Facebook vir pres chat...

[cernohous13]

Pasáž začínající
((((((((((((((((((((((((((((( SnapShot@2011-07-20_16.16.37 )))))))))))))))))))))))))))))))))))))))))
není pro řešitele v této chvíli nezbytná

proč to konvertuješ do *.doc, když je to textový soubor?
už jsi to sem 2x kopíroval jako text a jestli je to dlouhé, tak můžeš
1. vložit do více odpovědí
2. zabalit a dát jako přílohu
3. vypustit výše zmíněnou pasáž

[motji]

Jo tak docx já nepřečtu , dejte mi to do přílohy v normálním txt souboru .

[Zeron]

Dal jsem to do *.docx protože mě nenapadlo to zazipovat...a až mě to napadlo tak už to bylo v doc formátu ...

V příloze log v .txt...moje chyba

[motji]

Tak jsem se tím prokousala .
Odinstalujte Asktoolbar a nahlaste stav počítače

[Zeron]

Oddinstaloval jsem Ask toolbar

Co se týče stavu počítače:
- už nejsou žádné problémy s internetovým připojením
- celkově rychlejší práce + rychlejší připojení k síti

Dále mě nic nenapadá...takže bych asi tak tipl, že je všechno v pořádku...mám pravdu ?

[motji]

Odinstalujte combofix přes Start - Spustit
- zkopírujte do okénka:

ComboFix /Uninstall

-stiskněte Enter
-To odinstaluje ComboFix a smaže s ním související soubory a složky.


***********


Stáhněte T-Cleaner
http://tharifas.sweb.cz/T-Cleaner.exe

-Spusťte,pro potvrzení volby mačkejte klávesu A, Enter
-po použití prográmek vymažte.Pozor,antiviry ho mohou falešně označit za vir



***********


Z mého podpisu stahněte Ccleaner
- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru

záložka čistič
- nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
- po analýze klikněte na Spustit Ccleaner

záložka Registry
- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy ok zavřít

Záložka Nástroje
- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.

Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.


***********



Stahněte OTC a použijte
http://oldtimer.geekstogo.com/OTC.exe
-vyčistí tempy a po použitých programech



***********

Vložte nový log ze RSIT a řekněte co počítač, jak se chová, už je vše v pořádku?

[Zeron]

Ke stavu počítače (notebooku)...jak už jsem psal, NB je více rychlejší jak obecně, tak i v práce v síti je rychlejší...
Chová se naprosto v pořádku...pro finální kontrolu tedy příkládám log z RSIT:

--------------------------------------------------------------------------------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by Jakub at 2011-08-09 13:43:00
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 137 GB (90%) free of 153 GB
Total RAM: 3037 MB (86% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:43:03, on 9.8.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\PLFSetI.exe
C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Jakub\Plocha\RSIT.exe
C:\Program Files\trend micro\Jakub.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://eu.ask.com/?l=dis&o=14672
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)
O4 - HKLM\..\Run: [DWPersistentQueuedReporting] C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE -a
O4 - HKLM\..\Run: [PLFSetI] C:\WINDOWS\PLFSetI.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [USBToolTip] C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [KB976002-v5] rundll32.exe advpack.dll,LaunchINFSection OPMWXPUP.inf,BrowserChoiceGoo (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat do zařízení Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~3\Office12\GR99D3~1.DLL
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 6503 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Jakub\Data aplikací\Mozilla\Firefox\Profiles\gc73v2we.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.centrum.cz/"

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.0.51204.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\Jakub\Data aplikací\Mozilla\Firefox\Profiles\gc73v2we.default\searchplugins\
askcom.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-05-23 115072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-05-16 1164680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"DWPersistentQueuedReporting"=C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [2006-10-26 434528]
"PLFSetI"=C:\WINDOWS\PLFSetI.exe [2008-07-29 200704]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-03-11 13594624]
"nwiz"=nwiz.exe /install []
"USBToolTip"=C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe [2007-02-20 199752]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-03-11 86016]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2011-01-25 239496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2011-01-25 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2011-01-25 304128]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableSecureUIAPaths"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Pinnacle\Studio 14\Programs\RM.exe"="C:\Program Files\Pinnacle\Studio 14\Programs\RM.exe:*:Enabled:Render Manager"
"C:\Program Files\Pinnacle\Studio 14\Programs\Studio.exe"="C:\Program Files\Pinnacle\Studio 14\Programs\Studio.exe:*:Enabled:Studio"
"C:\Program Files\Pinnacle\Studio 14\Programs\umi.exe"="C:\Program Files\Pinnacle\Studio 14\Programs\umi.exe:*:Enabled:umi"
"D:\HRY\Battlefield 2\BF2.exe"="D:\HRY\Battlefield 2\BF2.exe:*:Enabled:BF2"
"c:\program files\relevantknowledge\rlvknlg.exe"="c:\program files\relevantknowledge\rlvknlg.exe:*:Enabled:rlvknlg.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"VIDC.FMVC"=fmcodec.dll
"vidc.divx"=divx.dll
"vidc.yv12"=DivX.dll
"vidc.div4"=DivXc32f.dll
"vidc.div3"=DivXc32.dll
"vidc.xvid"=xvid.dll
"vidc.mp43"=mpg4c32.dll
"msacm.l3radius"=l3codecp.acm
"msacm.divxa"=divxa32.acm
"msacm.vorbis"=Vorbis.acm
"msacm.a3d"=a3d.dll
"msacm.ogg"=ogg.dll
"msacm.vorbisenc"=vorbisenc.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.mjpg"=pvmjpg30.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======List of files/folders created in the last 1 month======

2011-08-09 13:43:00 ----D---- C:\rsit
2011-08-09 13:36:39 ----D---- C:\Program Files\CCleaner
2011-08-07 16:58:01 ----D---- C:\WINDOWS\Minidump
2011-08-07 16:30:17 ----D---- C:\Program Files\GIMP-2.0
2011-08-07 16:26:11 ----SHD---- C:\RECYCLER
2011-08-05 19:51:28 ----D---- C:\Program Files\RelevantKnowledge
2011-08-05 19:50:23 ----D---- C:\Program Files\MKV Player
2011-08-05 17:14:38 ----D---- C:\Program Files\DownVision
2011-08-04 19:23:41 ----D---- C:\WINDOWS\temp
2011-08-04 08:56:37 ----D---- C:\Documents and Settings\Jakub\Data aplikací\WinRAR
2011-08-04 08:56:28 ----D---- C:\Program Files\WinRAR
2011-07-23 21:21:56 ----D---- C:\Program Files\AVAST Software
2011-07-23 21:21:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2011-07-23 12:19:26 ----SHD---- C:\WINDOWS\CSC
2011-07-22 15:04:48 ----A---- C:\WINDOWS\system32\drivers\sptd.sys
2011-07-22 11:23:59 ----D---- C:\potvůrka.com14704p
2011-07-21 22:25:05 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2011-07-21 13:27:56 ----D---- C:\Documents and Settings\Jakub\Data aplikací\Malwarebytes
2011-07-21 13:27:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2011-07-21 11:37:51 ----D---- C:\potvůrka.com
2011-07-20 18:11:19 ----A---- C:\Boot.bak
2011-07-20 18:11:15 ----RASHD---- C:\cmdcons
2011-07-20 18:03:59 ----D---- C:\Qoobox
2011-07-20 17:22:13 ----D---- C:\Program Files\trend micro
2011-07-20 10:15:38 ----HD---- C:\WINDOWS\PIF
2011-07-19 11:31:58 ----D---- C:\Program Files\Common Files\Pegasus Imaging
2011-07-19 11:31:57 ----D---- C:\Program Files\Common Files\Yahoo!
2011-07-19 11:31:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\Studio 14
2011-07-19 11:31:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\Pinnacle Studio Plus
2011-07-19 11:29:49 ----D---- C:\WINDOWS\SxsCaPendDel
2011-07-18 21:15:50 ----D---- C:\WINDOWS\system32\LogFiles
2011-07-18 19:19:30 ----D---- C:\WINDOWS\Prefetch
2011-07-18 19:02:09 ----N---- C:\WINDOWS\system32\COMACF.tmp
2011-07-18 19:02:08 ----N---- C:\WINDOWS\system32\COMACD.tmp
2011-07-18 19:02:08 ----N---- C:\WINDOWS\system32\COMACB.tmp
2011-07-18 18:50:32 ----N---- C:\WINDOWS\system32\irclass.dll
2011-07-18 18:50:31 ----N---- C:\WINDOWS\system32\spxcoins.dll
2011-07-18 18:41:05 ----A---- C:\WINDOWS\UPGRADE.TXT
2011-07-18 12:06:23 ----N---- C:\WINDOWS\system32\drivers\athw.sys
2011-07-18 12:06:23 ----N---- C:\WINDOWS\system32\athw.sys
2011-07-18 12:06:23 ----D---- C:\WINDOWS\Options
2011-07-18 12:06:10 ----D---- C:\temp
2011-07-18 11:37:28 ----D---- C:\WINDOWS\system32\appmgmt
2011-07-17 17:44:46 ----D---- C:\Program Files\Kodek CZ
2011-07-16 21:45:47 ----N---- C:\WINDOWS\system32\drivers\MarvinBus.sys
2011-07-16 21:45:40 ----D---- C:\Program Files\Common Files\Pinnacle
2011-07-16 21:41:36 ----D---- C:\Program Files\Pinnacle
2011-07-16 21:32:09 ----D---- C:\Program Files\Common Files\Adobe
2011-07-16 21:32:09 ----D---- C:\Program Files\Adobe
2011-07-16 21:31:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2011-07-16 20:42:51 ----D---- C:\Documents and Settings\Jakub\Data aplikací\DivX
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\vxblock.dll
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxwave.dll
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxsfs.dll
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxmas.dll
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxinsi64.exe
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxinsa64.exe
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxdrv.dll
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxcpyi64.exe
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxcpya64.exe
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxafs.dll
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\px.dll
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\drivers\PxHelp20.sys
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\drivers\cdralw2k.sys
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\drivers\cdr4_xp.sys
2011-07-16 20:41:59 ----D---- C:\Program Files\Common Files\DivX Shared
2011-07-16 20:40:14 ----D---- C:\Program Files\Google
2011-07-16 20:40:11 ----D---- C:\Program Files\DivX
2011-07-16 20:39:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\DivX
2011-07-16 20:36:31 ----D---- C:\Documents and Settings\Jakub\Data aplikací\skypePM
2011-07-16 20:36:29 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype Extras
2011-07-16 20:36:11 ----D---- C:\Documents and Settings\Jakub\Data aplikací\Skype
2011-07-16 20:36:01 ----D---- C:\Program Files\Common Files\Skype
2011-07-16 20:35:58 ----RD---- C:\Program Files\Skype
2011-07-16 20:12:03 ----D---- C:\Documents and Settings\Jakub\Data aplikací\Mirillis
2011-07-16 20:12:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Mirillis
2011-07-16 20:10:35 ----D---- C:\Program Files\Mirillis
2011-07-16 19:58:22 ----D---- C:\Program Files\DsNET Corp
2011-07-16 19:37:25 ----A---- C:\WINDOWS\nsreg.dat
2011-07-16 19:37:24 ----D---- C:\Documents and Settings\Jakub\Data aplikací\Mozilla
2011-07-16 19:37:19 ----D---- C:\Program Files\Mozilla Firefox
2011-07-16 19:34:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\GoldWave
2011-07-16 19:34:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\ICQ
2011-07-16 19:34:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\McAfee
2011-07-16 19:34:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\LangSoft
2011-07-16 19:34:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\Installations
2011-07-16 19:34:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\NortonInstaller
2011-07-16 19:34:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\Norton
2011-07-16 19:34:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\Nero
2011-07-16 19:34:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\NOS
2011-07-16 19:34:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Pinnacle Studio Ultimate Collection
2011-07-16 19:34:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Pinnacle Studio Ultimate
2011-07-16 19:34:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Pinnacle
2011-07-16 19:34:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sony Ericsson
2011-07-16 19:34:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2011-07-16 19:34:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\Symantec
2011-07-16 19:34:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2011-07-16 18:00:12 ----D---- C:\Documents and Settings\Jakub\Data aplikací\Macromedia
2011-07-16 18:00:12 ----D---- C:\Documents and Settings\Jakub\Data aplikací\Adobe

======List of files/folders modified in the last 1 month======

2011-08-09 13:40:54 ----D---- C:\WINDOWS
2011-08-09 13:39:44 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-08-09 13:37:35 ----D---- C:\WINDOWS\Debug
2011-08-09 13:36:39 ----RD---- C:\Program Files
2011-08-09 13:33:59 ----SHD---- C:\System Volume Information
2011-08-09 13:33:59 ----D---- C:\WINDOWS\system32\Restore
2011-08-09 13:32:37 ----D---- C:\WINDOWS\system32
2011-08-09 10:47:45 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-08-08 12:09:00 ----SHD---- C:\WINDOWS\Installer
2011-08-08 12:08:58 ----SD---- C:\WINDOWS\Tasks
2011-08-08 11:32:09 ----D---- C:\WINDOWS\system32\drivers
2011-08-08 11:31:19 ----D---- C:\WINDOWS\system32\CatRoot2
2011-08-07 21:31:40 ----SD---- C:\Documents and Settings\Jakub\Data aplikací\Microsoft
2011-08-07 21:23:30 ----D---- C:\WINDOWS\system32\wbem
2011-08-07 16:57:55 ----D---- C:\Program Files\Common Files
2011-08-07 15:12:56 ----A---- C:\WINDOWS\system.ini
2011-08-06 20:50:50 ----HD---- C:\WINDOWS\inf
2011-08-04 19:21:38 ----D---- C:\WINDOWS\system32\drivers\etc
2011-08-04 19:14:30 ----D---- C:\WINDOWS\AppPatch
2011-07-23 21:22:16 ----D---- C:\WINDOWS\WinSxS
2011-07-22 11:31:30 ----D---- C:\WINDOWS\system32\config
2011-07-22 11:27:44 ----DC---- C:\WINDOWS\system32\dllcache
2011-07-20 18:14:04 ----D---- C:\WINDOWS\system
2011-07-20 18:14:02 ----D---- C:\Program Files\Internet Explorer
2011-07-20 18:11:19 ----RASH---- C:\boot.ini
2011-07-18 20:47:33 ----D---- C:\WINDOWS\L2Schemas
2011-07-18 20:47:32 ----SD---- C:\WINDOWS\Offline Web Pages
2011-07-18 20:47:31 ----D---- C:\WINDOWS\system32\usmt
2011-07-18 20:47:29 ----D---- C:\WINDOWS\Media
2011-07-18 20:47:28 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-07-18 20:47:25 ----D---- C:\WINDOWS\WBEM
2011-07-18 20:47:08 ----D---- C:\WINDOWS\Network Diagnostic
2011-07-18 20:46:53 ----D---- C:\WINDOWS\PeerNet
2011-07-18 20:46:53 ----D---- C:\WINDOWS\ime
2011-07-18 20:46:32 ----D---- C:\WINDOWS\system32\npp
2011-07-18 20:46:24 ----D---- C:\WINDOWS\msagent
2011-07-18 20:46:17 ----D---- C:\WINDOWS\system32\cs
2011-07-18 20:45:52 ----D---- C:\WINDOWS\ehome
2011-07-18 20:45:16 ----D---- C:\WINDOWS\twain_32
2011-07-18 20:45:04 ----D---- C:\WINDOWS\system32\icsxml
2011-07-18 20:44:42 ----D---- C:\WINDOWS\system32\ias
2011-07-18 20:44:37 ----D---- C:\WINDOWS\system32\1033
2011-07-18 20:44:37 ----D---- C:\WINDOWS\system32\1029
2011-07-18 20:43:51 ----D---- C:\WINDOWS\Driver Cache
2011-07-18 19:21:31 ----D---- C:\WINDOWS\Registration
2011-07-18 19:15:43 ----D---- C:\WINDOWS\security
2011-07-18 19:14:04 ----A---- C:\WINDOWS\ODBCINST.INI
2011-07-18 19:13:47 ----ASH---- C:\WINDOWS\fonts\desktop.ini
2011-07-18 19:13:20 ----RD---- C:\WINDOWS\Web
2011-07-18 19:13:15 ----N---- C:\WINDOWS\system32\cdplayer.exe.manifest
2011-07-18 19:13:03 ----A---- C:\WINDOWS\win.ini
2011-07-18 19:12:58 ----D---- C:\Program Files\Windows Media Connect 2
2011-07-18 19:12:53 ----D---- C:\Program Files\Windows Media Player
2011-07-18 19:12:49 ----D---- C:\WINDOWS\srchasst
2011-07-18 19:12:32 ----D---- C:\WINDOWS\Help
2011-07-18 19:12:18 ----D---- C:\Program Files\NetMeeting
2011-07-18 19:12:16 ----D---- C:\Program Files\Common Files\Services
2011-07-18 19:12:13 ----D---- C:\Program Files\Outlook Express
2011-07-18 19:11:54 ----D---- C:\WINDOWS\system32\bits
2011-07-18 19:11:52 ----D---- C:\Program Files\Movie Maker
2011-07-18 19:11:33 ----D---- C:\WINDOWS\system32\oobe
2011-07-18 19:11:17 ----D---- C:\Program Files\Common Files\System
2011-07-18 19:10:06 ----RSD---- C:\WINDOWS\assembly
2011-07-18 19:09:26 ----D---- C:\WINDOWS\Microsoft.NET
2011-07-18 19:09:25 ----D---- C:\WINDOWS\system32\Setup
2011-07-18 19:06:36 ----D---- C:\WINDOWS\system32\Com
2011-07-18 19:05:45 ----D---- C:\WINDOWS\system32\en-US
2011-07-18 19:04:09 ----D---- C:\WINDOWS\system32\XPSViewer
2011-07-18 19:03:52 ----RSD---- C:\WINDOWS\Fonts
2011-07-18 19:01:58 ----D---- C:\WINDOWS\BitLockerDiscoveryVolumeContents
2011-07-18 19:01:48 ----D---- C:\WINDOWS\system32\drivers\UMDF
2011-07-18 19:01:47 ----D---- C:\WINDOWS\system32\cs-cz
2011-07-18 19:01:44 ----D---- C:\Program Files\Windows Desktop Search
2011-07-18 19:01:30 ----D---- C:\Program Files\MSXML 4.0
2011-07-18 19:00:15 ----D---- C:\Program Files\Microsoft Silverlight
2011-07-18 18:59:37 ----D---- C:\WINDOWS\Cursors
2011-07-18 18:59:30 ----D---- C:\Program Files\Windows NT
2011-07-18 18:51:39 ----D---- C:\WINDOWS\system32\CatRoot
2011-07-18 18:50:56 ----N---- C:\WINDOWS\system32\oeminfo.ini
2011-07-18 18:50:17 ----AS---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2011-07-18 12:06:22 ----HD---- C:\Program Files\InstallShield Installation Information
2011-07-18 12:02:13 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-07-18 12:02:07 ----D---- C:\WINDOWS\system32\Atheros_L1e
2011-07-16 21:45:52 ----DC---- C:\WINDOWS\system32\DRVSTORE
2011-07-16 20:37:31 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-07-16 19:34:53 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-05-14 107256]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-05-14 94360]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2011-01-25 8832]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-05-14 114472]
R2 rspndr;Odpovídající zařízení zjišťování topologie linkové vrstvy; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2011-01-25 62848]
R3 AR5416;Atheros AR5008 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athw.sys [2009-06-22 1574112]
R3 BTDriver;Ovladač virtuálních komunikací Bluetooth; C:\WINDOWS\system32\DRIVERS\btport.sys [2008-02-04 37160]
R3 BTKRNL;Enumenátor sběrnice Bluetooth; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2009-04-15 991136]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDAU32.sys [2009-03-09 805888]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 L1c;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1c51x86.sys [2009-04-07 39424]
R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2011-01-25 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-03-11 6249728]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2011-01-25 32384]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2009-05-12 122240]
S1 DumpDrv;Crash Dump Driver; C:\WINDOWS\system32\drivers\DumpDrv.sys [2011-01-25 9472]
S3 btaudio;Zvukové zařízení Bluetooth; C:\WINDOWS\system32\drivers\btaudio.sys [2009-06-18 533024]
S3 BTWDNDIS;Server pro přístup k síti LAN Bluetooth; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2008-07-24 156816]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2009-06-18 45984]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2011-01-25 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2011-01-25 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2011-01-25 82944]
S4 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys [2011-01-25 133632]
S4 sptd;sptd; C:\WINDOWS\C:\WINDOWS\System32\Drivers\sptd.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2009-06-20 349528]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-03-11 168005]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2011-01-25 441856]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-07-16 135664]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-07-16 135664]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WinRM;Vzdálená správa systému Windows (WS-Management); C:\WINDOWS\System32\svchost.exe [2011-01-25 14848]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2011-01-25 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2011-01-25 14848]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[motji]

