Dobry den. Moc bych prosil o preventivku, zda mi neco nezadouciho nedela problemy s NTB. Fungovat funguje, ale zda se mi uz cely nejaky zabrzdeny. Nejvice me ale rozciluje caste padani sysstemu ve sleep modu, ktery u NTB pouzivam bezne. Zkousel jsem beznou udrzby jako opravu systemu pres original instalacni disk Visty, Windowsovskou defragmentaci a podobne. Antivir mam ESET SmartSecurity. Predem dekuji. Prikladam pro zacatek log z RSITu:
Logfile of random's system information tool 1.09 (written by random/random)
Run by alvr at 2011-11-13 17:49:24
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 108 GB (54%) free of 200 GB
Total RAM: 3065 MB (38% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:49:40, on 13.11.2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Program Files\Hewlett-Packard\IAM\Bin\AsGHost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Siemens\Automation\Portal V10\Bin\Siemens.Automation.ObjectFrame.FileStorage.Server.exe
C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\ICQ7.5\ICQ.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\ActivIdentity\ActivClient\acevents.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\conime.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\Common Files\Java\Java Update\jucheck.exe
C:\Program Files\Windows Mail\WinMail.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\TrueCrypt\TrueCrypt.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\alvr\Desktop\RSIT.exe
C:\Program Files\trend micro\alvr.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\1102022138\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Credential Manager for HP ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\1102022138\ICQToolBar.dll
O3 - Toolbar: FreeRIP.com Toolbar - {081230F8-EA50-42A9-983C-D22ABC2EED3B} - C:\Program Files\FreeRIP3\toolband.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [accrdsub] "C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe"
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\soundmax.exe /tray
O4 - HKLM\..\Run: [HPCam_Menu] "C:\Program Files\Hewlett-Packard\HP Webcam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Hewlett-Packard\HP Webcam" UpdateWithCreateOnce "Software\CyberLink\HP Webcam\1.0"
O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [Nokia FastStart] "C:\Program Files\Nokia\Nokia Music\NokiaMusic.exe" /command:faststart
O4 - HKLM\..\Run: [NI Background Service] C:\Program Files\National Instruments\Shared\Update Service\BackgroundService.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SiemensAutomationFileStorage] C:\Program Files\Siemens\Automation\Portal V10\Bin\Siemens.Automation.ObjectFrame.FileStorage.Server.exe preload
O4 - HKLM\..\Run: [HTC Sync Loader] "C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ7.5\ICQ.exe" silent loginmode=4
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil11c_ActiveX.exe -update activex
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: &FreeRIP Search - res://C:\Program Files\FreeRIP3\toolband.dll/MENUSEARCH.HTM
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} (AxisMediaControlEmb Class) - http://80.82.144.83/activex/AMC.cab
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class) - https://akamaicdn.webex.com/client/WBXc ... atgpc1.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: APSHook.dll
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: ActivClient Middleware Service (accoca) - ActivIdentity - C:\Program Files\ActivIdentity\ActivClient\accoca.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\Windows\system32\AEADISRV.EXE
O23 - Service: Automation License Manager Service (almservice) - SIEMENS AG - C:\Program Files\Common Files\Siemens\sws\almsrv\almsrvx.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: AuthenTec Fingerprint Service (ATService) - AuthenTec, Inc. - C:\Program Files\Fingerprint Sensor\AtService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FileOpenManagerSvc - FileOpen Systems Inc. - C:\ProgramData\FileOpen\Services\FileOpenManagerSvc32.exe
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - C:\Windows\system32\flcdlock.exe
O23 - Service: Služba Google Update (gupdate1cc09a1fdc34a0b) (gupdate1cc09a1fdc34a0b) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HASP License Manager (hasplms) - Aladdin Knowledge Systems Ltd. - C:\Windows\system32\hasplms.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - SafeBoot International - C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Corporation - C:\Windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Lookout Citadel Server (LkCitadelServer) - National Instruments, Inc. - C:\Windows\system32\lkcitdl.exe
O23 - Service: National Instruments PSP Server Locator (lkClassAds) - National Instruments Corporation - C:\Windows\system32\lkads.exe
O23 - Service: National Instruments Time Synchronization (lkTimeSync) - National Instruments Corporation - C:\Windows\system32\lktsrv.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: National Instruments Domain Service (NIDomainService) - National Instruments Corporation - C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
O23 - Service: NI Service Locator (niSvcLoc) - National Instruments Corporation - C:\Windows\system32\nisvcloc.exe
O23 - Service: OpcEnum - OPC Foundation - C:\Windows\system32\OpcEnum.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: SIMATIC IEPG Help Service (s7oiehsx) - SIEMENS AG - C:\Program Files\Common Files\Siemens\S7IEPG\s7oiehsx.exe
O23 - Service: S7TraceServiceX - SIEMENS AG - C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceServiceX.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
--
End of file - 13881 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
=========Mozilla firefox=========
ProfilePath - C:\Users\alvr\AppData\Roaming\Mozilla\Firefox\Profiles\yslq8mya.default
prefs.js - "browser.startup.homepage" - "http://www.google.cz/"
prefs.js - "extensions.enabledItems" - "{20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.18"
prefs.js - "keyword.URL" - "http://search.icq.com/search/afe_result ... r=1.1.7&q="
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Users\alvr\AppData\Roaming\Mozilla\Firefox\Profiles\yslq8mya.default\extensions\
{20a82645-c095-46ed-80e3-08825760534b}
C:\Users\alvr\AppData\Roaming\Mozilla\Firefox\Profiles\yslq8mya.default\searchplugins\
icqplugin.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-08-22 42272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
Credential Manager for HP ProtectTools - C:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll [2009-01-28 98064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\1102022138\ICQToolBar.dll [2010-09-06 1048888]
{081230F8-EA50-42A9-983C-D22ABC2EED3B} - FreeRIP.com Toolbar - C:\Program Files\FreeRIP3\toolband.dll [2010-09-09 286720]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-05-14 61440]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2009-02-18 177720]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-02-06 1430824]
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-03-10 506936]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2010-02-26 2140880]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-12-17 186904]
""= []
"accrdsub"=C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [2007-11-27 298536]
"CognizanceTS"=C:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll [2009-01-28 24848]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [2009-01-16 3866624]
"HPCam_Menu"=C:\Program Files\Hewlett-Packard\HP Webcam\MUITransfer\MUIStartMenu.exe [2009-02-25 218408]
"HP Health Check Scheduler"=c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-12-04 75016]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2008-12-08 54576]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]
"Nokia FastStart"=C:\Program Files\Nokia\Nokia Music\NokiaMusic.exe /command:faststart []
"NI Background Service"=C:\Program Files\National Instruments\Shared\Update Service\BackgroundService.exe [2009-08-25 77824]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-09-07 37296]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-30 937920]
"SiemensAutomationFileStorage"=C:\Program Files\Siemens\Automation\Portal V10\Bin\Siemens.Automation.ObjectFrame.FileStorage.Server.exe [2009-11-17 364544]
"HTC Sync Loader"=C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2011-01-27 585728]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2010-09-02 13351304]
"ICQ"=C:\Program Files\ICQ7.5\ICQ.exe [2011-08-01 124480]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=C:\Windows\system32\Macromed\Flash\FlashUtil11c_ActiveX.exe [2011-10-11 247968]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="APSHook.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\DeviceNP]
C:\Windows\system32\DeviceNP.dll [2008-08-06 69632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ASWLNPkg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
"EnableLinkedConnections"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.l3fhg"=mp3fhg.acm
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2011-11-13 17:49:24 ----D---- C:\rsit
2011-11-13 17:49:24 ----D---- C:\Program Files\trend micro
2011-11-12 16:58:51 ----D---- C:\ProgramData\VS
2011-11-09 18:51:18 ----A---- C:\Windows\system32\drivers\tcpip.sys
======List of files/folders modified in the last 1 month======
2011-11-13 17:49:29 ----D---- C:\Windows\Temp
2011-11-13 17:49:24 ----RD---- C:\Program Files
2011-11-13 17:45:17 ----D---- C:\Users\alvr\AppData\Roaming\Skype
2011-11-13 16:03:30 ----D---- C:\Users\alvr\AppData\Roaming\skypePM
2011-11-13 15:19:59 ----D---- C:\Windows\Microsoft.NET
2011-11-13 15:19:58 ----RSD---- C:\Windows\assembly
2011-11-13 14:49:29 ----D---- C:\Windows\System32
2011-11-13 14:49:29 ----D---- C:\Windows\inf
2011-11-13 14:49:29 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-11-12 17:05:17 ----SHD---- C:\Windows\Installer
2011-11-12 17:04:07 ----D---- C:\Program Files\Common Files\microsoft shared
2011-11-12 16:58:51 ----HD---- C:\ProgramData
2011-11-12 16:56:40 ----SHD---- C:\System Volume Information
2011-11-12 16:37:01 ----D---- C:\Windows\winsxs
2011-11-12 16:37:00 ----D---- C:\Windows\system32\catroot
2011-11-12 16:32:38 ----A---- C:\ProgramData\HPWALog.txt
2011-11-10 16:32:42 ----A---- C:\Windows\system32\ntirlan.dll
2011-11-10 13:09:25 ----D---- C:\Windows\Prefetch
2011-11-10 13:07:29 ----D---- C:\Windows\Minidump
2011-11-10 13:06:49 ----D---- C:\Windows
2011-11-10 07:31:15 ----D---- C:\Users\alvr\AppData\Roaming\ICQ
2011-11-09 21:00:09 ----D---- C:\Windows\system32\drivers
2011-11-09 21:00:09 ----D---- C:\Program Files\Windows Mail
2011-11-09 21:00:09 ----D---- C:\Program Files\Common Files\System
2011-11-09 20:56:03 ----A---- C:\Windows\system32\mrt.exe
2011-11-09 20:55:20 ----D---- C:\ProgramData\Microsoft Help
2011-11-09 20:51:39 ----A---- C:\Windows\win.ini
2011-11-09 18:51:10 ----D---- C:\Windows\system32\catroot2
2011-10-31 12:52:16 ----A---- C:\Windows\HmiSRT.ini
2011-10-14 06:53:27 ----A---- C:\Windows\ntbtlog.txt
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2008-08-27 25392]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2008-12-04 328728]
R0 SafeBoot;SafeBoot; C:\Windows\system32\drivers\SafeBoot.sys [2008-10-01 109216]
R0 SbAlg;SbAlg; C:\Windows\system32\drivers\SbAlg.sys [2008-10-01 51408]
R0 SbFsLock;SbFsLock; C:\Windows\system32\drivers\SbFsLock.sys [2008-10-01 12960]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-02-26 114984]
R1 RsvLock;RsvLock; C:\Windows\system32\drivers\RsvLock.sys [2008-10-01 12528]
R1 truecrypt;truecrypt; C:\Windows\System32\drivers\truecrypt.sys [2011-08-28 231248]
R2 aksfridge;aksfridge; C:\Windows\system32\drivers\aksfridge.sys [2008-03-18 350720]
R2 cvintdrv;cvintdrv; C:\Windows\system32\drivers\cvintdrv.sys [2009-05-29 4096]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-02-26 133512]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2010-02-26 134488]
R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2010-02-26 41312]
R2 Hardlock;Hardlock; C:\Windows\system32\drivers\hardlock.sys [2008-02-11 586240]
R2 Haspnt;Haspnt; \??\C:\Windows\system32\drivers\Haspnt.sys [2010-04-22 47616]
R2 S7opcsrtx;PROFINET IO RT-Protocol (LLDP); C:\Windows\system32\DRIVERS\s7opcsrtx.sys [2010-06-07 31744]
R2 s7snsrtx;PROFINET IO RT-Protocol V1.0; C:\Windows\system32\DRIVERS\s7snsrtx.sys [2009-02-24 73088]
R2 SNTIE;SIMATIC Industrial Ethernet (ISO); C:\Windows\system32\DRIVERS\sntie.sys [2010-01-24 336128]
R3 Accelerometer;HP Accelerometer; C:\Windows\system32\DRIVERS\Accelerometer.sys [2008-08-27 34608]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\ADIHdAud.sys [2009-05-18 381440]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-04-24 95544]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-05-14 4305920]
R3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-03-11 84008]
R3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\drivers\btwavdt.sys [2009-03-11 109608]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-03-11 29736]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-03-11 18344]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2010-02-26 32584]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-18 16768]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2009-03-04 4232704]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-03-26 1765168]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-02-06 205232]
R3 VPPP;DrayTek Virtual PPP Adapter; C:\Windows\system32\DRIVERS\VPPP.sys [2010-03-31 31696]
R3 WinDriver6;WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [2010-08-31 195968]
S2 DS1410D;DS1410D; C:\Windows\SYSTEM32\drivers\DS1410D.SYS []
S2 MAC_MOT;MAC_MOT; C:\Windows\System32\drivers\MAC_MOT.SYS []
S2 MLPTDR_N;MLPTDR_N; \??\C:\Windows\system32\MLPTDR_N.sys [2003-07-19 18848]
S2 par1284;par1284; \??\C:\Windows\system32\drivers\par1284.sys [2003-05-08 53344]
S2 STM Parallel Driver;STM Parallel Driver; \??\C:\Windows\system32\drivers\parstm.sys [2003-07-09 43776]
S2 WinDriver;WinDriver; C:\Windows\System32\drivers\WINDRVR.SYS []
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-21 508416]
S3 DAMDrv;DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv.sys [2008-08-06 32256]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 Easysocket;MITSUBISHI Easysocket Driver; C:\Windows\System32\Drivers\ECUsbd.sys [2007-07-25 17920]
S3 em52x;EM52x driver for ETC EM520 series; C:\Windows\System32\Drivers\em52x.sys [2009-06-16 20584]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2011-03-18 61704]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HTCAND32;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2009-06-09 24576]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2010-06-23 23040]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys []
S3 silabenm;JABLOTRON serial interface Serial Port Enumerator Driver; C:\Windows\system32\DRIVERS\silabenm.sys [2007-09-04 17920]
S3 silabser;JABLOTRON serial interface Driver; C:\Windows\system32\DRIVERS\silabser.sys [2007-09-04 58368]
S3 SNTNLUSB;SafeNet USB SuperPro/UltraPro/HardwareKey; C:\Windows\system32\DRIVERS\SNTNLUSB.SYS [2009-09-17 38376]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys []
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 accoca;ActivClient Middleware Service; C:\Program Files\ActivIdentity\ActivClient\accoca.exe [2007-11-27 185896]
R2 AEADIFilters;Andrea ADI Filters Service; C:\Windows\system32\AEADISRV.EXE [2008-07-15 90112]
R2 almservice;Automation License Manager Service; C:\Program Files\Common Files\Siemens\sws\almsrv\almsrvx.exe [2009-04-23 1200128]
R2 ASBroker;Logon Session Broker; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 ASChannel;Local Communication Channel; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2009-05-14 733184]
R2 ATService;AuthenTec Fingerprint Service; C:\Program Files\Fingerprint Sensor\AtService.exe [2008-10-03 1185016]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-03-01 567848]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2010-02-26 810120]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2009-02-27 870672]
R2 FileOpenManagerSvc;FileOpenManagerSvc; C:\ProgramData\FileOpen\Services\FileOpenManagerSvc32.exe [2011-04-18 211840]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 hasplms;HASP License Manager; C:\Windows\system32\hasplms.exe [2008-04-24 2562048]
R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2008-12-04 94208]
R2 HpFkCryptService;Drive Encryption Service; C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2008-10-01 256544]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2008-08-27 24880]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-12-17 354840]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2010-09-06 247096]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-08-20 73728]
R2 lkClassAds;National Instruments PSP Server Locator; C:\Windows\system32\lkads.exe [2009-06-18 42544]
R2 lkTimeSync;National Instruments Time Synchronization; C:\Windows\system32\lktsrv.exe [2009-06-18 53296]
R2 MSSQL$WINCCPLUS;SQL Server (WINCCPLUS); C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-06-18 935208]
R2 NIDomainService;National Instruments Domain Service; C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe [2009-06-18 356912]
R2 niSvcLoc;NI Service Locator; C:\Windows\system32\nisvcloc.exe [2009-06-04 13896]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [2010-09-16 80896]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [2009-09-01 87344]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2009-02-27 473360]
R2 s7oiehsx;SIMATIC IEPG Help Service; C:\Program Files\Common Files\Siemens\S7IEPG\s7oiehsx.exe [2010-06-07 1576072]
R2 S7TraceServiceX;S7TraceServiceX; C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceServiceX.exe [2010-06-07 240776]
R2 SQLBrowser;SQL Server Browser; C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-12-10 238944]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-12-10 86880]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-12-04 222512]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2008-10-21 228656]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate1cc09a1fdc34a0b;Služba Google Update (gupdate1cc09a1fdc34a0b); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-12-06 136176]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-02-26 33560]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; C:\Windows\system32\flcdlock.exe [2008-08-06 349432]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-12-06 136176]
S3 HP ProtectTools Service;HP ProtectTools Service; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [2009-02-11 45056]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 LkCitadelServer;Lookout Citadel Server; C:\Windows\system32\lkcitdl.exe [2008-10-31 695136]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 OpcEnum;OpcEnum; C:\Windows\system32\OpcEnum.exe [2007-04-17 135168]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [2010-04-12 79360]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2010-12-10 44384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NILM License Manager;NILM License Manager; C:\Program Files\National Instruments\Shared\License Manager\Bin\lmgrd.exe [2009-09-18 1007616]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
zabrzdeny NTB, caste padani ve sleep rezimu, atd...
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: zabrzdeny NTB, caste padani ve sleep rezimu, atd...
info.txt logfile of random's system information tool 1.09 2011-11-13 17:49:44
======Uninstall list======
Update for Microsoft Office 2007 (KB2508958)-->msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}
"Nero SoundTrax Help-->MsiExec.exe /X{98A67610-A3B5-4098-A423-3708040026D3}
7-Zip 4.65-->"C:\Program Files\7-Zip\Uninstall.exe"
ActivClient 6.1 x86-->MsiExec.exe /I{AC194855-F7AC-4D04-B4C9-07BA46FCB697}
ActiveCheck component for HP Active Support Library-->MsiExec.exe /X{254C37AA-6B72-4300-84F6-98A82419187E}
Adobe AIR-->c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}
Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\FlashUtil10l_Plugin.exe -maintain plugin
Adobe Flash Player 11 ActiveX-->C:\Windows\system32\Macromed\Flash\FlashUtil11c_ActiveX.exe -maintain activex
Adobe Photoshop 7.0 CE-->C:\WINDOWS\ISUN0405.EXE -f"C:\Program Files\Adobe\Photoshop 7.0 CE\Uninst.isu" -c"C:\Program Files\Adobe\Photoshop 7.0 CE\Uninst.dll"
Adobe Reader 9.4.6 - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-A94000000001}
Advertising Center-->MsiExec.exe /X{B2EC4A38-B545-4A00-8214-13FE0E915E6D}
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0405-0000-0000000FF1CE} /uninstall {0A1FAC46-B899-421D-B1A2-470896DC45DB}
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0405-0000-0000000FF1CE} /uninstall {5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0405-0000-0000000FF1CE} /uninstall {E68DD413-B834-4923-8181-0A03B7555187}
AuthenTec Fingerprint System-->MsiExec.exe /I{485D80AA-AFD9-4FF1-91D4-A44978B99F3D}
Avanquest update-->"C:\Program Files\InstallShield Installation Information\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\Setup.exe" -runfromtemp -l0x0009 -removeonly
AVR Jungo USB-->"C:\Program Files\InstallShield Installation Information\{E8F8861D-98E0-43FF-9E48-AC236CC3BE4E}\setup.exe" -runfromtemp -l0x0009 -removeonly
AVR Studio 5.0-->"C:\Program Files\InstallShield Installation Information\{60315A8A-5FCA-47CE-A856-681F3A9CDB5B}\setup.exe" -runfromtemp -l0x0409 -removeonly
AVRStudio4-->"C:\Program Files\InstallShield Installation Information\{D5D88F8F-FDA4-4CF4-9F3E-3F40118C2120}\setup.exe" -runfromtemp -l0x0009 -removeonly
AXIS Media Control Embedded-->rundll32 "C:\Program Files\Axis Communications\AXIS Media Control Embedded\AxisMediaControlEmb.dll",UninstallMe
Balíček ovladače systému Windows - RAISONANCE S.A.S. (WinUSB) RLinkWinUSBClass (05/22/2008 6.0.6001.18000)-->C:\PROGRA~1\DIFX\25C232B9F73C1237\DPInst_x86.exe /u C:\Windows\System32\DriverStore\FileRepository\rlink_winusb.inf_cc885738\rlink_winusb.inf
BIOS Configuration for HP ProtectTools-->MsiExec.exe /X{BB662A7E-DFF6-47C9-BBD2-430079EA8E74}
Broadcom 802.11 Wireless LAN Adapter-->"C:\Program Files\Broadcom\Broadcom 802.11\Driver\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Broadcom\Broadcom 802.11\Driver"
Canon Utilities PhotoStitch 3.1-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{218BBBE3-FE63-4BB2-81A8-7435575A84FA}
Catalyst Control Center - Branding-->MsiExec.exe /I{A3276EED-22A1-4808-9AA3-88A451482E10}
CD List 0.4.4-->"C:\Program Files\CD List\unins000.exe"
Cisco EAP-FAST Module-->MsiExec.exe /I{9BFD5911-93E3-42BB-BFCD-50E4BA5B8D67}
Cisco LEAP Module-->MsiExec.exe /I{99A4344A-C723-4661-A507-D9D939480358}
Cisco PEAP Module-->MsiExec.exe /I{CD344FA5-6657-47CD-940F-8727EED35595}
Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-0409-0000-0000000FF1CE}
COSMIC STM8 16K C Compiler-->"C:\Program Files\COSMIC\CXSTM8_16K\setup.exe" -runfromtemp -l0x0009 -removeonly
Credential Manager for HP ProtectTools-->rundll32.exe "C:\Program Files\Hewlett-Packard\IAM\Bin\SetupHelper.dll",ExecMain /Uninstall {06D3BAA7-8C97-4FF6-9F7B-99705BAC2169}
Device Access Manager for HP ProtectTools-->MsiExec.exe /X{55B52830-024A-443E-AF61-61E1E71AFA1B}
DivX H.264 decoder 8.2.0.26-->"C:\Program Files\DivX H.264 decoder\unins000.exe"
DolbyFiles-->MsiExec.exe /X{B1ADF008-E898-4FE2-8A1F-690D9A06ACAF}
DrayTek Smart VPN Client-->"C:\Program Files\Smart VPN Client\Uninstall.exe"
Drive Encryption for HP ProtectTools-->MsiExec.exe /I{E6272A04-665C-4E7D-A6BA-EAF4C6C11B00}
EAGLE 5.10.0-->cmd.exe /c start "EAGLE Uninstaller" /min "C:\Program Files\EAGLE-5.10.0\bin\uninstall.bat" C:\Program Files\EAGLE-5.10.0\bin
EAGLE 5.4.0-->cmd.exe /c start "EAGLE Uninstaller" /min "C:\Program Files\EAGLE-5.4.0\bin\uninstall.bat" C:\Program Files\EAGLE-5.4.0\bin
ESU for Microsoft Vista SP1-->MsiExec.exe /I{C03D2B19-70D8-43D5-89A4-420E4EA0D4B9}
ETC Scope 3.02-->"C:\Program Files\ETC\Scope\unins000.exe"
FastImageResizer 0.7.4-->"C:\Program Files\FastImageResizer\unins000.exe"
FileOpen Client-->MsiExec.exe /X{8122CFC0-BDA9-4EF7-99B1-DA2C0EFDDC6B}
Foxit Reader-->C:\Program Files\Foxit Software\Foxit Reader\Uninstall.exe
Free CD to MP3 Converter-->C:\PROGRA~1\CDTOMP~1\UNWISE.EXE C:\PROGRA~1\CDTOMP~1\INSTALL.LOG
FreeRIP v3.5-->"C:\Program Files\FreeRIP3\unins000.exe"
FX Configurator-EN-->C:\Windows\IsUninst.exe -fC:\MELSEC\DelslFXENET.isu
Google Earth Plug-in-->MsiExec.exe /X{A9F6CFB0-806D-11E0-8EA1-B8AC6F97B88E}
Google Earth-->MsiExec.exe /X{B3FED300-806C-11E0-A0D0-B8AC6F97B88E}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
GX IEC Developer 7.04-->MsiExec.exe /X{44E61F59-4A17-489E-BA9A-0C8E7332A343}
GX Simulator-->C:\Windows\IsUninst.exe -fC:\MELSEC\DelslLlt.isu
HI-TECH C51-lite V9.60PL0-->"C:\Program Files\HI-TECH Software\HC51\lite\9.60\resources\setup.exe"
HI-TECH PICC lite V9.60PL0-->"C:\Program Files\HI-TECH Software\PICC\lite\9.60\resources\setup.exe"
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
HP 3D DriveGuard-->MsiExec.exe /X{21D0039E-2A72-4807-BB2A-61CAAD85520B}
HP Active Support Library-->"C:\Program Files\InstallShield Installation Information\{0295F89F-F698-4101-9A7D-49F407EC2D82}\setup.exe" -runfromtemp -l0x0409 -removeonly
HP Common Access Service Library-->MsiExec.exe /I{732A3F80-008B-4350-BD58-EC5AE98707B8}
HP Help and Support-->MsiExec.exe /I{0054A0F6-00C9-4498-B821-B5C9578F433E}
HP JavaCard for HP ProtectTools-->MsiExec.exe /I{6B21C4FD-B224-4599-A9BC-F565FDB90301}
HP ProtectTools Security Manager Suite-->C:\Windows\Installer\HPPTSuiteInstallEngine.exe /uninstall=C:\Windows\Installer\47550120.msi
HP ProtectTools Security Manager-->MsiExec.exe /I{554245D2-1EB4-4BA4-B74F-043972FAB66E}
HP Quick Launch Buttons-->C:\Program Files\InstallShield Installation Information\{34D2AB40-150D-475D-AE32-BD23FB5EE355}\setup.exe -runfromtemp -l0x0005 -removeonly uninst
HP Update-->MsiExec.exe /X{47F36D92-E58E-456D-B73C-3382737E4C42}
HP Webcam Driver-->C:\Program Files\InstallShield Installation Information\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}\setup.exe -runfromtemp -l0x0005 -removeonly
HP Webcam-->"C:\Program Files\InstallShield Installation Information\{F639E2A2-FE6B-4527-B8BE-C1C423B81844}\setup.exe" /z-uninstall
HP Webcam-->"C:\Program Files\InstallShield Installation Information\{F639E2A2-FE6B-4527-B8BE-C1C423B81844}\setup.exe" /z-uninstall
HP Wireless Assistant-->MsiExec.exe /X{E40CE35C-27F5-4EBF-82F9-13238BCA3572}
HPAsset component for HP Active Support Library-->MsiExec.exe /X{669D4A35-146B-4314-89F1-1AC3D7B88367}
HPNetworkAssistant-->MsiExec.exe /I{228C6B46-64E2-404E-898A-EF0830603EF4}
HTC BMP USB Driver-->MsiExec.exe /I{31A559C1-9E4D-423B-9DD3-34A6C5398752}
HTC Driver Installer-->MsiExec.exe /X{6D6664A9-3342-4948-9B7E-034EFE366F0F}
HTC Sync-->MsiExec.exe /I{923E3957-F939-453A-BD55-41CFB8D7F211}
IconCool Editor v5.x-->C:\PROGRA~1\ICONCO~1\ICONCO~1\UNWISE.EXE C:\PROGRA~1\ICONCO~1\ICONCO~1\INSTALL.LOG
ICQ Toolbar-->C:\Program Files\ICQ6Toolbar\ICQUnToolbar.exe
ICQ7.5-->"C:\Program Files\InstallShield Installation Information\{7578ADEA-D65F-4C89-A249-B1C88B6FFC20}\ICQ7.exe" -runfromtemp -l0x0009 -removeonly
Intel PROSet Wireless-->Intel PROSet Wireless
Intel® Matrix Storage Manager-->C:\Program Files\Intel\Intel Matrix Storage Manager\Uninstall\imsmudlg.exe -uninstall
JabloTool-->"C:\Windows\JabloTool Uninstaller.exe"
JABLOTRON serial interface (Driver Removal)-->C:\Windows\system32\Silabs\DriverUninstaller.exe VCP CP210x Cardinal\JABLCOMM&16D6&0001
Java(TM) 6 Update 26-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216026FF}
Kat MP3 Recorder-->C:\Program Files\Kat MP3 Recorder\uninstall.exe
K-Lite Mega Codec Pack 7.2.0-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
KONICA MINOLTA PagePro 1300W-->MUINST_N.EXE /PRN:"KONICA MINOLTA PagePro 1300W"
LightScribe System Software-->MsiExec.exe /X{CC8E94A2-55C7-4460-953C-2A790180578C}
Marvell Miniport Driver-->C:\Program Files\Marvell\Miniport Driver\Uninst.exe
Menu Templates - Starter Kit-->MsiExec.exe /X{B78120A0-CF84-4366-A393-4D0A59BC546C}
Microsoft .NET Framework 1.1 Czech Language Pack-->MsiExec.exe /X{5E65E94D-69F2-4850-9E93-6459C53A0F50}
Microsoft .NET Framework 1.1 Security Update (KB2572067)-->"C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\M2572067\M2572067Uninstall.msp"
Microsoft .NET Framework 1.1 Security Update (KB979906)-->"C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\M979906\M979906Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 3.5 Language Pack SP1 - csy-->MsiExec.exe /I{DD73CA82-EA82-38AA-863D-9A24A018DC96}
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - csy\setup.exe
Microsoft .NET Framework 3.5 SP1-->C:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\Setup.exe /repair /x86 /lcid 1029 /parameterfolder ClientLP
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->MsiExec.exe /X{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}
Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}
Microsoft .NET Framework 4 Extended-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\Setup.exe /repair /x86 /parameterfolder Extended
Microsoft .NET Framework 4 Extended-->MsiExec.exe /X{0A0CADCF-78DA-33C4-A350-CD51849B9702}
