VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

SecurityCentral - problém

https://forum.viry.cz:443/viewtopic.php?t=95494

Stránka 1 z 2

SecurityCentral - problém

Napsal: 29 pro 2009 20:16
od petrsvetr
Dobrý den, program SecurityCentral (nevím kde se najednou vzal) mi blokuje spuštění všech programů, už se to tu řešilo, hlasí mi že programy jsou napadeny W32/Blaster.worm. Stalo se mi to na ntb ve WinVista, když se zapne nástroj Řízení uživatelských účtů, tak se ten program zablokuje hned po startu a nenaběhne, tudíž můžu normálně pracovat . Použil jsem dle rady v příšlušných threadech FixBlast, ten ale nic nenalezl. Rád bych tedy požádal o pomoc jak se zbavit tohoto problému se SecurityCentral. Přikládám logy z OTL. Díky za každou radu.

1) OTL.TXT
TL logfile created on: 29.12.2009 20:05:35 - Run 2
OTL by OldTimer - Version 3.1.20.1 Folder = C:\Users\Pelech Petr\Desktop
Windows Vista Business Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16448)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 61,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 78,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 139,92 Gb Total Space | 47,07 Gb Free Space | 33,64% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 1,55 Gb Total Space | 1,32 Gb Free Space | 84,88% Space Free | Partition Type: NTFS
Drive F: | 7,58 Gb Total Space | 0,76 Gb Free Space | 10,04% Space Free | Partition Type: NTFS
Drive G: | 3,24 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HAL8000
Current User Name: Pelech Petr
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2009.12.29 18:49:23 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Pelech Petr\Desktop\OTL.exe
PRC - [2009.12.16 20:41:21 | 00,307,672 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009.03.14 00:08:11 | 00,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2008.06.10 03:27:04 | 00,144,784 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
PRC - [2008.06.10 03:27:03 | 00,329,104 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exe
PRC - [2008.01.29 16:38:32 | 00,583,048 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
PRC - [2007.12.05 15:30:40 | 00,144,688 | R--- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
PRC - [2007.11.06 15:34:02 | 00,177,456 | ---- | M] ( Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
PRC - [2007.07.13 04:41:11 | 01,006,264 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2007.07.12 12:43:50 | 00,226,904 | ---- | M] (Macrovision Corporation) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe
PRC - [2007.07.04 13:52:00 | 00,253,000 | ---- | M] (Pinnacle Systems) -- C:\Program Files\Pinnacle\Shared Files\Programs\Remote\remoterm.exe
PRC - [2007.05.16 08:43:04 | 00,677,432 | ---- | M] () -- C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
PRC - [2007.05.16 08:27:38 | 01,209,904 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2007.05.16 08:27:28 | 00,271,920 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
PRC - [2007.05.16 08:27:16 | 00,153,136 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2007.05.08 07:38:46 | 00,540,448 | ---- | M] (PDF Complete Inc) -- C:\Program Files\PDF Complete\pdfsvc.exe
PRC - [2007.05.08 07:38:44 | 00,331,552 | ---- | M] (PDF Complete Inc) -- C:\Program Files\PDF Complete\pdfsty.exe
PRC - [2007.04.19 12:35:46 | 00,075,304 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2007.04.19 12:26:52 | 00,484,904 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
PRC - [2007.04.16 02:00:06 | 00,009,216 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exe
PRC - [2007.03.29 12:11:50 | 00,719,664 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2007.03.14 11:07:30 | 00,062,984 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
PRC - [2007.03.09 15:24:12 | 00,715,912 | ---- | M] () -- C:\Windows\SMINST\Scheduler.exe
PRC - [2007.03.01 12:18:36 | 00,472,776 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
PRC - [2007.02.07 02:30:00 | 00,065,536 | R--- | M] (Cognizance Corporation) -- C:\Program Files\Hewlett-Packard\IAM\Bin\asghost.exe
PRC - [2007.01.12 14:36:40 | 00,827,392 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PRC - [2007.01.10 15:12:08 | 00,317,128 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
PRC - [2007.01.09 14:52:36 | 00,145,184 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\pthosttr.exe
PRC - [2007.01.05 02:00:02 | 00,018,944 | ---- | M] () -- C:\Windows\System32\hpservice.exe
PRC - [2007.01.04 18:48:52 | 00,112,152 | R--- | M] (InterVideo) -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
PRC - [2006.12.15 12:08:34 | 01,097,728 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe
PRC - [2006.11.21 18:38:22 | 00,035,328 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe
PRC - [2006.11.12 11:48:46 | 00,157,592 | ---- | M] (DT Soft Ltd.) -- C:\Program Files\DAEMON Tools\daemon.exe
PRC - [2006.11.02 10:45:07 | 02,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2006.10.26 23:47:42 | 00,031,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
PRC - [2006.09.29 09:57:36 | 00,049,152 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
PRC - [2006.09.29 09:57:30 | 00,049,152 | ---- | M] (ATI Technologies Inc.) -- c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
PRC - [2006.04.14 09:07:20 | 28,933,976 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
PRC - [2005.02.16 22:11:42 | 00,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hp\HP Software Update\hpwuSchd2.exe


========== Modules (SafeList) ==========

MOD - [2009.12.29 18:49:23 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Pelech Petr\Desktop\OTL.exe
MOD - [2007.02.26 04:49:00 | 00,070,144 | R--- | M] (Bioscrypt Inc.) -- C:\Windows\System32\APSHook.dll
MOD - [2006.11.02 10:38:57 | 01,648,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (LiveUpdate Notice Ex)
SRV - [2009.03.14 00:08:07 | 00,137,200 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc)
SRV - [2008.01.29 16:38:32 | 00,583,048 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service)
SRV - [2007.12.05 15:30:40 | 00,144,688 | R--- | M] (Hewlett-Packard Development Company, L.P.) [Auto | Running] -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe -- (hpqwmiex)
SRV - [2007.07.13 04:41:10 | 00,265,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007.05.16 08:27:28 | 00,271,920 | ---- | M] (Nero AG) [On_Demand | Running] -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - [2007.05.08 07:38:46 | 00,540,448 | ---- | M] (PDF Complete Inc) [Auto | Running] -- C:\Program Files\PDF Complete\pdfsvc.exe -- (pdfcDispatcher)
SRV - [2007.04.19 12:35:46 | 00,075,304 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService)
SRV - [2007.04.16 02:00:06 | 00,009,216 | ---- | M] (Agere Systems) [Auto | Running] -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2007.03.14 11:07:30 | 00,062,984 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe -- (HP Health Check Service)
SRV - [2007.03.05 09:30:06 | 00,110,592 | ---- | M] (Hewlett-Packard Development Company, L.P.) [On_Demand | Stopped] -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe -- (Com4Qlb)
SRV - [2007.02.07 02:30:00 | 00,074,240 | R--- | M] (Cognizance Corporation) [Auto | Running] -- C:\Program Files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll -- (ASBroker)
SRV - [2007.02.02 16:59:54 | 00,565,248 | ---- | M] (ATI Technologies Inc.) [Disabled | Stopped] -- C:\Windows\System32\Ati2evxx.exe -- (Ati External Event Utility)
SRV - [2007.01.05 02:00:02 | 00,018,944 | ---- | M] () [Auto | Running] -- C:\Windows\System32\hpservice.exe -- (hpsrv)
SRV - [2007.01.04 18:48:52 | 00,112,152 | R--- | M] (InterVideo) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr)
SRV - [2006.11.06 12:31:14 | 00,887,544 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe -- (RoxMediaDB9)
SRV - [2006.11.02 13:36:11 | 00,122,880 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2006.11.01 10:17:32 | 00,073,728 | R--- | M] (MicroVision Development, Inc.) [On_Demand | Stopped] -- c:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- (stllssvr)
SRV - [2006.10.26 23:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)
SRV - [2006.10.26 18:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2006.10.26 12:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2006.06.22 06:14:00 | 00,131,584 | R--- | M] (Cognizance Corporation) [Auto | Running] -- C:\Program Files\Hewlett-Packard\IAM\Bin\ASChnl.dll -- (ASChannel)
SRV - [2006.04.14 09:07:20 | 28,933,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe -- (MSSQL$MSSMLBIZ) SQL Server (MSSMLBIZ)
SRV - [2006.04.14 09:05:58 | 00,240,416 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe -- (SQLBrowser)
SRV - [2006.04.14 09:04:54 | 00,087,840 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe -- (SQLWriter)
SRV - [2005.10.14 02:50:20 | 00,045,272 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe -- (MSSQLServerADHelper)
SRV - [2004.10.22 02:24:18 | 00,073,728 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)


========== Driver Services (SafeList) ==========

DRV - [2008.07.10 18:38:22 | 00,047,616 | ---- | M] (Aladdin Knowledge Systems) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\Haspnt.sys -- (Haspnt)
DRV - [2008.07.03 19:52:33 | 00,685,816 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008.03.28 17:24:40 | 00,101,504 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2007.06.18 15:12:04 | 00,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2007.06.14 14:41:00 | 00,466,048 | ---- | M] (LITEON) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Ltn_stk7070P.sys -- (Ltn_stk7070P)
DRV - [2007.06.13 19:30:20 | 00,013,440 | ---- | M] (LITEON) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Ltn_stkrc.sys -- (Ltn_stkrc)
DRV - [2007.05.11 11:42:48 | 00,016,432 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\btwrchid.sys -- (btwrchid)
DRV - [2007.05.11 11:42:46 | 00,081,200 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\btwavdt.sys -- (btwavdt)
DRV - [2007.05.11 11:42:46 | 00,079,664 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\btwaudio.sys -- (btwaudio)
DRV - [2007.04.16 02:00:06 | 01,161,152 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2007.04.10 14:55:28 | 00,140,808 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atswpdrv.sys -- (ATSWPDRV) (****DEBUG****) AuthenTec TruePrint USB Driver (SwipeSensor)
DRV - [2007.03.09 17:49:46 | 00,309,248 | ---- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV - [2007.02.26 15:52:22 | 00,179,712 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2007.02.02 17:09:42 | 02,385,920 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2007.01.12 14:59:02 | 00,181,432 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SynTP.sys -- (SynTP)
DRV - [2007.01.05 02:00:02 | 00,027,136 | ---- | M] (Hewlett-Packard Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Accelerometer.sys -- (Accelerometer)
DRV - [2007.01.05 02:00:02 | 00,018,944 | ---- | M] (Hewlett-Packard Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\hpdskflt.sys -- (hpdskflt)
DRV - [2006.12.13 11:49:52 | 00,534,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BCMWL6.SYS -- (BCM43XX)
DRV - [2006.12.13 11:49:52 | 00,534,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BCMWL6.SYS -- (BCM43XV)
DRV - [2006.11.02 10:51:45 | 00,900,712 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2006.11.02 10:51:38 | 00,420,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2006.11.02 10:51:34 | 00,316,520 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2006.11.02 10:51:32 | 00,297,576 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2006.11.02 10:51:25 | 00,235,112 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2006.11.02 10:51:25 | 00,232,040 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2006.11.02 10:51:00 | 00,147,048 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2006.11.02 10:50:45 | 00,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2006.11.02 10:50:41 | 00,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2006.11.02 10:50:35 | 00,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006.11.02 10:50:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006.11.02 10:50:35 | 00,098,408 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2006.11.02 10:50:24 | 00,088,680 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2006.11.02 10:50:19 | 00,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006.11.02 10:50:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006.11.02 10:50:17 | 00,041,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tpm.sys -- (TPM)
DRV - [2006.11.02 10:50:16 | 00,071,784 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2006.11.02 10:50:13 | 00,040,040 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2006.11.02 10:50:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006.11.02 10:50:10 | 00,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2006.11.02 10:50:10 | 00,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2006.11.02 10:50:10 | 00,038,504 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2)
DRV - [2006.11.02 10:50:10 | 00,037,480 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2006.11.02 10:50:09 | 00,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2006.11.02 10:50:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006.11.02 10:50:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006.11.02 10:50:05 | 00,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2006.11.02 10:50:05 | 00,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006.11.02 10:50:04 | 00,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2006.11.02 10:50:03 | 00,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006.11.02 10:49:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006.11.02 10:49:56 | 00,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006.11.02 10:49:53 | 00,028,776 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2006.11.02 10:49:30 | 00,017,512 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2006.11.02 10:49:28 | 00,016,488 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2006.11.02 10:49:20 | 00,014,952 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2006.11.02 09:25:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006.11.02 09:24:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006.11.02 09:24:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006.11.02 09:24:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006.11.02 09:24:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006.11.02 09:24:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006.11.02 08:41:50 | 00,987,648 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTDPV3.SYS -- (HSF_DPV)
DRV - [2006.11.02 08:41:49 | 00,200,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTAZL3.SYS -- (HSFHWAZL)
DRV - [2006.11.02 08:41:48 | 00,654,336 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTCNXT3.SYS -- (winachsf)
DRV - [2006.11.02 08:36:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)
DRV - [2006.11.02 08:30:54 | 00,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R)
DRV - [2006.11.02 07:37:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv)
DRV - [2006.11.02 00:50:52 | 00,128,104 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\WimFltr.sys -- (WimFltr)
DRV - [2006.10.30 12:23:12 | 00,007,680 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\AtiPcie.sys -- (AtiPcie) ATI PCI Express (3GIO)
DRV - [2006.07.24 02:00:00 | 00,036,528 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\PxHelp20.sys -- (PxHelp20)
DRV - [2006.06.28 09:54:00 | 00,009,472 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CPQBttn.sys -- (HBtnKey)
DRV - [2005.07.28 07:18:40 | 00,685,056 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\hardlock.sys -- (Hardlock)
DRV - [2005.07.20 17:08:28 | 00,100,096 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\aksusb.sys -- (aksusb)
DRV - [2005.07.20 17:08:26 | 00,327,808 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\akshasp.sys -- (akshasp)
DRV - [2004.05.14 04:42:00 | 00,076,288 | ---- | M] (Rainbow Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\Drivers\SENTINEL.SYS -- (Sentinel)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm


IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.hp.com
IE - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006\S-1-5-21-4141191543-1993807128-1142382555-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "about:blank"
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.3

FF - HKLM\software\mozilla\Mozilla Firefox 3.0.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009.12.16 20:41:23 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009.12.16 20:41:23 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.21\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2009.04.09 09:30:30 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.21\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins

[2008.07.03 18:56:35 | 00,000,000 | ---D | M] -- C:\Users\Pelech Petr\AppData\Roaming\Mozilla\Extensions
[2009.12.29 09:08:30 | 00,000,000 | ---D | M] -- C:\Users\Pelech Petr\AppData\Roaming\Mozilla\Firefox\Profiles\i5bhw8l4.default\extensions
[2009.04.11 22:39:23 | 00,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Pelech Petr\AppData\Roaming\Mozilla\Firefox\Profiles\i5bhw8l4.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2008.09.14 09:55:43 | 00,000,870 | ---- | M] () -- C:\Users\Pelech Petr\AppData\Roaming\Mozilla\Firefox\Profiles\i5bhw8l4.default\searchplugins\internet-adult-film-database.xml
[2009.12.29 09:08:30 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009.04.02 06:30:51 | 00,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2009.04.02 06:30:51 | 00,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2009.04.02 06:30:51 | 00,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2009.04.02 06:30:51 | 00,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2009.04.02 06:30:51 | 00,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: (761 bytes) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll (Google Inc.)
O2 - BHO: (Credential Manager for HP ProtectTools) - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll (Bioscrypt Inc.)
O3 - HKLM\..\Toolbar: (&Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O3 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006\..\Toolbar\WebBrowser: (&Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [CognizanceTS] C:\Program Files\Hewlett-Packard\IAM\Bin\ASTSVCC.dll (Cognizance Corporation)
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [HP Health Check Scheduler] C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)
O4 - HKLM..\Run: [HP Software Update] c:\Program Files\Hp\HP Software Update\hpwuSchd2.exe (Hewlett-Packard Co.)
O4 - HKLM..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [PDF Complete] C:\Program Files\PDF Complete\pdfsty.exe (PDF Complete Inc)
O4 - HKLM..\Run: [PTHOSTTR] C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [QlbCtrl] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe ( Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [Security Central] C:\Program Files\Security Central\Security Central.exe ()
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [Symantec PIF AlertEng] C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe (Symantec Corporation)
O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe (InterVideo Inc.)
O4 - HKLM..\Run: [WAWifiMessage] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe ()
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006..\Run: [] File not found
O4 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006..\Run: [DAEMON Tools] C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.)
O4 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006..\Run: [ISUSPM] C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe (Macrovision Corporation)
O4 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe (Hewlett-Packard Company)
O4 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006..\Run: [PMCLoader] C:\Program Files\Pinnacle\TVCenter Pro\PMCLoader.exe (Pinnacle Systems GmbH)
O4 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006..\Run: [PMCRemote] C:\Program Files\Pinnacle\Shared Files\Programs\Remote\remoterm.exe (Pinnacle Systems)
O4 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006..\Run: [StartCCC] c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()
O4 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKLM..\RunOnce: [ST Recovery Launcher] C:\Windows\SMINST\Launcher.exe (soft thinks)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe (ICQ, Inc.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe (ICQ, Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.109.155.22 10.109.255.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = pilsfree.czf
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (APSHook.dll) - C:\Windows\System32\APSHook.dll (Bioscrypt Inc.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004.04.30 15:01:00 | 00,000,053 | -HS- | M] () - F:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2003.10.31 07:42:24 | 00,000,047 | R--- | M] () - G:\Autorun.inf -- [ UDF ]
O33 - MountPoints2\{002e7843-08c9-11de-ab93-ca4575a46c03}\Shell - "" = AutoRun
O33 - MountPoints2\{002e7843-08c9-11de-ab93-ca4575a46c03}\Shell\AutoRun\command - "" = H:\StartVMCLite.exe -- File not found
O33 - MountPoints2\{002e7844-08c9-11de-ab93-ca4575a46c03}\Shell - "" = AutoRun
O33 - MountPoints2\{002e7844-08c9-11de-ab93-ca4575a46c03}\Shell\AutoRun\command - "" = K:\StartVMCLite.exe -- File not found
O33 - MountPoints2\{21a3de72-f8d2-11dd-9180-001f298ff057}\Shell - "" = AutoRun
O33 - MountPoints2\{21a3de72-f8d2-11dd-9180-001f298ff057}\Shell\AutoRun\command - "" = H:\StartVMCLite.exe -- File not found
O33 - MountPoints2\{21a3de74-f8d2-11dd-9180-001f298ff057}\Shell - "" = AutoRun
O33 - MountPoints2\{21a3de74-f8d2-11dd-9180-001f298ff057}\Shell\AutoRun\command - "" = I:\StartVMCLite.exe -- File not found
O33 - MountPoints2\{5d076a0f-d700-11dd-ab74-0021001666ad}\Shell\Auto\command - "" = L:\RECYCLER\usbdriver.exe -- File not found
O33 - MountPoints2\{90c024a1-4931-11dd-abb0-00218607d18c}\Shell - "" = AutoRun
O33 - MountPoints2\{90c024a1-4931-11dd-abb0-00218607d18c}\Shell\AutoRun\command - "" = G:\ESRI.exe -- [2004.10.02 05:23:57 | 02,647,964 | R--- | M] (Macromedia, Inc.)
O33 - MountPoints2\{9e61b492-f767-11dd-9453-001f298ff057}\Shell - "" = AutoRun
O33 - MountPoints2\{9e61b492-f767-11dd-9453-001f298ff057}\Shell\AutoRun\command - "" = H:\StartVMCLite.exe -- File not found
O33 - MountPoints2\{9e61b498-f767-11dd-9453-001f298ff057}\Shell - "" = AutoRun
O33 - MountPoints2\{9e61b498-f767-11dd-9453-001f298ff057}\Shell\AutoRun\command - "" = H:\StartVMCLite.exe -- File not found
O33 - MountPoints2\{bd7f45a6-f83e-11dd-8064-db1acae2691c}\Shell - "" = AutoRun
O33 - MountPoints2\{bd7f45a6-f83e-11dd-8064-db1acae2691c}\Shell\AutoRun\command - "" = H:\StartVMCLite.exe -- File not found
O33 - MountPoints2\{bd7f45a8-f83e-11dd-8064-db1acae2691c}\Shell - "" = AutoRun
O33 - MountPoints2\{bd7f45a8-f83e-11dd-8064-db1acae2691c}\Shell\AutoRun\command - "" = H:\StartVMCLite.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 7 Days ==========

