Kontrola logu a problem

damates · Příspěvekod **damates** » 17 zář 2010 21:10

Zdarec,
nevěděl jsem kam to přesně napsat, ale snad toto bude to pravé místo.
Měl bych problém s poklesem výkonu asi o 30%, často se to projeví u rendrovaní,simulace nebo hraní her atd... prostě náročnější aplikace.
Tento problém už řešim asi 14 dní a jsem z toho zoufalej,zkoušel logovat čtení/zápis disku,vytížení procesoru a spoustu dalších věcí, ale bez výsledku :-(

.Pokaždé tak 5 min systém(se spuštěnou náročnou aplikací) jde jak má a po 5 minutách cca se sníží výkon o víše zmiňovaných 30% na 1 minutu a pak zase jede jak má.(časy jsou orientační, není to přesné).Každý týden defregmentuju disk a čistim registry.(O&O Defrag, TuneUP, YourUninstaler).Dále bych dodal klidně konfiguraci celého NB.
Byl bych moc rád jestli by jste měli nějaký nápad a byl bych vám moc vděčnej.Zatím jsem dávám log z HiJacku,doufám že tam něco najdete :-)

Děkuju

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:55:08, on 17.9.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe
C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\Hijac\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
O4 - HKCU\..\Run: [Rainlendar2] C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lookout Citadel Server (LkCitadelServer) - National Instruments, Inc. - C:\Windows\SysWOW64\lkcitdl.exe
O23 - Service: National Instruments PSP Server Locator (lkClassAds) - National Instruments, Inc. - C:\Windows\SysWOW64\lkads.exe
O23 - Service: National Instruments Time Synchronization (lkTimeSync) - National Instruments, Inc. - C:\Windows\SysWOW64\lktsrv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: National Instruments Domain Service (NIDomainService) - National Instruments, Inc. - C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
O23 - Service: NILM License Manager - Macrovision Corporation - C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe
O23 - Service: NI Service Locator (niSvcLoc) - National Instruments Corp. - C:\Windows\SysWOW64\nisvcloc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: O&O Defrag - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: spmgr - Unknown owner - C:\Program Files (x86)\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 7495 bytes

Reklama

Příspěvekod **jaro3** » 17 zář 2010 22:08

Vítej na fóru PC-Help!

Tady se Ti mohu podívat tak na nákazy..

Odinstaluj:
Contribute Toolbar

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Pokud budou problémy , spusť v nouz. režimu.

damates · Příspěvekod **damates** » 18 zář 2010 00:04

Tady to je...Teď jsem ještě odstranil pár věcí a ještě si prošel spuštěný dll soubory, trochu jsem to vyčistil.
Kdyžtak dodám nějakou odpověď jestli to pomohlo nebo to je při starém nebo jestli by jsi mě nemohl odkázat do jiné sekce fora nebo na koho bych se stimto problémem mohl obrátit

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Verze databáze: 4640

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

17.9.2010 23:54:12
mbam-log-2010-09-17 (23-54-12).txt

Typ skenu: Úplný sken (C:\|D:\|E:\|)
Skenované objekty: 419249
Uplynulý čas: 1 hodina(y), 6 minuta(y), 45 sekunda(y)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

Příspěvekod **jaro3** » 18 zář 2010 00:07

Vypni si rez.ochrany i firewall.
Stáhni si Dr. Web CureIt
dej update , po aktualizaci dej start.
Tlacitky dole můzeš soubor léčit(systémové soubory), smazat, přesunout nebo přejmenovat
+

Stáhni si OTL
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.

damates · Příspěvekod **damates** » 18 zář 2010 10:02

OTL logfile created on: 18.9.2010 0:51:25 - Run 2
OTL by OldTimer - Version 3.2.12.1 Folder = C:\Users\Mandarr\Desktop
64bit- An unknown product (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 72,00% Memory free
8,00 Gb Paging File | 7,00 Gb Available in Paging File | 86,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 68,36 Gb Total Space | 28,30 Gb Free Space | 41,40% Space Free | Partition Type: NTFS
Drive D: | 175,78 Gb Total Space | 115,90 Gb Free Space | 65,93% Space Free | Partition Type: NTFS
Drive E: | 221,52 Gb Total Space | 118,30 Gb Free Space | 53,40% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MANDY-LAND
Current User Name: Mandarr
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 90 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Users\Mandarr\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Windows\SysWOW64\PnkBstrA.exe ()
PRC - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe (ESET)
PRC - C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe ()
PRC - C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe (ASUS)
PRC - C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe (ASUS)
PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe (ASUS)
PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe (ASUS)
PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe (ASUS)
PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\AsLdrSrv.exe (ASUS)
PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe (ASUS)
PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\Atouch64.exe ()
PRC - C:\Program Files (x86)\ASUS\NB Probe\SPM\spmgr.exe ()
PRC - C:\Program Files (x86)\Common Files\microsoft shared\VS7Debug\mdm.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe (National Instruments, Inc.)
PRC - C:\Windows\SysWOW64\lktsrv.exe (National Instruments, Inc.)
PRC - C:\Windows\SysWOW64\lkads.exe (National Instruments, Inc.)
PRC - C:\Windows\SysWOW64\lkcitdl.exe (National Instruments, Inc.)
PRC - C:\Windows\SysWOW64\nisvcloc.exe (National Instruments Corp.)

========== Modules (SafeList) ==========

MOD - C:\Users\Mandarr\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\SysWOW64\msscript.ocx (Microsoft Corporation)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll (Microsoft Corporation)

========== Win32 Services (SafeList) ==========

SRV:64bit: - (PnkBstrA) -- C:\Windows\SysNative\PnkBstrA.exe File not found
SRV:64bit: - (FLEXnet Licensing Service 64) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe (Acresso Software Inc.)
SRV:64bit: - (UxTuneUp) -- C:\Windows\SysNative\uxtuneup.dll (TuneUp Software)
SRV:64bit: - (AFBAgent) -- C:\Windows\SysNative\FBAgent.exe (ASUSTeK Computer Inc.)
SRV:64bit: - (O&O Defrag) -- C:\Program Files\OO Software\Defrag\oodag.exe (O&O Software GmbH)
SRV:64bit: - (EhttpSrv) -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe (ESET)
SRV:64bit: - (ekrn) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe (ESET)
SRV:64bit: - (UmRdpService) -- C:\Windows\SysNative\umrdp.dll (Microsoft Corporation)
SRV:64bit: - (StorSvc) -- C:\Windows\SysNative\StorSvc.dll (Microsoft Corporation)
SRV:64bit: - (PeerDistSvc) -- C:\Windows\SysNative\PeerDistSvc.dll (Microsoft Corporation)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:64bit: - (CscService) -- C:\Windows\SysNative\cscsvc.dll (Microsoft Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV:64bit: - (msvsmon90) -- C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe (Microsoft Corporation)
SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe ()
SRV - (FLEXnet Licensing Service) -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (TuneUp.Defrag) -- C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe (TuneUp Software)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\Windows\SysWOW64\uxtuneup.dll (TuneUp Software)
SRV - (clr_optimization_v4.0.30319_64) -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (ASLDRService) -- C:\Program Files (x86)\ASUS\ATK Hotkey\AsLdrSrv.exe (ASUS)
SRV - (spmgr) -- C:\Program Files (x86)\ASUS\NB Probe\SPM\spmgr.exe ()
SRV - (MDM) -- C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe (Microsoft Corporation)
SRV - (NIDomainService) -- C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe (National Instruments, Inc.)
SRV - (lkTimeSync) -- C:\Windows\SysWOW64\lktsrv.exe (National Instruments, Inc.)
SRV - (lkClassAds) -- C:\Windows\SysWOW64\lkads.exe (National Instruments, Inc.)
SRV - (NILM License Manager) -- C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe (Macrovision Corporation)
SRV - (LkCitadelServer) -- C:\Windows\SysWOW64\lkcitdl.exe (National Instruments, Inc.)
SRV - (niSvcLoc) -- C:\Windows\SysWOW64\nisvcloc.exe (National Instruments Corp.)

========== Driver Services (SafeList) ==========

DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ATK64AMD.sys (ASUS)
DRV:64bit: - (SNP2UVC) USB2.0 PC Camera (SNP2UVC) -- C:\Windows\SysNative\drivers\snp2uvc.sys ()
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
DRV:64bit: - (ETD) -- C:\Windows\SysNative\drivers\ETD.sys (ELAN Microelectronic Corp.)
DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.)
DRV:64bit: - (epfwwfp) -- C:\Windows\SysNative\drivers\epfwwfp.sys (ESET)
DRV:64bit: - (epfw) -- C:\Windows\SysNative\drivers\epfw.sys (ESET)
DRV:64bit: - (ehdrv) -- C:\Windows\SysNative\drivers\ehdrv.sys (ESET)
DRV:64bit: - (eamon) -- C:\Windows\SysNative\drivers\eamon.sys (ESET)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (vmbus) -- C:\Windows\SysNative\drivers\vmbus.sys (Microsoft Corporation)
DRV:64bit: - (storflt) -- C:\Windows\SysNative\drivers\vmstorfl.sys (Microsoft Corporation)
DRV:64bit: - (storvsc) -- C:\Windows\SysNative\drivers\storvsc.sys (Microsoft Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (s3cap) -- C:\Windows\SysNative\drivers\vms3cap.sys (Microsoft Corporation)
DRV:64bit: - (VMBusHID) -- C:\Windows\SysNative\drivers\VMBusHID.sys (Microsoft Corporation)
DRV:64bit: - (CSC) -- C:\Windows\SysNative\drivers\csc.sys (Microsoft Corporation)
DRV:64bit: - (Epfwndis) -- C:\Windows\SysNative\drivers\epfwndis.sys (ESET)
DRV:64bit: - (Ntfs) -- C:\Windows\SysNative\wbem\ntfs.mof ()
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (mcdbus) -- C:\Windows\SysNative\drivers\mcdbus.sys (MagicISO, Inc.)
DRV:64bit: - (WimFltr) -- C:\Windows\SysNative\drivers\WimFltr.sys (Microsoft Corporation)
DRV - (ghaio) -- C:\Program Files (x86)\ASUS\NB Probe\SPM\ghaio.sys ()
DRV - (TuneUpUtilitiesDrv) -- C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys (TuneUp Software)
DRV - (mcdbus) -- C:\Windows\SysWOW64\drivers\mcdbus.sys (MagicISO, Inc.)
DRV - (cvintdrv) -- C:\Windows\SysWow64\drivers\cvintdrv.sys ()

========== Standard Registry (All) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SYSTEM32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Winamp Search"
FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query="
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "chrome://fastdial/content/fastdial.html"
FF - prefs.js..extensions.enabledItems: {EF522540-89F5-46b9-B6FE-1829E2B572C6}:4.8
FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:2.0.3
FF - prefs.js..extensions.enabledItems: {35106bca-6c78-48c7-ac28-56df30b51d2a}:1.3.8
FF - prefs.js..extensions.enabledItems: {1280606b-2510-4fe0-97ef-9b5a22eafe41}:1.0.9
FF - prefs.js..extensions.enabledItems: fastdial@telega.phpnet.us:2.23b2
FF - prefs.js..extensions.enabledItems: {DDC359D1-844A-42a7-9AA1-88A850A938A8}:1.1.10
FF - prefs.js..extensions.enabledItems: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.7.1
FF - prefs.js..extensions.enabledItems: cs@dictionaries.addons.mozilla.org:1.0.2
FF - prefs.js..extensions.enabledItems: optimizegoogle@optimizegoogle.com:0.78.1
FF - prefs.js..extensions.enabledItems: {AE37D527-6604-461c-8102-975CF8053A2F}:0.5.3.1
FF - prefs.js..extensions.enabledItems: aging-tabs@design-noir.de:0.7.1
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2
FF - prefs.js..extensions.enabledItems: drobbek@shabbi.cz:1.1.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {0b38152b-1b20-484d-a11f-5e04a9b0661f}:5.6.12.1
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.10
FF - prefs.js..keyword.URL: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampab&query="

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.09.16 13:04:46 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.09.16 13:04:46 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2010.09.04 16:23:57 | 000,000,000 | ---D | M]

[2010.09.04 14:48:22 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\Mozilla\Extensions
[2010.09.04 14:48:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Mandarr\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2010.09.17 12:09:25 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\Mozilla\Firefox\Profiles\5lqtswyr.default\extensions
[2010.09.04 18:22:53 | 000,000,000 | ---D | M] (Winamp Toolbar) -- C:\Users\Mandarr\AppData\Roaming\Mozilla\Firefox\Profiles\5lqtswyr.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
[2010.09.04 15:26:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Mandarr\AppData\Roaming\Mozilla\Firefox\Profiles\5lqtswyr.default\extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe41}
[2010.09.04 15:26:38 | 000,000,000 | ---D | M] (Linkification) -- C:\Users\Mandarr\AppData\Roaming\Mozilla\Firefox\Profiles\5lqtswyr.default\extensions\{35106bca-6c78-48c7-ac28-56df30b51d2a}
[2010.09.11 09:18:55 | 000,000,000 | ---D | M] (NoScript) -- C:\Users\Mandarr\AppData\Roaming\Mozilla\Firefox\Profiles\5lqtswyr.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
[2010.09.04 15:26:38 | 000,000,000 | ---D | M] (BBCode) -- C:\Users\Mandarr\AppData\Roaming\Mozilla\Firefox\Profiles\5lqtswyr.default\extensions\{AE37D527-6604-461c-8102-975CF8053A2F}
[2010.09.04 15:26:37 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Mandarr\AppData\Roaming\Mozilla\Firefox\Profiles\5lqtswyr.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010.09.04 15:26:38 | 000,000,000 | ---D | M] (Download Statusbar) -- C:\Users\Mandarr\AppData\Roaming\Mozilla\Firefox\Profiles\5lqtswyr.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
[2010.09.04 15:26:38 | 000,000,000 | ---D | M] (DownThemAll!) -- C:\Users\Mandarr\AppData\Roaming\Mozilla\Firefox\Profiles\5lqtswyr.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
[2010.09.17 12:09:20 | 000,000,000 | ---D | M] (SearchPreview) -- C:\Users\Mandarr\AppData\Roaming\Mozilla\Firefox\Profiles\5lqtswyr.default\extensions\{EF522540-89F5-46b9-B6FE-1829E2B572C6}
[2010.09.04 15:26:37 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\Mozilla\Firefox\Profiles\5lqtswyr.default\extensions\aging-tabs@design-noir.de
[2010.09.16 13:04:41 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\Mozilla\Firefox\Profiles\5lqtswyr.default\extensions\cs@dictionaries.addons.mozilla.org
[2010.09.04 15:51:06 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\Mozilla\Firefox\Profiles\5lqtswyr.default\extensions\drobbek@shabbi.cz
[2010.09.04 15:26:38 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\Mozilla\Firefox\Profiles\5lqtswyr.default\extensions\fastdial@telega.phpnet.us
[2010.09.04 15:26:38 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\Mozilla\Firefox\Profiles\5lqtswyr.default\extensions\optimizegoogle@optimizegoogle.com
[2010.09.04 18:31:14 | 000,001,196 | ---- | M] () -- C:\Users\Mandarr\AppData\Roaming\Mozilla\Firefox\Profiles\5lqtswyr.default\searchplugins\winamp-search.xml
[2010.09.04 16:22:12 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010.09.16 13:04:46 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2010.09.04 16:22:12 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.09.16 13:04:44 | 000,023,512 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\Mozilla Firefox\components\browserdirprovider.dll
[2010.09.16 13:04:44 | 000,138,712 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\Mozilla Firefox\components\brwsrcmp.dll
[2010.09.04 16:22:03 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.09.04 17:44:25 | 000,075,208 | ---- | M] (Foxit Software Company) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
[2006.01.23 10:32:04 | 000,020,992 | ---- | M] (National Instruments) -- C:\Program Files (x86)\Mozilla Firefox\plugins\NPLV80Win32.dll
[2006.06.07 14:40:18 | 000,027,376 | ---- | M] (National Instruments) -- C:\Program Files (x86)\Mozilla Firefox\plugins\NPLV82Win32.dll
[2010.09.16 13:04:45 | 000,064,984 | ---- | M] (mozilla.org) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npnul32.dll
[2006.10.26 20:12:16 | 000,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL
[2010.07.23 02:28:34 | 000,002,371 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\google.xml
[2010.07.23 02:28:35 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.07.23 02:28:35 | 000,001,687 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.07.23 02:28:35 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.07.23 02:28:35 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.07.23 02:28:35 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2010.09.04 20:08:13 | 000,000,854 | RHS- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 activate.adobe.com
O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll ()
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O4:64bit: - HKLM..\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (AlcorMicro Co., Ltd.)
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.)
O4:64bit: - HKLM..\Run: [NvCplDaemon] C:\Windows\SysNative\NvCpl.DLL (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [OODefragTray] C:\Program Files\OO Software\Defrag\oodtray.exe (O&O Software GmbH)
O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe (ASUS)
O4 - HKLM..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe (ASUS)
O4 - HKLM..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe (ASUS)
O4 - HKCU..\Run: [Rainlendar2] C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108739
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: CDRAutoRun = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O8:64bit: - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysNative\nlaapi.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysNative\winrnr.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysNative\NapiNSP.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.10
O18:64bit: - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysNative\inetcomm.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files (x86)\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O29:64bit: - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O30:64bit: - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (kerberos) - C:\Windows\SysNative\kerberos.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (schannel) - C:\Windows\SysNative\schannel.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (wdigest) - C:\Windows\SysNative\wdigest.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (tspkg) - C:\Windows\SysNative\tspkg.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\SysWow64\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\SysWow64\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\SysWow64\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\SysWow64\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 0
O33 - MountPoints2\{f0f567e8-b82a-11df-a44d-90e6ba129a5c}\Shell - "" = AutoRun
O33 - MountPoints2\{f0f567e8-b82a-11df-a44d-90e6ba129a5c}\Shell\AutoRun\command - "" = Autoplay.exe -auto
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (OODBS) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

damates · Příspěvekod **damates** » 18 zář 2010 10:02

========== Files/Folders - Created Within 90 Days ==========

[2010.09.18 00:42:22 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\Mandarr\Desktop\OTL.exe
[2010.09.18 00:40:23 | 000,000,000 | R--D | C] -- C:\32788R22FWJFW
[2010.09.17 22:45:32 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\Malwarebytes
[2010.09.17 22:45:24 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010.09.17 22:45:23 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010.09.17 22:45:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010.09.17 22:45:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010.09.17 20:50:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Hijac
[2010.09.16 17:25:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Festo Fluidsim
[2010.09.16 17:17:48 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\Documents\FluidDraw
[2010.09.16 17:17:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FluidTools
[2010.09.16 17:15:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Festo
[2010.09.16 17:10:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Festo didactic
[2010.09.15 07:57:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Y Soft
[2010.09.14 08:48:13 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\Teeworlds
[2010.09.11 11:35:38 | 000,000,000 | ---D | C] -- C:\Program Files\Foxit Software
[2010.09.07 07:38:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HLSW
[2010.09.06 20:27:11 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Local\PunkBuster
[2010.09.06 20:26:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GamePark
[2010.09.06 20:06:16 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2010.09.06 20:06:16 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2010.09.06 20:06:16 | 000,021,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_2.dll
[2010.09.06 20:06:16 | 000,018,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_2.dll
[2010.09.06 20:06:15 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2010.09.06 20:06:15 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2010.09.06 20:06:15 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2010.09.06 20:06:15 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2010.09.06 20:06:15 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2010.09.06 20:06:15 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2010.09.06 20:06:15 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2010.09.06 20:06:15 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2010.09.06 20:06:14 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2010.09.06 20:06:14 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2010.09.06 20:06:14 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2010.09.06 20:06:14 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2010.09.06 20:06:14 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2010.09.06 20:06:14 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2010.09.06 20:06:13 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2010.09.06 20:06:13 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2010.09.06 20:06:13 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2010.09.06 20:06:13 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2010.09.06 20:06:12 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2010.09.06 20:06:12 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2010.09.06 20:06:11 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2010.09.06 20:06:11 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2010.09.06 20:06:10 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll
[2010.09.06 20:06:10 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll
[2010.09.06 20:06:10 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2010.09.06 20:06:10 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2010.09.06 20:06:10 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2010.09.06 20:06:10 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2010.09.06 20:06:09 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2010.09.06 20:06:09 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2010.09.06 20:06:09 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2010.09.06 20:06:08 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2010.09.06 20:06:08 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2010.09.06 12:42:06 | 000,000,000 | ---D | C] -- C:\ProgramData\TrackMania
[2010.09.06 12:01:07 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\Documents\TrackMania
[2010.09.06 12:01:06 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2010.09.06 12:01:06 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2010.09.06 12:01:05 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2010.09.06 12:01:05 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2010.09.06 12:01:04 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2010.09.06 12:01:04 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2010.09.06 12:00:56 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2010.09.06 12:00:56 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2010.09.06 12:00:54 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2010.09.06 12:00:54 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2010.09.06 12:00:54 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2010.09.06 12:00:54 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2010.09.06 12:00:53 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2010.09.06 12:00:53 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2010.09.06 12:00:52 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2010.09.06 12:00:52 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2010.09.06 12:00:51 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2010.09.06 12:00:51 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2010.09.06 12:00:50 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2010.09.06 12:00:50 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2010.09.06 12:00:50 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2010.09.06 12:00:50 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2010.09.06 12:00:49 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2010.09.06 12:00:49 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2010.09.05 14:54:41 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\Documents\plocha
[2010.09.05 13:43:48 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\MiniLyrics
[2010.09.05 13:43:48 | 000,000,000 | ---D | C] -- C:\Lyrics
[2010.09.05 13:43:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Minilyrics
[2010.09.05 10:35:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QIP Infium PafoPack 9040
[2010.09.05 00:58:53 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\oodag
[2010.09.05 00:47:44 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\Documents\Adobe
[2010.09.04 23:30:06 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Local\DFX
[2010.09.04 23:28:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DFX
[2010.09.04 23:28:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DFX
[2010.09.04 23:28:34 | 000,000,000 | ---D | C] -- C:\ProgramData\DFX
[2010.09.04 20:46:50 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet
[2010.09.04 20:42:29 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010.09.04 20:37:19 | 000,000,000 | ---D | C] -- C:\ProgramData\ALM
[2010.09.04 20:18:00 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\spool
[2010.09.04 20:17:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2010.09.04 20:17:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR
[2010.09.04 20:15:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared
[2010.09.04 20:15:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010.09.04 20:14:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2010.09.04 20:13:36 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Local\Adobe
[2010.09.04 20:13:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Macrovision Shared
[2010.09.04 19:54:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2010.09.04 19:49:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
[2010.09.04 19:49:44 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\Macromedia
[2010.09.04 19:49:43 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\Adobe
[2010.09.04 19:49:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio
[2010.09.04 19:49:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2010.09.04 19:49:13 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2010.09.04 19:49:01 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2010.09.04 19:47:05 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010.09.04 19:46:39 | 000,000,000 | ---D | C] -- C:\Windows\SHELLNEW
[2010.09.04 19:38:29 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\1033
[2010.09.04 19:17:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server
[2010.09.04 19:16:08 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SDKs
[2010.09.04 19:15:45 | 000,000,000 | ---D | C] -- C:\Program Files\Business Objects
[2010.09.04 19:14:32 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\js
[2010.09.04 19:14:32 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\images
[2010.09.04 19:14:32 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\html
[2010.09.04 19:14:32 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\css
[2010.09.04 19:14:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Business Objects
[2010.09.04 19:14:06 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Device Emulator
[2010.09.04 19:14:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Device Emulator
[2010.09.04 19:13:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Mobile 5.0 SDK R2
[2010.09.04 19:12:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Synchronization Services
[2010.09.04 19:12:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[2010.09.04 19:07:14 | 000,000,000 | ---D | C] -- C:\ProgramData\PreEmptive Solutions
[2010.09.04 19:05:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2010.09.04 19:04:53 | 000,000,000 | ---D | C] -- C:\Windows\symbols
[2010.09.04 19:03:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2010.09.04 19:03:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 9.0
[2010.09.04 19:03:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SDKs
[2010.09.04 19:03:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HTML Help Workshop
[2010.09.04 19:03:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CE Remote Tools
[2010.09.04 19:02:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Web Designer Tools
[2010.09.04 19:01:59 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2010.09.04 19:01:08 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\Documents\Visual Studio 2008
[2010.09.04 19:01:07 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Local\Microsoft Help
[2010.09.04 19:00:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2010.09.04 19:00:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 9.0
[2010.09.04 19:00:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\1033
[2010.09.04 18:53:11 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Local\O&O
[2010.09.04 18:52:15 | 000,000,000 | ---D | C] -- C:\Program Files\OO Software
[2010.09.04 18:49:20 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\AntispamSniper
[2010.09.04 18:49:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AntispamSniper for TheBat!
[2010.09.04 18:40:06 | 000,000,000 | ---D | C] -- C:\The Bat!
[2010.09.04 18:38:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\The Bat!
[2010.09.04 18:35:11 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\esmska
[2010.09.04 18:35:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\esmska-0.20.0
[2010.09.04 18:25:21 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\URSoft
[2010.09.04 18:25:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Your Uninstaller 2010
[2010.09.04 18:23:53 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp
[2010.09.04 18:23:28 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2010.09.04 18:23:28 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2010.09.04 18:22:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Winamp Toolbar
[2010.09.04 18:22:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PX Storage Engine
[2010.09.04 18:22:20 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\Winamp
[2010.09.04 18:22:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Winamp
[2010.09.04 18:19:04 | 000,000,000 | ---D | C] -- C:\Program Files\VentriloMIX
[2010.09.04 18:18:45 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Local\ESET
[2010.09.04 18:02:48 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\Documents\eagle
[2010.09.04 17:58:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EAGLE-5.10.0
[2010.09.04 17:58:08 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\CadSoft
[2010.09.04 17:45:22 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\Foxit Software
[2010.09.04 17:41:13 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Local\Cyberlink
[2010.09.04 17:33:01 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\XnView
[2010.09.04 17:32:01 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\Documents\CyberLink
[2010.09.04 17:32:00 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\CyberLink
[2010.09.04 17:31:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\XnView
[2010.09.04 17:30:58 | 000,000,000 | ---D | C] -- C:\ProgramData\CyberLink
[2010.09.04 17:30:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\CyberLink
[2010.09.04 17:28:41 | 000,029,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3a.dll
[2010.09.04 17:28:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CyberLink
[2010.09.04 17:28:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Temp
[2010.09.04 17:26:08 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\BSplayer PRO
[2010.09.04 17:26:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Webteh
[2010.09.04 17:15:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Foxit Software
[2010.09.04 17:14:37 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\Documents\samples
[2010.09.04 17:14:35 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\ProfiCAD
[2010.09.04 17:14:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ProfiCAD
[2010.09.04 17:14:06 | 000,255,552 | ---- | C] (MagicISO, Inc.) -- C:\Windows\SysWow64\drivers\mcdbus.sys
[2010.09.04 17:14:06 | 000,255,552 | ---- | C] (MagicISO, Inc.) -- C:\Windows\SysNative\drivers\mcdbus.sys
[2010.09.04 17:14:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MagicDisc
[2010.09.04 17:04:03 | 000,000,000 | ---D | C] -- C:\totalcmd
[2010.09.04 17:04:03 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\GHISLER
[2010.09.04 16:44:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2010.09.04 16:37:51 | 000,000,000 | ---D | C] -- C:\ProgramData\ConeXware
[2010.09.04 16:33:00 | 000,232,448 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\SysWow64\mp3fhg.acm
[2010.09.04 16:33:00 | 000,151,552 | ---- | C] (fccHandler) -- C:\Windows\SysWow64\ac3acm.acm
[2010.09.04 16:32:59 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\Windows\SysWow64\yv12vfw.dll
[2010.09.04 16:32:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\K-Lite Codec Pack
[2010.09.04 16:32:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PowerArchiver
[2010.09.04 16:31:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HI-TECH Software
[2010.09.04 16:29:36 | 000,000,000 | ---D | C] -- C:\ProgramData\National Instruments
[2010.09.04 16:29:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Merge Modules
[2010.09.04 16:29:23 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\cvirte
[2010.09.04 16:29:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\National Instruments
[2010.09.04 16:27:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MagicISO
[2010.09.04 16:26:22 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\ESET
[2010.09.04 16:24:13 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\VitySoft
[2010.09.04 16:23:56 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2010.09.04 16:23:56 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010.09.04 16:22:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010.09.04 16:22:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2010.09.04 16:22:11 | 000,423,656 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010.09.04 16:22:11 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010.09.04 16:22:11 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010.09.04 16:22:11 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010.09.04 16:22:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2010.09.04 15:53:40 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\.rainlendar2
[2010.09.04 15:53:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Rainlendar2
[2010.09.04 15:35:08 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar
[2010.09.04 15:35:05 | 000,034,632 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
[2010.09.04 15:35:01 | 000,036,168 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\uxtuneup.dll
[2010.09.04 15:35:00 | 000,030,024 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\uxtuneup.dll
[2010.09.04 15:35:00 | 000,025,928 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
[2010.09.04 15:35:00 | 000,021,320 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[2010.09.04 15:34:45 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\TuneUp Software
[2010.09.04 15:34:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuneUp Utilities 2010
[2010.09.04 15:34:24 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2010.09.04 15:34:18 | 000,000,000 | -HSD | C] -- C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2010.09.04 15:22:03 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2010.09.04 15:22:03 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2010.09.04 15:15:05 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll
[2010.09.04 15:15:05 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll
[2010.09.04 15:15:05 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe
[2010.09.04 15:15:05 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe
[2010.09.04 15:15:05 | 000,109,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll
[2010.09.04 15:15:05 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll
[2010.09.04 15:15:05 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll
[2010.09.04 15:15:05 | 000,048,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll
[2010.09.04 15:14:53 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browserchoice.exe
[2010.09.04 14:48:17 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\Mozilla
[2010.09.04 14:48:17 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Local\Mozilla
[2010.09.04 14:48:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2010.09.04 14:46:29 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2010.09.04 14:46:29 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2010.09.04 14:46:29 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010.09.04 14:46:29 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2010.09.04 14:46:29 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2010.09.04 14:46:29 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2010.09.04 14:45:56 | 005,507,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2010.09.04 14:45:55 | 003,955,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2010.09.04 14:45:55 | 003,899,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2010.09.04 14:45:53 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll
[2010.09.04 14:45:53 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
[2010.09.04 14:45:53 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax
[2010.09.04 14:45:53 | 000,258,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax
[2010.09.04 14:45:53 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax
[2010.09.04 14:45:52 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
[2010.09.04 14:45:52 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2010.09.04 14:45:52 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2010.09.04 14:44:52 | 000,852,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2010.09.04 14:44:52 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2010.09.04 14:44:46 | 001,446,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2010.09.04 14:43:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FreeRapid-0.83u1
[2010.09.04 14:39:29 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2010.09.04 14:36:33 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msasn1.dll
[2010.09.04 14:36:29 | 000,366,080 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2010.09.04 14:36:29 | 000,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2010.09.04 14:36:29 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2010.09.04 14:36:29 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2010.09.04 14:36:29 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2010.09.04 14:36:29 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2010.09.04 14:32:43 | 001,736,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2010.09.04 14:32:34 | 000,612,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2010.09.04 14:32:34 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vbscript.dll
[2010.09.04 14:32:25 | 001,975,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll
[2010.09.04 14:32:25 | 001,320,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll
[2010.09.04 14:31:18 | 000,424,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll
[2010.09.04 14:31:18 | 000,422,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll
[2010.09.04 14:31:18 | 000,369,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll
[2010.09.04 14:31:18 | 000,365,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll
[2010.09.04 14:31:18 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe
[2010.09.04 14:31:18 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe
[2010.09.04 14:31:17 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe
[2010.09.04 14:31:17 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe
[2010.09.04 14:31:17 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe
[2010.09.04 14:31:17 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe
[2010.09.04 14:31:17 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe
[2010.09.04 14:31:17 | 000,277,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe
[2010.09.04 14:31:17 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll
[2010.09.04 14:31:17 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll
[2010.09.04 14:31:17 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll
[2010.09.04 14:31:17 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll
[2010.09.04 14:30:17 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll
[2010.09.04 14:30:17 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll
[2010.09.04 14:29:45 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2010.09.04 14:29:39 | 002,870,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2010.09.04 14:29:39 | 002,614,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2010.09.04 14:29:38 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe
[2010.09.04 14:29:30 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2010.09.04 14:29:30 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2010.09.04 14:29:30 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2010.09.04 14:29:30 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2010.09.04 14:29:30 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2010.09.04 14:29:30 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2010.09.04 14:29:27 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll
[2010.09.04 14:29:27 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rtutils.dll
[2010.09.04 14:29:10 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll
[2010.09.04 14:29:01 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2010.09.04 14:27:40 | 001,572,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2010.09.04 14:27:40 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2010.09.04 14:27:40 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\avifil32.dll
[2010.09.04 14:27:40 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciavi32.dll
[2010.09.04 14:25:36 | 000,000,000 | ---D | C] -- C:\ProgramData\AmUStor
[2010.09.04 14:25:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AmIcoSingLun
[2010.09.04 14:23:50 | 000,359,552 | ---- | C] (ASUSTeK Computer Inc.) -- C:\Windows\SysNative\FBAgent.exe
[2010.09.04 14:23:49 | 000,000,000 | ---D | C] -- C:\Program Files\ASUS
[2010.09.04 14:21:47 | 000,236,544 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys
[2010.09.04 14:21:47 | 000,097,792 | ---- | C] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\RTNUninst64.dll
[2010.09.04 14:21:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2010.09.04 14:20:25 | 000,000,000 | ---D | C] -- C:\ProgramData\ASUS
[2010.09.04 14:20:24 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2010.09.04 14:20:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2010.09.04 14:19:44 | 000,000,000 | ---D | C] -- C:\ProgramData\P4G
[2010.09.04 14:19:44 | 000,000,000 | ---D | C] -- C:\Program Files\P4G
[2010.09.04 14:17:54 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2010.09.04 14:17:54 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wintrust.dll
[2010.09.04 14:17:53 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabview.dll
[2010.09.04 14:17:53 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabview.dll
[2010.09.04 14:16:21 | 000,000,000 | ---D | C] -- C:\Program Files\Elantech
[2010.09.04 14:14:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASUS
[2010.09.04 14:00:55 | 000,000,000 | R--D | C] -- C:\Users\Mandarr\Searches
[2010.09.04 14:00:44 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\Identities
[2010.09.04 14:00:42 | 000,000,000 | R--D | C] -- C:\Users\Mandarr\Contacts
[2010.09.04 14:00:41 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Local\VirtualStore
[2010.09.04 14:00:36 | 000,000,000 | -HSD | C] -- C:\Users\Mandarr\AppData\Local\Temporary Internet Files
[2010.09.04 14:00:36 | 000,000,000 | -HSD | C] -- C:\Users\Mandarr\Šablony
[2010.09.04 14:00:36 | 000,000,000 | -HSD | C] -- C:\Users\Mandarr\Soubory cookie
[2010.09.04 14:00:36 | 000,000,000 | -HSD | C] -- C:\Users\Mandarr\SendTo
[2010.09.04 14:00:36 | 000,000,000 | -HSD | C] -- C:\Users\Mandarr\Poslední
[2010.09.04 14:00:36 | 000,000,000 | -HSD | C] -- C:\Users\Mandarr\Okolní tiskárny
[2010.09.04 14:00:36 | 000,000,000 | -HSD | C] -- C:\Users\Mandarr\Okolní síť
[2010.09.04 14:00:36 | 000,000,000 | -HSD | C] -- C:\Users\Mandarr\Documents\Obrázky
[2010.09.04 14:00:36 | 000,000,000 | -HSD | C] -- C:\Users\Mandarr\Nabídka Start
[2010.09.04 14:00:36 | 000,000,000 | -HSD | C] -- C:\Users\Mandarr\Local Settings
[2010.09.04 14:00:36 | 000,000,000 | -HSD | C] -- C:\Users\Mandarr\Documents\Hudba
[2010.09.04 14:00:36 | 000,000,000 | -HSD | C] -- C:\Users\Mandarr\AppData\Local\History
[2010.09.04 14:00:36 | 000,000,000 | -HSD | C] -- C:\Users\Mandarr\Documents\Filmy
[2010.09.04 14:00:36 | 000,000,000 | -HSD | C] -- C:\Users\Mandarr\Dokumenty
[2010.09.04 14:00:36 | 000,000,000 | -HSD | C] -- C:\Users\Mandarr\Data aplikací
[2010.09.04 14:00:36 | 000,000,000 | -HSD | C] -- C:\Users\Mandarr\AppData\Local\Data aplikací
[2010.09.04 14:00:35 | 000,000,000 | --SD | C] -- C:\Users\Mandarr\AppData\Roaming\Microsoft
[2010.09.04 14:00:35 | 000,000,000 | R--D | C] -- C:\Users\Mandarr\Videos
[2010.09.04 14:00:35 | 000,000,000 | R--D | C] -- C:\Users\Mandarr\Saved Games
[2010.09.04 14:00:35 | 000,000,000 | R--D | C] -- C:\Users\Mandarr\Pictures
[2010.09.04 14:00:35 | 000,000,000 | R--D | C] -- C:\Users\Mandarr\Music
[2010.09.04 14:00:35 | 000,000,000 | R--D | C] -- C:\Users\Mandarr\Links
[2010.09.04 14:00:35 | 000,000,000 | R--D | C] -- C:\Users\Mandarr\Favorites
[2010.09.04 14:00:35 | 000,000,000 | R--D | C] -- C:\Users\Mandarr\Downloads
[2010.09.04 14:00:35 | 000,000,000 | R--D | C] -- C:\Users\Mandarr\Dokumenty
[2010.09.04 14:00:35 | 000,000,000 | R--D | C] -- C:\Users\Mandarr\Desktop
[2010.09.04 14:00:35 | 000,000,000 | -H-D | C] -- C:\Users\Mandarr\AppData
[2010.09.04 14:00:35 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Local\Temp
[2010.09.04 14:00:35 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Local\Microsoft
[2010.09.04 14:00:35 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Roaming\Media Center Programs
[2010.09.04 14:00:17 | 000,000,000 | -HSD | C] -- C:\ProgramData\Šablony
[2010.09.04 14:00:17 | 000,000,000 | -HSD | C] -- C:\Recovery
[2010.09.04 14:00:17 | 000,000,000 | -HSD | C] -- C:\ProgramData\Plocha
[2010.09.04 14:00:17 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Obrázky
[2010.09.04 14:00:17 | 000,000,000 | -HSD | C] -- C:\ProgramData\Oblíbené položky
[2010.09.04 14:00:17 | 000,000,000 | -HSD | C] -- C:\ProgramData\Nabídka Start
[2010.09.04 14:00:17 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Hudba
[2010.09.04 14:00:17 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Filmy
[2010.09.04 14:00:17 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2010.09.04 14:00:17 | 000,000,000 | -HSD | C] -- C:\ProgramData\Data aplikací
[2010.09.04 13:40:27 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2010.09.04 13:28:57 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\AppData\Local\Diagnostics
[2010.09.04 13:26:47 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2010.09.04 13:26:41 | 000,539,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvuninst.exe
[2010.09.04 12:43:52 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2010.09.04 12:41:17 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2010.09.04 12:40:56 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010.09.02 21:33:42 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\Desktop\fotou
[2010.09.02 21:33:22 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\Desktop\A2 Mandar
[2010.09.02 21:32:21 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\Documents\škola
[2010.09.02 21:32:21 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\Documents\National Instruments
[2010.09.02 21:32:21 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\Documents\MXpro
[2010.09.02 21:32:21 | 000,000,000 | ---D | C] -- C:\Users\Mandarr\Documents\doma

========== Files - Modified Within 90 Days ==========

[2010.09.18 00:51:12 | 002,359,296 | -HS- | M] () -- C:\Users\Mandarr\NTUSER.DAT
[2010.09.18 00:42:39 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Mandarr\Desktop\OTL.exe
[2010.09.18 00:21:07 | 000,233,960 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2010.09.18 00:21:07 | 000,233,960 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2010.09.18 00:17:48 | 000,013,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010.09.18 00:17:48 | 000,013,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010.09.18 00:15:02 | 001,470,062 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010.09.18 00:15:02 | 000,631,292 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2010.09.18 00:15:02 | 000,616,008 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010.09.18 00:15:02 | 000,121,914 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2010.09.18 00:15:02 | 000,106,388 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010.09.18 00:10:32 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.09.18 00:10:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.09.18 00:10:25 | 3220,647,936 | -HS- | M] () -- C:\hiberfil.sys
[2010.09.18 00:10:24 | 000,066,352 | ---- | M] () -- C:\Windows\SysNative\oodbs.lor
[2010.09.18 00:09:33 | 002,452,621 | -H-- | M] () -- C:\Users\Mandarr\AppData\Local\IconCache.db
[2010.09.17 22:45:27 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.09.17 20:50:03 | 000,002,997 | ---- | M] () -- C:\Users\Mandarr\Desktop\HiJackThis.lnk
[2010.09.17 20:21:44 | 000,007,609 | ---- | M] () -- C:\Users\Mandarr\AppData\Local\resmon.resmoncfg
[2010.09.16 17:16:49 | 000,000,186 | ---- | M] () -- C:\Windows\FESTO.INI
[2010.09.15 15:48:02 | 000,001,414 | ---- | M] () -- C:\Windows\SysNative\AutoRunFilter.ini
[2010.09.15 14:31:57 | 000,355,741 | ---- | M] () -- C:\Users\Mandarr\Desktop\Měření teploty.docx
[2010.09.15 12:44:50 | 000,013,369 | ---- | M] () -- C:\Users\Mandarr\Desktop\Střední průmyslová škola strojní a elektrotechnická a Vyšší odborná škola.docx
[2010.09.13 09:50:58 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010.09.07 07:39:00 | 000,000,911 | ---- | M] () -- C:\Users\Mandarr\Desktop\HLSW.lnk
[2010.09.06 20:44:25 | 000,075,064 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2010.09.06 20:26:37 | 000,001,793 | ---- | M] () -- C:\Users\Mandarr\Desktop\GamePark.lnk
[2010.09.06 20:04:56 | 000,000,453 | ---- | M] () -- C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) Wielu graczy.lnk
[2010.09.06 20:04:56 | 000,000,453 | ---- | M] () -- C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) Jeden gracz.lnk
[2010.09.06 19:58:32 | 000,000,283 | ---- | M] () -- C:\Windows\game.ini
[2010.09.06 12:00:19 | 000,000,614 | ---- | M] () -- C:\Users\Public\Desktop\TmNationsForever.lnk
[2010.09.06 11:14:35 | 000,000,661 | ---- | M] () -- C:\Users\Mandarr\Desktop\TmNations.lnk
[2010.09.06 07:41:04 | 000,001,048 | ---- | M] () -- C:\Users\Mandarr\Desktop\qip – zástupce.lnk
[2010.09.04 22:03:30 | 003,017,064 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010.09.04 22:03:18 | 000,001,415 | ---- | M] () -- C:\Windows\SysNative\ServiceFilter.ini
[2010.09.04 20:46:51 | 000,109,328 | ---- | M] () -- C:\Users\Mandarr\AppData\Local\GDIPFONTCACHEV1.DAT
[2010.09.04 19:14:46 | 000,000,172 | ---- | M] () -- C:\Windows\ODBC.INI
[2010.09.04 18:52:17 | 000,001,995 | ---- | M] () -- C:\Users\Public\Desktop\O&O Defrag.lnk
[2010.09.04 18:37:52 | 000,000,992 | ---- | M] () -- C:\Users\Mandarr\Desktop\esmska – zástupce.lnk
[2010.09.04 18:25:18 | 000,001,086 | ---- | M] () -- C:\Users\Mandarr\Desktop\Your Unin-staller!.lnk
[2010.09.04 18:23:29 | 000,000,979 | ---- | M] () -- C:\Users\Public\Desktop\Winamp.lnk
[2010.09.04 17:33:30 | 000,000,919 | ---- | M] () -- C:\Users\Mandarr\Desktop\XnView.lnk
[2010.09.04 17:28:26 | 000,505,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp71.dll
[2010.09.04 17:28:26 | 000,353,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr71.dll
[2010.09.04 17:28:26 | 000,029,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3a.dll
[2010.09.04 17:26:26 | 000,001,143 | ---- | M] () -- C:\Users\Public\Desktop\BS.Player PRO.lnk
[2010.09.04 17:14:43 | 000,001,007 | ---- | M] () -- C:\Users\Mandarr\Desktop\ProfiCAD.lnk
[2010.09.04 17:14:23 | 000,000,953 | ---- | M] () -- C:\Users\Mandarr\Desktop\MagicDisc.lnk
[2010.09.04 16:44:25 | 000,001,036 | ---- | M] () -- C:\Users\Public\Desktop\Aktualizovat ESET licenci.lnk
[2010.09.04 16:27:25 | 000,001,799 | ---- | M] () -- C:\Users\Mandarr\Desktop\MagicISO.lnk
[2010.09.04 16:22:03 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010.09.04 16:22:03 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010.09.04 16:22:03 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010.09.04 16:22:03 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010.09.04 15:34:54 | 000,002,177 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp 1-Click Maintenance.lnk
[2010.09.04 15:34:54 | 000,002,159 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk
[2010.09.04 15:12:30 | 000,000,118 | ---- | M] () -- C:\Windows\SysNative\MRT.INI
[2010.09.04 15:03:09 | 000,000,080 | ---- | M] () -- C:\Windows\SysNative\Defrag.ini
[2010.09.04 14:48:18 | 000,000,000 | ---- | M] () -- C:\Windows\nsreg.dat
[2010.09.04 14:37:01 | 000,524,288 | -HS- | M] () -- C:\Users\Mandarr\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2010.09.04 14:37:01 | 000,524,288 | -HS- | M] () -- C:\Users\Mandarr\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2010.09.04 14:37:01 | 000,065,536 | -HS- | M] () -- C:\Users\Mandarr\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2010.09.04 14:35:41 | 000,539,168 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvusmu.exe
[2010.09.04 14:35:41 | 000,167,936 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NVCOSMU.DLL
[2010.09.04 14:35:41 | 000,001,383 | ---- | M] () -- C:\Windows\SysNative\nvsmu.nvu
[2010.09.04 14:35:40 | 000,402,976 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvraiins.dll
[2010.09.04 14:35:40 | 000,402,976 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvraidco.dll
[2010.09.04 14:35:40 | 000,018,976 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRCoPtb.dll
[2010.09.04 14:35:40 | 000,018,976 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRCoIt.dll
[2010.09.04 14:35:40 | 000,018,976 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRCoFr.dll
[2010.09.04 14:35:40 | 000,018,976 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRCoEsm.dll
[2010.09.04 14:35:40 | 000,018,976 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRCoEs.dll
[2010.09.04 14:35:40 | 000,018,976 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRCoDe.dll
[2010.09.04 14:35:40 | 000,018,464 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRCoSv.dll
[2010.09.04 14:35:40 | 000,018,464 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRCoRu.dll
[2010.09.04 14:35:40 | 000,018,464 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRCoNo.dll
[2010.09.04 14:35:40 | 000,018,464 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRCoNl.dll
[2010.09.04 14:35:40 | 000,018,464 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRCoFi.dll
[2010.09.04 14:35:40 | 000,018,464 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRCoDa.dll
[2010.09.04 14:35:40 | 000,017,952 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRCoENU.dll
[2010.09.04 14:35:40 | 000,017,952 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRCoEng.dll
[2010.09.04 14:35:40 | 000,016,416 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRCoKo.dll
[2010.09.04 14:35:40 | 000,016,416 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRCoJa.dll
[2010.09.04 14:35:40 | 000,015,904 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRCoZht.dll
[2010.09.04 14:35:40 | 000,015,904 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRCoZhc.dll
[2010.09.04 14:34:11 | 004,357,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2010.09.04 14:34:10 | 014,287,872 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2010.09.04 14:34:10 | 003,150,848 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2010.09.04 14:34:10 | 000,508,448 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvudisp.exe
[2010.09.04 14:34:09 | 010,379,264 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2010.09.04 14:34:04 | 001,530,400 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvencodemft.dll
[2010.09.04 14:34:04 | 000,256,544 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvdecodemft.dll
[2010.09.04 14:34:04 | 000,010,060 | ---- | M] () -- C:\Windows\SysNative\nvdisp.nvu
[2010.09.04 14:34:03 | 009,470,976 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2010.09.04 14:34:03 | 000,322,080 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdecodemft.dll
[2010.09.04 14:34:01 | 007,616,000 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2010.09.04 14:34:00 | 002,304,512 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2010.09.04 14:34:00 | 001,705,984 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2010.09.04 14:34:00 | 001,317,408 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2010.09.04 14:34:00 | 000,733,728 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2010.09.04 14:34:00 | 000,678,432 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2010.09.04 14:33:58 | 001,228,288 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2010.09.04 14:33:58 | 000,990,720 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2010.09.04 14:33:58 | 000,167,936 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcod155.dll
[2010.09.04 14:33:58 | 000,167,936 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcod.dll
[2010.09.04 14:33:58 | 000,011,168 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvBridge.kmd
[2010.09.04 14:31:05 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\drivers\1043_ASUSTeK_K50IN.alu
[2010.09.04 14:29:17 | 000,015,928 | ---- | M] (ASUS) -- C:\Windows\SysNative\drivers\ATK64AMD.sys
[2010.09.04 14:25:53 | 001,806,400 | ---- | M] () -- C:\Windows\SysNative\drivers\snp2uvc.sys
[2010.09.04 14:25:53 | 000,042,176 | ---- | M] () -- C:\Windows\SysNative\drivers\sncduvc.sys
[2010.09.04 14:25:53 | 000,019,008 | ---- | M] (Chicony (C) 2006 ATC) -- C:\Windows\DrvInst.exe
[2010.09.04 14:25:53 | 000,002,266 | ---- | M] () -- C:\Windows\Uninstvga.bat
[2010.09.04 14:25:53 | 000,002,008 | ---- | M] () -- C:\Windows\Uninstsxga.bat
[2010.09.04 14:25:53 | 000,001,682 | ---- | M] () -- C:\Windows\Uninstuxga.bat
[2010.09.04 14:25:53 | 000,000,386 | ---- | M] () -- C:\Windows\Uninstuxga.reg
[2010.09.04 14:25:53 | 000,000,386 | ---- | M] () -- C:\Windows\Uninstsxga.reg
[2010.09.04 14:25:53 | 000,000,384 | ---- | M] () -- C:\Windows\Uninstvga.reg
[2010.09.04 14:21:31 | 000,097,792 | ---- | M] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\RTNUninst64.dll
[2010.09.04 14:21:30 | 000,236,544 | ---- | M] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys
[2010.09.04 14:21:30 | 000,067,584 | ---- | M] () -- C:\Windows\SysNative\RtNicProp64.dll
[2010.09.04 14:16:04 | 004,638,720 | ---- | M] (ELAN Microelectronics Corp.) -- C:\Windows\SysNative\ETDUI.cpl
[2010.09.04 14:16:02 | 000,140,800 | ---- | M] (ELAN Microelectronic Corp.) -- C:\Windows\SysNative\drivers\ETD.sys
[2010.09.04 14:00:36 | 000,000,020 | -HS- | M] () -- C:\Users\Mandarr\ntuser.ini
[2010.09.04 12:44:22 | 000,068,224 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2010.09.04 12:44:22 | 000,068,224 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2010.08.12 10:00:00 | 000,108,032 | ---- | M] () -- C:\Windows\SysWow64\ff_vfw.dll
[2010.08.12 10:00:00 | 000,000,038 | ---- | M] () -- C:\Windows\avisplitter.ini
[2010.07.29 08:30:34 | 000,082,944 | ---- | M] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll
[2010.06.30 09:11:36 | 000,247,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2010.06.30 09:11:35 | 000,256,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2010.06.30 09:09:20 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2010.06.30 08:21:47 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010.06.30 08:21:47 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2010.06.30 08:19:16 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe

========== Files Created - No Company Name ==========

[2010.09.17 22:45:27 | 000,000,969 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.09.17 20:50:03 | 000,002,997 | ---- | C] () -- C:\Users\Mandarr\Desktop\HiJackThis.lnk
[2010.09.16 17:15:57 | 000,000,186 | ---- | C] () -- C:\Windows\FESTO.INI
[2010.09.15 13:42:44 | 000,355,741 | ---- | C] () -- C:\Users\Mandarr\Desktop\Měření teploty.docx
[2010.09.15 12:44:49 | 000,013,369 | ---- | C] () -- C:\Users\Mandarr\Desktop\Střední průmyslová škola strojní a elektrotechnická a Vyšší odborná škola.docx
[2010.09.15 07:57:59 | 003,011,072 | ---- | C] () -- C:\Windows\SysNative\SAFEQVS64.DLL
[2010.09.15 07:57:59 | 000,519,168 | ---- | C] () -- C:\Windows\SysNative\SafeQCairoLib64.DLL
[2010.09.15 07:57:59 | 000,139,264 | ---- | C] () -- C:\Windows\SysNative\SAFEQ64UI.DLL
[2010.09.13 09:50:58 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010.09.07 07:39:00 | 000,000,911 | ---- | C] () -- C:\Users\Mandarr\Desktop\HLSW.lnk
[2010.09.06 20:47:18 | 000,233,960 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2010.09.06 20:26:37 | 000,001,793 | ---- | C] () -- C:\Users\Mandarr\Desktop\GamePark.lnk
[2010.09.06 20:04:56 | 000,000,453 | ---- | C] () -- C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) Wielu graczy.lnk
[2010.09.06 20:04:56 | 000,000,453 | ---- | C] () -- C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) Jeden gracz.lnk
[2010.09.06 19:58:37 | 000,233,960 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2010.09.06 19:58:33 | 000,075,064 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2010.09.06 19:58:32 | 000,000,283 | ---- | C] () -- C:\Windows\game.ini
[2010.09.06 12:00:19 | 000,000,614 | ---- | C] () -- C:\Users\Public\Desktop\TmNationsForever.lnk
[2010.09.06 11:14:35 | 000,000,661 | ---- | C] () -- C:\Users\Mandarr\Desktop\TmNations.lnk
[2010.09.06 07:41:04 | 000,001,048 | ---- | C] () -- C:\Users\Mandarr\Desktop\qip – zástupce.lnk
[2010.09.04 23:48:46 | 000,007,609 | ---- | C] () -- C:\Users\Mandarr\AppData\Local\resmon.resmoncfg
[2010.09.04 22:01:55 | 000,066,352 | ---- | C] () -- C:\Windows\SysNative\oodbs.lor
[2010.09.04 19:14:45 | 000,000,172 | ---- | C] () -- C:\Windows\ODBC.INI
[2010.09.04 18:52:17 | 000,001,995 | ---- | C] () -- C:\Users\Public\Desktop\O&O Defrag.lnk
[2010.09.04 18:37:52 | 000,000,992 | ---- | C] () -- C:\Users\Mandarr\Desktop\esmska – zástupce.lnk
[2010.09.04 18:25:18 | 000,001,086 | ---- | C] () -- C:\Users\Mandarr\Desktop\Your Unin-staller!.lnk
[2010.09.04 18:23:29 | 000,000,979 | ---- | C] () -- C:\Users\Public\Desktop\Winamp.lnk
[2010.09.04 17:33:30 | 000,000,919 | ---- | C] () -- C:\Users\Mandarr\Desktop\XnView.lnk
[2010.09.04 17:26:26 | 000,001,143 | ---- | C] () -- C:\Users\Public\Desktop\BS.Player PRO.lnk
[2010.09.04 17:14:43 | 000,001,007 | ---- | C] () -- C:\Users\Mandarr\Desktop\ProfiCAD.lnk
[2010.09.04 17:14:23 | 000,000,953 | ---- | C] () -- C:\Users\Mandarr\Desktop\MagicDisc.lnk
[2010.09.04 17:04:03 | 000,000,545 | ---- | C] () -- C:\Windows\UC.PIF
[2010.09.04 17:04:03 | 000,000,545 | ---- | C] () -- C:\Windows\RAR.PIF
[2010.09.04 17:04:03 | 000,000,545 | ---- | C] () -- C:\Windows\PKZIP.PIF
[2010.09.04 17:04:03 | 000,000,545 | ---- | C] () -- C:\Windows\PKUNZIP.PIF
[2010.09.04 17:04:03 | 000,000,545 | ---- | C] () -- C:\Windows\NOCLOSE.PIF
[2010.09.04 17:04:03 | 000,000,545 | ---- | C] () -- C:\Windows\LHA.PIF
[2010.09.04 17:04:03 | 000,000,545 | ---- | C] () -- C:\Windows\ARJ.PIF
[2010.09.04 16:44:25 | 000,001,036 | ---- | C] () -- C:\Users\Public\Desktop\Aktualizovat ESET licenci.lnk
[2010.09.04 16:33:06 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2010.09.04 16:33:05 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2010.09.04 16:32:59 | 000,790,528 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2010.09.04 16:32:59 | 000,134,144 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2010.09.04 16:32:58 | 000,108,032 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2010.09.04 16:32:58 | 000,000,547 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll.manifest
[2010.09.04 16:27:25 | 000,001,799 | ---- | C] () -- C:\Users\Mandarr\Desktop\MagicISO.lnk
[2010.09.04 15:34:54 | 000,002,177 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp 1-Click Maintenance.lnk
[2010.09.04 15:34:54 | 000,002,159 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk
[2010.09.04 15:12:30 | 000,000,118 | ---- | C] () -- C:\Windows\SysNative\MRT.INI
[2010.09.04 14:48:18 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2010.09.04 14:31:05 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\drivers\1043_ASUSTeK_K50IN.alu
[2010.09.04 14:29:59 | 000,003,116 | ---- | C] () -- C:\Windows\SysNative\wimfltr.inf
[2010.09.04 14:23:50 | 000,001,415 | ---- | C] () -- C:\Windows\SysNative\ServiceFilter.ini
[2010.09.04 14:23:50 | 000,001,414 | ---- | C] () -- C:\Windows\SysNative\AutoRunFilter.ini
[2010.09.04 14:23:50 | 000,000,105 | ---- | C] () -- C:\Windows\SysNative\FastBoot.ini
[2010.09.04 14:23:50 | 000,000,080 | ---- | C] () -- C:\Windows\SysNative\Defrag.ini
[2010.09.04 14:23:50 | 000,000,052 | ---- | C] () -- C:\Windows\SysNative\RemoveFont.ini
[2010.09.04 14:23:50 | 000,000,015 | ---- | C] () -- C:\Windows\SysNative\BootTime.ini
[2010.09.04 14:21:47 | 000,067,584 | ---- | C] () -- C:\Windows\SysNative\RtNicProp64.dll
[2010.09.04 14:00:36 | 000,524,288 | -HS- | C] () -- C:\Users\Mandarr\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2010.09.04 14:00:36 | 000,524,288 | -HS- | C] () -- C:\Users\Mandarr\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2010.09.04 14:00:36 | 000,065,536 | -HS- | C] () -- C:\Users\Mandarr\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2010.09.04 14:00:36 | 000,000,020 | -HS- | C] () -- C:\Users\Mandarr\ntuser.ini
[2010.09.04 14:00:35 | 002,359,296 | -HS- | C] () -- C:\Users\Mandarr\NTUSER.DAT
[2010.09.04 14:00:35 | 000,262,144 | -HS- | C] () -- C:\Users\Mandarr\ntuser.dat.LOG1
[2010.09.04 14:00:35 | 000,000,000 | -HS- | C] () -- C:\Users\Mandarr\ntuser.dat.LOG2
[2010.09.04 12:40:56 | 3220,647,936 | -HS- | C] () -- C:\hiberfil.sys
[2010.09.02 21:33:50 | 000,408,922 | ---- | C] () -- C:\Users\Mandarr\Desktop\Jak psat diplomovou praci.pdf
[2010.09.02 21:33:41 | 046,230,340 | ---- | C] () -- C:\Users\Mandarr\Desktop\dmh.wmv
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2006.04.10 10:00:00 | 000,004,096 | ---- | C] () -- C:\Windows\SysWow64\drivers\cvintdrv.sys

========== LOP Check ==========

[2010.09.04 18:49:20 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\AntispamSniper
[2010.09.05 00:45:17 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\BSplayer PRO
[2010.09.04 17:58:08 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\CadSoft
[2010.09.04 16:26:22 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\ESET
[2010.09.08 13:41:18 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\esmska
[2010.09.04 18:38:49 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\Foxit Software
[2010.09.04 17:04:03 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\GHISLER
[2010.09.17 18:14:27 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\MiniLyrics
[2010.09.16 11:56:11 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\ProfiCAD
[2010.09.14 08:48:51 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\Teeworlds
[2010.09.04 15:34:45 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\TuneUp Software
[2010.09.04 18:25:21 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\URSoft
[2010.09.04 16:24:13 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\VitySoft
[2010.09.04 17:33:55 | 000,000,000 | ---D | M] -- C:\Users\Mandarr\AppData\Roaming\XnView
[2009.07.14 07:08:49 | 000,014,524 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 164 bytes -> C:\ProgramData\Temp:1CE11B51
< End of report >

damates · Příspěvekod **damates** » 18 zář 2010 10:03

OTL Extras logfile created on: 18.9.2010 0:51:25 - Run 2
OTL by OldTimer - Version 3.2.12.1 Folder = C:\Users\Mandarr\Desktop
64bit- An unknown product (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 72,00% Memory free
8,00 Gb Paging File | 7,00 Gb Available in Paging File | 86,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 68,36 Gb Total Space | 28,30 Gb Free Space | 41,40% Space Free | Partition Type: NTFS
Drive D: | 175,78 Gb Total Space | 115,90 Gb Free Space | 65,93% Space Free | Partition Type: NTFS
Drive E: | 221,52 Gb Total Space | 118,30 Gb Free Space | 53,40% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MANDY-LAND
Current User Name: Mandarr
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 90 Days
Output = Minimal

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- Reg Error: Key error. File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- Reg Error: Key error. File not found

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- Reg Error: Key error.
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome File not found
https [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome File not found
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- Reg Error: Key error.
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Key error.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- Reg Error: Key error.
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome File not found
https [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome File not found
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- Reg Error: Key error.
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Key error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

========== Authorized Applications List ==========

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{132AC78D-ABA8-41F3-9A6A-BB1F4F7F3C2F}" = ESET Smart Security
"{13F4A7F3-EABC-4261-AF6B-1317777F0755}" = Fast Boot
"{186D2CCE-DEFE-4188-AB44-62008E9BC3E0}" = O&O Defrag Professional
"{295CFB7C-A57E-4313-93E7-68E7CE1D0332}" = Adobe WinSoft Linguistics Plugin x64
"{29C93182-34F6-3275-A18D-59326851CD57}" = Microsoft Windows SDK for Visual Studio 2008 .NET Framework Tools
"{2BFA9B05-7418-4EDE-A6FC-620427BAAAA3}" = Crystal Reports Basic Runtime for Visual Studio 2008 (x64)
"{2D74E972-5A85-44DC-9193-8A302BA8C181}" = Photoshop Camera Raw_x64
"{5DE154DF-A55E-4FA5-BE59-32E78FCACF3E}" = Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries
"{62EED300-E841-4083-A1D6-60B906271804}" = Microsoft Windows SDK for Visual Studio 2008 Tools
"{64D5BBC6-5270-3711-AA39-31C1087AF4E6}" = Microsoft Visual Studio 2008 Remote Debugger - ENU
"{6631325A-9B1B-4EE7-8E64-8CC4A6F10643}" = Adobe Fonts All x64
"{790E02A1-145A-3843-8C13-A4F41C9B48B7}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{8875A1C0-6308-4790-8CF6-D34E89880052}" = Adobe Linguistics CS4 x64
"{887797BF-37A5-4199-B0C9-0D38D6196E9A}" = Adobe Anchor Service x64 CS4
"{8C8D673B-20FB-43E6-BCB7-9B3F78F2E762}" = Adobe Type Support x64 CS4
"{8DAA31EB-6830-4006-A99F-4DF8AB24714F}" = Adobe CSI CS4 x64
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2007
"{90BA8112-80B3-4617-A3C1-BD2771B60F74}" = Adobe CMaps x64 CS4
"{91EFE3A1-585E-4F66-B5F6-F118F56C4C47}" = ASUS Power4Gear Hybrid
"{9aa5f39c-a8de-46b0-919a-0248f8bc8490}" = Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense
"{A3454894-144A-4D80-B605-C128FE0D7329}" = Adobe Drive CS4 x64
"{A992BBAA-723D-4574-A07F-983BF8FAA3E1}" = Microsoft Windows SDK for Visual Studio 2008 Win32 Tools
"{B37A99DD-88E2-4ED0-80B4-1E054AB354BF}" = Adobe InDesign CS4 Icon Handler x64
"{D3E39E77-0EB4-36FB-B97A-8C8AB21B9A45}" = Visual Studio .NET Prerequisites - English
"{D40172D6-CE2D-4B72-BF5F-26A04A900B7B}" = Adobe Photoshop CS4 (64 Bit)
"{DFFABE78-8173-4E97-9C5C-22FB26192FC5}" = Adobe PDF Library Files x64 CS4
"{EF8B1A2E-9CCB-3AB2-91E3-4EEDAB1294E1}" = Microsoft Device Emulator (64 bit) version 3.0 - ENU
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Elantech" = ETDWare PS/2-x64 7.0.5.7_WHQL
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft Visual Studio 2008 Remote Debugger - ENU" = Microsoft Visual Studio 2008 Remote Debugger - ENU
"NVIDIA Drivers" = NVIDIA Drivers
"USB 2.0 1.3M UVC WebCam" = USB 2.0 1.3M UVC WebCam

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0168B3E7-393C-4749-B429-FD5B6FD50567}" = NI Circuit Design Suite Support and Upgrade Utility
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{098A2A49-7CF3-4F08-A38D-FB879117152A}" = Adobe Color NA Extra Settings CS4
"{0BEA337D-71D0-44C7-A575-932612A00908}" = NI EULA Depot
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1}" = Adobe Color EU Recommended Settings CS4
"{0DF3AE91-E533-3960-8516-B23737F8B7A2}" = Visual C++ 2008 x64 Runtime - (v9.0.30729)
"{0DF3AE91-E533-3960-8516-B23737F8B7A2}.vc_x64runtime_30729_01" = Visual C++ 2008 x64 Runtime - v9.0.30729.01
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{15BF7AAF-846C-4A6D-80E1-5D1FC7FB461B}" = Adobe SGM CS4
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{1DCA3EAA-6EB5-4563-A970-EA14D75037BA}" = Adobe InDesign CS4
"{1E04CB54-AF4E-4AC3-B4B7-C0A160BE57F1}" = Adobe InDesign CS4 Icon Handler
"{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}" = Wireless Console 3
"{2168245A-B5AD-40D8-A641-48E3E070B5B6}" = Adobe Flash CS4 STI-en
"{22B8D188-C48A-4468-80CC-AF2B13C178EA}" = PowerArchiver 2010
"{22E23C71-C27A-3F30-8849-BB6129E50679}" = Visual C++ 2008 IA64 Runtime - (v9.0.30729)
"{22E23C71-C27A-3F30-8849-BB6129E50679}.vc_i64runtime_30729_01" = Visual C++ 2008 IA64 Runtime - v9.0.30729.01
"{241F2BF7-69EB-42A4-9156-96B2426C7504}" = Microsoft SQL Server Compact 3.5 for Devices ENU
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
"{291B3A3B-F808-45B8-8113-DF232FCB6C82}" = Microsoft .NET Compact Framework 3.5
"{2BAF2B96-7560-48B4-87D4-10178DDBE217}" = Adobe InDesign CS4 Application Feature Set Files (Roman)
"{2E5C075E-11AB-4BDD-918C-7B9A68953FF8}" = Microsoft SQL Server Compact 3.5 Design Tools ENU
"{30C8AA56-4088-426F-91D1-0EDFD3A25678}" = Adobe Dreamweaver CS4
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{388E4B09-3E71-4649-8921-F44A3A2954A7}" = Microsoft Visual Studio 2005 Tools for Office Runtime
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3A6829EF-0791-4FDD-9382-C690DD0821B9}" = Adobe Flash Player 10 ActiveX
"{3B05F2FB-745B-4012-ADF2-439F36B2E70B}" = ATKOSD2
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{428FDF9F-E010-4C4C-A8BB-156960AFCA1C}" = Adobe Fireworks CS4
"{43509E18-076E-40FE-AF38-CA5ED400A5A9}" = Pixel Bender Toolkit
"{44E240EC-2224-4078-A88B-2CEE0D3016EF}" = Adobe After Effects CS4 Presets
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{45EC816C-0771-4C14-AE6D-72D1B578F4C8}" = Adobe After Effects CS4
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A52555C-032A-4083-BDD9-6A85ABFB39A8}" = Adobe SING CS4
"{4CDE9452-7BA2-46BC-9551-6A041F4A3B66}" = NI LabVIEW Run-Time Engine 8.2
"{52232EF4-CC12-4C21-ABCF-ADB79618302D}" = Adobe Soundbooth CS4 Codecs
"{53FE1175-1B37-4677-924C-62AFFCC83800}" = NI MDF Support
"{561968FD-56A1-49FD-9ED0-F55482C7C5BC}" = Adobe Media Encoder CS4 Exporter
"{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}" = Adobe Dynamiclink Support
"{61D6891E-E822-4448-9F9A-0AAAAEB6AF6C}" = Adobe Creative Suite 4 Master Collection
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{6753B40C-0FBD-3BED-8A9D-0ACAC2DCD85D}" = Microsoft Document Explorer 2008
"{67A9747A-E1F5-4E9A-81CC-12B5D5B81B6E}" = Adobe After Effects CS4 Third Party Content
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{6C9F6D23-E9AD-43C9-B43A-011562AAF876}" = Windows Mobile 5.0 SDK R2 for Pocket PC
"{6CAB860B-CB68-462B-AF66-83AEF9BD6ED2}" = NI Circuit Design Suite 10 Pro
"{6FADAF5C-C9AC-49E5-8B14-7021F91EF0B5}" = NI LabVIEW Run-Time Engine 8.0.1
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{793D1D88-6141-43DE-BE58-59BCE31B4090}" = Adobe Flash CS4 Extension - Flash Lite STI en
"{7C05592D-424B-46CB-B505-E0013E8E75C9}" = ATK Hotkey
"{7CC7BDD5-6F10-4724-96A1-EAC7D9F2831C}" = Adobe InDesign CS4 Common Base Files
"{8186FF34-D389-4B7E-9A2F-C197585BCFBD}" = Adobe Media Encoder CS4 Importer
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{87532CAB-7932-4F84-8937-823337622807}" = Adobe Illustrator CS4
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{889BF4A8-E783-46C4-8FB8-97A0B977C32A}" = NI LabWindows/CVI 8.0.1 Run-Time Engine
"{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"{8D6F5556-EB3C-420D-9B75-020DEF9AD0AC}" = NI Uninstaller
"{8FB53850-246A-3507-8ADE-0060093FFEA6}" = Visual Studio Tools for the Office system 3.0 Runtime
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-0021-0000-0000-0000000FF1CE}" = Microsoft Office Visual Web Developer 2007
"{90120000-0021-0409-0000-0000000FF1CE}" = Microsoft Office Visual Web Developer MUI (English) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{9656F3AC-6BA9-43F0-ABED-F214B5DAB27B}" = Windows Mobile 5.0 SDK R2 for Smartphone
"{9A33B83D-FFC4-44CF-BEEF-632DECEF2FCD}" = Microsoft SQL Server Database Publishing Wizard 1.2
"{A1F7BDF1-6D46-46FC-92D1-BC91202251DD}" = NI Service Locator
"{A2DC3907-B0A3-484F-9677-A16F1D58BF60}" = NI TDMS
"{A6EC82A0-1414-475D-8AFD-469089F3080D}" = Adobe Contribute CS4
"{A95228BB-6AEE-4999-8A67-59BB0F7847B4}" = The Bat! Professional v4.2
"{AA467959-A1D6-4F45-90CD-11DC57733F32}" = Crystal Reports Basic for Visual Studio 2008
"{B05DE7B7-0B40-4411-BD4B-222CAE2D8F15}" = Adobe MotionPicture Color Files CS4
"{B15381DD-FF97-4FCD-A881-ED4DB0975500}" = Adobe Color Video Profiles AE CS4
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{BAADD05A-8BDD-4C1B-BE38-94627C552A86}" = NI Logos 4.7
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BCC899FE-2DAA-460C-A5FB-60291E73D9C3}" = Microsoft SQL Server Compact 3.5 ENU
"{BE9CEAAA-F069-4331-BF2F-8D350F6504F4}" = Adobe Media Encoder CS4 Additional Exporter
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C938BE91-3BB5-4B84-9EF6-88F0505D0038}" = Adobe Premiere Pro CS4 Third Party Content
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CD094AFB-E5B0-4687-A3D2-358E04BCA172}" = NI Circuit Design Suite 10 Core
"{D1E5870E-E3E5-4475-98A6-ADD614524ADF}" = ATK Media
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{D499F8DE-3F31-4900-9157-61061613704B}" = Adobe Premiere Pro CS4
"{D7DAD1E4-45F4-3B2B-899A-EA728167EC4F}" = Microsoft Visual Studio 2008 Professional Edition - ENU
"{D8B7A9C5-7ACE-4F9C-9788-77D08850AB4F}" = NI USI 1.3.0
"{DB2C5648-700D-4AEF-83E1-70C72F0C34FA}" = NI Math Kernel Libraries
"{DEB90B8E-0DCB-48CE-B90E-8842A2BD643E}" = Adobe Media Encoder CS4
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E8EE9410-8AC4-4F43-A626-DDECA75C79F3}" = Adobe Setup
"{EDDF99D9-9FE3-4871-A7DB-D1522C51EE9A}" = Microsoft .NET Compact Framework 2.0 SP2
"{EE353798-E875-42E0-B58D-7E6696182EA8}" = Adobe Media Encoder CS4 Dolby
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F4BF5F6B-F695-4762-AEB2-D095A4C34D89}" = Alcor Micro USB Card Reader
"{F600CCF3-9C88-4A22-B0B4-DDA82E997118}" = Adobe After Effects CS4 Template Projects & Footage
"{F6E99614-F042-4459-82B7-8B38B2601356}" = Adobe Flash CS4
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FB2A5FCC-B81B-48C2-A009-7804694D83E9}" = Adobe Encore CS4 Codecs
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FDB8EF7A-4118-4B27-8892-4FBE82729340}" = NI License Manager
"{FE3997D3-6B56-4AC4-A99C-9DDFC45359BF}" = TuneUp Utilities Language Pack (en-US)
"{FF29527A-44CD-3422-945E-981A13584000}" = VC Runtimes MSI
"Adobe AIR" = Adobe AIR
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_5445c5ddd9a5c69582d3c1e2bba18f7" = Adobe Creative Suite 4 Master Collection
"AntispamSniper for TheBat!" = AntispamSniper for TheBat!
"BSPlayerp" = BS.Player PRO
"DFX for Winamp" = DFX for Winamp
"EAGLE 5.10.0" = EAGLE 5.10.0
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Festo Fluidsim_is1" = Festo FluidSim 3.6
"FluidDraw S5 Version 5.0o" = FluidDraw S5 Version 5.0o
"FluidDRAW Version 4.11b" = FluidDRAW Version 4.11b
"Foxit PDF Editor" = Foxit PDF Editor
"GameParkClient_is1" = GamePark
"HC51 9.60PL0" = HI-TECH C51-lite V9.60PL0
"HLSW_is1" = HLSW v1.1.4
"InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"InstallShield_{F4BF5F6B-F695-4762-AEB2-D095A4C34D89}" = Alcor Micro USB Card Reader
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 6.3.0
"Magic ISO Maker v5.5 (build 0273)" = Magic ISO Maker v5.5 (build 0273)
"MagicDisc 2.7.106" = MagicDisc 2.7.106
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft Document Explorer 2008" = Microsoft Document Explorer 2008
"Microsoft Visual Studio 2005 Tools for Office Runtime" = Microsoft Visual Studio 2005 Tools for Office Runtime
"Microsoft Visual Studio 2008 Professional Edition - ENU" = Microsoft Visual Studio 2008 Professional Edition - ENU
"MiniLyrics" = Minilyrics(remove only)
"MiNODLogin" = ESET Antivirus License Finder (MiNODLogin)
"Mozilla Firefox (3.6.10)" = Mozilla Firefox (3.6.10)
"NI Uninstaller" = National Instruments Software
"PICC 9.60PL0" = HI-TECH PICC lite V9.60PL0
"ProfiCAD_is1" = ProfiCAD
"Rainlendar2" = Rainlendar2 (remove only)
"TmNations_is1" = TrackMania Nations ESWC 0.1.7.5
"TmNationsForever_is1" = TmNationsForever
"Totalcmd" = Total Commander (Remove or Repair)
"TuneUp Utilities" = TuneUp Utilities
"Visual Studio Tools for the Office system 3.0 Runtime" = Visual Studio Tools for the Office system 3.0 Runtime
"VisualWebDeveloper" = Microsoft Visual Studio Web Authoring Component
"Winamp" = Winamp
"XnView_is1" = XnView 1.97.6
"YU2010_is1" = Your Uninstaller! 2010

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 15.9.2010 3:52:40 | Computer Name = Mandy-land | Source = SafeQPort | ID = 131073
Description =

Error - 15.9.2010 3:52:42 | Computer Name = Mandy-land | Source = SafeQPort | ID = 131073
Description =

Error - 15.9.2010 4:13:50 | Computer Name = Mandy-land | Source = SideBySide | ID = 16842815
Description = Generování kontextu aktivace pro C:\Program Files (x86)\Common Files\Adobe
AIR\Versions\1.0\Adobe AIR.dll se nezdařilo. Chyba v souboru manifestu nebo zásady
C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll na řádku
3. Hodnota MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu
version v prvku assemblyIdentity je neplatná.

Error - 15.9.2010 6:46:08 | Computer Name = Mandy-land | Source = SafeQPort | ID = 131073
Description =

Error - 15.9.2010 6:46:10 | Computer Name = Mandy-land | Source = SafeQPort | ID = 131073
Description =

Error - 15.9.2010 7:32:57 | Computer Name = Mandy-land | Source = Application Error | ID = 1000
Description = Název chybující aplikace: WINWORD.EXE, verze: 12.0.4518.1014, časové
razítko: 0x45428028 Název chybujícího modulu: wwlib.dll, verze: 12.0.4518.1014,
časové razítko: 0x454285fb Kód výjimky: 0xc0000005 Posun chyby: 0x00058a52 ID chybujícího
procesu: 0x3c8 Čas spuštění chybující aplikace: 0x01cb54c7c6fd8e50 Cesta k chybující
aplikaci: C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE Cesta k chybujícímu
modulu: C:\Program Files (x86)\Microsoft Office\Office12\wwlib.dll ID zprávy: fc957490-c0bc-11df-8178-90e6ba129a5c

Error - 15.9.2010 18:57:00 | Computer Name = Mandy-land | Source = SideBySide | ID = 16842815
Description = Generování kontextu aktivace pro C:\Program Files (x86)\Common Files\Adobe
AIR\Versions\1.0\Adobe AIR.dll se nezdařilo. Chyba v souboru manifestu nebo zásady
C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll na řádku
3. Hodnota MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu
version v prvku assemblyIdentity je neplatná.