spusťte přejmenované HJT C:\Program Files\trend micro\Jakub.exe , má tuto ikonku

- Klikněte na "Do a system scan only"
- U řádku
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://eu.ask.com/?l=dis&o=14672
- Dejte fajfku do čtverečku a zmáčkněte Fix checked
- restartujte pc


smažte
C:\potvůrka.com
C:\potvůrka.com14704p
C:\Program Files\RelevantKnowledge


Pokud nejsou problémy, je to vše

[Zeron]

C:\potvůrka.com
C:\potvůrka.com14704p

Nelze odstranit...stejne jako na ploše mám ikonky:

poring.com
cobra.com
ASC (antivirus, který mi vir bloknul)

Které nelze odstranit...píše mi to tohle:

Kód: Vybrat vše

***** nelze odstranit: Přístup byl zamítnut
Ověřte, zda disk není zaplněn nebo chráněn proti přepsání
a zda soubor neni právě používán

[motji]

Zkuste restartovat do nouzového režimu a tam je smazat. Pokud to nepujde, použijeme jiné mazadlo

[Zeron]

Mazání v nouzovém režimu nefunguje

[motji]

:arrow:Stáhni OTM http://oldtimer.geekstogo.com/OTM.exe
Stáhni na plochu Otmovelt3, 2krát klikni na Otmovelt3,spustí se program,
Do levého okna "Paste Instructions for Items to be Moved" pod žlutou čáru skopíruj skript

Kód: Vybrat vše

:processes
explorer.exe

:files
C:\WINDOWS\system32\*.tmp.dll /s
C:\WINDOWS\system32\SET*.tmp /s
C:\WINDOWS\*.tmp /s
C:\potvůrka.com
C:\potvůrka.com14704p
C:\Program Files\RelevantKnowledge
C:\Qoobox

:commands
[emptytemp]
[Reboot]

-klikni na červené tlačítko Moveit!
-sem vlož obsah zeleného okénka
-Pokud se bude chtít restartovat pc, dejte YES,log pak najdeš C:\_OTMoveIt\MovedFiles. Log vlož sem

[Zeron]

Log je zde:

-------------------
All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
C:\WINDOWS\SoftwareDistribution\DataStore\COM88F.tmp moved successfully.
C:\WINDOWS\system32\COMACB.tmp moved successfully.
C:\WINDOWS\system32\COMACD.tmp moved successfully.
C:\WINDOWS\system32\COMACF.tmp moved successfully.
C:\WINDOWS\system32\CONFIG.TMP moved successfully.
C:\WINDOWS\system32\config\systemprofile\Local Settings\temp\CR_A3111.tmp folder moved successfully.
C:\WINDOWS\system32\spool\drivers\w32x86\3\COM547.tmp moved successfully.
C:\WINDOWS\system32\spool\drivers\w32x86\3\COM54C.tmp moved successfully.
C:\WINDOWS\system32\spool\drivers\w32x86\3\COM551.tmp moved successfully.
C:\WINDOWS\system32\spool\drivers\w32x86\3\COM556.tmp moved successfully.
C:\WINDOWS\system32\spool\drivers\w32x86\3\COM55D.tmp moved successfully.
C:\WINDOWS\system32\spool\drivers\w32x86\3\COM562.tmp moved successfully.
C:\WINDOWS\system32\spool\drivers\w32x86\3\COM567.tmp moved successfully.
C:\WINDOWS\system32\spool\drivers\w32x86\3\COM56C.tmp moved successfully.
C:\WINDOWS\system32\spool\drivers\w32x86\3\COMA99.tmp moved successfully.
C:\WINDOWS\system32\spool\drivers\w32x86\3\COMA9B.tmp moved successfully.
C:\WINDOWS\system32\spool\drivers\w32x86\3\COMA9D.tmp moved successfully.
C:\WINDOWS\system32\spool\drivers\w32x86\3\COMA9F.tmp moved successfully.
C:\WINDOWS\system32\spool\drivers\w32x86\3\COMAA1.tmp moved successfully.
C:\WINDOWS\system32\spool\prtprocs\w32x86\COMAA3.tmp moved successfully.
C:\WINDOWS\system32\spool\prtprocs\w32x86\COMAA5.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COM549.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COM54E.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COM553.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COM558.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COM55F.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COM564.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COM569.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COM56E.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COMAB5.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COMAB7.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COMAB9.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COMABB.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COMABD.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COMABF.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COMAC1.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COMAC3.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COMAC5.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COMAC7.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\COMAC9.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\i386\COMAA7.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\i386\COMAA9.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\i386\COMAAB.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\i386\COMAAD.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\i386\COMAAF.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\i386\COMAB1.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\i386\COMAB3.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\i386\i386\COMA95.tmp moved successfully.
C:\WINDOWS\system32\spool\xpsep\i386\i386\COMA97.tmp moved successfully.
C:\potvůrka.com folder moved successfully.
C:\potvůrka.com14704p folder moved successfully.
File/Folder C:\Program Files\RelevantKnowledge not found.
Folder move failed. C:\Qoobox\BackEnv scheduled to be moved on reboot.
C:\Qoobox folder moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: Jakub
->Temp folder emptied: 211089 bytes
->Temporary Internet Files folder emptied: 115223 bytes
->FireFox cache emptied: 43204174 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 456 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: NetworkService
->Temporary Internet Files folder emptied: 32902 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 505 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 42,00 mb


OTM by OldTimer - Version 3.1.18.0 log created on 08112011_155508

Files moved on Reboot...
File C:\Qoobox\BackEnv not found!

Registry entries deleted on Reboot...

[motji]

Poporsím o nový log ze rsitu. Co nám tam ještě straší?

[Zeron]

Logfile of random's system information tool 1.09 (written by random/random)
Run by Jakub at 2011-08-12 11:54:44
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 133 GB (87%) free of 153 GB
Total RAM: 3037 MB (82% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:54:48, on 12.8.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\PLFSetI.exe
C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Documents and Settings\Jakub\Plocha\RSIT.exe
C:\Program Files\trend micro\Jakub.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)
O4 - HKLM\..\Run: [DWPersistentQueuedReporting] C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE -a
O4 - HKLM\..\Run: [PLFSetI] C:\WINDOWS\PLFSetI.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [USBToolTip] C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Advanced SystemCare 3] "C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe" /startup
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [KB976002-v5] rundll32.exe advpack.dll,LaunchINFSection OPMWXPUP.inf,BrowserChoiceGoo (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat do zařízení Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~3\Office12\GR99D3~1.DLL
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 7031 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AWC AutoSweep.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Jakub\Data aplikací\Mozilla\Firefox\Profiles\gc73v2we.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.centrum.cz/"

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.0.51204.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll
npwachk.dll

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\Jakub\Data aplikací\Mozilla\Firefox\Profiles\gc73v2we.default\searchplugins\
askcom.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-05-23 115072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-05-16 1164680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"DWPersistentQueuedReporting"=C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [2006-10-26 434528]
"PLFSetI"=C:\WINDOWS\PLFSetI.exe [2008-07-29 200704]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-03-11 13594624]
"nwiz"=nwiz.exe /install []
"USBToolTip"=C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe [2007-02-20 199752]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-03-11 86016]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"UserFaultCheck"=C:\WINDOWS\system32\dumprep 0 -u []
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2011-07-11 74752]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Advanced SystemCare 3"=C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe [2009-04-30 2329936]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2011-01-25 239496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2011-01-25 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2011-01-25 304128]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableSecureUIAPaths"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"NoResolveSearch"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Pinnacle\Studio 14\Programs\RM.exe"="C:\Program Files\Pinnacle\Studio 14\Programs\RM.exe:*:Enabled:Render Manager"
"C:\Program Files\Pinnacle\Studio 14\Programs\Studio.exe"="C:\Program Files\Pinnacle\Studio 14\Programs\Studio.exe:*:Enabled:Studio"
"C:\Program Files\Pinnacle\Studio 14\Programs\umi.exe"="C:\Program Files\Pinnacle\Studio 14\Programs\umi.exe:*:Enabled:umi"
"D:\HRY\Battlefield 2\BF2.exe"="D:\HRY\Battlefield 2\BF2.exe:*:Enabled:BF2"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"VIDC.FMVC"=fmcodec.dll
"vidc.divx"=divx.dll
"vidc.yv12"=DivX.dll
"vidc.div4"=DivXc32f.dll
"vidc.div3"=DivXc32.dll
"vidc.xvid"=xvid.dll
"vidc.mp43"=mpg4c32.dll
"msacm.l3radius"=l3codecp.acm
"msacm.divxa"=divxa32.acm
"msacm.vorbis"=Vorbis.acm
"msacm.a3d"=a3d.dll
"msacm.ogg"=ogg.dll
"msacm.vorbisenc"=vorbisenc.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.mjpg"=pvmjpg30.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======List of files/folders created in the last 1 month======

2011-08-12 11:54:44 ----D---- C:\rsit
2011-08-11 21:11:39 ----D---- C:\Program Files\Winamp Detect
2011-08-11 21:11:28 ----N---- C:\WINDOWS\system32\pxwma.dll
2011-08-11 21:11:25 ----D---- C:\Program Files\Winamp
2011-08-11 21:11:25 ----D---- C:\Documents and Settings\Jakub\Data aplikací\Winamp
2011-08-11 15:55:08 ----D---- C:\_OTM
2011-08-10 17:02:44 ----A---- C:\WINDOWS\NeroDigital.ini
2011-08-09 14:18:29 ----D---- C:\Program Files\IObit
2011-08-09 14:18:29 ----D---- C:\Documents and Settings\Jakub\Data aplikací\IObit
2011-08-09 14:02:19 ----A---- C:\WINDOWS\system32\drivers\Cat.DB
2011-08-09 14:01:59 ----D---- C:\Program Files\Common Files\PC Tools
2011-08-09 13:58:27 ----D---- C:\Program Files\Spyware Doctor
2011-08-09 13:56:24 ----D---- C:\Documents and Settings\Jakub\Data aplikací\Zoner
2011-08-09 13:56:02 ----D---- C:\Program Files\Zoner
2011-08-09 13:54:38 ----N---- C:\WINDOWS\system32\drivers\imagesrv.sys
2011-08-09 13:54:38 ----N---- C:\WINDOWS\system32\drivers\imagedrv.sys
2011-08-09 13:54:24 ----N---- C:\WINDOWS\system32\ImagXRA7.dll
2011-08-09 13:54:24 ----N---- C:\WINDOWS\system32\ImagXR7.dll
2011-08-09 13:54:24 ----N---- C:\WINDOWS\system32\ImagXpr7.dll
2011-08-09 13:54:24 ----N---- C:\WINDOWS\system32\ImagX7.dll
2011-08-09 13:54:24 ----A---- C:\WINDOWS\system32\TwnLib20.dll
2011-08-09 13:54:24 ----A---- C:\WINDOWS\system32\NeroCheck.exe
2011-08-09 13:54:23 ----D---- C:\Program Files\Common Files\Ahead
2011-08-09 13:54:23 ----D---- C:\Program Files\Ahead
2011-08-09 13:51:58 ----D---- C:\Program Files\Webteh
2011-08-09 13:36:39 ----D---- C:\Program Files\CCleaner
2011-08-07 16:58:01 ----D---- C:\WINDOWS\Minidump
2011-08-07 16:30:17 ----D---- C:\Program Files\GIMP-2.0
2011-08-07 16:26:11 ----SHD---- C:\RECYCLER
2011-08-05 19:50:23 ----D---- C:\Program Files\MKV Player
2011-08-04 19:23:41 ----D---- C:\WINDOWS\temp
2011-08-04 08:56:37 ----D---- C:\Documents and Settings\Jakub\Data aplikací\WinRAR
2011-08-04 08:56:28 ----D---- C:\Program Files\WinRAR
2011-07-23 21:21:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2011-07-23 12:19:26 ----SHD---- C:\WINDOWS\CSC
2011-07-22 15:04:48 ----A---- C:\WINDOWS\system32\drivers\sptd.sys
2011-07-21 22:25:05 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2011-07-21 13:27:56 ----D---- C:\Documents and Settings\Jakub\Data aplikací\Malwarebytes
2011-07-21 13:27:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2011-07-20 18:11:19 ----A---- C:\Boot.bak
2011-07-20 18:11:15 ----RASHD---- C:\cmdcons
2011-07-20 17:22:13 ----D---- C:\Program Files\trend micro
2011-07-20 10:15:38 ----HD---- C:\WINDOWS\PIF
2011-07-19 11:31:58 ----D---- C:\Program Files\Common Files\Pegasus Imaging
2011-07-19 11:31:57 ----D---- C:\Program Files\Common Files\Yahoo!
2011-07-19 11:31:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\Studio 14
2011-07-19 11:31:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\Pinnacle Studio Plus
2011-07-19 11:29:49 ----D---- C:\WINDOWS\SxsCaPendDel
2011-07-18 21:15:50 ----D---- C:\WINDOWS\system32\LogFiles
2011-07-18 19:19:30 ----D---- C:\WINDOWS\Prefetch
2011-07-18 18:50:32 ----N---- C:\WINDOWS\system32\irclass.dll
2011-07-18 18:50:31 ----N---- C:\WINDOWS\system32\spxcoins.dll
2011-07-18 18:41:05 ----A---- C:\WINDOWS\UPGRADE.TXT
2011-07-18 12:06:23 ----N---- C:\WINDOWS\system32\drivers\athw.sys
2011-07-18 12:06:23 ----N---- C:\WINDOWS\system32\athw.sys
2011-07-18 12:06:23 ----D---- C:\WINDOWS\Options
2011-07-18 12:06:10 ----D---- C:\temp
2011-07-18 11:37:28 ----D---- C:\WINDOWS\system32\appmgmt
2011-07-17 17:44:46 ----D---- C:\Program Files\Kodek CZ
2011-07-16 21:45:47 ----N---- C:\WINDOWS\system32\drivers\MarvinBus.sys
2011-07-16 21:45:40 ----D---- C:\Program Files\Common Files\Pinnacle
2011-07-16 21:41:36 ----D---- C:\Program Files\Pinnacle
2011-07-16 21:32:09 ----D---- C:\Program Files\Common Files\Adobe
2011-07-16 21:32:09 ----D---- C:\Program Files\Adobe
2011-07-16 21:31:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2011-07-16 20:42:51 ----D---- C:\Documents and Settings\Jakub\Data aplikací\DivX
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\vxblock.dll
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxwave.dll
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxsfs.dll
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxmas.dll
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxinsi64.exe
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxinsa64.exe
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxdrv.dll
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxcpyi64.exe
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxcpya64.exe
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\pxafs.dll
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\px.dll
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\drivers\PxHelp20.sys
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\drivers\cdralw2k.sys
2011-07-16 20:42:26 ----N---- C:\WINDOWS\system32\drivers\cdr4_xp.sys
2011-07-16 20:41:59 ----D---- C:\Program Files\Common Files\DivX Shared
2011-07-16 20:40:14 ----D---- C:\Program Files\Google
2011-07-16 20:40:11 ----D---- C:\Program Files\DivX
2011-07-16 20:39:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\DivX
2011-07-16 20:36:31 ----D---- C:\Documents and Settings\Jakub\Data aplikací\skypePM
2011-07-16 20:36:29 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype Extras
2011-07-16 20:36:11 ----D---- C:\Documents and Settings\Jakub\Data aplikací\Skype
2011-07-16 20:36:01 ----D---- C:\Program Files\Common Files\Skype
2011-07-16 20:35:58 ----RD---- C:\Program Files\Skype
2011-07-16 20:12:03 ----D---- C:\Documents and Settings\Jakub\Data aplikací\Mirillis
2011-07-16 20:12:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Mirillis
2011-07-16 20:10:35 ----D---- C:\Program Files\Mirillis
2011-07-16 19:58:22 ----D---- C:\Program Files\DsNET Corp
2011-07-16 19:37:25 ----A---- C:\WINDOWS\nsreg.dat
2011-07-16 19:37:24 ----D---- C:\Documents and Settings\Jakub\Data aplikací\Mozilla
2011-07-16 19:37:19 ----D---- C:\Program Files\Mozilla Firefox
2011-07-16 19:34:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\GoldWave
2011-07-16 19:34:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\ICQ
2011-07-16 19:34:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\McAfee
2011-07-16 19:34:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\LangSoft
2011-07-16 19:34:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\Installations
2011-07-16 19:34:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\NortonInstaller
2011-07-16 19:34:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\Norton
2011-07-16 19:34:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\Nero
2011-07-16 19:34:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\NOS
2011-07-16 19:34:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Pinnacle Studio Ultimate Collection
2011-07-16 19:34:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Pinnacle Studio Ultimate
2011-07-16 19:34:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Pinnacle
2011-07-16 19:34:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sony Ericsson
2011-07-16 19:34:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2011-07-16 19:34:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\Symantec
2011-07-16 19:34:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2011-07-16 18:00:12 ----D---- C:\Documents and Settings\Jakub\Data aplikací\Macromedia
2011-07-16 18:00:12 ----D---- C:\Documents and Settings\Jakub\Data aplikací\Adobe