[2009.12.29 19:31:00 | 00,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2009.12.29 19:30:57 | 00,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2009.12.29 19:30:57 | 00,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2009.12.29 19:12:00 | 02,855,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2009.12.29 19:12:00 | 00,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2009.12.29 19:12:00 | 00,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe
[2009.12.29 19:12:00 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe
[2009.12.29 19:12:00 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll
[2009.12.29 19:11:59 | 02,433,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
[2009.12.29 19:11:59 | 00,996,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll
[2009.12.29 19:11:59 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe
[2009.12.29 19:11:09 | 00,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\INETRES.dll
[2009.12.29 19:10:23 | 00,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\fs_rec.sys
[2009.12.29 19:10:23 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmi.dll
[2009.12.29 19:09:06 | 01,327,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2009.12.29 19:07:58 | 00,274,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\raschap.dll
[2009.12.29 19:07:57 | 00,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2009.12.29 19:07:31 | 00,321,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll
[2009.12.29 19:07:15 | 00,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2009.12.29 19:06:37 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll
[2009.12.29 19:05:44 | 00,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2009.12.29 18:49:22 | 00,513,536 | ---- | C] (OldTimer Tools) -- C:\Users\Pelech Petr\Desktop\OTL.exe
[2009.12.29 18:06:20 | 00,135,360 | ---- | C] (Symantec Corporation) -- C:\Users\Pelech Petr\Desktop\FixBlast.exe
[2009.12.29 16:31:37 | 00,000,000 | ---D | C] -- C:\Program Files\Ultimate Process Manager
[2009.12.29 16:12:59 | 00,000,000 | ---D | C] -- C:\Program Files\Security Central
[2009.12.25 14:45:48 | 02,421,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2009.12.25 14:45:48 | 00,044,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2009.12.25 14:44:53 | 00,575,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2009.12.25 14:44:53 | 00,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2009.12.25 14:44:53 | 00,035,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2009.12.25 14:44:13 | 00,171,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2009.12.25 14:44:13 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2009.12.23 23:06:38 | 00,000,000 | ---D | C] -- C:\Users\Pelech Petr\AppData\Roaming\Download Manager

========== Files - Modified Within 7 Days ==========

[2009.12.29 20:05:37 | 03,407,872 | -HS- | M] () -- C:\Users\Pelech Petr\ntuser.dat
[2009.12.29 19:58:43 | 00,000,349 | ---- | M] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2009.12.29 19:52:45 | 08,405,015 | ---- | M] () -- C:\Windows\TempFile
[2009.12.29 19:52:32 | 00,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009.12.29 19:52:31 | 00,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009.12.29 19:52:27 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009.12.29 19:52:21 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009.12.29 19:51:39 | 20,125,36832 | -HS- | M] () -- C:\hiberfil.sys
[2009.12.29 19:41:07 | 24,772,608 | ---- | M] () -- C:\Windows\ocsetup_install_NetFx3.etl
[2009.12.29 19:41:07 | 00,196,608 | ---- | M] () -- C:\Windows\ocsetup_cbs_install_NetFx3.perf
[2009.12.29 19:41:07 | 00,065,536 | ---- | M] () -- C:\Windows\ocsetup_cbs_install_NetFx3.dpx
[2009.12.29 19:31:00 | 00,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2009.12.29 19:30:57 | 00,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2009.12.29 19:30:57 | 00,083,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2009.12.29 19:12:00 | 02,855,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2009.12.29 19:12:00 | 00,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2009.12.29 19:12:00 | 00,052,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe
[2009.12.29 19:12:00 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe
[2009.12.29 19:12:00 | 00,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll
[2009.12.29 19:11:59 | 02,433,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
[2009.12.29 19:11:59 | 00,996,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll
[2009.12.29 19:11:59 | 00,094,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe
[2009.12.29 19:11:09 | 00,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\INETRES.dll
[2009.12.29 19:10:23 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\fs_rec.sys
[2009.12.29 19:10:23 | 00,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmi.dll
[2009.12.29 19:09:06 | 01,327,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2009.12.29 19:07:58 | 00,274,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\raschap.dll
[2009.12.29 19:07:58 | 00,232,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2009.12.29 19:07:31 | 00,321,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll
[2009.12.29 19:07:15 | 00,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2009.12.29 19:06:37 | 00,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll
[2009.12.29 19:05:44 | 00,604,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2009.12.29 19:03:37 | 03,601,315 | -H-- | M] () -- C:\Users\Pelech Petr\AppData\Local\IconCache.db
[2009.12.29 18:49:23 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Pelech Petr\Desktop\OTL.exe
[2009.12.29 18:47:35 | 00,781,909 | ---- | M] () -- C:\Users\Pelech Petr\Desktop\RSIT.exe
[2009.12.29 18:06:20 | 00,135,360 | ---- | M] (Symantec Corporation) -- C:\Users\Pelech Petr\Desktop\FixBlast.exe
[2009.12.29 18:05:07 | 00,245,902 | ---- | M] () -- C:\Users\Pelech Petr\Desktop\daft.exe
[2009.12.29 17:58:14 | 00,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2009.12.29 17:58:08 | 00,000,430 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2009.12.29 16:33:41 | 00,001,860 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\DVD Check.lnk
[2009.12.29 16:33:41 | 00,000,743 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
[2009.12.29 16:31:04 | 01,002,814 | ---- | M] () -- C:\Users\Pelech Petr\Desktop\upmsfx.exe
[2009.12.29 16:13:00 | 00,000,936 | ---- | M] () -- C:\Users\Pelech Petr\Desktop\Security Central.lnk
[2009.12.29 10:42:19 | 00,668,082 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009.12.29 10:42:19 | 00,531,872 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2009.12.29 10:42:19 | 00,125,980 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009.12.29 10:42:18 | 01,424,680 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009.12.29 10:42:18 | 00,104,706 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2009.12.29 08:34:50 | 00,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini
[2009.12.29 06:00:05 | 00,000,430 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{FF435F1B-041A-4604-95D8-6E70EC552E4F}.job
[2009.12.25 15:21:30 | 19,280,9159 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2009.12.25 14:45:48 | 02,421,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2009.12.25 14:45:48 | 00,044,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2009.12.25 14:44:53 | 00,575,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2009.12.25 14:44:53 | 00,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2009.12.25 14:44:53 | 00,035,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2009.12.25 14:44:13 | 00,171,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2009.12.25 14:44:13 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe

========== Files Created - No Company Name ==========

[2009.12.29 19:33:55 | 24,772,608 | ---- | C] () -- C:\Windows\ocsetup_install_NetFx3.etl
[2009.12.29 19:33:55 | 00,196,608 | ---- | C] () -- C:\Windows\ocsetup_cbs_install_NetFx3.perf
[2009.12.29 19:33:55 | 00,065,536 | ---- | C] () -- C:\Windows\ocsetup_cbs_install_NetFx3.dpx
[2009.12.29 18:47:34 | 00,781,909 | ---- | C] () -- C:\Users\Pelech Petr\Desktop\RSIT.exe
[2009.12.29 18:05:06 | 00,245,902 | ---- | C] () -- C:\Users\Pelech Petr\Desktop\daft.exe
[2009.12.29 17:58:08 | 00,000,430 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2009.12.29 16:31:04 | 01,002,814 | ---- | C] () -- C:\Users\Pelech Petr\Desktop\upmsfx.exe
[2009.12.29 16:13:00 | 00,000,936 | ---- | C] () -- C:\Users\Pelech Petr\Desktop\Security Central.lnk
[2009.07.18 12:34:03 | 00,000,000 | ---- | C] () -- C:\Users\Pelech Petr\AppData\Local\FnF4.txt
[2009.02.19 11:43:29 | 00,196,096 | ---- | C] () -- C:\Windows\System32\MACD32.DLL
[2009.02.19 11:43:29 | 00,138,752 | ---- | C] () -- C:\Windows\System32\MASE32.DLL
[2009.02.19 11:43:29 | 00,136,192 | ---- | C] () -- C:\Windows\System32\MAMC32.DLL
[2009.02.19 11:43:29 | 00,057,856 | ---- | C] () -- C:\Windows\System32\MASD32.DLL
[2009.02.19 11:43:29 | 00,027,648 | ---- | C] () -- C:\Windows\System32\MA32.DLL
[2008.12.31 21:52:20 | 00,164,352 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2008.12.25 19:51:31 | 00,000,680 | ---- | C] () -- C:\Users\Pelech Petr\AppData\Local\d3d9caps.dat
[2008.12.09 21:45:26 | 00,000,099 | ---- | C] () -- C:\Users\Pelech Petr\AppData\Local\fusioncache.dat
[2008.12.09 21:45:12 | 00,116,224 | ---- | C] () -- C:\Windows\System32\pdfcmnnt.dll
[2008.12.07 10:58:26 | 00,339,968 | ---- | C] () -- C:\Windows\System32\pythoncom24.dll
[2008.12.07 10:58:26 | 00,114,688 | ---- | C] () -- C:\Windows\System32\pywintypes24.dll
[2008.10.27 19:24:51 | 00,000,600 | ---- | C] () -- C:\Users\Pelech Petr\AppData\Local\PUTTY.RND
[2008.07.15 17:31:39 | 00,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2008.07.13 17:15:07 | 00,000,065 | ---- | C] () -- C:\Windows\wininit.ini
[2008.07.13 17:14:56 | 00,090,112 | ---- | C] () -- C:\Windows\System32\admdll.dll
[2008.07.10 19:24:15 | 00,027,043 | ---- | C] () -- C:\Users\Pelech Petr\AppData\Roaming\UserTile.png
[2008.07.10 18:38:22 | 00,000,383 | ---- | C] () -- C:\Windows\System32\haspdos.sys
[2008.07.03 19:52:33 | 00,685,816 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2008.07.03 18:51:57 | 00,032,768 | ---- | C] () -- C:\Users\Pelech Petr\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.07.02 17:07:21 | 00,000,000 | ---- | C] () -- C:\Users\Pelech Petr\AppData\Local\QSwitch.txt
[2008.07.02 17:07:21 | 00,000,000 | ---- | C] () -- C:\Users\Pelech Petr\AppData\Local\DSwitch.txt
[2008.07.02 17:07:21 | 00,000,000 | ---- | C] () -- C:\Users\Pelech Petr\AppData\Local\AtStart.txt
[2008.07.02 16:44:37 | 00,204,800 | ---- | C] () -- C:\Windows\System32\IVIresizeW7.dll
[2008.07.02 16:44:37 | 00,200,704 | ---- | C] () -- C:\Windows\System32\IVIresizeA6.dll
[2008.07.02 16:44:37 | 00,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeP6.dll
[2008.07.02 16:44:37 | 00,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeM6.dll
[2008.07.02 16:44:37 | 00,188,416 | ---- | C] () -- C:\Windows\System32\IVIresizePX.dll
[2008.07.02 16:44:37 | 00,020,480 | ---- | C] () -- C:\Windows\System32\IVIresize.dll
[2007.09.26 23:07:02 | 00,007,680 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2007.03.29 11:42:38 | 00,389,120 | ---- | C] () -- C:\Windows\System32\btwhidcs.dll
[2007.03.10 12:51:48 | 00,282,624 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2007.02.06 01:05:26 | 00,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI
[2007.02.02 17:01:32 | 00,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2007.01.19 15:30:56 | 00,000,000 | ---- | C] () -- C:\Windows\System32\px.ini
[2006.12.07 01:00:50 | 00,012,288 | ---- | C] () -- C:\Windows\System32\DivXWMPExtType.dll
[2006.12.07 00:57:19 | 03,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2006.11.02 08:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.09.18 22:02:40 | 00,520,192 | ---- | C] () -- C:\Windows\System32\CddbPlaylist2Roxio.dll
[2006.09.18 22:02:40 | 00,204,800 | ---- | C] () -- C:\Windows\System32\CddbFileTaggerRoxio.dll
[2006.03.09 11:58:00 | 01,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2006.02.25 19:09:38 | 00,774,144 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2001.11.14 12:56:00 | 01,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll
[1998.05.07 03:10:00 | 00,069,632 | R--- | C] () -- C:\Windows\System32\ODMA32.dll
[1997.06.25 14:24:16 | 00,040,448 | ---- | C] () -- C:\Windows\System32\RegObj.dll
< End of report >

