PC-HELP.CZ

Občas paměť na 100%, raději vložím log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:11:48, on 30.8.2009
Platform: Unknown Windows (WinNT 6.01.3004)
MSIE: Internet Explorer v8.00 (8.00.7100.0000)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files (x86)\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclIrSrv.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrv.exe
C:\Program Files (x86)\Pidgin\pidgin.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files (x86)\FlashGet\jccatch.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\16.5.0.135\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files (x86)\FlashGet\getflash.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll
O4 - HKLM\..\Run: [Flashget] "C:\Program Files (x86)\FlashGet\FlashGet.exe" /min
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-480390047-3477138860-173982917-1004\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe" -autorun (User 'Kateřina')
O4 - HKUS\S-1-5-21-480390047-3477138860-173982917-1005\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe" -autorun (User 'Laďa')
O8 - Extra context menu item: &Stáhnout &vše FlashGetem - C:\Program Files (x86)\FlashGet\jc_all.htm
O8 - Extra context menu item: &Stáhnout FlashGetem - C:\Program Files (x86)\FlashGet\jc_link.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\FlashGet.exe
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O13 - Gopher Prefix:
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: symres - {AA1061FE-6C41-421F-9344-69640C9732AB} - C:\Program Files (x86)\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll
O23 - Service: Acronis OS Selector Reinstall Service (AcronisOSSReinstallSvc) - Unknown owner - C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Acronis Try And Decide Service (TryAndDecideService) - Unknown owner - C:\Program Files (x86)\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - Unknown owner - C:\Windows\System32\TuneUpDefragService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8662 bytes

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Malwarebytes' Anti-Malware 1.40
Verze databáze: 2719
Windows 6.1.7100

30.8.2009 22:26:06
mbam-log-2009-08-30 (22-25-37).txt

Typ skenu: Rychlý sken
Objektu skenováno: 105100
Uplynulý cas: 4 minute(s), 44 second(s)

Infikované procesy pameti: 0
Infikované pametové moduly: 0
Infikované klíce registru: 0
Infikované hodnoty registru: 0
Infikované položky dat registru: 1
Infikované složky: 0
Infikované soubory: 0

Infikované procesy pameti:
(Žádné zákerné položky nebyly zjišteny)

Infikované pametové moduly:
(Žádné zákerné položky nebyly zjišteny)

Infikované klíce registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované hodnoty registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované položky dat registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoActiveDesktopChanges (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> No action taken.

Infikované složky:
(Žádné zákerné položky nebyly zjišteny)

Infikované soubory:
(Žádné zákerné položky nebyly zjišteny)

Takže spusť znovu MbAM a dej Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- ujistit se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Remove Selected
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
****************************************************************************************************************************************
Stáhni si OTL
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Output klikni na minimal Output.Pod Standard Registry změň na All.. Zatrhni LOP Check a Purity Check. Klikni na Run Scan. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTListIt.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.

Malwarebytes' Anti-Malware 1.40
Database version: 2719
Windows 6.1.7100

30.8.2009 22:43:51
mbam-log-2009-08-30 (22-43-51).txt

Scan type: Quick Scan
Objects scanned: 94488
Time elapsed: 3 minute(s), 17 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 1
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoActiveDesktopChanges (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Fajn, ještě OTL a zítra se ti na to mrkne jaro3, má s Vistou více zkušeností.

OTL Extras logfile created on: 30.8.2009 22:46:49 - Run 1
OTL by OldTimer - Version 3.0.10.7 Folder = C:\Users\Laďa\Desktop
64bit- Ultimate Edition (Version = 6.1.7100) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7100.0)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,01 Gb Available Physical Memory | 50,39% Memory free
4,00 Gb Paging File | 2,59 Gb Available in Paging File | 64,83% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 40,00 Gb Total Space | 20,07 Gb Free Space | 50,18% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 596,17 Gb Total Space | 382,65 Gb Free Space | 64,19% Space Free | Partition Type: NTFS
Drive F: | 192,88 Gb Total Space | 52,02 Gb Free Space | 26,97% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 529,18 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: NEWWES-PC
Current User Name: newwes
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl[@ = cplfile] -- C:\Windows\SysNative\control.exe (Microsoft Corporation)
.hlp[@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html[@ = Opera.HTML] -- C:\Program Files (x86)\Opera\opera.exe (Opera Software)
.inf[@ = inffile] -- C:\Windows\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.ini[@ = inifile] -- C:\Windows\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\System32\ieframe.DLL (Microsoft Corporation)
.js[@ = JSFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.jse[@ = JSEFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.txt[@ = txtfile] -- C:\Windows\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.vbe[@ = VBEFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.vbs[@ = VBSFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.wsf[@ = WSFFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.wsh[@ = WSHFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- C:\Program Files (x86)\Opera\opera.exe (Opera Software)
.url [@ = InternetShortcut] -- C:\Windows\System32\ieframe.DLL (Microsoft Corporation)
.reg [@ = regfile] -- C:\Windows\SysWow64\regedit.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = E7 3D 5E 41 2C C3 C9 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{68660049-8D48-427C-9FF7-139D8340CDC0}" = MSVC80_x64
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2007
"{B0EFB716-085B-4564-8060-212E41F5CE50}" = Windows Live ID Sign-in Assistant
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"NVIDIA Drivers" = NVIDIA Drivers

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0C973594-7DDF-4BD0-84ED-3517F7622037}" = PC Connectivity Solution
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{2300EE96-0A41-4FAB-BD03-989EC44577A0}" = Acronis Disk Director Suite
"{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}" = Skype™ 4.0
"{3D39E775-DDDA-4327-B747-0BDC5F191331}" = Nokia PC Suite
"{52D02A2B-03D2-4E34-A358-DC5D951FD296}" = Nokia Connectivity Cable Driver
"{5888428E-699C-4E71-BF71-94EE06B497DA}" = TuneUp Utilities 2008
"{633A06C3-B709-479A-AAB3-5EE94AD9EE4B}" = Acronis True Image Home
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}" = Microsoft Office Live Add-in 1.4
"{E1BBBAC5-2857-4155-82A6-54492CE88620}" = Opera 9.64
"{F983B4FE-547B-4C44-BAF7-4F4DBA93D548}" = Nokia Software Updater
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Ashampoo Burning Studio 2009 Advanced_is1" = Ashampoo Burning Studio 2009 Advanced
"Aspell Czech Dictionary_is1" = Aspell Czech Dictionary-0.50-2
"CCleaner" = CCleaner (remove only)
"ENTERPRISE" = Microsoft Office Enterprise 2007
"FlashGet" = FlashGet 1.9.0.1012
"Foxit Reader" = Foxit Reader
"FreeCommander_is1" = FreeCommander 2009.02
"GNU Aspell_is1" = GNU Aspell 0.50-3
"GTK 2.0" = GTK+ Runtime 2.14.7 rev a (odstranit)
"HijackThis" = HijackThis 2.0.2
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 4.7.5
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MediaMonkey_is1" = MediaMonkey 3.0
"NIS" = Norton Internet Security
"Nokia PC Suite" = Nokia PC Suite
"Pidgin" = Pidgin
"Revo Uninstaller" = Revo Uninstaller 1.83
"WinRAR archiver" = WinRAR

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 22.8.2009 16:41:51 | Computer Name = newwes-PC | Source = Application Hang | ID = 1002
Description = Program VideoManager.exe verze 7.1.16.0 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
1048 Čas spuštění: 01ca236484c875ed Čas ukončení: 50 Cesta k aplikaci: C:\Program
Files (x86)\Nokia\Nokia PC Suite 7\VideoManager.exe ID hlášení: 7f348ff2-8f5b-11de-adfd-00158307d381


Error - 22.8.2009 17:11:54 | Computer Name = newwes-PC | Source = Application Hang | ID = 1002
Description = Program VideoManager.exe verze 7.1.16.0 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
acc Čas spuštění: 01ca236906a0640f Čas ukončení: 76 Cesta k aplikaci: C:\Program Files
(x86)\Nokia\Nokia PC Suite 7\VideoManager.exe ID hlášení: 084167bf-8f60-11de-adfd-00158307d381


Error - 22.8.2009 21:26:55 | Computer Name = newwes-PC | Source = SideBySide | ID = 16842815
Description = Generování kontextu aktivace pro c:\program files (x86)\freecommander\DelZip179.dll
se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files (x86)\freecommander\DelZip179.dll
na řádku 8. Hodnota * atributu language v prvku assemblyIdentity je neplatná.

Error - 22.8.2009 21:27:06 | Computer Name = newwes-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files (x86)\Nokia\Nokia
PC Suite 7\TIS_VistaPIM.dll se nezdařilo. Závislé sestavení Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 26.8.2009 7:18:07 | Computer Name = newwes-PC | Source = EventSystem | ID = 4621
Description =

Error - 26.8.2009 11:01:44 | Computer Name = newwes-PC | Source = SideBySide | ID = 16842815
Description = Generování kontextu aktivace pro c:\program files (x86)\freecommander\DelZip179.dll
se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files (x86)\freecommander\DelZip179.dll
na řádku 8. Hodnota * atributu language v prvku assemblyIdentity je neplatná.

Error - 26.8.2009 11:01:55 | Computer Name = newwes-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files (x86)\Nokia\Nokia
PC Suite 7\TIS_VistaPIM.dll se nezdařilo. Závislé sestavení Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 27.8.2009 18:29:58 | Computer Name = newwes-PC | Source = SideBySide | ID = 16842815
Description = Generování kontextu aktivace pro c:\program files (x86)\freecommander\DelZip179.dll
se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files (x86)\freecommander\DelZip179.dll
na řádku 8. Hodnota * atributu language v prvku assemblyIdentity je neplatná.

Error - 27.8.2009 18:30:04 | Computer Name = newwes-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files (x86)\Nokia\Nokia
PC Suite 7\TIS_VistaPIM.dll se nezdařilo. Závislé sestavení Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 30.8.2009 3:57:40 | Computer Name = newwes-PC | Source = EventSystem | ID = 4621
Description =

[ System Events ]
Error - 26.8.2009 7:27:31 | Computer Name = newwes-PC | Source = cdrom | ID = 262151
Description = Zařízení \Device\CdRom0 má chybný blok.

Error - 26.8.2009 7:27:40 | Computer Name = newwes-PC | Source = cdrom | ID = 262151
Description = Zařízení \Device\CdRom0 má chybný blok.

Error - 26.8.2009 7:27:50 | Computer Name = newwes-PC | Source = cdrom | ID = 262151
Description = Zařízení \Device\CdRom0 má chybný blok.

Error - 26.8.2009 7:29:25 | Computer Name = newwes-PC | Source = cdrom | ID = 262151
Description = Zařízení \Device\CdRom0 má chybný blok.

Error - 26.8.2009 7:30:03 | Computer Name = newwes-PC | Source = cdrom | ID = 262151
Description = Zařízení \Device\CdRom0 má chybný blok.

Error - 26.8.2009 7:30:03 | Computer Name = newwes-PC | Source = cdrom | ID = 262151
Description = Zařízení \Device\CdRom0 má chybný blok.

Error - 26.8.2009 7:38:03 | Computer Name = newwes-PC | Source = Microsoft-Windows-Kernel-Processor-Power | ID = 6
Description = Některé funkce řízení napájení při činnosti procesoru byly zakázány
z důvodu potíží s firmwarem. Požádejte výrobce počítače o aktualizovaný firmware.

Error - 26.8.2009 7:38:17 | Computer Name = newwes-PC | Source = Service Control Manager | ID = 7023
Description = Služba TuneUp Theme Extension byla ukončena s následující chybou:
%%127

Error - 26.8.2009 7:38:42 | Computer Name = newwes-PC | Source = DCOM | ID = 10010
Description =

Error - 27.8.2009 18:45:32 | Computer Name = newwes-PC | Source = volsnap | ID = 393252
Description = Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného
uživatelem se nepodařilo zvětšit úložiště stínové kopie.


< End of report >

Je to velké, rozdělěno na 1/2.
1. půlka:


OTL logfile created on: 30.8.2009 22:46:49 - Run 1
OTL by OldTimer - Version 3.0.10.7 Folder = C:\Users\Laďa\Desktop
64bit- Ultimate Edition (Version = 6.1.7100) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7100.0)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,01 Gb Available Physical Memory | 50,39% Memory free
4,00 Gb Paging File | 2,59 Gb Available in Paging File | 64,83% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 40,00 Gb Total Space | 20,07 Gb Free Space | 50,18% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 596,17 Gb Total Space | 382,65 Gb Free Space | 64,19% Space Free | Partition Type: NTFS
Drive F: | 192,88 Gb Total Space | 52,02 Gb Free Space | 26,97% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 529,18 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: NEWWES-PC
Current User Name: newwes
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Program Files (x86)\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe (Symantec Corporation)
PRC - C:\Program Files (x86)\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe ()
PRC - C:\Program Files (x86)\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe (Symantec Corporation)
PRC - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
PRC - C:\Program Files (x86)\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe (Symantec Corporation)
PRC - C:\Program Files (x86)\FlashGet\flashget.exe (FlashGet.com)
PRC - C:\Program Files (x86)\Opera\opera.exe (Opera Software)
PRC - C:\Program Files (x86)\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe (Symantec Corporation)
PRC - C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
PRC - C:\Program Files (x86)\FlashGet\flashget.exe (FlashGet.com)
PRC - C:\Program Files (x86)\PC Connectivity Solution\Transports\NclIrSrv.exe (Nokia)
PRC - C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe (Nokia)
PRC - C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrv.exe (Nokia)
PRC - C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe (Trend Micro Inc.)
PRC - C:\Users\Laďa\Desktop\OTL.exe (OldTimer Tools)

========== Win32 Services (SafeList) ==========

SRV:64bit: - (AppIDSvc [On_Demand | Stopped]) -- C:\Windows\SysNative\appidsvc.dll (Microsoft Corporation)
SRV:64bit: - (AppMgmt [On_Demand | Stopped]) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV:64bit: - (AxInstSV [On_Demand | Stopped]) -- C:\Windows\SysNative\AxInstSV.dll (Microsoft Corporation)
SRV:64bit: - (BDESVC [Unknown | Stopped]) -- C:\Windows\SysNative\bdesvc.dll (Microsoft Corporation)
SRV:64bit: - (bthserv [On_Demand | Running]) -- C:\Windows\SysNative\bthserv.dll (Microsoft Corporation)
SRV:64bit: - (CscService [Auto | Running]) -- C:\Windows\SysNative\cscsvc.dll (Microsoft Corporation)
SRV:64bit: - (defragsvc [On_Demand | Stopped]) -- C:\Windows\SysNative\defragsvc.dll (Microsoft Corporation)
SRV:64bit: - (Dhcp [Auto | Running]) -- C:\Windows\SysNative\dhcpcore.dll (Microsoft Corporation)
SRV:64bit: - (Fax [On_Demand | Stopped]) -- C:\Windows\SysNative\fxssvc.exe (Microsoft Corporation)
SRV:64bit: - (FontCache [On_Demand | Stopped]) -- C:\Windows\SysNative\FntCache.dll (Microsoft Corporation)
SRV:64bit: - (HomeGroupListener [On_Demand | Running]) -- C:\Windows\SysNative\ListSvc.dll (Microsoft Corporation)
SRV:64bit: - (HomeGroupProvider [On_Demand | Running]) -- C:\Windows\SysNative\provsvc.dll (Microsoft Corporation)
SRV:64bit: - (Irmon [Auto | Running]) -- C:\Windows\SysNative\irmon.dll (Microsoft Corporation)
SRV:64bit: - (p2pimsvc [On_Demand | Running]) -- C:\Windows\SysNative\pnrpsvc.dll (Microsoft Corporation)
SRV:64bit: - (PeerDistSvc [On_Demand | Stopped]) -- C:\Windows\SysNative\peerdistsvc.dll (Microsoft Corporation)
SRV:64bit: - (PNRPAutoReg [On_Demand | Stopped]) -- C:\Windows\SysNative\pnrpauto.dll (Microsoft Corporation)
SRV:64bit: - (PNRPsvc [On_Demand | Running]) -- C:\Windows\SysNative\pnrpsvc.dll (Microsoft Corporation)
SRV:64bit: - (Power [Auto | Running]) -- C:\Windows\SysNative\umpo.dll (Microsoft Corporation)
SRV:64bit: - (RpcEptMapper [Unknown | Running]) -- C:\Windows\SysNative\RpcEpMap.dll (Microsoft Corporation)
SRV:64bit: - (SensrSvc [On_Demand | Stopped]) -- C:\Windows\SysNative\sensrsvc.dll (Microsoft Corporation)
SRV:64bit: - (sppsvc [Auto | Stopped]) -- C:\Windows\SysNative\sppsvc.exe (Microsoft Corporation)
SRV:64bit: - (sppuinotify [On_Demand | Stopped]) -- C:\Windows\SysNative\sppuinotify.dll (Microsoft Corporation)
SRV:64bit: - (Themes [Auto | Running]) -- C:\Windows\SysNative\themeservice.dll (Microsoft Corporation)
SRV:64bit: - (TuneUp.Defrag [On_Demand | Stopped]) -- C:\Windows\SysNative\TuneUpDefragService.exe (TuneUp Software GmbH)
SRV:64bit: - (UmRdpService [On_Demand | Stopped]) -- C:\Windows\SysNative\umrdp.dll (Microsoft Corporation)
SRV:64bit: - (UxTuneUp [Auto | Stopped]) -- C:\Windows\SysNative\uxtuneup.dll (TuneUp Software GmbH)
SRV:64bit: - (wbengine [On_Demand | Stopped]) -- C:\Windows\SysNative\wbengine.exe (Microsoft Corporation)
SRV:64bit: - (WbioSrvc [On_Demand | Stopped]) -- C:\Windows\SysNative\wbiosrvc.dll (Microsoft Corporation)
SRV:64bit: - (WinDefend [On_Demand | Stopped]) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV:64bit: - (wlidsvc [Auto | Running]) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
SRV:64bit: - (WMPNetworkSvc [Auto | Running]) -- C:\Program Files\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
SRV:64bit: - (WwanSvc [On_Demand | Stopped]) -- C:\Windows\SysNative\wwansvc.dll (Microsoft Corporation)
SRV - (AcronisOSSReinstallSvc [Auto | Stopped]) -- C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe ()
SRV - (AcrSch2Svc [Auto | Running]) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe (Acronis)
SRV - (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_64 [On_Demand | Stopped]) -- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (Dhcp [Auto | Running]) -- C:\Windows\SysWow64\dhcpcore.dll (Microsoft Corporation)
SRV - (ehRecvr [On_Demand | Stopped]) -- C:\Windows\ehome\ehRecvr.exe (Microsoft Corporation)
SRV - (ehSched [On_Demand | Stopped]) -- C:\Windows\ehome\ehsched.exe (Microsoft Corporation)
SRV - (FontCache3.0.0.0 [On_Demand | Stopped]) -- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation)
SRV - (HomeGroupProvider [On_Demand | Running]) -- C:\Windows\SysWow64\provsvc.dll (Microsoft Corporation)
SRV - (idsvc [Unknown | Stopped]) -- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe (Microsoft Corporation)
SRV - (KeyIso [On_Demand | Running]) -- C:\Windows\SysWow64\keyiso.dll (Microsoft Corporation)
SRV - (Microsoft Office Groove Audit Service [On_Demand | Stopped]) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe (Microsoft Corporation)
SRV - (MSDTC [Unknown | Stopped]) -- C:\Windows\SysWow64\Msdtc [2009.04.22 09:16:43 | 00,000,000 | ---D | M]
SRV - (Netlogon [On_Demand | Stopped]) -- C:\Windows\SysWow64\netlogon.dll (Microsoft Corporation)
SRV - (Norton Internet Security [Auto | Running]) -- C:\Program Files (x86)\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe (Symantec Corporation)
SRV - (odserv [On_Demand | Stopped]) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose [On_Demand | Stopped]) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (ServiceLayer [On_Demand | Running]) -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
SRV - (TryAndDecideService [Auto | Running]) -- C:\Program Files (x86)\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe ()
SRV - (UxTuneUp [Auto | Stopped]) -- C:\Windows\SysWow64\uxtuneup.dll (TuneUp Software GmbH)
SRV - (vds [On_Demand | Stopped]) -- C:\Windows\SysWow64\Wbem\vds.mof ()
SRV - (VSS [On_Demand | Stopped]) -- C:\Windows\Vss [2009.04.22 09:16:44 | 00,000,000 | ---D | M]

========== Driver Services (SafeList) ==========

DRV:64bit: - (1394ohci [On_Demand | Running]) -- C:\Windows\SysNative\DRIVERS\1394ohci.sys (Microsoft Corporation)
DRV:64bit: - (AcpiPmi [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\acpipmi.sys (Microsoft Corporation)
DRV:64bit: - (ALCXWDM [On_Demand | Running]) -- C:\Windows\SysNative\drivers\RTKVAC64.SYS (Realtek Semiconductor Corp.)
DRV:64bit: - (AmdPPM [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\amdppm.sys (Microsoft Corporation)
DRV:64bit: - (amdsata [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\amdsata.sys (AMD)
DRV:64bit: - (amdsbs [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (amdxata [Boot | Running]) -- C:\Windows\SysNative\DRIVERS\amdxata.sys (AMD)
DRV:64bit: - (AppID [On_Demand | Stopped]) -- C:\Windows\SysNative\drivers\appid.sys (Microsoft Corporation)
DRV:64bit: - (b06bdrv [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (Beep [System | Running]) -- C:\Windows\SysNative\drivers\beep.sys (Microsoft Corporation)
DRV:64bit: - (BHDrvx64 [System | Running]) -- C:\Windows\SysNative\drivers\NISx64\1005000.087\BHDrvx64.sys (Symantec Corporation)
DRV:64bit: - (BthEnum [On_Demand | Running]) -- C:\Windows\SysNative\DRIVERS\BthEnum.sys (Microsoft Corporation)
DRV:64bit: - (BthPan [On_Demand | Running]) -- C:\Windows\SysNative\DRIVERS\bthpan.sys (Microsoft Corporation)
DRV:64bit: - (BTHPORT [On_Demand | Stopped]) -- C:\Windows\SysNative\Drivers\BTHport.sys (Microsoft Corporation)
DRV:64bit: - (BTHUSB [On_Demand | Running]) -- C:\Windows\SysNative\Drivers\BTHUSB.sys (Microsoft Corporation)
DRV:64bit: - (ccHP [System | Running]) -- C:\Windows\SysNative\Drivers\NISx64\1005000.087\ccHPx64.sys (Symantec Corporation)
DRV:64bit: - (CmBatt [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\CmBatt.sys (Microsoft Corporation)
DRV:64bit: - (CNG [Boot | Running]) -- C:\Windows\SysNative\Drivers\cng.sys (Microsoft Corporation)
DRV:64bit: - (CompositeBus [On_Demand | Running]) -- C:\Windows\SysNative\DRIVERS\CompositeBus.sys (Microsoft Corporation)
DRV:64bit: - (CSC [System | Running]) -- C:\Windows\SysNative\drivers\csc.sys (Microsoft Corporation)
DRV:64bit: - (discache [System | Running]) -- C:\Windows\SysNative\drivers\discache.sys (Microsoft Corporation)
DRV:64bit: - (ebdrv [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\evbda.sys (Broadcom Corporation)
DRV:64bit: - (FsDepends [On_Demand | Stopped]) -- C:\Windows\SysNative\drivers\FsDepends.sys (Microsoft Corporation)
DRV:64bit: - (fvevol [Boot | Running]) -- C:\Windows\SysNative\DRIVERS\fvevol.sys (Microsoft Corporation)
DRV:64bit: - (hcw85cir [On_Demand | Stopped]) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (HidBatt [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\HidBatt.sys (Microsoft Corporation)
DRV:64bit: - (HpSAMD [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (hwpolicy [Boot | Running]) -- C:\Windows\SysNative\drivers\hwpolicy.sys (Microsoft Corporation)
DRV:64bit: - (irda [Auto | Running]) -- C:\Windows\SysNative\DRIVERS\irda.sys (Microsoft Corporation)
DRV:64bit: - (irsir [On_Demand | Running]) -- C:\Windows\SysNative\DRIVERS\irsir.sys (Microsoft Corporation)
DRV:64bit: - (KSecPkg [Boot | Running]) -- C:\Windows\SysNative\Drivers\ksecpkg.sys (Microsoft Corporation)
DRV:64bit: - (LSI_SAS2 [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (lvpepf64 [On_Demand | Running]) -- C:\Windows\SysNative\DRIVERS\lv302a64.sys (Logitech Inc.)
DRV:64bit: - (LVRS64 [On_Demand | Running]) -- C:\Windows\SysNative\DRIVERS\lvrs64.sys (Logitech Inc.)
DRV:64bit: - (LVUSBS64 [On_Demand | Running]) -- C:\Windows\SysNative\drivers\LVUSBS64.sys (Logitech Inc.)
DRV:64bit: - (mshidkmdf [On_Demand | Stopped]) -- C:\Windows\SysNative\drivers\mshidkmdf.sys (Microsoft Corporation)
DRV:64bit: - (MTConfig [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\MTConfig.sys (Microsoft Corporation)
DRV:64bit: - (NdisCap [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\ndiscap.sys (Microsoft Corporation)
DRV:64bit: - (nmwcdcx64 [On_Demand | Stopped]) -- C:\Windows\SysNative\drivers\ccdcmbox64.sys (Nokia)
DRV:64bit: - (nmwcdx64 [On_Demand | Stopped]) -- C:\Windows\SysNative\drivers\ccdcmbx64.sys (Nokia)
DRV:64bit: - (NVENETFD [On_Demand | Running]) -- C:\Windows\SysNative\DRIVERS\nvm62x64.sys (NVIDIA Corporation)
DRV:64bit: - (pccsmcfd [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\pccsmcfdx64.sys (Nokia)
DRV:64bit: - (pcw [Boot | Running]) -- C:\Windows\SysNative\drivers\pcw.sys (Microsoft Corporation)
DRV:64bit: - (PID_PEPI [On_Demand | Running]) -- C:\Windows\SysNative\DRIVERS\LV302V64.SYS (Logitech Inc.)
DRV:64bit: - (RasAgileVpn [On_Demand | Running]) -- C:\Windows\SysNative\DRIVERS\AgileVpn.sys (Microsoft Corporation)
DRV:64bit: - (rdpbus [On_Demand | Running]) -- C:\Windows\SysNative\DRIVERS\rdpbus.sys (Microsoft Corporation)
DRV:64bit: - (RDPREFMP [System | Running]) -- C:\Windows\SysNative\drivers\rdprefmp.sys (Microsoft Corporation)
DRV:64bit: - (rdyboost [Boot | Running]) -- C:\Windows\SysNative\drivers\rdyboost.sys (Microsoft Corporation)
DRV:64bit: - (RFCOMM [On_Demand | Running]) -- C:\Windows\SysNative\DRIVERS\rfcomm.sys (Microsoft Corporation)
DRV:64bit: - (s3cap [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\vms3cap.sys (Microsoft Corporation)
DRV:64bit: - (scfilter [Unknown | Stopped]) -- C:\Windows\SysNative\DRIVERS\scfilter.sys (Microsoft Corporation)
DRV:64bit: - (Si3114r5 [Boot | Running]) -- C:\Windows\SysNative\DRIVERS\Si3114r5.sys (Silicon Image, Inc)
DRV:64bit: - (SiFilter [Boot | Running]) -- C:\Windows\SysNative\DRIVERS\SiWinAcc.sys (Silicon Image, Inc.)
DRV:64bit: - (SiRemFil [Boot | Running]) -- C:\Windows\SysNative\DRIVERS\SiRemFil.sys (Silicon Image, Inc.)
DRV:64bit: - (snapman [Boot | Running]) -- C:\Windows\SysNative\DRIVERS\snapman.sys (Acronis)
DRV:64bit: - (sptd [Boot | Running]) -- C:\Windows\SysNative\Drivers\sptd.sys ()
DRV:64bit: - (SRTSP [On_Demand | Running]) -- C:\Windows\SysNative\Drivers\NISx64\1005000.087\SRTSP64.SYS (Symantec Corporation)
DRV:64bit: - (SRTSPX [System | Running]) -- C:\Windows\SysNative\drivers\NISx64\1005000.087\SRTSPX64.SYS (Symantec Corporation)
DRV:64bit: - (stexstor [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\stexstor.sys (Promise Technology)
DRV:64bit: - (storflt [Boot | Running]) -- C:\Windows\SysNative\DRIVERS\vmstorfl.sys (Microsoft Corporation)
DRV:64bit: - (storvsc [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\storvsc.sys (Microsoft Corporation)
DRV:64bit: - (SymEFA [Boot | Running]) -- C:\Windows\SysNative\drivers\NISx64\1005000.087\SYMEFA64.SYS (Symantec Corporation)
DRV:64bit: - (SymEvent [On_Demand | Running]) -- C:\Windows\SysNative\Drivers\SYMEVENT64x86.SYS (Symantec Corporation)
DRV:64bit: - (SYMFW [On_Demand | Running]) -- C:\Windows\SysNative\Drivers\NISx64\1005000.087\SYMFW.SYS (Symantec Corporation)
DRV:64bit: - (SymIM [System | Running]) -- C:\Windows\SysNative\DRIVERS\SymIMv.sys (Symantec Corporation)
DRV:64bit: - (SYMNDISV [On_Demand | Running]) -- C:\Windows\SysNative\Drivers\NISx64\1005000.087\SYMNDISV.SYS (Symantec Corporation)
DRV:64bit: - (SYMTDI [System | Running]) -- C:\Windows\SysNative\Drivers\NISx64\1005000.087\SYMTDI.SYS (Symantec Corporation)
DRV:64bit: - (tdrpman [Boot | Running]) -- C:\Windows\SysNative\DRIVERS\tdrpman.sys (Acronis)
DRV:64bit: - (tifsfilter [Auto | Running]) -- C:\Windows\SysNative\DRIVERS\tifsfilt.sys (Acronis)
DRV:64bit: - (timounter [Boot | Running]) -- C:\Windows\SysNative\DRIVERS\timntr.sys (Acronis)
DRV:64bit: - (UmPass [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\umpass.sys (Microsoft Corporation)
DRV:64bit: - (upperdev [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\usbser_lowerfltx64.sys (Nokia)
DRV:64bit: - (usbaudio [On_Demand | Running]) -- C:\Windows\SysNative\drivers\usbaudio.sys (Microsoft Corporation)
DRV:64bit: - (usbser [On_Demand | Stopped]) -- C:\Windows\SysNative\drivers\usbser.sys (Microsoft Corporation)
DRV:64bit: - (UsbserFilt [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\usbser_lowerfltx64j.sys (Nokia)
DRV:64bit: - (vdrvroot [Boot | Running]) -- C:\Windows\SysNative\DRIVERS\vdrvroot.sys (Microsoft Corporation)
DRV:64bit: - (vhdmp [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\vhdmp.sys (Microsoft Corporation)
DRV:64bit: - (vmbus [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\vmbus.sys (Microsoft Corporation)
DRV:64bit: - (VMBusHID [On_Demand | Stopped]) -- C:\Windows\SysNative\DRIVERS\VMBusHID.sys (Microsoft Corporation)
DRV:64bit: - (vwifibus [On_Demand | Stopped]) -- C:\Windows\SysNative\drivers\vwifibus.sys (Microsoft Corporation)
DRV:64bit: - (WfpLwf [System | Running]) -- C:\Windows\SysNative\DRIVERS\wfplwf.sys (Microsoft Corporation)
DRV:64bit: - (WIMMount [On_Demand | Stopped]) -- C:\Windows\SysNative\drivers\wimmount.sys (Microsoft Corporation)
DRV:64bit: - (WudfPf [On_Demand | Running]) -- C:\Windows\SysNative\drivers\WudfPf.sys (Microsoft Corporation)
DRV:64bit: - (yukonw7 [On_Demand | Running]) -- C:\Windows\SysNative\DRIVERS\yk62x64.sys (Marvell)
DRV - (CSC [System | Running]) -- C:\Windows\CSC [2009.08.07 23:00:45 | 00,000,000 | ---D | M]
DRV - (eeCtrl [System | Running]) -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys (Symantec Corporation)
DRV - (EraserUtilRebootDrv [On_Demand | Running]) -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation)
DRV - (IDSVia64 [System | Running]) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\ipsdefs\20090810.001\IDSvia64.sys (Symantec Corporation)
DRV - (mpsdrv [On_Demand | Running]) -- C:\Windows\SysWow64\Wbem\mpsdrv.mof ()
DRV - (NAVENG [On_Demand | Running]) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090830.005\ENG64.SYS (Symantec Corporation)
DRV - (NAVEX15 [On_Demand | Running]) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090830.005\EX64.SYS (Symantec Corporation)
DRV - (NetBIOS [System | Running]) -- C:\Windows\SysWow64\netbios.dll (Microsoft Corporation)
DRV - (Tcpip [Boot | Running]) -- C:\Windows\SysWow64\Wbem\tcpip.mof ()
DRV - (WIMMount [On_Demand | Stopped]) -- C:\Windows\SysWow64\drivers\wimmount.sys (Microsoft Corporation)

