINDOWS\system32\svh.dat
C:\WINDOWS\system32\surl.ini
C:\WINDOWS\system32\sthnpbr.ini
C:\WINDOWS\system32\skjqlknoa.ini
C:\WINDOWS\system32\rvitifkhda.ini
C:\WINDOWS\system32\ruwy.dat
C:\WINDOWS\system32\rtsquze.dat
C:\WINDOWS\system32\rnaxcorvnpm.ini
C:\WINDOWS\system32\rmkgnn.ini
C:\WINDOWS\system32\rfbddh.dat
C:\WINDOWS\system32\rckntimj.dat
C:\WINDOWS\system32\rbou.dat
C:\WINDOWS\system32\qzegqoobxiy.ini
C:\WINDOWS\system32\qqqewpfdl.ini
C:\WINDOWS\system32\qpghwlpi.ini
C:\WINDOWS\system32\qnretzig.ini
C:\WINDOWS\system32\qheefqe.dat
C:\WINDOWS\system32\qbdvroefxtf.ini
C:\WINDOWS\system32\pvsbacopgo.ini
C:\WINDOWS\system32\puxozpwjj.dat
C:\WINDOWS\system32\ptfcgaof.dat
C:\WINDOWS\system32\psxulyb.ini
C:\WINDOWS\system32\psuezqksw.dat
C:\WINDOWS\system32\pqjjgvrcrr.ini
C:\WINDOWS\system32\pplmagu.ini
C:\WINDOWS\system32\pefaimbebk.ini
C:\WINDOWS\system32\oxxpcqneqfk.dat
C:\WINDOWS\system32\onuhfaqdr.dat
C:\WINDOWS\system32\olcfhmx.ini
C:\WINDOWS\system32\ogn.ini
C:\WINDOWS\system32\ogknbwh.ini
C:\WINDOWS\system32\ocduhsoaeky.ini
C:\WINDOWS\system32\ndpxrjvfik.dat
C:\WINDOWS\system32\mpuqpwyjjoe.ini
C:\WINDOWS\system32\mlfml.ini
C:\WINDOWS\system32\mhymnl.ini
C:\WINDOWS\system32\mhefcltipun.ini
C:\WINDOWS\system32\mcrrrdylbyb.dat
C:\WINDOWS\system32\mbpbf.ini
C:\WINDOWS\system32\lxjydaq.dat
C:\WINDOWS\system32\lvjfqnrfy.dat
C:\WINDOWS\system32\lmkwvtfa.ini
C:\WINDOWS\system32\liif.ini
C:\WINDOWS\system32\lhlcj.ini
C:\WINDOWS\system32\ldna.ini
C:\WINDOWS\system32\ktkvvqws.dat
C:\WINDOWS\system32\kokjkgnayl.dat
C:\WINDOWS\system32\kgqeevfnt.dat
C:\WINDOWS\system32\kfkegdfzsmf.dat
C:\WINDOWS\system32\kblu.ini
C:\WINDOWS\system32\ixrmyzmuf.ini
C:\WINDOWS\system32\itshnv.ini
C:\WINDOWS\system32\ibqvywo.ini
C:\WINDOWS\system32\hxpuo.dat
C:\WINDOWS\system32\htzs.dat
C:\WINDOWS\system32\hqwxnfwmq.ini
C:\WINDOWS\system32\hoboh.dat
C:\WINDOWS\system32\hmzimwaq.dat
C:\WINDOWS\system32\hhxjfatux.dat
C:\WINDOWS\system32\hgu.ini
C:\WINDOWS\system32\hfaptb.dat
C:\WINDOWS\system32\hbqnkzjqm.dat
C:\WINDOWS\system32\gzswrdxw.ini
C:\WINDOWS\system32\gxveh.dat
C:\WINDOWS\system32\gxiglgpq.ini
C:\WINDOWS\system32\gswxesatox.ini
C:\WINDOWS\system32\gksspjwk.dat
C:\WINDOWS\system32\gjrxn.dat
C:\WINDOWS\system32\giemuzl.ini
C:\WINDOWS\system32\ggjxmqh.ini
C:\WINDOWS\system32\gecrm.ini
C:\WINDOWS\system32\fyvyvw.ini
C:\WINDOWS\system32\fqat.dat
C:\WINDOWS\system32\fnyj.ini
C:\WINDOWS\system32\fkuuzbgv.dat
C:\WINDOWS\system32\ezafudvoiyt.ini
C:\WINDOWS\system32\ehe.dat
C:\WINDOWS\system32\egskehx.ini