Re: SecurityCentral - problém

Napsal: 29 pro 2009 20:18
od petrsvetr
Ještě druhá část z OTL - Extras.txt

OTL Extras logfile created on: 29.12.2009 18:49:54 - Run 1
OTL by OldTimer - Version 3.1.20.1 Folder = C:\Users\Pelech Petr\Desktop
Windows Vista Business Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16448)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 49,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 74,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 139,92 Gb Total Space | 48,62 Gb Free Space | 34,75% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 1,55 Gb Total Space | 1,32 Gb Free Space | 84,88% Space Free | Partition Type: NTFS
Drive F: | 7,58 Gb Total Space | 0,76 Gb Free Space | 10,04% Space Free | Partition Type: NTFS
Drive G: | 3,24 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HAL8000
Current User Name: Pelech Petr
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- "%SystemRoot%\hh.exe" %1
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-4141191543-1993807128-1142382555-1006\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
chm.file [open] -- "%SystemRoot%\hh.exe" %1
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [ACDSee 10.0.Browse] -- "C:\Program Files\ACD Systems\ACDSee\10.0\ACDSeeQV10.exe" "%1" (ACD Systems)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [fig2vect: Convert to BB] -- "C:\Program Files\Krause\bin\fig2vect.exe" -lbb -a -m- --/log/stdout/level=none --/log/stderr/level=progress "%1"
Directory [fig2vect: Convert to BB (make)] -- "C:\Program Files\Krause\bin\fig2vect.exe" -lbb -a -m --/log/stdout/level=none --/log/stderr/level=progress "%1"
Directory [fig2vect: Convert to EPS] -- "C:\Program Files\Krause\bin\fig2vect.exe" -leps -a -m- --/log/stdout/level=none --/log/stderr/level=progress "%1"
Directory [fig2vect: Convert to EPS (make)] -- "C:\Program Files\Krause\bin\fig2vect.exe" -leps -a -m --/log/stdout/level=none --/log/stderr/level=progress "%1"
Directory [fig2vect: Convert to EPS FULL] -- "C:\Program Files\Krause\bin\fig2vect.exe" -ltex.full -a -m- --/log/stdout/level=none --/log/stderr/level=progress "%1"
Directory [fig2vect: Convert to EPS FULL (make)] -- "C:\Program Files\Krause\bin\fig2vect.exe" -ltex.full -a -m --/log/stdout/level=none --/log/stderr/level=progress "%1"
Directory [fig2vect: Convert to EPS.TEX] -- "C:\Program Files\Krause\bin\fig2vect.exe" -leps.tex -a -m- --/log/stdout/level=none --/log/stderr/level=progress "%1"
Directory [fig2vect: Convert to EPS.TEX (make)] -- "C:\Program Files\Krause\bin\fig2vect.exe" -leps.tex -a -m --/log/stdout/level=none --/log/stderr/level=progress "%1"
Directory [fig2vect: Convert to PDF] -- "C:\Program Files\Krause\bin\fig2vect.exe" -lpdf -a -m- --/log/stdout/level=none --/log/stderr/level=progress "%1"
Directory [fig2vect: Convert to PDF (make)] -- "C:\Program Files\Krause\bin\fig2vect.exe" -lpdf -a -m --/log/stdout/level=none --/log/stderr/level=progress "%1"
Directory [fig2vect: Convert to PDF.TEX] -- "C:\Program Files\Krause\bin\fig2vect.exe" -lpdf.tex -a -m- --/log/stdout/level=none --/log/stderr/level=progress "%1"
Directory [fig2vect: Convert to PDF.TEX (make)] -- "C:\Program Files\Krause\bin\fig2vect.exe" -lpdf.tex -a -m --/log/stdout/level=none --/log/stderr/level=progress "%1"
Directory [fig2vect: Convert to SVG] -- "C:\Program Files\Krause\bin\fig2vect.exe" -lsvg -a -m- --/log/stdout/level=none --/log/stderr/level=progress "%1"
Directory [fig2vect: Convert to SVG (make)] -- "C:\Program Files\Krause\bin\fig2vect.exe" -lsvg -a -m --/log/stdout/level=none --/log/stderr/level=progress "%1"
Directory [fig2vect: Convert to TEX] -- "C:\Program Files\Krause\bin\fig2vect.exe" -ltex -a -m- --/log/stdout/level=none --/log/stderr/level=progress "%1"
Directory [fig2vect: Convert to TEX (make)] -- "C:\Program Files\Krause\bin\fig2vect.exe" -ltex -a -m --/log/stdout/level=none --/log/stderr/level=progress "%1"
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~1\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [Open in Bmeps GUI] -- "javaw.exe" -jar "C:\Program Files\Krause\bin\bmepsgui.jar" "%1" (Sun Microsystems, Inc.)
Directory [Open in Tracecc GUI] -- "javaw.exe" -jar "C:\Program Files\Krause\bin\tracegui.jar" "%1" (Sun Microsystems, Inc.)
Directory [Prozkoumat v XnView] -- "C:\Program Files\XnView\xnview.exe" "%1" (XnView, http://www.xnview.com)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 1
"InternetSettingsDisableNotify" = 1
"AutoUpdateDisableNotify" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-4141191543-1993807128-1142382555-1006]
"EnableNotifications" = 1
"EnableNotificationsRef" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0AF055AF-5BBF-440D-A61E-DCCC91E9CCF9}" = lport=137 | protocol=17 | dir=in | app=system |
"{0B861A2E-A29B-4F6E-97BA-3D2985C0B23D}" = rport=139 | protocol=6 | dir=out | app=system |
"{0DD7E453-9048-4E2B-874C-076183191C0B}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{0E692416-BA84-43D7-8388-3A7C13EC1A2E}" = rport=445 | protocol=6 | dir=out | app=system |
"{212AC297-ECDF-4A8E-A277-6327A3AA8ECC}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{46C18EE9-4A21-46C9-A184-E572C44EB351}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{5B90ADC7-843B-4860-BC87-3DC2DB47E860}" = lport=139 | protocol=6 | dir=in | app=system |
"{632575C5-C868-44ED-99F5-9760E2C2BCF6}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{6F15365C-05AF-4F79-9825-CE31163ECBE4}" = rport=138 | protocol=17 | dir=out | app=system |
"{785B08EE-4652-43FF-BA1E-6873FBE9EF50}" = lport=445 | protocol=6 | dir=in | app=system |
"{8C6705C7-EC82-4981-8E72-D2BEA146C9F3}" = lport=138 | protocol=17 | dir=in | app=system |
"{C41A587D-DE55-4E09-AEEB-43C7F304B1C2}" = rport=137 | protocol=17 | dir=out | app=system |
"{CB42DA9F-99A0-4381-B512-2F2A382900A9}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{D2F181CE-6023-447A-9E54-E746359145C1}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{E60BBB58-4A68-492B-BEFD-F79261A8F103}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0B1D1329-06D4-4F7F-A00D-B9A0796C84A3}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{111D3AD6-EA7F-4618-B5FC-B7152067964E}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{281EB899-8600-4799-A7DC-3F1A52E1628D}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{37E926A4-54F7-4247-A7A6-490022A25118}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{53F627D2-9929-4860-9ADD-9BBF96461906}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{7D8D85DD-7E94-4D26-BCEC-DBCAEAA1CE7A}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{95FC4BAB-EBDF-4FF1-8F63-DA1112DC64BB}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{D95A45B2-F222-47B8-AEF0-1DA224F1DDF9}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{EED11934-4B47-4159-B8FC-D49CAC0A1B50}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"TCP Query User{07FB361F-C4B7-4402-A1E9-FC002909293B}C:\program files\nx client for windows\nxclient.exe" = protocol=6 | dir=in | app=c:\program files\nx client for windows\nxclient.exe |
"TCP Query User{11546840-3D14-4DEA-9FAC-89A3ED3D48CB}C:\program files\esri\license\arcgis9x\lmgrd.exe" = protocol=6 | dir=in | app=c:\program files\esri\license\arcgis9x\lmgrd.exe |
"TCP Query User{9881B486-8473-49BE-A99A-2E391BBDCE5B}C:\program files\nx client for windows\nxclient.exe" = protocol=6 | dir=in | app=c:\program files\nx client for windows\nxclient.exe |
"TCP Query User{A02054E8-FEA9-4ACD-AD02-20ED3086A3BC}C:\program files\sdc202\strongdc.exe" = protocol=6 | dir=in | app=c:\program files\sdc202\strongdc.exe |
"TCP Query User{A8495886-CF3D-4634-A701-3A8B98E27836}C:\program files\icq6\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6\icq.exe |
"TCP Query User{B0306D4C-75AD-4DF6-B657-BFB233767239}C:\program files\icq6\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6\icq.exe |
"TCP Query User{B3A3EF08-CFAF-444A-928C-8F9B86FD4BA5}C:\program files\nx client for windows\bin\nxssh.exe" = protocol=6 | dir=in | app=c:\program files\nx client for windows\bin\nxssh.exe |
"TCP Query User{BFC52F52-527F-4F51-A36E-3110CF222B5C}C:\program files\esri\license\arcgis9x\arcgis.exe" = protocol=6 | dir=in | app=c:\program files\esri\license\arcgis9x\arcgis.exe |
"TCP Query User{CF17D3F9-1547-483A-844D-4A489B090149}C:\program files\esri\license\arcgis9x\arcgis.exe" = protocol=6 | dir=in | app=c:\program files\esri\license\arcgis9x\arcgis.exe |
"TCP Query User{D661B8DD-FD4B-4740-9EA3-7AF0F6D4DAFD}C:\program files\nx client for windows\bin\nxssh.exe" = protocol=6 | dir=in | app=c:\program files\nx client for windows\bin\nxssh.exe |
"TCP Query User{D9973C40-F429-4618-84CC-712E5C33578C}C:\program files\esri\license\arcgis9x\lmgrd.exe" = protocol=6 | dir=in | app=c:\program files\esri\license\arcgis9x\lmgrd.exe |
"TCP Query User{D9D1B86A-16F5-42D6-A016-6E1F577C8CE2}C:\totalcmd2\totalcmd.exe" = protocol=6 | dir=in | app=c:\totalcmd2\totalcmd.exe |
"TCP Query User{F1E2AA53-2D96-4788-AA55-4400C40A5F3E}C:\totalcmd\totalcmd.exe" = protocol=6 | dir=in | app=c:\totalcmd\totalcmd.exe |
"UDP Query User{24795395-CCCC-410C-9D2B-2D310EA1DB60}C:\program files\esri\license\arcgis9x\arcgis.exe" = protocol=17 | dir=in | app=c:\program files\esri\license\arcgis9x\arcgis.exe |
"UDP Query User{48312D41-A498-487E-B73B-51C802FA4E1D}C:\program files\nx client for windows\bin\nxssh.exe" = protocol=17 | dir=in | app=c:\program files\nx client for windows\bin\nxssh.exe |
"UDP Query User{50C9017A-4B46-4B1D-BABE-0B6372A70AF7}C:\program files\nx client for windows\nxclient.exe" = protocol=17 | dir=in | app=c:\program files\nx client for windows\nxclient.exe |
"UDP Query User{563B3D20-C3A6-43F5-8D0B-04A548B35667}C:\program files\icq6\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6\icq.exe |
"UDP Query User{5F6C10D0-C0A0-4707-BD11-0DF515A0165B}C:\program files\esri\license\arcgis9x\lmgrd.exe" = protocol=17 | dir=in | app=c:\program files\esri\license\arcgis9x\lmgrd.exe |
"UDP Query User{6214458D-47F5-4D5D-A8E6-C4C3556E1C97}C:\program files\esri\license\arcgis9x\arcgis.exe" = protocol=17 | dir=in | app=c:\program files\esri\license\arcgis9x\arcgis.exe |
"UDP Query User{6220E287-6519-4AE4-B8DA-2712CDF2DC36}C:\program files\nx client for windows\nxclient.exe" = protocol=17 | dir=in | app=c:\program files\nx client for windows\nxclient.exe |
"UDP Query User{6485CFF6-2E6B-4490-9BEC-F8EB02885D4F}C:\totalcmd2\totalcmd.exe" = protocol=17 | dir=in | app=c:\totalcmd2\totalcmd.exe |
"UDP Query User{7D9ABAF7-1966-48FE-962B-04A8396C7C0E}C:\program files\nx client for windows\bin\nxssh.exe" = protocol=17 | dir=in | app=c:\program files\nx client for windows\bin\nxssh.exe |
"UDP Query User{986B9C0B-D7BC-4CD3-96BF-DEA4DBD96374}C:\program files\icq6\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6\icq.exe |
"UDP Query User{B7F3CCAE-61A4-429F-8C75-03554C7B751E}C:\program files\sdc202\strongdc.exe" = protocol=17 | dir=in | app=c:\program files\sdc202\strongdc.exe |
"UDP Query User{D6D4B9CA-5535-4B98-9F71-A99B0A41D973}C:\totalcmd\totalcmd.exe" = protocol=17 | dir=in | app=c:\totalcmd\totalcmd.exe |
"UDP Query User{F63942B5-C52F-4BCE-BC16-DD1A91E14FBF}C:\program files\esri\license\arcgis9x\lmgrd.exe" = protocol=17 | dir=in | app=c:\program files\esri\license\arcgis9x\lmgrd.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{02C03AE0-E898-5C22-AFD4-877466FFBD98}" = CCC Help English
"{0394CDC8-FABD-4ed8-B104-03393876DFDF}" = Roxio Creator Tools
"{03D1988F-469F-4843-8E6E-E5FE9D17889D}" = HP Integrated Module with Bluetooth wireless technology 6.0.1.4900
"{07FB18CF-3F76-43AC-0F02-B2DC201D27F4}" = Catalyst Control Center Localization Thai
"{082702D5-5DD8-4600-BCE5-48B15174687F}" = HP Doc Viewer
"{086a7d8c-0a38-4c7f-819a-620275550d5c}" = Nero BurningROM
"{09B17771-7F41-193C-4B8B-93B07653707C}" = Catalyst Control Center Localization Czech
"{0D397393-9B50-4c52-84D5-77E344289F87}" = Roxio Creator Data
"{0D499481-22C6-4B25-8AC2-6D3F6C885FB9}" = OpenOffice.org Installer 1.0
"{15ADCB87-FB9D-BE4B-89EB-A5439DADACEB}" = CCC Help Japanese
"{160FB2C2-37D9-C291-9B79-B660241AD747}" = Catalyst Control Center Localization Dutch
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{19CA53A9-E256-6AF1-28FA-EE61A88886CA}" = Catalyst Control Center Localization Chinese Traditional
"{1A239B49-FDA5-8BCF-05E9-15C69A8591F7}" = Catalyst Control Center Localization Swedish
"{1F34839E-4826-4B64-B1B3-42E5AE8DEC5A}" = ArcGIS Desktop
"{20400dbd-e6db-45b8-9b6b-1dd7033818ec}" = Nero InfoTool
"{228FAF8F-3380-6579-E37D-8AE663A543EE}" = CCC Help Russian
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{254C37AA-6B72-4300-84F6-98A82419187E}" = Hewlett-Packard Active Check
"{2692EC5B-A136-5340-C10C-4FA987FBA569}" = Catalyst Control Center Localization Spanish
"{279F3807-2744-5B05-1CD5-612097502559}" = CCC Help Polish
"{27A94385-A7BD-17DA-3827-E54A3B203E7C}" = CCC Help Chinese Traditional
"{290B83AA-093A-45BF-A917-D1C4A1E8D917}" = HP Active Support Library
"{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}" = Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)
"{2B5BC746-6594-F319-D806-BA97C1B3D8E9}" = Catalyst Control Center Localization Japanese
"{2DB165DC-DDB4-403F-B985-19F3EC7D0357}" = HP ProtectTools Security Manager
"{2E2499C1-D876-D3A5-5329-23719AF4EEA5}" = CCC Help French
"{3248F0A8-6813-11D6-A77B-00B0D0160000}" = Java(TM) SE Runtime Environment 6
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{33C65B6A-5D73-4E3E-A1F9-127C27BD3F72}" = Roxio MyDVD Basic v9
"{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons 6.40 B2
"{3583F14B-42A8-C383-37B1-6186DD87BA46}" = Catalyst Control Center Localization Korean
"{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}" = Sonic Activation Module
"{36262360-D6DF-EFAE-7AB2-5FE47F01BB8A}" = Catalyst Control Center Graphics Full Existing
"{36720FFD-D8DC-502D-5B59-97261633B847}" = Catalyst Control Center Graphics Full New
"{36DA8767-9BE9-4ACF-8679-958D6379F22C}" = Vodafone Mobile Connect Lite
"{37C8AF35-B03E-4E62-AB3C-AD91274DECEA}" = Batch_Clip
"{3912A629-0020-0005-3131-2FBA74D4DF0A}" = InterVideo WinDVD
"{3B1815F1-A388-CBA9-439E-8D97D0A9C6FB}" = CCC Help Portuguese
"{3F9F7336-6DF8-476F-ABF6-C70A17FAF619}" = Instalátor programu HP Backup & Recovery Manager
"{426C7CC1-5AC3-4758-A40C-6446F2CEA8C9}" = ccc-Branding
"{4282CA13-4119-B9F9-A13D-F7E8C61978F9}" = CCC Help Turkish
"{432282b5-d708-431a-9ada-abbbbac3f205}" = Business Contact Manager pro aplikaci Outlook 2007
"{4F3614C4-0634-4F39-B7C0-02CA72F0526D}" = ESU for Microsoft Vista
"{50120000-1105-0000-0000-0000000FF1CE}" = Microsoft Office 2007 Primary Interop Assemblies
"{50A0893D-47D8-48E0-A7E8-44BCD7E4422E}" = Microsoft SQL Server Native Client
"{521F72F4-FFE4-4959-AA88-EED06125211F}" = HP Notebook Accessories Product Tour
"{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English)
"{541847E5-E8C5-075B-9F2B-2FF2A3C971C1}" = Catalyst Control Center Localization Hungarian
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{595a3116-40bb-4e0f-a2e8-d7951da56270}" = NeroExpress
"{5B1E200F-327D-AA06-4990-8E1505DFC754}" = CCC Help Greek
"{5D7347E1-AE03-478B-3BE2-F1279693F745}" = ccc-utility
"{5D97A4A7-C274-4B63-86D9-07A33435F505}" = InterVideo DVD Check
"{5DAE43CE-04FD-427D-8FB1-9959276E0D1B}" = Vista Default Settings
"{5E156316-7276-D0B6-D6CD-A356B897FAB3}" = CCC Help Hungarian
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6
"{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}" = Roxio Creator Copy
"{6276CABC-7E19-4945-9A9C-3549D965E687}" = CCC Help Danish
"{6368D4AE-BFC1-4AAD-25AD-7EBA1CDEAFF0}" = CCC Help Thai
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = Hewlett-Packard Asset Agent
"{67D3B081-1389-D544-6889-3E3BA2691171}" = CCC Help Korean
"{69333A04-5134-40A5-A055-9166A7AA1EC8}" =
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6BA9955E-1F40-7E11-1488-228DAEFB0FD8}" = CCC Help Italian
"{6E8C9958-A445-06B7-9180-F1C546E90B6B}" = Catalyst Control Center Localization Chinese Standard
"{6EF125F8-F86B-C019-2A11-53D9C99AEE00}" = Catalyst Control Center Localization Danish
"{70CEFEBA-F757-4DBE-8A21-027C326137CE}" = Application Installer 4.00.B14
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{75918444-A9D8-86F4-3644-08917713894F}" = CCC Help German
"{7829db6f-a066-4e40-8912-cb07887c20bb}" = Nero BurnRights
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{83202942-84b3-4c50-8622-b8c0aa2d2885}" = Nero Express
"{83FFCFC7-88C6-41c6-8752-958A45325C82}" = Roxio Creator Audio
"{8B3CDDCA-0913-D8CE-F4E1-E0F8D0200B87}" = CCC Help Norwegian
"{8C6027FD-53DC-446D-BB75-CACD7028A134}" = HP Update
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90A40405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office 2003 Web Components
"{91120000-0031-0000-0000-0000000FF1CE}" = Microsoft Office Professional Hybrid 2007
"{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD
"{9746B24E-DEA3-4597-9E07-F27A15070592}_is1" = DK libraries and tools, user edition 1.2.30
"{990BA001-D69F-9DB2-56CE-88E0399B30FB}" = ccc-core-static
"{9C4AED81-8040-28D3-FCE3-E87DC2B948EC}" = Catalyst Control Center Localization German
"{A1A34147-C621-1D90-3C27-D90CF2E1ADFA}" = CCC Help Czech
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A939D341-5A04-4E0A-BB55-3E65B386432D}" = Součásti připojení sady Microsoft Office Small Business
"{AA2F07A9-7EB5-4185-BAA9-A02F56F1396A}" = CCC Help Dutch
"{AB5E289E-76BF-4251-9F3F-9B763F681AE0}" = HP Customer Experience Enhancements
"{AC76BA86-7AD7-1033-7B44-A81000000003}" = Adobe Reader 8.1.0
"{B19B5C55-573E-14F3-0047-7029B5618529}" = Catalyst Control Center Graphics Light
"{b1adf008-e898-4fe2-8a1f-690d9a06acaf}" = DolbyFiles
"{b2ec4a38-b545-4a00-8214-13fe0e915e6d}" = Advertising Center
"{B33E503B-8A82-E0EF-1ABE-06BF0489A6F9}" = CCC Help Swedish
"{b78120a0-cf84-4366-a393-4d0a59bc546c}" = Menu Templates - Starter Kit
"{B7A7937C-B0B5-1040-FC2E-EB05872EF72C}" = Catalyst Control Center Localization Turkish
"{B7F2B452-4461-88FF-EFD0-8E888D1A4C2D}" = CCC Help Spanish
"{B8B4D43C-EAA0-4EEC-B93E-D4D012316286}" = Free DWG Viewer 6.2
"{BBE5C83E-4DC5-494F-8A23-3AAE242E94C2}" = HP Easy Setup - Frontend
"{BC281B89-4AF1-D881-ABB3-853444E7C1D5}" = Catalyst Control Center Localization Greek
"{bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}" = Nero ControlCenter
"{BE41F3D2-FC73-4C3E-A2C2-5D2B08A5B2D0}" = Credential Manager for HP ProtectTools
"{C0D2F614-5CE5-4DCB-8678-E5C9AF7044F8}" = Microsoft SQL Server VSS Writer
"{C41A421C-59F6-8393-014A-F655460AD5F5}" = CCC Help Finnish
"{C74D0FA0-1D49-464F-A707-B427EE3385C1}" = HP BIOS Configuration for ProtectTools
"{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}" = Roxio Creator Basic v9
"{d025a639-b9c9-417d-8531-208859000af8}" = NeroBurningROM
"{D02B9787-3152-A4A0-43E9-AF5E62715D4E}" = Catalyst Control Center Localization Polish
"{D32067CD-7409-4792-BFA0-1469BCD8F0C8}" = HP Wireless Assistant
"{D98C0C51-F9BB-4EE4-B791-22BF6EE31029}" = Nero 7 Ultra Edition
"{D9B4D7EE-481C-4C36-86AB-A8F7417725FF}" = LightScribe 1.6.43.1
"{DB11E77A-8184-C8D3-55DF-73F937EE2F3D}" = Catalyst Control Center Localization Norwegian
"{DB58F76A-5B4F-DD75-7AD5-EDA4500BC7AC}" = ATI Catalyst Install Manager
"{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}" = LiveUpdate Notice (Symantec Corporation)
"{DDDBC1AF-504A-3E17-4A74-E8C69D2C0D0E}" = Catalyst Control Center Localization Finnish
"{E03D8FE4-70BF-26F8-DA3B-974E3A561308}" = CCC Help Chinese Standard
"{E25074CB-A222-3A2D-0542-CC5BAD57ED76}" = Catalyst Control Center Localization Russian
"{E25AA53F-6878-4C64-8130-EB8D678DF303}" = HP User Guides 0064
"{e498385e-1c51-459a-b45f-1721e37aa1a0}" = Movie Templates - Starter Kit
"{E4DDBA93-769B-49D8-BA33-8814E45ED0C1}" = HP Help and Support
"{e8a80433-302b-4ff1-815d-fcc8eac482ff}" = Nero Installer
"{e97a1cf4-08c5-4b8d-bd9b-fb58bc39477a}" = Nero 9
"{EC04A654-128B-5439-0198-E1178E1E6E76}" = Catalyst Control Center Core Implementation
"{EF6CEC13-B014-8BD5-5E56-78E68494A167}" = Catalyst Control Center Localization Italian
"{F02598C2-2A5F-4593-8F09-439F3317B2C8}" = Sentinel System Driver 5.42.1 (32-bit)
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F18DB86D-BC16-4E01-BCCE-63F62B931D82}" = InterVideo Register Manager
"{F2620FDC-8D31-4BA3-B003-89B8FFE9EDCF}" = MSCU for Microsoft Vista
"{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA}" = Pinnacle TVCenter Pro
"{f4041dce-3fe1-4e18-8a9e-9de65231ee36}" = Nero ControlCenter
"{F4144B54-EA3B-72F5-D464-211A1D7BAB95}" = Catalyst Control Center Localization Portuguese
"{f6bdd7c5-89ed-4569-9318-469aa9732572}" = Nero BurnRights
"{F8B98EB6-FC06-45BF-87D4-9784E0408611}" = ACDSee 10 Photo Manager
"{F94234DB-FD06-42C3-B88D-6FC4DC9F988C}" = HP Easy Setup - Core
"{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}" = Vista Codec Package
"{FAB0C302-CB18-4A7A-BA03-C3DC23101A68}" = HP Active Support Library 32 bit components
"{FAFC99FB-4361-7B69-AF2B-87A60406B60C}" = Catalyst Control Center Localization French
"{fbcdfd61-7dcf-4e71-9226-873ba0053139}" = Nero InfoTool
"{FC17899A-5FD9-4A98-A5CB-8558F7FB32BB}" = HP 3D DriveGuard
"Adobe Flash Player Plugin" = Adobe Flash Player Plugin
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"Ant Movie Catalog_is1" = Ant Movie Catalog
"ArcGIS License Manager" = ArcGIS License Manager
"ATI Uninstaller" = ATI Uninstaller
"BSPlayerp" = BS.Player PRO
"Business Contact Manager pro aplikaci Outlook 2007" = Business Contact Manager pro aplikaci Outlook 2007
"Cyklotrasy 2.11" = Cyklotrasy 2.11
"Deluxe Ski Jump 3_is1" = Deluxe Ski Jump 3 v1.5.0
"eMusic Promotion" = eMusic - 50 Free MP3 offer
"ENTERPRISE" = Microsoft Office Enterprise 2007
"GPL Ghostscript 8.70" = GPL Ghostscript 8.70
"GSview 4.9" = GSview 4.9
"KLiteCodecPack_is1" = K-Lite Codec Pack 4.4.2 (Full)
"Krteček_is1" = Krteček 2.0
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"MiKTeX 2.8" = MiKTeX 2.8
"Misys_0" = Misys 9.14 "c:\misys\is\"
"Mozilla Firefox (3.0.16)" = Mozilla Firefox (3.0.16)
"Mozilla Thunderbird (2.0.0.21)" = Mozilla Thunderbird (2.0.0.21)
"nxclient_is1" = NX Client for Windows 3.2.0-13
"PDF Complete" = PDF Complete
"PROHYBRIDR" = 2007 Microsoft Office system
"Python 2.4.1" = Python 2.4.1
"pywin32-py2.4" = Python 2.4 pywin32-212
"Remote Administrator v2.1" = Remote Administrator v2.1
"ShockwaveFlash" = Adobe Flash Player 9 ActiveX
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TeXnicCenter_is1" = TeXnicCenter Version 1.0 Stable RC1
"Totalcmd" = Total Commander (Remove or Repair)
"VLC media player" = VideoLAN VLC media player 0.8.6i
"Winamp" = Winamp (remove only)
"World of Warcraft" = World of Warcraft
"XnView_is1" = XnView 1.95.4

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 26.11.2009 3:00:45 | Computer Name = hal8000.pilsfree.czf | Source = WerSvc | ID = 5007
Description =

Error - 26.11.2009 7:30:36 | Computer Name = hal8000.pilsfree.czf | Source = WerSvc | ID = 5007
Description =

Error - 30.11.2009 13:53:56 | Computer Name = hal8000.pilsfree.czf | Source = WerSvc | ID = 5007
Description =

Error - 3.12.2009 7:12:31 | Computer Name = hal8000.pilsfree.czf | Source = WerSvc | ID = 5007
Description =

Error - 9.12.2009 2:42:14 | Computer Name = hal8000.pilsfree.czf | Source = WerSvc | ID = 5007
Description =

Error - 9.12.2009 3:15:20 | Computer Name = hal8000.pilsfree.czf | Source = Microsoft Office 12 | ID = 2000
Description = Accepted Safe Mode action : Microsoft Office PowerPoint.