Microsoft .NET Framework 4 Multi-Targeting Pack-->MsiExec.exe /I{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}
Microsoft Help Viewer 1.1-->C:\Program Files\Microsoft Help Viewer\v1.0\Microsoft Help Viewer 1.1\install.exe
Microsoft Help Viewer 1.1-->MsiExec.exe /X{57BB52B7-6B7B-31F3-89F4-4EE8FE5CEF6D}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0016-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0018-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001A-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001B-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-006E-0405-0000-0000000FF1CE} /uninstall {A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {6E107EB7-8B55-48BF-ACCB-199F86A2CD93}
Microsoft Office Excel MUI (Czech) 2007-->MsiExec.exe /X{90120000-0016-0405-0000-0000000FF1CE}
Microsoft Office File Validation Add-In-->MsiExec.exe /I{90140000-2005-0000-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Czech) 2007-->MsiExec.exe /X{90120000-001A-0405-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Czech) 2007-->MsiExec.exe /X{90120000-0018-0405-0000-0000000FF1CE}
Microsoft Office PowerPoint Viewer 2007 (Czech)-->MsiExec.exe /X{95120000-00AF-0405-0000-0000000FF1CE}
Microsoft Office Proof (Czech) 2007-->MsiExec.exe /X{90120000-001F-0405-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Slovak) 2007-->MsiExec.exe /X{90120000-001F-041B-0000-0000000FF1CE}
Microsoft Office Proofing (Czech) 2007-->MsiExec.exe /X{90120000-002C-0405-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0405-0000-0000000FF1CE} /uninstall {0B7A4B67-2A38-42B1-9857-662FAB361E08}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {928D7B99-2BEA-49F9-83B8-20FA57860643}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {1FF96026-A04A-4C3E-B50A-BB7022654D0F}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-041B-0000-0000000FF1CE} /uninstall {FDF9A959-241A-4662-A8DE-7DED9C22D160}
Microsoft Office Shared MUI (Czech) 2007-->MsiExec.exe /X{90120000-006E-0405-0000-0000000FF1CE}
Microsoft Office Standard 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall STANDARDR /dll OSETUP.DLL
Microsoft Office Standard 2007-->MsiExec.exe /X{91120000-0012-0000-0000-0000000FF1CE}
Microsoft Office Word MUI (Czech) 2007-->MsiExec.exe /X{90120000-001B-0405-0000-0000000FF1CE}
Microsoft Primary Interoperability Assemblies 2005-->MsiExec.exe /X{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}
Microsoft SOAP Toolkit 3.0-->MsiExec.exe /I{BCB4C18A-ACA6-4383-8688-E19933A705DD}
Microsoft SQL Server 2005 Backward compatibility-->MsiExec.exe /I{0D61D68B-DF5E-4635-82C7-B0C53F0A581B}
Microsoft SQL Server 2005 Express Edition (WINCCPLUS)-->MsiExec.exe /I{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}
Microsoft SQL Server 2005-->"C:\Program Files\Microsoft SQL Server\90\Setup Bootstrap\ARPWrapper.exe" /Remove
Microsoft SQL Server 2008 R2 Management Objects-->MsiExec.exe /I{77F1F8AD-51B8-4490-AEEC-BF480073E0FC}
Microsoft SQL Server Native Client-->MsiExec.exe /I{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}
Microsoft SQL Server Setup Support Files (English)-->MsiExec.exe /X{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}
Microsoft SQL Server System CLR Types-->MsiExec.exe /I{877B76B2-F83F-4F5A-B28D-3F398641ADB6}
Microsoft SQL Server VSS Writer-->MsiExec.exe /I{E7084B89-69E0-46B3-A118-8F99D06988CD}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570-->MsiExec.exe /X{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974-->MsiExec.exe /X{B7E38540-E355-3503-AFD7-635B2F2F76E1}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219-->MsiExec.exe /X{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}
Microsoft Visual Studio 2010 Service Pack 1-->C:\ProgramData\VS\vs10sp1\SetupCache\Setup.exe
Microsoft Visual Studio 2010 Service Pack 1-->MsiExec.exe /X{5AB7D739-1735-3A9E-BE73-C43507CB4E6F}
Microsoft Visual Studio 2010 Shell (Isolated) - ENU-->MsiExec.exe /X{D64B6984-242F-32BC-B008-752806E5FC44}
Microsoft Visual Studio 2010 Tools for Office Runtime (x86)-->C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)\install.exe
Microsoft Visual Studio 2010 Tools for Office Runtime (x86)-->MsiExec.exe /X{B3D1CFF9-C5DA-3590-894B-40821DDB67C5}
Microsoft Works-->MsiExec.exe /I{99D7DE4C-2775-4B16-B155-7F09AE939E8E}
mini Ring Core Calculator 1.2-->"C:\Program Files\mini Ring Core Calculator\unins000.exe"
Moje slovíčka 1.3-->"C:\Program Files\Moje slovíčka\unins000.exe"
Movie Templates - Starter Kit-->MsiExec.exe /X{E498385E-1C51-459A-B45F-1721E37AA1A0}
Mozilla Firefox 5.0 (x86 cs)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Thunderbird (3.1.9)-->C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
MSXML 4.0 SP3 Parser (KB973685)-->MsiExec.exe /I{859DFA95-E4A6-48CD-B88E-A3E483E89B44}
MSXML 4.0 SP3 Parser-->MsiExec.exe /I{196467F1-C11F-4F76-858B-5812ADC83B94}
National Instruments Software-->"C:\Program Files\National Instruments\Shared\NIUninstaller\uninst.exe"