C:\WINDOWS\system32\edsljcdivuy.ini
C:\WINDOWS\system32\dxrnzku.ini
C:\WINDOWS\system32\dqajfj.ini
C:\WINDOWS\system32\cqbt.ini
C:\WINDOWS\system32\civwzqm.ini
C:\WINDOWS\system32\cfclssx.ini
C:\WINDOWS\system32\cdntf.dat
C:\WINDOWS\system32\bzyz.dat
C:\WINDOWS\system32\bsmobir.dat
C:\WINDOWS\system32\blxcchdo.dat
C:\WINDOWS\system32\aso.dat
C:\WINDOWS\system32\arembuqqlhl.ini
C:\WINDOWS\system32\apluecjxljh.ini
C:\WINDOWS\system32\ajfm.ini
C:\WINDOWS\rnni.ini
C:\WINDOWS\qgqkumwr.ini
C:\WINDOWS\fas.ini
C:\WINDOWS\err.ini
C:\WINDOWS\ecisfvuhpa.ini
C:\WINDOWS\system32\zzmbkjttcv.ini
C:\WINDOWS\system32\zhbezzk.ini
C:\WINDOWS\system32\yztg.dat
C:\WINDOWS\system32\ywcotf.ini
C:\WINDOWS\system32\ybcwdcj.ini
C:\WINDOWS\system32\wvmaql.ini
C:\WINDOWS\system32\wtkvqxla.ini
C:\WINDOWS\system32\wmcwjfwebcg.dat
C:\WINDOWS\system32\wjjkwjxof.dat
C:\WINDOWS\system32\vekhfmquvd.dat
C:\WINDOWS\system32\uhgxcxne.ini
C:\WINDOWS\system32\ubomomrwsdk.dat
C:\WINDOWS\system32\tttpgilubhz.ini
C:\WINDOWS\system32\tcu.ini
C:\WINDOWS\system32\swmx.dat
C:\WINDOWS\system32\sqrvkkbktxz.dat
C:\WINDOWS\system32\sfsz.dat
C:\WINDOWS\system32\rzuc.ini
C:\WINDOWS\system32\rumiqlhw.dat
C:\WINDOWS\system32\riffaw.ini
C:\WINDOWS\system32\rifbww.ini
C:\WINDOWS\system32\rhw.dat
C:\WINDOWS\system32\qxbus.dat
C:\WINDOWS\system32\qsopsnklrnj.dat
C:\WINDOWS\system32\qrpcq.dat
C:\WINDOWS\system32\pedcjlq.ini
C:\WINDOWS\system32\pcpmvigyknw.dat
C:\WINDOWS\system32\ousspnt.ini
C:\WINDOWS\system32\oicryjbsxhd.ini
C:\WINDOWS\system32\mwuwz.dat
C:\WINDOWS\system32\mbufohzbd.dat
C:\WINDOWS\system32\lwcnbd.ini
C:\WINDOWS\system32\lvzw.dat
C:\WINDOWS\system32\lnm.ini
C:\WINDOWS\system32\lffhqjpt.dat
C:\WINDOWS\system32\jvanbm.ini
C:\WINDOWS\system32\jscxtijpp.ini
C:\WINDOWS\system32\jecbuzopv.ini
C:\WINDOWS\system32\ivz.ini
C:\WINDOWS\system32\isnvgwxvzx.ini
C:\WINDOWS\system32\imisiwl.ini
C:\WINDOWS\system32\ikvd.ini
C:\WINDOWS\system32\iduxw.ini
C:\WINDOWS\system32\ict.ini
C:\WINDOWS\system32\hulemjbpzih.dat
C:\WINDOWS\system32\htubwk.ini
C:\WINDOWS\system32\gcgii.ini
C:\WINDOWS\system32\fmlgoxxnn.ini
C:\WINDOWS\system32\fhagevihj.dat
C:\WINDOWS\system32\epuzw.ini
C:\WINDOWS\system32\dkfd.ini
C:\WINDOWS\system32\detwvkklv.ini
C:\WINDOWS\system32\defhdp.ini
C:\WINDOWS\system32\byoqvakieh.ini
C:\WINDOWS\system32\bxqecmpfn.ini
C:\WINDOWS\system32\bulcyfilrrd.dat
C:\WINDOWS\system32\betjex.ini
C:\WINDOWS\system32\ayyyufnvi.ini
C:\WINDOWS\system32\akjgqsepny.ini
C:\WINDOWS\system32\ajnzyssdz.dat
C:\WINDOWS\system32\aesvs.dat
C:\WINDOWS\refyhravcw.dat