Error - 14.12.2009 3:48:21 | Computer Name = hal8000.pilsfree.czf | Source = WerSvc | ID = 5007
Description =

Error - 15.12.2009 2:19:12 | Computer Name = hal8000.pilsfree.czf | Source = WerSvc | ID = 5007
Description =

Error - 16.12.2009 2:11:17 | Computer Name = hal8000.pilsfree.czf | Source = WerSvc | ID = 5007
Description =

Error - 16.12.2009 2:30:14 | Computer Name = hal8000.pilsfree.czf | Source = Application Error | ID = 1000
Description = Chybující aplikace ACDSee10.exe, verze 10.0.219.0, časové razítko
0x46d5f1b9, chybující modul kernel32.dll, verze 6.0.6000.16386, časové razítko 0x4549bd80,
kód výjimky 0xe06d7363, posun chyby 0x0001b09e, ID procesu 0x16e8, čas spuštění
aplikace 0x01ca7e187513c06c.

[ Credential Manager Events ]
Error - 30.11.2009 18:28:13 | Computer Name = hal8000.pilsfree.czf | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Pelech Petr@PELECHPETR-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.

Error - 9.12.2009 7:20:26 | Computer Name = hal8000.pilsfree.czf | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Pelech Petr@PELECHPETR-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.

Error - 16.12.2009 16:11:13 | Computer Name = hal8000.pilsfree.czf | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Pelech Petr@PELECHPETR-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.

Error - 23.12.2009 2:07:47 | Computer Name = hal8000.pilsfree.czf | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Pelech Petr@PELECHPETR-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.

Error - 24.12.2009 6:59:29 | Computer Name = hal8000.pilsfree.czf | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Pelech Petr@PELECHPETR-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.

Error - 25.12.2009 10:22:20 | Computer Name = hal8000.pilsfree.czf | Source = AuthWiz | ID = 100796070
Description = The submitted user identity was rejected. User: tester@HAL8000 Error:
(0xC5160640) Your multifactor authentication settings require you to present credentials
that were not registered for your account. Please contact your system administrator.

Error - 27.12.2009 7:38:20 | Computer Name = hal8000.pilsfree.czf | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Pelech Petr@PELECHPETR-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.

Error - 27.12.2009 13:49:35 | Computer Name = hal8000.pilsfree.czf | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Pelech Petr@PELECHPETR-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.

Error - 29.12.2009 0:58:10 | Computer Name = hal8000.pilsfree.czf | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Pelech Petr@PELECHPETR-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.

Error - 29.12.2009 13:00:14 | Computer Name = hal8000.pilsfree.czf | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Pelech Petr@PELECHPETR-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.

[ OSession Events ]
Error - 26.11.2008 2:19:33 | Computer Name = hal8000.pilsfree.czf | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session
lasted 259 seconds with 240 seconds of active time. This session ended with a crash.

Error - 26.11.2008 2:21:42 | Computer Name = hal8000.pilsfree.czf | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session
lasted 122 seconds with 120 seconds of active time. This session ended with a crash.

Error - 21.1.2009 4:46:43 | Computer Name = hal8000.pilsfree.czf | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 12
seconds with 0 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 14.2.2009 6:57:08 | Computer Name = hal8000.pilsfree.czf | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 5 s funkcí 0. Obraťte se na prodejce systému s žádostí o odbornou pomoc.

Error - 14.2.2009 6:57:08 | Computer Name = hal8000.pilsfree.czf | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 6 s funkcí 0. Obraťte se na prodejce systému s žádostí o odbornou pomoc.

Error - 14.2.2009 14:17:57 | Computer Name = hal8000.pilsfree.czf | Source = Service Control Manager | ID = 7011
Description =

Error - 16.2.2009 7:59:58 | Computer Name = hal8000.pilsfree.czf | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 4 s funkcí 0. Obraťte se na prodejce systému s žádostí o odbornou pomoc.

Error - 16.2.2009 7:59:58 | Computer Name = hal8000.pilsfree.czf | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 5 s funkcí 0. Obraťte se na prodejce systému s žádostí o odbornou pomoc.

Error - 16.2.2009 7:59:58 | Computer Name = hal8000.pilsfree.czf | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 6 s funkcí 0. Obraťte se na prodejce systému s žádostí o odbornou pomoc.

Error - 16.2.2009 8:57:01 | Computer Name = hal8000.pilsfree.czf | Source = Dhcp | ID = 1002
Description = Zapůjčení adresy IP 10.0.0.50 pro síťovou kartu s adresou 0021001666AD
byla serverem DHCP 10.109.218.139 odmítnuta. (Server DHCP odeslal zprávu DHCPNACK).

Error - 17.2.2009 9:39:07 | Computer Name = hal8000.pilsfree.czf | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 4 s funkcí 0. Obraťte se na prodejce systému s žádostí o odbornou pomoc.

Error - 17.2.2009 9:39:07 | Computer Name = hal8000.pilsfree.czf | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 5 s funkcí 0. Obraťte se na prodejce systému s žádostí o odbornou pomoc.

Error - 17.2.2009 9:39:07 | Computer Name = hal8000.pilsfree.czf | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 6 s funkcí 0. Obraťte se na prodejce systému s žádostí o odbornou pomoc.


< End of report >

Re: SecurityCentral - problém

Napsal: 29 pro 2009 22:44
od motji
Dobrý večer :)
Než projdu log :)

:arrow: Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT :!:
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

Re: SecurityCentral - problém

Napsal: 30 pro 2009 09:13
od petrsvetr
Zdravím, tady je log z MBAM

Malwarebytes' Anti-Malware 1.42
Verze databáze: 3289
Windows 6.0.6000
Internet Explorer 7.0.6000.16448

30.12.2009 9:00:00
mbam-log-2009-12-30 (08-59-45).txt

Typ kontroly: Kompletní kontrola (C:\|E:\|F:\|)
Zkontrolované objekty: 391948
Uplynulý čas: 1 hour(s), 53 minute(s), 10 second(s)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 1
Infikované datové položky registru: 0
Infikované adresáře: 2
Infikované soubory: 8

Infikované procesy v paměti:
(Nebyly nalezeny žádné škodlivé položky)

Infikované moduly v paměti:
(Nebyly nalezeny žádné škodlivé položky)

Infikované klíče registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované hodnoty registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\security central (Rogue.SecurityCentral) -> No action taken.

Infikované datové položky registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované adresáře:
C:\Program Files\Security Central (Rogue.SecurityCentral) -> No action taken.
C:\Users\Pelech Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Security Central (Rogue.SecurityCentral) -> No action taken.

Infikované soubory:
C:\Program Files\Radmin\AdmDll.dll (PUP.RemoteAdmin) -> No action taken.
C:\Program Files\Radmin\raddrv.dll (PUP.RemoteAdmin) -> No action taken.
C:\Windows\repair\security.bak (Trojan.Downloader) -> No action taken.
C:\Windows\System32\raddrv.dll (PUP.RemoteAdmin) -> No action taken.
C:\Windows\System32\admdll.dll (PUP.RemoteAdmin) -> No action taken.
C:\Program Files\Security Central\Security Central.exe (Rogue.SecurityCentral) -> No action taken.
C:\Users\Pelech Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Security Central\Security Central.lnk (Rogue.SecurityCentral) -> No action taken.
C:\Users\Pelech Petr\Desktop\Security Central.LNK (Rogue.SecurityCentral) -> No action taken.

Re: SecurityCentral - problém

Napsal: 30 pro 2009 11:47
od motji
Vše smažte a poprosím o nový log z Otl :) .
jak to vypadá s počítačem?

Re: SecurityCentral - problém

Napsal: 30 pro 2009 12:56
od petrsvetr
Vše vymazáno, tady je nový log z OTL. Jinak nyní už po naběhnutí počítače i s vypnutým Řízením uživatelských účtů mi to žádný SecurityCentral nespouští a nic o červech nehlásí, takže se mi to zdá v pořádku.

OTL logfile created on: 30.12.2009 12:48:15 - Run 5
OTL by OldTimer - Version 3.1.20.1 Folder = C:\Users\Pelech Petr\Desktop
Windows Vista Business Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16945)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 56,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 76,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 139,92 Gb Total Space | 44,11 Gb Free Space | 31,52% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 1,55 Gb Total Space | 1,32 Gb Free Space | 84,88% Space Free | Partition Type: NTFS
Drive F: | 7,58 Gb Total Space | 0,76 Gb Free Space | 10,04% Space Free | Partition Type: NTFS
Drive G: | 3,24 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive H: | 25,49 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
I: Drive not present or media not loaded

Computer Name: HAL8000
Current User Name: Pelech Petr
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2009.12.30 07:37:09 | 02,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009.12.29 18:49:23 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Pelech Petr\Desktop\OTL.exe
PRC - [2009.12.16 20:41:21 | 00,307,672 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009.03.14 00:08:11 | 00,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2008.06.10 03:27:04 | 00,144,784 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
PRC - [2008.04.01 16:31:34 | 01,486,848 | R--- | M] (Vodafone) -- H:\PhoneConnectorVMC.exe
PRC - [2008.04.01 08:32:50 | 03,796,992 | ---- | M] (Vodafone) -- C:\Program Files\Vodafone\VMCLite\VMC.exe
PRC - [2008.01.29 16:38:32 | 00,583,048 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
PRC - [2007.12.05 15:30:40 | 00,144,688 | R--- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
PRC - [2007.11.06 15:34:02 | 00,177,456 | ---- | M] ( Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
PRC - [2007.07.13 04:41:11 | 01,006,264 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2007.07.12 12:43:50 | 00,226,904 | ---- | M] (Macrovision Corporation) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe
PRC - [2007.07.04 13:52:00 | 00,253,000 | ---- | M] (Pinnacle Systems) -- C:\Program Files\Pinnacle\Shared Files\Programs\Remote\remoterm.exe
PRC - [2007.05.16 08:43:04 | 00,677,432 | ---- | M] () -- C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
PRC - [2007.05.16 08:27:38 | 01,209,904 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2007.05.16 08:27:28 | 00,271,920 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
PRC - [2007.05.16 08:27:16 | 00,153,136 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2007.05.11 03:06:32 | 00,040,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
PRC - [2007.05.08 07:38:46 | 00,540,448 | ---- | M] (PDF Complete Inc) -- C:\Program Files\PDF Complete\pdfsvc.exe
PRC - [2007.05.08 07:38:44 | 00,331,552 | ---- | M] (PDF Complete Inc) -- C:\Program Files\PDF Complete\pdfsty.exe
PRC - [2007.04.19 12:35:46 | 00,075,304 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2007.04.19 12:26:52 | 00,484,904 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
PRC - [2007.04.16 02:00:06 | 00,009,216 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exe
PRC - [2007.03.29 12:11:50 | 00,719,664 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2007.03.14 11:07:30 | 00,062,984 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
PRC - [2007.03.09 15:24:12 | 00,715,912 | ---- | M] () -- C:\Windows\SMINST\Scheduler.exe
PRC - [2007.03.01 12:18:36 | 00,472,776 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
PRC - [2007.02.07 02:30:00 | 00,065,536 | R--- | M] (Cognizance Corporation) -- C:\Program Files\Hewlett-Packard\IAM\Bin\asghost.exe
PRC - [2007.01.12 14:36:40 | 00,827,392 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PRC - [2007.01.10 15:12:08 | 00,317,128 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
PRC - [2007.01.09 14:52:36 | 00,145,184 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\pthosttr.exe
PRC - [2007.01.05 02:00:02 | 00,018,944 | ---- | M] () -- C:\Windows\System32\hpservice.exe
PRC - [2007.01.04 18:48:52 | 00,112,152 | R--- | M] (InterVideo) -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
PRC - [2006.12.15 12:08:34 | 01,097,728 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe
PRC - [2006.11.21 18:38:22 | 00,035,328 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe
PRC - [2006.11.12 11:48:46 | 00,157,592 | ---- | M] (DT Soft Ltd.) -- C:\Program Files\DAEMON Tools\daemon.exe
PRC - [2006.10.26 23:47:42 | 00,031,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
PRC - [2006.09.29 09:57:36 | 00,049,152 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
PRC - [2006.09.29 09:57:30 | 00,049,152 | ---- | M] (ATI Technologies Inc.) -- c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
PRC - [2006.04.14 09:07:20 | 28,933,976 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
PRC - [2005.02.16 22:11:42 | 00,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hp\HP Software Update\hpwuSchd2.exe


========== Modules (SafeList) ==========

MOD - [2009.12.29 18:49:23 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Pelech Petr\Desktop\OTL.exe
MOD - [2007.03.29 12:11:16 | 00,208,896 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\BtMmHook.dll
MOD - [2007.02.26 04:49:00 | 00,070,144 | R--- | M] (Bioscrypt Inc.) -- C:\Windows\System32\APSHook.dll
MOD - [2006.11.02 10:38:57 | 01,648,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (LiveUpdate Notice Ex)
SRV - [2009.03.14 00:08:07 | 00,137,200 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc)
SRV - [2008.01.29 16:38:32 | 00,583,048 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service)
SRV - [2007.12.05 15:30:40 | 00,144,688 | R--- | M] (Hewlett-Packard Development Company, L.P.) [Auto | Running] -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe -- (hpqwmiex)
SRV - [2007.07.13 04:41:10 | 00,265,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007.05.16 08:27:28 | 00,271,920 | ---- | M] (Nero AG) [On_Demand | Running] -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - [2007.05.08 07:38:46 | 00,540,448 | ---- | M] (PDF Complete Inc) [Auto | Running] -- C:\Program Files\PDF Complete\pdfsvc.exe -- (pdfcDispatcher)
SRV - [2007.04.19 12:35:46 | 00,075,304 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService)
SRV - [2007.04.16 02:00:06 | 00,009,216 | ---- | M] (Agere Systems) [Auto | Running] -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2007.03.14 11:07:30 | 00,062,984 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe -- (HP Health Check Service)
SRV - [2007.03.05 09:30:06 | 00,110,592 | ---- | M] (Hewlett-Packard Development Company, L.P.) [On_Demand | Stopped] -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe -- (Com4Qlb)
SRV - [2007.02.07 02:30:00 | 00,074,240 | R--- | M] (Cognizance Corporation) [Auto | Running] -- C:\Program Files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll -- (ASBroker)
SRV - [2007.02.02 16:59:54 | 00,565,248 | ---- | M] (ATI Technologies Inc.) [Disabled | Stopped] -- C:\Windows\System32\Ati2evxx.exe -- (Ati External Event Utility)
SRV - [2007.01.05 02:00:02 | 00,018,944 | ---- | M] () [Auto | Running] -- C:\Windows\System32\hpservice.exe -- (hpsrv)
SRV - [2007.01.04 18:48:52 | 00,112,152 | R--- | M] (InterVideo) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr)
SRV - [2006.11.06 12:31:14 | 00,887,544 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe -- (RoxMediaDB9)
SRV - [2006.11.02 13:36:11 | 00,122,880 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2006.11.01 10:17:32 | 00,073,728 | R--- | M] (MicroVision Development, Inc.) [On_Demand | Stopped] -- c:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- (stllssvr)
SRV - [2006.10.26 23:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)
SRV - [2006.10.26 18:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2006.10.26 12:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2006.06.22 06:14:00 | 00,131,584 | R--- | M] (Cognizance Corporation) [Auto | Running] -- C:\Program Files\Hewlett-Packard\IAM\Bin\ASChnl.dll -- (ASChannel)
SRV - [2006.04.14 09:07:20 | 28,933,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe -- (MSSQL$MSSMLBIZ) SQL Server (MSSMLBIZ)
SRV - [2006.04.14 09:05:58 | 00,240,416 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe -- (SQLBrowser)
SRV - [2006.04.14 09:04:54 | 00,087,840 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe -- (SQLWriter)
SRV - [2005.10.14 02:50:20 | 00,045,272 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe -- (MSSQLServerADHelper)
SRV - [2004.10.22 02:24:18 | 00,073,728 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)


========== Driver Services (SafeList) ==========

DRV - [2008.07.10 18:38:22 | 00,047,616 | ---- | M] (Aladdin Knowledge Systems) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\Haspnt.sys -- (Haspnt)
DRV - [2008.07.03 19:52:33 | 00,685,816 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008.03.28 17:24:40 | 00,101,504 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2007.06.18 15:12:04 | 00,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2007.06.14 14:41:00 | 00,466,048 | ---- | M] (LITEON) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Ltn_stk7070P.sys -- (Ltn_stk7070P)
DRV - [2007.06.13 19:30:20 | 00,013,440 | ---- | M] (LITEON) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Ltn_stkrc.sys -- (Ltn_stkrc)
DRV - [2007.05.11 11:42:48 | 00,016,432 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\btwrchid.sys -- (btwrchid)
DRV - [2007.05.11 11:42:46 | 00,081,200 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\btwavdt.sys -- (btwavdt)
DRV - [2007.05.11 11:42:46 | 00,079,664 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\btwaudio.sys -- (btwaudio)
DRV - [2007.04.16 02:00:06 | 01,161,152 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2007.04.10 14:55:28 | 00,140,808 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atswpdrv.sys -- (ATSWPDRV) (****DEBUG****) AuthenTec TruePrint USB Driver (SwipeSensor)
DRV - [2007.03.09 17:49:46 | 00,309,248 | ---- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV - [2007.02.26 15:52:22 | 00,179,712 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2007.02.02 17:09:42 | 02,385,920 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2007.01.12 14:59:02 | 00,181,432 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SynTP.sys -- (SynTP)
DRV - [2007.01.05 02:00:02 | 00,027,136 | ---- | M] (Hewlett-Packard Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Accelerometer.sys -- (Accelerometer)
DRV - [2007.01.05 02:00:02 | 00,018,944 | ---- | M] (Hewlett-Packard Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\hpdskflt.sys -- (hpdskflt)
DRV - [2006.12.13 11:49:52 | 00,534,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BCMWL6.SYS -- (BCM43XX)
DRV - [2006.12.13 11:49:52 | 00,534,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BCMWL6.SYS -- (BCM43XV)
DRV - [2006.11.02 10:51:45 | 00,900,712 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2006.11.02 10:51:38 | 00,420,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2006.11.02 10:51:34 | 00,316,520 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2006.11.02 10:51:32 | 00,297,576 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2006.11.02 10:51:25 | 00,235,112 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2006.11.02 10:51:25 | 00,232,040 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2006.11.02 10:51:00 | 00,147,048 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2006.11.02 10:50:45 | 00,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2006.11.02 10:50:41 | 00,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2006.11.02 10:50:35 | 00,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006.11.02 10:50:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006.11.02 10:50:35 | 00,098,408 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2006.11.02 10:50:24 | 00,088,680 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2006.11.02 10:50:19 | 00,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006.11.02 10:50:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006.11.02 10:50:17 | 00,041,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tpm.sys -- (TPM)
DRV - [2006.11.02 10:50:16 | 00,071,784 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2006.11.02 10:50:13 | 00,040,040 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2006.11.02 10:50:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006.11.02 10:50:10 | 00,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2006.11.02 10:50:10 | 00,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2006.11.02 10:50:10 | 00,038,504 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2)
DRV - [2006.11.02 10:50:10 | 00,037,480 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2006.11.02 10:50:09 | 00,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2006.11.02 10:50:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006.11.02 10:50:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006.11.02 10:50:05 | 00,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2006.11.02 10:50:05 | 00,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006.11.02 10:50:04 | 00,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2006.11.02 10:50:03 | 00,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006.11.02 10:49:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006.11.02 10:49:56 | 00,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006.11.02 10:49:53 | 00,028,776 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2006.11.02 10:49:30 | 00,017,512 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2006.11.02 10:49:28 | 00,016,488 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2006.11.02 10:49:20 | 00,014,952 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2006.11.02 09:25:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006.11.02 09:24:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006.11.02 09:24:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006.11.02 09:24:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006.11.02 09:24:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006.11.02 09:24:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006.11.02 08:41:50 | 00,987,648 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTDPV3.SYS -- (HSF_DPV)
DRV - [2006.11.02 08:41:49 | 00,200,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTAZL3.SYS -- (HSFHWAZL)
DRV - [2006.11.02 08:41:48 | 00,654,336 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTCNXT3.SYS -- (winachsf)
DRV - [2006.11.02 08:36:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)
DRV - [2006.11.02 08:30:54 | 00,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R)
DRV - [2006.11.02 07:37:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv)
DRV - [2006.11.02 00:50:52 | 00,128,104 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\WimFltr.sys -- (WimFltr)
DRV - [2006.10.30 12:23:12 | 00,007,680 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\AtiPcie.sys -- (AtiPcie) ATI PCI Express (3GIO)
DRV - [2006.07.24 02:00:00 | 00,036,528 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\PxHelp20.sys -- (PxHelp20)
DRV - [2006.06.28 09:54:00 | 00,009,472 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CPQBttn.sys -- (HBtnKey)
DRV - [2005.07.28 07:18:40 | 00,685,056 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\hardlock.sys -- (Hardlock)
DRV - [2005.07.20 17:08:28 | 00,100,096 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\aksusb.sys -- (aksusb)
DRV - [2005.07.20 17:08:26 | 00,327,808 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\akshasp.sys -- (akshasp)
DRV - [2004.05.14 04:42:00 | 00,076,288 | ---- | M] (Rainbow Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\Drivers\SENTINEL.SYS -- (Sentinel)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm


IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.hp.com
IE - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006\S-1-5-21-4141191543-1993807128-1142382555-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "about:blank"
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.3

FF - HKLM\software\mozilla\Mozilla Firefox 3.0.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009.12.16 20:41:23 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009.12.16 20:41:23 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.21\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2009.04.09 09:30:30 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.21\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins

[2008.07.03 18:56:35 | 00,000,000 | ---D | M] -- C:\Users\Pelech Petr\AppData\Roaming\Mozilla\Extensions
[2009.12.30 09:23:18 | 00,000,000 | ---D | M] -- C:\Users\Pelech Petr\AppData\Roaming\Mozilla\Firefox\Profiles\i5bhw8l4.default\extensions
[2009.04.11 22:39:23 | 00,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Pelech Petr\AppData\Roaming\Mozilla\Firefox\Profiles\i5bhw8l4.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2008.09.14 09:55:43 | 00,000,870 | ---- | M] () -- C:\Users\Pelech Petr\AppData\Roaming\Mozilla\Firefox\Profiles\i5bhw8l4.default\searchplugins\internet-adult-film-database.xml
[2009.12.29 09:08:30 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009.04.02 06:30:51 | 00,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2009.04.02 06:30:51 | 00,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2009.04.02 06:30:51 | 00,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2009.04.02 06:30:51 | 00,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2009.04.02 06:30:51 | 00,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: (761 bytes) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll (Google Inc.)
O2 - BHO: (Credential Manager for HP ProtectTools) - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll (Bioscrypt Inc.)
O3 - HKLM\..\Toolbar: (&Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O3 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006\..\Toolbar\WebBrowser: (&Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [CognizanceTS] C:\Program Files\Hewlett-Packard\IAM\Bin\ASTSVCC.dll (Cognizance Corporation)
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [HP Health Check Scheduler] C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)
O4 - HKLM..\Run: [HP Software Update] c:\Program Files\Hp\HP Software Update\hpwuSchd2.exe (Hewlett-Packard Co.)
O4 - HKLM..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [PDF Complete] C:\Program Files\PDF Complete\pdfsty.exe (PDF Complete Inc)
O4 - HKLM..\Run: [PTHOSTTR] C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [QlbCtrl] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe ( Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [Symantec PIF AlertEng] C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe (Symantec Corporation)
O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe (InterVideo Inc.)
O4 - HKLM..\Run: [WAWifiMessage] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe ()
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006..\Run: [] File not found
O4 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006..\Run: [DAEMON Tools] C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.)
O4 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006..\Run: [ISUSPM] C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe (Macrovision Corporation)
O4 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe (Hewlett-Packard Company)
O4 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006..\Run: [PMCLoader] C:\Program Files\Pinnacle\TVCenter Pro\PMCLoader.exe (Pinnacle Systems GmbH)
O4 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006..\Run: [PMCRemote] C:\Program Files\Pinnacle\Shared Files\Programs\Remote\remoterm.exe (Pinnacle Systems)
O4 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006..\Run: [StartCCC] c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()
O4 - HKU\S-1-5-21-4141191543-1993807128-1142382555-1006..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKLM..\RunOnce: [ST Recovery Launcher] C:\Windows\SMINST\Launcher.exe (soft thinks)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe (ICQ, Inc.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe (ICQ, Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = pilsfree.czf
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (APSHook.dll) - C:\Windows\System32\APSHook.dll (Bioscrypt Inc.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004.04.30 15:01:00 | 00,000,053 | -HS- | M] () - F:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2003.10.31 07:42:24 | 00,000,047 | R--- | M] () - G:\Autorun.inf -- [ UDF ]
O32 - AutoRun File - [2008.04.01 16:29:27 | 00,000,096 | R--- | M] () - H:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{002e7843-08c9-11de-ab93-ca4575a46c03}\Shell - "" = AutoRun
O33 - MountPoints2\{002e7843-08c9-11de-ab93-ca4575a46c03}\Shell\AutoRun\command - "" = H:\StartVMCLite.exe -- [2008.04.01 16:33:18 | 00,208,896 | R--- | M] (Vodafone)
O33 - MountPoints2\{002e7844-08c9-11de-ab93-ca4575a46c03}\Shell - "" = AutoRun
O33 - MountPoints2\{002e7844-08c9-11de-ab93-ca4575a46c03}\Shell\AutoRun\command - "" = K:\StartVMCLite.exe -- File not found
O33 - MountPoints2\{21a3de72-f8d2-11dd-9180-001f298ff057}\Shell - "" = AutoRun
O33 - MountPoints2\{21a3de72-f8d2-11dd-9180-001f298ff057}\Shell\AutoRun\command - "" = H:\StartVMCLite.exe -- [2008.04.01 16:33:18 | 00,208,896 | R--- | M] (Vodafone)
O33 - MountPoints2\{21a3de74-f8d2-11dd-9180-001f298ff057}\Shell - "" = AutoRun
O33 - MountPoints2\{21a3de74-f8d2-11dd-9180-001f298ff057}\Shell\AutoRun\command - "" = I:\StartVMCLite.exe -- File not found
O33 - MountPoints2\{5d076a0f-d700-11dd-ab74-0021001666ad}\Shell\Auto\command - "" = L:\RECYCLER\usbdriver.exe -- File not found
O33 - MountPoints2\{90c024a1-4931-11dd-abb0-00218607d18c}\Shell - "" = AutoRun
O33 - MountPoints2\{90c024a1-4931-11dd-abb0-00218607d18c}\Shell\AutoRun\command - "" = G:\ESRI.exe -- [2004.10.02 05:23:57 | 02,647,964 | R--- | M] (Macromedia, Inc.)
O33 - MountPoints2\{9e61b492-f767-11dd-9453-001f298ff057}\Shell - "" = AutoRun
O33 - MountPoints2\{9e61b492-f767-11dd-9453-001f298ff057}\Shell\AutoRun\command - "" = H:\StartVMCLite.exe -- [2008.04.01 16:33:18 | 00,208,896 | R--- | M] (Vodafone)
O33 - MountPoints2\{9e61b498-f767-11dd-9453-001f298ff057}\Shell - "" = AutoRun
O33 - MountPoints2\{9e61b498-f767-11dd-9453-001f298ff057}\Shell\AutoRun\command - "" = H:\StartVMCLite.exe -- [2008.04.01 16:33:18 | 00,208,896 | R--- | M] (Vodafone)
O33 - MountPoints2\{bd7f45a6-f83e-11dd-8064-db1acae2691c}\Shell - "" = AutoRun
O33 - MountPoints2\{bd7f45a6-f83e-11dd-8064-db1acae2691c}\Shell\AutoRun\command - "" = H:\StartVMCLite.exe -- [2008.04.01 16:33:18 | 00,208,896 | R--- | M] (Vodafone)
O33 - MountPoints2\{bd7f45a8-f83e-11dd-8064-db1acae2691c}\Shell - "" = AutoRun
O33 - MountPoints2\{bd7f45a8-f83e-11dd-8064-db1acae2691c}\Shell\AutoRun\command - "" = H:\StartVMCLite.exe -- [2008.04.01 16:33:18 | 00,208,896 | R--- | M] (Vodafone)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

Re: SecurityCentral - problém

Napsal: 30 pro 2009 13:00
od petrsvetr
========== Files/Folders - Created Within 7 Days ==========

[2009.12.30 08:19:19 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winipsec.dll
[2009.12.30 08:19:19 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FwRemoteSvr.dll
[2009.12.30 08:19:18 | 00,272,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\polstore.dll
[2009.12.30 08:18:15 | 00,467,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\riched20.dll
[2009.12.30 08:18:15 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\riched32.dll
[2009.12.30 08:18:13 | 00,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kmddsp.tsp
[2009.12.30 08:18:12 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rascfg.dll
[2009.12.30 08:18:12 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasser.dll
[2009.12.30 08:18:11 | 00,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdiag.dll
[2009.12.30 08:18:11 | 00,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ndptsp.tsp
[2009.12.30 08:18:11 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasmxs.dll
[2009.12.30 08:18:10 | 00,564,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
[2009.12.30 08:18:10 | 00,384,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcfgx.dll
[2009.12.30 08:18:09 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icsunattend.exe
[2009.12.30 08:18:08 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\traffic.dll
[2009.12.30 08:18:08 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pacerprf.dll
[2009.12.30 08:18:08 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshqos.dll
[2009.12.30 08:18:07 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2009.12.30 08:17:06 | 00,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
[2009.12.30 08:17:06 | 00,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
[2009.12.30 08:17:06 | 00,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceClassExtension.dll
[2009.12.30 08:16:02 | 00,205,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msoeacct.dll
[2009.12.30 08:16:02 | 00,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msoert2.dll
[2009.12.30 08:16:02 | 00,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ACCTRES.dll
[2009.12.30 08:14:22 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2009.12.30 08:14:21 | 00,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiohlp.dll
[2009.12.30 08:14:21 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NETSTAT.EXE
[2009.12.30 08:14:21 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ARP.EXE
[2009.12.30 08:14:21 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ROUTE.EXE
[2009.12.30 08:14:21 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MRINFO.EXE
[2009.12.30 08:14:21 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\finger.exe
[2009.12.30 08:14:21 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TCPSVCS.EXE
[2009.12.30 08:14:21 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\HOSTNAME.EXE
[2009.12.30 08:14:19 | 00,213,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2009.12.30 08:14:19 | 00,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll
[2009.12.30 08:14:19 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiougc.exe
[2009.12.30 08:12:37 | 00,704,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoScreensaver.scr
[2009.12.30 08:12:32 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wtsapi32.dll
[2009.12.30 08:12:30 | 00,028,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\battc.sys
[2009.12.30 08:10:28 | 00,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\L2SecHC.dll
[2009.12.30 08:10:27 | 00,290,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanmsm.dll
[2009.12.30 08:10:27 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanhlp.dll
[2009.12.30 08:10:27 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll
[2009.12.30 08:10:26 | 00,297,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlansec.dll
[2009.12.30 08:09:09 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3r.dll
[2009.12.30 08:09:08 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll
[2009.12.30 08:06:44 | 00,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2009.12.30 08:06:43 | 00,289,792 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2009.12.30 08:06:43 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2009.12.30 08:06:43 | 00,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2009.12.30 08:06:43 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2009.12.30 08:05:30 | 01,233,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll
[2009.12.30 08:04:15 | 02,855,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2009.12.30 08:04:15 | 00,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2009.12.30 08:04:15 | 00,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe
[2009.12.30 08:04:15 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe
[2009.12.30 08:04:15 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll
[2009.12.30 08:04:14 | 02,433,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
[2009.12.30 08:02:47 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2009.12.30 07:54:45 | 03,502,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2009.12.30 07:54:43 | 03,467,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2009.12.30 07:52:58 | 00,385,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2009.12.30 07:52:58 | 00,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2009.12.30 07:52:58 | 00,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll
[2009.12.30 07:52:58 | 00,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\advpack.dll
[2009.12.30 07:52:58 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll
[2009.12.30 07:52:57 | 02,452,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2009.12.30 07:52:57 | 00,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2009.12.30 07:52:55 | 00,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2009.12.30 07:52:55 | 00,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2009.12.30 07:52:55 | 00,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2009.12.30 07:52:54 | 00,459,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2009.12.30 07:52:53 | 00,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2009.12.30 07:52:49 | 00,389,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2009.12.30 07:52:49 | 00,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2009.12.30 07:52:49 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2009.12.30 07:52:47 | 01,383,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2009.12.30 07:52:44 | 00,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2009.12.30 07:52:43 | 01,830,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2009.12.30 07:52:41 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2009.12.30 07:52:39 | 00,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2009.12.30 07:52:38 | 00,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2009.12.30 07:52:38 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2009.12.30 07:52:38 | 00,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2009.12.30 07:50:06 | 00,500,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2009.12.30 07:50:06 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll
[2009.12.30 07:48:11 | 00,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll
[2009.12.30 07:48:11 | 00,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll
[2009.12.30 07:47:16 | 00,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpeffects.dll
[2009.12.30 07:45:39 | 00,713,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
[2009.12.30 07:44:45 | 00,356,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MediaMetadataHandler.dll
[2009.12.30 07:44:03 | 00,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FirewallAPI.dll
[2009.12.30 07:44:03 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icfupgd.dll
[2009.12.30 07:44:02 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmifw.dll
[2009.12.30 07:44:02 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wfapigp.dll
[2009.12.30 07:40:10 | 00,696,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\localspl.dll
[2009.12.30 07:39:25 | 00,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2009.12.30 07:39:25 | 00,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2009.12.30 07:39:25 | 00,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2009.12.30 07:39:25 | 00,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avicap32.dll
[2009.12.30 07:37:48 | 00,109,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2009.12.30 07:37:48 | 00,045,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\pciidex.sys
[2009.12.30 07:37:08 | 02,923,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2009.12.30 07:36:32 | 00,224,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2009.12.30 07:36:32 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hcrstco.dll
[2009.12.30 07:36:32 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hccoin.dll
[2009.12.30 07:36:07 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcfg.exe
[2009.12.30 07:35:31 | 01,793,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0045.dll
[2009.12.30 07:35:30 | 01,808,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0046.dll
[2009.12.30 07:35:29 | 01,558,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0049.dll
[2009.12.30 07:35:29 | 01,411,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0047.dll
[2009.12.30 07:35:29 | 01,236,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0020.dll
[2009.12.30 07:35:28 | 01,782,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0039.dll
[2009.12.30 07:35:27 | 02,136,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0021.dll
[2009.12.30 07:35:25 | 05,499,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0022.dll
[2009.12.30 07:35:24 | 07,964,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0024.dll
[2009.12.30 07:35:23 | 05,791,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0026.dll
[2009.12.30 07:35:22 | 06,224,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0027.dll
[2009.12.30 07:35:21 | 04,175,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0010.dll
[2009.12.30 07:35:20 | 02,466,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0011.dll
[2009.12.30 07:35:18 | 04,981,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0013.dll
[2009.12.30 07:35:17 | 03,331,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0018.dll
[2009.12.30 07:35:15 | 06,781,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0019.dll
[2009.12.30 07:35:12 | 11,722,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0001.dll
[2009.12.30 07:35:11 | 04,164,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0002.dll
[2009.12.30 07:35:11 | 01,452,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0003.dll
[2009.12.30 07:35:06 | 12,240,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0007.dll
[2009.12.30 07:35:05 | 02,644,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll
[2009.12.30 07:35:04 | 04,093,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004c.dll
[2009.12.30 07:35:04 | 03,419,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004a.dll
[2009.12.30 07:35:04 | 01,702,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004b.dll
[2009.12.30 07:35:03 | 01,972,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004e.dll
[2009.12.30 07:35:02 | 04,045,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons003e.dll
[2009.12.30 07:35:02 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons002a.dll
[2009.12.30 07:35:01 | 06,014,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001a.dll
[2009.12.30 07:34:58 | 06,585,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001b.dll
[2009.12.30 07:34:56 | 06,346,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001d.dll
[2009.12.30 07:34:55 | 09,892,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000a.dll
[2009.12.30 07:34:53 | 06,237,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000c.dll
[2009.12.30 07:34:53 | 01,722,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000d.dll
[2009.12.30 07:34:52 | 05,654,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000f.dll
[2009.12.30 07:34:52 | 04,616,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0414.dll
[2009.12.30 07:34:51 | 05,090,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0416.dll
[2009.12.30 07:34:50 | 05,031,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0816.dll
[2009.12.30 07:34:49 | 07,042,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons081a.dll
[2009.12.30 07:34:49 | 05,071,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsModels0011.dll
[2009.12.30 07:34:49 | 03,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0045.dll
[2009.12.30 07:34:48 | 03,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0046.dll
[2009.12.30 07:34:47 | 03,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0049.dll
[2009.12.30 07:34:47 | 03,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0047.dll
[2009.12.30 07:34:47 | 03,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0039.dll
[2009.12.30 07:34:46 | 03,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0020.dll
[2009.12.30 07:34:46 | 01,799,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0022.dll
[2009.12.30 07:34:46 | 01,799,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0021.dll
[2009.12.30 07:34:45 | 01,965,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0027.dll
[2009.12.30 07:34:45 | 01,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0026.dll
[2009.12.30 07:34:45 | 01,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0024.dll
[2009.12.30 07:34:44 | 04,493,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0010.dll
[2009.12.30 07:34:43 | 02,655,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0011.dll
[2009.12.30 07:34:42 | 03,464,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0013.dll
[2009.12.30 07:34:41 | 01,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0018.dll
[2009.12.30 07:34:41 | 01,523,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0000.dll
[2009.12.30 07:34:40 | 04,495,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0019.dll
[2009.12.30 07:34:40 | 02,597,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0001.dll
[2009.12.30 07:34:39 | 01,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0003.dll
[2009.12.30 07:34:39 | 01,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0002.dll
[2009.12.30 07:34:38 | 02,241,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0007.dll
[2009.12.30 07:34:35 | 04,874,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0009.dll
[2009.12.30 07:34:34 | 03,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004a.dll
[2009.12.30 07:34:33 | 03,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004b.dll
[2009.12.30 07:34:32 | 03,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004c.dll
[2009.12.30 07:34:30 | 03,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004e.dll
[2009.12.30 07:34:29 | 01,799,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData003e.dll
[2009.12.30 07:34:29 | 01,799,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData002a.dll
[2009.12.30 07:34:28 | 01,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData001a.dll
[2009.12.30 07:34:27 | 01,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData001b.dll
[2009.12.30 07:34:26 | 04,493,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData001d.dll
[2009.12.30 07:34:23 | 09,845,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000a.dll
[2009.12.30 07:34:23 | 02,641,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000c.dll
[2009.12.30 07:34:22 | 02,340,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000d.dll
[2009.12.30 07:34:21 | 01,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000f.dll
[2009.12.30 07:34:19 | 04,493,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0416.dll
[2009.12.30 07:34:19 | 04,493,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0414.dll
[2009.12.30 07:34:19 | 00,797,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
[2009.12.30 07:34:18 | 04,493,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0816.dll
[2009.12.30 07:34:17 | 01,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData081a.dll
[2009.12.30 07:34:16 | 06,917,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0c1a.dll
[2009.12.30 07:34:16 | 01,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0c1a.dll
[2009.12.30 07:30:40 | 00,181,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fsquirt.exe
[2009.12.30 07:27:53 | 00,313,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe
[2009.12.30 07:27:52 | 00,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpd_ci.dll
[2009.12.30 07:27:52 | 00,371,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2009.12.30 07:27:52 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srdelayed.exe
[2009.12.30 07:27:51 | 00,944,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2009.12.30 07:27:51 | 00,905,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2009.12.30 07:27:51 | 00,019,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kd1394.dll
[2009.12.30 07:27:50 | 00,620,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ci.dll
[2009.12.30 07:27:49 | 00,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvinst.exe
[2009.12.30 07:27:49 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
[2009.12.30 07:27:48 | 00,260,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpx.dll
[2009.12.30 07:27:48 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbd106n.dll
[2009.12.30 07:27:47 | 00,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\loadperf.dll
[2009.12.30 07:27:47 | 00,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lodctr.exe
[2009.12.30 07:27:47 | 00,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unlodctr.exe
[2009.12.30 07:27:47 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prflbmsg.dll
[2009.12.30 07:27:44 | 00,035,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys
[2009.12.30 07:27:44 | 00,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\batt.dll
[2009.12.30 07:27:44 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\f3ahvoas.dll
[2009.12.30 07:27:43 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dispci.dll
[2009.12.30 07:25:20 | 00,512,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2009.12.30 07:23:43 | 00,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMASF.DLL
[2009.12.30 07:23:43 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\LAPRXY.DLL
[2009.12.30 07:23:43 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asferror.dll
[2009.12.30 07:23:05 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amxread.dll
[2009.12.30 07:23:05 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apilogen.dll
[2009.12.30 07:22:14 | 00,268,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcbuilder.exe
[2009.12.30 07:22:14 | 00,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLC.dll
[2009.12.30 07:22:13 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slwmi.dll
[2009.12.30 07:22:12 | 00,566,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLCommDlg.dll
[2009.12.30 07:22:12 | 00,351,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLUI.exe
[2009.12.30 07:22:12 | 00,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLLUA.exe
[2009.12.30 07:22:10 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slcinst.dll
[2009.12.30 07:21:18 | 00,712,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecs.dll
[2009.12.30 07:21:18 | 00,425,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
[2009.12.30 07:21:17 | 00,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2009.12.30 07:20:04 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[2009.12.30 07:20:03 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2009.12.30 07:16:24 | 00,105,984 | ---- | C] (Společnost Microsoft) -- C:\Windows\System32\CscMig.dll
[2009.12.30 07:16:15 | 00,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntprint.dll
[2009.12.30 07:16:15 | 00,061,440 | ---- | C] (Společnost Microsoft) -- C:\Windows\System32\ntprint.exe
[2009.12.30 07:16:11 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcmonitor.dll
[2009.12.30 07:16:10 | 00,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
[2009.12.30 07:16:09 | 01,984,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2009.12.30 07:16:03 | 08,138,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ssBranded.scr
[2009.12.30 07:15:25 | 00,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printcom.dll
[2009.12.30 07:15:24 | 00,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32spl.dll
[2009.12.30 07:14:55 | 02,031,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2009.12.30 07:14:22 | 00,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rmcast.sys
[2009.12.30 07:14:21 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshrm.dll
[2009.12.30 07:13:35 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.tlb
[2009.12.30 07:13:35 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amcompat.tlb
[2009.12.30 07:12:38 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbunattend.exe
[2009.12.30 07:11:43 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2009.12.30 07:05:30 | 00,000,000 | ---D | C] -- C:\Users\Pelech Petr\AppData\Roaming\Malwarebytes
[2009.12.30 07:05:20 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009.12.30 07:05:18 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2009.12.30 07:05:18 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009.12.30 07:05:18 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2009.12.30 06:06:05 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2009.12.30 06:06:02 | 04,247,552 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2009.12.30 06:06:02 | 01,686,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2009.12.30 06:05:07 | 01,645,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2009.12.30 06:03:12 | 08,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2009.12.30 06:03:11 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2009.12.30 06:03:10 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll
[2009.12.30 06:03:09 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2009.12.30 06:03:05 | 00,311,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe
[2009.12.29 21:09:14 | 00,195,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2009.12.29 19:31:00 | 00,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2009.12.29 19:30:57 | 00,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2009.12.29 19:30:57 | 00,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2009.12.29 19:11:59 | 00,996,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll
[2009.12.29 19:11:59 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe
[2009.12.29 19:11:09 | 00,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\INETRES.dll
[2009.12.29 19:10:23 | 00,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\fs_rec.sys
[2009.12.29 19:10:23 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmi.dll
[2009.12.29 19:09:06 | 01,327,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2009.12.29 19:07:58 | 00,274,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\raschap.dll
[2009.12.29 19:07:57 | 00,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2009.12.29 19:07:31 | 00,321,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll
[2009.12.29 19:07:15 | 00,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2009.12.29 19:05:44 | 00,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2009.12.29 18:49:22 | 00,513,536 | ---- | C] (OldTimer Tools) -- C:\Users\Pelech Petr\Desktop\OTL.exe
[2009.12.29 18:06:20 | 00,135,360 | ---- | C] (Symantec Corporation) -- C:\Users\Pelech Petr\Desktop\FixBlast.exe
[2009.12.29 16:31:37 | 00,000,000 | ---D | C] -- C:\Program Files\Ultimate Process Manager
[2009.12.25 14:45:48 | 02,421,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2009.12.25 14:45:48 | 00,044,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2009.12.25 14:44:53 | 00,575,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2009.12.25 14:44:53 | 00,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2009.12.25 14:44:53 | 00,035,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2009.12.25 14:44:13 | 00,171,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2009.12.25 14:44:13 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2009.12.23 23:06:38 | 00,000,000 | ---D | C] -- C:\Users\Pelech Petr\AppData\Roaming\Download Manager

Re: SecurityCentral - problém

Napsal: 30 pro 2009 13:01
od petrsvetr
========== Files - Modified Within 7 Days ==========

[2009.12.30 12:48:52 | 03,407,872 | -HS- | M] () -- C:\Users\Pelech Petr\ntuser.dat
[2009.12.30 12:46:05 | 00,000,430 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{FF435F1B-041A-4604-95D8-6E70EC552E4F}.job
[2009.12.30 12:44:47 | 00,000,349 | ---- | M] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2009.12.30 12:43:28 | 08,405,015 | ---- | M] () -- C:\Windows\TempFile
[2009.12.30 12:43:21 | 00,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009.12.30 12:43:21 | 00,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009.12.30 12:43:20 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009.12.30 12:43:02 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009.12.30 12:42:32 | 20,125,36832 | -HS- | M] () -- C:\hiberfil.sys
[2009.12.30 12:40:53 | 00,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2009.12.30 12:40:37 | 02,264,056 | -H-- | M] () -- C:\Users\Pelech Petr\AppData\Local\IconCache.db
[2009.12.30 12:30:43 | 01,424,680 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009.12.30 12:30:43 | 00,668,082 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009.12.30 12:30:43 | 00,531,872 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2009.12.30 12:30:43 | 00,125,980 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009.12.30 12:30:43 | 00,104,706 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2009.12.30 12:16:39 | 00,000,749 | RH-- | M] () -- C:\Windows\WindowsShell.Manifest
[2009.12.30 12:13:23 | 00,477,024 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2009.12.30 08:19:19 | 00,272,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\polstore.dll
[2009.12.30 08:19:19 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winipsec.dll
[2009.12.30 08:19:19 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FwRemoteSvr.dll
[2009.12.30 08:18:15 | 00,467,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\riched20.dll
[2009.12.30 08:18:15 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\riched32.dll
[2009.12.30 08:18:13 | 00,038,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kmddsp.tsp
[2009.12.30 08:18:12 | 00,077,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rascfg.dll
[2009.12.30 08:18:12 | 00,052,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasdiag.dll
[2009.12.30 08:18:12 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasser.dll
[2009.12.30 08:18:11 | 00,384,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netcfgx.dll
[2009.12.30 08:18:11 | 00,049,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ndptsp.tsp
[2009.12.30 08:18:11 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasmxs.dll
[2009.12.30 08:18:11 | 00,001,820 | ---- | M] () -- C:\Windows\System32\rasctrnm.h
[2009.12.30 08:18:10 | 00,564,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
[2009.12.30 08:18:09 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icsunattend.exe
[2009.12.30 08:18:08 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\traffic.dll
[2009.12.30 08:18:08 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pacerprf.dll
[2009.12.30 08:18:08 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshqos.dll
[2009.12.30 08:18:07 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2009.12.30 08:17:06 | 00,241,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
[2009.12.30 08:17:06 | 00,160,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
[2009.12.30 08:17:06 | 00,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceClassExtension.dll
[2009.12.30 08:16:02 | 00,205,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msoeacct.dll
[2009.12.30 08:16:02 | 00,087,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msoert2.dll
[2009.12.30 08:16:02 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ACCTRES.dll
[2009.12.30 08:14:22 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2009.12.30 08:14:21 | 00,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netiohlp.dll
[2009.12.30 08:14:21 | 00,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NETSTAT.EXE
[2009.12.30 08:14:21 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ARP.EXE
[2009.12.30 08:14:21 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ROUTE.EXE
[2009.12.30 08:14:21 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MRINFO.EXE
[2009.12.30 08:14:21 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\finger.exe
[2009.12.30 08:14:21 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TCPSVCS.EXE
[2009.12.30 08:14:21 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\HOSTNAME.EXE
[2009.12.30 08:14:19 | 00,213,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2009.12.30 08:14:19 | 00,167,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll
[2009.12.30 08:14:19 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netiougc.exe
[2009.12.30 08:12:37 | 00,704,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PhotoScreensaver.scr
[2009.12.30 08:12:32 | 00,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wtsapi32.dll
[2009.12.30 08:12:30 | 00,028,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\battc.sys
[2009.12.30 08:10:28 | 01,657,350 | ---- | M] () -- C:\Windows\System32\wlan.tmf
[2009.12.30 08:10:28 | 00,123,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\L2SecHC.dll
[2009.12.30 08:10:27 | 00,290,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanmsm.dll
[2009.12.30 08:10:27 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanhlp.dll
[2009.12.30 08:10:27 | 00,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll
[2009.12.30 08:10:26 | 00,297,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlansec.dll
[2009.12.30 08:09:09 | 00,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml3r.dll
[2009.12.30 08:09:08 | 00,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll
[2009.12.30 08:06:44 | 00,289,792 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2009.12.30 08:06:44 | 00,156,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2009.12.30 08:06:43 | 00,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2009.12.30 08:06:43 | 00,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2009.12.30 08:06:43 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2009.12.30 08:05:30 | 01,233,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll
[2009.12.30 08:04:16 | 02,855,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2009.12.30 08:04:15 | 00,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2009.12.30 08:04:15 | 00,052,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe
[2009.12.30 08:04:15 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe
[2009.12.30 08:04:15 | 00,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll
[2009.12.30 08:04:14 | 02,433,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
[2009.12.30 08:02:47 | 00,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2009.12.30 07:54:45 | 03,502,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2009.12.30 07:54:45 | 03,467,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2009.12.30 07:52:58 | 00,385,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2009.12.30 07:52:58 | 00,230,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2009.12.30 07:52:58 | 00,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll
[2009.12.30 07:52:58 | 00,124,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\advpack.dll
[2009.12.30 07:52:58 | 00,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll
[2009.12.30 07:52:57 | 02,452,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2009.12.30 07:52:57 | 00,380,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2009.12.30 07:52:55 | 00,347,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2009.12.30 07:52:55 | 00,214,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2009.12.30 07:52:55 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2009.12.30 07:52:54 | 00,459,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2009.12.30 07:52:53 | 00,180,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2009.12.30 07:52:49 | 00,389,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2009.12.30 07:52:49 | 00,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2009.12.30 07:52:49 | 00,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2009.12.30 07:52:47 | 01,383,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2009.12.30 07:52:44 | 00,671,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2009.12.30 07:52:43 | 01,830,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2009.12.30 07:52:41 | 00,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2009.12.30 07:52:39 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2009.12.30 07:52:38 | 00,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2009.12.30 07:52:38 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2009.12.30 07:52:38 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2009.12.30 07:50:06 | 00,500,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2009.12.30 07:50:06 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll
[2009.12.30 07:48:11 | 00,116,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll
[2009.12.30 07:48:11 | 00,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll
[2009.12.30 07:47:16 | 00,303,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmpeffects.dll
[2009.12.30 07:45:39 | 00,713,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
[2009.12.30 07:44:45 | 00,356,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MediaMetadataHandler.dll
[2009.12.30 07:44:03 | 00,392,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FirewallAPI.dll
[2009.12.30 07:44:03 | 00,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icfupgd.dll
[2009.12.30 07:44:02 | 00,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmifw.dll
[2009.12.30 07:44:02 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wfapigp.dll
[2009.12.30 07:40:10 | 00,696,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\localspl.dll
[2009.12.30 07:39:25 | 00,123,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2009.12.30 07:39:25 | 00,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2009.12.30 07:39:25 | 00,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2009.12.30 07:39:25 | 00,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avicap32.dll
[2009.12.30 07:37:48 | 00,109,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2009.12.30 07:37:48 | 00,045,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pciidex.sys
[2009.12.30 07:37:09 | 02,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2009.12.30 07:36:32 | 00,224,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2009.12.30 07:36:32 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hcrstco.dll
[2009.12.30 07:36:32 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hccoin.dll
[2009.12.30 07:36:07 | 00,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netcfg.exe
[2009.12.30 07:35:32 | 01,793,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0045.dll
[2009.12.30 07:35:31 | 01,808,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0046.dll
[2009.12.30 07:35:30 | 01,411,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0047.dll
[2009.12.30 07:35:29 | 01,558,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0049.dll
[2009.12.30 07:35:29 | 01,236,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0020.dll
[2009.12.30 07:35:28 | 02,136,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0021.dll
[2009.12.30 07:35:28 | 01,782,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0039.dll
[2009.12.30 07:35:26 | 05,499,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0022.dll
[2009.12.30 07:35:25 | 07,964,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0024.dll
[2009.12.30 07:35:24 | 05,791,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0026.dll
[2009.12.30 07:35:23 | 06,224,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0027.dll
[2009.12.30 07:35:22 | 04,175,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0010.dll
[2009.12.30 07:35:20 | 04,981,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0013.dll
[2009.12.30 07:35:20 | 02,466,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0011.dll
[2009.12.30 07:35:18 | 03,331,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0018.dll
[2009.12.30 07:35:17 | 06,781,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0019.dll
[2009.12.30 07:35:14 | 11,722,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0001.dll
[2009.12.30 07:35:12 | 04,164,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0002.dll
[2009.12.30 07:35:11 | 01,452,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0003.dll
[2009.12.30 07:35:10 | 12,240,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0007.dll
[2009.12.30 07:35:06 | 02,644,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll
[2009.12.30 07:35:05 | 03,419,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004a.dll
[2009.12.30 07:35:04 | 04,093,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004c.dll
[2009.12.30 07:35:04 | 01,702,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004b.dll
[2009.12.30 07:35:03 | 04,045,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons003e.dll
[2009.12.30 07:35:03 | 01,972,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004e.dll
[2009.12.30 07:35:02 | 06,014,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001a.dll
[2009.12.30 07:35:02 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons002a.dll
[2009.12.30 07:35:00 | 06,585,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001b.dll
[2009.12.30 07:34:57 | 06,346,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001d.dll
[2009.12.30 07:34:56 | 09,892,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000a.dll
[2009.12.30 07:34:54 | 06,237,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000c.dll
[2009.12.30 07:34:53 | 05,654,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000f.dll
[2009.12.30 07:34:53 | 01,722,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000d.dll
[2009.12.30 07:34:52 | 04,616,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0414.dll
[2009.12.30 07:34:51 | 05,090,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0416.dll
[2009.12.30 07:34:51 | 05,031,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0816.dll
[2009.12.30 07:34:50 | 07,042,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons081a.dll
[2009.12.30 07:34:49 | 05,071,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsModels0011.dll
[2009.12.30 07:34:49 | 03,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0045.dll
[2009.12.30 07:34:48 | 03,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0046.dll
[2009.12.30 07:34:47 | 03,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0049.dll
[2009.12.30 07:34:47 | 03,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0047.dll
[2009.12.30 07:34:47 | 03,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0039.dll
[2009.12.30 07:34:46 | 03,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0020.dll
[2009.12.30 07:34:46 | 01,799,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0022.dll
[2009.12.30 07:34:46 | 01,799,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0021.dll
[2009.12.30 07:34:45 | 01,965,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0027.dll
[2009.12.30 07:34:45 | 01,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0026.dll
[2009.12.30 07:34:45 | 01,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0024.dll
[2009.12.30 07:34:44 | 04,493,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0010.dll
[2009.12.30 07:34:44 | 02,655,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0011.dll
[2009.12.30 07:34:43 | 03,464,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0013.dll
[2009.12.30 07:34:42 | 01,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0018.dll
[2009.12.30 07:34:41 | 04,495,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0019.dll
[2009.12.30 07:34:41 | 01,523,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0000.dll
[2009.12.30 07:34:40 | 02,597,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0001.dll
[2009.12.30 07:34:40 | 01,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0002.dll
[2009.12.30 07:34:39 | 01,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0003.dll
[2009.12.30 07:34:38 | 02,241,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0007.dll
[2009.12.30 07:34:37 | 04,874,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0009.dll
[2009.12.30 07:34:35 | 03,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004a.dll
[2009.12.30 07:34:34 | 03,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004b.dll
[2009.12.30 07:34:33 | 03,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004c.dll
[2009.12.30 07:34:31 | 03,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004e.dll
[2009.12.30 07:34:30 | 01,799,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData003e.dll
[2009.12.30 07:34:29 | 01,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData001a.dll
[2009.12.30 07:34:29 | 01,799,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData002a.dll
[2009.12.30 07:34:28 | 01,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData001b.dll
[2009.12.30 07:34:27 | 04,493,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData001d.dll
[2009.12.30 07:34:25 | 09,845,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000a.dll
[2009.12.30 07:34:23 | 02,641,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000c.dll
[2009.12.30 07:34:23 | 02,340,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000d.dll
[2009.12.30 07:34:22 | 01,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000f.dll
[2009.12.30 07:34:21 | 04,493,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0414.dll
[2009.12.30 07:34:19 | 04,493,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0416.dll
[2009.12.30 07:34:19 | 00,797,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
[2009.12.30 07:34:18 | 04,493,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0816.dll
[2009.12.30 07:34:17 | 06,917,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0c1a.dll
[2009.12.30 07:34:17 | 01,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData081a.dll
[2009.12.30 07:34:16 | 01,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0c1a.dll
[2009.12.30 07:30:40 | 00,181,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fsquirt.exe
[2009.12.30 07:27:58 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\cs-CZ\i8042prt.sys.mui
[2009.12.30 07:27:58 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\cs-CZ\sermouse.sys.mui
[2009.12.30 07:27:58 | 00,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\cs-CZ\mouclass.sys.mui
[2009.12.30 07:27:58 | 00,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\cs-CZ\kbdclass.sys.mui
[2009.12.30 07:27:58 | 00,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\cs-CZ\mouhid.sys.mui
[2009.12.30 07:27:58 | 00,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\cs-CZ\kbdhid.sys.mui
[2009.12.30 07:27:53 | 00,313,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe
[2009.12.30 07:27:52 | 00,613,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpd_ci.dll
[2009.12.30 07:27:52 | 00,371,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2009.12.30 07:27:52 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srdelayed.exe
[2009.12.30 07:27:51 | 00,944,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2009.12.30 07:27:51 | 00,905,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2009.12.30 07:27:51 | 00,019,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kd1394.dll
[2009.12.30 07:27:50 | 00,620,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ci.dll
[2009.12.30 07:27:49 | 00,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drvinst.exe
[2009.12.30 07:27:49 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
[2009.12.30 07:27:48 | 00,260,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpx.dll
[2009.12.30 07:27:48 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbd106n.dll
[2009.12.30 07:27:47 | 00,115,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\loadperf.dll
[2009.12.30 07:27:47 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lodctr.exe
[2009.12.30 07:27:47 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\unlodctr.exe
[2009.12.30 07:27:47 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\prflbmsg.dll
[2009.12.30 07:27:44 | 00,035,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys
[2009.12.30 07:27:44 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\batt.dll
[2009.12.30 07:27:44 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\f3ahvoas.dll
[2009.12.30 07:27:43 | 00,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dispci.dll
[2009.12.30 07:25:20 | 00,512,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2009.12.30 07:23:43 | 00,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMASF.DLL
[2009.12.30 07:23:43 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\LAPRXY.DLL
[2009.12.30 07:23:43 | 00,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\asferror.dll
[2009.12.30 07:23:05 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\amxread.dll
[2009.12.30 07:23:05 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apilogen.dll
[2009.12.30 07:22:14 | 00,268,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mcbuilder.exe
[2009.12.30 07:22:14 | 00,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLC.dll
[2009.12.30 07:22:13 | 00,566,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLCommDlg.dll
[2009.12.30 07:22:13 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slwmi.dll
[2009.12.30 07:22:12 | 00,351,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLUI.exe
[2009.12.30 07:22:12 | 00,186,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLLUA.exe
[2009.12.30 07:22:10 | 00,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slcinst.dll
[2009.12.30 07:21:18 | 00,712,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecs.dll
[2009.12.30 07:21:18 | 00,425,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
[2009.12.30 07:21:17 | 00,347,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2009.12.30 07:20:04 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[2009.12.30 07:20:03 | 00,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2009.12.30 07:16:24 | 00,105,984 | ---- | M] (Společnost Microsoft) -- C:\Windows\System32\CscMig.dll
[2009.12.30 07:16:15 | 00,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntprint.dll
[2009.12.30 07:16:15 | 00,061,440 | ---- | M] (Společnost Microsoft) -- C:\Windows\System32\ntprint.exe
[2009.12.30 07:16:11 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcmonitor.dll
[2009.12.30 07:16:10 | 00,120,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
[2009.12.30 07:16:09 | 01,984,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2009.12.30 07:16:05 | 08,138,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ssBranded.scr
[2009.12.30 07:15:25 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printcom.dll
[2009.12.30 07:15:24 | 00,441,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32spl.dll
[2009.12.30 07:14:56 | 02,031,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2009.12.30 07:14:22 | 00,113,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\rmcast.sys
[2009.12.30 07:14:21 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshrm.dll
[2009.12.30 07:13:35 | 00,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdxm.tlb
[2009.12.30 07:13:35 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\amcompat.tlb
[2009.12.30 07:12:38 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sbunattend.exe
[2009.12.30 07:11:43 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2009.12.30 07:08:22 | 00,131,072 | ---- | M] () -- C:\Windows\ocsetup_install_NetFx3.etl
[2009.12.30 07:05:23 | 00,000,818 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009.12.30 06:06:05 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2009.12.30 06:06:02 | 04,247,552 | ---- | M] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2009.12.30 06:06:02 | 01,686,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2009.12.30 06:05:07 | 01,645,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2009.12.30 06:03:13 | 08,147,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2009.12.30 06:03:11 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2009.12.30 06:03:10 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll
[2009.12.30 06:03:09 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2009.12.30 06:03:05 | 00,311,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe
[2009.12.29 21:43:43 | 03,869,430 | ---- | M] () -- C:\Users\Pelech Petr\Desktop\ComboFix.exe
[2009.12.29 19:41:07 | 00,196,608 | ---- | M] () -- C:\Windows\ocsetup_cbs_install_NetFx3.perf
[2009.12.29 19:41:07 | 00,065,536 | ---- | M] () -- C:\Windows\ocsetup_cbs_install_NetFx3.dpx
[2009.12.29 19:31:00 | 00,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2009.12.29 19:30:57 | 00,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2009.12.29 19:30:57 | 00,083,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2009.12.29 19:11:59 | 00,996,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll
[2009.12.29 19:11:59 | 00,094,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe
[2009.12.29 19:11:09 | 00,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\INETRES.dll
[2009.12.29 19:10:23 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\fs_rec.sys
[2009.12.29 19:10:23 | 00,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmi.dll
[2009.12.29 19:09:06 | 01,327,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2009.12.29 19:07:58 | 00,274,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\raschap.dll
[2009.12.29 19:07:58 | 00,232,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2009.12.29 19:07:31 | 00,321,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll
[2009.12.29 19:07:15 | 00,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2009.12.29 19:05:44 | 00,604,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2009.12.29 18:49:23 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Pelech Petr\Desktop\OTL.exe
[2009.12.29 18:47:35 | 00,781,909 | ---- | M] () -- C:\Users\Pelech Petr\Desktop\RSIT.exe
[2009.12.29 18:06:20 | 00,135,360 | ---- | M] (Symantec Corporation) -- C:\Users\Pelech Petr\Desktop\FixBlast.exe
[2009.12.29 18:05:07 | 00,245,902 | ---- | M] () -- C:\Users\Pelech Petr\Desktop\daft.exe
[2009.12.29 17:58:08 | 00,000,430 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2009.12.29 16:33:41 | 00,001,860 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\DVD Check.lnk
[2009.12.29 16:33:41 | 00,000,743 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
[2009.12.29 16:31:04 | 01,002,814 | ---- | M] () -- C:\Users\Pelech Petr\Desktop\upmsfx.exe
[2009.12.29 08:34:50 | 00,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini
[2009.12.25 15:21:30 | 19,280,9159 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2009.12.25 14:45:48 | 02,421,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2009.12.25 14:45:48 | 00,044,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2009.12.25 14:44:53 | 00,575,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2009.12.25 14:44:53 | 00,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2009.12.25 14:44:53 | 00,035,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2009.12.25 14:44:13 | 00,171,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2009.12.25 14:44:13 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe

========== Files Created - No Company Name ==========

[2009.12.30 08:18:11 | 00,001,820 | ---- | C] () -- C:\Windows\System32\rasctrnm.h
[2009.12.30 08:10:28 | 01,657,350 | ---- | C] () -- C:\Windows\System32\wlan.tmf
[2009.12.30 07:05:23 | 00,000,818 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009.12.29 21:43:41 | 03,869,430 | ---- | C] () -- C:\Users\Pelech Petr\Desktop\ComboFix.exe
[2009.12.29 19:33:55 | 00,196,608 | ---- | C] () -- C:\Windows\ocsetup_cbs_install_NetFx3.perf
[2009.12.29 19:33:55 | 00,131,072 | ---- | C] () -- C:\Windows\ocsetup_install_NetFx3.etl
[2009.12.29 19:33:55 | 00,065,536 | ---- | C] () -- C:\Windows\ocsetup_cbs_install_NetFx3.dpx
[2009.12.29 18:47:34 | 00,781,909 | ---- | C] () -- C:\Users\Pelech Petr\Desktop\RSIT.exe
[2009.12.29 18:05:06 | 00,245,902 | ---- | C] () -- C:\Users\Pelech Petr\Desktop\daft.exe
[2009.12.29 17:58:08 | 00,000,430 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2009.12.29 16:31:04 | 01,002,814 | ---- | C] () -- C:\Users\Pelech Petr\Desktop\upmsfx.exe
[2009.07.18 12:34:03 | 00,000,000 | ---- | C] () -- C:\Users\Pelech Petr\AppData\Local\FnF4.txt
[2009.02.19 11:43:29 | 00,196,096 | ---- | C] () -- C:\Windows\System32\MACD32.DLL
[2009.02.19 11:43:29 | 00,138,752 | ---- | C] () -- C:\Windows\System32\MASE32.DLL
[2009.02.19 11:43:29 | 00,136,192 | ---- | C] () -- C:\Windows\System32\MAMC32.DLL
[2009.02.19 11:43:29 | 00,057,856 | ---- | C] () -- C:\Windows\System32\MASD32.DLL
[2009.02.19 11:43:29 | 00,027,648 | ---- | C] () -- C:\Windows\System32\MA32.DLL
[2008.12.31 21:52:20 | 00,164,352 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2008.12.25 19:51:31 | 00,000,680 | ---- | C] () -- C:\Users\Pelech Petr\AppData\Local\d3d9caps.dat
[2008.12.09 21:45:26 | 00,000,099 | ---- | C] () -- C:\Users\Pelech Petr\AppData\Local\fusioncache.dat
[2008.12.09 21:45:12 | 00,116,224 | ---- | C] () -- C:\Windows\System32\pdfcmnnt.dll
[2008.12.07 10:58:26 | 00,339,968 | ---- | C] () -- C:\Windows\System32\pythoncom24.dll
[2008.12.07 10:58:26 | 00,114,688 | ---- | C] () -- C:\Windows\System32\pywintypes24.dll
[2008.10.27 19:24:51 | 00,000,600 | ---- | C] () -- C:\Users\Pelech Petr\AppData\Local\PUTTY.RND
[2008.07.15 17:31:39 | 00,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2008.07.13 17:15:07 | 00,000,065 | ---- | C] () -- C:\Windows\wininit.ini
[2008.07.10 19:24:15 | 00,027,043 | ---- | C] () -- C:\Users\Pelech Petr\AppData\Roaming\UserTile.png
[2008.07.10 18:38:22 | 00,000,383 | ---- | C] () -- C:\Windows\System32\haspdos.sys
[2008.07.03 19:52:33 | 00,685,816 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2008.07.03 18:51:57 | 00,032,768 | ---- | C] () -- C:\Users\Pelech Petr\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.07.02 17:07:21 | 00,000,000 | ---- | C] () -- C:\Users\Pelech Petr\AppData\Local\QSwitch.txt
[2008.07.02 17:07:21 | 00,000,000 | ---- | C] () -- C:\Users\Pelech Petr\AppData\Local\DSwitch.txt
[2008.07.02 17:07:21 | 00,000,000 | ---- | C] () -- C:\Users\Pelech Petr\AppData\Local\AtStart.txt
[2008.07.02 16:44:37 | 00,204,800 | ---- | C] () -- C:\Windows\System32\IVIresizeW7.dll
[2008.07.02 16:44:37 | 00,200,704 | ---- | C] () -- C:\Windows\System32\IVIresizeA6.dll
[2008.07.02 16:44:37 | 00,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeP6.dll
[2008.07.02 16:44:37 | 00,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeM6.dll
[2008.07.02 16:44:37 | 00,188,416 | ---- | C] () -- C:\Windows\System32\IVIresizePX.dll
[2008.07.02 16:44:37 | 00,020,480 | ---- | C] () -- C:\Windows\System32\IVIresize.dll
[2007.09.26 23:07:02 | 00,007,680 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2007.03.29 11:42:38 | 00,389,120 | ---- | C] () -- C:\Windows\System32\btwhidcs.dll
[2007.03.10 12:51:48 | 00,282,624 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2007.02.06 01:05:26 | 00,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI
[2007.02.02 17:01:32 | 00,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2007.01.19 15:30:56 | 00,000,000 | ---- | C] () -- C:\Windows\System32\px.ini
[2006.12.07 01:00:50 | 00,012,288 | ---- | C] () -- C:\Windows\System32\DivXWMPExtType.dll
[2006.12.07 00:57:19 | 03,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2006.11.02 08:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.09.18 22:02:40 | 00,520,192 | ---- | C] () -- C:\Windows\System32\CddbPlaylist2Roxio.dll
[2006.09.18 22:02:40 | 00,204,800 | ---- | C] () -- C:\Windows\System32\CddbFileTaggerRoxio.dll
[2006.03.09 11:58:00 | 01,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2006.02.25 19:09:38 | 00,774,144 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2001.11.14 12:56:00 | 01,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll
[1998.05.07 03:10:00 | 00,069,632 | R--- | C] () -- C:\Windows\System32\ODMA32.dll
[1997.06.25 14:24:16 | 00,040,448 | ---- | C] () -- C:\Windows\System32\RegObj.dll
< End of report >

Omlouvám se za 3 příspěvky, do jednoho to nešlo :(

Re: SecurityCentral - problém

Napsal: 30 pro 2009 16:47
od motji
vy jste spustil combofix? pokud ano, ráda bych viděla log :)

Re: SecurityCentral - problém

Napsal: 30 pro 2009 17:18
od petrsvetr
Nene, nespustil, jen nainstaloval, ale nespouštěl jsem to. Aspoň myslím, protože už toho mám na ploše požehnaně a začínám se v tom ztrácet :)

Re: SecurityCentral - problém

Napsal: 30 pro 2009 20:03
od motji
Tak když ho máte už v pc, tak ho spustte, pro jistotu :)

:arrow: Zapojte do pc všechny usb klíče, flashky...co používáte :!:


:arrow: Stáhněte na plochu, ukončete všechna aktivní okna a spusťte ComboFix - http://download.bleepingcomputer.com/sUBs/ComboFix.exe


- ComboFix je třeba spustit pod účtem s právy administrátora

- Před použitím vypněte všechny rezidentní bezpečnostní programy - antiviry, firewally, antispywary

- Po spuštění se zobrazí podmínky užití, potvrďte je stiskem tlačítka Ano

- Dále postupujte dle pokynů, během aplikování ComboFixu neklikejte do zobrazujícího se okna :!:

- Po dokončení skenování, trvajícího maximálně 10 minut, by měl program vytvořit log - C:\ComboFix.txt, skopírujte celý jeho obsah sem

Re: SecurityCentral - problém

Napsal: 31 pro 2009 15:40
od petrsvetr
Takže dávám log z ComboFix

ComboFix 09-12-30.01 - Pelech Petr 31.12.2009 10:08:51.1.2 - x86
Microsoft® Windows Vista™ Business 6.0.6000.0.1250.420.1029.18.1919.1273 [GMT 1:00]
Spuštěný z: c:\users\Pelech Petr\Desktop\ComboFix.exe
SP: Windows Defender *disabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
F:\Autorun.inf

.
((((((((((((((((((((((((( Soubory vytvořené od 2009-11-28 do 2009-12-31 )))))))))))))))))))))))))))))))
.

2009-12-31 05:05 . 2009-12-31 05:05 268800 ----a-w- c:\windows\system32\es.dll
2009-12-30 21:34 . 2009-12-30 21:34 -------- d-----w- C:\Games
2009-12-30 16:29 . 2009-12-30 17:00 -------- d-----w- c:\program files\Brany Skeldalu
2009-12-30 07:19 . 2009-12-30 07:19 61440 ----a-w- c:\windows\system32\winipsec.dll
2009-12-30 07:19 . 2009-12-30 07:19 361984 ----a-w- c:\windows\system32\IPSECSVC.DLL
2009-12-30 07:19 . 2009-12-30 07:19 28672 ----a-w- c:\windows\system32\FwRemoteSvr.dll
2009-12-30 07:19 . 2009-12-30 07:19 272896 ----a-w- c:\windows\system32\polstore.dll
2009-12-30 07:17 . 2009-12-30 07:17 95232 ----a-w- c:\windows\system32\PortableDeviceClassExtension.dll
2009-12-30 07:17 . 2009-12-30 07:17 241152 ----a-w- c:\windows\system32\PortableDeviceApi.dll
2009-12-30 07:17 . 2009-12-30 07:17 160768 ----a-w- c:\windows\system32\PortableDeviceTypes.dll
2009-12-30 07:16 . 2009-12-30 07:16 87040 ----a-w- c:\windows\system32\msoert2.dll
2009-12-30 07:16 . 2009-12-30 07:16 39424 ----a-w- c:\windows\system32\ACCTRES.dll
2009-12-30 07:16 . 2009-12-30 07:16 205824 ----a-w- c:\windows\system32\msoeacct.dll
2009-12-30 07:12 . 2009-12-30 07:12 704000 ----a-w- c:\windows\system32\PhotoScreensaver.scr
2009-12-30 07:12 . 2009-12-30 07:12 356352 ----a-w- c:\windows\system32\wbem\wbemcomn.dll
2009-12-30 07:12 . 2009-12-30 07:12 24064 ----a-w- c:\windows\system32\wtsapi32.dll
2009-12-30 07:12 . 2009-12-30 07:12 258232 ----a-w- c:\windows\system32\drivers\acpi.sys
2009-12-30 07:12 . 2009-12-30 07:12 20920 ----a-w- c:\windows\system32\drivers\compbatt.sys
2009-12-30 07:12 . 2009-12-30 07:12 11264 ----a-w- c:\windows\system32\drivers\wmiacpi.sys
2009-12-30 07:12 . 2009-12-30 07:12 28344 ----a-w- c:\windows\system32\drivers\battc.sys
2009-12-30 07:12 . 2009-12-30 07:12 14208 ----a-w- c:\windows\system32\drivers\CmBatt.sys
2009-12-30 07:12 . 2009-12-30 07:12 542720 ----a-w- c:\windows\system32\sysmain.dll
2009-12-30 07:11 . 2009-12-30 07:11 194560 ----a-w- c:\windows\system32\WebClnt.dll
2009-12-30 07:11 . 2009-12-30 07:11 110080 ----a-w- c:\windows\system32\drivers\mrxdav.sys
2009-12-30 07:10 . 2009-12-30 07:10 123904 ----a-w- c:\windows\system32\L2SecHC.dll
2009-12-30 07:10 . 2009-12-30 07:10 67584 ----a-w- c:\windows\system32\wlanhlp.dll
2009-12-30 07:10 . 2009-12-30 07:10 502272 ----a-w- c:\windows\system32\wlansvc.dll
2009-12-30 07:10 . 2009-12-30 07:10 47104 ----a-w- c:\windows\system32\wlanapi.dll
2009-12-30 07:10 . 2009-12-30 07:10 290816 ----a-w- c:\windows\system32\wlanmsm.dll
2009-12-30 07:10 . 2009-12-30 07:10 297984 ----a-w- c:\windows\system32\wlansec.dll
2009-12-30 07:09 . 2009-12-30 07:09 1260032 ----a-w- c:\windows\system32\msxml3.dll
2009-12-30 07:09 . 2009-12-30 07:09 2048 ----a-w- c:\windows\system32\msxml3r.dll
2009-12-30 07:09 . 2009-12-30 07:09 2048 ----a-w- c:\windows\system32\msxml6r.dll
2009-12-30 07:09 . 2009-12-30 07:09 1406464 ----a-w- c:\windows\system32\msxml6.dll
2009-12-30 07:06 . 2009-12-30 07:06 156160 ----a-w- c:\windows\system32\t2embed.dll
2009-12-30 07:06 . 2009-12-30 07:06 289792 ----a-w- c:\windows\system32\atmfd.dll
2009-12-30 07:06 . 2009-12-30 07:06 72704 ----a-w- c:\windows\system32\fontsub.dll
2009-12-30 07:06 . 2009-12-30 07:06 34304 ----a-w- c:\windows\system32\atmlib.dll
2009-12-30 07:06 . 2009-12-30 07:06 24064 ----a-w- c:\windows\system32\lpk.dll
2009-12-30 07:06 . 2009-12-30 07:06 10240 ----a-w- c:\windows\system32\dciman32.dll
2009-12-30 07:05 . 2009-12-30 07:05 7680 ----a-w- c:\windows\system32\lsass.exe
2009-12-30 07:05 . 2009-12-30 07:05 72704 ----a-w- c:\windows\system32\secur32.dll
2009-12-30 07:05 . 2009-12-30 07:05 408136 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2009-12-30 07:05 . 2009-12-30 07:05 216576 ----a-w- c:\windows\system32\msv1_0.dll
2009-12-30 07:05 . 2009-12-30 07:05 175104 ----a-w- c:\windows\system32\wdigest.dll
2009-12-30 07:05 . 2009-12-30 07:05 1233920 ----a-w- c:\windows\system32\lsasrv.dll
2009-12-30 07:04 . 2009-12-30 07:04 2855424 ----a-w- c:\windows\system32\mf.dll
2009-12-30 07:04 . 2009-12-30 07:04 98816 ----a-w- c:\windows\system32\mfps.dll
2009-12-30 07:04 . 2009-12-30 07:04 52736 ----a-w- c:\windows\system32\rrinstaller.exe
2009-12-30 07:04 . 2009-12-30 07:04 24576 ----a-w- c:\windows\system32\mfpmp.exe
2009-12-30 07:04 . 2009-12-30 07:04 2048 ----a-w- c:\windows\system32\mferror.dll
2009-12-30 07:02 . 2009-12-30 07:02 2048 ----a-w- c:\windows\system32\tzres.dll
2009-12-30 06:59 . 2009-12-30 06:59 376832 ----a-w- c:\windows\system32\winhttp.dll
2009-12-30 06:58 . 2009-12-30 06:58 71680 ----a-w- c:\windows\system32\atl.dll
2009-12-30 06:56 . 2009-12-30 06:56 297472 ----a-w- c:\windows\system32\gdi32.dll
2009-12-30 06:55 . 2009-12-30 06:55 1060920 ----a-w- c:\windows\system32\drivers\ntfs.sys
2009-12-30 06:55 . 2009-12-30 06:55 41984 ----a-w- c:\windows\system32\drivers\monitor.sys
2009-12-30 06:54 . 2009-12-30 06:54 3502152 ----a-w- c:\windows\system32\ntkrnlpa.exe
2009-12-30 06:54 . 2009-12-30 06:54 3467864 ----a-w- c:\windows\system32\ntoskrnl.exe
2009-12-30 06:50 . 2009-12-30 06:50 211456 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2009-12-30 06:50 . 2009-12-30 06:50 500736 ----a-w- c:\windows\system32\msdtcprx.dll
2009-12-30 06:50 . 2009-12-30 06:50 30208 ----a-w- c:\windows\system32\xolehlp.dll
2009-12-30 06:49 . 2009-12-30 06:49 156160 ----a-w- c:\windows\system32\wkssvc.dll
2009-12-30 06:48 . 2009-12-30 06:48 36352 ----a-w- c:\windows\system32\tsgqec.dll
2009-12-30 06:48 . 2009-12-30 06:48 116736 ----a-w- c:\windows\system32\aaclient.dll
2009-12-30 06:48 . 2009-12-30 06:48 1871872 ----a-w- c:\windows\system32\mstscax.dll
2009-12-30 06:47 . 2009-12-30 06:47 303616 ----a-w- c:\windows\system32\wmpeffects.dll
2009-12-30 06:44 . 2009-12-30 06:44 356864 ----a-w- c:\windows\system32\MediaMetadataHandler.dll
2009-12-30 06:44 . 2009-12-30 06:44 86016 ----a-w- c:\windows\system32\icfupgd.dll
2009-12-30 06:44 . 2009-12-30 06:44 63488 ----a-w- c:\windows\system32\drivers\mpsdrv.sys
2009-12-30 06:44 . 2009-12-30 06:44 396800 ----a-w- c:\windows\system32\MPSSVC.dll
2009-12-30 06:44 . 2009-12-30 06:44 392192 ----a-w- c:\windows\system32\FirewallAPI.dll
2009-12-30 06:44 . 2009-12-30 06:44 61952 ----a-w- c:\windows\system32\cmifw.dll
2009-12-30 06:44 . 2009-12-30 06:44 23040 ----a-w- c:\windows\system32\drivers\tunnel.sys
2009-12-30 06:44 . 2009-12-30 06:44 178688 ----a-w- c:\windows\system32\iphlpsvc.dll
2009-12-30 06:44 . 2009-12-30 06:44 16896 ----a-w- c:\windows\system32\wfapigp.dll
2009-12-30 06:44 . 2009-12-30 06:44 15360 ----a-w- c:\windows\system32\drivers\TUNMP.SYS
2009-12-30 06:40 . 2009-12-30 06:40 696832 ----a-w- c:\windows\system32\localspl.dll
2009-12-30 06:39 . 2009-12-30 06:39 88576 ----a-w- c:\windows\system32\avifil32.dll
2009-12-30 06:39 . 2009-12-30 06:39 82944 ----a-w- c:\windows\system32\mciavi32.dll
2009-12-30 06:39 . 2009-12-30 06:39 65024 ----a-w- c:\windows\system32\avicap32.dll
2009-12-30 06:39 . 2009-12-30 06:39 31232 ----a-w- c:\windows\system32\msvidc32.dll
2009-12-30 06:39 . 2009-12-30 06:39 12800 ----a-w- c:\windows\system32\msrle32.dll
2009-12-30 06:39 . 2009-12-30 06:39 123904 ----a-w- c:\windows\system32\msvfw32.dll
2009-12-30 06:37 . 2009-12-30 06:37 45112 ----a-w- c:\windows\system32\drivers\pciidex.sys
2009-12-30 06:37 . 2009-12-30 06:37 21560 ----a-w- c:\windows\system32\drivers\atapi.sys
2009-12-30 06:37 . 2009-12-30 06:37 15928 ----a-w- c:\windows\system32\drivers\pciide.sys
2009-12-30 06:37 . 2009-12-30 06:37 109624 ----a-w- c:\windows\system32\drivers\ataport.sys
2009-12-30 06:37 . 2009-12-30 06:37 211000 ----a-w- c:\windows\system32\drivers\volsnap.sys
2009-12-30 06:37 . 2009-12-30 06:37 154624 ----a-w- c:\windows\system32\drivers\nwifi.sys
2009-12-30 06:37 . 2009-12-30 06:37 2923520 ----a-w- c:\windows\explorer.exe
2009-12-30 06:36 . 2009-12-30 06:36 8704 ----a-w- c:\windows\system32\hcrstco.dll
2009-12-30 06:36 . 2009-12-30 06:36 8704 ----a-w- c:\windows\system32\hccoin.dll
2009-12-30 06:36 . 2009-12-30 06:36 38400 ----a-w- c:\windows\system32\drivers\usbehci.sys
2009-12-30 06:36 . 2009-12-30 06:36 224768 ----a-w- c:\windows\system32\drivers\usbport.sys
2009-12-30 06:36 . 2009-12-30 06:36 19456 ----a-w- c:\windows\system32\drivers\usbohci.sys
2009-12-30 06:36 . 2009-12-30 06:36 193536 ----a-w- c:\windows\system32\drivers\usbhub.sys
2009-12-30 06:36 . 2009-12-30 06:36 73216 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2009-12-30 06:36 . 2009-12-30 06:36 24064 ----a-w- c:\windows\system32\netcfg.exe
2009-12-30 06:34 . 2009-12-30 06:34 6346240 ----a-w- c:\windows\system32\NlsLexicons001d.dll
2009-12-30 06:30 . 2009-12-30 06:30 29184 ----a-w- c:\windows\system32\drivers\BTHUSB.SYS
2009-12-30 06:30 . 2009-12-30 06:30 220160 ----a-w- c:\windows\system32\drivers\bthport.sys
2009-12-30 06:30 . 2009-12-30 06:30 19456 ----a-w- c:\windows\system32\drivers\bthenum.sys
2009-12-30 06:30 . 2009-12-30 06:30 181760 ----a-w- c:\windows\system32\fsquirt.exe
2009-12-30 06:28 . 2009-12-30 06:28 1585664 ----a-w- c:\windows\system32\setupapi.dll
2009-12-30 06:23 . 2009-12-30 06:23 9728 ----a-w- c:\windows\system32\LAPRXY.DLL
2009-12-30 06:23 . 2009-12-30 06:23 223232 ----a-w- c:\windows\system32\WMASF.DLL
2009-12-30 06:23 . 2009-12-30 06:23 2048 ----a-w- c:\windows\system32\asferror.dll
2009-12-30 06:23 . 2009-12-30 06:23 25600 ----a-w- c:\windows\system32\amxread.dll
2009-12-30 06:23 . 2009-12-30 06:23 14848 ----a-w- c:\windows\system32\apilogen.dll
2009-12-30 06:22 . 2009-12-30 06:22 268288 ----a-w- c:\windows\system32\mcbuilder.exe
2009-12-30 06:22 . 2009-12-30 06:22 223232 ----a-w- c:\windows\system32\SLC.dll
2009-12-30 06:22 . 2009-12-30 06:22 33280 ----a-w- c:\windows\system32\slwmi.dll
2009-12-30 06:22 . 2009-12-30 06:22 566784 ----a-w- c:\windows\system32\SLCommDlg.dll
2009-12-30 06:22 . 2009-12-30 06:22 57856 ----a-w- c:\windows\system32\SLUINotify.dll
2009-12-30 06:22 . 2009-12-30 06:22 351232 ----a-w- c:\windows\system32\SLUI.exe
2009-12-30 06:22 . 2009-12-30 06:22 186368 ----a-w- c:\windows\system32\SLLUA.exe
2009-12-30 06:22 . 2009-12-30 06:22 2605568 ----a-w- c:\windows\system32\SLsvc.exe
2009-12-30 06:22 . 2009-12-30 06:22 39936 ----a-w- c:\windows\system32\slcinst.dll
2009-12-30 06:21 . 2009-12-30 06:21 712192 ----a-w- c:\windows\system32\WindowsCodecs.dll
2009-12-30 06:21 . 2009-12-30 06:21 425472 ----a-w- c:\windows\system32\PhotoMetadataHandler.dll
2009-12-30 06:21 . 2009-12-30 06:21 347136 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2009-12-30 06:20 . 2009-12-30 06:20 31232 ----a-w- c:\windows\system32\httpapi.dll
2009-12-30 06:20 . 2009-12-30 06:20 396800 ----a-w- c:\windows\system32\drivers\http.sys
2009-12-30 06:20 . 2009-12-30 06:20 24064 ----a-w- c:\windows\system32\nshhttp.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-12-31 09:18 . 2007-02-12 11:00 12 ----a-w- c:\windows\bthservsdp.dat
2009-12-31 09:13 . 2007-01-08 21:12 531872 ----a-w- c:\windows\system32\perfh005.dat
2009-12-31 09:13 . 2007-01-08 21:12 104706 ----a-w- c:\windows\system32\perfc005.dat
2009-12-30 15:41 . 2008-07-06 13:08 -------- d-----w- c:\program files\sdc202
2009-12-30 11:19 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat
2009-12-30 11:12 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Calendar
2009-12-30 11:12 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2009-12-30 11:11 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Sidebar
2009-12-30 11:01 . 2008-07-13 16:14 -------- d-----w- c:\program files\Radmin
2009-12-30 07:14 . 2009-12-30 07:14 15360 ----a-w- c:\windows\system32\netevent.dll
2009-12-30 07:14 . 2009-12-30 07:14 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2009-12-30 07:14 . 2009-12-30 07:14 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2009-12-30 07:14 . 2009-12-30 07:14 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2009-12-30 07:14 . 2009-12-30 07:14 19968 ----a-w- c:\windows\system32\ARP.EXE
2009-12-30 07:14 . 2009-12-30 07:14 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2009-12-30 07:14 . 2009-12-30 07:14 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2009-12-30 07:14 . 2009-12-30 07:14 103936 ----a-w- c:\windows\system32\netiohlp.dll
2009-12-30 07:14 . 2009-12-30 07:14 10240 ----a-w- c:\windows\system32\finger.exe
2009-12-30 07:14 . 2009-12-30 07:14 22016 ----a-w- c:\windows\system32\netiougc.exe
2009-12-30 07:14 . 2009-12-30 07:14 213592 ----a-w- c:\windows\system32\drivers\netio.sys
2009-12-30 07:14 . 2009-12-30 07:14 167424 ----a-w- c:\windows\system32\tcpipcfg.dll
2009-12-30 07:14 . 2009-12-30 07:14 813568 ----a-w- c:\windows\system32\drivers\tcpip.sys
2009-12-30 06:52 . 2009-12-30 06:52 72704 ----a-w- c:\windows\system32\admparse.dll
2009-12-30 06:52 . 2009-12-30 06:52 832512 ----a-w- c:\windows\system32\wininet.dll
2009-12-30 06:52 . 2009-12-30 06:52 52736 ----a-w- c:\windows\AppPatch\iebrshim.dll
2009-12-30 06:52 . 2009-12-30 06:52 78336 ----a-w- c:\windows\system32\ieencode.dll
2009-12-30 06:52 . 2009-12-30 06:52 48128 ----a-w- c:\windows\system32\mshtmler.dll
2009-12-30 06:52 . 2009-12-30 06:52 26624 ----a-w- c:\windows\system32\ieUnatt.exe
2009-12-30 06:52 . 2009-12-30 06:52 56320 ----a-w- c:\windows\system32\iesetup.dll
2009-12-30 06:34 . 2009-12-30 06:34 9892864 ----a-w- c:\windows\system32\NlsLexicons000a.dll
2009-12-30 06:27 . 2009-12-30 06:27 40960 ----a-w- c:\windows\system32\srclient.dll
2009-12-30 06:23 . 2009-12-30 06:23 40960 ----a-w- c:\windows\AppPatch\apihex86.dll
2009-12-30 05:06 . 2009-12-30 05:06 2560 ----a-w- c:\windows\AppPatch\AcRes.dll
2009-12-30 05:06 . 2009-12-30 05:06 2143744 ----a-w- c:\windows\AppPatch\AcGenral.dll
2009-12-30 05:06 . 2009-12-30 05:06 537600 ----a-w- c:\windows\AppPatch\AcLayers.dll
2009-12-30 05:06 . 2009-12-30 05:06 449024 ----a-w- c:\windows\AppPatch\AcSpecfc.dll
2009-12-30 05:06 . 2009-12-30 05:06 173056 ----a-w- c:\windows\AppPatch\AcXtrnal.dll
2009-11-23 06:12 . 2007-07-13 04:21 -------- d-----w- c:\programdata\Microsoft Help
2000-01-01 13:10 . 2009-03-06 11:10 16896 --sha-w- c:\windows\repair\setup.dat
2008-07-02 16:58 . 2008-07-02 16:58 22 --sha-w- c:\windows\SMINST\HPCD.sys
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-12-30 1232896]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2007-04-19 484904]
"DAEMON Tools"="c:\program files\DAEMON Tools\daemon.exe" [2006-11-12 157592]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-05-16 153136]
"ISUSPM"="c:\programdata\Macrovision\FLEXnet Connect\6\ISUSPM.exe" [2007-07-12 226904]
"PMCRemote"="c:\program files\Pinnacle\Shared Files\Programs\Remote\Remoterm.exe" [2007-07-04 253000]
"PMCLoader"="c:\program files\Pinnacle\TVCenter Pro\PMCLoader.exe" [2007-07-26 105544]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-03-13 39408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2007-07-13 1006264]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2006-12-15 1097728]
"PDF Complete"="c:\program files\PDF Complete\pdfsty.exe" [2007-05-08 331552]
"PTHOSTTR"="c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE" [2007-01-09 145184]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-01-12 827392]
"hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2007-03-01 472776]
"WAWifiMessage"="c:\program files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe" [2007-01-10 317128]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2007-03-12 50696]
"SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 144784]
"QlbCtrl"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2007-11-06 177456]
"CognizanceTS"="c:\progra~1\HEWLET~1\IAM\Bin\ASTSVCC.dll" [2003-12-22 17920]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2005-02-16 49152]
"WinampAgent"="c:\program files\Winamp\winampa.exe" [2006-11-21 35328]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-01 153136]
"WatchDog"="c:\program files\InterVideo\DVD Check\DVDCheck.exe" [2007-05-23 192512]
"Symantec PIF AlertEng"="c:\program files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2008-01-29 583048]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 40048]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"ST Recovery Launcher"="c:\windows\SMINST\launcher.exe" [2007-03-09 44168]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
DVD Check.lnk - c:\program files\InterVideo\DVD Check\DVDCheck.exe [2008-7-2 192512]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\APSHook.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-4141191543-1993807128-1142382555-1006]
"EnableNotifications"=dword:00000001
"EnableNotificationsRef"=dword:00000001

R2 ASBroker;Logon Session Broker;c:\windows\System32\svchost.exe -k Cognizance [2.11.2006 9:35 22016]
R2 ASChannel;Local Communication Channel;c:\windows\System32\svchost.exe -k Cognizance [2.11.2006 9:35 22016]
R2 hpsrv;HP Service;c:\windows\System32\hpservice.exe [5.1.2007 2:00 18944]
R2 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [13.7.2007 5:29 540448]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\System32\drivers\b57nd60x.sys [13.7.2007 4:18 179712]
S3 Ltn_stk7070P;PCTV based TV tuner device;c:\windows\System32\drivers\Ltn_stk7070P.sys [19.2.2009 11:49 466048]
S3 Ltn_stkrc;PCTV Infrared Receiver;c:\windows\System32\drivers\Ltn_stkrc.sys [19.2.2009 11:49 13440]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc
bthsvcs REG_MULTI_SZ BthServ
Cognizance REG_MULTI_SZ ASBroker ASChannel

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2007-04-19 11:23 452136 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'

2009-12-31 c:\windows\Tasks\User_Feed_Synchronization-{FF435F1B-041A-4604-95D8-6E70EC552E4F}.job
- c:\windows\system32\msfeedssync.exe [2006-11-02 09:45]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.hp.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000
IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
FF - ProfilePath - c:\users\Pelech Petr\AppData\Roaming\Mozilla\Firefox\Profiles\i5bhw8l4.default\
FF - prefs.js: browser.startup.homepage - about:blank
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\VistaCodecPack\rm\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\VistaCodecPack\rm\browser\plugins\nprpjplug.dll

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

ActiveSetup-ccc-core-static - msiexec
AddRemove-Deluxe Ski Jump 3_is1 - c:\hry\Deluxe Ski Jump 3\Uninstall\unins000.exe
AddRemove-{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA} - c:\program files\InstallShield Installation Information\{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA}\Setup.exeUNINSTALL



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-12-31 10:26
Windows 6.0.6000 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys hpdskflt.sys hal.dll acpi.sys >>UNKNOWN [0x84F411E8]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\Disk -> CLASSPNP.SYS @ 0x82cb7d1f
\Driver\ACPI -> acpi.sys @ 0x804699d6
\Driver\atapi -> 0x84f411e8
IoDeviceObjectType -> ParseProcedure -> ntkrnlpa.exe @ 0x82596243
\Device\Harddisk0\DR0 -> ParseProcedure -> ntkrnlpa.exe @ 0x82596243
Warning: possible MBR rootkit infection !
user & kernel MBR OK

**************************************************************************

[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\pdfcDispatcher]
"ImagePath"="c:\program files\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'Explorer.exe'(2212)
c:\windows\system32\APSHook.dll
c:\windows\system32\btncopy.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\agrsmsvc.exe
c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\windows\system32\WUDFHost.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
c:\program files\Hewlett-Packard\IAM\bin\asghost.exe
c:\windows\system32\conime.exe
c:\windows\SMINST\scheduler.exe
c:\program files\Hewlett-Packard\Shared\HpqToaster.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
c:\program files\Common Files\Ahead\Lib\NMIndexingService.exe
c:\program files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
.
**************************************************************************
.
Celkový čas: 2009-12-31 10:33:08 - počítač byl restartován
ComboFix-quarantined-files.txt 2009-12-31 09:33

Před spuštěním: Volných bajtů: 46 060 064 768
Po spuštění: Volných bajtů: 51 888 492 544

- - End Of File - - B5724CA810FA48BDB71C3AA799F9D0AB

Re: SecurityCentral - problém

Napsal: 31 pro 2009 17:15
od motji
Máte daemon nebo alcohol?

Re: SecurityCentral - problém

Napsal: 01 led 2010 09:54
od petrsvetr
JJ Daemon mám..

Re: SecurityCentral - problém

Napsal: 01 led 2010 10:01
od motji
:arrow: odinstalujte všechny virtuální jednotky (Daemon nebo alcohol)

:arrow: Stáhněte SPTD http://www.duplexsecure.com/en/downloads
-vyberte verzi podle svého operačního systému. SPTD for Windows (32 bit) nebo (64b)
-uložte na plochu a spusťte
- zvolte možnost Uninstall
- restart PC
- spusťte gmer


:arrow: Stáhněte Gmer http://www.viry.cz/forum/viewtopic.php?f=29&t=62878
- rozbalte a spusťte
-proběhne sken, po skončení se otevře okno s výsledky, kliknete na Save a tím si uložíte log,který sem vložíte

-Podle návodu v odkazu proveďte druhý sken a log sem také vložte.

:arrow: stáhněte MBR
http://www2.gmer.net/mbr/mbr.exe
-uložte ho na plochu


:arrow: start-spustit
do okénka zkopírujte

Kód: Vybrat vše

"%userprofile%\plocha\mbr" -t
ok

:arrow: vytvoří se log s názvem mbr.log, vložte ho zde
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz