Kontrola logu

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Odpovědět
ZHlavaty
nováček
Příspěvky: 18
Registrován: říjen 11
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Kontrola logu

Příspěvekod ZHlavaty » 27 říj 2011 10:29

Část 3
+ 2008-07-07 17:20 . 2008-04-14 12:00 77824 c:\windows\I386\WSDUENG.DLL
+ 2008-07-07 17:20 . 2008-04-14 12:00 53248 c:\windows\I386\WSDU.DLL
+ 2008-07-07 17:20 . 2008-04-14 12:00 84899 c:\windows\I386\WINNTUS.EXE
+ 2008-07-07 17:20 . 2008-04-14 12:00 67584 c:\windows\I386\WINNT32.MSI
+ 2008-07-07 17:20 . 2008-04-14 12:00 81408 c:\windows\I386\WINNT32.EXE
+ 2008-07-07 17:20 . 2008-04-14 12:00 89065 c:\windows\I386\WINNT.EXE
+ 2008-07-07 17:19 . 2008-04-14 12:00 25600 c:\windows\I386\TSCUPDC.DLL
+ 2008-07-07 17:19 . 2008-04-14 12:00 77824 c:\windows\I386\TELNET.EXE
+ 2008-07-07 17:19 . 2008-04-14 12:00 11264 c:\windows\I386\SPNPINST.EXE
+ 2008-07-07 17:19 . 2008-04-14 12:00 24064 c:\windows\I386\PIDGEN.DLL
+ 2008-07-07 17:19 . 2008-04-14 12:00 36864 c:\windows\I386\NTSDEXTS.DLL
+ 2008-07-07 17:19 . 2008-04-14 12:00 31744 c:\windows\I386\NTSD.EXE
+ 2008-07-07 17:19 . 2008-04-14 12:00 47564 c:\windows\I386\NTDETECT.COM
+ 2008-07-07 17:18 . 2008-04-14 12:00 92288 c:\windows\I386\KSECDD.SYS
+ 2008-07-07 17:18 . 2008-04-14 12:00 69632 c:\windows\I386\HWDB.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 20992 c:\windows\I386\FAXPATCH.EXE
+ 2008-07-07 17:18 . 2008-04-14 12:00 16384 c:\windows\I386\EXPAND.EXE
+ 2008-07-07 17:18 . 2008-04-14 12:00 28672 c:\windows\I386\DRW\FAULTH.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 55632 c:\windows\I386\DRW\1033\DWINTL.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 55632 c:\windows\I386\DRW\1029\DWINTL.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 60416 c:\windows\I386\CABINET.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 50688 c:\windows\I386\ASMS\7000\MSFT\WINDOWS\MSWINCRT\MSVCIRT.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 53248 c:\windows\I386\ASMS\6000\MSFT\VCRTLINT\MFC42CSY.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 74802 c:\windows\I386\ASMS\6000\MSFT\VCRTL\ATL.DLL
+ 2006-05-30 19:24 . 2007-06-14 11:34 61440 c:\windows\emMON(9).exe
+ 2006-05-30 19:24 . 2007-06-14 11:34 61440 c:\windows\emMON(8).exe
+ 2006-05-30 19:24 . 2007-06-14 11:34 61440 c:\windows\emMON(7).exe
+ 2006-05-30 19:24 . 2006-05-30 19:24 61440 c:\windows\emMON(6).exe
+ 2006-05-30 19:24 . 2006-05-30 19:24 61440 c:\windows\emMON(5).exe
+ 2006-05-30 19:24 . 2006-05-30 19:24 61440 c:\windows\emMON(4).exe
+ 2006-05-30 19:24 . 2006-05-30 19:24 61440 c:\windows\emMON(3).exe
+ 2006-05-30 19:24 . 2006-05-30 19:24 61440 c:\windows\emMON(2).exe
+ 2006-05-30 19:24 . 2007-06-14 11:34 61440 c:\windows\emMON(18).exe
+ 2006-05-30 19:24 . 2007-06-14 11:34 61440 c:\windows\emMON(17).exe
+ 2006-05-30 19:24 . 2006-05-30 19:24 61440 c:\windows\emMON(16).exe
+ 2006-05-30 19:24 . 2006-05-30 19:24 61440 c:\windows\emMON(15).exe
+ 2006-05-30 19:24 . 2006-05-30 19:24 61440 c:\windows\emMON(14).exe
+ 2006-05-30 19:24 . 2006-05-30 19:24 61440 c:\windows\emMON(13).exe
+ 2006-05-30 19:24 . 2006-05-30 19:24 61440 c:\windows\emMON(12).exe
+ 2006-05-30 19:24 . 2007-06-14 11:34 61440 c:\windows\emMON(11).exe
+ 2006-05-30 19:24 . 2007-06-14 11:34 61440 c:\windows\emMON(10).exe
+ 2008-07-30 10:00 . 2002-07-25 16:13 24576 c:\windows\Downloaded Program Files\dwusplay.dll
+ 2008-07-07 13:12 . 2008-07-07 13:12 27176 c:\windows\BtwIEProxy.exe
+ 2008-06-24 16:54 . 2008-06-24 16:54 74240 c:\windows\$hf_mig$\KB952954\SP3QFE\mscms.dll
+ 2008-06-12 14:11 . 2008-06-12 14:11 91648 c:\windows\$hf_mig$\KB952004\SP3QFE\mtxoci.dll
+ 2008-06-12 14:11 . 2008-06-12 14:11 66560 c:\windows\$hf_mig$\KB952004\SP3QFE\mtxclu.dll
+ 2008-06-12 14:11 . 2008-06-12 14:11 58880 c:\windows\$hf_mig$\KB952004\SP3QFE\msdtclog.dll
+ 2008-05-09 10:51 . 2008-05-09 10:51 90112 c:\windows\$hf_mig$\KB951978\SP3QFE\wshext.dll
+ 2008-06-25 17:00 . 2008-06-25 17:00 1682 c:\windows\Uninstuxga.bat
+ 2008-05-05 05:25 . 2011-02-17 12:54 5632 c:\windows\system32\xpsp4res.dll
+ 2001-10-24 12:24 . 2008-04-14 12:00 3200 c:\windows\system32\wowfax.dll
+ 2001-10-24 12:25 . 2009-11-27 16:09 8704 c:\windows\system32\tsbyuv.dll
+ 2001-10-24 12:25 . 2008-04-14 12:00 8192 c:\windows\system32\streamci.dll
+ 2003-03-05 02:58 . 2003-03-05 02:58 4096 c:\windows\system32\mui\0409\mscoreer.dll
+ 1999-05-19 13:58 . 1999-05-19 13:58 7680 c:\windows\system32\MSPRPCS.DLL
+ 2008-04-14 08:51 . 2008-04-14 12:00 7168 c:\windows\system32\hccoin.dll
+ 2001-08-17 22:03 . 2001-08-17 20:03 4736 c:\windows\system32\drivers\usbd.sys
+ 2008-04-14 00:09 . 2008-04-13 22:09 4352 c:\windows\system32\drivers\swenum.sys
+ 2002-09-16 15:14 . 2002-09-16 15:14 4228 c:\windows\system32\drivers\PQNTDRV.sys
+ 2001-10-24 11:52 . 2001-10-24 09:52 3328 c:\windows\system32\drivers\pciide.sys
+ 2001-08-17 21:57 . 2001-08-17 19:57 3456 c:\windows\system32\drivers\oprghdlr.sys
+ 2008-04-14 00:09 . 2008-04-14 12:00 4992 c:\windows\system32\drivers\mspqm.sys
+ 2008-04-14 00:09 . 2008-04-14 12:00 5376 c:\windows\system32\drivers\mspclock.sys
+ 2008-04-14 00:09 . 2008-04-14 12:00 7552 c:\windows\system32\drivers\mskssrv.sys
+ 2008-04-14 07:55 . 2008-04-14 12:00 5504 c:\windows\system32\drivers\intelide.sys
+ 2008-04-14 00:15 . 2008-04-14 12:00 2944 c:\windows\system32\drivers\drmkaud.sys
+ 2001-08-17 22:03 . 2001-08-17 20:03 4736 c:\windows\system32\dllcache\usbd.sys
+ 2001-10-24 12:25 . 2009-11-27 16:09 8704 c:\windows\system32\dllcache\tsbyuv.dll
+ 2008-04-14 00:09 . 2008-04-13 22:09 4352 c:\windows\system32\dllcache\swenum.sys
+ 2001-10-24 11:52 . 2001-10-24 09:52 3328 c:\windows\system32\dllcache\pciide.sys
+ 2001-08-17 21:57 . 2001-08-17 19:57 3456 c:\windows\system32\dllcache\oprghdlr.sys
+ 2008-07-29 21:40 . 2008-07-29 21:40 5632 c:\windows\Microsoft.NET\Framework\v3.5\Sentinel.v3.5Client.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 7168 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft_VsaVb.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 5632 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualC.Dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 6656 c:\windows\Microsoft.NET\Framework\v2.0.50727\IIEHost.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 8192 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExecRemote.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 9728 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExec.exe
+ 2008-07-25 09:16 . 2008-07-25 09:16 5120 c:\windows\Microsoft.NET\Framework\v2.0.50727\dfsvc.exe
+ 2003-03-05 03:02 . 2003-03-05 03:02 9216 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscortim.dll
+ 2003-03-05 02:58 . 2003-03-05 02:58 6656 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft_VsaVb.dll
+ 2003-03-05 02:58 . 2003-03-05 02:58 6144 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.VisualC.Dll
+ 2003-03-05 02:58 . 2003-03-05 02:58 4608 c:\windows\Microsoft.NET\Framework\v1.1.4322\IIEHost.dll
+ 2004-07-15 12:31 . 2004-07-15 12:31 8192 c:\windows\Microsoft.NET\Framework\v1.1.4322\IEExecRemote.dll
+ 2003-03-05 02:58 . 2003-03-05 02:58 7680 c:\windows\Microsoft.NET\Framework\v1.1.4322\IEExec.exe
+ 2003-03-05 02:58 . 2003-03-05 02:58 7680 c:\windows\Microsoft.NET\Framework\v1.1.4322\Accessibility.dll
+ 2003-03-05 02:57 . 2003-03-05 02:57 5120 c:\windows\Microsoft.NET\Framework\sbs_VsaVb7rt.dll
+ 2003-03-05 02:57 . 2003-03-05 02:57 5632 c:\windows\Microsoft.NET\Framework\sbs_microsoft.vsa.vb.codedomprocessor.dll
+ 2003-03-05 03:03 . 2003-03-05 03:03 5120 c:\windows\Microsoft.NET\Framework\sbs_iehost.dll
+ 2008-07-07 17:19 . 2008-04-14 12:00 4569 c:\windows\I386\SECUPD.DAT
+ 2008-07-07 17:19 . 2008-04-14 12:00 2589 c:\windows\I386\RUNW32.BAT
+ 2008-07-07 17:18 . 2008-04-14 12:00 6656 c:\windows\I386\KBDYCL.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDYCC.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDVNTC.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDUZB.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDUSX.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDUSR.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDUSL.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDUS.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDURDU.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDUR.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDUK.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDTUQ.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDTUF.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDTH3.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDTH2.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDTH1.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDTH0.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDTAT.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDSYR2.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDSYR1.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDSW.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDSP.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6656 c:\windows\I386\KBDSL1.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6656 c:\windows\I386\KBDSL.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6656 c:\windows\I386\KBDSG.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDSF.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDRU1.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDRU.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDRO.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDPO.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDPL1.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6656 c:\windows\I386\KBDPL.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDNO.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 7168 c:\windows\I386\KBDNEC.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDNE.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDMON.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDLV1.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDLV.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDLT1.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDLT.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6656 c:\windows\I386\KBDLA.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDKYR.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDKAZ.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDIT142.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDIT.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDIR.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDINTEL.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDINTAM.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDINPUN.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDINMAR.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDINKAN.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDINHIN.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDINGUJ.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDINDEV.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDIC.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDHU1.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6656 c:\windows\I386\KBDHU.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 8192 c:\windows\I386\KBDHEPT.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6656 c:\windows\I386\KBDHELA3.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDHELA2.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDHEB.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDHE319.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDHE220.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDHE.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDGR1.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDGR.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDGKL.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5120 c:\windows\I386\KBDGEO.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDGAE.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDFR.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDFI.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDFC.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDFA.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDEST.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDES.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5120 c:\windows\I386\KBDDV.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDDIV2.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDDIV1.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDDA.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6656 c:\windows\I386\KBDCZ2.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6656 c:\windows\I386\KBDCZ1.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 7168 c:\windows\I386\KBDCZ.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6656 c:\windows\I386\KBDCR.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDCA.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDBU.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDBR.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDBLR.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6144 c:\windows\I386\KBDBE.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDAZEL.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDAZE.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5120 c:\windows\I386\KBDARMW.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5120 c:\windows\I386\KBDARME.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 6656 c:\windows\I386\KBDAL.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDA3.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDA2.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 5632 c:\windows\I386\KBDA1.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 4952 c:\windows\I386\BOOTFONT.BIN
+ 2008-02-01 09:17 . 2008-02-01 09:17 586752 c:\windows\WLXPGSS.SCR
+ 2008-07-29 06:05 . 2008-07-29 06:05 655872 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcr90.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 572928 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcp90.dll
+ 2008-07-29 01:54 . 2008-07-29 01:54 225280 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcm90.dll
+ 2007-11-07 00:19 . 2007-11-07 00:19 655872 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_d08d0375\msvcr90.dll
+ 2007-11-07 00:19 . 2007-11-07 00:19 568832 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_d08d0375\msvcp90.dll
+ 2007-11-06 19:23 . 2007-11-06 19:23 224768 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_d08d0375\msvcm90.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 161784 c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_d01483b2\atl90.dll
+ 2005-09-22 21:48 . 2005-09-22 21:48 626688 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\msvcr80.dll
+ 2005-09-22 21:48 . 2005-09-22 21:48 548864 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\msvcp80.dll
+ 2005-09-22 21:48 . 2005-09-22 21:48 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\msvcm80.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 635904 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcr80.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 558080 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcp80.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcm80.dll
+ 2006-06-05 12:14 . 2006-06-05 12:14 626688 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcr80.dll
+ 2006-06-05 12:14 . 2006-06-05 12:14 548864 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcp80.dll
+ 2006-06-05 12:14 . 2006-06-05 12:14 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcm80.dll
+ 2008-07-07 17:20 . 2008-04-14 12:00 921088 c:\windows\WinSxS\InstallTemp\63705\comctl32.dll
+ 2008-07-29 19:26 . 2008-07-29 19:26 301568 c:\windows\system32\XPSViewer\XPSViewer.exe
+ 2008-04-14 08:52 . 2008-04-14 12:00 483840 c:\windows\system32\wzcsvc.dll
+ 2008-04-14 08:52 . 2008-04-14 12:00 108032 c:\windows\system32\wshbth.dll
+ 2008-07-30 09:47 . 2008-04-14 12:00 221184 c:\windows\system32\wmpns.dll
+ 2002-08-21 03:13 . 2002-08-21 03:13 189952 c:\windows\system32\WISPTIS.EXE
+ 2007-08-13 17:45 . 2009-03-08 02:34 208384 c:\windows\system32\WinFXDocObj.exe
+ 2008-07-07 12:39 . 2008-07-07 12:39 577536 c:\windows\system32\WidcommSdk.dll
+ 2008-07-07 12:37 . 2008-07-07 12:37 507965 c:\windows\system32\wbtapi.dll
+ 2000-07-14 22:00 . 2000-07-14 22:00 101888 c:\windows\system32\VB6STKIT.DLL
+ 2001-10-24 12:25 . 2008-04-14 12:00 102457 c:\windows\system32\usrv42a.dll
+ 2001-10-24 12:25 . 2008-04-14 12:00 323641 c:\windows\system32\usrdtea.dll
+ 2007-08-22 14:02 . 2007-08-22 14:02 487424 c:\windows\system32\SmAgentAPI.dll
+ 2008-07-30 10:01 . 2008-06-10 06:39 266240 c:\windows\system32\RTCOM\RTCOMDLL.dll
+ 2006-08-24 14:15 . 2006-08-24 14:15 150808 c:\windows\system32\rgb9rast_2.dll
+ 2000-04-03 15:52 . 2000-04-03 15:52 151552 c:\windows\system32\RDOCURS.DLL
+ 2006-11-13 14:50 . 2006-11-13 14:50 138024 c:\windows\system32\rapi.dll
+ 2008-07-29 17:59 . 2008-07-29 17:59 781344 c:\windows\system32\PresentationNative_v0300.dll
+ 2008-07-29 17:59 . 2008-07-29 17:59 105016 c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
+ 2008-07-07 17:20 . 2011-10-24 10:23 546394 c:\windows\system32\perfh009.dat
+ 2008-07-07 17:20 . 2011-10-24 10:23 544024 c:\windows\system32\perfh005.dat
+ 2008-07-07 17:20 . 2011-10-24 10:23 110242 c:\windows\system32\perfc009.dat
+ 2008-07-07 17:20 . 2011-10-24 10:23 125186 c:\windows\system32\perfc005.dat
+ 2001-10-24 12:25 . 2008-04-14 12:00 157696 c:\windows\system32\paqsp.dll
+ 2003-02-21 02:42 . 2003-02-21 02:42 348160 c:\windows\system32\msvcr71.dll
+ 2002-01-05 01:37 . 2002-01-05 01:37 344064 c:\windows\system32\msvcr70.dll
+ 2003-03-18 18:14 . 2003-03-18 20:14 499712 c:\windows\system32\msvcp71.dll
+ 2002-01-05 01:40 . 2002-01-05 01:40 487424 c:\windows\system32\msvcp70.dll
+ 2000-05-24 04:45 . 2000-05-24 04:45 118784 c:\windows\system32\MSSTDFMT.DLL
+ 2000-05-11 11:06 . 2000-05-11 11:06 397312 c:\windows\system32\MSRDO20.DLL
+ 2008-04-14 08:53 . 2008-04-14 06:53 294912 c:\windows\system32\msh263.drv
+ 2007-08-13 17:54 . 2011-08-22 23:41 602112 c:\windows\system32\msfeeds.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 158720 c:\windows\system32\mscorier.dll
+ 2001-10-24 12:24 . 2008-04-14 12:00 147968 c:\windows\system32\mdwmdmsp.dll
+ 2002-08-21 03:10 . 2002-08-21 03:10 204800 c:\windows\system32\INKED.DLL
+ 2005-10-28 22:25 . 2005-10-28 22:25 151552 c:\windows\system32\ifxcardm.dll
+ 2007-08-13 17:54 . 2009-03-08 02:22 164352 c:\windows\system32\ieui.dll
+ 2007-07-11 11:27 . 2009-03-08 02:11 445952 c:\windows\system32\ieapfltr.dll
+ 2008-07-29 17:24 . 2008-07-29 17:24 622080 c:\windows\system32\icardagt.exe
+ 2008-04-14 00:01 . 2008-04-13 22:01 134400 c:\windows\system32\hal.dll
+ 2008-04-14 08:52 . 2008-04-14 12:00 193024 c:\windows\system32\fsquirt.exe
+ 2008-07-29 19:10 . 2008-07-29 19:10 493048 c:\windows\system32\evr.dll
+ 2008-05-21 11:21 . 2008-04-14 09:43 192512 c:\windows\system32\ETDCoinst.dll
+ 2008-04-14 00:15 . 2008-04-13 22:15 143872 c:\windows\system32\drivers\usbport.sys
+ 2008-04-14 00:49 . 2008-04-13 22:49 146048 c:\windows\system32\drivers\portcls.sys
+ 2008-04-14 08:10 . 2008-04-14 12:00 120064 c:\windows\system32\drivers\pcmcia.sys
+ 2008-04-14 00:46 . 2008-04-13 22:46 141056 c:\windows\system32\drivers\ks.sys
+ 2008-04-14 00:15 . 2008-04-14 12:00 172416 c:\windows\system32\drivers\kmixer.sys
+ 2008-04-14 00:23 . 2009-10-20 16:20 265728 c:\windows\system32\drivers\http.sys
+ 2008-04-13 22:06 . 2008-04-14 12:00 144384 c:\windows\system32\drivers\hdaudbus.sys
+ 2001-10-24 11:55 . 2001-10-24 09:55 125184 c:\windows\system32\drivers\ftdisk.sys
+ 2006-09-12 19:21 . 2007-06-14 11:34 380416 c:\windows\system32\drivers\emBDA.sys
+ 2001-10-24 11:53 . 2008-04-14 12:00 262528 c:\windows\system32\drivers\cinemst2.sys
+ 2008-07-30 09:59 . 2007-09-20 03:59 156392 c:\windows\system32\drivers\btwdndis.sys
+ 2008-07-30 09:59 . 2008-06-24 01:59 991400 c:\windows\system32\drivers\btkrnl.sys
+ 2008-04-14 07:45 . 2008-06-14 17:35 272128 c:\windows\system32\drivers\bthport.sys
+ 2008-07-30 09:59 . 2008-05-30 03:46 534568 c:\windows\system32\drivers\btaudio.sys
+ 2008-04-13 22:09 . 2008-04-14 12:00 142592 c:\windows\system32\drivers\aec.sys
+ 2008-04-14 07:35 . 2008-04-14 05:35 188288 c:\windows\system32\drivers\acpi.sys
+ 2008-04-14 00:15 . 2008-04-13 22:15 143872 c:\windows\system32\dllcache\usbport.sys
+ 2008-04-14 00:49 . 2008-04-13 22:49 146048 c:\windows\system32\dllcache\portcls.sys
+ 2008-04-14 00:46 . 2008-04-13 22:46 141056 c:\windows\system32\dllcache\ks.sys
+ 2001-10-24 11:55 . 2001-10-24 09:55 125184 c:\windows\system32\dllcache\ftdisk.sys
+ 2008-04-14 07:35 . 2008-04-14 05:35 188288 c:\windows\system32\dllcache\acpi.sys
+ 2008-07-30 09:45 . 2008-07-30 09:45 262144 c:\windows\system32\config\systemprofile\ntuser.dat
+ 2008-07-07 12:53 . 2008-07-07 12:53 106496 c:\windows\system32\BTXPPanel.dll
+ 2008-07-07 13:04 . 2008-07-07 13:04 233472 c:\windows\system32\btwhidcs.dll
+ 2008-07-30 09:59 . 2007-09-20 03:59 106557 c:\windows\system32\btw_ci.dll
+ 2008-07-07 12:59 . 2008-07-07 12:59 155699 c:\windows\system32\btsendto_wab.dll
+ 2008-07-07 12:59 . 2008-07-07 12:59 274486 c:\windows\system32\btsendto_office.dll
+ 2008-07-07 12:54 . 2008-07-07 12:54 221184 c:\windows\system32\btsendto.dll
+ 2008-07-07 13:01 . 2008-07-07 13:01 102400 c:\windows\system32\btsec.dll
+ 2008-07-07 12:46 . 2008-07-07 12:46 974848 c:\windows\system32\btrez.dll
+ 2008-07-07 12:57 . 2008-07-07 12:57 147456 c:\windows\system32\btosif_olx.dll
+ 2008-07-07 12:57 . 2008-07-07 12:57 172032 c:\windows\system32\btosif_ol.dll
+ 2008-07-07 12:57 . 2008-07-07 12:57 159744 c:\windows\system32\btosif_notes.dll
+ 2008-07-07 12:54 . 2008-07-07 12:54 122880 c:\windows\system32\btosif.dll
+ 2008-07-07 13:03 . 2008-07-07 13:03 987213 c:\windows\system32\BTNeighborhood.dll
+ 2008-07-07 12:47 . 2008-07-07 12:47 434176 c:\windows\system32\btins.dll
+ 2008-07-07 12:55 . 2008-07-07 12:55 622592 c:\windows\system32\BTChooser.dll
+ 2008-07-07 12:56 . 2008-07-07 12:56 114688 c:\windows\system32\bthcrpui.dll
+ 2008-07-07 12:55 . 2008-07-07 12:55 106496 c:\windows\system32\bthcrp.dll
+ 2008-07-07 13:01 . 2008-07-07 13:01 426043 c:\windows\system32\btcss.dll
+ 2008-07-07 12:39 . 2008-07-07 12:39 147456 c:\windows\system32\btbip.dll
+ 2008-07-07 12:53 . 2008-07-07 12:53 122880 c:\windows\system32\btbigbmp.dll
+ 2008-07-07 12:48 . 2008-07-07 12:48 122945 c:\windows\system32\bt2k_ins.dll
+ 2005-10-28 22:25 . 2005-10-28 22:25 133120 c:\windows\system32\axaltocm.dll
+ 2008-07-29 21:40 . 2008-07-29 21:40 196104 c:\windows\Microsoft.NET\Framework\v3.5\WFServicesReg.exe
+ 2008-07-29 21:40 . 2008-07-29 21:40 802816 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft.Build.Tasks.v3.5.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 984056 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapUI.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 107512 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 111096 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.3082.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 110072 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.2070.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 106488 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1055.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 105976 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1053.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 107000 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1049.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 107512 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1046.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 109048 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1045.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 106488 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1044.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 108536 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1043.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 110072 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1040.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 111096 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1038.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 101368 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1037.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 112120 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1036.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 106488 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1035.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 113656 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1032.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 111608 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1031.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 108536 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1030.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 108536 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1029.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 102904 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1025.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 689152 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vsscenario.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 413184 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vsbasereqs.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 632320 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vs70uimgr.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 110080 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 131584 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.3082.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 131072 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.2070.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 121344 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1055.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 121344 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1053.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 123904 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1049.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 122880 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1046.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 128512 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1045.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 121856 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1044.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 129024 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1043.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 128512 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1040.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 132096 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1038.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 111104 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1037.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 133120 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1036.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 122368 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1035.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 137728 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1032.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 130048 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1031.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 126464 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1030.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 125440 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1029.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 113152 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1025.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 269304 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
+ 2008-07-29 16:47 . 2008-07-29 16:47 177152 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\HtmlLite.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 276984 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\dlmgr.dll
+ 2008-07-29 21:15 . 2008-07-29 21:15 225490 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\baseline.dat
+ 2008-07-29 21:40 . 2008-07-29 21:40 233976 c:\windows\Microsoft.NET\Framework\v3.5\1033\vbc7ui.dll
+ 2008-07-29 21:40 . 2008-07-29 21:40 168448 c:\windows\Microsoft.NET\Framework\v3.5\1033\cscompui.dll
+ 2008-07-29 18:35 . 2008-07-29 18:35 864256 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationUI.dll
+ 2008-07-29 19:10 . 2008-07-29 19:10 806928 c:\windows\Microsoft.NET\Framework\v3.0\WPF\NaturalLanguage6.dll
+ 2008-07-29 17:16 . 2008-07-29 17:16 152576 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\WsatConfig.exe
+ 2008-07-29 17:16 . 2008-07-29 17:16 132096 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
+ 2008-07-29 17:16 . 2008-07-29 17:16 156688 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelReg.exe
+ 2008-07-29 17:16 . 2008-07-29 17:16 163840 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\Microsoft.Transactions.Bridge.Dtc.dll
+ 2008-07-29 17:16 . 2008-07-29 17:16 397312 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\Microsoft.Transactions.Bridge.dll
+ 2008-07-29 17:24 . 2008-07-29 17:24 881664 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
+ 2008-05-14 20:38 . 2008-05-14 20:38 864256 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\cs\infocard.resources.dll
+ 2008-07-29 17:16 . 2008-07-29 17:16 168968 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ComSvcConfig.exe
+ 2008-07-25 09:17 . 2008-07-25 09:17 839680 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Services.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 835584 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Mobile.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 261632 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Transactions.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 114688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.ServiceProcess.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 131072 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 303104 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Remoting.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Messaging.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Management.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 113664 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Wrapper.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 626688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 188416 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.Protocols.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 401408 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 970752 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Deployment.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 745472 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.SqlXml.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 425984 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.configuration.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\sysglobl.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 118784 c:\windows\Microsoft.NET\Framework\v2.0.50727\shfusion.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 143360 c:\windows\Microsoft.NET\Framework\v2.0.50727\peverify.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 100856 c:\windows\Microsoft.NET\Framework\v2.0.50727\ngen.exe
+ 2008-07-25 09:17 . 2008-07-25 09:17 230912 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvc.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 345600 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorrc.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 114176 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 308224 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordbi.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 659456 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 749568 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.JScript.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 655360 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Tasks.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 348160 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Engine.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 230904 c:\windows\Microsoft.NET\Framework\v2.0.50727\ilasm.exe
+ 2008-07-25 09:17 . 2008-07-25 09:17 798224 c:\windows\Microsoft.NET\Framework\v2.0.50727\EventLogMessages.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 575496 c:\windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\CasPol.exe
+ 2008-07-25 09:16 . 2008-07-25 09:16 507904 c:\windows\Microsoft.NET\Framework\v2.0.50727\AspNetMMCExt.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regsql.exe
+ 2008-07-25 09:17 . 2008-07-25 09:17 147968 c:\windows\Microsoft.NET\Framework\v2.0.50727\AdoNetDiag.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 218112 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\Vsavb7rtUI.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 193016 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\vbc7ui.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 145408 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\cscompui.dll
+ 2004-07-15 09:23 . 2004-07-15 09:23 737280 c:\windows\Microsoft.NET\Framework\v1.1.4322\vbc.exe
+ 2004-07-15 12:31 . 2004-07-15 12:31 573440 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.Services.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 819200 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.Mobile.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 126976 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.ServiceProcess.dll
+ 2004-07-15 12:31 . 2004-07-15 12:31 131072 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Serialization.Formatters.Soap.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 323584 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Remoting.dll
+ 2004-07-15 12:31 . 2004-07-15 12:31 241664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Messaging.dll
+ 2004-07-15 12:31 . 2004-07-15 12:31 372736 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Management.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 241664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.EnterpriseServices.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 466944 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Drawing.dll
+ 2004-07-15 12:31 . 2004-07-15 12:31 303104 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Data.OracleClient.dll
+ 2004-07-14 22:35 . 2004-07-14 22:35 319488 c:\windows\Microsoft.NET\Framework\v1.1.4322\SOS.dll
+ 2003-03-05 03:02 . 2003-03-05 03:02 122880 c:\windows\Microsoft.NET\Framework\v1.1.4322\shfusres.dll
+ 2003-03-05 02:57 . 2003-03-05 02:57 253952 c:\windows\Microsoft.NET\Framework\v1.1.4322\shfusion.dll
+ 2003-03-05 03:02 . 2003-03-05 03:02 348160 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW3280\_msvcr71.dll
+ 2007-04-13 18:56 . 2007-04-13 18:56 315392 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW3280\_mscorjit.dll
+ 2004-07-14 22:24 . 2004-07-14 22:24 282624 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW3280\_fusion.dll
+ 2007-04-13 19:30 . 2007-04-13 19:30 258048 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW3280\_aspnet_isapi.dll
+ 2003-03-05 03:02 . 2003-03-05 03:02 348160 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW2456\_msvcr71.dll
+ 2004-07-14 22:25 . 2004-07-14 22:25 315392 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW2456\_mscorjit.dll
+ 2004-07-14 22:24 . 2004-07-14 22:24 282624 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW2456\_fusion.dll
+ 2004-07-14 23:49 . 2004-07-14 23:49 258048 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW2456\_aspnet_isapi.dll
+ 2003-03-05 03:02 . 2003-03-05 03:02 348160 c:\windows\Microsoft.NET\Framework\v1.1.4322\msvcr71.dll
+ 2004-07-14 22:33 . 2004-07-14 22:33 143360 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorrc.dll
+ 2003-03-05 02:57 . 2003-03-05 02:57 131072 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscormmc.dll
+ 2004-07-14 22:32 . 2004-07-14 22:32 233472 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscordbi.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 299008 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.VisualBasic.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 720896 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.JScript.dll
+ 2004-07-14 22:35 . 2004-07-14 22:35 196608 c:\windows\Microsoft.NET\Framework\v1.1.4322\ilasm.exe
+ 2004-07-14 22:24 . 2004-07-14 22:24 282624 c:\windows\Microsoft.NET\Framework\v1.1.4322\fusion.dll
+ 2003-03-05 02:57 . 2003-03-05 02:57 798720 c:\windows\Microsoft.NET\Framework\v1.1.4322\EventLogMessages.dll
+ 2003-03-05 03:02 . 2003-03-05 03:02 524288 c:\windows\Microsoft.NET\Framework\v1.1.4322\diasymreader.dll
+ 2004-07-15 09:23 . 2004-07-15 09:23 626688 c:\windows\Microsoft.NET\Framework\v1.1.4322\cscomp.dll
+ 2003-03-05 02:57 . 2003-03-05 02:57 219136 c:\windows\Microsoft.NET\Framework\v1.1.4322\c_g18030.dll
+ 2003-03-05 02:58 . 2003-03-05 02:58 155648 c:\windows\Microsoft.NET\Framework\v1.1.4322\1033\Vsavb7rtUI.dll
+ 2003-03-05 02:58 . 2003-03-05 02:58 131072 c:\windows\Microsoft.NET\Framework\v1.1.4322\1033\vbc7ui.dll
Nahoru
Reklama
Top
ZHlavaty
nováček
Příspěvky: 18
Registrován: říjen 11
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Kontrola logu