C:\WINDOWS\pxluctu.dat
C:\WINDOWS\baxqskha.dat
C:\WINDOWS\xibfo.dat
C:\WINDOWS\system32\zvxuplfqaiv.dat
C:\WINDOWS\system32\zmulmsalvp.ini
C:\WINDOWS\system32\zgtn.dat
C:\WINDOWS\system32\yfguqg.dat
C:\WINDOWS\system32\xhxj.ini
C:\WINDOWS\system32\xbeumyws.ini
C:\WINDOWS\system32\vuzy.ini
C:\WINDOWS\system32\uvhkeoo.dat
C:\WINDOWS\system32\ujupkolaxz.ini
C:\WINDOWS\system32\udixx.ini
C:\WINDOWS\system32\tixbprzs.dat
C:\WINDOWS\system32\srt.ini
C:\WINDOWS\system32\sntlrnm.dat
C:\WINDOWS\system32\slfzi.ini
C:\WINDOWS\system32\skcx.dat
C:\WINDOWS\system32\sjzadmi.ini
C:\WINDOWS\system32\rpz.ini
C:\WINDOWS\system32\qttwzyei.dat
C:\WINDOWS\system32\qqqt.ini
C:\WINDOWS\system32\pqognjycvt.dat
C:\WINDOWS\system32\pjtdqi.ini
C:\WINDOWS\system32\phcioojd.ini
C:\WINDOWS\system32\pclkwlz.ini
C:\WINDOWS\system32\pathdekgnl.dat
C:\WINDOWS\system32\otvbczqzr.dat
C:\WINDOWS\system32\otorwgb.ini
C:\WINDOWS\system32\oofzxmm.dat
C:\WINDOWS\system32\oofsbkfk.ini
C:\WINDOWS\system32\ooaomuyhvz.ini
C:\WINDOWS\system32\olhdsirhbjm.dat
C:\WINDOWS\system32\ntpp.ini
C:\WINDOWS\system32\npuailglpt.dat
C:\WINDOWS\system32\narceunvfsr.ini
C:\WINDOWS\system32\mwzhlh.ini
C:\WINDOWS\system32\mvhxlyyr.dat
C:\WINDOWS\system32\minowwpnhw.dat
C:\WINDOWS\system32\mflohpswrxl.dat
C:\WINDOWS\system32\maynwlp.ini
C:\WINDOWS\system32\lqya.dat
C:\WINDOWS\system32\kppamcnflm.dat
C:\WINDOWS\system32\knk.ini
C:\WINDOWS\system32\kkrk.ini
C:\WINDOWS\system32\kjvzwobzke.ini
C:\WINDOWS\system32\jvpytddxshm.ini
C:\WINDOWS\system32\jazdltqdat.ini
C:\WINDOWS\system32\ithugwck.dat
C:\WINDOWS\system32\ilppyukvb.ini
C:\WINDOWS\system32\hxokmtz.ini
C:\WINDOWS\system32\hrfumedgw.ini
C:\WINDOWS\system32\hiushfclfla.ini
C:\WINDOWS\system32\gwegf.dat
C:\WINDOWS\system32\ghdvcccqxcv.ini
C:\WINDOWS\system32\fzzu.dat
C:\WINDOWS\system32\fnxe.dat
C:\WINDOWS\system32\eesejbzog.ini
C:\WINDOWS\system32\dmuuqmc.ini
C:\WINDOWS\system32\djzobvavx.ini
C:\WINDOWS\system32\dgppwo.dat
C:\WINDOWS\system32\dgckkqqq.ini
C:\WINDOWS\system32\dfswulgomz.ini
C:\WINDOWS\system32\ctxnogspj.ini
C:\WINDOWS\system32\cbqynozbpo.ini
C:\WINDOWS\system32\bsxkwl.dat
C:\WINDOWS\system32\azuxhafgo.ini
C:\WINDOWS\system32\auemdu.ini
C:\WINDOWS\kragnbr.dat
C:\WINDOWS\eewo.ini

:Reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"KernelFaultCheck"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Profik^Nabídka Start^Programy^Po spuštění^abb278f5f94f5be17c28e4761048b650.exe]

:Services
JavaQuickStarterService
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz