průzkumník přestal pracovat u win 7

Zpráva

Lidkyn · #1 Příspěvek od **Lidkyn** » 12 bře 2010 19:41

udělala jsem už vše co se zde píše a vše bez výsledku děkuji za ponoc

#2 Příspěvek od **motji** » 12 bře 2010 21:16

Dobrý večer

Nevím co jste všechno udělala?

Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
- otevře se okno, v něm zaškrtněte Scan All Users , File Scan,
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

netsvcs
%SYSTEMDRIVE%\*.exe
%SYSTEMDRIVE%\eventlog.dll /s /md5
%SYSTEMDRIVE%\scecli.dll /s /md5
%SYSTEMDRIVE%\netlogon.dll /s /md5
%SYSTEMDRIVE%\cngaudit.dll /s /md5
%SYSTEMDRIVE%\sceclt.dll /s /md5
%SYSTEMDRIVE%\ntelogon.dll /s /md5
%SYSTEMDRIVE%\logevent.dll /s /md5
%SYSTEMDRIVE%\iaStor.sys /s /md5
%SYSTEMDRIVE%\nvstor.sys /s /md5
%SYSTEMDRIVE%\atapi.sys /s /md5
%SYSTEMDRIVE%\IdeChnDr.sys /s /md5
%SYSTEMDRIVE%\viasraid.sys /s /md5
%SYSTEMDRIVE%\AGP440.sys /s /md5
%SYSTEMDRIVE%\vaxscsi.sys /s /md5
%SYSTEMDRIVE%\nvatabus.sys /s /md5
%SYSTEMDRIVE%\viamraid.sys /s /md5
%SYSTEMDRIVE%\nvata.sys /s /md5

-klikněte na tlačítko Run scan.
-proběhne sken a objeví se dva logy, obsah obou vložte zde

Lidkyn · #3 Příspěvek od **Lidkyn** » 13 bře 2010 12:28

Lidkyn píše:udělala jsem už vše co se zde píše a vše bez výsledku děkuji za ponoc

nic tak krátkého mi to nepíše jetoho poměrně mnoho aby to sem vešlo

#4 Příspěvek od **motji** » 13 bře 2010 12:52

Ty logy jsou dlouhé, klidně je rozdělte do více příspěvků

Lidkyn · #5 Příspěvek od **Lidkyn** » 15 bře 2010 10:15

motji píše:Dobrý večer
Nevím co jste všechno udělala?

Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
- otevře se okno, v něm zaškrtněte Scan All Users , File Scan,
-do bílého okna dole skopírujte tento skript:
Kód: Vybrat vše
netsvcs
%SYSTEMDRIVE%\*.exe
%SYSTEMDRIVE%\eventlog.dll /s /md5
%SYSTEMDRIVE%\scecli.dll /s /md5
%SYSTEMDRIVE%\netlogon.dll /s /md5
%SYSTEMDRIVE%\cngaudit.dll /s /md5
%SYSTEMDRIVE%\sceclt.dll /s /md5
%SYSTEMDRIVE%\ntelogon.dll /s /md5
%SYSTEMDRIVE%\logevent.dll /s /md5
%SYSTEMDRIVE%\iaStor.sys /s /md5
%SYSTEMDRIVE%\nvstor.sys /s /md5
%SYSTEMDRIVE%\atapi.sys /s /md5
%SYSTEMDRIVE%\IdeChnDr.sys /s /md5
%SYSTEMDRIVE%\viasraid.sys /s /md5
%SYSTEMDRIVE%\AGP440.sys /s /md5
%SYSTEMDRIVE%\vaxscsi.sys /s /md5
%SYSTEMDRIVE%\nvatabus.sys /s /md5
%SYSTEMDRIVE%\viamraid.sys /s /md5
%SYSTEMDRIVE%\nvata.sys /s /md5
-klikněte na tlačítko Run scan.
-proběhne sken a objeví se dva logy, obsah obou vložte zde

Lidkyn · #6 Příspěvek od **Lidkyn** » 15 bře 2010 10:18

motji píše:Ty logy jsou dlouhé, klidně je rozdělte do více příspěvků

PRC - [2010.03.15 10:12:46 | 000,555,008 | ---- | M] (OldTimer Tools) -- C:\Users\HLOŽKOVI\Desktop\OTL.exe
PRC - [2010.03.09 17:18:03 | 000,319,792 | ---- | M] (BitTorrent, Inc.) -- C:\Users\HLOŽKOVI\AppData\Roaming\uTorrent\utorrent.exe
PRC - [2010.03.01 13:15:28 | 000,451,224 | ---- | M] () -- C:\Users\HLOŽKOVI\AppData\Local\Seznam.cz\postak.exe
PRC - [2010.02.21 05:03:12 | 001,093,208 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Essentials\msseces.exe
PRC - [2009.12.30 13:38:00 | 000,181,312 | ---- | M] () -- C:\Program Files\Photodex\ProShowGold\scsiaccess.exe
PRC - [2009.12.09 18:02:38 | 000,017,904 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Essentials\MsMpEng.exe
PRC - [2009.12.09 18:02:36 | 000,202,776 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Essentials\MpCmdRun.exe
PRC - [2009.11.20 19:01:18 | 000,832,296 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2009.11.20 10:17:12 | 000,434,176 | ---- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe
PRC - [2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009.10.30 12:57:08 | 000,369,200 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2009.10.05 18:03:28 | 002,174,976 | ---- | M] (Gainward Co.) -- C:\Program Files\EXPERTool\TBPANEL.exe
PRC - [2009.08.16 14:01:16 | 000,222,968 | ---- | M] () -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe
PRC - [2009.07.14 02:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009.04.30 11:23:26 | 000,090,112 | ---- | M] () -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
PRC - [2009.03.15 11:15:16 | 000,180,224 | ---- | M] (PowerISO Computing, Inc.) -- C:\Program Files\PowerISO\PWRISOVM.EXE
PRC - [2009.02.18 11:39:58 | 006,793,760 | ---- | M] (Realtek Semiconductor) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
PRC - [2008.10.25 08:18:50 | 000,098,696 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
PRC - [2007.12.10 15:55:26 | 000,323,584 | ---- | M] (PixArt Imaging Incorporation) -- C:\Windows\PixArt\PAC7302\Monitor.exe
PRC - [2007.06.27 19:04:00 | 001,213,736 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2007.06.27 19:03:40 | 000,152,872 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2007.05.28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2007.02.20 11:07:40 | 000,199,752 | ---- | M] (Pinnacle Systems GmbH) -- C:\Program Files\Pinnacle\Shared files\Programs\USBTip\USBTip.exe
PRC - [2006.12.28 04:42:32 | 000,606,208 | R--- | M] () -- C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerQuick.exe

========== Modules (SafeList) ==========

MOD - [2010.03.15 10:12:46 | 000,555,008 | ---- | M] (OldTimer Tools) -- C:\Users\HLOŽKOVI\Desktop\OTL.exe
MOD - [2009.07.14 02:16:15 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll
MOD - [2009.07.14 02:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
MOD - [2009.07.14 02:16:13 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samcli.dll
MOD - [2009.07.14 02:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll
MOD - [2009.07.14 02:16:03 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netutils.dll
MOD - [2009.07.14 02:15:35 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll
MOD - [2009.07.14 02:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2009.07.14 02:15:11 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll
MOD - [2009.07.14 02:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll
MOD - [2009.07.14 02:15:02 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
MOD - [2009.07.14 02:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll

========== Win32 Services (SafeList) ==========

SRV - [2010.02.20 15:45:58 | 000,316,816 | ---- | M] (Protection Technology) [Auto | Stopped] -- C:\Windows\System32\appdrvrem01.exe -- (appdrvrem01) Application Driver Auto Removal Service (01)
SRV - [2009.12.30 13:38:00 | 000,181,312 | ---- | M] () [Auto | Running] -- C:\Program Files\Photodex\ProShowGold\scsiaccess.exe -- (ScsiAccess)
SRV - [2009.12.09 18:02:38 | 000,017,904 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Essentials\MsMpEng.exe -- (MsMpSvc)
SRV - [2009.08.19 19:04:40 | 000,822,936 | ---- | M] (BinarySense, Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\BinarySense\hldasvc.exe -- (HDDlife HDD Access service)
SRV - [2009.08.16 14:01:16 | 000,222,968 | ---- | M] () [Auto | Running] -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2009.07.14 02:16:21 | 000,185,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009.07.14 02:16:17 | 000,151,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009.07.14 02:16:17 | 000,119,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpo.dll -- (Power)
SRV - [2009.07.14 02:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009.07.14 02:16:15 | 000,053,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009.07.14 02:16:13 | 000,043,520 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009.07.14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 02:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc) Protokol PNRP (Peer Name Resolution Protocol)
SRV - [2009.07.14 02:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009.07.14 02:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009.07.14 02:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009.07.14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009.07.14 02:15:36 | 000,194,560 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009.07.14 02:15:21 | 000,797,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009.07.14 02:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009.07.14 02:15:10 | 000,218,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2009.07.14 02:14:59 | 000,076,800 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009.07.14 02:14:58 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV) Instalační program ovládacích prvků ActiveX (AxInstSV)
SRV - [2009.07.14 02:14:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009.07.14 02:14:29 | 003,179,520 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\sppsvc.exe -- (sppsvc)
SRV - [2009.06.10 22:14:05 | 000,128,848 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2009.04.30 11:23:26 | 000,090,112 | ---- | M] () [Auto | Running] -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service)
SRV - [2007.05.28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)