======List of files/folders modified in the last 1 month======

2011-08-12 10:44:55 ----D---- C:\WINDOWS\system32
2011-08-12 10:44:55 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-08-12 10:40:51 ----D---- C:\WINDOWS
2011-08-12 10:06:06 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-08-12 09:07:32 ----D---- C:\WINDOWS\system32\CatRoot2
2011-08-11 21:11:39 ----RD---- C:\Program Files
2011-08-10 11:29:21 ----SHD---- C:\System Volume Information
2011-08-09 14:23:18 ----SD---- C:\WINDOWS\Tasks
2011-08-09 14:17:52 ----D---- C:\WINDOWS\system32\drivers
2011-08-09 14:01:59 ----D---- C:\Program Files\Common Files
2011-08-09 14:01:43 ----D---- C:\WINDOWS\WinSxS
2011-08-09 14:01:41 ----SHD---- C:\WINDOWS\Installer
2011-08-09 13:37:35 ----D---- C:\WINDOWS\Debug
2011-08-09 13:33:59 ----D---- C:\WINDOWS\system32\Restore
2011-08-07 21:31:40 ----SD---- C:\Documents and Settings\Jakub\Data aplikací\Microsoft
2011-08-07 21:23:30 ----D---- C:\WINDOWS\system32\wbem
2011-08-07 15:12:56 ----A---- C:\WINDOWS\system.ini
2011-08-06 20:50:50 ----HD---- C:\WINDOWS\inf
2011-08-04 19:21:38 ----D---- C:\WINDOWS\system32\drivers\etc
2011-08-04 19:14:30 ----D---- C:\WINDOWS\AppPatch
2011-07-22 11:31:30 ----D---- C:\WINDOWS\system32\config
2011-07-22 11:27:44 ----DC---- C:\WINDOWS\system32\dllcache
2011-07-20 18:14:04 ----D---- C:\WINDOWS\system
2011-07-20 18:14:02 ----D---- C:\Program Files\Internet Explorer
2011-07-20 18:11:19 ----RASH---- C:\boot.ini
2011-07-18 20:47:33 ----D---- C:\WINDOWS\L2Schemas
2011-07-18 20:47:32 ----SD---- C:\WINDOWS\Offline Web Pages
2011-07-18 20:47:31 ----D---- C:\WINDOWS\system32\usmt
2011-07-18 20:47:29 ----D---- C:\WINDOWS\Media
2011-07-18 20:47:28 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-07-18 20:47:25 ----D---- C:\WINDOWS\WBEM
2011-07-18 20:47:08 ----D---- C:\WINDOWS\Network Diagnostic
2011-07-18 20:46:53 ----D---- C:\WINDOWS\PeerNet
2011-07-18 20:46:53 ----D---- C:\WINDOWS\ime
2011-07-18 20:46:32 ----D---- C:\WINDOWS\system32\npp
2011-07-18 20:46:24 ----D---- C:\WINDOWS\msagent
2011-07-18 20:46:17 ----D---- C:\WINDOWS\system32\cs
2011-07-18 20:45:52 ----D---- C:\WINDOWS\ehome
2011-07-18 20:45:16 ----D---- C:\WINDOWS\twain_32
2011-07-18 20:45:04 ----D---- C:\WINDOWS\system32\icsxml
2011-07-18 20:44:42 ----D---- C:\WINDOWS\system32\ias
2011-07-18 20:44:37 ----D---- C:\WINDOWS\system32\1033
2011-07-18 20:44:37 ----D---- C:\WINDOWS\system32\1029
2011-07-18 20:43:51 ----D---- C:\WINDOWS\Driver Cache
2011-07-18 19:21:31 ----D---- C:\WINDOWS\Registration
2011-07-18 19:15:43 ----D---- C:\WINDOWS\security
2011-07-18 19:14:04 ----A---- C:\WINDOWS\ODBCINST.INI
2011-07-18 19:13:47 ----ASH---- C:\WINDOWS\fonts\desktop.ini
2011-07-18 19:13:20 ----RD---- C:\WINDOWS\Web
2011-07-18 19:13:15 ----N---- C:\WINDOWS\system32\cdplayer.exe.manifest
2011-07-18 19:13:03 ----A---- C:\WINDOWS\win.ini
2011-07-18 19:12:58 ----D---- C:\Program Files\Windows Media Connect 2
2011-07-18 19:12:53 ----D---- C:\Program Files\Windows Media Player
2011-07-18 19:12:49 ----D---- C:\WINDOWS\srchasst
2011-07-18 19:12:32 ----D---- C:\WINDOWS\Help
2011-07-18 19:12:18 ----D---- C:\Program Files\NetMeeting
2011-07-18 19:12:16 ----D---- C:\Program Files\Common Files\Services
2011-07-18 19:12:13 ----D---- C:\Program Files\Outlook Express
2011-07-18 19:11:54 ----D---- C:\WINDOWS\system32\bits
2011-07-18 19:11:52 ----D---- C:\Program Files\Movie Maker
2011-07-18 19:11:33 ----D---- C:\WINDOWS\system32\oobe
2011-07-18 19:11:17 ----D---- C:\Program Files\Common Files\System
2011-07-18 19:10:06 ----RSD---- C:\WINDOWS\assembly
2011-07-18 19:09:26 ----D---- C:\WINDOWS\Microsoft.NET
2011-07-18 19:09:25 ----D---- C:\WINDOWS\system32\Setup
2011-07-18 19:06:36 ----D---- C:\WINDOWS\system32\Com
2011-07-18 19:05:45 ----D---- C:\WINDOWS\system32\en-US
2011-07-18 19:04:09 ----D---- C:\WINDOWS\system32\XPSViewer
2011-07-18 19:03:52 ----RSD---- C:\WINDOWS\Fonts
2011-07-18 19:01:58 ----D---- C:\WINDOWS\BitLockerDiscoveryVolumeContents
2011-07-18 19:01:48 ----D---- C:\WINDOWS\system32\drivers\UMDF
2011-07-18 19:01:47 ----D---- C:\WINDOWS\system32\cs-cz
2011-07-18 19:01:44 ----D---- C:\Program Files\Windows Desktop Search
2011-07-18 19:01:30 ----D---- C:\Program Files\MSXML 4.0
2011-07-18 19:00:15 ----D---- C:\Program Files\Microsoft Silverlight
2011-07-18 18:59:37 ----D---- C:\WINDOWS\Cursors
2011-07-18 18:59:30 ----D---- C:\Program Files\Windows NT
2011-07-18 18:51:39 ----D---- C:\WINDOWS\system32\CatRoot
2011-07-18 18:50:56 ----N---- C:\WINDOWS\system32\oeminfo.ini
2011-07-18 18:50:17 ----AS---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2011-07-18 12:06:22 ----HD---- C:\Program Files\InstallShield Installation Information
2011-07-18 12:02:13 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-07-18 12:02:07 ----D---- C:\WINDOWS\system32\Atheros_L1e
2011-07-16 21:45:52 ----DC---- C:\WINDOWS\system32\DRVSTORE
2011-07-16 20:37:31 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-07-16 19:34:53 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-05-14 107256]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-05-14 94360]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2011-01-25 8832]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-05-14 114472]
R2 rspndr;Odpovídající zařízení zjišťování topologie linkové vrstvy; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2011-01-25 62848]
R3 AR5416;Atheros AR5008 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athw.sys [2009-06-22 1574112]
R3 BTDriver;Ovladač virtuálních komunikací Bluetooth; C:\WINDOWS\system32\DRIVERS\btport.sys [2008-02-04 37160]
R3 BTKRNL;Enumenátor sběrnice Bluetooth; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2009-04-15 991136]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDAU32.sys [2009-03-09 805888]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 L1c;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1c51x86.sys [2009-04-07 39424]
R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2011-01-25 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-03-11 6249728]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2011-01-25 32384]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2009-05-12 122240]
S1 DumpDrv;Crash Dump Driver; C:\WINDOWS\system32\drivers\DumpDrv.sys [2011-01-25 9472]
S3 btaudio;Zvukové zařízení Bluetooth; C:\WINDOWS\system32\drivers\btaudio.sys [2009-06-18 533024]
S3 BTWDNDIS;Server pro přístup k síti LAN Bluetooth; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2008-07-24 156816]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2009-06-18 45984]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2011-01-25 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2011-01-25 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2011-01-25 82944]
S4 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys [2011-01-25 133632]
S4 sptd;sptd; C:\WINDOWS\C:\WINDOWS\System32\Drivers\sptd.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2009-06-20 349528]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-03-11 168005]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2011-01-25 441856]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-07-16 135664]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-07-16 135664]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WinRM;Vzdálená správa systému Windows (WS-Management); C:\WINDOWS\System32\svchost.exe [2011-01-25 14848]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2011-01-25 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2011-01-25 14848]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------