Příspěvekod ZHlavaty » 27 říj 2011 10:30

Část 4
816640 c:\windows\Installer\1940253.msp
+ 2008-07-28 13:04 . 2008-07-28 13:04 162304 c:\windows\Installer\1940228.msp
+ 2008-07-29 19:23 . 2008-07-29 19:23 250880 c:\windows\Installer\14c25e.msp
+ 2008-07-29 19:28 . 2008-07-29 19:28 278016 c:\windows\Installer\14c25c.msp
+ 2008-07-29 17:40 . 2008-07-29 17:40 291840 c:\windows\Installer\14c25a.msp
+ 2008-07-29 15:35 . 2008-07-29 15:35 553472 c:\windows\Installer\11850b.msp
+ 2008-07-29 15:33 . 2008-07-29 15:33 506368 c:\windows\Installer\118509.msp
+ 2008-07-29 15:37 . 2008-07-29 15:37 911360 c:\windows\Installer\118508.msp
+ 2008-07-30 10:01 . 2008-07-30 10:01 287934 c:\windows\Installer\{DEB6ACEB-C418-4880-9133-1C5EB9AFBC79}\_4d064db7.exe
+ 2008-07-30 10:01 . 2008-07-30 10:01 287934 c:\windows\Installer\{DEB6ACEB-C418-4880-9133-1C5EB9AFBC79}\_440d491c.exe
+ 2008-07-30 10:01 . 2008-07-30 10:01 287934 c:\windows\Installer\{DEB6ACEB-C418-4880-9133-1C5EB9AFBC79}\_124305e.exe
+ 2005-08-25 00:58 . 2005-08-25 00:58 929792 c:\windows\Installer\$PatchCache$\Managed\B3B5B37C479FAC84B819E3A834A2AEB5\8.5.822\F20987_wkwpqd.dll
+ 2005-08-25 00:58 . 2005-08-25 00:58 147456 c:\windows\Installer\$PatchCache$\Managed\B3B5B37C479FAC84B819E3A834A2AEB5\8.5.822\F20985_wkwpqrtf.dll
+ 2005-08-19 10:16 . 2005-08-19 10:16 225280 c:\windows\Installer\$PatchCache$\Managed\B3B5B37C479FAC84B819E3A834A2AEB5\8.5.822\F20963_wkssole.dll
+ 2007-03-22 17:22 . 2007-03-22 17:22 103264 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\TRANSMGR.DLL
+ 2007-05-10 11:34 . 2007-05-10 11:34 562528 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\PUBCONV.DLL
+ 2007-05-31 11:36 . 2007-05-31 11:36 612184 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\PTXT9.DLL
+ 2007-05-31 11:35 . 2007-05-31 11:35 133976 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\PRTF9.DLL
+ 2007-04-19 11:53 . 2007-04-19 11:53 149856 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OUTLPH.DLL
+ 2007-05-31 11:42 . 2007-05-31 11:42 200032 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OUTLOOK.EXE
+ 2007-04-19 11:53 . 2007-04-19 11:53 106336 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OUTLMIME.DLL
+ 2007-04-19 11:53 . 2007-04-19 11:53 109408 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OUTLCTL.DLL
+ 2007-05-10 12:35 . 2007-05-10 12:35 120160 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSCONV97.DLL
+ 2007-04-19 12:01 . 2007-04-19 12:01 238424 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSCDM.DLL
+ 2007-01-16 18:32 . 2007-01-16 18:32 136032 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSAEXP30.DLL
+ 2007-04-19 11:54 . 2007-04-19 11:54 183136 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MIMEDIR.DLL
+ 2007-04-19 11:53 . 2007-04-19 11:53 127328 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\IMPMAIL.DLL
+ 2007-04-19 12:09 . 2007-04-19 12:09 167256 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\IETAG.DLL
+ 2007-04-19 11:53 . 2007-04-19 11:53 137568 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\ENVELOPE.DLL
+ 2007-04-19 11:54 . 2007-04-19 11:54 169312 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\ACCWIZ.DLL
+ 2003-08-06 19:26 . 2003-08-06 19:26 445488 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\SOA.DLL
+ 2003-07-21 17:46 . 2003-07-21 17:46 390712 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\RTFHTML.DLL
+ 2003-07-15 04:50 . 2003-07-15 04:50 551480 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\PUBCONV.DLL
+ 2003-07-15 04:51 . 2003-07-15 04:51 604728 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\PTXT9.DLL
+ 2003-07-15 04:40 . 2003-07-15 04:40 130104 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\PRTF9.DLL
+ 2003-07-15 09:18 . 2003-07-15 09:18 430136 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\PP4X322.DLL
+ 2003-07-15 04:43 . 2003-07-15 04:43 139320 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OUTLPH.DLL
+ 2003-07-15 04:45 . 2003-07-15 04:45 196152 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OUTLOOK.EXE
+ 2003-07-08 17:48 . 2003-07-08 17:48 115288 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OUTLFLTR.DLL
+ 2003-07-15 04:44 . 2003-07-15 04:44 102968 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OUTLCTL.DLL
+ 2003-07-15 09:14 . 2003-07-15 09:14 242240 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OISGRAPH.DLL
+ 2003-07-15 09:14 . 2003-07-15 09:14 828472 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OISAPP.DLL
+ 2003-07-15 09:14 . 2003-07-15 09:14 283696 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OIS.EXE
+ 2003-07-15 05:00 . 2003-07-15 05:00 145984 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSWEBCAP.DLL
+ 1998-06-17 17:52 . 1998-06-17 17:52 401462 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSVCP60.DLL
+ 2003-07-24 04:40 . 2003-07-24 04:40 482872 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSTORES.DLL
+ 2003-07-15 04:56 . 2003-07-15 04:56 124984 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSTORE.EXE
+ 2003-07-15 05:02 . 2003-07-15 05:02 627256 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSTORDB.EXE
+ 2003-06-19 22:05 . 2003-06-19 22:05 364648 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSPVIEW.EXE
+ 2003-07-15 09:18 . 2003-07-15 09:18 376888 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSORUN.DLL
+ 2003-07-23 20:35 . 2003-07-23 20:35 127032 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOCFU.DLL
+ 2003-07-15 01:14 . 2003-07-15 01:14 106552 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOCF.DLL
+ 2003-07-14 20:57 . 2003-07-14 20:57 120888 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOAUTH.DLL
+ 2002-04-09 18:14 . 2002-04-09 18:14 187560 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSMDUN80.DLL
+ 2003-07-15 09:14 . 2003-07-15 09:14 139328 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSJSPP40.DLL
+ 2002-12-17 17:08 . 2002-12-17 17:08 359600 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSDMENG.DLL
+ 2003-07-14 20:58 . 2003-07-14 20:58 230968 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSCDM.DLL
+ 2003-07-15 09:13 . 2003-07-15 09:13 130112 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSAEXP30.DLL
+ 2003-07-15 04:46 . 2003-07-15 04:46 176696 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MIMEDIR.DLL
+ 2003-05-28 21:42 . 2003-05-28 21:42 342616 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\METCONV.DLL
+ 2003-06-18 23:31 . 2003-06-18 23:31 443904 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MDIVWCTL.DLL
+ 2003-06-18 23:31 . 2003-06-18 23:31 252928 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MDIINK.DLL
+ 2003-06-18 23:31 . 2003-06-18 23:31 758784 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MDIGRAPH.DLL
+ 2003-05-28 21:42 . 2003-05-28 21:42 514680 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\INTLNAME.DLL
+ 2003-07-24 04:32 . 2003-07-24 04:32 121400 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\IMPMAIL.DLL
+ 2003-07-15 04:53 . 2003-07-15 04:53 161336 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\IETAG.DLL
+ 2003-07-26 01:14 . 2003-07-26 01:14 799288 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\FPWEC.DLL
+ 2003-07-15 04:40 . 2003-07-15 04:40 179768 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\FPERSON.DLL
+ 2003-07-15 05:36 . 2003-07-15 05:36 186424 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\FPDTC.DLL
+ 2003-07-31 21:19 . 2003-07-31 21:19 131648 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\ENVELOPE.DLL
+ 2003-07-15 01:14 . 2003-07-15 01:14 350264 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\CDLMSO.DLL
+ 2003-07-15 09:18 . 2003-07-15 09:18 141360 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\ATP.DLL
+ 2003-07-15 09:13 . 2003-07-15 09:13 166456 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\ACCWIZ.DLL
+ 2008-07-07 17:19 . 2008-04-14 12:00 481792 c:\windows\I386\USETUP.EXE
+ 2008-07-07 17:19 . 2008-04-14 12:00 481792 c:\windows\I386\SYSTEM32\SMSS.EXE
+ 2008-07-07 17:19 . 2008-04-14 12:00 700928 c:\windows\I386\SYSTEM32\NTDLL.DLL
+ 2008-07-07 17:19 . 2008-04-14 12:00 244736 c:\windows\I386\SYSPARSE.EXE
+ 2008-07-07 17:19 . 2008-04-14 12:00 233984 c:\windows\I386\SPCMDCON.SYS
+ 2008-07-07 17:19 . 2008-04-14 12:00 261328 c:\windows\I386\SETUPLDR.BIN
+ 2008-07-07 17:19 . 2008-04-14 12:00 147968 c:\windows\I386\REGEDIT.EXE
+ 2008-07-07 17:19 . 2008-04-14 12:00 574976 c:\windows\I386\NTFS.SYS
+ 2008-07-07 17:19 . 2008-04-14 12:00 700928 c:\windows\I386\NTDLL.DLL
+ 2008-07-07 17:19 . 2008-04-14 12:00 331776 c:\windows\I386\NETSETUP.EXE
+ 2008-07-07 17:18 . 2008-04-14 12:00 144384 c:\windows\I386\IMAGEHLP.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 415896 c:\windows\I386\HWCOMP.DAT
+ 2008-07-07 17:18 . 2008-04-14 12:00 125952 c:\windows\I386\EXTS.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 162128 c:\windows\I386\DRW\DWWIN.EXE
+ 2008-07-07 17:18 . 2008-04-14 12:00 640000 c:\windows\I386\DBGHELP.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 847872 c:\windows\I386\DBGENG.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 601088 c:\windows\I386\AUTOCHK.EXE
+ 2008-07-07 17:18 . 2008-04-14 12:00 592896 c:\windows\I386\AUTOFMT.EXE
+ 2008-07-07 17:18 . 2008-04-14 12:00 322560 c:\windows\I386\ASMS\7000\MSFT\WINDOWS\MSWINCRT\MSVCRT.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 921088 c:\windows\I386\ASMS\6000\MSFT\WINDOWS\COMMON\CONTROLS\COMCTL32.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 401462 c:\windows\I386\ASMS\6000\MSFT\VCRTL\MSVCP60.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 995384 c:\windows\I386\ASMS\6000\MSFT\VCRTL\MFC42U.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 995383 c:\windows\I386\ASMS\6000\MSFT\VCRTL\MFC42.DLL
+ 2008-07-30 10:00 . 2004-04-13 04:04 307200 c:\windows\Downloaded Program Files\isusweb.dll
+ 2008-07-30 10:00 . 2002-07-25 16:13 196608 c:\windows\Downloaded Program Files\dwusplay.exe
+ 2008-06-12 14:11 . 2008-06-12 14:11 161792 c:\windows\$hf_mig$\KB952004\SP3QFE\msdtcuiu.dll
+ 2008-06-12 14:11 . 2008-06-12 14:11 956928 c:\windows\$hf_mig$\KB952004\SP3QFE\msdtctm.dll
+ 2008-06-12 14:11 . 2008-06-12 14:11 428032 c:\windows\$hf_mig$\KB952004\SP3QFE\msdtcprx.dll
+ 2008-05-08 11:24 . 2008-05-08 11:24 155648 c:\windows\$hf_mig$\KB951978\SP3QFE\wscript.exe
+ 2008-05-09 10:51 . 2008-05-09 10:51 430080 c:\windows\$hf_mig$\KB951978\SP3QFE\vbscript.dll
+ 2008-05-09 10:51 . 2008-05-09 10:51 172032 c:\windows\$hf_mig$\KB951978\SP3QFE\scrrun.dll
+ 2008-05-09 10:51 . 2008-05-09 10:51 180224 c:\windows\$hf_mig$\KB951978\SP3QFE\scrobj.dll
+ 2008-05-09 10:51 . 2008-05-09 10:51 512000 c:\windows\$hf_mig$\KB951978\SP3QFE\jscript.dll
+ 2008-05-07 09:07 . 2008-05-07 09:07 135168 c:\windows\$hf_mig$\KB951978\SP3QFE\cscript.exe
+ 2008-06-20 11:16 . 2008-06-20 11:16 225856 c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip6.sys
+ 2008-06-20 11:59 . 2008-06-20 11:59 361600 c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
+ 2008-06-20 17:44 . 2008-06-20 17:44 247296 c:\windows\$hf_mig$\KB951748\SP3QFE\mswsock.dll
+ 2008-06-20 17:44 . 2008-06-20 17:44 147968 c:\windows\$hf_mig$\KB951748\SP3QFE\dnsapi.dll
+ 2008-06-20 11:48 . 2008-06-20 11:48 138496 c:\windows\$hf_mig$\KB951748\SP3QFE\afd.sys
+ 2008-07-07 20:25 . 2008-07-07 20:25 253952 c:\windows\$hf_mig$\KB950974\SP3QFE\es.dll
+ 2008-06-20 11:16 . 2008-06-20 11:16 225856 c:\windows\$hf_mig$\KB2509553\SP3QFE\tcpip6.sys
+ 2008-06-20 11:59 . 2008-06-20 11:59 361600 c:\windows\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
+ 2008-06-20 17:44 . 2008-06-20 17:44 247296 c:\windows\$hf_mig$\KB2509553\SP3QFE\mswsock.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 3783672 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfc90u.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 3768312 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfc90.dll
+ 2005-09-22 23:16 . 2005-09-22 23:16 1079808 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_dec6ddd2\mfc80u.dll
+ 2005-09-22 23:16 . 2005-09-22 23:16 1093632 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_dec6ddd2\mfc80.dll
+ 2002-09-16 15:16 . 2002-09-16 15:16 1357032 c:\windows\system32\XMNT2002.exe
+ 2005-09-28 12:46 . 2005-09-28 12:46 1184984 c:\windows\system32\wvc1dmod.dll
+ 2002-09-20 22:33 . 2002-09-20 22:33 1089536 c:\windows\system32\ROBOEX32.DLL
+ 2008-04-14 08:06 . 2010-12-09 15:14 2150912 c:\windows\system32\ntoskrnl.exe
+ 2008-04-14 08:06 . 2010-12-09 15:14 2029056 c:\windows\system32\ntkrnlpa.exe
+ 2003-03-18 19:12 . 2003-03-18 19:12 1047552 c:\windows\system32\mfc71u.dll
+ 2003-03-18 19:20 . 2003-03-18 19:20 1060864 c:\windows\system32\mfc71.dll
+ 2008-03-20 16:06 . 2008-03-20 16:06 1480232 c:\windows\system32\LegitCheckControl.dll
+ 2001-11-14 11:56 . 2001-11-14 11:56 1802240 c:\windows\system32\lcppn21.dll
+ 2007-08-13 17:34 . 2011-08-22 23:41 2000384 c:\windows\system32\iertutil.dll
+ 2007-02-12 15:10 . 2009-02-06 19:07 3698584 c:\windows\system32\ieapfltr.dat
+ 2008-07-30 10:01 . 2008-04-28 22:27 4733440 c:\windows\system32\drivers\RtkHDAud.sys
+ 2008-07-07 13:04 . 2008-07-07 13:04 1802305 c:\windows\system32\BtWizard.dll
+ 2008-07-07 13:11 . 2008-07-07 13:11 2854912 c:\windows\system32\btwicons.dll
+ 2008-07-30 10:01 . 2011-02-25 17:37 1284712 c:\windows\RtlExUpd.dll
+ 2008-07-29 21:40 . 2008-07-29 21:40 1720824 c:\windows\Microsoft.NET\Framework\v3.5\vbc.exe
+ 2008-07-29 16:47 . 2008-07-29 16:47 1054208 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vs_setup.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 1364992 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\SITSetup.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 1064448 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\gencomp.dll
+ 2008-07-29 21:40 . 2008-07-29 21:40 1548280 c:\windows\Microsoft.NET\Framework\v3.5\csc.exe
+ 2008-07-29 19:10 . 2008-07-29 19:10 2637840 c:\windows\Microsoft.NET\Framework\v3.0\WPF\NlsLexicons0009.dll
+ 2008-07-29 19:10 . 2008-07-29 19:10 4883464 c:\windows\Microsoft.NET\Framework\v3.0\WPF\NlsData0009.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 1344000 c:\windows\Microsoft.NET\Framework\v2.0.50727\VsaVb7rt.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 1172472 c:\windows\Microsoft.NET\Framework\v2.0.50727\vbc.exe
+ 2008-07-25 09:17 . 2008-07-25 09:17 5062656 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Design.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 2933248 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 1163768 c:\windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
+ 2004-07-15 06:15 . 2004-07-15 06:15 1032192 c:\windows\Microsoft.NET\Framework\v1.1.4322\VsaVb7rt.dll
+ 2004-07-15 12:29 . 2004-07-15 12:29 1339392 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.XML.dll
+ 2004-07-15 12:32 . 2004-07-15 12:32 2052096 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Windows.Forms.dll
+ 2004-07-15 12:29 . 2004-07-15 12:29 1703936 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Design.dll
+ 2004-07-15 12:32 . 2004-07-15 12:32 1294336 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Data.dll
+ 2007-04-13 18:57 . 2007-04-13 18:57 2514944 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW3280\_mscorwks.dll
+ 2007-04-13 18:57 . 2007-04-13 18:57 2523136 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW3280\_mscorsvr.dll
+ 2007-04-13 18:50 . 2007-04-13 18:50 2142208 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW3280\_mscorlib.dll
+ 2004-07-14 22:28 . 2004-07-14 22:28 2502656 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW2456\_mscorwks.dll
+ 2004-07-14 22:26 . 2004-07-14 22:26 2510848 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW2456\_mscorsvr.dll
+ 2004-07-15 12:29 . 2004-07-15 12:29 2138112 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW2456\_mscorlib.dll
+ 2003-03-05 02:57 . 2003-03-05 02:57 1564672 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorcfg.dll
+ 2008-07-30 10:01 . 2007-06-28 22:44 2165760 c:\windows\MicCal.exe
+ 2008-07-30 10:01 . 2008-07-30 10:01 1211392 c:\windows\Installer\34bc9.msi
+ 2008-07-30 09:59 . 2008-07-30 09:59 2450432 c:\windows\Installer\34bc4.msi
+ 2008-03-25 14:30 . 2008-03-25 14:30 3002880 c:\windows\Installer\2b33ec.msp
+ 2008-01-14 14:53 . 2008-01-14 14:53 5213696 c:\windows\Installer\1940297.msp
+ 2005-10-26 12:59 . 2005-10-26 12:59 2883072 c:\windows\Installer\164acf5.msp
+ 2008-07-29 17:26 . 2008-07-29 17:26 1043456 c:\windows\Installer\14c25d.msp
+ 2008-07-29 18:37 . 2008-07-29 18:37 2679808 c:\windows\Installer\14c25b.msp
+ 2008-07-29 19:15 . 2008-07-29 19:15 3697664 c:\windows\Installer\14c259.msp
+ 2008-07-29 17:34 . 2008-07-29 17:34 1448448 c:\windows\Installer\14c258.msp
+ 2008-07-29 18:22 . 2008-07-29 18:22 4137984 c:\windows\Installer\14c257.msp
+ 2008-07-29 17:18 . 2008-07-29 17:18 3376640 c:\windows\Installer\14c256.msp
+ 2008-07-29 15:45 . 2008-07-29 15:45 2543616 c:\windows\Installer\11850f.msp
+ 2008-07-29 15:29 . 2008-07-29 15:29 2926080 c:\windows\Installer\11850e.msp
+ 2008-07-29 15:41 . 2008-07-29 15:41 6487040 c:\windows\Installer\11850d.msp
+ 2008-07-29 15:39 . 2008-07-29 15:39 3403264 c:\windows\Installer\11850c.msp
+ 2008-07-29 15:43 . 2008-07-29 15:43 1013248 c:\windows\Installer\11850a.msp
+ 2008-07-29 15:31 . 2008-07-29 15:31 6083072 c:\windows\Installer\118507.msp
+ 2005-08-19 10:16 . 2005-08-19 10:16 2023424 c:\windows\Installer\$PatchCache$\Managed\B3B5B37C479FAC84B819E3A834A2AEB5\8.5.822\F22194_wksssdb.dll
+ 2005-06-10 18:11 . 2005-06-10 18:11 1712128 c:\windows\Installer\$PatchCache$\Managed\B3B5B37C479FAC84B819E3A834A2AEB5\8.5.822\F20954_gdiplus.dll
+ 2007-05-09 15:19 . 2007-05-09 15:19 2585936 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\VBE6.DLL
+ 2007-04-19 11:49 . 2007-04-19 11:49 1661280 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\PPTVIEW.EXE
+ 2007-05-31 11:35 . 2007-05-31 11:35 6420320 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\POWERPNT.EXE
+ 2007-05-10 11:45 . 2007-05-10 11:45 8069464 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OWC11.DLL
+ 2007-03-14 11:10 . 2007-03-14 11:10 7255384 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OWC10.DLL
+ 2007-05-31 11:43 . 2007-05-31 11:43 7613280 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OUTLLIB.DLL
+ 2007-04-19 12:09 . 2007-04-19 12:09 1061720 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OMFC.DLL
+ 2007-05-10 11:35 . 2007-05-10 11:35 6747480 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSPUB.EXE
+ 2007-05-10 11:43 . 2007-05-10 11:43 6688096 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSACCESS.EXE
+ 2007-04-30 12:57 . 2007-04-30 12:57 7084384 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\INFOPATH.EXE
+ 2007-06-06 08:53 . 2007-06-06 08:53 1195888 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\FM20.DLL
+ 2003-07-03 21:19 . 2003-07-03 21:19 2502656 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\VBE6.DLL
+ 2003-08-03 16:52 . 2003-08-03 16:52 2808376 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\STSLIST.DLL
+ 2003-07-31 21:21 . 2003-07-31 21:21 1782840 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\PPTVIEW.EXE
+ 2003-07-30 18:40 . 2003-07-30 18:40 6133312 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\POWERPNT.EXE
+ 2003-08-01 21:09 . 2003-08-01 21:09 8086072 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OWC11.DLL
+ 2003-08-04 19:19 . 2003-08-04 19:19 7330360 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OWC10.DLL
+ 2003-08-10 05:06 . 2003-08-10 05:06 7522360 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OUTLLIB.DLL
+ 2003-07-07 19:36 . 2003-07-07 19:36 2058343 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OUTLFLTR.DAT
+ 2003-07-15 05:05 . 2003-07-15 05:05 1054264 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OMFC.DLL
+ 2003-07-28 18:24 . 2003-07-28 18:24 5677112 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSPUB.EXE
+ 2003-06-18 23:31 . 2003-06-18 23:31 1033216 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSPCORE.DLL
+ 2003-07-11 08:15 . 2003-07-11 08:15 1292872 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSONSEXT.DLL
+ 2002-12-17 17:09 . 2002-12-17 17:09 2071752 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOLAP80.DLL
+ 2002-12-17 17:08 . 2002-12-17 17:08 1383592 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSDMINE.DLL
+ 2003-08-15 06:54 . 2003-08-15 06:54 6627392 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSACCESS.EXE
+ 2003-08-01 21:07 . 2003-08-01 21:07 4815424 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\INFOPATH.EXE
+ 2003-07-15 05:11 . 2003-07-15 05:11 2139192 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\GRAPH.EXE
+ 2003-07-26 01:00 . 2003-07-26 01:00 1157696 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\FPSRVUTL.DLL
+ 2003-07-24 05:01 . 2003-07-24 05:01 1949240 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\FPCUTL.DLL
+ 2003-08-03 16:56 . 2003-08-03 16:56 1146184 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\FM20.DLL
+ 2008-07-07 17:20 . 2008-04-14 12:00 1442816 c:\windows\I386\WINNTBBU.DLL
+ 2008-07-07 17:20 . 2008-04-14 12:00 1440768 c:\windows\I386\WINNTBBA.DLL
+ 2008-07-07 17:20 . 2008-04-14 12:00 2177536 c:\windows\I386\WINNT32U.DLL
+ 2008-07-07 17:20 . 2008-04-14 12:00 2023424 c:\windows\I386\WINNT32A.DLL
+ 2008-07-07 17:18 . 2008-04-14 12:00 1724416 c:\windows\I386\ASMS\1000\MSFT\WINDOWS\GDIPLUS\GDIPLUS.DLL
+ 2008-07-30 10:01 . 2006-05-04 22:26 2808832 c:\windows\ALCWZRD.EXE
+ 2008-06-17 19:04 . 2008-06-17 19:04 8465920 c:\windows\$hf_mig$\KB967715\SP3QFE\shell32.dll
+ 2007-08-13 17:54 . 2011-08-23 15:41 11081728 c:\windows\system32\ieframe.dll
+ 2008-07-30 10:01 . 2008-04-28 20:55 16861696 c:\windows\RTHDCPL.EXE
+ 2007-05-31 11:37 . 2007-05-31 11:37 12310368 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\WINWORD.EXE
+ 2007-06-18 15:16 . 2007-06-18 15:16 12259160 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSO.DLL
+ 2007-05-31 11:41 . 2007-05-31 11:41 10352472 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\EXCEL.EXE
+ 2003-08-06 19:24 . 2003-08-06 19:24 12037688 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\WINWORD.EXE
+ 2003-08-08 06:23 . 2003-08-08 06:23 12172336 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSO.DLL
+ 2003-08-13 08:34 . 2003-08-13 08:34 10073144 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\EXCEL.EXE
+ 2007-07-27 06:43 . 2007-07-27 06:43 109673984 c:\windows\Installer\164acc8.msp
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-09-06 20:45 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"H/PC Connection Agent"="c:\program files\Microsoft ActiveSync\Wcescomm.exe" [2006-11-13 1289000]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-10-13 17351304]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AsusTray"="c:\program files\EeePC\ACPI\AsTray.exe" [2008-06-03 98304]
"AsusACPIServer"="c:\program files\EeePC\ACPI\AsAcpiSvr.exe" [2008-06-03 479232]
"AsusEPCMonitor"="c:\program files\EeePC\ACPI\AsEPCMon.exe" [2008-05-20 94208]
"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2004-04-17 196608]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2004-04-13 69632]
"fxredir"="c:\windows\system32\fxredir.exe" [2001-12-12 65536]
"MPTBox"="c:\program files\Canon\MultiPASS4\MPTBox.exe" [2001-12-12 151552]
"ArcSoft Connection Service"="c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2010-03-18 207360]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-12-19 135168]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-12-19 159744]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-12-19 131072]
"RTHDCPL"="RTHDCPL.EXE" [2008-04-28 16861696]
"SoundMan"="SOUNDMAN.EXE" [2006-07-21 86016]
"AlcWzrd"="ALCWZRD.EXE" [2006-05-04 2808832]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-09-06 3722416]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-25 437160]
.
c:\documents and settings\Zdeněk - Hlavaty\Nabídka Start\Programy\Po spuštění\
StarOffice 8.lnk - c:\program files\Sun\StarOffice 8\program\quickstart.exe [2007-8-17 122880]
.
c:\documents and settings\Zdeněk - Hlavaty\Nabídka Start\Programy\Po spuštění\
StarOffice 8.lnk - c:\program files\Sun\StarOffice 8\program\quickstart.exe [2007-8-17 122880]
.
c:\documents and settings\Zdeněk - Hlavaty\Nabídka Start\Programy\Po spuštění\
StarOffice 8.lnk - c:\program files\Sun\StarOffice 8\program\quickstart.exe [2007-8-17 122880]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2008-7-7 600680]
SuperHybridEngine.lnk - c:\program files\Asus\EeePC\Super Hybrid Engine\SuperHybridEngine.exe [2010-7-9 303104]
.
c:\documents and settings\Zdeněk - Hlavaty\Nabídka Start\Programy\Po spuštění\
StarOffice 8.lnk - c:\program files\Sun\StarOffice 8\program\quickstart.exe [2007-8-17 122880]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
2007-10-18 09:34 5724184 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"c:\program files\Microsoft ActiveSync\rapimgr.exe"= c:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"c:\program files\Microsoft ActiveSync\wcescomm.exe"= c:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
"c:\program files\Microsoft ActiveSync\WCESMgr.exe"= c:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
"c:\\Garmin\\UMP-pcPL\\rsync.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"d:\\GeoGet\\geoget.exe"=
"d:\\Discovery\\geoget.exe"=
"d:\\Munisek\\geoget.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
"5985:TCP"= 5985:TCP:*:Disabled:Vzdálená správa systému Windows
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [25.10.2011 14:43 442200]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [25.10.2011 14:43 320856]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [25.10.2011 14:43 20568]
R2 MSSQL$ELISKACLIENT2008;SQL Server (ELISKACLIENT2008);c:\program files\eLiska3\MSSQL10.ELISKACLIENT2008\MSSQL\Binn\sqlservr.exe [30.3.2009 3:25 43010392]
R2 PfFilter;PfFilter;c:\program files\IObit\Protected Folder\pffilter.sys [10.6.2011 7:40 140848]
R3 RT80x86;Ralink 802.11n Wireless Driver;c:\windows\system32\drivers\rt2860.sys [9.7.2010 13:59 625024]
S0 wiyot;wiyot;c:\windows\system32\drivers\eirtr.sys --> c:\windows\system32\drivers\eirtr.sys [?]
S1 aklnecyw;aklnecyw;\??\c:\windows\system32\drivers\aklnecyw.sys --> c:\windows\system32\drivers\aklnecyw.sys [?]
S1 ksagkozh;ksagkozh;\??\c:\windows\system32\drivers\ksagkozh.sys --> c:\windows\system32\drivers\ksagkozh.sys [?]
S1 MpKslc47b0d3c;MpKslc47b0d3c;\??\c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{2F7B09BC-C430-420F-B3B3-9EDE359A8CAC}\MpKslc47b0d3c.sys --> c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{2F7B09BC-C430-420F-B3B3-9EDE359A8CAC}\MpKslc47b0d3c.sys [?]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [30.3.2011 20:28 1691480]
S3 BV;BV;c:\docume~1\ZDENK-~1\LOCALS~1\Temp\BV.exe --> c:\docume~1\ZDENK-~1\LOCALS~1\Temp\BV.exe [?]
S3 fsbl-standalone;F-Secure BlackLight Beta Engine Driver;\??\c:\docume~1\ZDENK-~1\LOCALS~1\Temp\F-Secure\BlackLight\fsbldrv.sys --> c:\docume~1\ZDENK-~1\LOCALS~1\Temp\F-Secure\BlackLight\fsbldrv.sys [?]
S3 GRTXNCIIUXAMY;GRTXNCIIUXAMY;c:\docume~1\ZDENK-~1\LOCALS~1\Temp\GRTXNCIIUXAMY.exe --> c:\docume~1\ZDENK-~1\LOCALS~1\Temp\GRTXNCIIUXAMY.exe [?]
S3 IT9135BDA;IT9135 BDA Devices;c:\windows\system32\drivers\IT9135BDA.sys [2.7.2011 22:45 94336]
S3 MEMSWEEP2;MEMSWEEP2;\??\c:\windows\system32\3.tmp --> c:\windows\system32\3.tmp [?]
S3 MSWYM;MSWYM;c:\docume~1\ZDENK-~1\LOCALS~1\Temp\MSWYM.exe --> c:\docume~1\ZDENK-~1\LOCALS~1\Temp\MSWYM.exe [?]
S3 NDHYIV;NDHYIV;c:\docume~1\ZDENK-~1\LOCALS~1\Temp\NDHYIV.exe --> c:\docume~1\ZDENK-~1\LOCALS~1\Temp\NDHYIV.exe [?]
S3 VVKELXGVTM;VVKELXGVTM;c:\docume~1\ZDENK-~1\LOCALS~1\Temp\VVKELXGVTM.exe --> c:\docume~1\ZDENK-~1\LOCALS~1\Temp\VVKELXGVTM.exe [?]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [9.5.2011 16:47 14336]
S3 ZPJJG;ZPJJG;c:\docume~1\ZDENK-~1\LOCALS~1\Temp\ZPJJG.exe --> c:\docume~1\ZDENK-~1\LOCALS~1\Temp\ZPJJG.exe [?]
S4 LOOZ;LOOZ;c:\docume~1\ZDENK-~1\LOCALS~1\Temp\LOOZ.exe --> c:\docume~1\ZDENK-~1\LOCALS~1\Temp\LOOZ.exe [?]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\Microsoft SQL Server\100\Shared\sqladhlp.exe [31.3.2009 6:55 47128]
S4 RsFx0103;RsFx0103 Driver;c:\windows\system32\drivers\RsFx0103.sys [30.3.2009 3:09 239336]
S4 SQLAgent$ELISKACLIENT2008;SQL Server Agent (ELISKACLIENT2008);c:\program files\eLiska3\MSSQL10.ELISKACLIENT2008\MSSQL\Binn\SQLAGENT.EXE [30.3.2009 3:23 366936]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WINRM REG_MULTI_SZ WINRM
.
Obsah adresáře 'Naplánované úlohy'
.
2011-10-27 c:\windows\Tasks\User_Feed_Synchronization-{4199CB7F-1E72-477B-8BA5-CC6A4786ABD2}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGHP_cs
uInternet Connection Wizard,ShellNext = hxxp://eeepc.asus.com/global
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
Trusted Zone: csobpoj.cz\app
Trusted Zone: csobpoj.cz\appakc
TCP: DhcpNameServer = 192.168.101.1 192.168.102.1 212.24.128.8 212.24.132.132
FF - ProfilePath - c:\documents and settings\Zdeněk - Hlavaty\Data aplikací\Mozilla\Firefox\Profiles\2vfd6o4p.default\
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - prefs.js: browser.startup.homepage - hxxp://web.volny.cz/
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-10-27 09:52
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\MEMSWEEP2]
"ImagePath"="\??\c:\windows\system32\3.tmp"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(2320)
c:\windows\system32\btmmhook.dll
c:\windows\system32\webcheck.dll
.
Celkový čas: 2011-10-27 09:57:49
ComboFix-quarantined-files.txt 2011-10-27 07:57
ComboFix2.txt 2011-10-26 18:07
ComboFix3.txt 2011-10-26 14:49
.
Před spuštěním: 9 176 657 920
Po spuštění: 9 153 437 696
.
- - End Of File - - 0A8813771A005CA04785382A3D80A281
Nahoru
ZHlavaty
nováček
Příspěvky: 18
Registrován: říjen 11
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Kontrola logu

Příspěvekod ZHlavaty » 27 říj 2011 10:33

Část 5-Log z HJT

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:00:02, on 27.10.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\EeePC\ACPI\AsTray.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe
C:\WINDOWS\system32\igfxext.exe
C:\Program Files\EeePC\ACPI\AsEPCMon.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Canon\MultiPASS4\MPSERVIC.EXE
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\system32\fxredir.exe
C:\Program Files\Canon\MultiPASS4\MPTBox.exe
C:\Program Files\eLiska3\MSSQL10.ELISKACLIENT2008\MSSQL\Binn\sqlservr.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\Microsoft ActiveSync\Wcescomm.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Asus\EeePC\Super Hybrid Engine\SuperHybridEngine.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sun\StarOffice 8\program\soffice.BIN
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Zdeněk - Hlavaty\Plocha\HiJackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://eeepc.asus.com/global
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [AsusTray] C:\Program Files\EeePC\ACPI\AsTray.exe
O4 - HKLM\..\Run: [AsusACPIServer] C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe
O4 - HKLM\..\Run: [AsusEPCMonitor] C:\Program Files\EeePC\ACPI\AsEPCMon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [fxredir] C:\WINDOWS\system32\fxredir.exe
O4 - HKLM\..\Run: [MPTBox] C:\Program Files\Canon\MultiPASS4\MPTBox.exe
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\Wcescomm.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - S-1-5-18 Startup: StarOffice 8.lnk = C:\Program Files\Sun\StarOffice 8\program\quickstart.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: StarOffice 8.lnk = C:\Program Files\Sun\StarOffice 8\program\quickstart.exe (User 'Default user')
O4 - Startup: StarOffice 8.lnk = C:\Program Files\Sun\StarOffice 8\program\quickstart.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: SuperHybridEngine.lnk = ?
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Vytvořit mobilní oblíbenou položku… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: BV - Unknown owner - C:\DOCUME~1\ZDENK-~1\LOCALS~1\Temp\BV.exe (file missing)
O23 - Service: GRTXNCIIUXAMY - Unknown owner - C:\DOCUME~1\ZDENK-~1\LOCALS~1\Temp\GRTXNCIIUXAMY.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: MpService - Canon Inc - C:\Program Files\Canon\MultiPASS4\MPSERVIC.EXE
O23 - Service: MSWYM - Unknown owner - C:\DOCUME~1\ZDENK-~1\LOCALS~1\Temp\MSWYM.exe (file missing)
O23 - Service: NDHYIV - Unknown owner - C:\DOCUME~1\ZDENK-~1\LOCALS~1\Temp\NDHYIV.exe (file missing)
O23 - Service: NMSAccess - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: VVKELXGVTM - Unknown owner - C:\DOCUME~1\ZDENK-~1\LOCALS~1\Temp\VVKELXGVTM.exe (file missing)
O23 - Service: ZPJJG - Unknown owner - C:\DOCUME~1\ZDENK-~1\LOCALS~1\Temp\ZPJJG.exe (file missing)

--
End of file - 8850 bytes
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu

Příspěvekod jaro3 » 27 říj 2011 14:39

c:\windows\emMON(9).exe
c:\windows\emMON(8).exe
c:\windows\emMON(7).exe
c:\windows\emMON(6).exe
c:\windows\emMON(5).exe
c:\windows\emMON(4).exe
c:\windows\emMON(3).exe
c:\windows\emMON(2).exe
c:\windows\emMON(18).exe
c:\windows\emMON(17).exe
c:\windows\emMON(16).exe
c:\windows\emMON(15).exe
c:\windows\emMON(14).exe
c:\windows\emMON(13).exe
c:\windows\emMON(12).exe
c:\windows\emMON(11).exe
c:\windows\emMON(10).exe

Nevím , na co tam máš tolik stejných souborů...chtělo by to asi promazat a nechat jen ten první , ale asi budeš vědět víc ohledně toho programu...

Stejně tak tohle:
c:\windows\system32\wdmaud(9).drv
c:\windows\system32\wdmaud(8).drv
c:\windows\system32\wdmaud(7).drv
c:\windows\system32\wdmaud(6).drv
c:\windows\system32\wdmaud(5).drv
c:\windows\system32\wdmaud(4).drv
c:\windows\system32\wdmaud(3).drv
c:\windows\system32\wdmaud(26).drv
c:\windows\system32\wdmaud(25).drv
c:\windows\system32\wdmaud(24).drv
c:\windows\system32\wdmaud(23).drv
c:\windows\system32\wdmaud(22).drv
c:\windows\system32\wdmaud(21).drv
c:\windows\system32\wdmaud(20).drv
c:\windows\system32\wdmaud(2).drv
c:\windows\system32\wdmaud(19).drv
c:\windows\system32\wdmaud(18).drv
c:\windows\system32\wdmaud(17).drv
..

Mám pocit , že to nekopíruješ myší všechno , je tam posuvník!!


Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::
File::
c:\windows\system32\3.tmp

Driver::
MpKslc47b0d3c
BV
fsbl-standalone
GRTXNCIIUXAMY
MEMSWEEP2
NDHYIV
VVKELXGVTM
ZPJJG
LOOZ
wiyot
aklnecyw
ksagkozh

Registry::
[-HKEY_LOCAL_MACHINE\System\ControlSet001\Services\MEMSWEEP2]


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
ZHlavaty
nováček
Příspěvky: 18
Registrován: říjen 11
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Kontrola logu

Příspěvekod ZHlavaty » 27 říj 2011 16:27

Dobrý den,
mám pocit,že se mi tam ty soubory vytváří samy.
Ty napsaný jsem smazal,ale mám tam ještě spoustu ostatních.

Např.
c:\windows\system32\BdaPlIn.ax –11x
c:\windows\system32\emPRP.ax -10x
c:\windows\system32\kasproxi .ax – 19x
c:\windows\system32\ksuser.dll - 39x
c:\windows\system32\kswdmcap.ax -9x
c:\windows\system32\MSDvbnp.ax – 9x


Pro kontrolu posílám ten předposlední script ,který jsem použil.

KillAll::
File::
c:\windows\system32\drivers\eirtr.sys
c:\windows\system32\drivers\ksagkozh.sys
c:\docume~1\ZDENK-~1\LOCALS~1\Temp\BV.exe
c:\docume~1\ZDENK-~1\LOCALS~1\Temp\F-Secure\BlackLight\fsbldrv.sys
c:\windows\system32\3.tmp
c:\docume~1\ZDENK-~1\LOCALS~1\Temp\MSWYM.exe
c:\docume~1\ZDENK-~1\LOCALS~1\Temp\NDHYIV.exe
c:\docume~1\ZDENK-~1\LOCALS~1\Temp\VVKELXGVTM.exe
c:\docume~1\ZDENK-~1\LOCALS~1\Temp\ZPJJG.exe
c:\docume~1\ZDENK-~1\LOCALS~1\Temp\LOOZ.exe
c:\windows\GPInstall.exe

Folder::
c:\program files\Microsoft Security Client
c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware
c:\docume~1\ZDENK-~1\LOCALS~1\Temp\F-Secure

Driver::
wiyot
aklnecyw
MpKslc47b0d3c
BV
fsbl-standalone
MEMSWEEP2
MSWYM
NDHYIV
VVKELXGVTM
ZPJJG
LOOZ

Registry::
[-HKEY_LOCAL_MACHINE\System\ControlSet001\Services\MEMSWEEP2]

ComboFix 11-10-26.03 - Zdeněk - Hlavaty 27.10.2011 15:31:31.7.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1015.295 [GMT 2:00]
Spuštěný z: c:\documents and settings\Zdeněk - Hlavaty\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Zdeněk - Hlavaty\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
FILE ::
"c:\windows\system32\3.tmp"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_BV
-------\Legacy_FSBL-STANDALONE
-------\Legacy_GRTXNCIIUXAMY
-------\Legacy_LOOZ
-------\Legacy_MEMSWEEP2
-------\Legacy_NDHYIV
-------\Legacy_VVKELXGVTM
-------\Legacy_ZPJJG
-------\Service_aklnecyw
-------\Service_BV
-------\Service_fsbl-standalone
-------\Service_GRTXNCIIUXAMY
-------\Service_ksagkozh
-------\Service_LOOZ
-------\Service_MEMSWEEP2
-------\Service_MpKslc47b0d3c
-------\Service_NDHYIV
-------\Service_VVKELXGVTM
-------\Service_wiyot
-------\Service_ZPJJG
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-09-27 do 2011-10-27 )))))))))))))))))))))))))))))))
.
.
2011-10-26 15:25 . 2011-10-26 15:25 -------- d-----w- c:\documents and settings\Zdeněk - Hlavaty\Data aplikací\IObit
2011-10-25 14:44 . 2011-10-25 14:44 -------- d-----w- c:\documents and settings\Zdeněk - Hlavaty\DoctorWeb
2011-10-25 12:47 . 2011-08-31 15:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-10-25 12:43 . 2011-09-06 20:36 20568 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-10-25 12:43 . 2011-09-06 20:37 320856 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-10-25 12:43 . 2011-09-06 20:36 34392 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-10-25 12:43 . 2011-09-06 20:36 52568 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-10-25 12:43 . 2011-09-06 20:38 442200 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-10-25 12:43 . 2011-09-06 20:36 110552 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-10-25 12:43 . 2011-09-06 20:36 104536 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-10-25 12:43 . 2011-09-06 20:33 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-10-25 12:43 . 2011-09-06 20:45 41184 ----a-w- c:\windows\avastSS.scr
2011-10-25 12:43 . 2011-09-06 20:45 199304 ----a-w- c:\windows\system32\aswBoot.exe
2011-10-25 11:39 . 2011-10-25 13:53 -------- d-----r- c:\documents and settings\LocalService\Dokumenty
2011-10-24 12:18 . 2011-10-24 12:18 -------- d-----w- c:\program files\trend micro
2011-10-24 12:01 . 2011-10-24 12:01 -------- d-----w- c:\documents and settings\Zdeněk - Hlavaty\Data aplikací\OTM-World
2011-10-23 10:49 . 2011-10-23 10:49 -------- d-----w- c:\program files\Sophos
2011-10-23 08:20 . 2011-10-23 08:20 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\PCHealth
2011-10-22 17:32 . 2011-10-26 14:05 -------- d-----w- c:\documents and settings\All Users\Data aplikací\SecTaskMan
2011-10-22 10:25 . 2007-12-19 21:11 176128 ----a-w- c:\windows\system32\igfxres.dll
2011-10-22 10:16 . 2011-10-22 10:16 -------- d-----w- c:\program files\Elantech
2011-10-22 09:17 . 2011-10-22 09:17 -------- d-----w- c:\program files\Atheros Communications Inc
2011-10-22 09:12 . 2011-10-22 09:12 -------- d-----w- c:\windows\system32\Atheros_L1e
2011-10-22 08:31 . 2008-03-11 17:37 36864 ----a-w- c:\windows\system32\drivers\l1e51x86.sys
2011-10-22 08:12 . 2008-04-14 05:51 52096 -c--a-w- c:\windows\system32\dllcache\i8042prt.sys
2011-10-22 08:12 . 2008-04-14 05:51 52096 ----a-w- c:\windows\system32\drivers\i8042prt.sys
2011-10-21 16:32 . 2011-05-24 17:14 222080 ------w- c:\windows\system32\MpSigStub.exe
2011-10-21 14:34 . 2011-10-21 14:34 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2011-10-21 14:34 . 2011-10-21 14:34 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\PCHealth
2011-10-21 14:33 . 2011-10-24 11:18 -------- d-----w- c:\program files\Microsoft Security Client
2011-10-21 14:07 . 2011-10-25 12:48 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-10-21 13:15 . 2011-10-25 12:43 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVAST Software
2011-10-21 13:15 . 2011-10-21 13:15 -------- d-----w- c:\program files\AVAST Software
2011-10-21 12:23 . 2011-10-21 12:23 -------- d-sh--w- c:\documents and settings\Zdeněk - Hlavaty\Local Settings\Data aplikací\78e73b5c
2011-10-20 07:55 . 2011-10-20 08:32 -------- d-----w- C:\XPCD
2011-10-20 07:50 . 2011-10-20 08:36 -------- d-----w- c:\program files\nLite
2011-10-19 21:14 . 2011-10-19 21:14 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Easy Driver Pro
2011-10-18 10:43 . 2011-10-18 10:43 -------- d-----w- c:\program files\PowerQuest
2011-10-17 10:12 . 2011-10-17 10:12 -------- d-----w- c:\documents and settings\Zdeněk - Hlavaty\Data aplikací\LogicWeave Software
2011-10-17 10:12 . 2011-10-17 10:12 -------- d-----w- c:\program files\LogicWeave
2011-10-13 15:20 . 2011-10-13 15:20 -------- d-----w- c:\documents and settings\Zdeněk - Hlavaty\Data aplikací\ElevatedDiagnostics
2011-10-13 04:30 . 2011-10-13 04:30 -------- d-----w- c:\documents and settings\Zdeněk - Hlavaty\Data aplikací\Canneverbe Limited
2011-10-13 04:30 . 2011-10-13 04:30 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Canneverbe Limited
2011-10-13 04:30 . 2009-11-12 12:48 5504 ----a-w- c:\windows\system32\drivers\StarOpen.sys
2011-10-13 04:29 . 2011-10-21 16:47 -------- d-----w- c:\program files\CDBurnerXP
2011-10-13 03:49 . 2007-12-28 07:22 10296 ----a-w- c:\windows\system32\drivers\ASUSHWIO.SYS
2011-10-12 10:29 . 2011-10-12 10:29 -------- d-----w- c:\program files\Conduit
2011-10-12 10:29 . 2011-10-25 12:05 -------- d-----w- c:\documents and settings\Zdeněk - Hlavaty\Local Settings\Data aplikací\Conduit
2011-10-10 09:09 . 2011-10-10 09:09 4550304 ----a-w- c:\program files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components\SkypeFfComponent.dll
2011-10-07 04:27 . 2011-10-07 04:30 -------- d-----w- c:\documents and settings\Zdeněk - Hlavaty\Data aplikací\GeoGet
2011-10-04 12:04 . 2011-10-04 12:04 -------- d-----w- c:\program files\Geopainting.com
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-19 19:41 . 2010-07-10 12:37 796672 ----a-w- c:\windows\GPInstall.exe
2011-10-19 19:05 . 2011-05-19 07:01 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-26 09:41 . 2011-05-09 14:47 22528 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-26 09:41 . 2008-07-29 17:59 613376 ----a-w- c:\windows\system32\uiautomationcore.dll
2011-09-26 09:41 . 2011-05-09 14:47 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-09 09:12 . 2011-05-09 14:46 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-09-08 19:41 . 2011-09-08 19:34 466944 ------w- c:\windows\Setup1.exe
2011-09-08 19:41 . 2011-09-08 19:33 73216 ----a-w- c:\windows\ST6UNST.EXE
2011-09-06 14:10 . 2011-05-09 14:47 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-09-01 07:17 . 2011-05-20 13:37 196608 ----a-w- c:\windows\system32\libssl32.dll
2011-08-22 23:41 . 2011-05-09 14:47 916480 ----a-w- c:\windows\system32\wininet.dll
2011-08-22 23:41 . 2011-05-09 14:46 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-08-22 23:41 . 2011-05-09 14:46 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2011-05-09 14:46 385024 ----a-w- c:\windows\system32\html.iec
2011-08-17 13:49 . 2011-05-09 14:46 138496 ----a-w- c:\windows\system32\drivers\afd.sys
2008-05-07 14:34 . 2010-07-09 12:21 15523560 ----a-w- c:\program files\U1 Setup.exe
2011-10-06 14:49 . 2011-04-04 11:47 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[-] 2004-08-17 . 421184F91EAE5C6E78E653C6B32AAE84 . 171008 . . [5.1.2600.2180] . . c:\windows\system32\appmgmts.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-09-06 20:45 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"H/PC Connection Agent"="c:\program files\Microsoft ActiveSync\Wcescomm.exe" [2006-11-13 1289000]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-10-13 17351304]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AsusTray"="c:\program files\EeePC\ACPI\AsTray.exe" [2008-06-03 98304]
"AsusACPIServer"="c:\program files\EeePC\ACPI\AsAcpiSvr.exe" [2008-06-03 479232]
"AsusEPCMonitor"="c:\program files\EeePC\ACPI\AsEPCMon.exe" [2008-05-20 94208]
"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2004-04-17 196608]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2004-04-13 69632]
"fxredir"="c:\windows\system32\fxredir.exe" [2001-12-12 65536]
"MPTBox"="c:\program files\Canon\MultiPASS4\MPTBox.exe" [2001-12-12 151552]
"ArcSoft Connection Service"="c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2010-03-18 207360]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-12-19 135168]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-12-19 159744]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-12-19 131072]
"RTHDCPL"="RTHDCPL.EXE" [2008-04-28 16861696]
"SoundMan"="SOUNDMAN.EXE" [2006-07-21 86016]
"AlcWzrd"="ALCWZRD.EXE" [2006-05-04 2808832]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-09-06 3722416]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-25 437160]
.
c:\documents and settings\Zdeněk - Hlavaty\Nabídka Start\Programy\Po spuštění\
StarOffice 8.lnk - c:\program files\Sun\StarOffice 8\program\quickstart.exe [2007-8-17 122880]
.
c:\documents and settings\Zdeněk - Hlavaty\Nabídka Start\Programy\Po spuštění\
StarOffice 8.lnk - c:\program files\Sun\StarOffice 8\program\quickstart.exe [2007-8-17 122880]
.
c:\documents and settings\Zdeněk - Hlavaty\Nabídka Start\Programy\Po spuštění\
StarOffice 8.lnk - c:\program files\Sun\StarOffice 8\program\quickstart.exe [2007-8-17 122880]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2008-7-7 600680]
SuperHybridEngine.lnk - c:\program files\Asus\EeePC\Super Hybrid Engine\SuperHybridEngine.exe [2010-7-9 303104]
.
c:\documents and settings\Zdeněk - Hlavaty\Nabídka Start\Programy\Po spuštění\
StarOffice 8.lnk - c:\program files\Sun\StarOffice 8\program\quickstart.exe [2007-8-17 122880]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
2007-10-18 09:34 5724184 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"c:\program files\Microsoft ActiveSync\rapimgr.exe"= c:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"c:\program files\Microsoft ActiveSync\wcescomm.exe"= c:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
"c:\program files\Microsoft ActiveSync\WCESMgr.exe"= c:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
"c:\\Garmin\\UMP-pcPL\\rsync.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"d:\\GeoGet\\geoget.exe"=
"d:\\Discovery\\geoget.exe"=
"d:\\Munisek\\geoget.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
"5985:TCP"= 5985:TCP:*:Disabled:Vzdálená správa systému Windows
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [25.10.2011 14:43 442200]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [25.10.2011 14:43 320856]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [25.10.2011 14:43 20568]
R2 MSSQL$ELISKACLIENT2008;SQL Server (ELISKACLIENT2008);c:\program files\eLiska3\MSSQL10.ELISKACLIENT2008\MSSQL\Binn\sqlservr.exe [30.3.2009 3:25 43010392]
R2 PfFilter;PfFilter;c:\program files\IObit\Protected Folder\pffilter.sys [10.6.2011 7:40 140848]
R3 RT80x86;Ralink 802.11n Wireless Driver;c:\windows\system32\drivers\rt2860.sys [9.7.2010 13:59 625024]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [30.3.2011 20:28 1691480]
S3 IT9135BDA;IT9135 BDA Devices;c:\windows\system32\drivers\IT9135BDA.sys [2.7.2011 22:45 94336]
S3 MSWYM;MSWYM;c:\docume~1\ZDENK-~1\LOCALS~1\Temp\MSWYM.exe --> c:\docume~1\ZDENK-~1\LOCALS~1\Temp\MSWYM.exe [?]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [9.5.2011 16:47 14336]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\Microsoft SQL Server\100\Shared\sqladhlp.exe [31.3.2009 6:55 47128]
S4 RsFx0103;RsFx0103 Driver;c:\windows\system32\drivers\RsFx0103.sys [30.3.2009 3:09 239336]
S4 SQLAgent$ELISKACLIENT2008;SQL Server Agent (ELISKACLIENT2008);c:\program files\eLiska3\MSSQL10.ELISKACLIENT2008\MSSQL\Binn\SQLAGENT.EXE [30.3.2009 3:23 366936]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WINRM REG_MULTI_SZ WINRM
.
Obsah adresáře 'Naplánované úlohy'
.
2011-10-27 c:\windows\Tasks\User_Feed_Synchronization-{4199CB7F-1E72-477B-8BA5-CC6A4786ABD2}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGHP_cs
uInternet Connection Wizard,ShellNext = hxxp://eeepc.asus.com/global
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
Trusted Zone: csobpoj.cz\app
Trusted Zone: csobpoj.cz\appakc
TCP: DhcpNameServer = 192.168.101.1 192.168.102.1 212.24.128.8 212.24.132.132
FF - ProfilePath - c:\documents and settings\Zdeněk - Hlavaty\Data aplikací\Mozilla\Firefox\Profiles\2vfd6o4p.default\
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - prefs.js: browser.startup.homepage - hxxp://web.volny.cz/
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-10-27 15:54
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(636)
c:\windows\system32\btmmhook.dll
c:\windows\system32\webcheck.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Canon\MultiPASS4\MPSERVIC.EXE
c:\program files\CDBurnerXP\NMSAccessU.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\igfxext.exe
c:\windows\system32\igfxsrvc.exe
c:\windows\RTHDCPL.EXE
c:\windows\SOUNDMAN.EXE
c:\progra~1\MI3AA1~1\rapimgr.exe
c:\program files\Sun\StarOffice 8\program\soffice.exe
c:\program files\Sun\StarOffice 8\program\soffice.BIN
c:\progra~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
.
**************************************************************************
.
Celkový čas: 2011-10-27 16:02:02 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-10-27 14:01
ComboFix2.txt 2011-10-27 07:57
ComboFix3.txt 2011-10-26 18:07
ComboFix4.txt 2011-10-26 14:49
.
Před spuštěním: Volných bajtů: 12 215 586 816
Po spuštění: Volných bajtů: 12 144 947 200
.
- - End Of File - - 0E6A57AC1DBAE5B434B47F562133DEBF

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:04:23, on 27.10.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Canon\MultiPASS4\MPSERVIC.EXE
C:\Program Files\eLiska3\MSSQL10.ELISKACLIENT2008\MSSQL\Binn\sqlservr.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\EeePC\ACPI\AsTray.exe
C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe
C:\WINDOWS\system32\igfxext.exe
C:\Program Files\EeePC\ACPI\AsEPCMon.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\system32\fxredir.exe
C:\Program Files\Canon\MultiPASS4\MPTBox.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\Microsoft ActiveSync\Wcescomm.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Asus\EeePC\Super Hybrid Engine\SuperHybridEngine.exe
C:\Program Files\Sun\StarOffice 8\program\soffice.exe
C:\Program Files\Sun\StarOffice 8\program\soffice.BIN
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Zdeněk - Hlavaty\Plocha\HiJackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://eeepc.asus.com/global
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [AsusTray] C:\Program Files\EeePC\ACPI\AsTray.exe
O4 - HKLM\..\Run: [AsusACPIServer] C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe
O4 - HKLM\..\Run: [AsusEPCMonitor] C:\Program Files\EeePC\ACPI\AsEPCMon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [fxredir] C:\WINDOWS\system32\fxredir.exe
O4 - HKLM\..\Run: [MPTBox] C:\Program Files\Canon\MultiPASS4\MPTBox.exe
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\Wcescomm.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - S-1-5-18 Startup: StarOffice 8.lnk = C:\Program Files\Sun\StarOffice 8\program\quickstart.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: StarOffice 8.lnk = C:\Program Files\Sun\StarOffice 8\program\quickstart.exe (User 'Default user')
O4 - Startup: StarOffice 8.lnk = C:\Program Files\Sun\StarOffice 8\program\quickstart.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: SuperHybridEngine.lnk = ?
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Vytvořit mobilní oblíbenou položku… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: MpService - Canon Inc - C:\Program Files\Canon\MultiPASS4\MPSERVIC.EXE
O23 - Service: MSWYM - Unknown owner - C:\DOCUME~1\ZDENK-~1\LOCALS~1\Temp\MSWYM.exe (file missing)
O23 - Service: NMSAccess - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe

--
End of file - 8504 bytes
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu

Příspěvekod jaro3 » 31 říj 2011 09:41

Soubory s koncovkou .ax jsou až na vyjímky kodeky , takže nic nebezpečného...

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem
a použij i T-Cleaner
http://www.edisk.cz/stahni/29485/T-Clea ... 8.5KB.html

smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj antivir a antispyware ,následně T-Cleaner smaž a zapni si znovu antivir a antispyware.


Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
ZHlavaty
nováček
Příspěvky: 18
Registrován: říjen 11
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Kontrola logu

Příspěvekod ZHlavaty » 31 říj 2011 10:52

Dobrý den.
při zadání uvedeného příkazu na odinstalaci CFse mi objeví hláška:
System Windows nemůže najít ComboFix.Přesvědčte se,zda je název zadán správně,a akci opakujte.
Podle mého se CF neinstaloval,ale spouštěl se přímo s plochy kde mám ComboFix.exe uložený.
Po stažení CF a jeho spouštění se mi neobjevuje panel jestli chci program opravdu instalovat,ale panel CF s černou obrazovkou,který hlásí rozbalování souborů a pak už jen modrý panel,který oznamuje jeho spuštění.
Nikde na C nemohu najit složku ComboFix.Je tam pouze složka Qoobox kam se uládá log z CF
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu

Příspěvekod jaro3 » 31 říj 2011 18:26

Stáhni si ToolsCleaner2( by de A.Rothstein & Dj Quiou & překlad: Damned )
Na plochu a spusť ho.
Klikni na Bod obnovení[b] a poté na [b]OK , OK[b].
Klikni na [b]Koš[b] a poté na [b]OK[b].
Klikni na [b]Dočasné soubory[b] a poté na [b]OK[b].
Klikni na [b]Vyhledat[b] a nech Cleaner pracovat. Může se během čištění zastavit (neodpovídá), ale nech ho pokračovat.
Když program skončí , klikni na [b]Odstranit a odstraň nalezené.
Zavři program.
Program maže i všechny nástroje na odvirování a vytváření logů , které se zde používají (HJT, Combofix, OTM, OTL, OTS atd.)

Jsou nějaké jiné problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
ZHlavaty
nováček
Příspěvky: 18
Registrován: říjen 11
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Kontrola logu

Příspěvekod ZHlavaty » 02 lis 2011 13:18

Dobrý den,
vyčištěno podle návodu.Složka Qoobox však zůstala a vní se vytvořila nová složka BackEnv,která je sice prázdná,ale nepřístupná a nejde smazat.Totéž je na oddílu D kde se mi vytvořila složka D,která je prázdná,ale taky nepřístupná a nejde smazat.I v nouzovém režimu bez úspěchu.
Připojení na internet mi stále nefunguje.
Start Windouws se však zlepšil a nezdá se,že by byl nějaký jiný problém.
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu

Příspěvekod jaro3 » 03 lis 2011 09:59

Stáhni si OTL by OldTimer
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
ZHlavaty
nováček
Příspěvky: 18
Registrován: říjen 11
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Kontrola logu

Příspěvekod ZHlavaty » 03 lis 2011 11:10

Dobrý den,
tady je 1část logu OTL
OTL logfile created on: 3.11.2011 10:43:56 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Zdeněk - Hlavaty\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1015,17 Mb Total Physical Memory | 503,45 Mb Available Physical Memory | 49,59% Memory free
2,39 Gb Paging File | 1,99 Gb Available in Paging File | 83,41% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 80,01 Gb Total Space | 21,00 Gb Free Space | 26,24% Space Free | Partition Type: NTFS
Drive D: | 69,00 Gb Total Space | 16,49 Gb Free Space | 23,90% Space Free | Partition Type: NTFS
Drive F: | 499,72 Mb Total Space | 254,02 Mb Free Space | 50,83% Space Free | Partition Type: FAT

Computer Name: N-798D0X0DAFP08 | User Name: Zdeněk - Hlavaty | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Zdeněk - Hlavaty\Plocha\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files\CDBurnerXP\NMSAccessU.exe ()
PRC - C:\Program Files\eLiska3\MSSQL10.ELISKACLIENT2008\MSSQL\Binn\sqlservr.exe (Microsoft Corporation)
PRC - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
PRC - C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe (Broadcom Corporation.)
PRC - C:\Program Files\Asus\EeePC\Super Hybrid Engine\SuperHybridEngine.exe (ASUSTeK Computer Inc.)
PRC - C:\Program Files\EeePC\ACPI\AsTray.exe (ASUSTeK Computer Inc.)
PRC - C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe (ASUSTeK Computer Inc.)
PRC - C:\Program Files\EeePC\ACPI\AsEPCMon.exe (ASUSTeK Computer Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Sun\StarOffice 8\program\soffice.bin (Sun Microsystems, Inc.)
PRC - C:\Program Files\Sun\StarOffice 8\program\soffice.exe (Sun Microsystems, Inc.)
PRC - C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
PRC - C:\Program Files\Canon\MultiPASS4\mpservic.exe (Canon Inc)
PRC - C:\Program Files\Canon\MultiPASS4\mptbox.exe (Canon Inc)
PRC - C:\WINDOWS\system32\FxRedir.exe (Canon Inc)


========== Modules (No Company Name) ==========

MOD - c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_30c61933\mscorlib.dll ()
MOD - c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_08748909\system.xml.dll ()
MOD - c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_c396768f\system.windows.forms.dll ()
MOD - c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_ab848700\system.dll ()
MOD - c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll ()
MOD - C:\Program Files\AVAST Software\Avast\defs\11092801\algo.dll ()
MOD - C:\Program Files\AVAST Software\Avast\defs\11092801\aswRep.dll ()
MOD - c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll ()
MOD - c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll ()
MOD - c:\windows\assembly\gac\microsoft.visualbasic\7.0.5000.0__b03f5f7f11d50a3a\microsoft.visualbasic.dll ()
MOD - C:\WINDOWS\system32\PDFreDirectMonNT.dll ()
MOD - C:\Program Files\CDBurnerXP\NMSAccessU.exe ()
MOD - C:\Program Files\WinRAR\rarlng.dll ()
MOD - C:\Program Files\WinRAR\RarExt.dll ()
MOD - C:\WINDOWS\system32\btwicons.dll ()
MOD - C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll ()
MOD - C:\WINDOWS\system32\msdmo.dll ()
MOD - C:\Program Files\Sun\StarOffice 8\program\libxml2.dll ()
MOD - C:\WINDOWS\system32\MpUpMon.dll ()
MOD - C:\WINDOWS\system32\pdfcmnnt.dll ()
MOD - C:\Program Files\WinZip\WZSHLEXT.DLL ()


========== Win32 Services (SafeList) ==========

SRV - (MSWYM) -- File not found
SRV - (avast! Antivirus) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
SRV - (NMSAccess) -- C:\Program Files\CDBurnerXP\NMSAccessU.exe ()
SRV - (MSSQL$ELISKACLIENT2008) SQL Server (ELISKACLIENT2008) -- C:\Program Files\eLiska3\MSSQL10.ELISKACLIENT2008\MSSQL\Binn\sqlservr.exe (Microsoft Corporation)
SRV - (SQLAgent$ELISKACLIENT2008) SQL Server Agent (ELISKACLIENT2008) -- C:\Program Files\eLiska3\MSSQL10.ELISKACLIENT2008\MSSQL\Binn\SQLAGENT.EXE (Microsoft Corporation)
SRV - (MpService) -- C:\Program Files\Canon\MultiPASS4\mpservic.exe (Canon Inc)


========== Driver Services (SafeList) ==========

DRV - (aswSnx) -- C:\WINDOWS\System32\drivers\aswSnx.sys (AVAST Software)
DRV - (aswSP) -- C:\WINDOWS\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswRdr) -- C:\WINDOWS\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (aswTdi) -- C:\WINDOWS\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswMon2) -- C:\WINDOWS\System32\drivers\aswmon2.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (Aavmker4) -- C:\WINDOWS\System32\drivers\aavmker4.sys (AVAST Software)
DRV - (epmntdrv) -- C:\WINDOWS\system32\epmntdrv.sys ()
DRV - (EuGdiDrv) -- C:\WINDOWS\system32\EuGdiDrv.sys ()
DRV - (aksfridge) -- C:\WINDOWS\system32\drivers\aksfridge.sys (SafeNet Inc.)
DRV - (IT9135BDA) -- C:\WINDOWS\system32\drivers\IT9135BDA.sys (ITE )
DRV - (hardlock) -- C:\WINDOWS\system32\drivers\hardlock.sys (SafeNet Inc.)
DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.)
DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative)
DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys ()
DRV - (SNP2UVC) USB2.0 PC Camera (SNP2UVC) -- C:\WINDOWS\system32\drivers\snp2uvc.sys ()
DRV - (RsFx0103) -- C:\WINDOWS\system32\drivers\RsFx0103.sys (Microsoft Corporation)
DRV - (BTKRNL) -- C:\WINDOWS\system32\drivers\btkrnl.sys (Broadcom Corporation.)
DRV - (BTWUSB) -- C:\WINDOWS\system32\drivers\btwusb.sys (Broadcom Corporation.)
DRV - (btaudio) -- C:\WINDOWS\system32\drivers\btaudio.sys (Broadcom Corporation.)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (MPE) -- C:\WINDOWS\system32\drivers\MPE.sys (Microsoft Corporation)
DRV - (RT80x86) -- C:\WINDOWS\system32\drivers\rt2860.sys (Ralink Technology, Corp.)
DRV - (L1e) -- C:\WINDOWS\system32\drivers\l1e51x86.sys (Atheros Communications, Inc.)
DRV - (BTDriver) -- C:\WINDOWS\system32\drivers\btport.sys (Broadcom Corporation.)
DRV - (BTWDNDIS) -- C:\WINDOWS\system32\drivers\btwdndis.sys (Broadcom Corporation.)
DRV - (AsusACPI) -- C:\WINDOWS\system32\drivers\ASUSACPI.SYS (ASUSTeK Computer Inc.)
DRV - (USB28xxBGA) -- C:\WINDOWS\system32\drivers\emBDA.sys (eMPIA Technology, Inc.)
DRV - (USB28xxOEM) -- C:\WINDOWS\system32\drivers\emOEM.sys (eMPIA Technology, Inc.)
DRV - (emAudio) -- C:\WINDOWS\system32\drivers\emAudio.sys (eMPIA Technology, Inc.)
DRV - (Afc) -- C:\WINDOWS\system32\drivers\afc.sys (Arcsoft, Inc.)
DRV - (cis1284) -- C:\WINDOWS\system32\drivers\cis1284.sys (Canon)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGHP_cs
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=685749"
FF - prefs.js..browser.search.selectedEngine: "Yahoo"
FF - prefs.js..browser.startup.homepage: "http://web.volny.cz/"
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.2.1
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: wtxpcom@mybrowserbar.com:4.3
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.16

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2010.06.25 02:00:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2010.06.23 07:33:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011.10.25 13:43:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.10.06 15:49:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2011.03.08 13:54:31 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\Mozilla\Extensions
[2011.03.08 13:54:31 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2011.10.12 15:00:37 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\Mozilla\Firefox\Profiles\2vfd6o4p.default\extensions
[2011.03.28 15:47:55 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\Mozilla\Firefox\Profiles\2vfd6o4p.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011.10.16 09:39:15 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011.10.16 09:39:17 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2011.10.06 15:49:30 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2011.06.23 11:00:52 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ZDENěK - HLAVATY\DATA APLIKACí\MOZILLA\FIREFOX\PROFILES\2VFD6O4P.DEFAULT\EXTENSIONS\EXIF_VIEWER@MOZILLA.DOSLASH.ORG.XPI
[2010.06.23 07:33:20 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011.10.06 15:49:29 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.10.06 15:49:22 | 000,002,364 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2011.10.06 15:49:22 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2011.10.06 15:49:22 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.10.06 15:49:22 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2011.10.06 15:49:22 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.10.06 15:49:22 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
[2011.06.24 15:38:46 | 000,000,846 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo.xml

O1 HOSTS File: ([2011.10.27 14:54:33 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Pomocník pro přihlášení ke službě Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKCU\..\Toolbar\WebBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Odkazy) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [AlcWzrd] C:\WINDOWS\ALCWZRD.EXE (RealTek Semicoductor Corp.)
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [AsusACPIServer] C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe (ASUSTeK Computer Inc.)
O4 - HKLM..\Run: [AsusEPCMonitor] C:\Program Files\EeePC\ACPI\AsEPCMon.exe (ASUSTeK Computer Inc.)
O4 - HKLM..\Run: [AsusTray] C:\Program Files\EeePC\ACPI\AsTray.exe (ASUSTeK Computer Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [fxredir] C:\WINDOWS\system32\FxRedir.exe (Canon Inc)
O4 - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe (Intel Corporation)
O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [MPTBox] C:\Program Files\Canon\MultiPASS4\mptbox.exe (Canon Inc)
O4 - HKLM..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKCU..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
O4 - HKCU..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\Wcescomm.exe (Microsoft Corporation)
O4 - HKCU..\Run: [MsnMsgr] C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe (Microsoft Corporation)
O4 - HKCU..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth.lnk = C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\SuperHybridEngine.lnk = C:\Program Files\Asus\EeePC\Super Hybrid Engine\SuperHybridEngine.exe (ASUSTeK Computer Inc.)
O4 - Startup: C:\Documents and Settings\Zdeněk - Hlavaty\Nabídka Start\Programy\Po spuštění\StarOffice 8.lnk = C:\Program Files\Sun\StarOffice 8\program\quickstart.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Vytvořit mobilní oblíbenou položku… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O15 - HKCU\..Trusted Domains: csobpoj.cz ([app] https in Důvěryhodné servery)
O15 - HKCU\..Trusted Domains: csobpoj.cz ([appakc] https in Důvěryhodné servery)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... vc1dmo.cab (Reg Error: Value error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.101.1 192.168.102.1 212.24.128.8 212.24.132.132
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B1D4ED8D-E85E-4345-8F74-F411705C7459}: DhcpNameServer = 217.195.160.10 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FC735C71-43E0-4922-987E-F65010555566}: DhcpNameServer = 192.168.101.1 192.168.102.1 212.24.128.8 212.24.132.132
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) -C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) -C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") -C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\crypt32chain: DllName - (crypt32.dll) - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - (cryptnet.dll) - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - (cscdll.dll) - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - (%SystemRoot%\System32\dimsntfy.dll) - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - (sclgntfy.dll) - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - (WlNotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Proces mezipaměti kategorií součástí - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Zdeněk - Hlavaty\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Zdeněk - Hlavaty\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) -C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) -C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) -C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) -C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) -C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) -C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) -C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) -C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) -C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011.11.03 10:39:50 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Zdeněk - Hlavaty\Plocha\OTL.exe
[2011.11.01 15:25:52 | 000,176,128 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxres.dll
[2011.11.01 15:05:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\x64
[2011.11.01 12:18:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\EASEUS Partition Master 9.1.0 Home Edition
[2011.11.01 00:08:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Zdeněk - Hlavaty\Recent
[2011.11.01 00:07:32 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011.11.01 00:05:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Zdeněk - Hlavaty\Dokumenty\Přijaté soubory
[2011.10.31 21:53:48 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011.10.31 21:46:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2011.10.26 16:25:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\IObit
[2011.10.25 15:44:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Zdeněk - Hlavaty\DoctorWeb
[2011.10.25 13:48:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
[2011.10.25 13:47:58 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011.10.25 13:43:54 | 000,020,568 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011.10.25 13:43:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\avast! Free Antivirus
[2011.10.25 13:43:53 | 000,320,856 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011.10.25 13:43:51 | 000,034,392 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011.10.25 13:43:50 | 000,052,568 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011.10.25 13:43:49 | 000,442,200 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011.10.25 13:43:49 | 000,110,552 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011.10.25 13:43:49 | 000,104,536 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011.10.25 13:43:48 | 000,030,808 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011.10.25 13:43:32 | 000,199,304 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011.10.25 13:43:32 | 000,041,184 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011.10.25 13:12:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Zdeněk - Hlavaty\Plocha\backups
[2011.10.24 13:18:35 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.10.24 13:03:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Zdeněk - Hlavaty\Dokumenty\total_uninstaller
[2011.10.24 13:01:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\OTM-World
[2011.10.24 11:13:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2011.10.24 09:31:15 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011.10.23 11:49:36 | 000,000,000 | ---D | C] -- C:\Program Files\Sophos
[2011.10.23 09:27:45 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Zdeněk - Hlavaty\Nabídka Start\Programy\Nástroje pro správu
[2011.10.23 09:27:45 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Filmy
[2011.10.23 09:20:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\PCHealth
[2011.10.22 18:32:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\SecTaskMan
[2011.10.22 11:16:12 | 000,000,000 | ---D | C] -- C:\Program Files\Elantech
[2011.10.22 10:17:01 | 000,000,000 | ---D | C] -- C:\Program Files\Atheros Communications Inc
[2011.10.22 10:17:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Atheros
[2011.10.22 10:12:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Atheros_L1e
[2011.10.22 09:31:33 | 000,036,864 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\drivers\l1e51x86.sys
[2011.10.22 09:12:09 | 000,052,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\i8042prt.sys
[2011.10.21 17:32:28 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2011.10.21 15:34:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\PCHealth
[2011.10.21 15:33:56 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2011.10.21 15:07:11 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011.10.21 14:15:54 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011.10.21 14:15:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2011.10.21 13:23:08 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Zdeněk - Hlavaty\Local Settings\Data aplikací\78e73b5c
[2011.10.20 08:50:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\nLite
[2011.10.20 08:50:13 | 000,000,000 | ---D | C] -- C:\Program Files\nLite
[2011.10.19 22:14:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Easy Driver Pro
[2011.10.17 11:12:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\LogicWeave Software
[2011.10.17 11:12:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Zdeněk - Hlavaty\Nabídka Start\Programy\LogicWeave
[2011.10.17 11:12:10 | 000,000,000 | ---D | C] -- C:\Program Files\LogicWeave
[2011.10.16 09:38:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Skype
[2011.10.13 16:20:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\ElevatedDiagnostics
[2011.10.13 11:47:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Zdeněk - Hlavaty\Dokumenty\Updater5
[2011.10.13 05:30:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\Canneverbe Limited
[2011.10.13 05:30:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Canneverbe Limited
[2011.10.13 05:29:49 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP
[2011.10.12 11:31:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Zdeněk - Hlavaty\Dokumenty\Downloads
[2011.10.12 11:29:07 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit
[2011.10.12 11:29:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Zdeněk - Hlavaty\Local Settings\Data aplikací\Conduit
[2011.10.07 05:27:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\GeoGet
[2011.10.07 05:27:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\GeoGet
[2011.10.04 13:04:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Geopainting.com
[2011.10.04 13:04:54 | 000,000,000 | ---D | C] -- C:\Program Files\Geopainting.com
[2010.07.09 13:21:51 | 015,523,560 | ---- | C] (Macrovision Corporation) -- C:\Program Files\U1 Setup.exe
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011.11.03 10:51:10 | 000,000,488 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{4199CB7F-1E72-477B-8BA5-CC6A4786ABD2}.job
[2011.11.03 10:26:22 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Zdeněk - Hlavaty\Plocha\OTL.exe
[2011.11.03 08:23:59 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.11.03 08:23:55 | 1064,554,496 | -HS- | M] () -- C:\hiberfil.sys
[2011.11.02 17:37:55 | 000,000,268 | -H-- | M] () -- C:\sqmdata09.sqm
[2011.11.02 17:37:55 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt09.sqm
[2011.11.02 14:41:12 | 000,546,394 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011.11.02 14:41:12 | 000,544,024 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2011.11.02 14:41:12 | 000,125,186 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2011.11.02 14:41:12 | 000,110,242 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011.11.02 08:42:05 | 000,000,268 | -H-- | M] () -- C:\sqmdata08.sqm
[2011.11.02 08:42:05 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt08.sqm
[2011.11.01 15:38:46 | 000,002,263 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\eLiška 3.lnk
[2011.11.01 15:26:58 | 000,000,268 | -H-- | M] () -- C:\sqmdata07.sqm
[2011.11.01 15:26:58 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt07.sqm
[2011.11.01 14:43:07 | 000,000,268 | -H-- | M] () -- C:\sqmdata06.sqm
[2011.11.01 14:43:07 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt06.sqm
[2011.11.01 14:27:53 | 000,000,268 | -H-- | M] () -- C:\sqmdata05.sqm
[2011.11.01 14:27:53 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt05.sqm
[2011.11.01 14:22:21 | 000,000,268 | -H-- | M] () -- C:\sqmdata04.sqm
[2011.11.01 14:22:21 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt04.sqm
[2011.11.01 14:18:38 | 000,000,268 | -H-- | M] () -- C:\sqmdata03.sqm
[2011.11.01 14:18:38 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt03.sqm
[2011.11.01 12:56:24 | 000,000,268 | -H-- | M] () -- C:\sqmdata02.sqm
[2011.11.01 12:56:24 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt02.sqm
[2011.11.01 12:18:44 | 000,001,061 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\EASEUS Partition Master 9.1.0 Home Edition.lnk
[2011.11.01 09:17:58 | 000,000,268 | -H-- | M] () -- C:\sqmdata01.sqm
[2011.11.01 09:17:58 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt01.sqm
[2011.11.01 00:06:07 | 000,000,268 | -H-- | M] () -- C:\sqmdata00.sqm
[2011.11.01 00:06:07 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm
[2011.11.01 00:04:00 | 000,012,690 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.11.01 00:02:10 | 000,000,297 | RHS- | M] () -- C:\boot.ini
[2011.10.27 14:54:33 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011.10.25 14:15:22 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\XFAXCZXRAEVF
[2011.10.25 14:10:05 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\VSXGIHO
[2011.10.25 13:48:04 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2011.10.25 13:43:54 | 000,001,689 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2011.10.25 13:43:49 | 000,002,552 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011.10.25 13:30:31 | 000,001,928 | ---- | M] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Dokumenty\cc_20111025_143026.reg
[2011.10.24 12:04:28 | 000,001,912 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2011.10.23 18:11:48 | 000,000,512 | -HS- | M] () -- C:\WINDOWS\0278078drv.spi
[2011.10.23 11:10:51 | 000,005,438 | ---- | M] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Dokumenty\cc_20111023_121045.reg
[2011.10.22 19:29:59 | 000,000,022 | ---- | M] () -- C:\WINDOWS\tpcsd
[2011.10.21 17:36:37 | 000,000,000 | ---- | M] () -- C:\WINDOWS\1547429752
[2011.10.21 12:46:50 | 000,000,748 | ---- | M] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Local Settings\Data aplikací\Model6.env
[2011.10.19 20:41:44 | 000,796,672 | ---- | M] (Qsc) -- C:\WINDOWS\GPInstall.exe
[2011.10.19 20:05:39 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011.10.17 11:12:24 | 000,002,483 | ---- | M] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Plocha\CacheStats.lnk
[2011.10.13 06:05:30 | 001,423,066 | ---- | M] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Dokumenty\XP servis Pack3.dxp
[2011.10.13 05:30:06 | 000,001,610 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CDBurnerXP.lnk
[2011.10.13 05:12:00 | 000,252,680 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.10.13 04:59:40 | 000,029,319 | ---- | M] () -- C:\WINDOWS\Ascd_log.ini
[2011.10.13 04:59:16 | 000,029,281 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini
[2011.10.13 04:51:44 | 000,000,692 | ---- | M] () -- C:\WINDOWS\setup.iss
[2011.10.12 19:30:11 | 000,000,007 | ---- | M] () -- C:\NOTACER.ID
[2011.10.12 19:17:17 | 000,014,848 | ---- | M] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.10.12 18:37:35 | 000,001,056 | -HS- | M] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2011.10.07 07:21:41 | 000,114,063 | ---- | M] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Dokumenty\Car Rental Booking.pdf
[2011.10.07 06:10:05 | 000,001,322 | ---- | M] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Dokumenty\cc_20111007_070943.reg
[2011.10.06 22:13:06 | 000,000,082 | ---- | M] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Dokumenty\cc_20111006_231300.reg
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
Nahoru
ZHlavaty
nováček
Příspěvky: 18
Registrován: říjen 11
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Kontrola logu

Příspěvekod ZHlavaty » 03 lis 2011 11:13

Druhá část logu OTL + log Extras

========== Files Created - No Company Name ==========

[2011.11.02 17:37:55 | 000,000,268 | -H-- | C] () -- C:\sqmdata09.sqm
[2011.11.02 17:37:55 | 000,000,244 | -H-- | C] () -- C:\sqmnoopt09.sqm
[2011.11.02 08:52:56 | 1064,554,496 | -HS- | C] () -- C:\hiberfil.sys
[2011.11.02 08:42:05 | 000,000,268 | -H-- | C] () -- C:\sqmdata08.sqm
[2011.11.02 08:42:05 | 000,000,244 | -H-- | C] () -- C:\sqmnoopt08.sqm
[2011.11.01 15:26:58 | 000,000,268 | -H-- | C] () -- C:\sqmdata07.sqm
[2011.11.01 15:26:58 | 000,000,244 | -H-- | C] () -- C:\sqmnoopt07.sqm
[2011.11.01 14:43:07 | 000,000,268 | -H-- | C] () -- C:\sqmdata06.sqm
[2011.11.01 14:43:07 | 000,000,244 | -H-- | C] () -- C:\sqmnoopt06.sqm
[2011.11.01 14:27:53 | 000,000,268 | -H-- | C] () -- C:\sqmdata05.sqm
[2011.11.01 14:27:53 | 000,000,244 | -H-- | C] () -- C:\sqmnoopt05.sqm
[2011.11.01 14:22:21 | 000,000,268 | -H-- | C] () -- C:\sqmdata04.sqm
[2011.11.01 14:22:21 | 000,000,244 | -H-- | C] () -- C:\sqmnoopt04.sqm
[2011.11.01 14:18:38 | 000,000,268 | -H-- | C] () -- C:\sqmdata03.sqm
[2011.11.01 14:18:38 | 000,000,244 | -H-- | C] () -- C:\sqmnoopt03.sqm
[2011.11.01 12:56:24 | 000,000,268 | -H-- | C] () -- C:\sqmdata02.sqm
[2011.11.01 12:56:24 | 000,000,244 | -H-- | C] () -- C:\sqmnoopt02.sqm
[2011.11.01 12:18:44 | 000,001,061 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\EASEUS Partition Master 9.1.0 Home Edition.lnk
[2011.11.01 12:18:43 | 002,469,760 | ---- | C] () -- C:\WINDOWS\System32\BootMan.exe
[2011.11.01 12:18:43 | 000,086,408 | ---- | C] () -- C:\WINDOWS\System32\setupempdrv03.exe
[2011.11.01 12:18:43 | 000,019,840 | ---- | C] () -- C:\WINDOWS\System32\EuEpmGdi.dll
[2011.11.01 12:18:43 | 000,013,192 | ---- | C] () -- C:\WINDOWS\System32\epmntdrv.sys
[2011.11.01 12:18:43 | 000,008,456 | ---- | C] () -- C:\WINDOWS\System32\EuGdiDrv.sys
[2011.11.01 09:17:58 | 000,000,268 | -H-- | C] () -- C:\sqmdata01.sqm
[2011.11.01 09:17:58 | 000,000,244 | -H-- | C] () -- C:\sqmnoopt01.sqm
[2011.11.01 00:06:07 | 000,000,268 | -H-- | C] () -- C:\sqmdata00.sqm
[2011.11.01 00:06:07 | 000,000,244 | -H-- | C] () -- C:\sqmnoopt00.sqm
[2011.11.01 00:02:28 | 000,000,900 | ---- | C] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Nabídka Start\Programy\Po spuštění\StarOffice 8.lnk
[2011.11.01 00:02:28 | 000,000,787 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\SuperHybridEngine.lnk
[2011.11.01 00:02:28 | 000,000,669 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth.lnk
[2011.10.25 14:15:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\XFAXCZXRAEVF
[2011.10.25 14:10:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\VSXGIHO
[2011.10.25 13:48:04 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2011.10.25 13:43:54 | 000,001,689 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2011.10.25 13:30:29 | 000,001,928 | ---- | C] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Dokumenty\cc_20111025_143026.reg
[2011.10.24 09:32:46 | 000,000,211 | -HS- | C] () -- C:\BOOT.BAK
[2011.10.24 09:32:30 | 000,261,328 | RHS- | C] () -- C:\cmldr
[2011.10.23 18:01:08 | 000,000,512 | -HS- | C] () -- C:\WINDOWS\0278078drv.spi
[2011.10.23 11:10:48 | 000,005,438 | ---- | C] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Dokumenty\cc_20111023_121045.reg
[2011.10.22 19:29:59 | 000,000,022 | ---- | C] () -- C:\WINDOWS\tpcsd
[2011.10.21 15:37:07 | 000,001,912 | ---- | C] () -- C:\WINDOWS\epplauncher.mif
[2011.10.21 13:23:14 | 000,000,000 | ---- | C] () -- C:\WINDOWS\1547429752
[2011.10.18 16:35:48 | 000,135,272 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2011.10.17 11:12:11 | 000,002,483 | ---- | C] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Plocha\CacheStats.lnk
[2011.10.13 06:05:28 | 001,423,066 | ---- | C] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Dokumenty\XP servis Pack3.dxp
[2011.10.13 05:30:06 | 000,001,610 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\CDBurnerXP.lnk
[2011.10.13 05:30:04 | 000,001,556 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\CDBurnerXP.lnk
[2011.10.13 05:30:01 | 000,005,504 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2011.10.13 04:50:42 | 000,029,319 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2011.10.13 04:49:49 | 000,029,281 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2011.10.13 04:49:48 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2011.10.12 19:30:11 | 000,000,007 | ---- | C] () -- C:\NOTACER.ID
[2011.10.07 07:21:37 | 000,114,063 | ---- | C] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Dokumenty\Car Rental Booking.pdf
[2011.10.07 06:09:52 | 000,001,322 | ---- | C] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Dokumenty\cc_20111007_070943.reg
[2011.10.06 22:13:06 | 000,000,082 | ---- | C] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Dokumenty\cc_20111006_231300.reg
[2011.07.01 22:22:26 | 000,002,130 | ---- | C] () -- C:\WINDOWS\TVEpaDrv.ini
[2011.07.01 22:16:27 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd.dll
[2011.07.01 22:16:27 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd(9).dll
[2011.07.01 22:16:27 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd(8).dll
[2011.07.01 22:16:27 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd(7).dll
[2011.07.01 22:16:27 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd(6).dll
[2011.07.01 22:16:27 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd(5).dll
[2011.07.01 22:16:27 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd(4).dll
[2011.07.01 22:16:27 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd(3).dll
[2011.07.01 22:16:27 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd(2).dll
[2011.07.01 22:16:27 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd(11).dll
[2011.07.01 22:16:27 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd(10).dll
[2011.05.20 10:42:09 | 000,075,776 | ---- | C] () -- C:\WINDOWS\cadkasdeinst01e.exe
[2011.05.19 21:21:13 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Local Settings\Data aplikací\Model_ss.ini
[2011.05.13 13:52:27 | 000,000,109 | ---- | C] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Local Settings\Data aplikací\Model7.env
[2011.05.10 08:24:10 | 000,020,900 | ---- | C] () -- C:\WINDOWS\System32\MpUpMon.dll
[2011.05.09 15:47:46 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2011.05.09 15:47:46 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2011.05.09 15:47:15 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2011.05.09 15:47:10 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2011.05.09 15:47:10 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2011.05.09 15:47:09 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2011.05.09 15:47:08 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2011.05.09 15:46:59 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2011.05.09 15:46:58 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2011.05.09 15:46:39 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2011.05.09 15:46:32 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2011.05.04 10:13:22 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2011.04.29 11:03:14 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll
[2011.04.29 10:43:00 | 000,014,051 | ---- | C] () -- C:\WINDOWS\System32\RaCoInst.dat
[2011.04.27 16:00:37 | 000,000,949 | ---- | C] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Local Settings\Data aplikací\User_ss.cds
[2011.04.27 12:02:46 | 000,005,115 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\mtbjfghn.xbe
[2011.04.26 10:23:36 | 000,002,383 | ---- | C] () -- C:\WINDOWS\aopr.ini
[2011.03.28 12:28:14 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2011.03.23 08:37:39 | 000,001,056 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2011.02.14 08:21:30 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\LocalService\Data aplikací\$_hpcst$.hpc
[2011.01.25 09:52:31 | 000,000,054 | ---- | C] () -- C:\WINDOWS\SW_Win2000X1.DLL
[2011.01.25 09:50:13 | 000,000,024 | ---- | C] () -- C:\WINDOWS\System32\XLSCX.INI
[2011.01.25 09:50:03 | 000,000,049 | ---- | C] () -- C:\WINDOWS\SW_Win3112X32.DLL
[2011.01.25 09:49:40 | 000,000,530 | ---- | C] () -- C:\WINDOWS\System32\tx13_ic.ini
[2011.01.25 09:49:39 | 000,131,072 | ---- | C] () -- C:\WINDOWS\System32\CSVSpecialProcessing.dll
[2011.01.25 09:49:39 | 000,102,400 | ---- | C] () -- C:\WINDOWS\System32\SARzilla.dll
[2011.01.25 09:49:39 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\DVM.dll
[2011.01.25 09:49:39 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\RegisterExe.exe
[2010.10.26 16:01:42 | 000,000,238 | ---- | C] () -- C:\WINDOWS\System32\AF15IRTBL.bin
[2010.10.09 13:15:44 | 000,014,848 | ---- | C] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.07.29 19:50:06 | 000,000,748 | ---- | C] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Local Settings\Data aplikací\Model6.env
[2010.07.09 14:14:21 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010.07.09 14:13:25 | 000,252,680 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.07.09 13:32:21 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2010.07.09 13:02:07 | 000,049,152 | ---- | C] () -- C:\WINDOWS\INSTALLEEE.EXE
[2010.07.09 12:58:17 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4906.dll
[2010.07.09 12:56:16 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\SamSfPa.dat
[2010.07.09 12:24:23 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010.07.09 12:19:58 | 000,023,608 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010.07.01 14:46:53 | 000,000,210 | ---- | C] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\wklnhst.dat
[2010.06.20 06:29:10 | 000,054,828 | ---- | C] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\preview.html
[2010.06.19 11:23:17 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2010.06.18 21:21:43 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\$_hpcst$.hpc
[2010.06.18 19:29:34 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010.06.18 18:58:15 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\Zdeněk - Hlavaty\Local Settings\Data aplikací\fusioncache.dat
[2010.06.06 15:20:02 | 000,065,344 | ---- | C] () -- C:\WINDOWS\System32\PDFreDirectMonNT.dll
[2009.09.30 11:05:48 | 000,290,816 | ---- | C] () -- C:\WINDOWS\System32\nsldap32v60.dll
[2009.06.05 17:14:42 | 001,766,592 | ---- | C] () -- C:\WINDOWS\System32\drivers\snp2uvc.sys
[2009.06.05 17:14:40 | 000,035,264 | ---- | C] () -- C:\WINDOWS\System32\drivers\sncduvc.sys
[2008.10.30 17:00:22 | 000,048,640 | ---- | C] () -- C:\WINDOWS\System32\nsldapssl32v60.dll
[2008.10.30 16:59:24 | 000,025,088 | ---- | C] () -- C:\WINDOWS\System32\nsldappr32v60.dll
[2008.07.30 11:01:51 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2008.07.07 18:20:43 | 000,005,178 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2008.07.07 18:20:39 | 000,544,024 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2008.07.07 18:20:39 | 000,125,186 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2008.07.07 18:20:32 | 000,546,394 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2008.07.07 18:20:32 | 000,110,242 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2008.07.07 18:20:31 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2008.07.07 14:11:32 | 002,854,912 | ---- | C] () -- C:\WINDOWS\System32\btwicons.dll
[2008.03.20 08:58:30 | 000,000,173 | ---- | C] () -- C:\WINDOWS\explorer.exe.config
[2008.03.17 14:54:36 | 000,012,208 | ---- | C] () -- C:\WINDOWS\AsTrayLang.ini
[2004.12.14 16:55:22 | 000,000,019 | ---- | C] () -- C:\WINDOWS\System32\nsldapssl32v50.dll
[2004.12.14 16:55:22 | 000,000,019 | ---- | C] () -- C:\WINDOWS\System32\nsldappr32v50.dll
[2004.12.14 16:55:22 | 000,000,019 | ---- | C] () -- C:\WINDOWS\System32\nsldap32v50.dll
[2003.04.09 14:38:04 | 000,005,664 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2001.11.14 12:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll

========== LOP Check ==========

[2010.06.18 19:26:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2011.10.25 13:43:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2011.10.13 05:30:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Canneverbe Limited
[2011.04.27 12:21:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Canon
[2011.10.19 22:14:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Easy Driver Pro
[2010.06.30 09:26:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ECAP
[2010.07.16 22:38:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\GARMIN
[2011.03.30 10:48:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Innovative Solutions
[2011.07.23 15:23:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\install_clap
[2011.10.25 15:26:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2011.03.02 13:07:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MyPoiWorld
[2010.11.11 08:42:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PDF reDirect
[2011.07.23 15:23:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PDVD
[2011.04.29 10:43:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ralink Driver
[2011.10.26 15:05:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SecTaskMan
[2011.07.24 06:07:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2010.07.06 19:50:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\WinZip
[2011.07.24 06:06:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}(2)
[2010.08.17 17:34:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\anpo.republika.pl
[2011.05.20 10:42:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\CAD-KAS
[2011.10.13 05:30:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\Canneverbe Limited
[2011.04.27 12:02:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\Carambis
[2011.07.23 18:17:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\driveridentifier
[2011.10.13 16:20:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\ElevatedDiagnostics
[2011.01.24 13:44:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\EurekaLog
[2010.08.17 16:58:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\fltk.org
[2011.10.12 19:10:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\GARMIN
[2011.10.07 05:30:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\GeoGet
[2011.09.08 20:08:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\GlarySoft
[2010.06.20 06:28:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\GSBuilder
[2011.10.26 16:25:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\IObit
[2011.10.17 11:12:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\LogicWeave Software
[2011.07.23 21:10:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\NacreWare
[2011.10.24 13:01:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\OTM-World
[2011.01.04 12:53:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\Pathcz
[2010.11.11 08:42:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\PDF reDirect
[2011.11.03 08:25:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\StarOffice8
[2010.07.01 14:47:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\Template
[2011.07.23 16:16:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Zdeněk - Hlavaty\Data aplikací\Uniblue
[2011.11.03 10:51:10 | 000,000,488 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{4199CB7F-1E72-477B-8BA5-CC6A4786ABD2}.job

========== Purity Check ==========

OTL Extras logfile created on: 3.11.2011 10:43:56 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Zdeněk - Hlavaty\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1015,17 Mb Total Physical Memory | 503,45 Mb Available Physical Memory | 49,59% Memory free
2,39 Gb Paging File | 1,99 Gb Available in Paging File | 83,41% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 80,01 Gb Total Space | 21,00 Gb Free Space | 26,24% Space Free | Partition Type: NTFS
Drive D: | 69,00 Gb Total Space | 16,49 Gb Free Space | 23,90% Space Free | Partition Type: NTFS
Drive F: | 499,72 Mb Total Space | 254,02 Mb Free Space | 50,83% Space Free | Partition Type: FAT

Computer Name: N-798D0X0DAFP08 | User Name: Zdeněk - Hlavaty | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
.jse [@ = JSEFile] -- C:\WINDOWS\System32\CScript.exe (Microsoft Corporation)
.wsf [@ = WSFFile] -- C:\WINDOWS\System32\CScript.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1"
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
jsefile [open] -- %SystemRoot%\System32\CScript.exe "%1" %* (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
wsffile [open] -- %SystemRoot%\System32\CScript.exe "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009
"5985:TCP" = 5985:TCP:*:Disabled:Vzdálená správa systému Windows

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Messenger\livecall.exe" = C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone) -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Messenger\livecall.exe" = C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone) -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation)
"C:\Garmin\UMP-pcPL\rsync.exe" = C:\Garmin\UMP-pcPL\rsync.exe:*:Enabled:rsync -- ()
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"D:\GeoGet\geoget.exe" = D:\GeoGet\geoget.exe:*:Enabled:geoget -- ()
"D:\Discovery\geoget.exe" = D:\Discovery\geoget.exe:*:Enabled:geoget -- ()
"D:\Munisek\geoget.exe" = D:\Munisek\geoget.exe:*:Enabled:geoget -- ()
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{0990B5DF-92C3-4AD6-A18D-BF3ADF311240}" = Super Hybrid Engine
"{17EAD3D5-7E7D-47A3-A63C-C07AB46D468B}" = Windows Live Mail
"{1873789F-59D5-4002-8A2F-60A827B78F98}_is1" = GmapTool 0.4.8
"{196E77C5-F524-4B50-BD1A-2C21EEE9B8F7}" = Microsoft SQL Server 2008 Common Files
"{19F5658D-92E8-4A08-8657-D38ABB1574B2}" = Asus ACPI Driver
"{19F71F50-EE15-4213-A1ED-EA74FFA60C51}" = CacheStats
"{1B8FE958-A304-4902-BF7A-4E2F0F5B7017}_is1" = GPSBabel 1.4.2
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F698102-5739-441E-96F0-74F4EA540F06}" = Atheros Ethernet Utility
"{239BB983-8A2D-4974-B780-2ADAE32752D5}" = Windows Live installer
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 26
"{26A24AE4-039D-4CA4-87B4-2F83216021F0}" = Java(TM) 6 Update 21
"{29E44E9D-ACB2-4D2D-849F-5361C941B7E1}" = ArcSoft TotalMedia 3.5
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver
"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java(TM) 6 Update 3
"{328019A7-0012-401D-96A2-4CDDD02675A8}" = Garmin POI Loader
"{33AE9E89-47C9-4A0D-9E9D-BDD6966A3804}" = Microsoft SQL Server 2008 RsFx Driver
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{4815BD99-96A4-49FE-A885-DCF06E9E4E78}" = Microsoft SQL Server 2008 Database Engine Shared
"{48E9E92C-CCBA-43D9-9B7C-FB26DD0C6709}" = TOPO Czech PRO 2010
"{49B7CD99-90EB-4CFD-AA09-6A088B5F42AD}" = Driver Install 32bit
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A6F34E2-09E5-4616-B227-4A26A488A6F9}" = Microsoft SQL Server 2008 Common Files
"{4F44B5AE-82A6-4A8A-A3E3-E24D489728E3}" = Microsoft SQL Server 2008 Native Client
"{4F50C25D-9236-42EE-86A4-F0BC39A543AE}" = TOPO Czech 3 PRO
"{5140C97D-FE5A-41BF-AF03-5C7350B42F7C}" = Topomap Benelux
"{52CC5969-BBBF-4752-ACCB-5E835F64AF72}" = Windows Live Fotogalerie
"{542068F1-9AAE-4E1B-8ACA-094FE03728BE}" = Carambis Driver Updater
"{546C143E-68DC-314D-97BC-1E454E3BA429}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY
"{587178E7-B1DF-494E-9838-FA4DD36E873C}" = ASUSUpdate for Eee PC
"{58721EC3-8D4E-4B79-BC51-1054E2DDCD10}" = Microsoft SQL Server 2008 Database Engine Services
"{5C52CED3-D45C-4DA9-932F-B91BD44BB461}" = Adabas D 13.01.00
"{65F9E1F3-A2C1-4AA9-9F33-A3AEB0255F0E}" = Garmin USB Drivers
"{66DCA952-0A6D-46AB-93B9-64379F829FAD}" = Windows Live Writer
"{6E4DAE31-7CF3-441A-B6E5-B014D63C80CD}" = Eee Instant Key
"{755596A9-A0AF-4C12-BE5E-8B7DD510B7F9}" = eLiška
"{784EE8DF-2273-4EBD-8372-7CE597613BCF}" = IObit Toolbar v4.4
"{7A11431C-3B45-4932-9D83-2F4A609C18F3}" = Adresy CR v2
"{7AA38575-25A1-4C2F-B40B-2188EB73FF0E}" = Garmin TOPO Österreich v2
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{84814E6B-2581-46EC-926A-823BD1C670F6}" = Software Bluetooth WIDCOMM
"{85E3CFBC-9B1B-470C-AF72-54EACA0F1322}" = ECAP
"{865A8951-8D9A-46CB-84A2-3D67BA38B923}" = EASEUS Deleted File Recovery 2.1.1
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{8A508AAA-3B69-4326-B89E-A6166FA05D3C}" = Canon Pakiet MultiPASS 4.00
"{8C20F904-9288-4A7A-A0C4-1458AA2B295E}" = TOPO Czech PRO 2011
"{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}" = Azurewave Wireless LAN
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{9510AB97-A36C-4352-8725-E72E5528FA1B}" = StarOffice 8 ASUS Edition
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{99052DB7-9592-4522-A558-5417BBAD48EE}" = Microsoft ActiveSync
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A2C9CD1B-2551-3AED-B244-6698FB929FA6}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A5A82A64-AA95-4BB0-8270-371BE1ADD26A}" = ATLAS Czech 2011 NT
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.1) - Czech
"{AE255C55-E0CF-4591-AA86-CAA19AA32C53}" = Garmin TOPO Deutschland v3
"{AFBAB9A0-DDE8-49AE-8C17-A01B61BEE64B}" = Garmin MapSource
"{B1102A25-3AA3-446B-AA0F-A699B07A02FD}" = Garmin USB Drivers
"{B1EE1CC5-6CED-4801-BFFF-8454F21A245A}" = Garmin Communicator Plugin
"{B5153233-9AEE-4CD4-9D2C-4FAAC870DBE2}" = Microsoft SQL Server 2008 Database Engine Services
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B857D868-F8B0-43EE-BC2B-D9E5ED21F237}" = Microsoft SQL Server VSS Writer
"{BA4DA261-CB60-4690-B202-44998DFC6986}" = Microsoft SQL Server 2008 Setup Support Files
"{BD86C297-41C7-4DB5-82C4-98DE3399A2EF}" = Asistent pro přihlášení ke službě Windows Live
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C4FE00AF-E29D-4220-B118-0B453F3539E0}" = Garmin TOPO Great Britain v2
"{C5F9E6C3-604E-4D1A-BDBF-43DEBDC62F32}" = Garmin Topo Espana
"{C688457E-03FD-4941-923B-A27F4D42A7DD}" = Microsoft SQL Server 2008 Browser
"{C73B5B3B-F974-48CA-8B91-3E8A432AEA5B}" = Microsoft Works
"{C965F01C-76EA-4BD7-973E-46236AE312D7}" = Sql Server Customer Experience Improvement Program
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D17111CB-C992-42A9-9D56-C19395102AAA}" = Garmin WebUpdater
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{DEB6ACEB-C418-4880-9133-1C5EB9AFBC79}" = Eee Storage
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F3494AB6-6900-41C6-AF57-823626827ED8}" = Microsoft SQL Server 2008 Database Engine Shared
"{F62475E6-6F06-4D65-97D3-71D3CB696A1C}" = Windows Live Messenger
"45A7283175C62FAC673F913C1F532C5361F97841" = Windows Driver Package - Garmin (grmnusb) GARMIN Devices (03/08/2007 2.2.1.0)
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Advanced Office Password Recovery" = Advanced Office Password Recovery (remove only)
"avast" = avast! Free Antivirus
"CCleaner" = CCleaner
"cGPSmapper Free_is1" = cGPSmapper Free 0100d
"EASEUS Partition Master Home Edition_is1" = EASEUS Partition Master 9.1.0 Home Edition
"EasyGPS_is1" = EasyGPS 4.18
"ExamDiff_is1" = ExamDiff 1.8 (Build 1.8.0.7)
"Foxit PDF Editor" = Foxit PDF Editor
"FreeUndelete" = FreeUndelete
"GeoGet_is1" = GeoGet 2.6.1.658
"Glary Registry Repair_is1" = Glary Registry Repair 3.3.0.852
"GPSMapEdit_is1" = GPSMapEdit verze 1.0.70.0
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"ie8" = Windows Internet Explorer 8
"InstallShield_{49B7CD99-90EB-4CFD-AA09-6A088B5F42AD}" = Driver Install 32bit
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware verze 1.51.2.1300
"Mapa UMP-pcPL (prawie cała Polska)_is1" = MapSource - UMP-pcPL
"MapSource - PL_Topo_100" = MapSource - PL_Topo_100
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft SQL Server 10" = Microsoft SQL Server 2008
"Microsoft SQL Server 10 Release" = Microsoft SQL Server 2008
"Modelová hypotéka" = Modelová hypotéka
"ModelPrint 1.0.32" = ModelPrint 1.0.32
"ModelPrint 1.0.6" = ModelPrint 1.0.6
"Mozilla Firefox 7.0.1 (x86 cs)" = Mozilla Firefox 7.0.1 (x86 cs)
"nLite_is1" = nLite 1.4
"OpenSSL_is1" = OpenSSL 0.9.8e
"OSM World Routable" = OSM World Routable
"PDF reDirect" = PDF reDirect (remove only)
"Recuva" = Recuva
"Smart Defrag_is1" = Smart Defrag
"Super Ovladač_is1" = Super Ovladač
"USB 2.0 1.3M UVC WebCam" = USB 2.0 1.3M UVC WebCam
"WinRAR archiver" = WinRAR
"WinZip" = WinZip
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 1.11.2011 12:15:28 | Computer Name = N-798D0X0DAFP08 | Source = MsiInstaller | ID = 11335
Description = Product: PartitionMagic -- Error 1335.The cabinet file 'Rescue.cab'
required for this installation is corrupt and cannot be used. This could indicate
a network error, an error reading from the CD-ROM, or a problem with this package.

Error - 1.11.2011 12:15:29 | Computer Name = N-798D0X0DAFP08 | Source = MsiInstaller | ID = 11335
Description = Product: PartitionMagic -- Error 1335.The cabinet file 'Rescue.cab'
required for this installation is corrupt and cannot be used. This could indicate
a network error, an error reading from the CD-ROM, or a problem with this package.

Error - 1.11.2011 12:15:32 | Computer Name = N-798D0X0DAFP08 | Source = MsiInstaller | ID = 11335
Description = Product: PartitionMagic -- Error 1335.The cabinet file 'Rescue.cab'
required for this installation is corrupt and cannot be used. This could indicate
a network error, an error reading from the CD-ROM, or a problem with this package.

Error - 1.11.2011 12:22:08 | Computer Name = N-798D0X0DAFP08 | Source = MsiInstaller | ID = 11335
Description = Product: PartitionMagic -- Error 1335.The cabinet file 'Rescue.cab'
required for this installation is corrupt and cannot be used. This could indicate
a network error, an error reading from the CD-ROM, or a problem with this package.

Error - 1.11.2011 12:22:11 | Computer Name = N-798D0X0DAFP08 | Source = MsiInstaller | ID = 11335
Description = Product: PartitionMagic -- Error 1335.The cabinet file 'Rescue.cab'
required for this installation is corrupt and cannot be used. This could indicate
a network error, an error reading from the CD-ROM, or a problem with this package.

Error - 1.11.2011 12:29:44 | Computer Name = N-798D0X0DAFP08 | Source = MsiInstaller | ID = 11335
Description = Product: PartitionMagic -- Error 1335.The cabinet file 'Rescue.cab'
required for this installation is corrupt and cannot be used. This could indicate
a network error, an error reading from the CD-ROM, or a problem with this package.

Error - 1.11.2011 12:29:47 | Computer Name = N-798D0X0DAFP08 | Source = MsiInstaller | ID = 11335
Description = Product: PartitionMagic -- Error 1335.The cabinet file 'Rescue.cab'
required for this installation is corrupt and cannot be used. This could indicate
a network error, an error reading from the CD-ROM, or a problem with this package.

Error - 2.11.2011 3:23:29 | Computer Name = N-798D0X0DAFP08 | Source = PerfNet | ID = 2002
Description = Nelze otevřít službu přesměrovače. Data o výkonu přesměrovače nejsou
k
dispozici.Vrácený chybový kód je v datech DWORD 0.

Error - 2.11.2011 3:53:44 | Computer Name = N-798D0X0DAFP08 | Source = PerfNet | ID = 2002
Description = Nelze otevřít službu přesměrovače. Data o výkonu přesměrovače nejsou
k
dispozici.Vrácený chybový kód je v datech DWORD 0.

Error - 3.11.2011 3:24:35 | Computer Name = N-798D0X0DAFP08 | Source = PerfNet | ID = 2002
Description = Nelze otevřít službu přesměrovače. Data o výkonu přesměrovače nejsou
k
dispozici.Vrácený chybový kód je v datech DWORD 0.

[ System Events ]
Error - 2.11.2011 3:45:26 | Computer Name = N-798D0X0DAFP08 | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: Aavmker4 AFD aswRdr aswSnx aswSP aswTdi Fips intelppm IPSec RasAcd Tcpip

Error - 2.11.2011 3:47:15 | Computer Name = N-798D0X0DAFP08 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby MSIServer
s argumenty za účelem spuštění serveru: {000C101C-0000-0000-C000-000000000046}

Error - 2.11.2011 3:47:54 | Computer Name = N-798D0X0DAFP08 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 2.11.2011 3:50:23 | Computer Name = N-798D0X0DAFP08 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 2.11.2011 3:53:51 | Computer Name = N-798D0X0DAFP08 | Source = Service Control Manager | ID = 7003
Description = Služba Klient DHCP závisí na následující neexistující službě: NetBT

Error - 2.11.2011 3:53:51 | Computer Name = N-798D0X0DAFP08 | Source = Service Control Manager | ID = 7023
Description = Služba Služby IPSEC byla ukončena s následující chybou: %%1747

Error - 2.11.2011 4:51:23 | Computer Name = N-798D0X0DAFP08 | Source = Windows Update Agent | ID = 16
Description = Připojení se nezdařilo: Připojení ke službě automatických aktualizací
nelze navázat. Stažení a instalaci aktualizací podle tohoto plánu nelze spustit.
Pokus o navázání spojení bude opakován.

Error - 3.11.2011 3:24:14 | Computer Name = N-798D0X0DAFP08 | Source = Print | ID = 19
Description = Došlo k chybě sdílení tiskárny + 1722, tiskárna Canon MPC600F Printer
název sdílení Tiskárna8.

Error - 3.11.2011 3:24:44 | Computer Name = N-798D0X0DAFP08 | Source = Service Control Manager | ID = 7003
Description = Služba Klient DHCP závisí na následující neexistující službě: NetBT

Error - 3.11.2011 3:24:44 | Computer Name = N-798D0X0DAFP08 | Source = Service Control Manager | ID = 7023
Description = Služba Služby IPSEC byla ukončena s následující chybou: %%1747


< End of report >
Nahoru
Odpovědět

Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 97 hostů