========== Driver Services (SafeList) ==========

DRV - [2010.02.20 15:45:59 | 003,069,040 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\Windows\System32\drivers\appdrv01.sys -- (appdrv01) Application Driver (01)
DRV - [2010.01.12 12:03:34 | 011,586,280 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009.12.23 17:26:06 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009.12.02 15:23:40 | 000,149,040 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\MpFilter.sys -- (MpFilter)
DRV - [2009.12.02 15:23:40 | 000,042,368 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2009.08.21 21:24:03 | 000,066,592 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2009.07.14 02:26:21 | 000,015,952 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide)
DRV - [2009.07.14 02:26:17 | 000,297,552 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci)
DRV - [2009.07.14 02:26:15 | 000,422,976 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx)
DRV - [2009.07.14 02:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs)
DRV - [2009.07.14 02:26:15 | 000,146,512 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2009.07.14 02:26:15 | 000,086,608 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas)
DRV - [2009.07.14 02:26:15 | 000,079,952 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata)
DRV - [2009.07.14 02:26:15 | 000,076,368 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arc.sys -- (arc)
DRV - [2009.07.14 02:26:15 | 000,023,616 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\amdxata.sys -- (amdxata)
DRV - [2009.07.14 02:26:15 | 000,014,400 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\aliide.sys -- (aliide)
DRV - [2009.07.14 02:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor)
DRV - [2009.07.14 02:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid)
DRV - [2009.07.14 02:20:44 | 000,044,624 | ---- | M] (IBM Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960)
DRV - [2009.07.14 02:20:37 | 000,089,168 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS)
DRV - [2009.07.14 02:20:36 | 000,332,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV)
DRV - [2009.07.14 02:20:36 | 000,235,584 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR)
DRV - [2009.07.14 02:20:36 | 000,133,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2009.07.14 02:20:36 | 000,096,848 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2009.07.14 02:20:36 | 000,095,824 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC)
DRV - [2009.07.14 02:20:36 | 000,054,864 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2)
DRV - [2009.07.14 02:20:36 | 000,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp)
DRV - [2009.07.14 02:20:36 | 000,030,800 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\megasas.sys -- (megasas)
DRV - [2009.07.14 02:20:36 | 000,013,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2009.07.14 02:20:28 | 000,453,712 | ---- | M] (Emulex) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor)
DRV - [2009.07.14 02:20:28 | 000,070,720 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx)
DRV - [2009.07.14 02:20:28 | 000,067,152 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD)
DRV - [2009.07.14 02:20:28 | 000,046,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2009.07.14 02:19:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid)
DRV - [2009.07.14 02:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009.07.14 02:19:10 | 000,159,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp)
DRV - [2009.07.14 02:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt)
DRV - [2009.07.14 02:19:10 | 000,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vdrvroot.sys -- (vdrvroot)
DRV - [2009.07.14 02:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009.07.14 02:19:10 | 000,016,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\viaide.sys -- (viaide)
DRV - [2009.07.14 02:19:04 | 001,383,488 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300)
DRV - [2009.07.14 02:19:04 | 000,173,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2009.07.14 02:19:04 | 000,106,064 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx)
DRV - [2009.07.14 02:19:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4)
DRV - [2009.07.14 02:19:04 | 000,043,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009.07.14 02:19:04 | 000,040,016 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2)
DRV - [2009.07.14 02:19:04 | 000,021,072 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor)
DRV - [2009.07.14 02:17:54 | 000,369,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\cng.sys -- (CNG)
DRV - [2009.07.14 01:57:25 | 000,272,128 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2009.07.14 01:02:41 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rdpbus.sys -- (rdpbus)
DRV - [2009.07.14 01:01:41 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV - [2009.07.14 00:55:00 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV - [2009.07.14 00:53:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV - [2009.07.14 00:52:44 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2009.07.14 00:52:02 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2009.07.14 00:52:00 | 000,163,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\1394ohci.sys -- (1394ohci)
DRV - [2009.07.14 00:51:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\umpass.sys -- (UmPass)
DRV - [2009.07.14 00:51:27 | 000,046,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\61883.sys -- (61883)
DRV - [2009.07.14 00:51:27 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\avc.sys -- (Avc)
DRV - [2009.07.14 00:51:25 | 000,052,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\msdv.sys -- (MSDV)
DRV - [2009.07.14 00:51:23 | 000,080,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) Ovladač zvuků USB (WDM)
DRV - [2009.07.14 00:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009.07.14 00:51:08 | 000,004,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009.07.14 00:46:55 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig)
DRV - [2009.07.14 00:45:26 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV - [2009.07.14 00:36:52 | 000,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\appid.sys -- (AppID)
DRV - [2009.07.14 00:33:50 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2009.07.14 00:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009.07.14 00:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2009.07.14 00:24:05 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009.07.14 00:19:21 | 000,021,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HidBatt.sys -- (HidBatt)
DRV - [2009.07.14 00:16:36 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi)
DRV - [2009.07.14 00:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdppm.sys -- (AmdPPM)
DRV - [2009.07.13 23:54:14 | 000,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009.07.13 23:53:33 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV - [2009.07.13 23:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer)
DRV - [2009.07.13 23:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm)
DRV - [2009.07.13 23:53:28 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo)
DRV - [2009.07.13 23:53:28 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp)

Lidkyn · #7 Příspěvek od **Lidkyn** » 15 bře 2010 10:21

Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2009.07.13 23:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2009.07.13 23:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv)
DRV - [2009.07.13 23:02:48 | 000,430,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv)
DRV - [2009.04.28 10:08:42 | 000,461,824 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\PAC7302.SYS -- (PAC7302)
DRV - [2009.03.25 16:48:00 | 000,114,728 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018mdm.sys -- (s1018mdm)
DRV - [2009.03.25 16:48:00 | 000,109,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018unic.sys -- (s1018unic) Sony Ericsson Device 1018 USB Ethernet Emulation (WDM)
DRV - [2009.03.25 16:48:00 | 000,106,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018mgmt.sys -- (s1018mgmt) Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM)
DRV - [2009.03.25 16:48:00 | 000,104,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018obex.sys -- (s1018obex)
DRV - [2009.03.25 16:48:00 | 000,086,824 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018bus.sys -- (s1018bus) Sony Ericsson Device 1018 driver (WDM)
DRV - [2009.03.25 16:48:00 | 000,026,024 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018nd5.sys -- (s1018nd5) Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS)
DRV - [2009.03.25 16:48:00 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018mdfl.sys -- (s1018mdfl)
DRV - [2009.03.15 11:25:46 | 000,056,268 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2009.03.01 23:05:32 | 000,139,776 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rt86win7.sys -- (RTL8167)
DRV - [2009.02.18 11:30:38 | 002,323,680 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008.05.30 14:13:26 | 000,027,704 | ---- | M] (Canopus Co,. Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\cdrblock.sys -- (cdrblock)
DRV - [2007.08.29 07:40:34 | 001,183,744 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AVerBDA3x.sys -- (AVerBDA3x)
DRV - [2007.03.16 10:11:38 | 000,012,256 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\TBPanel.sys -- (TBPanel)
DRV - [2006.05.05 19:21:00 | 000,004,608 | ---- | M] (NVIDIA Corporation.) [Kernel | System | Running] -- C:\Windows\System32\drivers\nvport.sys -- (nvport)
DRV - [2006.03.29 08:49:26 | 000,009,856 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\pfc.sys -- (pfc)
DRV - [2005.09.23 22:18:32 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MarvinBus.sys -- (MarvinBus)
DRV - [2004.03.19 17:11:22 | 000,090,968 | ---- | M] (VM) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbVM31b.sys -- (ZSMC301b)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\..\URLSearchHook: {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.)
IE - HKLM\..\URLSearchHook: {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfre0.dll (Conduit Ltd.)

