Mohu poprosit o kontrolu logu HiJackThis

Příspěvekod **jaro3** » 05 čer 2012 09:43

Fajn , OK.

Nyní udělej znovu OTL.

Reklama

tomqw · Příspěvekod **tomqw** » 05 čer 2012 21:33

přikládám log z otl jinak ještě jsem to neprojel tím bootovacím cd?

Příspěvekod **jaro3** » 05 čer 2012 21:37

Tak to zatím nech , mrknu na otl nejprv.

hele vlož to sem tzřeba na 3-5x , lépe se to tady luští , dík.

tomqw · Příspěvekod **tomqw** » 05 čer 2012 21:53

a ještě celý kasperský

tomqw · Příspěvekod **tomqw** » 05 čer 2012 21:54

2. část

tomqw · Příspěvekod **tomqw** » 05 čer 2012 22:01

3. část log.z02 se mi nedaří nahrát

tomqw · Příspěvekod **tomqw** » 05 čer 2012 22:03

je lepší to vkládat jako text než jako zip?

Příspěvekod **jaro3** » 06 čer 2012 09:35

Text , omezená kapacita, (počet znaků) , takže navíc příspěvků rozdělit.

tomqw · Příspěvekod **tomqw** » 06 čer 2012 17:43

toho jsem si všimnul proto jsem ten log přiložil jako zip. Doufal jsem, že je to pro tebe nejlepší?

Příspěvekod **Žbeky** » 06 čer 2012 18:41

Rozděl to na víc příspěvků, jak tě jaro žádal a nešpekuluj

tomqw · Příspěvekod **tomqw** » 07 čer 2012 18:06

ok sorry
1. část
OTL logfile created on: 5.6.2012 20:57:11 - Run 2
OTL by OldTimer - Version 3.2.44.0 Folder = F:\Data_Server_II\Install\Antivir\OTL_rootkit_scaner
64bit-Windows Vista Small Business Server Service Pack 2 (Version = 6.0.6002) - Type = NTDomainController
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,99 Gb Total Physical Memory | 1,51 Gb Available Physical Memory | 37,78% Memory free
8,15 Gb Paging File | 3,58 Gb Available in Paging File | 43,97% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 136,69 Gb Total Space | 35,71 Gb Free Space | 26,13% Space Free | Partition Type: NTFS
Drive E: | 931,48 Gb Total Space | 803,29 Gb Free Space | 86,24% Space Free | Partition Type: NTFS
Drive F: | 558,73 Gb Total Space | 424,05 Gb Free Space | 75,90% Space Free | Partition Type: NTFS

Computer Name: SERVERARROW | User Name: tomas | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - F:\Data_Server_II\Install\Antivir\OTL_rootkit_scaner\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\WindowsUpdate\gserver.exe ()
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\ccsvchst.exe (Symantec Corporation)
PRC - C:\Program Files (x86)\Acronis\TrayMonitor\TrayMonitor.exe (Acronis)
PRC - F:\Acronis_prgram\AMS\ManagementServer.exe (Acronis)
PRC - C:\Program Files (x86)\Common Files\Acronis\Timounter\TimounterMonitor.exe (Acronis)
PRC - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
PRC - C:\Program Files (x86)\Acronis\ARSM\arsm.exe (Acronis)
PRC - F:\Acronis_prgram\BackupAndRecovery\mms.exe (Acronis)
PRC - C:\Program Files (x86)\Common Files\Acronis\FileServer\fileserver.exe (Acronis)
PRC - F:\Acronis_prgram\PXEServer\pxesrv.exe (Acronis)
PRC - C:\Program Files (x86)\Common Files\Acronis\Agent\agent.exe (Acronis)
PRC - c:\EchoTrack\WEB\Bin\ETServer03.exe ()
PRC - C:\Program Files (x86)\TightVNC\tvnserver.exe (GlavSoft LLC.)
PRC - C:\EchoTrack\Bin\Auris Report Service.exe (AURIS CZ, s.r.o.)
PRC - c:\EchoTrack\Bin\Auris GPRS Automat.exe (AURIS CZ, s.r.o.)
PRC - c:\EchoTrack\Bin\Auris GSM Automat.exe (AURIS CZ, s.r.o.)
PRC - C:\EchoTrack\EchoAgent\EchoAgent.exe (Auris CZ, spol. s r.o.)
PRC - C:\Program Files (x86)\Common Files\Acronis\WebServer\httpd.exe (Apache Software Foundation)
PRC - C:\RAAL\RTW7608\Server\RAALSrvr.exe (ComArr, s.r.o.)
PRC - C:\hp\hpsmh\bin\smhstart.exe (Hewlett-Packard Company)
PRC - C:\hp\hpsmh\bin\hpsmhd.exe (Hewlett-Packard Company)
PRC - C:\hp\hpsmh\bin\rotatelogs.exe (Hewlett-Packard Company)
PRC - C:\Program Files (x86)\TightVNC\WinVNC.exe (TightVNC Group)
PRC - C:\Program Files (x86)\Firebird\Firebird_2_1\bin\fbguard.exe (Firebird Project)
PRC - C:\Program Files (x86)\Firebird\Firebird_2_1\bin\fbserver.exe (Firebird Project)
PRC - C:\Program Files (x86)\APC\PowerChute Business Edition\agent\pbeagent.exe (APC)
PRC - C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation)

========== Modules (No Company Name) ==========

MOD - C:\Program Files\WindowsUpdate\gserver.exe ()

========== Win32 Services (SafeList) ==========

SRV:64bit: - (DNS) -- C:\Windows\SysNative\dns.exe (Microsoft Corporation)
SRV:64bit: - (SQLAgent$ECHOTRACK) SQL Server Agent (ECHOTRACK) -- C:\Program Files\Microsoft SQL Server\MSSQL10_50.ECHOTRACK\MSSQL\Binn\SQLAGENT.EXE (Microsoft Corporation)
SRV:64bit: - (DataCollectorSvc) -- C:\Program Files\Windows Small Business Server\Bin\DataCollectorSvc.exe (Microsoft Corporation)
SRV:64bit: - (MSSQLServerADHelper100) -- C:\Program Files\Microsoft SQL Server\100\Shared\sqladhlp.exe (Microsoft Corporation)
SRV:64bit: - (MSExchangeIS) -- C:\Program Files\Microsoft\Exchange Server\Bin\store.exe (Microsoft Corporation)
SRV:64bit: - (MSExchangeImap4) -- C:\Program Files\Microsoft\Exchange Server\ClientAccess\PopImap\Microsoft.Exchange.Imap4Service.exe (Microsoft Corporation)
SRV:64bit: - (MSExchangePop3) -- C:\Program Files\Microsoft\Exchange Server\ClientAccess\PopImap\Microsoft.Exchange.Pop3Service.exe (Microsoft Corporation)
SRV:64bit: - (MSExchangeMonitoring) -- C:\Program Files\Microsoft\Exchange Server\Bin\Microsoft.Exchange.Monitoring.exe (Microsoft Corporation)
SRV:64bit: - (MSExchangeMailSubmission) -- C:\Program Files\Microsoft\Exchange Server\Bin\MSExchangeMailSubmission.exe (Microsoft Corporation)
SRV:64bit: - (MSExchangeMailboxAssistants) -- C:\Program Files\Microsoft\Exchange Server\Bin\MSExchangeMailboxAssistants.exe (Microsoft Corporation)
SRV:64bit: - (MSExchangeAntispamUpdate) -- C:\Program Files\Microsoft\Exchange Server\Bin\Microsoft.Exchange.AntispamUpdateSvc.exe (Microsoft Corporation)
SRV:64bit: - (MSExchangeTransportLogSearch) -- C:\Program Files\Microsoft\Exchange Server\Bin\MSExchangeTransportLogSearch.exe (Microsoft Corporation)
SRV:64bit: - (MSExchangeTransport) -- C:\Program Files\Microsoft\Exchange Server\Bin\MSExchangeTransport.exe (Microsoft Corporation)
SRV:64bit: - (MSExchangeEdgeSync) -- C:\Program Files\Microsoft\Exchange Server\Bin\Microsoft.Exchange.EdgeSyncSvc.exe (Microsoft Corporation)
SRV:64bit: - (MSExchangeServiceHost) -- C:\Program Files\Microsoft\Exchange Server\Bin\Microsoft.Exchange.ServiceHost.exe (Microsoft Corporation)
SRV:64bit: - (MSExchangeADTopology) -- C:\Program Files\Microsoft\Exchange Server\Bin\MSExchangeADTopologyService.exe (Microsoft Corporation)
SRV:64bit: - (MSExchangeFDS) -- C:\Program Files\Microsoft\Exchange Server\Bin\MsExchangeFDS.exe (Microsoft Corporation)
SRV:64bit: - (MSExchangeSearch) -- C:\Program Files\Microsoft\Exchange Server\Bin\Microsoft.Exchange.Search.ExSearch.exe (Microsoft Corporation)
SRV:64bit: - (MSExchangeRepl) -- C:\Program Files\Microsoft\Exchange Server\Bin\Microsoft.Exchange.Cluster.ReplayService.exe (Microsoft Corporation)
SRV:64bit: - (MSExchangeSA) -- C:\Program Files\Microsoft\Exchange Server\Bin\mad.exe (Microsoft Corporation)
SRV:64bit: - (Themes) -- C:\Windows\SysNative\shsvcs.dll (Microsoft Corporation)
SRV:64bit: - (sysdown) -- C:\Windows\SysNative\sysdown.exe (Hewlett-Packard Company)
SRV:64bit: - (HPWMISTOR) -- C:\Program Files\HPWBEM\Storage\Service\hpwmistor.exe (Hewlett-Packard Company)
SRV:64bit: - (SysMain) -- C:\Windows\SysNative\sysmain.dll (Microsoft Corporation)
SRV:64bit: - (SrmSvc) -- C:\Windows\SysNative\srmsvc.dll (Microsoft Corporation)
SRV:64bit: - (DHCPServer) -- C:\Windows\SysNative\dhcpssvc.dll (Microsoft Corporation)
SRV:64bit: - (CscService) -- C:\Windows\SysNative\cscsvc.dll (Microsoft Corporation)
SRV:64bit: - (RPCHTTPLBS) -- C:\Windows\SysNative\RpcProxy\LBService.dll (Microsoft Corporation)
SRV:64bit: - (TSGateway) -- C:\Windows\SysNative\aaedge.dll (Microsoft Corporation)
SRV:64bit: - (SrmReports) -- C:\Windows\SysNative\srmhost.exe (Microsoft Corporation)
SRV:64bit: - (silsvc) -- C:\Windows\SysNative\silsvc.exe (Microsoft Corporation)
SRV:64bit: - (RSoPProv) -- C:\Windows\SysNative\RSoPProv.exe (Microsoft Corporation)
SRV:64bit: - (NtFrs) -- C:\Windows\SysNative\ntfrs.exe (Microsoft Corporation)
SRV:64bit: - (DFSR) -- C:\Windows\SysNative\DFSRs.exe (Microsoft Corporation)
SRV:64bit: - (CertSvc) -- C:\Windows\SysNative\certsrv.exe (Microsoft Corporation)
SRV:64bit: - (Dfs) -- C:\Windows\SysNative\dfssvc.exe (Microsoft Corporation)
SRV:64bit: - (Pop3Connector) -- C:\Program Files\Windows Small Business Server\Bin\Pop3Connector.exe (Microsoft Corporation)
SRV:64bit: - (wsbexchange) -- C:\Program Files\Windows Small Business Server\Bin\wsbexchange.exe (Microsoft Corporation)
SRV:64bit: - (ddnsclient) -- C:\Program Files\Windows Small Business Server\Bin\DDnsClient.exe (Microsoft Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV:64bit: - (Rqs) -- C:\Windows\SysNative\rqs.exe (Microsoft Corporation)
SRV:64bit: - (IsmServ) -- C:\Windows\SysNative\ismserv.exe (Microsoft Corporation)
SRV:64bit: - (WMSvc) -- C:\Windows\SysNative\inetsrv\wmsvc.exe (Microsoft Corporation)
SRV:64bit: - (MSFTPSVC) -- C:\Windows\SysNative\inetsrv\inetinfo.exe (Microsoft Corporation)
SRV:64bit: - (IISADMIN) -- C:\Windows\SysNative\inetsrv\inetinfo.exe (Microsoft Corporation)
SRV:64bit: - (sacsvr) -- C:\Windows\SysNative\sacsvr.dll (Microsoft Corporation)
SRV:64bit: - (FCRegSvc) -- C:\Windows\SysNative\FCRegSvc.dll (Microsoft Corporation)
SRV:64bit: - (SharedAccess) -- C:\Windows\SysNative\ipnathlp.dll (Microsoft Corporation)
SRV:64bit: - (IPBusEnum) -- C:\Windows\SysNative\ipbusenum.dll (Microsoft Corporation)
SRV:64bit: - (Browser) -- C:\Windows\SysNative\browser.dll (Microsoft Corporation)
SRV:64bit: - (.Net CLRAA) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (msftesql-Exchange) Microsoft Search (Exchange) -- C:\Program Files\Microsoft\Exchange Server\Bin\msftesql.exe (Microsoft Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (NIS) -- C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\ccSvcHst.exe (Symantec Corporation)
SRV - (AMS) -- F:\Acronis_prgram\AMS\ManagementServer.exe (Acronis)
SRV - (AcrSch2Svc) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe (Acronis)
SRV - (ARSM) -- C:\Program Files (x86)\Acronis\ARSM\arsm.exe (Acronis)
SRV - (MMS) -- F:\Acronis_prgram\BackupAndRecovery\mms.exe (Acronis)
SRV - (AcronisFS) -- C:\Program Files (x86)\Common Files\Acronis\FileServer\fileserver.exe (Acronis)
SRV - (AcronisPXE) -- F:\Acronis_prgram\PXEServer\pxesrv.exe (Acronis)
SRV - (AcronisAgent) -- C:\Program Files (x86)\Common Files\Acronis\Agent\agent.exe (Acronis)
SRV - (ETServer03) -- c:\EchoTrack\WEB\Bin\ETServer03.exe ()
SRV - (tvnserver) -- C:\Program Files (x86)\TightVNC\tvnserver.exe (GlavSoft LLC.)
SRV - (Auris Report Service) -- C:\EchoTrack\Bin\Auris Report Service.exe (AURIS CZ, s.r.o.)
SRV - (Auris GPRS Automat) -- c:\EchoTrack\Bin\Auris GPRS Automat.exe (AURIS CZ, s.r.o.)
SRV - (GSM Automat) -- c:\EchoTrack\Bin\Auris GSM Automat.exe (AURIS CZ, s.r.o.)
SRV - (EchoAgent) -- C:\EchoTrack\EchoAgent\EchoAgent.exe (Auris CZ, spol. s r.o.)
SRV - (AmsWebServer) -- C:\Program Files (x86)\Common Files\Acronis\WebServer\httpd.exe (Apache Software Foundation)
SRV - (MSSQLServerADHelper) -- C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe (Microsoft Corporation)
SRV - (MSSQL$MICROSOFT##SSEE) Windows Internal Database (MICROSOFT##SSEE) -- C:\Windows\SYSMSI\SSEE\MSSQL.2005\MSSQL\Binn\sqlservr.exe (Microsoft Corporation)
SRV - (WAS) -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll (Microsoft Corporation)
SRV - (W3SVC) -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll (Microsoft Corporation)
SRV - (SQLBrowser) -- C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation)
SRV - (SysMgmtHp) -- C:\hp\hpsmh\bin\smhstart.exe (Hewlett-Packard Company)
SRV - (Themes) -- C:\Windows\SysWOW64\shsvcs.dll (Microsoft Corporation)
SRV - (AppHostSvc) -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (FirebirdGuardianDefaultInstance) -- C:\Program Files (x86)\Firebird\Firebird_2_1\bin\fbguard.exe (Firebird Project)
SRV - (FirebirdServerDefaultInstance) -- C:\Program Files (x86)\Firebird\Firebird_2_1\bin\fbserver.exe (Firebird Project)
SRV - (APCPBEAgent) -- C:\Program Files (x86)\APC\PowerChute Business Edition\agent\pbeagent.exe (APC)
SRV - (AdoNavSvc) -- C:\Program Files (x86)\Microsoft Forefront Security\Exchange Server\AdoNavSvc.exe (Microsoft Corporation)
SRV - (FSCController) -- C:\Program Files (x86)\Microsoft Forefront Security\Exchange Server\FSCController.exe (Microsoft Corporation)
SRV - (FSEIMC) -- C:\Program Files (x86)\Microsoft Forefront Security\Exchange Server\FSEIMC.exe (Microsoft Corporation)
SRV - (FSCStatisticsService) -- C:\Program Files (x86)\Microsoft Forefront Security\Exchange Server\FSCStatsServ.exe (Microsoft Corporation)
SRV - (FSCMonitor) -- C:\Program Files (x86)\Microsoft Forefront Security\Exchange Server\FSCMonitor.exe (Microsoft Corporation)
SRV - (FSEMailPickup) -- C:\Program Files (x86)\Microsoft Forefront Security\Exchange Server\FSEMailPickup.exe (Microsoft Corporation)

========== Driver Services (SafeList) ==========

DRV:64bit: - (31538288) -- C:\Windows\SysNative\DRIVERS\31538288.sys (Kaspersky Lab ZAO)
DRV:64bit: - (93528514) -- C:\Windows\SysNative\DRIVERS\93528514.sys (Kaspersky Lab ZAO)
DRV:64bit: - (83057694) -- C:\Windows\SysNative\DRIVERS\83057694.sys (Kaspersky Lab ZAO)
DRV:64bit: - (54641546) -- C:\Windows\SysNative\DRIVERS\54641546.sys (Kaspersky Lab ZAO)
DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
DRV:64bit: - (SYMTDIv) -- C:\Windows\SysNative\Drivers\NISx64\1307010.005\SYMTDIV.SYS (Symantec Corporation)
DRV:64bit: - (SymEFA) -- C:\Windows\SysNative\drivers\NISx64\1307010.005\SYMEFA64.SYS (Symantec Corporation)
DRV:64bit: - (SymIRON) -- C:\Windows\SysNative\drivers\NISx64\1307010.005\Ironx64.SYS (Symantec Corporation)
DRV:64bit: - (SRTSP) -- C:\Windows\SysNative\Drivers\NISx64\1307010.005\SRTSP64.SYS (Symantec Corporation)
DRV:64bit: - (SRTSPX) Symantec Real Time Storage Protection (PEL) -- C:\Windows\SysNative\drivers\NISx64\1307010.005\SRTSPX64.SYS (Symantec Corporation)
DRV:64bit: - (SymEvent) -- C:\Windows\SysNative\Drivers\SYMEVENT64x86.SYS (Symantec Corporation)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (timounter) -- C:\Windows\SysNative\DRIVERS\timntr.sys (Acronis)
DRV:64bit: - (snapman) -- C:\Windows\SysNative\DRIVERS\snapman.sys (Acronis)
DRV:64bit: - (fltsrv) -- C:\Windows\SysNative\DRIVERS\fltsrv.sys (Acronis)
DRV:64bit: - (ccSet_NIS) -- C:\Windows\SysNative\drivers\NISx64\1307010.005\ccSetx64.sys (Symantec Corporation)
DRV:64bit: - (SymIM) -- C:\Windows\SysNative\DRIVERS\SymIMv.sys (Symantec Corporation)
DRV:64bit: - (SymDS) -- C:\Windows\SysNative\drivers\NISx64\1307010.005\SYMDS64.SYS (Symantec Corporation)
DRV:64bit: - (FTDIBUS) -- C:\Windows\SysNative\drivers\ftdibus.sys (FTDI Ltd.)
DRV:64bit: - (VBoxNetAdp) -- C:\Windows\SysNative\DRIVERS\VBoxNetAdp.sys (Oracle Corporation)
DRV:64bit: - (RsFx0150) -- C:\Windows\SysNative\DRIVERS\RsFx0150.sys (Microsoft Corporation)
DRV:64bit: - (FTSER2K) -- C:\Windows\SysNative\drivers\ftser2k.sys (FTDI Ltd.)
DRV:64bit: - (l2nd) -- C:\Windows\SysNative\DRIVERS\bxnd60a.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\DRIVERS\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (HpCISSs2) -- C:\Windows\SysNative\DRIVERS\HpCISSs2.sys (Hewlett-Packard Company)
DRV:64bit: - (hpqilo2) -- C:\Windows\SysNative\DRIVERS\hpqilo2.sys (Hewlett-Packard Company)
DRV:64bit: - (ati2mtag) -- C:\Windows\SysNative\DRIVERS\ati2mtag.sys (ATI Technologies Inc.)
DRV:64bit: - (CpqCiDrv) -- C:\Windows\SysNative\DRIVERS\cpqcidrv.sys (Hewlett-Packard Company)
DRV:64bit: - (Datascrn) -- C:\Windows\SysNative\drivers\datascrn.sys (Microsoft Corporation)
DRV:64bit: - (Quota) -- C:\Windows\SysNative\drivers\quota.sys (Microsoft Corporation)
DRV:64bit: - (silsvc) -- C:\Windows\SysNative\silsvc.exe (Microsoft Corporation)
DRV:64bit: - (CSC) -- C:\Windows\SysNative\drivers\csc.sys (Microsoft Corporation)
DRV:64bit: - (udfs) -- C:\Windows\SysNative\DRIVERS\udfs.sys (Microsoft Corporation)
DRV:64bit: - (WDC_SAM) -- C:\Windows\SysNative\DRIVERS\wdcsam64.sys (Western Digital Technologies)
DRV:64bit: - (DfsDriver) -- C:\Windows\SysNative\drivers\dfs.sys (Microsoft Corporation)
DRV:64bit: - (sacdrv) -- C:\Windows\SysNative\DRIVERS\sacdrv.sys (Microsoft Corporation)
DRV:64bit: - (vmbus) -- C:\Windows\SysNative\drivers\vmbus.sys (Microsoft Corporation)
DRV:64bit: - (Vid) -- C:\Windows\SysNative\drivers\vid.sys (Microsoft Corporation)
DRV:64bit: - (storvsp) -- C:\Windows\SysNative\drivers\storvsp.sys (Microsoft Corporation)
DRV:64bit: - (storvsc) -- C:\Windows\SysNative\drivers\storvsc.sys (Microsoft Corporation)
DRV:64bit: - (ioatdma) Intel(R) -- C:\Windows\SysNative\drivers\qd260x64.sys (Intel Corporation)
DRV:64bit: - (ql2300) -- C:\Windows\SysNative\drivers\ql2300.sys (QLogic Corporation)
DRV:64bit: - (adp94xx) -- C:\Windows\SysNative\drivers\adp94xx.sys (Adaptec, Inc.)
DRV:64bit: - (MegaSR) -- C:\Windows\SysNative\drivers\megasr.sys (LSI Corporation, Inc.)
DRV:64bit: - (elxstor) -- C:\Windows\SysNative\drivers\elxstor.sys (Emulex)
DRV:64bit: - (adpahci) -- C:\Windows\SysNative\drivers\adpahci.sys (Adaptec, Inc.)
DRV:64bit: - (iaStorV) -- C:\Windows\SysNative\drivers\iastorv.sys (Intel Corporation)
DRV:64bit: - (uliahci) -- C:\Windows\SysNative\drivers\uliahci.sys (ULi Electronics Inc.)
DRV:64bit: - (pcmcia) -- C:\Windows\SysNative\drivers\pcmcia.sys (Microsoft Corporation)
DRV:64bit: - (adpu320) -- C:\Windows\SysNative\drivers\adpu320.sys (Adaptec, Inc.)
DRV:64bit: - (vsmraid) -- C:\Windows\SysNative\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV:64bit: - (nvraid) -- C:\Windows\SysNative\drivers\nvraid.sys (NVIDIA Corporation)
DRV:64bit: - (mpio) -- C:\Windows\SysNative\drivers\mpio.sys (Microsoft Corporation)
DRV:64bit: - (adpu160m) -- C:\Windows\SysNative\drivers\adpu160m.sys (Adaptec, Inc.)
DRV:64bit: - (LSI_FC) -- C:\Windows\SysNative\drivers\lsi_fc.sys (LSI Logic)
DRV:64bit: - (LSI_SCSI) -- C:\Windows\SysNative\drivers\lsi_scsi.sys (LSI Logic)
DRV:64bit: - (msdsm) -- C:\Windows\SysNative\drivers\msdsm.sys (Microsoft Corporation)
DRV:64bit: - (LSI_SAS) -- C:\Windows\SysNative\drivers\lsi_sas.sys (LSI Logic)
DRV:64bit: - (sbp2port) -- C:\Windows\SysNative\drivers\sbp2port.sys (Microsoft Corporation)
DRV:64bit: - (arcsas) -- C:\Windows\SysNative\drivers\arcsas.sys (Adaptec, Inc.)
DRV:64bit: - (arc) -- C:\Windows\SysNative\drivers\arc.sys (Adaptec, Inc.)
DRV:64bit: - (SiSRaid4) -- C:\Windows\SysNative\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV:64bit: - (nvstor) -- C:\Windows\SysNative\drivers\nvstor.sys (NVIDIA Corporation)
DRV:64bit: - (SiSRaid2) -- C:\Windows\SysNative\drivers\sisraid2.sys (Microsoft Corporation)
DRV:64bit: - (megasas) -- C:\Windows\SysNative\drivers\megasas.sys (LSI Corporation)
DRV:64bit: - (i2omp) -- C:\Windows\SysNative\drivers\i2omp.sys (Microsoft Corporation)
DRV:64bit: - (msahci) -- C:\Windows\SysNative\drivers\msahci.sys (Microsoft Corporation)
DRV:64bit: - (Wd) -- C:\Windows\SysNative\drivers\wd.sys (Microsoft Corporation)
DRV:64bit: - (isapnp) -- C:\Windows\SysNative\drivers\isapnp.sys (Microsoft Corporation)
DRV:64bit: - (Compbatt) -- C:\Windows\SysNative\drivers\compbatt.sys (Microsoft Corporation)
DRV:64bit: - (intelide) -- C:\Windows\SysNative\drivers\intelide.sys (Microsoft Corporation)
DRV:64bit: - (usbprint) -- C:\Windows\SysNative\drivers\usbprint.sys (Microsoft Corporation)
DRV:64bit: - (ws2ifsl) -- C:\Windows\SysNative\drivers\ws2ifsl.sys (Microsoft Corporation)
DRV:64bit: - (UMPass) -- C:\Windows\SysNative\drivers\umpass.sys (Microsoft Corporation)
DRV:64bit: - (HidBth) -- C:\Windows\SysNative\drivers\hidbth.sys (Microsoft Corporation)
DRV:64bit: - (ohci1394) -- C:\Windows\SysNative\drivers\ohci1394.sys (Microsoft Corporation)
DRV:64bit: - (usbcir) eHome Infrared Receiver (USBCIR) -- C:\Windows\SysNative\drivers\usbcir.sys (Microsoft Corporation)
DRV:64bit: - (circlass) -- C:\Windows\SysNative\drivers\circlass.sys (Microsoft Corporation)
DRV:64bit: - (usbohci) -- C:\Windows\SysNative\drivers\usbohci.sys (Microsoft Corporation)
DRV:64bit: - (HidIr) -- C:\Windows\SysNative\drivers\hidir.sys (Microsoft Corporation)
DRV:64bit: - (WacomPen) -- C:\Windows\SysNative\drivers\wacompen.sys (Microsoft Corporation)
DRV:64bit: - (sfloppy) -- C:\Windows\SysNative\drivers\sfloppy.sys (Microsoft Corporation)
DRV:64bit: - (sffdisk) -- C:\Windows\SysNative\drivers\sffdisk.sys (Microsoft Corporation)
DRV:64bit: - (fdc) -- C:\Windows\SysNative\DRIVERS\fdc.sys (Microsoft Corporation)
DRV:64bit: - (flpydisk) -- C:\Windows\SysNative\DRIVERS\flpydisk.sys (Microsoft Corporation)
DRV:64bit: - (Parport) -- C:\Windows\SysNative\drivers\parport.sys (Microsoft Corporation)
DRV:64bit: - (sermouse) -- C:\Windows\SysNative\drivers\sermouse.sys (Microsoft Corporation)
DRV:64bit: - (ErrDev) -- C:\Windows\SysNative\drivers\errdev.sys (Microsoft Corporation)
DRV:64bit: - (WmiAcpi) -- C:\Windows\SysNative\drivers\wmiacpi.sys (Microsoft Corporation)
DRV:64bit: - (AmdK8) -- C:\Windows\SysNative\drivers\amdk8.sys (Microsoft Corporation)
DRV:64bit: - (Processor) -- C:\Windows\SysNative\drivers\processr.sys (Microsoft Corporation)
DRV:64bit: - (HDAudBus) -- C:\Windows\SysNative\drivers\hdaudbus.sys (Microsoft Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\DRIVERS\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (nfrd960) -- C:\Windows\SysNative\drivers\nfrd960.sys (IBM Corporation)
DRV:64bit: - (Symc8xx) -- C:\Windows\SysNative\drivers\symc8xx.sys (LSI Logic)
DRV:64bit: - (Sym_u3) -- C:\Windows\SysNative\drivers\sym_u3.sys (LSI Logic)
DRV:64bit: - (iirsp) -- C:\Windows\SysNative\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV:64bit: - (Sym_hi) -- C:\Windows\SysNative\drivers\sym_hi.sys (LSI Logic)
DRV:64bit: - (Mraid35x) -- C:\Windows\SysNative\drivers\mraid35x.sys (LSI Logic Corporation)
DRV:64bit: - (iteraid) -- C:\Windows\SysNative\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV:64bit: - (iteatapi) -- C:\Windows\SysNative\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV:64bit: - (cmdide) -- C:\Windows\SysNative\drivers\cmdide.sys (CMD Technology, Inc.)
DRV:64bit: - (viaide) -- C:\Windows\SysNative\drivers\viaide.sys (VIA Technologies, Inc.)
DRV:64bit: - (amdide) -- C:\Windows\SysNative\drivers\amdide.sys (Microsoft Corporation)
DRV:64bit: - (aliide) -- C:\Windows\SysNative\drivers\aliide.sys (Acer Laboratories Inc.)
DRV:64bit: - (ulsata2) -- C:\Windows\SysNative\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV:64bit: - (UlSata) -- C:\Windows\SysNative\drivers\ulsata.sys (Promise Technology, Inc.)
DRV:64bit: - (ql40xx) -- C:\Windows\SysNative\drivers\ql40xx.sys (QLogic Corporation)
DRV:64bit: - (aic78xx) -- C:\Windows\SysNative\drivers\djsvs.sys (Adaptec, Inc.)
DRV:64bit: - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\SysNative\drivers\brserid.sys (Brother Industries Ltd.)
DRV:64bit: - (BrSerWdm) -- C:\Windows\SysNative\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV:64bit: - (BrUsbMdm) -- C:\Windows\SysNative\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (NAVEX15) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120605.002\ex64.sys (Symantec Corporation)
DRV - (NAVENG) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120605.002\eng64.sys (Symantec Corporation)
DRV - (EraserUtilRebootDrv) -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation)
DRV - (eeCtrl) -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys (Symantec Corporation)
DRV - (IDSVia64) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20120602.001\IDSviA64.sys (Symantec Corporation)
DRV - (BHDrvx64) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20120517.001\BHDrvx64.sys (Symantec Corporation)

========== Standard Registry (All) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SYSTEM32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:0.0.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}:6.0.29
FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:3.2
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.10
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\IPSFFPlgn\ [2012.01.02 11:35:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2010.01.08 22:31:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\coFFPlgn\ [2012.06.05 07:09:52 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2009.07.11 20:08:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012.03.02 11:18:10 | 000,000,000 | ---D | M]

[2009.07.11 20:08:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tomas\AppData\Roaming\Mozilla\Extensions
[2009.07.11 20:08:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tomas\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2010.02.27 20:58:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\h7pi7se8.default\extensions
[2010.02.27 20:58:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\h7pi7se8.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.02.27 20:58:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\h7pi7se8.default\extensions\staged-xpis
[2012.01.07 18:52:25 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2009.07.11 20:08:20 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009.11.11 00:46:14 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
[2010.04.16 16:19:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011.01.17 15:37:26 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011.12.11 20:34:12 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
[2012.01.02 11:35:59 | 000,000,000 | ---D | M] (Norton Vulnerability Protection) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\IPSFFPLGN
[2010.01.08 22:31:38 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2009.04.24 07:26:57 | 000,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browserdirprovider.dll
[2009.04.24 07:26:57 | 000,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\brwsrcmp.dll
[2011.10.03 06:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2009.04.24 07:26:57 | 000,065,528 | ---- | M] (mozilla.org) -- C:\Program Files (x86)\mozilla firefox\plugins\npnul32.dll
[2012.01.03 09:22:02 | 000,103,864 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll
[2008.04.16 06:08:20 | 000,001,706 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\google.xml
[2008.03.31 21:06:24 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\jyxo-cz.xml
[2008.03.31 21:06:24 | 000,001,687 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\mall-cz.xml
[2008.01.27 11:57:20 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\seznam-cz.xml
[2008.01.27 11:57:20 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slunecnice-cz.xml
[2008.03.31 21:06:24 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2012.05.22 09:06:46 | 000,442,859 | R--- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 15218 more lines...
O2 - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\coieplg.dll (Symantec Corporation)
O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\ips\ipsbho.dll (Symantec Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\coieplg.dll (Symantec Corporation)
O4:64bit: - HKLM..\Run: [DWPersistentQueuedReporting] C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Služba Acronis Scheduler2] C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
O4:64bit: - HKLM..\Run: [TrayMonitor.exe] C:\Program Files (x86)\Acronis\TrayMonitor\TrayMonitor.exe (Acronis)
O4 - HKLM..\Run: [AcronisTimounterMonitor] C:\Program Files (x86)\Common Files\Acronis\Timounter\TimounterMonitor.exe (Acronis)
O4 - HKLM..\Run: [BA5E73F7] C:\Windows\BA5E73F7\svchsot.exe File not found
O4 - HKLM..\Run: [BackupAndRecoveryMonitor.exe] F:\Acronis_prgram\BackupAndRecovery\BackupAndRecoveryMonitor.exe (Acronis)
O4 - HKLM..\Run: [gserver] C:\Program Files\WindowsUpdate\gserver.exe ()
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [RAALTRANS 7.608] C:\RAAL\RTW7608\Server\RAALSrvr.exe (ComArr, s.r.o.)
O4 - HKLM..\Run: [tvncontrol] C:\Program Files (x86)\TightVNC\tvnserver.exe (GlavSoft LLC.)
O4 - HKLM..\RunOnce: [GrpConv] C:\Windows\SysWow64\grpconv.exe (Microsoft Corporation)
O4 - Startup: C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Launch TightVNC Server.lnk = C:\Program Files (x86)\TightVNC\WinVNC.exe (TightVNC Group)
O4 - Startup: C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_54641546.lnk = File not found
O4 - Startup: C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_83057694.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ShowSuperHidden = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: BindDirectlyToPropertySetStorage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disablecad = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000001 [] - C:\Windows\SysNative\NLAapi.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000002 [] - C:\Windows\SysNative\napinsp.dll (Společnost Microsoft)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000003 [] - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000004 [] - C:\Windows\SysNative\winrnr.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)

tomqw · Příspěvekod **tomqw** » 07 čer 2012 18:08

2. část
Entries64\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000011 - CC:\Program Files (x86)\VMware\VMware Server\x64\vsocklib.dll File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000012 - CC:\Program Files (x86)\VMware\VMware Server\x64\vsocklib.dll File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\NapiNSP.dll (Společnost Microsoft)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: microsoft.com ([i2.technet] http in Důvěryhodné servery)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = arrow.local
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EFC0D7C8-AD11-4EFD-B116-503E5B3A8E98}: NameServer = 192.168.1.100,127.0.0.1,192.168.1.1
O18:64bit: - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysNative\inetcomm.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files (x86)\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\Windows\SysNative\shell32.dll (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\Windows\SysNative\sysdm.cpl (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\Windows\SysWow64\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\Windows\SysWow64\sysdm.cpl (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\SysNative\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\SysWOW64\webcheck.dll (Microsoft Corporation)
O22:64bit: - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\Windows\SysNative\browseui.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\Windows\SysWOW64\browseui.dll (Microsoft Corporation)
O27:64bit: - HKLM IFEO\sethc.exe: Debugger - c:\windows\aq.bat File not found
O29:64bit: - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O29:64bit: - HKLM SecurityProviders - (pwdssp.dll) - File not found
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (pwdssp.dll) - File not found
O30:64bit: - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Authentication Packages - (relog_ap) - C:\Windows\SysNative\relog_ap.dll (Acronis)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (relog_ap) - C:\Windows\SysWow64\relog_ap.dll (Acronis)
O30:64bit: - LSA: Security Packages - (kerberos) - C:\Windows\SysNative\kerberos.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (schannel) - C:\Windows\SysNative\schannel.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (wdigest) - C:\Windows\SysNative\wdigest.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (tspkg) - C:\Windows\SysNative\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\SysWow64\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\SysWow64\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\SysWow64\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\SysWow64\tspkg.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2012.06.05 20:44:29 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3254
[2012.06.05 20:37:44 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3288
[2012.06.05 20:36:42 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4690
[2012.06.05 20:35:36 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1901
[2012.06.05 20:34:35 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3829
[2012.06.05 20:26:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6285
[2012.06.05 20:20:36 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5952
[2012.06.05 20:02:16 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1140
[2012.06.05 20:01:24 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3652
[2012.06.05 20:00:34 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2784
[2012.06.05 19:52:43 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1983
[2012.06.05 19:42:22 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6006
[2012.06.05 19:34:31 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1702
[2012.06.05 19:33:41 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7271
[2012.06.05 19:32:33 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5327
[2012.06.05 19:24:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2207
[2012.06.05 19:15:46 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7522
[2012.06.05 19:15:25 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9059
[2012.06.05 19:15:03 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5438
[2012.06.05 19:08:21 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8116
[2012.06.05 18:56:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3631
[2012.06.05 18:55:47 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6772
[2012.06.05 18:54:31 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6817
[2012.06.05 18:54:02 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7162
[2012.06.05 18:44:28 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2780
[2012.06.05 18:43:23 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4810
[2012.06.05 18:35:53 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4188
[2012.06.05 18:28:23 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4557
[2012.06.05 18:21:26 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7003
[2012.06.05 18:21:19 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3195
[2012.06.05 18:21:09 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7815
[2012.06.05 18:21:08 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9034
[2012.06.05 18:20:12 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5391
[2012.06.05 18:11:32 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9750
[2012.06.05 18:03:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2148
[2012.06.05 18:03:21 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7178
[2012.06.05 17:56:30 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5296
[2012.06.05 17:56:12 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1592
[2012.06.05 17:47:30 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4503
[2012.06.05 17:39:24 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1786
[2012.06.05 17:24:03 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1422
[2012.06.05 17:23:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1371
[2012.06.05 17:23:27 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6031
[2012.06.05 17:23:01 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1163
[2012.06.05 17:22:40 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1735
[2012.06.05 17:22:39 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5882
[2012.06.05 17:21:57 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7400
[2012.06.05 17:21:18 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8874
[2012.06.05 17:20:59 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7101
[2012.06.05 17:20:52 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5045
[2012.06.05 17:11:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8473
[2012.06.05 17:10:12 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1819
[2012.06.05 17:09:05 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8399
[2012.06.05 16:53:15 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3235
[2012.06.05 16:46:34 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8228
[2012.06.05 16:46:01 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5480
[2012.06.05 16:44:58 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3222
[2012.06.05 16:37:26 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8899
[2012.06.05 16:26:44 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7883
[2012.06.05 16:25:54 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7067
[2012.06.05 16:25:41 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8105
[2012.06.05 16:25:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7556
[2012.06.05 16:05:20 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8480
[2012.06.05 16:04:43 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7894
[2012.06.05 16:02:56 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3179
[2012.06.05 15:50:54 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9262
[2012.06.05 15:49:54 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7557
[2012.06.05 15:42:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2793
[2012.06.05 15:40:36 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1550
[2012.06.05 15:17:32 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4357
[2012.06.05 15:08:03 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2402
[2012.06.05 15:08:01 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5718
[2012.06.05 15:00:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7773
[2012.06.05 14:59:52 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6426
[2012.06.05 14:51:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8028
[2012.06.05 14:45:32 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2773
[2012.06.05 14:44:15 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8325
[2012.06.05 14:43:30 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2903
[2012.06.05 14:43:12 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3793
[2012.06.05 14:36:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5674
[2012.06.05 14:35:47 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2554
[2012.06.05 14:34:19 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5087
[2012.06.05 14:27:40 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4501
[2012.06.05 14:21:18 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9578
[2012.06.05 14:12:20 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1358
[2012.06.05 14:11:52 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3854
[2012.06.05 14:02:59 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6852
[2012.06.05 14:02:29 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9337
[2012.06.05 13:54:45 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1930
[2012.06.05 13:52:32 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1235
[2012.06.05 13:51:53 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1837
[2012.06.05 13:50:46 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5354
[2012.06.05 13:42:02 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2294
[2012.06.05 13:35:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6002
[2012.06.05 13:34:21 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7105
[2012.06.05 13:25:24 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1986
[2012.06.05 13:24:24 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7000
[2012.06.05 13:23:20 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9212
[2012.06.05 13:22:56 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1813
[2012.06.05 13:22:30 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4836
[2012.06.05 13:15:20 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3546
[2012.06.05 13:12:32 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5451
[2012.06.05 13:12:30 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1462
[2012.06.05 13:11:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1156
[2012.06.05 13:11:16 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5526
[2012.06.05 12:51:59 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5561
[2012.06.05 12:51:55 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5220
[2012.06.05 12:45:22 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3167
[2012.06.05 12:45:12 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8779
[2012.06.05 12:44:58 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6440
[2012.06.05 12:43:51 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8291
[2012.06.05 12:43:51 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8205
[2012.06.05 12:43:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9677
[2012.06.05 12:43:33 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5896
[2012.06.05 12:35:32 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3747
[2012.06.05 12:28:29 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1233
[2012.06.05 12:28:03 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8682
[2012.06.05 12:20:03 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5304
[2012.06.05 12:18:31 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7084
[2012.06.05 12:08:25 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7949
[2012.06.05 12:07:57 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4859
[2012.06.05 12:07:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1652
[2012.06.05 11:58:44 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2674
[2012.06.05 11:51:33 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7683
[2012.06.05 11:50:27 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4754
[2012.06.05 11:43:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5226
[2012.06.05 11:37:09 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1126
[2012.06.05 11:36:19 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6913
[2012.06.05 11:35:55 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4759
[2012.06.05 11:35:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9675
[2012.06.05 11:35:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3480
[2012.06.05 11:35:36 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4691
[2012.06.05 11:27:47 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9296
[2012.06.05 11:26:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7547
[2012.06.05 11:18:52 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1679
[2012.06.05 11:11:26 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2909
[2012.06.05 11:00:46 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6878
[2012.06.05 10:59:40 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7981
[2012.06.05 10:59:25 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1488
[2012.06.05 10:52:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2893
[2012.06.05 10:51:35 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3365
[2012.06.05 10:44:39 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9778
[2012.06.05 10:44:12 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5995
[2012.06.05 10:43:48 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4365
[2012.06.05 10:43:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7032
[2012.06.05 10:34:45 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2973
[2012.06.05 10:34:45 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1711
[2012.06.05 10:27:35 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9429
[2012.06.05 10:16:59 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3102
[2012.06.05 10:16:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8522
[2012.06.05 10:16:02 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4903
[2012.06.05 10:08:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3485
[2012.06.05 10:08:09 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8361
[2012.06.05 10:07:56 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8110
[2012.06.05 10:07:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4391
[2012.06.05 10:00:07 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7047
[2012.06.05 10:00:07 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6423
[2012.06.05 09:57:53 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2015
[2012.06.05 09:56:58 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4906
[2012.06.05 09:48:32 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3241
[2012.06.05 09:47:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6269
[2012.06.05 09:47:46 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3898
[2012.06.05 09:39:12 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3697
[2012.06.05 09:24:40 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5831
[2012.06.05 09:23:15 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7379
[2012.06.05 09:14:32 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4778
[2012.06.05 09:12:30 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8467
[2012.06.05 09:05:06 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1225
[2012.06.05 09:04:48 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9225
[2012.06.05 09:04:41 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9267
[2012.06.05 08:57:39 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1772
[2012.06.05 08:31:55 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5399
[2012.06.05 08:23:16 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8324
[2012.06.05 08:06:27 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2056
[2012.06.05 08:05:29 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9204
[2012.06.05 08:05:16 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7240
[2012.06.05 08:04:57 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9880
[2012.06.05 08:04:57 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7021
[2012.06.05 08:04:47 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9966
[2012.06.05 07:52:40 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1175
[2012.06.05 07:52:05 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4666
[2012.06.05 07:51:59 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4284
[2012.06.05 07:50:18 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5203
[2012.06.05 07:42:57 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3370
[2012.06.05 07:42:56 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4877
[2012.06.05 07:42:31 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3080
[2012.06.05 07:33:02 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8395
[2012.06.05 07:32:47 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7537
[2012.06.05 07:24:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9289
[2012.06.05 07:20:33 | 000,460,888 | ---- | C] (Kaspersky Lab ZAO) -- C:\Windows\SysNative\drivers\31538288.sys
[2012.06.05 07:13:21 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2727
[2012.06.05 07:13:17 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1823
[2012.06.05 07:12:23 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2092
[2012.06.05 07:11:53 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4011
[2012.06.05 07:11:20 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4619
[2012.06.05 07:01:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5133
[2012.06.05 07:00:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3554
[2012.06.05 07:00:06 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7606
[2012.06.05 06:59:23 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9048
[2012.06.05 06:51:53 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7117
[2012.06.05 06:50:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5552
[2012.06.05 06:50:48 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4871
[2012.06.05 06:50:15 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8117
[2012.06.05 06:49:43 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1231
[2012.06.05 06:42:57 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9824
[2012.06.05 06:40:18 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7891
[2012.06.05 02:54:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2928
[2012.06.05 02:54:02 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8864
[2012.06.05 02:53:48 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1719
[2012.06.05 02:53:43 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6936
[2012.06.05 02:53:05 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7090
[2012.06.05 02:52:01 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9439
[2012.06.05 02:51:55 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1075
[2012.06.05 02:51:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9653
[2012.06.05 02:41:31 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9495
[2012.06.05 02:39:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1029
[2012.06.05 02:31:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1590
[2012.06.05 02:29:40 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2380
[2012.06.05 02:29:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2227
[2012.06.05 02:27:25 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7565
[2012.06.05 02:18:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9105
[2012.06.05 02:17:17 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7018
[2012.06.05 02:16:01 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8450
[2012.06.05 02:15:58 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3447
[2012.06.05 02:15:52 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5727
[2012.06.05 02:15:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5215
[2012.06.05 02:06:56 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8967
[2012.06.05 02:05:26 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8402
[2012.06.05 01:56:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8806
[2012.06.05 01:48:51 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7097
[2012.06.05 01:40:18 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1259
[2012.06.05 01:40:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3065
[2012.06.05 01:30:22 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8578
[2012.06.05 01:30:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3185
[2012.06.05 01:29:08 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2173
[2012.06.05 01:27:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9636
[2012.06.05 01:19:58 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5705
[2012.06.05 01:11:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4578
[2012.06.05 01:11:07 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5471
[2012.06.05 01:03:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8624
[2012.06.05 01:03:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6378
[2012.06.05 01:01:51 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9777
[2012.06.05 00:55:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6242
[2012.06.05 00:55:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1530
[2012.06.05 00:54:27 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8601
[2012.06.05 00:54:22 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9572
[2012.06.05 00:53:12 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1437
[2012.06.05 00:52:56 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7765
[2012.06.05 00:52:16 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2758
[2012.06.05 00:45:41 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6599
[2012.06.05 00:45:05 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4307
[2012.06.05 00:43:39 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4753
[2012.06.05 00:43:31 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4243
[2012.06.05 00:43:26 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1442
[2012.06.05 00:43:07 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4589
[2012.06.05 00:35:39 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9730
[2012.06.05 00:33:52 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6428
[2012.06.05 00:33:42 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9446
[2012.06.05 00:26:21 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9867
[2012.06.05 00:25:31 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1151
[2012.06.05 00:24:22 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2887
[2012.06.05 00:23:24 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3422
[2012.06.05 00:15:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9708
[2012.06.05 00:15:01 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4730
[2012.06.05 00:14:48 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3932
[2012.06.05 00:14:01 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7011
[2012.06.05 00:05:51 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4319
[2012.06.05 00:05:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9725
[2012.06.05 00:05:39 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1923
[2012.06.04 23:57:55 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8281
[2012.06.04 23:55:03 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6149
[2012.06.04 23:54:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7214
[2012.06.04 23:53:52 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9071
[2012.06.04 23:53:33 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9341
[2012.06.04 23:46:44 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3682
[2012.06.04 23:35:53 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2411
[2012.06.04 23:35:32 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2504
[2012.06.04 23:34:54 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5241
[2012.06.04 23:34:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4670
[2012.06.04 23:19:59 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1390
[2012.06.04 23:19:55 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8711
[2012.06.04 23:10:57 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5222
[2012.06.04 23:10:32 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4713
[2012.06.04 23:09:35 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1713
[2012.06.04 23:01:25 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3658
[2012.06.04 22:59:40 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2634
[2012.06.04 22:52:07 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6954
[2012.06.04 22:50:56 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8618
[2012.06.04 22:50:39 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9978
[2012.06.04 22:49:22 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5003
[2012.06.04 22:40:28 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8171
[2012.06.04 22:40:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9018
[2012.06.04 22:39:23 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3930
[2012.06.04 22:30:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1737
[2012.06.04 22:29:03 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7721
[2012.06.04 22:28:02 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3584
[2012.06.04 22:27:52 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8407
[2012.06.04 22:21:17 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5660
[2012.06.04 22:17:31 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7330
[2012.06.04 22:17:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1864
[2012.06.04 22:17:05 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7516
[2012.06.04 22:09:20 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2656
[2012.06.04 22:01:35 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5894
[2012.06.04 21:52:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6822
[2012.06.04 21:52:03 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9424