========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009.04.22 11:45:19 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: C:\Program Files (x86)\Nokia\Nokia PC Suite 7\bkmrksync\ [2009.08.14 13:54:57 | 00,000,000 | ---D | M]


O1 HOSTS File: (824 bytes) - C:\Windows\SysNative\drivers\etc\Hosts
O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (FGCatchUrl) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files (x86)\FlashGet\jccatch.dll (www.flashget.com)
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\16.5.0.135\IPSBHO.DLL (Symantec Corporation)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (FlashGet GetFlash Class) - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files (x86)\FlashGet\getflash.dll (www.flashget.com)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll (Symantec Corporation)
O4 - HKLM..\Run: [Flashget] C:\Program Files (x86)\FlashGet\FlashGet.exe (FlashGet.com)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKCU..\Run: [PC Suite Tray] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8:64bit: - Extra context menu item: &Stáhnout &vše FlashGetem - C:\Program Files (x86)\FlashGet\jc_all.htm ()
O8:64bit: - Extra context menu item: &Stáhnout FlashGetem - C:\Program Files (x86)\FlashGet\jc_link.htm ()
O8 - Extra context menu item: &Stáhnout &vše FlashGetem - C:\Program Files (x86)\FlashGet\jc_all.htm ()
O8 - Extra context menu item: &Stáhnout FlashGetem - C:\Program Files (x86)\FlashGet\jc_link.htm ()
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\FlashGet.exe (FlashGet.com)
O9 - Extra 'Tools' menuitem : FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\FlashGet.exe (FlashGet.com)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysNative\NLAapi.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysNative\winrnr.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysNative\napinsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\SysNative\wshbth.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWow64\NLAapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWow64\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWow64\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWow64\napinsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWow64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWow64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\SysWow64\wshbth.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWow64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWow64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWow64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWow64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWow64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWow64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWow64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWow64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWow64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWow64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\SysWow64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\SysWow64\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.1 192.168.1.1
O18:64bit: - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysNative\msvidctl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysNative\inetcomm.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\symres {AA1061FE-6C41-421f-9344-69640C9732AB} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysNative\msvidctl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWow64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWow64\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWow64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\symres {AA1061FE-6C41-421f-9344-69640C9732AB} - C:\Program Files (x86)\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll (Symantec Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter: - application/octet-stream - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter: - application/x-complus - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter: - application/x-msdownload - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter: - deflate - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter: - gzip - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter: - text/xml - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter: - application/octet-stream - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter: - application/x-complus - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter: - application/x-msdownload - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter: - deflate - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter: - gzip - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter: - text/xml - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\SysNative\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\SysWOW64\webcheck.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29:64bit: - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O30:64bit: - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Authentication Packages - (relog_ap) - C:\Windows\SysNative\relog_ap.dll (Acronis)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (relog_ap) - C:\Windows\SysWow64\relog_ap.dll (Acronis)
O30:64bit: - LSA: Security Packages - (kerberos) - C:\Windows\SysNative\kerberos.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (schannel) - C:\Windows\SysNative\schannel.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (wdigest) - C:\Windows\SysNative\wdigest.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (tspkg) - C:\Windows\SysNative\tspkg.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (livessp) - C:\Windows\SysNative\livessp.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\SysWow64\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\SysWow64\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\SysWow64\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\SysWow64\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - C:\Windows\SysWow64\livessp.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004.05.25 18:54:00 | 00,000,049 | R--- | M] () - J:\Autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\SysWow64\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found

========== Files/Folders - Created Within 30 Days ==========

[2009.08.30 22:19:53 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Roaming\Malwarebytes
[2009.08.30 22:19:50 | 00,001,009 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009.08.30 22:19:47 | 00,038,160 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2009.08.30 22:19:43 | 00,022,040 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2009.08.30 22:19:43 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2009.08.30 22:19:43 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2009.08.30 22:11:29 | 00,002,093 | ---- | C] () -- C:\Users\newwes\Desktop\HijackThis.lnk
[2009.08.30 22:11:28 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Trend Micro
[2009.08.30 21:57:29 | 00,001,885 | ---- | C] () -- C:\Users\newwes\Desktop\CCleaner.lnk
[2009.08.30 21:57:28 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\CCleaner
[2009.08.26 13:17:30 | 00,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ListSvc.dll
[2009.08.23 10:01:53 | 00,000,000 | ---D | C] -- C:\Windows\Minidump
[2009.08.23 10:01:48 | 27,262,8283 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2009.08.21 15:25:50 | 00,000,000 | ---D | C] -- C:\Downloads
[2009.08.21 15:21:46 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Roaming\FlashGet
[2009.08.21 15:21:35 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\FlashGet
[2009.08.21 13:22:43 | 00,278,528 | ---- | C] (Real Networks, Inc) -- C:\Windows\SysWow64\pncrt.dll
[2009.08.21 13:22:43 | 00,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
[2009.08.21 13:22:43 | 00,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
[2009.08.21 13:22:43 | 00,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
[2009.08.21 13:22:42 | 00,168,448 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2009.08.21 13:22:40 | 00,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\Windows\SysWow64\lameACM.acm
[2009.08.21 13:22:40 | 00,000,414 | ---- | C] () -- C:\Windows\SysWow64\lame_acm.xml
[2009.08.21 13:22:39 | 00,217,088 | ---- | C] (www.helixcommunity.org) -- C:\Windows\SysWow64\yv12vfw.dll
[2009.08.21 13:22:39 | 00,118,784 | ---- | C] (fccHandler) -- C:\Windows\SysWow64\ac3acm.acm
[2009.08.21 13:22:38 | 00,795,648 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2009.08.21 13:22:38 | 00,130,048 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2009.08.21 13:22:37 | 03,596,288 | ---- | C] () -- C:\Windows\SysWow64\qt-dx331.dll
[2009.08.21 13:22:37 | 00,086,016 | ---- | C] (DivX, Inc.) -- C:\Windows\SysWow64\dpl100.dll
[2009.08.21 13:22:36 | 00,684,032 | ---- | C] (DivX, Inc.) -- C:\Windows\SysWow64\divx.dll
[2009.08.21 13:22:35 | 00,067,584 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2009.08.21 13:22:35 | 00,000,547 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll.manifest
[2009.08.21 13:22:33 | 00,060,273 | ---- | C] (Open Source Software community project) -- C:\Windows\SysWow64\pthreadGC2.dll
[2009.08.21 13:22:32 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Roaming\Real
[2009.08.21 13:22:32 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Local\Real
[2009.08.21 13:22:32 | 00,000,000 | ---D | C] -- C:\ProgramData\Real
[2009.08.21 13:22:32 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\K-Lite Codec Pack
[2009.08.21 10:29:21 | 00,402,992 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\SymEFA64.sys
[2009.08.21 10:29:21 | 00,278,576 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\symtdi.sys
[2009.08.21 10:29:21 | 00,120,880 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\symfw.sys
[2009.08.21 10:29:21 | 00,056,880 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\symndisv.sys
[2009.08.21 10:29:21 | 00,044,080 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\symndis.sys
[2009.08.21 10:29:21 | 00,043,568 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\symids.sys
[2009.08.21 10:29:21 | 00,032,304 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\srtspx64.sys
[2009.08.21 10:29:21 | 00,009,415 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\SymNet.cat
[2009.08.21 10:29:21 | 00,007,401 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\srtspx64.cat
[2009.08.21 10:29:21 | 00,007,399 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\SymEFA64.cat
[2009.08.21 10:29:21 | 00,003,373 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\SymEFA.inf
[2009.08.21 10:29:21 | 00,001,480 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\SymNet.inf
[2009.08.21 10:29:21 | 00,001,421 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\srtspx64.inf
[2009.08.21 10:29:20 | 00,476,720 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\srtsp64.sys
[2009.08.21 10:29:20 | 00,334,384 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\BHDrvx64.sys
[2009.08.21 10:29:20 | 00,007,410 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\srtsp64.cat
[2009.08.21 10:29:20 | 00,007,362 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\bhdrvx64.cat
[2009.08.21 10:29:20 | 00,007,345 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\ccHPx64.cat
[2009.08.21 10:29:20 | 00,001,836 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\ccHPx64.inf
[2009.08.21 10:29:20 | 00,001,437 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\srtsp64.inf
[2009.08.21 10:29:20 | 00,000,640 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\BHDrvx64.inf
[2009.08.21 10:29:05 | 00,583,296 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\cchpx64.sys
[2009.08.21 10:29:03 | 00,009,412 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\symnetv.cat
[2009.08.21 10:29:03 | 00,001,481 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\SymNetV.inf
[2009.08.21 10:29:03 | 00,000,172 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\isolate.ini
[2009.08.21 10:29:03 | 00,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NISx64\1007020.00A
[2009.08.20 00:25:42 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Roaming\Acronis
[2009.08.19 22:37:45 | 02,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2009.08.19 22:37:45 | 01,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll
[2009.08.19 22:37:45 | 00,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2009.08.19 22:37:45 | 00,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll
[2009.08.19 22:37:43 | 05,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll
[2009.08.19 22:37:43 | 04,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2009.08.19 22:37:42 | 00,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2009.08.19 22:37:42 | 00,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2009.08.19 22:37:42 | 00,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2009.08.19 22:37:42 | 00,069,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2009.08.19 22:37:41 | 00,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2009.08.19 22:37:41 | 00,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2009.08.19 22:37:40 | 00,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2009.08.19 22:37:40 | 00,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2009.08.19 22:37:38 | 02,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2009.08.19 22:37:38 | 02,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2009.08.19 22:37:38 | 00,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2009.08.19 22:37:38 | 00,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2009.08.19 22:37:36 | 05,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2009.08.19 22:37:36 | 04,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2009.08.19 22:37:35 | 00,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2009.08.19 22:37:35 | 00,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2009.08.19 22:37:35 | 00,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2009.08.19 22:37:35 | 00,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2009.08.19 22:37:33 | 00,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2009.08.19 22:37:33 | 00,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2009.08.19 22:37:33 | 00,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2009.08.19 22:37:33 | 00,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2009.08.19 22:37:31 | 00,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2009.08.19 22:37:31 | 00,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2009.08.19 22:37:31 | 00,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2009.08.19 22:37:31 | 00,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2009.08.19 22:37:30 | 00,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2009.08.19 22:37:30 | 00,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2009.08.19 22:37:29 | 01,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2009.08.19 22:37:29 | 01,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2009.08.19 22:37:29 | 00,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2009.08.19 22:37:29 | 00,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2009.08.19 22:37:28 | 04,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2009.08.19 22:37:28 | 03,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2009.08.19 22:37:26 | 00,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2009.08.19 22:37:26 | 00,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2009.08.19 22:37:26 | 00,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2009.08.19 22:37:26 | 00,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2009.08.19 22:37:25 | 00,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll

Zbytek:


[2009.08.19 22:37:25 | 00,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2009.08.19 22:37:24 | 00,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2009.08.19 22:37:24 | 00,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2009.08.19 22:37:23 | 01,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2009.08.19 22:37:23 | 01,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2009.08.19 22:37:23 | 00,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2009.08.19 22:37:23 | 00,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2009.08.19 22:37:22 | 04,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2009.08.19 22:37:22 | 03,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2009.08.19 22:37:21 | 00,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2009.08.19 22:37:21 | 00,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2009.08.19 22:37:20 | 00,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2009.08.19 22:37:20 | 00,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2009.08.19 22:37:20 | 00,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2009.08.19 22:37:20 | 00,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2009.08.19 22:37:18 | 01,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2009.08.19 22:37:18 | 01,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2009.08.19 22:37:18 | 00,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2009.08.19 22:37:18 | 00,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2009.08.19 22:37:17 | 04,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2009.08.19 22:37:17 | 03,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2009.08.19 22:37:16 | 00,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2009.08.19 22:37:16 | 00,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2009.08.19 22:37:13 | 02,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2009.08.19 22:37:13 | 01,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2009.08.19 22:37:13 | 00,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2009.08.19 22:37:13 | 00,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2009.08.19 22:37:12 | 05,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2009.08.19 22:37:12 | 03,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2009.08.19 22:37:09 | 00,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2009.08.19 22:37:09 | 00,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2009.08.19 22:37:07 | 01,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll
[2009.08.19 22:37:07 | 01,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2009.08.19 22:37:07 | 00,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2009.08.19 22:37:07 | 00,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2009.08.19 22:37:05 | 05,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2009.08.19 22:37:05 | 03,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2009.08.19 22:37:03 | 00,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2009.08.19 22:37:03 | 00,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2009.08.19 22:37:03 | 00,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2009.08.19 22:37:03 | 00,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2009.08.19 22:37:02 | 01,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2009.08.19 22:37:02 | 01,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2009.08.19 22:37:02 | 00,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2009.08.19 22:37:02 | 00,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2009.08.19 22:37:01 | 04,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2009.08.19 22:37:01 | 03,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2009.08.19 22:37:00 | 00,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2009.08.19 22:37:00 | 00,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2009.08.19 22:36:57 | 00,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2009.08.19 22:36:57 | 00,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2009.08.19 22:36:55 | 01,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2009.08.19 22:36:55 | 01,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2009.08.19 22:36:55 | 00,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2009.08.19 22:36:55 | 00,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2009.08.19 22:36:54 | 04,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2009.08.19 22:36:54 | 03,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2009.08.19 22:36:51 | 00,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2009.08.19 22:36:51 | 00,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2009.08.19 22:36:48 | 00,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2009.08.19 22:36:48 | 00,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2009.08.19 22:36:47 | 00,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2009.08.19 22:36:47 | 00,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2009.08.19 22:36:46 | 04,398,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll
[2009.08.19 22:36:46 | 03,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll
[2009.08.19 22:36:44 | 03,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2009.08.19 22:36:44 | 02,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2009.08.19 22:36:44 | 00,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2009.08.19 22:36:44 | 00,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2009.08.19 22:36:44 | 00,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2009.08.19 22:36:44 | 00,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2009.08.19 22:36:42 | 00,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2009.08.19 22:36:42 | 00,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2009.08.19 22:36:41 | 00,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2009.08.19 22:36:41 | 00,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2009.08.19 22:36:40 | 00,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2009.08.19 22:36:40 | 00,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2009.08.19 22:36:39 | 00,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2009.08.19 22:36:39 | 00,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2009.08.19 22:36:38 | 00,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2009.08.19 22:36:38 | 00,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2009.08.19 22:36:27 | 03,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2009.08.19 22:36:27 | 02,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2009.08.19 22:36:25 | 00,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2009.08.19 22:36:25 | 00,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2009.08.19 22:36:25 | 00,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2009.08.19 22:36:25 | 00,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2009.08.19 22:36:23 | 03,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2009.08.19 22:36:23 | 02,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2009.08.19 22:36:22 | 03,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2009.08.19 22:36:22 | 02,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2009.08.19 22:36:21 | 03,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2009.08.19 22:36:21 | 02,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2009.08.19 22:36:20 | 03,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2009.08.19 22:36:20 | 02,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2009.08.19 22:36:19 | 03,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2009.08.19 22:36:19 | 02,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2009.08.19 22:36:18 | 03,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2009.08.19 22:36:18 | 02,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2009.08.19 21:38:34 | 00,000,000 | ---D | C] -- C:\ProgramData\Nokia
[2009.08.19 21:37:53 | 00,002,130 | ---- | C] () -- C:\Users\Public\Desktop\Nokia Software Updater.lnk
[2009.08.19 21:34:27 | 00,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_ccdcmbx64_01007.Wdf
[2009.08.19 14:30:36 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Aspell
[2009.08.19 14:29:56 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Pidgin
[2009.08.19 14:29:47 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\GTK
[2009.08.18 09:52:38 | 00,002,533 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2009.08.18 09:52:37 | 00,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2009.08.18 09:52:33 | 00,000,000 | ---D | C] -- C:\ProgramData\Skype
[2009.08.14 13:59:26 | 00,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_PCCSWpdDriver_01_07_00.Wdf
[2009.08.14 13:56:48 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Roaming\Nokia
[2009.08.14 13:56:47 | 00,000,000 | ---D | C] -- C:\ProgramData\PC Suite
[2009.08.14 13:54:58 | 00,002,038 | ---- | C] () -- C:\Users\Public\Desktop\Nokia PC Suite.lnk
[2009.08.14 13:54:57 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PCSuite
[2009.08.14 13:54:56 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Nokia
[2009.08.14 13:54:46 | 00,000,000 | ---D | C] -- C:\Program Files\DIFX
[2009.08.14 13:54:45 | 00,025,600 | ---- | C] (Nokia) -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys
[2009.08.14 13:54:40 | 00,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2009.08.14 13:54:29 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\PC Connectivity Solution
[2009.08.14 13:53:59 | 00,067,584 | ---- | C] (Nokia) -- C:\Windows\SysNative\nmwcdclsx64.dll
[2009.08.14 13:53:58 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Nokia
[2009.08.14 13:48:19 | 00,000,000 | ---D | C] -- C:\ProgramData\Installations
[2009.08.12 21:37:46 | 00,001,230 | ---- | C] () -- C:\Users\Public\Desktop\Foxit Reader.lnk
[2009.08.12 21:37:38 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Foxit Software
[2009.08.12 20:40:26 | 00,358,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpdxm.dll
[2009.08.12 20:40:25 | 00,299,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpdxm.dll
[2009.08.11 14:27:28 | 00,000,993 | ---- | C] () -- C:\Users\newwes\Desktop\FreeCommander.lnk
[2009.08.11 14:27:24 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Roaming\FreeCommander
[2009.08.11 14:27:23 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\FreeCommander
[2009.08.11 14:20:59 | 00,000,000 | ---D | C] -- C:\ProgramData\Acronis
[2009.08.11 14:20:28 | 00,711,712 | ---- | C] (Acronis) -- C:\Windows\SysNative\drivers\timntr.sys
[2009.08.11 14:20:28 | 00,081,952 | ---- | C] (Acronis) -- C:\Windows\SysNative\drivers\tifsfilt.sys
[2009.08.11 14:20:23 | 00,011,264 | ---- | C] (Acronis) -- C:\Windows\SysNative\relog_ap.dll
[2009.08.11 14:20:18 | 00,229,408 | ---- | C] (Acronis) -- C:\Windows\SysNative\drivers\snapman.sys
[2009.08.11 14:20:13 | 00,593,952 | ---- | C] (Acronis) -- C:\Windows\SysNative\drivers\tdrpman.sys
[2009.08.11 14:20:09 | 00,001,099 | ---- | C] () -- C:\Users\Public\Desktop\Acronis True Image Home 11.0.lnk
[2009.08.11 14:10:54 | 00,001,340 | ---- | C] () -- C:\Users\Public\Desktop\Acronis Disk Director Suite.lnk
[2009.08.11 14:10:50 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Acronis
[2009.08.11 14:10:50 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Acronis
[2009.08.10 12:18:36 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live
[2009.08.10 12:17:26 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2009.08.10 12:16:49 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft
[2009.08.10 10:37:15 | 00,000,430 | ---- | C] () -- C:\Windows\tasks\1-Click Maintenance.job
[2009.08.10 10:37:11 | 00,035,072 | ---- | C] (TuneUp Software GmbH) -- C:\Windows\SysNative\uxtuneup.dll
[2009.08.10 10:37:11 | 00,028,416 | ---- | C] (TuneUp Software GmbH) -- C:\Windows\SysWow64\uxtuneup.dll
[2009.08.10 10:37:11 | 00,019,200 | ---- | C] (TuneUp Software GmbH) -- C:\Windows\SysNative\authuitu.dll
[2009.08.10 10:37:11 | 00,016,640 | ---- | C] (TuneUp Software GmbH) -- C:\Windows\SysWow64\authuitu.dll
[2009.08.10 10:37:08 | 00,497,920 | ---- | C] (TuneUp Software GmbH) -- C:\Windows\SysNative\TuneUpDefragService.exe
[2009.08.10 10:36:59 | 00,000,593 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities 2008.lnk
[2009.08.10 10:36:43 | 00,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2009.08.10 10:34:24 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
[2009.08.10 10:12:15 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Roaming\Macromedia
[2009.08.10 10:12:14 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Roaming\Adobe
[2009.08.10 10:12:10 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Roaming\Opera
[2009.08.10 10:12:10 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Local\Opera
[2009.08.10 10:04:05 | 00,001,264 | ---- | C] () -- C:\Users\newwes\Desktop\Revo Uninstaller.lnk
[2009.08.10 10:04:03 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\VS Revo Group
[2009.08.10 10:02:39 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR
[2009.08.10 09:15:22 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Roaming\TuneUp Software
[2009.08.10 09:10:12 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Roaming\Ashampoo
[2009.08.10 09:09:57 | 00,001,286 | ---- | C] () -- C:\Users\Public\Desktop\Ashampoo Burning Studio 2009 Advanced.lnk
[2009.08.10 09:01:00 | 00,108,840 | ---- | C] () -- C:\Users\newwes\AppData\Local\GDIPFONTCACHEV1.DAT
[2009.08.10 08:59:44 | 00,000,000 | ---D | C] -- C:\ProgramData\Ashampoo
[2009.08.10 08:59:38 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Ashampoo
[2009.08.09 22:03:08 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
[2009.08.09 22:02:17 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio
[2009.08.09 22:02:16 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2009.08.09 22:01:27 | 00,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2009.08.09 22:01:27 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2009.08.09 21:58:09 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2009.08.09 21:57:57 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2009.08.09 21:56:53 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Local\Microsoft Help
[2009.08.09 21:56:49 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2009.08.09 21:56:48 | 00,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2009.08.09 21:56:26 | 00,000,000 | RH-D | C] -- C:\MSOCache
[2009.08.09 21:47:43 | 00,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2009.08.09 21:47:39 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Toolbar
[2009.08.09 21:47:34 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2009.08.09 21:41:06 | 00,871,408 | ---- | C] () -- C:\Windows\SysNative\drivers\sptd.sys
[2009.08.09 21:40:11 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Roaming\DAEMON Tools Lite
[2009.08.08 12:05:46 | 00,000,000 | ---D | C] -- C:\ProgramData\Symantec
[2009.08.08 12:05:27 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Symantec Shared
[2009.08.08 11:50:52 | 01,275,616 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1005000.087\Cat.DB
[2009.08.08 11:24:34 | 00,476,720 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1005000.087\srtsp64.sys
[2009.08.08 11:24:34 | 00,402,992 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1005000.087\SymEFA64.sys
[2009.08.08 11:24:34 | 00,310,320 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1005000.087\symtdi.sys
[2009.08.08 11:24:34 | 00,138,288 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1005000.087\symfw.sys
[2009.08.08 11:24:34 | 00,046,640 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1005000.087\symndisv.sys
[2009.08.08 11:24:34 | 00,044,592 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1005000.087\symids.sys
[2009.08.08 11:24:34 | 00,043,568 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1005000.087\symndis.sys
[2009.08.08 11:24:34 | 00,032,304 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1005000.087\srtspx64.sys
[2009.08.08 11:24:34 | 00,009,423 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1005000.087\SymNet.cat
[2009.08.08 11:24:34 | 00,007,774 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1005000.087\SymEFA64.cat
[2009.08.08 11:24:34 | 00,007,376 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1005000.087\srtsp64.cat
[2009.08.08 11:24:34 | 00,007,367 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1005000.087\srtspx64.cat
[2009.08.08 11:24:34 | 00,007,311 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1005000.087\ccHPx64.cat
[2009.08.08 11:24:34 | 00,003,373 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1005000.087\SymEFA.inf
[2009.08.08 11:24:34 | 00,001,837 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1005000.087\ccHPx64.inf
[2009.08.08 11:24:34 | 00,001,557 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1005000.087\SymNet.inf
[2009.08.08 11:24:34 | 00,001,438 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1005000.087\srtsp64.inf
[2009.08.08 11:24:34 | 00,001,422 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1005000.087\srtspx64.inf
[2009.08.08 11:24:14 | 00,582,704 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1005000.087\cchpx64.sys
[2009.08.08 11:24:14 | 00,332,848 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1005000.087\BHDrvx64.sys
[2009.08.08 11:24:12 | 00,007,328 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1005000.087\BHDrvx64.CAT
[2009.08.08 11:24:12 | 00,000,640 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1005000.087\BHDrvx64.inf
[2009.08.08 11:24:12 | 00,000,172 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1005000.087\isolate.ini
[2009.08.08 11:24:12 | 00,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NISx64\1005000.087
[2009.08.08 08:59:03 | 00,000,000 | ---D | C] -- C:\Windows\Panther
[2009.08.08 08:58:51 | 00,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK
[2009.08.08 08:58:50 | 00,383,200 | RHS- | C] () -- C:\bootmgr
[2009.08.08 08:58:49 | 00,000,000 | -HSD | C] -- C:\Boot
[2009.08.08 00:00:57 | 00,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2009.08.07 23:57:04 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Local\MediaMonkey
[2009.08.07 23:57:02 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\MediaMonkey
[2009.08.07 23:52:50 | 00,032,816 | R--- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\SymIMV.sys
[2009.08.07 23:52:47 | 00,172,080 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS
[2009.08.07 23:52:47 | 00,007,406 | ---- | C] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.CAT
[2009.08.07 23:52:47 | 00,000,854 | ---- | C] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.INF
[2009.08.07 23:52:47 | 00,000,000 | ---D | C] -- C:\Program Files\Symantec
[2009.08.07 23:52:47 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2009.08.07 23:52:43 | 00,002,187 | ---- | C] () -- C:\Users\Public\Desktop\Norton Internet Security.lnk
[2009.08.07 23:51:56 | 00,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NISx64
[2009.08.07 23:51:56 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Norton Internet Security
[2009.08.07 23:51:53 | 00,000,000 | ---D | C] -- C:\ProgramData\Norton
[2009.08.07 23:48:30 | 00,000,000 | ---D | C] -- C:\ProgramData\NortonInstaller
[2009.08.07 23:48:30 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\NortonInstaller
[2009.08.07 23:41:39 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Opera
[2009.08.07 23:39:49 | 00,000,000 | -HSD | C] -- C:\Windows\Installer
[2009.08.07 23:36:34 | 00,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2009.08.07 23:35:37 | 00,622,000 | ---- | C] () -- C:\Windows\SysNative\perfh005.dat
[2009.08.07 23:35:37 | 00,291,582 | ---- | C] () -- C:\Windows\SysNative\perfi005.dat
[2009.08.07 23:35:37 | 00,118,348 | ---- | C] () -- C:\Windows\SysNative\perfc005.dat
[2009.08.07 23:35:37 | 00,036,010 | ---- | C] () -- C:\Windows\SysNative\perfd005.dat
[2009.08.07 23:32:59 | 00,000,000 | ---D | C] -- C:\Windows\SysWow64\cs
[2009.08.07 23:32:49 | 00,000,000 | ---D | C] -- C:\Windows\SysWow64\XPSViewer
[2009.08.07 23:32:49 | 00,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\cs-CZ
[2009.08.07 23:32:49 | 00,000,000 | ---D | C] -- C:\Windows\cs-CZ
[2009.08.07 23:32:47 | 00,000,000 | ---D | C] -- C:\Windows\SysNative\cs
[2009.08.07 23:32:38 | 00,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\cs-CZ
[2009.08.07 23:28:15 | 10,974,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieframe.dll
[2009.08.07 23:28:14 | 12,343,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieframe.dll
[2009.08.07 23:28:13 | 09,273,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtml.dll
[2009.08.07 23:28:13 | 05,954,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtml.dll
[2009.08.07 23:27:06 | 02,117,664 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcplui.exe
[2009.08.07 23:27:06 | 00,502,304 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvuninst.exe
[2009.08.07 23:27:06 | 00,410,656 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.cpl
[2009.08.07 23:22:02 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\cs-CZ\tcpip.sys.mui
[2009.08.07 23:22:02 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\cs-CZ\bfe.dll.mui
[2009.08.07 23:22:02 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\cs-CZ\scfilter.sys.mui
[2009.08.07 23:22:01 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\cs-CZ\qwavedrv.sys.mui
[2009.08.07 23:21:55 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\cs-CZ\pacer.sys.mui
[2009.08.07 23:21:54 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\cs-CZ\ndiscap.sys.mui
[2009.08.07 23:21:53 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\volsnap.sys.mui
[2009.08.07 23:21:53 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\usbport.sys.mui
[2009.08.07 23:21:53 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\usbhub.sys.mui
[2009.08.07 23:21:53 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\vhdmp.sys.mui
[2009.08.07 23:21:53 | 00,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\portcls.sys.mui
[2009.08.07 23:21:53 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\wd.sys.mui
[2009.08.07 23:21:52 | 00,003,584 | ---- | C] (SCM Microsystems, Inc.) -- C:\Windows\SysNative\drivers\cs-CZ\pscr.sys.mui
[2009.08.07 23:21:52 | 00,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\tpm.sys.mui
[2009.08.07 23:21:52 | 00,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\umbus.sys.mui
[2009.08.07 23:21:52 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\serscan.sys.mui
[2009.08.07 23:21:51 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\pcmcia.sys.mui
[2009.08.07 23:21:50 | 00,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\mpio.sys.mui
[2009.08.07 23:21:50 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\serial.sys.mui
[2009.08.07 23:21:50 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\i8042prt.sys.mui
[2009.08.07 23:21:50 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\msdsm.sys.mui