Nero 9-->C:\Program Files\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe REMOVESERIALNUMBER="1M03-01CM-3X4P-5EA5-TAKX-W1C8-CT6L-CTLM"
Nero BackItUp and Burn-->MsiExec.exe /X{E08CC458-41FB-4BB5-9B08-2C83DB55A5B9}
Nero BackItUp-->MsiExec.exe /X{0420F95C-11FF-4E02-B967-6CC22B188F9F}
Nero Burning ROM Help-->MsiExec.exe /X{086A7D8C-0A38-4C7F-819A-620275550D5C}
Nero BurnRights Help-->MsiExec.exe /X{F6BDD7C5-89ED-4569-9318-469AA9732572}
Nero BurnRights-->MsiExec.exe /X{397516AE-7DFE-4F90-84E0-BD616D559434}
Nero BurnRights-->MsiExec.exe /X{7829DB6F-A066-4E40-8912-CB07887C20BB}
Nero ControlCenter-->MsiExec.exe /X{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
Nero ControlCenter-->MsiExec.exe /X{F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}
Nero CoverDesigner Help-->MsiExec.exe /X{CE96F5A5-584D-4F8F-AA3E-9BAED413DB72}
Nero CoverDesigner-->MsiExec.exe /X{62AC81F6-BDD3-4110-9D36-3E9EAAB40999}
Nero Disc Copy Gadget Help-->MsiExec.exe /X{60C731FB-C951-41CE-AD41-8E54C8594609}
Nero Disc Copy Gadget-->MsiExec.exe /X{F1861F30-3419-44DB-B2A1-C274825698B3}
Nero DiscSpeed Help-->MsiExec.exe /X{CC019E3F-59D2-4486-8D4B-878105B62A71}
Nero DiscSpeed-->MsiExec.exe /X{869200DB-287A-4DC0-B02B-2B6787FBCD4C}
Nero DriveSpeed Help-->MsiExec.exe /X{E5C7D048-F9B4-4219-B323-8BDB01A2563D}
Nero DriveSpeed-->MsiExec.exe /X{33CF58F5-48D8-4575-83D6-96F574E4D83A}
Nero Express Help-->MsiExec.exe /X{83202942-84B3-4C50-8622-B8C0AA2D2885}
Nero Express-->MsiExec.exe /X{6C3CF7AC-5AB0-42D9-93C0-68166A57AFB6}
Nero InfoTool Help-->MsiExec.exe /X{20400DBD-E6DB-45B8-9B6B-1DD7033818EC}
Nero InfoTool-->MsiExec.exe /X{FBCDFD61-7DCF-4E71-9226-873BA0053139}
Nero Installer-->MsiExec.exe /X{E8A80433-302B-4FF1-815D-FCC8EAC482FF}
Nero Live Help-->MsiExec.exe /X{77E33D87-255E-413E-9C8D-EED2A7F9BEBF}
Nero Live-->MsiExec.exe /X{DF6A95F5-ADC1-406A-BDC6-2AA7CC0182AA}
Nero PhotoSnap Help-->MsiExec.exe /X{1C00C7C5-E615-4139-B817-7F4003DE68C0}
Nero PhotoSnap-->MsiExec.exe /X{9E82B934-9A25-445B-B8DF-8012808074AC}
Nero Recode Help-->MsiExec.exe /X{AD6BC5CC-2EF0-49C4-B33D-CDC8B2C4DC80}
Nero Recode-->MsiExec.exe /X{359CFC0A-BEB1-440D-95BA-CF63A86DA34F}
Nero Rescue Agent-->MsiExec.exe /X{368BA326-73AD-4351-84ED-3C0A7A52CC53}
Nero RescueAgent Help-->MsiExec.exe /X{5E08ECD1-C98E-4711-BF65-8FD736B3F969}
Nero RescueAgent-->MsiExec.exe /X{51E2F9B3-A972-4F58-B4EF-4D9676D9F5D1}
Nero ShowTime-->MsiExec.exe /X{02627EE5-EACA-4742-A9CC-E687631773E4}
Nero ShowTime-->MsiExec.exe /X{D9DCF92E-72EB-412D-AC71-3B01276E5F8B}
Nero StartSmart Help-->MsiExec.exe /X{2348B586-C9AE-46CE-936C-A68E9426E214}
Nero StartSmart-->MsiExec.exe /X{7748AC8C-18E3-43BB-959B-088FAEA16FB2}
Nero Vision Help-->MsiExec.exe /X{5D9BE3C1-8BA4-4E7E-82FD-9F74FA6815D1}
Nero Vision-->MsiExec.exe /X{43E39830-1826-415D-8BAE-86845787B54B}
Nero WaveEditor-->MsiExec.exe /X{A209525B-3377-43F4-B886-32F6B6E7356F}
NeroBurningROM-->MsiExec.exe /X{D025A639-B9C9-417D-8531-208859000AF8}
NeroExpress-->MsiExec.exe /X{595A3116-40BB-4E0F-A2E8-D7951DA56270}
NeroLiveGadget Help-->MsiExec.exe /X{85243696-5E58-4357-9CF8-3498C609941D}
NeroLiveGadget-->MsiExec.exe /X{9E9FDDE6-2C26-492A-85A0-05646B3F2795}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Nvu 1.0-->C:\Program Files\Nvu\uninst.exe
OGA Notifier 2.0.0048.0-->MsiExec.exe /I{B2544A03-10D0-4E5E-BA69-0362FFC20D18}
OLink 2.0.1-->"C:\Program Files\OLink\unins000.exe"
OPC Core Components Redistributable-->MsiExec.exe /I{75F9DAD1-792C-44E9-B48B-2E22C76E0CBF}
PDFCreator-->C:\Program Files\PDFCreator\unins000.exe
Prosave V7.4 incl. SP4 -->C:\Program Files\Common Files\Siemens\Bin\setupdeinstaller.exe /x {9B9856F7-FB16-4EDF-81FF-6382D0733D8F}
Prosave V7.4 incl. SP4 -->C:\Program Files\Common Files\Siemens\Bin\setupdeinstaller.exe /x {9B9856F7-FB16-4EDF-81FF-6382D0733D8F}
PSPad editor-->"C:\Program Files\PSPad editor\Uninst\unins000.exe"
Ride7-->MsiExec.exe /I{07964107-2400-44CC-B284-5BE58B4C30D4}
RKit-STM8 for Ride7-->MsiExec.exe /I{DD3AEFA1-8681-45F2-9ED5-21B78560ECF3}
Scan2PDF 1.6-->"C:\Program Files\Scan2PDF\unins000.exe"
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A8894F19-59C8-38D2-8A75-36C0CCE56A5B} /qb+ REBOOTPROMPT=""
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {3E0806DB-3085-378A-840A-F0D3AE3609D1} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {728D9A6A-2206-31E8-9F65-C3EABEFCF53E} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {7E97AB83-C1FE-38DE-B848-877E0A4BD81E} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {DB31DEDD-BF95-31E7-A9B7-5480561CEFF3} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile CSY Language Pack (KB2478663)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\setup.exe /uninstallpatch {728D9A6A-2206-31E8-9F65-C3EABEFCF53E} /parameterfolder ClientLP
Security Update for Microsoft .NET Framework 4 Client Profile CSY Language Pack (KB2518870)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder ClientLP