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2475029
IE - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = E5 C6 13 86 DE 7F CA 01 [binary data]
IE - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\..\URLSearchHook: {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
IE - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\..\URLSearchHook: {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\..\URLSearchHook: {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfre0.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

O1 HOSTS File: ([2009.06.10 22:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll ()
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll File not found
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Ask Search Assistant BHO) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
O2 - BHO: (AVG Security Toolbar) - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL File not found
O2 - BHO: (MyAshampoo Toolbar) - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.)
O2 - BHO: (free-downloads.net Toolbar) - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfre0.dll (Conduit Ltd.)
O2 - BHO: (Ask Toolbar BHO) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL File not found
O3 - HKLM\..\Toolbar: (MyAshampoo Toolbar) - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll ()
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKLM\..\Toolbar: (free-downloads.net Toolbar) - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfre0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O3 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\..\Toolbar\WebBrowser: (MyAshampoo Toolbar) - {A1E75A0E-4397-4BA8-BB50-E19FB66890F4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\..\Toolbar\WebBrowser: (free-downloads.net Toolbar) - {ECDEE021-0D17-467F-A1FF-C7A115230949} - C:\Program Files\free-downloads.net\tbfre0.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\..\Toolbar\WebBrowser: (Ask Toolbar) - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O4 - HKLM..\Run: [MSSE] c:\Program Files\Microsoft Security Essentials\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [PAC7302_Monitor] C:\Windows\PixArt\PAC7302\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)
O4 - HKLM..\Run: [reset] C:\Windows\reset.reg ()
O4 - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [USBToolTip] C:\Program Files\Pinnacle\Shared files\Programs\USBTip\USBTip.exe (Pinnacle Systems GmbH)
O4 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001..\Run: [AlcoholAutomount] C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe (Alcohol Soft Development Team)
O4 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001..\Run: [GAINWARD] C:\Program Files\EXPERTool\TBPanel.exe (Gainward Co.)
O4 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001..\Run: [Nektra OEAPI] File not found
O4 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001..\Run: [OEXPRESS] File not found
O4 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001..\Run: [Seznam Postak] C:\Users\HLOŽKOVI\AppData\Local\Seznam.cz\postak.exe ()
O4 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001..\Run: [Sony Ericsson PC Suite] C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe (Sony Ericsson Mobile Communications AB)
O4 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001..\Run: [uTorrent] C:\Users\HLOŽKOVI\AppData\Roaming\uTorrent\utorrent.exe (BitTorrent, Inc.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: C:\Users\HLOŽKOVI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HDDlife.lnk = C:\Program Files\BinarySense\HDDlife 3\HDDlifePro.exe File not found
O4 - Startup: C:\Users\HLOŽKOVI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: WikiKomentáře Google... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll (Google Inc.)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.96.161.6 212.96.160.1
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\hddlife {BD758015-47D9-477A-8873-4B688A2BC0E2} - C:\Program Files\Common Files\BinarySense\hlAPP.dll (BinarySense, Inc.)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll File not found
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{188d7d15-efe0-11de-bac3-000acd195e62}\Shell - "" = AutoRun
O33 - MountPoints2\{188d7d15-efe0-11de-bac3-000acd195e62}\Shell\AutoRun\command - "" = H:\autoplay.exe -- File not found
O33 - MountPoints2\{256483da-f2ee-11de-b3ad-000acd195e62}\Shell - "" = AutoRun
O33 - MountPoints2\{256483da-f2ee-11de-b3ad-000acd195e62}\Shell\AutoRun\command - "" = H:\autorun.exe -- File not found
O33 - MountPoints2\{256483da-f2ee-11de-b3ad-000acd195e62}\Shell\Setup\command - "" = H:\support\setup\setup.exe -- File not found
O33 - MountPoints2\{2f2f7851-1610-11df-99f2-000acd195e62}\Shell - "" = AutoRun
O33 - MountPoints2\{2f2f7851-1610-11df-99f2-000acd195e62}\Shell\AutoRun\command - "" = G:\Startme.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010.03.15 10:12:45 | 000,555,008 | ---- | C] (OldTimer Tools) -- C:\Users\HLOŽKOVI\Desktop\OTL.exe
[2010.03.13 10:58:49 | 000,000,000 | ---D | C] -- C:\Users\HLOŽKOVI\AppData\Roaming\gtk-2.0
[2010.03.13 10:58:34 | 000,000,000 | ---D | C] -- C:\Users\HLOŽKOVI\.thumbnails
[2010.03.13 09:44:08 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Essentials
[2010.03.12 21:35:13 | 000,000,000 | ---D | C] -- C:\Users\HLOŽKOVI\svatba
[2010.03.12 19:25:59 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe
[2010.03.12 18:38:16 | 000,000,000 | ---D | C] -- C:\Users\HLOŽKOVI\AppData\Local\ElevatedDiagnostics
[2010.03.12 17:54:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Yahoo!
[2010.03.12 17:54:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Studio 12
[2010.03.12 17:54:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle Studio Plus
[2010.03.12 17:54:09 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Pinnacle
[2010.03.12 15:52:37 | 000,000,000 | ---D | C] -- C:\Program Files\SureThing Express Labeler
[2010.03.12 15:43:31 | 000,000,000 | ---D | C] -- C:\Users\HLOŽKOVI\AppData\Roaming\proDAD
[2010.03.12 15:43:27 | 000,000,000 | ---D | C] -- C:\Program Files\proDAD
[2010.03.12 14:14:59 | 000,000,000 | ---D | C] -- C:\Users\HLOŽKOVI\Documents\Pinnacle Studio
[2010.03.11 13:33:41 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue
[2010.03.11 13:33:41 | 000,000,000 | ---D | C] -- C:\ProgramData\DriverScanner
[2010.03.11 13:33:29 | 000,000,000 | -H-D | C] -- C:\ProgramData\{66E2F539-12B6-4870-A500-7689CDE75C5E}
[2010.03.09 17:36:30 | 000,000,000 | ---D | C] -- C:\Users\HLOŽKOVI\Documents\ZPS12
[2010.03.09 17:36:01 | 000,000,000 | ---D | C] -- C:\Users\HLOŽKOVI\AppData\Local\Zoner
[2010.03.09 17:35:29 | 000,000,000 | ---D | C] -- C:\Program Files\Zoner
[2010.03.08 13:09:34 | 000,000,000 | ---D | C] -- C:\Program Files\iTV
[2010.02.24 15:49:56 | 000,090,112 | ---- | C] (MindVision Software) -- C:\Windows\unvise32.exe
[2010.02.24 15:49:53 | 000,000,000 | ---D | C] -- C:\Program Files\LooksBuilderSE
[2010.02.24 13:38:58 | 000,000,000 | ---D | C] -- C:\Users\HLOŽKOVI\AppData\Roaming\vlc
[2010.02.24 07:59:18 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2010.02.24 07:59:13 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll
[2010.02.24 07:59:12 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2010.02.24 07:59:12 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdri.dll
[2010.02.24 07:59:12 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2010.02.24 07:59:10 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010.02.20 15:45:59 | 003,069,040 | ---- | C] (Protection Technology) -- C:\Windows\System32\drivers\appdrv01.sys
[2010.02.20 15:45:58 | 000,316,816 | ---- | C] (Protection Technology) -- C:\Windows\System32\appdrvrem01.exe
[2010.02.20 14:45:55 | 000,000,000 | ---D | C] -- C:\Windows\DD1865F0AD7340FBB23E1822E02396FF.TMP
[2010.02.20 14:45:36 | 000,000,000 | ---D | C] -- C:\Users\HLOŽKOVI\Documents\patamat
[2010.02.20 14:45:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PataMat
[2010.02.20 14:45:33 | 000,000,000 | ---D | C] -- C:\Program Files\Centauri
[2010.02.20 14:26:48 | 000,000,000 | ---D | C] -- C:\Users\HLOŽKOVI\AppData\Roaming\Uniblue
[2010.02.20 14:24:56 | 000,000,000 | ---D | C] -- C:\Program Files\MyAshampoo
[2010.02.20 13:36:02 | 000,069,632 | ---- | C] (Matrox Graphics Inc.) -- C:\Windows\System32\MtxPreview.dll
[2010.02.20 13:36:02 | 000,049,152 | ---- | C] (Matrox Graphics Inc.) -- C:\Windows\System32\MtxParhBFXPreview.dll
[2010.02.20 13:36:02 | 000,049,152 | ---- | C] (Canopus Co., Ltd.) -- C:\Windows\System32\CvoAPI.dll
[2010.02.20 13:35:45 | 000,000,000 | ---D | C] -- C:\Program Files\Boris FX, Inc
[2010.02.20 12:06:04 | 000,000,000 | R--D | C] -- C:\Users\HLOŽKOVI\Desktop\Vyprávěj
[2010.02.20 11:48:55 | 000,033,340 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dbmsqlgc.dll
[2010.02.20 11:48:55 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dbmsgnet.dll
[2010.02.20 11:48:55 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cliconfg.728
[2010.02.19 20:13:28 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Odbctl32.dll
[2010.02.19 20:13:27 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Odbccp32.cpl
[2010.02.19 19:27:21 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Components
[2010.02.19 19:26:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Ulead Systems
[2010.02.19 19:25:14 | 000,000,000 | ---D | C] -- C:\Program Files\Corel
[2010.02.18 13:57:16 | 000,000,000 | ---D | C] -- C:\Users\HLOŽKOVI\AppData\Roaming\dvdcss
[2010.02.16 12:30:11 | 000,048,128 | ---- | C] (PixArt Imaging Incorporation) -- C:\Windows\System32\Remove.exe
[2010.02.16 12:30:10 | 000,461,824 | ---- | C] (PixArt Imaging Inc.) -- C:\Windows\System32\drivers\PAC7302.SYS
[2010.02.16 12:30:10 | 000,006,656 | ---- | C] (PixArt Imaging Inc.) -- C:\Windows\System32\CoInst_071029.dll
[2010.02.16 12:30:07 | 000,141,824 | ---- | C] (PixArt Imaging Incorporation) -- C:\Windows\System32\SP7302.AX
[2010.02.16 12:30:07 | 000,000,000 | ---D | C] -- C:\Program Files\KYE SYSTEMS CORP
[2010.02.16 12:30:06 | 000,000,000 | ---D | C] -- C:\Windows\PixArt
[2010.02.16 12:30:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PAC7302
[2010.02.16 12:08:44 | 000,000,000 | ---D | C] -- C:\Users\HLOŽKOVI\AppData\Local\AVer MediaCenter
[2010.02.16 12:07:43 | 000,000,000 | ---D | C] -- C:\Users\HLOŽKOVI\Documents\AVerTV
[2010.02.16 12:04:27 | 000,065,536 | ---- | C] (AVerMedia Technologies, Inc.) -- C:\Windows\System32\CardID.dll
[2010.02.16 12:04:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AVerMedia
[2010.02.16 12:04:12 | 000,000,000 | ---D | C] -- C:\Program Files\AVerMedia
[2010.02.15 19:36:17 | 000,049,152 | ---- | C] (Vimicro) -- C:\Windows\vmsnap3.exe
[2010.02.15 19:35:55 | 000,000,000 | ---D | C] -- C:\Program Files\Vimicro
[2010.02.15 02:44:59 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft CAPICOM 2.1.0.2
[2010.02.13 22:06:51 | 000,000,000 | ---D | C] -- C:\Users\HLOŽKOVI\AppData\Local\Update
[2010.02.13 22:06:46 | 000,000,000 | ---D | C] -- C:\Zalohy
[2010.02.13 22:03:50 | 000,000,000 | ---D | C] -- C:\Users\HLOŽKOVI\AppData\Roaming\Kastner software
[2010.02.13 22:03:10 | 000,000,000 | ---D | C] -- C:\ProgramData\KASTNER software
[2010.02.13 22:03:10 | 000,000,000 | ---D | C] -- C:\Program Files\KASTNER software
[2010.02.10 08:03:28 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\ProgramData\hpe8BDA.dll
[2010.02.01 13:57:19 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\HLOŽKOVI\AppData\Roaming\pcouffin.sys
[2010.01.10 11:51:58 | 009,758,584 | ---- | C] (Mozy, Inc.) -- C:\ProgramData\Tempmozy-update-8ab1183a2ec3629bbadfd81de306dd50.exe
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010.03.15 10:13:11 | 003,670,016 | -HS- | M] () -- C:\Users\HLOŽKOVI\ntuser.dat
[2010.03.15 10:12:46 | 000,555,008 | ---- | M] (OldTimer Tools) -- C:\Users\HLOŽKOVI\Desktop\OTL.exe
[2010.03.15 10:09:22 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010.03.15 10:03:58 | 000,014,016 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010.03.15 10:03:58 | 000,014,016 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010.03.15 10:03:21 | 001,497,874 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010.03.15 10:03:21 | 000,640,252 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2010.03.15 10:03:21 | 000,624,822 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010.03.15 10:03:21 | 000,126,288 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2010.03.15 10:03:21 | 000,111,054 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010.03.15 10:02:49 | 000,000,349 | ---- | M] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2010.03.15 09:58:25 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.03.15 09:58:21 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.03.15 09:58:16 | 2415,321,088 | -HS- | M] () -- C:\hiberfil.sys
[2010.03.15 07:56:03 | 003,356,683 | -H-- | M] () -- C:\Users\HLOŽKOVI\AppData\Local\IconCache.db
[2010.03.13 22:21:00 | 000,000,940 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010.03.13 12:02:53 | 000,020,510 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]CONTENT_DVD_Bonus_for_Pinnacle_12_11_Multilang_CZ_by_Err_.torrent
[2010.03.13 11:00:05 | 000,001,545 | ---- | M] () -- C:\Users\HLOŽKOVI\.recently-used.xbel
[2010.03.13 09:44:09 | 000,001,043 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk
[2010.03.13 09:38:35 | 000,524,288 | -HS- | M] () -- C:\Users\HLOŽKOVI\ntuser.dat{f9da3bbb-2dfe-11df-8119-000acd195e62}.TMContainer00000000000000000002.regtrans-ms
[2010.03.13 09:38:35 | 000,524,288 | -HS- | M] () -- C:\Users\HLOŽKOVI\ntuser.dat{f9da3bbb-2dfe-11df-8119-000acd195e62}.TMContainer00000000000000000001.regtrans-ms
[2010.03.13 09:38:35 | 000,065,536 | -HS- | M] () -- C:\Users\HLOŽKOVI\ntuser.dat{f9da3bbb-2dfe-11df-8119-000acd195e62}.TM.blf
[2010.03.12 22:40:21 | 000,012,288 | ---- | M] () -- C:\Users\HLOŽKOVI\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.03.12 19:20:25 | 000,524,288 | -HS- | M] () -- C:\Users\HLOŽKOVI\ntuser.dat{eb82eb6f-2de2-11df-ae1a-000acd195e62}.TMContainer00000000000000000002.regtrans-ms
[2010.03.12 19:20:25 | 000,524,288 | -HS- | M] () -- C:\Users\HLOŽKOVI\ntuser.dat{eb82eb6f-2de2-11df-ae1a-000acd195e62}.TMContainer00000000000000000001.regtrans-ms
[2010.03.12 19:20:25 | 000,065,536 | -HS- | M] () -- C:\Users\HLOŽKOVI\ntuser.dat{eb82eb6f-2de2-11df-ae1a-000acd195e62}.TM.blf
[2010.03.12 17:56:40 | 000,001,152 | ---- | M] () -- C:\Users\Public\Desktop\Pinnacle Studio 12.lnk
[2010.03.12 15:52:39 | 000,001,064 | ---- | M] () -- C:\Users\HLOŽKOVI\Desktop\SureThing Express Labeler.lnk
[2010.03.12 15:38:35 | 000,002,123 | ---- | M] () -- C:\Users\Public\Desktop\Pinnacle Instant DVD Recorder.lnk
[2010.03.12 11:37:54 | 006,469,984 | ---- | M] () -- C:\Users\HLOŽKOVI\Desktop\studio14.pdf
[2010.03.11 14:15:56 | 000,087,608 | ---- | M] () -- C:\Users\HLOŽKOVI\AppData\Roaming\inst.exe
[2010.03.11 14:15:56 | 000,047,360 | ---- | M] (VSO Software) -- C:\Users\HLOŽKOVI\AppData\Roaming\pcouffin.sys
[2010.03.11 14:15:56 | 000,007,887 | ---- | M] () -- C:\Users\HLOŽKOVI\AppData\Roaming\pcouffin.cat
[2010.03.11 14:15:56 | 000,001,144 | ---- | M] () -- C:\Users\HLOŽKOVI\AppData\Roaming\pcouffin.inf
[2010.03.11 14:12:24 | 000,001,041 | ---- | M] () -- C:\Users\HLOŽKOVI\AppData\Roaming\vso_ts_preview.xml