[2009.08.07 23:21:50 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\sermouse.sys.mui
[2009.08.07 23:21:50 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\mouclass.sys.mui
[2009.08.07 23:21:50 | 00,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\parport.sys.mui
[2009.08.07 23:21:50 | 00,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\rndismpx.sys.mui
[2009.08.07 23:21:50 | 00,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\rndismp6.sys.mui
[2009.08.07 23:21:50 | 00,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\ataport.sys.mui
[2009.08.07 23:21:50 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\vwifibus.sys.mui
[2009.08.07 23:21:50 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\MTConfig.sys.mui
[2009.08.07 23:21:50 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\mouhid.sys.mui
[2009.08.07 23:21:50 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\amdide.sys.mui
[2009.08.07 23:21:48 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\bfe.dll.mui
[2009.08.07 23:21:48 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\afd.sys.mui
[2009.08.07 23:21:48 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\wdf01000.sys.mui
[2009.08.07 23:21:48 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\ws2ifsl.sys.mui
[2009.08.07 23:21:48 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\usbrpm.sys.mui
[2009.08.07 23:21:47 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\tcpip.sys.mui
[2009.08.07 23:21:47 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\tunnel.sys.mui
[2009.08.07 23:21:47 | 00,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\modem.sys.mui
[2009.08.07 23:21:46 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\fvevol.sys.mui
[2009.08.07 23:21:46 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\scfilter.sys.mui
[2009.08.07 23:21:45 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\rdbss.sys.mui
[2009.08.07 23:21:44 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\pacer.sys.mui
[2009.08.07 23:21:44 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\qwavedrv.sys.mui
[2009.08.07 23:21:44 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\partmgr.sys.mui
[2009.08.07 23:21:41 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\ntfs.sys.mui
[2009.08.07 23:21:41 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\ndis.sys.mui
[2009.08.07 23:21:41 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\nwifi.sys.mui
[2009.08.07 23:21:41 | 00,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\ndisuio.sys.mui
[2009.08.07 23:21:40 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\ndiscap.sys.mui
[2009.08.07 23:21:39 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\luafv.sys.mui
[2009.08.07 23:21:39 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\mountmgr.sys.mui
[2009.08.07 23:21:38 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\http.sys.mui
[2009.08.07 23:21:37 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\fltmgr.sys.mui
[2009.08.07 23:21:36 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\volmgrx.sys.mui
[2009.08.07 23:21:35 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\processr.sys.mui
[2009.08.07 23:21:35 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\intelppm.sys.mui
[2009.08.07 23:21:35 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\amdppm.sys.mui
[2009.08.07 23:21:35 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\amdk8.sys.mui
[2009.08.07 23:21:35 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\battc.sys.mui
[2009.08.07 23:21:35 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\acpi.sys.mui
[2009.08.07 23:21:35 | 00,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\cs-CZ\BrSerId.sys.mui
[2009.08.07 23:21:35 | 00,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\cs-CZ\BrSerIb.sys.mui
[2009.08.07 23:21:35 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\pci.sys.mui
[2009.08.07 23:21:35 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\bthport.sys.mui
[2009.08.07 23:21:35 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\IPMIDrv.sys.mui
[2009.08.07 23:21:35 | 00,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\bthpan.sys.mui
[2009.08.07 23:21:35 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\wacompen.sys.mui
[2009.08.07 23:21:35 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\vdrvroot.sys.mui
[2009.08.07 23:21:35 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\kbdclass.sys.mui
[2009.08.07 23:21:35 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\hdaudbus.sys.mui
[2009.08.07 23:21:35 | 00,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\isapnp.sys.mui
[2009.08.07 23:21:35 | 00,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\HdAudio.sys.mui
[2009.08.07 23:21:35 | 00,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\mssmbios.sys.mui
[2009.08.07 23:21:35 | 00,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\hidbth.sys.mui
[2009.08.07 23:21:35 | 00,003,072 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\cs-CZ\atikmdag.sys.mui
[2009.08.07 23:21:35 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\ULIAGPKX.SYS.mui
[2009.08.07 23:21:35 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\UAGP35.SYS.mui
[2009.08.07 23:21:35 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\pnpmem.sys.mui
[2009.08.07 23:21:35 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\NV_AGP.SYS.mui
[2009.08.07 23:21:35 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\kbdhid.sys.mui
[2009.08.07 23:21:35 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\GAGP30KX.SYS.mui
[2009.08.07 23:21:35 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\Dot4usb.sys.mui
[2009.08.07 23:21:35 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\BTHUSB.SYS.mui
[2009.08.07 23:21:35 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\AGP440.sys.mui
[2009.08.07 23:21:35 | 00,002,560 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\cs-CZ\BrParwdm.sys.mui
[2009.08.07 23:21:35 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\disk.sys.mui
[2009.08.07 23:21:35 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\cdrom.sys.mui
[2009.08.07 23:21:35 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\bthenum.sys.mui
[2009.08.07 23:21:34 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\ohci1394.sys.mui
[2009.08.07 23:21:34 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\1394ohci.sys.mui
[2009.08.07 23:18:46 | 02,327,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2009.08.07 23:18:46 | 02,227,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2009.08.07 23:18:45 | 01,550,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2009.08.07 23:18:45 | 01,400,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2009.08.07 23:18:45 | 00,779,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
[2009.08.07 23:18:45 | 00,595,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchIndexer.exe
[2009.08.07 23:18:45 | 00,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll
[2009.08.07 23:18:44 | 01,844,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tcpip.sys
[2009.08.07 23:18:44 | 01,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2009.08.07 23:18:44 | 01,008,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\user32.dll
[2009.08.07 23:18:44 | 00,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2009.08.07 23:18:44 | 00,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2009.08.07 23:18:44 | 00,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
[2009.08.07 23:18:44 | 00,583,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sxs.dll
[2009.08.07 23:18:44 | 00,529,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\comctl32.dll
[2009.08.07 23:18:44 | 00,429,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SearchIndexer.exe
[2009.08.07 23:18:44 | 00,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sxs.dll
[2009.08.07 23:18:44 | 00,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll
[2009.08.07 23:18:44 | 00,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll
[2009.08.07 23:18:44 | 00,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
[2009.08.07 23:18:44 | 00,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssphtb.dll
[2009.08.07 23:18:44 | 00,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SearchProtocolHost.exe
[2009.08.07 23:18:44 | 00,114,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe
[2009.08.07 23:18:44 | 00,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SearchFilterHost.exe
[2009.08.07 23:18:44 | 00,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll
[2009.08.07 23:18:43 | 03,124,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32k.sys
[2009.08.07 23:18:43 | 00,946,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ndis.sys
[2009.08.07 23:18:43 | 00,833,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user32.dll
[2009.08.07 23:18:43 | 00,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll
[2009.08.07 23:18:43 | 00,310,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gdi32.dll
[2009.08.07 23:18:43 | 00,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll
[2009.08.07 23:18:40 | 02,434,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iertutil.dll
[2009.08.07 23:18:39 | 02,053,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iertutil.dll
[2009.08.07 23:12:08 | 01,980,865 | -H-- | C] () -- C:\Users\newwes\AppData\Local\IconCache.db
[2009.08.07 23:11:37 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\logishrd
[2009.08.07 23:10:31 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Roaming\Identities
[2009.08.07 23:10:23 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Local\VirtualStore
[2009.08.07 23:10:14 | 00,000,000 | --SD | C] -- C:\Users\newwes\AppData\Roaming\Microsoft
[2009.08.07 23:10:14 | 00,000,000 | -HSD | C] -- C:\Users\newwes\Documents\My Videos
[2009.08.07 23:10:14 | 00,000,000 | -HSD | C] -- C:\Users\newwes\Documents\My Pictures
[2009.08.07 23:10:14 | 00,000,000 | -HSD | C] -- C:\Users\newwes\Documents\My Music
[2009.08.07 23:10:14 | 00,000,000 | -HSD | C] -- C:\Users\newwes\AppData\Local\Temporary Internet Files
[2009.08.07 23:10:14 | 00,000,000 | -HSD | C] -- C:\Users\newwes\AppData\Local\History
[2009.08.07 23:10:14 | 00,000,000 | -HSD | C] -- C:\Users\newwes\AppData\Local\Application Data
[2009.08.07 23:10:14 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Roaming\Media Center Programs
[2009.08.07 23:10:14 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Local\Temp
[2009.08.07 23:10:14 | 00,000,000 | ---D | C] -- C:\Users\newwes\AppData\Local\Microsoft
[2009.08.07 23:09:58 | 00,000,000 | -HSD | C] -- C:\Recovery
[2009.08.07 23:03:08 | 00,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2009.08.07 23:01:29 | 00,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2009.08.07 23:00:26 | 00,000,000 | ---D | C] -- C:\Windows\Prefetch
[2009.08.07 23:00:08 | 16,102,60480 | -HS- | C] () -- C:\hiberfil.sys
[2009.08.07 23:00:08 | 00,000,000 | -HSD | C] -- C:\System Volume Information
[2009.04.22 08:37:02 | 00,000,478 | ---- | C] () -- C:\Windows\win.ini
[2009.04.22 08:37:02 | 00,000,219 | ---- | C] () -- C:\Windows\system.ini
[2009.04.22 05:40:32 | 00,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.04.22 03:04:20 | 00,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.04.14 07:45:20 | 00,154,144 | ---- | C] () -- C:\Windows\SysWow64\RTLCPAPI.dll