Error - 16.9.2010 1:48:17 | Computer Name = Mandy-land | Source = Application Hang | ID = 1002
Description = Program bsplayer.exe verze 2.5.6.1043 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
d88 Čas spuštění: 01cb556287c30cb0 Čas ukončení: 191 Cesta k aplikaci: C:\Program
Files (x86)\Webteh\BSplayerPro\bsplayer.exe ID hlášení: fc1a8e81-c155-11df-a3f8-90e6ba129a5c

Error - 16.9.2010 18:30:51 | Computer Name = Mandy-land | Source = SideBySide | ID = 16842815
Description = Generování kontextu aktivace pro C:\Program Files (x86)\Common Files\Adobe
AIR\Versions\1.0\Adobe AIR.dll se nezdařilo. Chyba v souboru manifestu nebo zásady
C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll na řádku
3. Hodnota MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu
version v prvku assemblyIdentity je neplatná.

Error - 17.9.2010 13:44:31 | Computer Name = Mandy-land | Source = Application Error | ID = 1000
Description = Název chybující aplikace: frd.exe, verze: 6.0.210.7, časové razítko:
0x4c41764e Název chybujícího modulu: java.dll, verze: 6.0.210.7, časové razítko:
0x4c41a940 Kód výjimky: 0xc0000005 Posun chyby: 0x00004e20 ID chybujícího procesu:
0x7fc Čas spuštění chybující aplikace: 0x01cb568ff8af7ed0 Cesta k chybující aplikaci:
C:\Program Files (x86)\Java\jre6\launch4j-tmp\frd.exe Cesta k chybujícímu modulu:
C:\Program Files (x86)\Java\jre6\bin\java.dll ID zprávy: 394619e0-c283-11df-95be-90e6ba129a5c

[ OSession Events ]
Error - 15.9.2010 7:32:57 | Computer Name = Mandy-land | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1066. This session lasted 845
seconds with 600 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 17.9.2010 6:53:12 | Computer Name = Mandy-land | Source = Application Popup | ID = 1060
Description = Načtení \SystemRoot\SysWow64\Drivers\cvintdrv.SYS bylo zablokováno
kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru o kompatibilní
verzi ovladače.

Error - 17.9.2010 6:53:12 | Computer Name = Mandy-land | Source = Service Control Manager | ID = 7000
Description = Služba cvintdrv neuspěla při spuštění v důsledku následující chyby:
%%1275

Error - 17.9.2010 9:03:50 | Computer Name = Mandy-land | Source = volsnap | ID = 393252
Description = Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného
uživatelem se nepodařilo zvětšit úložiště stínové kopie.

Error - 17.9.2010 14:11:04 | Computer Name = Mandy-land | Source = Service Control Manager | ID = 7034
Description = Služba TuneUp Utilities Service byla neočekávaně ukončena. Tento stav
nastal již 1krát.

Error - 17.9.2010 14:11:50 | Computer Name = Mandy-land | Source = Service Control Manager | ID = 7034
Description = Služba O&O Defrag byla neočekávaně ukončena. Tento stav nastal již
1krát.

Error - 17.9.2010 14:12:13 | Computer Name = Mandy-land | Source = Service Control Manager | ID = 7034
Description = Služba AFBAgent byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error - 17.9.2010 14:52:00 | Computer Name = Mandy-land | Source = Application Popup | ID = 1060
Description = Načtení \SystemRoot\SysWow64\Drivers\cvintdrv.SYS bylo zablokováno
kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru o kompatibilní
verzi ovladače.

Error - 17.9.2010 14:52:00 | Computer Name = Mandy-land | Source = Service Control Manager | ID = 7000
Description = Služba cvintdrv neuspěla při spuštění v důsledku následující chyby:
%%1275

Error - 17.9.2010 18:10:32 | Computer Name = Mandy-land | Source = Application Popup | ID = 1060
Description = Načtení \SystemRoot\SysWow64\Drivers\cvintdrv.SYS bylo zablokováno
kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru o kompatibilní
verzi ovladače.

Error - 17.9.2010 18:10:32 | Computer Name = Mandy-land | Source = Service Control Manager | ID = 7000
Description = Služba cvintdrv neuspěla při spuštění v důsledku následující chyby:
%%1275

< End of report >

damates · Příspěvekod **damates** » 18 zář 2010 10:41

k těm error logum.... 17.9. jsem zkoušel jestli nějaký proces nevyvolává to snížení,tak jsem povypínal to co není důležité.
Nadále další položky jsou zajímavý, něco stim zkusim udělat, ale počkám ještě na tvojí odbornou radu

Příspěvekod **jaro3** » 18 zář 2010 10:42

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
SRV:64bit: - (PnkBstrA) -- C:\Windows\SysNative\PnkBstrA.exe File not found
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SYSTEM32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
FF - prefs.js..browser.search.defaultenginename: "Winamp Search"
FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query="
FF - prefs.js..keyword.URL: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampab&query="
O1 HOSTS File: ([2010.09.04 20:08:13 | 000,000,854 | RHS- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 activate.adobe.com
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O33 - MountPoints2\{f0f567e8-b82a-11df-a44d-90e6ba129a5c}\Shell - "" = AutoRun
O33 - MountPoints2\{f0f567e8-b82a-11df-a44d-90e6ba129a5c}\Shell\AutoRun\command - "" = Autoplay.exe -auto
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (OODBS) - File not found
@Alternate Data Stream - 164 bytes -> C:\ProgramData\Temp:1CE11B51

:Files
C:\WINDOWS\System32\*.tmp 
C:\WINDOWS\*.tmp 
C:\WINDOWS\system32\*.tmp.dll 
C:\WINDOWS\system32\SET*.tmp 
c:\windows\Tasks\*.job 
C:\*.tmp
C:\Windows\SysNative\drivers\*.tmp
C:\Windows\SysWow64\drivers\*.tmp
C:\Program Files (x86)\*.tmp
C:\Windows\SysWow64\*.tmp
C:\32788R22FWJFW
C:\Program Files (x86)\Winamp Toolbar
C:\Windows\tasks\SA.DAT   
C:\Windows\Uninstvga.bat
C:\Windows\Uninstsxga.bat
C:\Windows\Uninstuxga.bat
C:\Windows\Uninstuxga.reg
C:\Windows\Uninstsxga.reg
C:\Windows\Uninstvga.reg

:Reg
:Commands
[purity]
[emptytemp]
[EMPTYFLASH]
[start explorer]
[Reboot]

Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
C:\Windows\SysNative\SAFEQVS64.DLL
C:\Windows\SysNative\SafeQCairoLib64.DLL
C:\Windows\SysNative\SAFEQ64UI.DLL

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/40 , nebo 1/40. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

damates · Příspěvekod **damates** » 18 zář 2010 12:01

Jinak SAFEQ je program pro tisk, ale nějak mi to stejnak nefunguje takže to mužu všechno odstranit
Ještě dotaz.Jak bych měl odstranit všechny soubory safeq a snim spojené?

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Service PnkBstrA stopped successfully!
Service PnkBstrA deleted successfully!
File C:\Windows\SysNative\PnkBstrA.exe File not found not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Prefs.js: "Winamp Search" removed from browser.search.defaultenginename
Prefs.js: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=" removed from browser.search.defaulturl
Prefs.js: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampab&query=" removed from keyword.URL
127.0.0.1 activate.adobe.com removed from HOSTS file successfully
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet:/pagefile deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet:/pagefile deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f0f567e8-b82a-11df-a44d-90e6ba129a5c}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f0f567e8-b82a-11df-a44d-90e6ba129a5c}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f0f567e8-b82a-11df-a44d-90e6ba129a5c}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f0f567e8-b82a-11df-a44d-90e6ba129a5c}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session manager\\BootExecute:autocheck autochk * deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session manager\\BootExecute:OODBS deleted successfully.
ADS C:\ProgramData\Temp:1CE11B51 deleted successfully.
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
File\Folder C:\WINDOWS\*.tmp not found.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder c:\windows\Tasks\*.job not found.
File\Folder C:\*.tmp not found.
File\Folder C:\Windows\SysNative\drivers\*.tmp not found.
File\Folder C:\Windows\SysWow64\drivers\*.tmp not found.
File\Folder C:\Program Files (x86)\*.tmp not found.
File\Folder C:\Windows\SysWow64\*.tmp not found.
C:\32788R22FWJFW\N_ folder moved successfully.
C:\32788R22FWJFW\License folder moved successfully.
C:\32788R22FWJFW\EN-US folder moved successfully.
C:\32788R22FWJFW folder moved successfully.
C:\Program Files (x86)\Winamp Toolbar folder moved successfully.
C:\Windows\tasks\SA.DAT moved successfully.
C:\Windows\Uninstvga.bat moved successfully.
C:\Windows\Uninstsxga.bat moved successfully.
C:\Windows\Uninstuxga.bat moved successfully.
C:\Windows\Uninstuxga.reg moved successfully.
C:\Windows\Uninstsxga.reg moved successfully.
C:\Windows\Uninstvga.reg moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Guest

User: HomeGroupUser$

User: Mandarr
->Temp folder emptied: 7092682 bytes
->Temporary Internet Files folder emptied: 380259 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 87922526 bytes
->Flash cache emptied: 11190 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 6828 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50507 bytes
RecycleBin emptied: 2892618 bytes

Total Files Cleaned = 94,00 mb

[EMPTYFLASH]

User: Administrator

User: All Users

User: Default

User: Default User

User: Guest

User: HomeGroupUser$

User: Mandarr
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb

OTL by OldTimer - Version 3.2.12.1 log created on 09182010_115341

Files\Folders moved on Reboot...
C:\Users\Mandarr\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

Registry entries deleted on Reboot...

damates · Příspěvekod **damates** » 18 zář 2010 12:05

1.http://www.virustotal.com/file-scan/report.html?id=cf832db8305d21d6471239592cfca8e7a0ce34594da507e7f1a8295f382cfdb7-1284803916
2.http://www.virustotal.com/file-scan/report.html?id=c703600e14c29f81918351458de0763ab26447b56110a42796b9db6d71323bdf-1284804130
3.http://www.virustotal.com/file-scan/report.html?id=dc631db2bce8cf0eb1af4e0485909f4ac4990d3e6cbd88ac9e354dee7eda616e-1284804196

Příspěvekod **jaro3** » 18 zář 2010 14:24

Jak to Teď vypadá?

Kontrola logu a problem

Kontrola logu a problem

Re: Kontrola logu a problem

Re: Kontrola logu a problem

Re: Kontrola logu a problem

Re: Kontrola logu a problem

Re: Kontrola logu a problem

Re: Kontrola logu a problem

Re: Kontrola logu a problem

Re: Kontrola logu a problem

Re: Kontrola logu a problem

Re: Kontrola logu a problem

Re: Kontrola logu a problem

Kdo je online