[2010.03.11 10:51:20 | 000,011,386 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]ESET_Smart_Security_4_a_NOD32_4_NAVZDY_OPRAVA_32_BIT_.torrent
[2010.03.10 10:18:39 | 000,073,184 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]Mrnousci_Minuscule_Komplet_6_DVD_.torrent
[2010.03.09 17:35:50 | 000,002,019 | ---- | M] () -- C:\Users\Public\Desktop\Zoner Photo Studio 12.lnk
[2010.03.08 13:32:47 | 000,012,548 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]Pocahontas_2_Cesta_domov.torrent
[2010.03.08 13:32:22 | 000,022,395 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]Pocahontas.torrent
[2010.03.08 13:31:55 | 000,014,581 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]Pocahontas_1.torrent
[2010.03.08 13:28:42 | 000,027,008 | ---- | M] () -- C:\Users\HLOŽKOVI\Sipkova.ruzenka.SE.1959.PAL.DVD5.CZ-EXeC[created_by_EXeCUTTiONS].torrent
[2010.03.08 09:17:02 | 000,022,603 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]High_School_Musical_1_2_3.torrent
[2010.03.08 09:12:20 | 000,018,237 | ---- | M] () -- C:\Users\HLOŽKOVI\torrents] Pepek namornik.torrent
[2010.02.26 11:32:40 | 000,016,575 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]Desnej_dupak_Dance_Flick_2009_.torrent
[2010.02.26 11:30:51 | 000,023,283 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]2012.torrent
[2010.02.26 09:56:01 | 000,016,177 | ---- | M] () -- C:\Users\HLOŽKOVI\torrents] 2012 (CZ BRRip).torrent
[2010.02.24 15:49:53 | 1741,147,510 | ---- | M] () -- C:\Users\HLOŽKOVI\Adobe.Premiere.Pro.zip
[2010.02.24 14:21:20 | 100,000,000 | ---- | M] () -- C:\Users\HLOŽKOVI\Adobe.Premiere.Elements.v7.0.Multilingual.Incl.Keymaker-CORE.part3.rar
[2010.02.24 14:18:57 | 100,000,000 | ---- | M] () -- C:\Users\HLOŽKOVI\Adobe.Premiere.Elements.v7.0.Multilingual.Incl.Keymaker-CORE.part2.rar
[2010.02.24 14:16:48 | 100,000,000 | ---- | M] () -- C:\Users\HLOŽKOVI\Adobe.Premiere.Elements.v7.0.Multilingual.Incl.Keymaker-CORE.part4.rar
[2010.02.24 14:15:59 | 031,217,500 | ---- | M] () -- C:\Users\HLOŽKOVI\Adobe_Premiere_manual_CZ.pdf
[2010.02.24 13:37:28 | 000,001,028 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2010.02.24 13:31:54 | 018,499,623 | ---- | M] () -- C:\Users\HLOŽKOVI\Desktop\vlc-1.0.5-win32.exe
[2010.02.24 13:28:19 | 000,004,956 | ---- | M] () -- C:\Users\HLOŽKOVI\INTERNET.TV.ZDARMA [unique-tracker].torrent
[2010.02.24 11:38:11 | 000,012,492 | ---- | M] () -- C:\Users\HLOŽKOVI\SONY Vegas 7 [unique-tracker].torrent
[2010.02.24 11:32:58 | 000,011,050 | ---- | M] () -- C:\Users\HLOŽKOVI\Zoner Photo Studio Professional CZ [unique-tracker].torrent
[2010.02.24 09:16:06 | 000,181,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010.02.20 15:45:59 | 003,069,040 | ---- | M] (Protection Technology) -- C:\Windows\System32\drivers\appdrv01.sys
[2010.02.20 15:45:58 | 000,316,816 | ---- | M] (Protection Technology) -- C:\Windows\System32\appdrvrem01.exe
[2010.02.20 11:48:55 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cliconfg.728
[2010.02.19 20:47:17 | 000,153,792 | ---- | M] () -- C:\Users\HLOŽKOVI\AppData\Local\GDIPFONTCACHEV1.DAT
[2010.02.19 19:40:55 | 000,501,072 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010.02.19 18:58:25 | 000,011,672 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]Vypravej_9_dil_Ode_me_to_nemate_.torrent
[2010.02.19 18:26:21 | 000,014,257 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]Corel_VideoStudio_Pro_X2_v12_0_98_0.torrent
[2010.02.19 18:09:32 | 000,012,017 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]Sony_vegas_7.torrent
[2010.02.19 17:01:48 | 000,013,364 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]Sony_Vegas_Pro_9_0a_32bit_.torrent
[2010.02.19 15:53:42 | 000,001,174 | ---- | M] () -- C:\Users\HLOŽKOVI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HDDlife.lnk
[2010.02.16 12:06:15 | 000,002,212 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVerQuick.lnk
[2010.02.16 12:06:15 | 000,002,121 | ---- | M] () -- C:\Users\Public\Desktop\AVer MediaCenter.lnk
[2010.02.16 12:04:50 | 000,001,957 | ---- | M] () -- C:\Users\Public\Desktop\AVerTV 6.lnk
[2010.02.15 19:36:17 | 000,002,138 | ---- | M] () -- C:\Users\Public\Desktop\Zoom.lnk
[2010.02.15 17:35:11 | 000,020,651 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]HOT_WHEELS_ACCELERACERS_3_BOD_ZLOMU.torrent
[2010.02.15 17:34:37 | 000,018,223 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]HOT_WHEELS_ACCELERACERS_RYCHLOST_TICHA.torrent
[2010.02.15 17:34:03 | 000,023,303 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]Hot_Wheels_Acceleracers_Start_Hlavni_Zavod.torrent
[2010.02.15 17:32:29 | 000,018,830 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]Bionicle_Zrozeni_Legendy_Bionicle_The_Legend_Reborn.torrent
[2010.02.15 16:29:45 | 000,014,138 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]Pat_a_Mat_a_je_to_.torrent
[2010.02.13 22:03:45 | 000,002,124 | ---- | M] () -- C:\Users\Public\Desktop\FORM studio.lnk
[2010.02.13 13:21:30 | 000,018,300 | ---- | M] () -- C:\Users\HLOŽKOVI\SK.torrent
[2010.02.13 12:23:39 | 000,011,112 | ---- | M] () -- C:\Users\HLOŽKOVI\[CzT]Druha_svetova_valka_v_barve_Vitezstvi_v_Pacifiku_World_War_II_in_Colour_Victory_in_the_Pacific_2009_.torrent
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.03.13 12:02:53 | 000,020,510 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]CONTENT_DVD_Bonus_for_Pinnacle_12_11_Multilang_CZ_by_Err_.torrent
[2010.03.13 11:00:05 | 000,001,545 | ---- | C] () -- C:\Users\HLOŽKOVI\.recently-used.xbel
[2010.03.13 09:44:09 | 000,001,043 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk
[2010.03.12 19:22:49 | 000,524,288 | -HS- | C] () -- C:\Users\HLOŽKOVI\ntuser.dat{f9da3bbb-2dfe-11df-8119-000acd195e62}.TMContainer00000000000000000002.regtrans-ms
[2010.03.12 19:22:49 | 000,524,288 | -HS- | C] () -- C:\Users\HLOŽKOVI\ntuser.dat{f9da3bbb-2dfe-11df-8119-000acd195e62}.TMContainer00000000000000000001.regtrans-ms
[2010.03.12 19:22:49 | 000,065,536 | -HS- | C] () -- C:\Users\HLOŽKOVI\ntuser.dat{f9da3bbb-2dfe-11df-8119-000acd195e62}.TM.blf
[2010.03.12 18:45:15 | 000,524,288 | -HS- | C] () -- C:\Users\HLOŽKOVI\ntuser.dat{eb82eb6f-2de2-11df-ae1a-000acd195e62}.TMContainer00000000000000000002.regtrans-ms
[2010.03.12 18:45:15 | 000,524,288 | -HS- | C] () -- C:\Users\HLOŽKOVI\ntuser.dat{eb82eb6f-2de2-11df-ae1a-000acd195e62}.TMContainer00000000000000000001.regtrans-ms
[2010.03.12 18:45:15 | 000,065,536 | -HS- | C] () -- C:\Users\HLOŽKOVI\ntuser.dat{eb82eb6f-2de2-11df-ae1a-000acd195e62}.TM.blf
[2010.03.12 17:56:40 | 000,001,152 | ---- | C] () -- C:\Users\Public\Desktop\Pinnacle Studio 12.lnk
[2010.03.12 17:36:47 | 000,000,349 | ---- | C] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2010.03.12 15:52:39 | 000,001,064 | ---- | C] () -- C:\Users\HLOŽKOVI\Desktop\SureThing Express Labeler.lnk
[2010.03.12 15:41:20 | 000,000,000 | ---- | C] () -- C:\Windows\Graffiti5.2Pin.ini
[2010.03.12 15:38:35 | 000,002,123 | ---- | C] () -- C:\Users\Public\Desktop\Pinnacle Instant DVD Recorder.lnk
[2010.03.12 15:26:51 | 000,013,824 | ---- | C] () -- C:\Users\HLOŽKOVI\Desktop\Keygen.exe
[2010.03.12 11:37:49 | 006,469,984 | ---- | C] () -- C:\Users\HLOŽKOVI\Desktop\studio14.pdf
[2010.03.11 10:51:20 | 000,011,386 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]ESET_Smart_Security_4_a_NOD32_4_NAVZDY_OPRAVA_32_BIT_.torrent
[2010.03.10 10:18:39 | 000,073,184 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]Mrnousci_Minuscule_Komplet_6_DVD_.torrent
[2010.03.09 17:35:50 | 000,002,019 | ---- | C] () -- C:\Users\Public\Desktop\Zoner Photo Studio 12.lnk
[2010.03.08 13:32:47 | 000,012,548 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]Pocahontas_2_Cesta_domov.torrent
[2010.03.08 13:32:22 | 000,022,395 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]Pocahontas.torrent
[2010.03.08 13:31:55 | 000,014,581 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]Pocahontas_1.torrent
[2010.03.08 13:28:42 | 000,027,008 | ---- | C] () -- C:\Users\HLOŽKOVI\Sipkova.ruzenka.SE.1959.PAL.DVD5.CZ-EXeC[created_by_EXeCUTTiONS].torrent
[2010.03.08 09:17:02 | 000,022,603 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]High_School_Musical_1_2_3.torrent
[2010.03.08 09:12:20 | 000,018,237 | ---- | C] () -- C:\Users\HLOŽKOVI\torrents] Pepek namornik.torrent
[2010.02.26 11:32:40 | 000,016,575 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]Desnej_dupak_Dance_Flick_2009_.torrent
[2010.02.26 11:30:51 | 000,023,283 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]2012.torrent
[2010.02.26 09:56:01 | 000,016,177 | ---- | C] () -- C:\Users\HLOŽKOVI\torrents] 2012 (CZ BRRip).torrent
[2010.02.24 14:13:17 | 031,217,500 | ---- | C] () -- C:\Users\HLOŽKOVI\Adobe_Premiere_manual_CZ.pdf
[2010.02.24 14:10:47 | 100,000,000 | ---- | C] () -- C:\Users\HLOŽKOVI\Adobe.Premiere.Elements.v7.0.Multilingual.Incl.Keymaker-CORE.part2.rar
[2010.02.24 14:10:16 | 100,000,000 | ---- | C] () -- C:\Users\HLOŽKOVI\Adobe.Premiere.Elements.v7.0.Multilingual.Incl.Keymaker-CORE.part3.rar
[2010.02.24 14:09:06 | 100,000,000 | ---- | C] () -- C:\Users\HLOŽKOVI\Adobe.Premiere.Elements.v7.0.Multilingual.Incl.Keymaker-CORE.part4.rar
[2010.02.24 13:57:45 | 1741,147,510 | ---- | C] () -- C:\Users\HLOŽKOVI\Adobe.Premiere.Pro.zip
[2010.02.24 13:37:28 | 000,001,028 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2010.02.24 13:31:40 | 018,499,623 | ---- | C] () -- C:\Users\HLOŽKOVI\Desktop\vlc-1.0.5-win32.exe
[2010.02.24 13:28:19 | 000,004,956 | ---- | C] () -- C:\Users\HLOŽKOVI\INTERNET.TV.ZDARMA [unique-tracker].torrent
[2010.02.24 11:38:11 | 000,012,492 | ---- | C] () -- C:\Users\HLOŽKOVI\SONY Vegas 7 [unique-tracker].torrent
[2010.02.24 11:32:58 | 000,011,050 | ---- | C] () -- C:\Users\HLOŽKOVI\Zoner Photo Studio Professional CZ [unique-tracker].torrent
[2010.02.20 13:36:02 | 000,237,568 | ---- | C] () -- C:\Windows\System32\qtmlClient.dll
[2010.02.20 13:36:02 | 000,045,056 | ---- | C] () -- C:\Windows\System32\BFXSrcFilter.ax
[2010.02.19 18:58:25 | 000,011,672 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]Vypravej_9_dil_Ode_me_to_nemate_.torrent
[2010.02.19 18:26:21 | 000,014,257 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]Corel_VideoStudio_Pro_X2_v12_0_98_0.torrent
[2010.02.19 18:09:32 | 000,012,017 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]Sony_vegas_7.torrent
[2010.02.19 17:01:47 | 000,013,364 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]Sony_Vegas_Pro_9_0a_32bit_.torrent
[2010.02.16 12:30:11 | 000,000,291 | ---- | C] () -- C:\Windows\System32\Remover.ini
[2010.02.16 12:30:07 | 000,000,885 | ---- | C] () -- C:\Windows\System32\SP7302.ini
[2010.02.16 12:06:15 | 000,002,212 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVerQuick.lnk
[2010.02.16 12:06:15 | 000,002,121 | ---- | C] () -- C:\Users\Public\Desktop\AVer MediaCenter.lnk
[2010.02.16 12:04:50 | 000,001,957 | ---- | C] () -- C:\Users\Public\Desktop\AVerTV 6.lnk
[2010.02.16 12:04:28 | 000,049,152 | ---- | C] () -- C:\Windows\System32\AVerIO.dll
[2010.02.16 12:04:28 | 000,003,456 | ---- | C] () -- C:\Windows\System32\AVerIO.sys
[2010.02.16 12:04:23 | 000,262,144 | ---- | C] () -- C:\Windows\System32\sptlib01.dll
[2010.02.16 12:04:23 | 000,249,856 | ---- | C] () -- C:\Windows\System32\sptlib02.dll
[2010.02.15 19:36:17 | 000,049,152 | ---- | C] () -- C:\Windows\Domino.exe
[2010.02.15 19:36:17 | 000,002,138 | ---- | C] () -- C:\Users\Public\Desktop\Zoom.lnk
[2010.02.15 17:35:11 | 000,020,651 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]HOT_WHEELS_ACCELERACERS_3_BOD_ZLOMU.torrent
[2010.02.15 17:34:37 | 000,018,223 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]HOT_WHEELS_ACCELERACERS_RYCHLOST_TICHA.torrent
[2010.02.15 17:34:03 | 000,023,303 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]Hot_Wheels_Acceleracers_Start_Hlavni_Zavod.torrent
[2010.02.15 17:32:28 | 000,018,830 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]Bionicle_Zrozeni_Legendy_Bionicle_The_Legend_Reborn.torrent
[2010.02.15 16:29:45 | 000,014,138 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]Pat_a_Mat_a_je_to_.torrent
[2010.02.13 22:03:45 | 000,002,124 | ---- | C] () -- C:\Users\Public\Desktop\FORM studio.lnk
[2010.02.13 13:21:30 | 000,018,300 | ---- | C] () -- C:\Users\HLOŽKOVI\SK.torrent
[2010.02.13 12:23:39 | 000,011,112 | ---- | C] () -- C:\Users\HLOŽKOVI\[CzT]Druha_svetova_valka_v_barve_Vitezstvi_v_Pacifiku_World_War_II_in_Colour_Victory_in_the_Pacific_2009_.torrent
[2010.02.12 21:54:47 | 000,001,658 | ---- | C] () -- C:\ProgramData\__wdump.txt
[2010.02.01 13:58:05 | 000,001,041 | ---- | C] () -- C:\Users\HLOŽKOVI\AppData\Roaming\vso_ts_preview.xml
[2010.02.01 13:57:55 | 000,000,033 | ---- | C] () -- C:\Users\HLOŽKOVI\AppData\Roaming\pcouffin.log
[2010.02.01 13:57:19 | 000,087,608 | ---- | C] () -- C:\Users\HLOŽKOVI\AppData\Roaming\inst.exe
[2010.02.01 13:57:19 | 000,007,887 | ---- | C] () -- C:\Users\HLOŽKOVI\AppData\Roaming\pcouffin.cat
[2010.02.01 13:57:19 | 000,001,144 | ---- | C] () -- C:\Users\HLOŽKOVI\AppData\Roaming\pcouffin.inf
[2010.01.24 18:11:37 | 000,000,318 | ---- | C] () -- C:\Windows\KA.ini
[2010.01.19 12:16:57 | 000,012,288 | ---- | C] () -- C:\Users\HLOŽKOVI\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.01.12 11:10:46 | 000,000,138 | ---- | C] () -- C:\Windows\DIDAKTA.INI
[2009.12.30 12:39:43 | 000,065,536 | ---- | C] () -- C:\Windows\System32\pavedius5db.dll
[2009.12.30 12:39:43 | 000,065,536 | ---- | C] () -- C:\Windows\System32\pavedius.dll
[2009.12.29 02:32:37 | 000,000,034 | ---- | C] () -- C:\Windows\WTRDCTM.INI
[2009.12.22 09:12:05 | 000,000,375 | ---- | C] () -- C:\Windows\disney.ini
[2009.12.22 08:38:06 | 000,691,696 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2009.12.18 16:03:56 | 000,000,394 | ---- | C] () -- C:\Windows\wincmd.ini
[2009.12.18 15:18:49 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009.11.06 10:58:04 | 000,178,975 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2009.10.05 11:10:18 | 000,007,274 | ---- | C] () -- C:\Windows\cadx2.ini
[2009.08.03 00:21:54 | 000,197,912 | ---- | C] () -- C:\Windows\System32\physxcudart_20.dll
[2009.08.03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll
[2009.08.03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll
[2009.08.03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll
[2009.08.03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2009.08.03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll
[2009.08.03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll
[2009.08.03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll
[2009.08.03 00:21:52 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll
[2009.08.03 00:21:52 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll
[2009.07.14 01:55:09 | 001,332,736 | ---- | C] () -- C:\Windows\System32\hpotiop1.dll
[2009.07.14 00:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2008.02.08 17:13:44 | 000,319,488 | ---- | C] () -- C:\Windows\System32\LS3Renderer.dll
[2007.04.02 05:44:42 | 000,003,072 | ---- | C] () -- C:\Windows\System32\34CoInstaller.dll
[2007.01.26 02:04:12 | 000,138,752 | ---- | C] () -- C:\Windows\System32\mase32.dll
[2007.01.26 02:04:12 | 000,027,648 | ---- | C] () -- C:\Windows\System32\ma32.dll
[2004.01.30 15:07:46 | 000,245,408 | ---- | C] () -- C:\Windows\System32\unicows.dll
[2002.03.17 01:00:00 | 000,007,420 | ---- | C] () -- C:\Windows\UA000106.DLL
[1996.04.03 20:33:26 | 000,005,248 | ---- | C] () -- C:\Windows\System32\giveio.sys

========== Alternate Data Streams ==========

@Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:CDB75348
@Alternate Data Stream - 110 bytes -> C:\ProgramData\Temp:2BE9FEFC
< End of report >

#8 Příspěvek od **motji** » 15 bře 2010 15:38

Spustte OTL
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
@Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:CDB75348
@Alternate Data Stream - 110 bytes -> C:\ProgramData\Temp:2BE9FEFC
O33 - MountPoints2\{2f2f7851-1610-11df-99f2-000acd195e62}\Shell\AutoRun\command - "" = G:\Startme.exe -- File not found
O33 - MountPoints2\{256483da-f2ee-11de-b3ad-000acd195e62}\Shell\AutoRun\command - "" = H:\autorun.exe -- File not found
O33 - MountPoints2\{256483da-f2ee-11de-b3ad-000acd195e62}\Shell\Setup\command - "" = H:\support\setup\setup.exe -- File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
4 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001..\Run: [Nektra OEAPI] File not found
O4 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001..\Run: [OEXPRESS] File not found
O4 - HKLM..\Run: [reset] C:\Windows\reset.reg ()
O3 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\..\Toolbar\WebBrowser: (Ask Toolbar) - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll ()
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O2 - BHO: (Ask Toolbar BHO) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O2 - BHO: (Ask Search Assistant BHO) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
O2 - BHO: (AVG Security Toolbar) - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL File not found
IE - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2475029
IE - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\..\URLSearchHook: {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)

:files
C:\Program Files\AskTBar

:COMMANDS
[emptytemp]
[EMPTYFLASH]
[Reboot]

-klikněte na tlačítko Run fix.
-Následně se pc restartuje.
- Log vložte zde

Dejte soubor otestovat na http://www.virustotal.com

C:\Windows\System32\pavedius5db.dll
C:\Windows\System32\pavedius.dll
C:\Windows\System32\AVerIO.dll
C:\Users\HLOŽKOVI\Desktop\Keygen.exe

-Na virustotalu dáte procházet, a do spodního okénka nakopírujete přímo cestu k souboru a dáte odeslat
-z prohlížeče zkopírujete adresu ke stránce s výsledky

Z mého podpisu stahněte Ccleaner
- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru

Obrázek

záložka čistič
-nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
-po analýze klikněte na Spustit Ccleaner

Obrázek

záložka Registry
- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy

ok

zavřít

Záložka Nástroje
- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.

Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.

Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT

-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

Lidkyn · #9 Příspěvek od **Lidkyn** » 15 bře 2010 15:45

motji píše: Spustte OTL
-do bílého okna dole skopírujte tento skript:
Kód: Vybrat vše
:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
@Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:CDB75348
@Alternate Data Stream - 110 bytes -> C:\ProgramData\Temp:2BE9FEFC
O33 - MountPoints2\{2f2f7851-1610-11df-99f2-000acd195e62}\Shell\AutoRun\command - "" = G:\Startme.exe -- File not found
O33 - MountPoints2\{256483da-f2ee-11de-b3ad-000acd195e62}\Shell\AutoRun\command - "" = H:\autorun.exe -- File not found
O33 - MountPoints2\{256483da-f2ee-11de-b3ad-000acd195e62}\Shell\Setup\command - "" = H:\support\setup\setup.exe -- File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
4 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001..\Run: [Nektra OEAPI] File not found
O4 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001..\Run: [OEXPRESS] File not found
O4 - HKLM..\Run: [reset] C:\Windows\reset.reg ()
O3 - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\..\Toolbar\WebBrowser: (Ask Toolbar) - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll ()
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O2 - BHO: (Ask Toolbar BHO) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O2 - BHO: (Ask Search Assistant BHO) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
O2 - BHO: (AVG Security Toolbar) - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL File not found
IE - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2475029
IE - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-21-3655269961-2875258867-1346003208-1001\..\URLSearchHook: {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)

:files
C:\Program Files\AskTBar

:COMMANDS
[emptytemp]
[EMPTYFLASH]
[Reboot]
-klikněte na tlačítko Run fix.
-Následně se pc restartuje.
- Log vložte zde

Dejte soubor otestovat na http://www.virustotal.com

C:\Windows\System32\pavedius5db.dll
C:\Windows\System32\pavedius.dll
C:\Windows\System32\AVerIO.dll
C:\Users\HLOŽKOVI\Desktop\Keygen.exe

-Na virustotalu dáte procházet, a do spodního okénka nakopírujete přímo cestu k souboru a dáte odeslat
-z prohlížeče zkopírujete adresu ke stránce s výsledky

Z mého podpisu stahněte Ccleaner
- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru

záložka čistič
-nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
-po analýze klikněte na Spustit Ccleaner

záložka Registry
- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy ok zavřít

Záložka Nástroje
- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.

Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.

Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

Lidkyn · #10 Příspěvek od **Lidkyn** » 15 bře 2010 15:48

Antivirus Verze Poslední aktualizace Výsledek
a-squared 4.5.0.50 2010.03.14 Trojan.Win32.Obfuscated!IK
AhnLab-V3 5.0.0.2 2010.03.14 Win32/IRCBot.worm.variant
AntiVir 8.2.1.180 2010.03.14 TR/Dldr.Small.akxp
Antiy-AVL 2.0.3.7 2010.03.12 Backdoor/Win32.IRCBot.gen
Authentium 5.2.0.5 2010.03.14 -
Avast 4.8.1351.0 2010.03.15 -
Avast5 5.0.332.0 2010.03.15 -
AVG 9.0.0.787 2010.03.14 Downloader.Generic8.AUDQ
BitDefender 7.2 2010.03.15 -
CAT-QuickHeal 10.00 2010.03.13 TrojanDownloader.Small.akxp
ClamAV 0.96.0.0-git 2010.03.14 -
Comodo 4265 2010.03.14 Backdoor.Win32.IRCBot.gzm
DrWeb 5.0.1.12222 2010.03.14 -
eSafe 7.0.17.0 2010.03.14 Win32.GenericBackDoo
eTrust-Vet 35.2.7359 2010.03.12 -
F-Prot 4.5.1.85 2010.03.14 -
F-Secure 9.0.15370.0 2010.03.14 -
Fortinet 4.0.14.0 2010.03.13 -
GData 19 2010.03.15 -
Ikarus T3.1.1.80.0 2010.03.14 Trojan.Win32.Obfuscated
Jiangmin 13.0.900 2010.03.14 TrojanDownloader.Small.amlx
K7AntiVirus 7.10.997 2010.03.13 Backdoor.Win32.IRCBot.gzm
Kaspersky 7.0.0.125 2010.03.15 -
McAfee 5920 2010.03.14 Generic BackDoor
McAfee+Artemis 5920 2010.03.14 Generic BackDoor
McAfee-GW-Edition 6.8.5 2010.03.14 Trojan.Dldr.Small.akxp
Microsoft 1.5502 2010.03.12 -
NOD32 4944 2010.03.14 -
Norman 6.04.08 2010.03.14 W32/DLoader.TWFZ
nProtect 2009.1.8.0 2010.03.13 Trojan-Downloader/W32.Small.13824.BW
Panda 10.0.2.2 2010.03.14 Trj/CI.A
PCTools 7.0.3.5 2010.03.14 Trojan.Generic
Prevx 3.0 2010.03.15 High Risk Cloaked Malware
Rising 22.38.04.03 2010.03.12 -
Sophos 4.51.0 2010.03.14 Mal/Generic-A
Sunbelt 5887 2010.03.15 Backdoor.IRCBot
Symantec 20091.2.0.41 2010.03.15 Trojan Horse
TheHacker 6.5.2.0.233 2010.03.13 Trojan/Downloader.Small.akxp
TrendMicro 9.120.0.1004 2010.03.14 TROJ_DLOADE.LD
VBA32 3.12.12.2 2010.03.14 -
ViRobot 2010.3.13.2226 2010.03.13 -
VirusBuster 5.0.27.0 2010.03.14 Trojan.DL.Small.BZUH
Rozšiřující informace
File size: 13824 bytes
MD5 : b109dc6396f84b1d46dad45ee8bbb1d4
SHA1 : a85d552779e4d8e3d33b948cde763bdc48bf9097
SHA256: 9333b976dc702cf57b5eb50d78376f4def476d8859d73fee131d0ee9ecb145fb
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0xB910
timedatestamp.....: 0x48958BE2 (Sun Aug 3 12:43:46 2008)
machinetype.......: 0x14C (Intel I386)

( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
UPX0 0x1000 0x8000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
UPX1 0x9000 0x3000 0x2C00 7.77 bca8f7460cf98a84fd8675a35e68536b
.rsrc 0xC000 0x1000 0x600 2.00 d7d84a12cfa52383e0ad26386f871e9d

( 0 imports )

( 0 exports )
TrID : File type identification
UPX compressed Win32 Executable (39.5%)
Win32 EXE Yoda's Crypter (34.3%)
Win32 Executable Generic (11.0%)
Win32 Dynamic Link Library (generic) (9.8%)
Generic Win/DOS Executable (2.5%)
ThreatExpert: http://www.threatexpert.com/report.aspx ... 5ee8bbb1d4
ssdeep: 384:N4Qp17Dx/QbZ9RBiCmdclNE4usX+4D1wYsfzANOUBt:Kg17Ri9RBfmWzE4pXDOYsf0b
sigcheck: publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
Prevx Info: http://info.prevx.com/aboutprogramtext. ... 00F7C1F922
PEiD : -
packers (Kaspersky): PE_Patch.UPX, UPX
packers (F-Prot): UPX
CWSandbox: http://research.sunbelt-software.com/pa ... 5ee8bbb1d4
RDS : NSRL Reference Data Set

Lidkyn · #11 Příspěvek od **Lidkyn** » 15 bře 2010 15:51

Antivirus Verze Poslední aktualizace Výsledek
a-squared 4.5.0.50 2010.01.30 -
AhnLab-V3 5.0.0.2 2010.01.30 -
AntiVir 7.9.1.154 2010.01.29 -
Antiy-AVL 2.0.3.7 2010.01.28 -
Authentium 5.2.0.5 2010.01.30 -
Avast 4.8.1351.0 2010.01.30 -
AVG 9.0.0.730 2010.01.31 -
BitDefender 7.2 2010.01.31 -
CAT-QuickHeal 10.00 2010.01.30 -
ClamAV 0.96.0.0-git 2010.01.31 -
Comodo 3767 2010.01.31 -
DrWeb 5.0.1.12222 2010.01.31 -
eSafe 7.0.17.0 2010.01.28 -
eTrust-Vet 35.2.7271 2010.01.29 -
F-Prot 4.5.1.85 2010.01.30 -
F-Secure 9.0.15370.0 2010.01.30 -
Fortinet 4.0.14.0 2010.01.31 -
GData 19 2010.01.31 -
Ikarus T3.1.1.80.0 2010.01.30 -
Jiangmin 13.0.900 2010.01.28 -
K7AntiVirus 7.10.960 2010.01.29 -
Kaspersky 7.0.0.125 2010.01.31 -
McAfee 5877 2010.01.30 -
McAfee+Artemis 5877 2010.01.30 -
McAfee-GW-Edition 6.8.5 2010.01.30 -
Microsoft 1.5406 2010.01.31 -
NOD32 4821 2010.01.30 -
Norman 6.04.03 2010.01.30 -
nProtect 2009.1.8.0 2010.01.30 -
Panda 10.0.2.2 2010.01.30 -
PCTools 7.0.3.5 2010.01.31 -
Prevx 3.0 2010.01.31 -
Rising 22.32.05.04 2010.01.30 -
Sophos 4.50.0 2010.01.30 -
Sunbelt 3.2.1858.2 2010.01.30 -
Symantec 20091.2.0.41 2010.01.31 Suspicious.Insight
TheHacker 6.5.1.0.173 2010.01.31 -
TrendMicro 9.120.0.1004 2010.01.30 -
VBA32 3.12.12.1 2010.01.29 -
ViRobot 2010.1.30.2164 2010.01.30 -
VirusBuster 5.0.21.0 2010.01.30 -
Rozšiřující informace
File size: 65536 bytes
MD5 : d6a8f945b5a9c52bc84fc89b4e238c90
SHA1 : 65cdf4c159bf4a263d72486d8f1041b8431190d7
SHA256: d138fd01ce756b27f965b86afa16dd90750cbe351d7f5417376075e18ee2bf88
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x8EA0
timedatestamp.....: 0x48296DFB (Tue May 13 12:31:23 2008)
machinetype.......: 0x14C (Intel I386)

( 5 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x876E 0x9000 6.11 da7ac5ab4832fedccfb81038205e332f
.rdata 0xA000 0x2AAE 0x3000 4.14 5ab436bcb83505cf62938abc4144a5d9
.data 0xD000 0x1348 0x1000 1.57 1d0502a5bb703f62c861b36215f33633
.rsrc 0xF000 0x49C 0x1000 4.01 7c6a1600c4f8d705f0ba184ae7990a1a
.reloc 0x10000 0xB7A 0x1000 4.39 bf52ef578e8664952bd3a5152a8465b1

( 7 imports )

> advapi32.dll: RegCreateKeyExW, RegSetValueExW, RegDeleteValueW, RegEnumValueW, RegQueryValueExW, RegCloseKey, RegOpenKeyExW, RegDeleteKeyW, RegSetValueW
> kernel32.dll: LoadLibraryW, FreeLibrary, lstrlenA, GetTickCount, GetFileAttributesW, GetWindowsDirectoryW, SetCurrentDirectoryW, GetCurrentDirectoryW, GetSystemDirectoryW, SystemTimeToFileTime, GetLocalTime, CompareFileTime, GetModuleFileNameW, SetFileTime, WriteFile, FileTimeToSystemTime, GetLastError, SetFilePointer, GetFileTime, CreateFileW, DeleteFileW, ReadFile, GetFileSize, GetACP, GetSystemTimeAsFileTime, GetProcAddress, MultiByteToWideChar, TerminateThread, ResumeThread, WaitForSingleObject, GetLocaleInfoA, GetThreadLocale, GetVersionExA, CloseHandle, QueryPerformanceCounter, GetCurrentProcessId, GetCurrentThreadId, SetUnhandledExceptionFilter, UnhandledExceptionFilter, GetCurrentProcess, TerminateProcess, IsDebuggerPresent, InterlockedCompareExchange, Sleep, InterlockedExchange
> msvcp80.dll: __$_H_WU_$char_traits@_W@std@@V_$allocator@_W@1@@std@@YA_AV_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@0@ABV10@0@Z, __Y_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z, __1_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@XZ, _reserve@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEXI@Z, _append@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV12@I_W@Z, __Tidy@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@IAEX_NI@Z, __0_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@PB_W@Z
> msvcr80.dll: towupper, _time64, _mktime64, _wmkdir, _except_handler4_common, _encode_pointer, _malloc_crt, free, _encoded_null, _decode_pointer, _initterm, _localtime64_s, _amsg_exit, _adjust_fdiv, __CppXcptFilter, _crt_debugger_hook, _terminate@@YAXXZ, __type_info_dtor_internal_method@type_info@@QAEXXZ, __clean_type_info_names_internal, _unlock, __dllonexit, _lock, _onexit, _wcsnicmp, wcsncpy, toupper, _invalid_parameter_noinfo, _CxxThrowException, _wtoi, _initterm_e, _wcsupr, _wcsicmp, memset, _wsplitpath, __CxxFrameHandler3, __2@YAPAXI@Z, _beginthreadex, __3@YAXPAX@Z, _swprintf, wcsstr
> rpcrt4.dll: UuidFromStringW, RpcStringFreeW, UuidToStringW
> shell32.dll: SHGetFolderPathW
> user32.dll: wsprintfW

( 1 exports )

> PAVEDIUS_DelUCode, PAVEDIUS_GetType, PAVEDIUS_GetTypeFromUCode, PAVEDIUS_GetUCode, PAVEDIUS_IsEnableOption, PAVEDIUS_IsEnableUCode, PAVEDIUS_SetUCode, _PAVEDIUS_Close@4, _PAVEDIUS_ExeUCode@12, _PAVEDIUS_GetInfo@8, _PAVEDIUS_Open@4, _PAVEDIUS_OptionInfo@12
TrID : File type identification
Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
ssdeep: 1536:ZSVMhxsi+r/cbfNfMfV0Qk5uVPtSmp4MkUcEYeOgqi:Rb6/cBfg0n5uVPtL+/EYeOgqi
PEiD : -
RDS : NSRL Reference Data Set

#12 Příspěvek od **motji** » 15 bře 2010 15:57

Prosím Vás, to jsou které soubory?

Lidkyn · #13 Příspěvek od **Lidkyn** » 15 bře 2010 16:01

bylo to asi v tom keygenu že ??

#14 Příspěvek od **motji** » 15 bře 2010 16:05

To já nevím, který soubor jste testovala

. Ale tipla bych, že ano

.
Prosím Vás, až dáte soubor otestovat a vyběhnou na Váas výsledky, zkopírujte cestu ke stránce, já už se na to podívám

Lidkyn · #15 Příspěvek od **Lidkyn** » 15 bře 2010 16:13

http://www.virustotal.com/cs/analisis/0 ... 1255372738

http://www.virustotal.com/cs/analisis/1 ... 1256610404

jinak je to čisté

VIRY.CZ

průzkumník přestal pracovat u win 7

průzkumník přestal pracovat u win 7

Re: průzkumník přestal pracovat u win 7

Re: průzkumník přestal pracovat u win 7

Re: průzkumník přestal pracovat u win 7

Re: průzkumník přestal pracovat u win 7

Re: průzkumník přestal pracovat u win 7

Re: průzkumník přestal pracovat u win 7

Re: průzkumník přestal pracovat u win 7

Re: průzkumník přestal pracovat u win 7

Re: průzkumník přestal pracovat u win 7

Re: průzkumník přestal pracovat u win 7

Re: průzkumník přestal pracovat u win 7

Re: průzkumník přestal pracovat u win 7

Re: průzkumník přestal pracovat u win 7

Re: průzkumník přestal pracovat u win 7