========== Files - Modified Within 30 Days ==========

[2009.08.30 22:19:50 | 00,001,009 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009.08.30 22:11:29 | 00,002,093 | ---- | M] () -- C:\Users\newwes\Desktop\HijackThis.lnk
[2009.08.30 22:00:00 | 00,000,430 | ---- | M] () -- C:\Windows\tasks\1-Click Maintenance.job
[2009.08.30 21:57:29 | 00,001,885 | ---- | M] () -- C:\Users\newwes\Desktop\CCleaner.lnk
[2009.08.30 21:01:11 | 01,275,616 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1005000.087\Cat.DB
[2009.08.30 20:33:10 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009.08.29 14:41:25 | 01,445,056 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2009.08.29 14:41:25 | 00,622,000 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2009.08.29 14:41:25 | 00,606,992 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2009.08.29 14:41:25 | 00,118,348 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2009.08.29 14:41:25 | 00,103,370 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2009.08.26 21:26:57 | 00,013,216 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2009.08.26 21:26:57 | 00,013,216 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2009.08.26 13:38:19 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009.08.26 13:38:05 | 16,102,60480 | -HS- | M] () -- C:\hiberfil.sys
[2009.08.23 10:01:48 | 27,262,8283 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2009.08.21 10:29:05 | 00,583,296 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\cchpx64.sys
[2009.08.21 10:29:03 | 00,009,412 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\symnetv.cat
[2009.08.21 10:29:03 | 00,001,481 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\SymNetV.inf
[2009.08.21 10:29:03 | 00,000,172 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\isolate.ini
[2009.08.19 23:43:49 | 00,001,264 | ---- | M] () -- C:\Users\newwes\Desktop\Revo Uninstaller.lnk
[2009.08.19 21:37:53 | 00,002,130 | ---- | M] () -- C:\Users\Public\Desktop\Nokia Software Updater.lnk
[2009.08.19 21:34:27 | 00,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_ccdcmbx64_01007.Wdf
[2009.08.18 21:11:43 | 00,476,720 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\srtsp64.sys
[2009.08.18 21:11:43 | 00,402,992 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\SymEFA64.sys
[2009.08.18 21:11:43 | 00,334,384 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\BHDrvx64.sys
[2009.08.18 21:11:43 | 00,278,576 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\symtdi.sys
[2009.08.18 21:11:43 | 00,120,880 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\symfw.sys
[2009.08.18 21:11:43 | 00,056,880 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\symndisv.sys
[2009.08.18 21:11:43 | 00,044,080 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\symndis.sys
[2009.08.18 21:11:43 | 00,043,568 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\symids.sys
[2009.08.18 21:11:43 | 00,032,304 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\srtspx64.sys
[2009.08.18 21:11:37 | 00,003,373 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\SymEFA.inf
[2009.08.18 21:11:37 | 00,001,836 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\ccHPx64.inf
[2009.08.18 21:11:37 | 00,001,480 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\SymNet.inf
[2009.08.18 21:11:37 | 00,001,437 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\srtsp64.inf
[2009.08.18 21:11:37 | 00,001,421 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\srtspx64.inf
[2009.08.18 21:11:37 | 00,000,640 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\BHDrvx64.inf
[2009.08.18 21:11:24 | 00,009,415 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\SymNet.cat
[2009.08.18 21:11:24 | 00,007,410 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\srtsp64.cat
[2009.08.18 21:11:24 | 00,007,401 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\srtspx64.cat
[2009.08.18 21:11:24 | 00,007,399 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\SymEFA64.cat
[2009.08.18 21:11:24 | 00,007,362 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\bhdrvx64.cat
[2009.08.18 21:11:24 | 00,007,345 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1007020.00A\ccHPx64.cat
[2009.08.18 12:14:00 | 00,002,533 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2009.08.14 13:59:26 | 00,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_PCCSWpdDriver_01_07_00.Wdf
[2009.08.14 13:54:58 | 00,002,038 | ---- | M] () -- C:\Users\Public\Desktop\Nokia PC Suite.lnk
[2009.08.12 21:37:46 | 00,001,230 | ---- | M] () -- C:\Users\Public\Desktop\Foxit Reader.lnk
[2009.08.11 15:55:34 | 01,980,865 | -H-- | M] () -- C:\Users\newwes\AppData\Local\IconCache.db
[2009.08.11 14:27:28 | 00,000,993 | ---- | M] () -- C:\Users\newwes\Desktop\FreeCommander.lnk
[2009.08.11 14:20:28 | 00,711,712 | ---- | M] (Acronis) -- C:\Windows\SysNative\drivers\timntr.sys
[2009.08.11 14:20:28 | 00,081,952 | ---- | M] (Acronis) -- C:\Windows\SysNative\drivers\tifsfilt.sys
[2009.08.11 14:20:18 | 00,229,408 | ---- | M] (Acronis) -- C:\Windows\SysNative\drivers\snapman.sys
[2009.08.11 14:20:13 | 00,593,952 | ---- | M] (Acronis) -- C:\Windows\SysNative\drivers\tdrpman.sys
[2009.08.11 14:20:09 | 00,001,099 | ---- | M] () -- C:\Users\Public\Desktop\Acronis True Image Home 11.0.lnk
[2009.08.11 14:10:54 | 00,001,340 | ---- | M] () -- C:\Users\Public\Desktop\Acronis Disk Director Suite.lnk
[2009.08.10 13:09:31 | 00,414,176 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2009.08.10 12:53:05 | 00,000,478 | ---- | M] () -- C:\Windows\win.ini
[2009.08.10 10:37:08 | 00,497,920 | ---- | M] (TuneUp Software GmbH) -- C:\Windows\SysNative\TuneUpDefragService.exe
[2009.08.10 10:36:59 | 00,000,593 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities 2008.lnk
[2009.08.10 09:09:57 | 00,001,286 | ---- | M] () -- C:\Users\Public\Desktop\Ashampoo Burning Studio 2009 Advanced.lnk
[2009.08.10 09:01:00 | 00,108,840 | ---- | M] () -- C:\Users\newwes\AppData\Local\GDIPFONTCACHEV1.DAT
[2009.08.09 21:41:06 | 00,871,408 | ---- | M] () -- C:\Windows\SysNative\drivers\sptd.sys
[2009.08.08 11:50:46 | 00,002,187 | ---- | M] () -- C:\Users\Public\Desktop\Norton Internet Security.lnk
[2009.08.08 11:24:37 | 00,172,080 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS
[2009.08.08 11:24:37 | 00,007,406 | ---- | M] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.CAT
[2009.08.08 11:24:37 | 00,000,854 | ---- | M] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.INF
[2009.08.08 11:24:14 | 00,582,704 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1005000.087\cchpx64.sys
[2009.08.08 11:24:14 | 00,332,848 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1005000.087\BHDrvx64.sys
[2009.08.08 11:24:12 | 00,007,328 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1005000.087\BHDrvx64.CAT
[2009.08.08 11:24:12 | 00,000,640 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1005000.087\BHDrvx64.inf
[2009.08.08 11:24:12 | 00,000,172 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1005000.087\isolate.ini
[2009.08.08 08:58:51 | 00,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2009.08.07 23:25:50 | 00,291,582 | ---- | M] () -- C:\Windows\SysNative\perfi005.dat
[2009.08.07 23:25:50 | 00,036,010 | ---- | M] () -- C:\Windows\SysNative\perfd005.dat
[2009.08.07 23:03:54 | 00,028,965 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2009.08.07 23:03:54 | 00,028,965 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2009.08.07 23:01:29 | 00,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2009.08.03 13:36:28 | 00,038,160 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2009.08.03 13:36:08 | 00,022,040 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys

========== LOP Check ==========

[2009.08.30 22:19:53 | 00,000,000 | ---D | M] -- C:\Users\newwes\AppData\Roaming
[2009.08.20 00:25:42 | 00,000,000 | ---D | M] -- C:\Users\newwes\AppData\Roaming\Acronis
[2009.08.10 09:10:12 | 00,000,000 | ---D | M] -- C:\Users\newwes\AppData\Roaming\Ashampoo
[2009.08.09 21:49:42 | 00,000,000 | ---D | M] -- C:\Users\newwes\AppData\Roaming\DAEMON Tools Lite
[2009.08.21 15:21:46 | 00,000,000 | ---D | M] -- C:\Users\newwes\AppData\Roaming\FlashGet
[2009.08.11 14:27:24 | 00,000,000 | ---D | M] -- C:\Users\newwes\AppData\Roaming\FreeCommander
[2009.04.22 14:34:59 | 00,000,000 | ---D | M] -- C:\Users\newwes\AppData\Roaming\Media Center Programs
[2009.08.14 13:59:22 | 00,000,000 | ---D | M] -- C:\Users\newwes\AppData\Roaming\Nokia
[2009.08.10 10:12:10 | 00,000,000 | ---D | M] -- C:\Users\newwes\AppData\Roaming\Opera
[2009.08.10 09:15:22 | 00,000,000 | ---D | M] -- C:\Users\newwes\AppData\Roaming\TuneUp Software
[2009.08.30 22:00:00 | 00,000,430 | ---- | M] () -- C:\Windows\Tasks\1-Click Maintenance.job
[2009.08.26 13:38:19 | 00,000,006 | -H-- | M] () -- C:\Windows\Tasks\SA.DAT
[2009.04.22 11:23:15 | 00,011,872 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========


< End of report >

Damned, dík.

jarovy jsem poslal SZ.

Odinstaluj:
DAEMON Tools Toolbar

Stáhni si program OTM (by OldTimer)
http://www.edisk.cz/stahni/07995/OTMove ... .39KB.html
a ulož si ho na disk C a spusť ho.
- Do levého sloupce (Paste Instructions for Items to be Moved) zkopíruj tyto cesty:
Poznámka: Nepoužij k označení funkci VYBRAT VŠE

- Po zkopírování klikni na tlačítko MoveIt! a vlož sem následně celý obsah z pravého sloupce, jinak uložený ve složce C:\_OTMoveIt\MovedFiles\, který bude informovat o výsledcích
- Je možné, že pokud nebudou moci být soubory odstraněny, budeš dotázán na restart počítače, v tom případě restart potvrď.

Stáhni si :Dr. Web CureIt
dej update , po aktualizaci dej start.
Tlacitky dole muzeš soubor léčit, smazat, přesunout nebo přejmenovat

Pak nový log z HJT.