[2012.06.04 21:43:18 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7192
[2012.06.04 21:43:02 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3750
[2012.06.04 21:42:44 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8666
[2012.06.04 21:42:24 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9498
[2012.06.04 21:42:12 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1497
[2012.06.04 21:34:24 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2458
[2012.06.04 21:32:44 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2457
[2012.06.04 21:25:53 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7445
[2012.06.04 21:15:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4335
[2012.06.04 21:03:03 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3345
[2012.06.04 20:56:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9558
[2012.06.04 20:53:58 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9985
[2012.06.04 20:53:58 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7106
[2012.06.04 20:53:52 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2738
[2012.06.04 20:53:41 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1605
[2012.06.04 20:42:20 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8018
[2012.06.04 20:42:18 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5937
[2012.06.04 20:41:39 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3378
[2012.06.04 20:41:22 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8647
[2012.06.04 20:34:15 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6153
[2012.06.04 20:31:59 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3856
[2012.06.04 20:22:51 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6858
[2012.06.04 20:14:22 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1832
[2012.06.04 20:05:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5011
[2012.06.04 20:02:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3377
[2012.06.04 20:01:53 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1677
[2012.06.04 19:52:37 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1860
[2012.06.04 19:51:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5243
[2012.06.04 19:42:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5106
[2012.06.04 19:35:01 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1913
[2012.06.04 19:33:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2075
[2012.06.04 19:18:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1340
[2012.06.04 19:17:54 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8286
[2012.06.04 19:17:18 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9096
[2012.06.04 19:17:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5691
[2012.06.04 19:16:27 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3151
[2012.06.04 19:06:51 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8931
[2012.06.04 18:56:43 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4630
[2012.06.04 18:55:41 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5629
[2012.06.04 18:47:02 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6408
[2012.06.04 18:44:32 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6207
[2012.06.04 18:43:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4741
[2012.06.04 18:35:52 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3762
[2012.06.04 18:34:23 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5761
[2012.06.04 18:34:15 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1200
[2012.06.04 18:20:47 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9889
[2012.06.04 18:20:42 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5098
[2012.06.04 18:20:23 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8454
[2012.06.04 18:20:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8975
[2012.06.04 18:07:45 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7687
[2012.06.04 17:59:20 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9717
[2012.06.04 17:44:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4708
[2012.06.04 17:43:36 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9404
[2012.06.04 17:41:26 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7609
[2012.06.04 17:40:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1490
[2012.06.04 17:32:28 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7775
[2012.06.04 17:15:06 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4494
[2012.06.04 17:13:35 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4338
[2012.06.04 17:13:18 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9621
[2012.06.04 17:05:45 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6485
[2012.06.04 17:04:42 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1959
[2012.06.04 16:57:40 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4298
[2012.06.04 16:46:32 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5704
[2012.06.04 16:39:19 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6859
[2012.06.04 16:30:45 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2027
[2012.06.04 16:24:32 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1403
[2012.06.04 16:24:29 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6937
[2012.06.04 16:23:43 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7529
[2012.06.04 16:16:36 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4807
[2012.06.04 16:15:36 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1616
[2012.06.04 16:03:59 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3134
[2012.06.04 16:03:57 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5644
[2012.06.04 15:56:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8316
[2012.06.04 15:55:26 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9021
[2012.06.04 15:47:27 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4410
[2012.06.04 15:46:31 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3690
[2012.06.04 15:45:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9322
[2012.06.04 15:38:41 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7751
[2012.06.04 15:30:59 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1582
[2012.06.04 15:29:43 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5259
[2012.06.04 15:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7747
[2012.06.04 15:22:47 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2957
[2012.06.04 15:19:15 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8055
[2012.06.04 15:01:28 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9323
[2012.06.04 15:01:25 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3322
[2012.06.04 14:59:47 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5636
[2012.06.04 14:52:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5009
[2012.06.04 14:51:33 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3198
[2012.06.04 14:51:27 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3025
[2012.06.04 14:50:57 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1922
[2012.06.04 14:50:41 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1709
[2012.06.04 14:50:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3242
[2012.06.04 14:50:05 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6560
[2012.06.04 14:50:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6932
[2012.06.04 14:42:18 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5473
[2012.06.04 14:40:34 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4985
[2012.06.04 14:39:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8301
[2012.06.04 14:26:51 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1445
[2012.06.04 14:25:01 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1821
[2012.06.04 14:18:17 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7437
[2012.06.04 14:16:48 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9866
[2012.06.04 14:09:45 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6199
[2012.06.04 14:08:31 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6882
[2012.06.04 14:01:33 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5621
[2012.06.04 14:00:15 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3760
[2012.06.04 13:57:18 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4356
[2012.06.04 13:56:26 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8194
[2012.06.04 13:47:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9639
[2012.06.04 13:47:34 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7127
[2012.06.04 13:46:35 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2838
[2012.06.04 13:46:34 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2839
[2012.06.04 13:38:57 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7778
[2012.06.04 13:38:01 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6971
[2012.06.04 13:37:03 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8130
[2012.06.04 13:36:44 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5132
[2012.06.04 13:36:35 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2876
[2012.06.04 13:28:29 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4524
[2012.06.04 13:27:34 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5924
[2012.06.04 13:27:15 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6926
[2012.06.04 13:26:33 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8961
[2012.06.04 13:26:29 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9838
[2012.06.04 13:20:21 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5293
[2012.06.04 13:19:22 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1929
[2012.06.04 13:19:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9651
[2012.06.04 13:19:05 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1560
[2012.06.04 13:18:59 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4402
[2012.06.04 13:18:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7353
[2012.06.04 13:11:40 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4992
[2012.06.04 13:00:58 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5463
[2012.06.04 13:00:35 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7640
[2012.06.04 12:50:03 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4894
[2012.06.04 12:43:45 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9573
[2012.06.04 12:41:54 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4179
[2012.06.04 12:40:35 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4896
[2012.06.04 12:36:28 | 000,000,000 | ---D | C] -- C:\Windows\C7377C04
[2012.06.04 12:33:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3524
[2012.06.04 12:32:07 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9030
[2012.06.04 12:24:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5504
[2012.06.04 12:24:44 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6422
[2012.06.04 12:24:15 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5221
[2012.06.04 12:23:57 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7193
[2012.06.04 12:16:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2259
[2012.06.04 12:06:25 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8966
[2012.06.04 11:56:46 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5941
[2012.06.04 11:56:35 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i2064
[2012.06.04 11:56:07 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4101
[2012.06.04 11:56:06 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5556
[2012.06.04 11:47:57 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7331
[2012.06.04 11:47:39 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i3874
[2012.06.04 11:46:06 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6025
[2012.06.04 11:45:55 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7848
[2012.06.04 11:39:24 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7134
[2012.06.04 11:38:30 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6436
[2012.06.04 11:38:24 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4329
[2012.06.04 11:17:48 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5700
[2012.06.04 11:14:58 | 000,000,000 | ---D | C] -- C:\Windows\XXXXXX91CBF9C7
[2012.06.04 11:09:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i1706
[2012.06.04 11:09:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i5016
[2012.06.04 11:08:51 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i4076
[2012.06.04 10:57:56 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i9718
[2012.06.04 10:57:22 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i7642
[2012.06.04 10:49:31 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i6250
[2012.06.04 10:47:16 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\i8732
[

Mohu poprosit o kontrolu logu HiJackThis Vyřešeno

Re: Mohu poprosit o kontrolu logu HiJackThis

Re: Mohu poprosit o kontrolu logu HiJackThis

Re: Mohu poprosit o kontrolu logu HiJackThis

Re: Mohu poprosit o kontrolu logu HiJackThis

Re: Mohu poprosit o kontrolu logu HiJackThis

Re: Mohu poprosit o kontrolu logu HiJackThis

Re: Mohu poprosit o kontrolu logu HiJackThis

Re: Mohu poprosit o kontrolu logu HiJackThis

Re: Mohu poprosit o kontrolu logu HiJackThis

Re: Mohu poprosit o kontrolu logu HiJackThis

Re: Mohu poprosit o kontrolu logu HiJackThis

Re: Mohu poprosit o kontrolu logu HiJackThis

Kdo je online