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {7A2C18A1-D2A2-3177-82F1-5FE9CC08ECB0} /parameterfolder Extended
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {42A3562E-8B4E-39A4-B82D-CC12F82889E3} /parameterfolder Extended
Sentinel System Driver Installer 7.5.1-->MsiExec.exe /I{BF9E346B-5ECE-4A18-9510-55729FD08323}
Siemens Totally Integrated Automation Portal V10-->C:\Program Files\Common Files\Siemens\Automation\Siemens Totally Integrated Automation Portal V10\SIA.exe /arpmode
Siemens Automation License Manager V4.0 + SP3 -->C:\Program Files\Common Files\Siemens\Bin\setupdeinstaller.exe /x {31BCC2ED-3E12-4A23-8899-6C89C208B8CE}
Siemens Automation License Manager-->C:\Program Files\Common Files\Siemens\Bin\setupdeinstaller.exe /x {31BCC2ED-3E12-4A23-8899-6C89C208B8CE}
Skype™ 4.2-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36}
Software Bluetooth WIDCOMM-->MsiExec.exe /X{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}
Software Intel(R) PROSet/Wireless WiFi-->MsiExec.exe /I{F22FD942-651D-4EE8-BD6F-7E0AF5E17625}
Solid Edge ST2-->MsiExec.exe /X{CC185D10-5C0E-40C3-91F2-63314BB365AF}
SolidWorks eDrawings 2010-->MsiExec.exe /I{EA9AAB32-160B-4FC1-AF18-71F11257C574}
SoundMAX-->C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\setup.exe -runfromtemp -l0x0005 -removeonly
SoundTrax-->MsiExec.exe /X{C5A7CB6C-E76D-408F-BA0E-85605420FE9D}
ST Toolset-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D80F4010-990F-11D3-B362-006008E7FE2C}\setup.exe" -l0x9 removeall
STORMWARE PDF Printer 5.0.0.614-->"C:\Program Files\STORMWARE\PDF Printer\unins000.exe"
STORMWARE POHODA Klient CZ Komplet-->MsiExec.exe /X{FAD050E3-0067-43D5-A6F0-EB29C96B4D6B}
Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
TIA Portal Single SetupPackage - HW Module Base Package V10.5 + HF1-->MsiExec.exe /X{F1D4FDEE-BB94-4C17-8BB0-AC06DAF854BD}
TIA Portal Single SetupPackage - HWConfig Single SetupPackage V10.5 + SP2-->MsiExec.exe /X{047BC977-015A-4339-B571-44CA33901F63}
TIA Portal Single SetupPackage - S7BASUCL V10.5 + SP12-->MsiExec.exe /X{37F822E3-B56D-4131-8E3D-0A6753DFB8A5}
TIA Portal Single SetupPackage - STEP 7 Single SetupPackage V10.5 + SP2-->MsiExec.exe /X{DC62C484-A0B2-421A-9A0F-1ABFE1E10D71}
TIA Portal Single SetupPackage - WinCC Single SetupPackage V10.5 + SP2-->MsiExec.exe /X{3EB30640-F847-4F59-AF74-837D0FD02B73}
TIA Portal Single SetupPackage - WINCCBASUCL V10.5 + SP12-->MsiExec.exe /X{ABE2EE7E-11F7-4374-B86B-CB75A5F276B0}
TightVNC 2.0.3-->C:\Program Files\TightVNC\uninstall.exe
Total Commander (Remove or Repair)-->c:\totalcmd\tcuninst.exe
Totally Integrated Automation Portal V10 - TIA Portal Single SetupPackage V10.5 + SP2-->MsiExec.exe /X{31C1839C-7967-469C-921D-0BEB49AC0652}
TrueCrypt-->"C:\Program Files\TrueCrypt\TrueCrypt Setup.exe" /u
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {FD988F49-E1C8-3C84-9683-0448B6BB8E20} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Client
Update for Microsoft .NET Framework 4 Extended (KB2468871)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Extended
Update for Microsoft .NET Framework 4 Extended (KB2533523)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Extended
Update for Outlook 2007 Junk Email Filter (KB2596560)-->msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {2964DDE1-4925-4DF1-AF2C-0A36B3442228}
VC User 71 RTL X86 ----->MsiExec.exe /I{A4A4567C-5C29-4756-992D-F84D8250C435}
Vista Default Settings-->MsiExec.exe /I{7DBAB5D6-4D71-4573-AA60-F82A500F0E8F}
WebEx-->C:\PROGRA~2\WebEx\atcliun.exe
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
XnView 1.97.8-->"C:\Program Files\XnView\unins000.exe"
======Hosts File======
127.0.0.1 www.eblaster.com
127.0.0.1 www.spectorsoft.com
127.0.0.1 eblaster.com
127.0.0.1 spectorsoft.com
127.0.0.1 www.u2a1376gf-43ty-245b.com
127.0.0.1 u2a1376gf-43ty-245b.com
127.0.0.1 www.v19170dc0-7597-11d.com
127.0.0.1 v19170dc0-7597-11d.com
127.0.0.1 www.d2a1376gf-43ty-245a.com
127.0.0.1 d2a1376gf-43ty-245a.com
======Security center information======
AS: Windows Defender
======System event log======
Computer Name: alvr-PC
Event Code: 4201
Message: Systém zjistil, že síťový adaptér Bezdrátové připojení k síti byl připojen k síti a inicializoval normální činnost.
Record Number: 172813
Source Name: Tcpip
Time Written: 20110524103711.676000-000
Event Type: Informace
User:
Computer Name: alvr-PC
Event Code: 4201
Message: Systém zjistil, že síťový adaptér Bezdrátové připojení k síti byl připojen k síti a inicializoval normální činnost.
Record Number: 172812
Source Name: Tcpip
Time Written: 20110524103711.676000-000
Event Type: Informace
User:
Computer Name: alvr-PC
Event Code: 1103
Message: Počítači byla úspěšně přidělena adresa ze sítě, takže se nyní může připojovat k jiným počítačům.
Record Number: 172811
Source Name: Microsoft-Windows-Dhcp-Client
Time Written: 20110524103711.000000-000
Event Type: Informace
User:
Computer Name: alvr-PC
Event Code: 18
Message: Systém Windows nemůže uložit ověřovací kódy Bluetooth (klíče linky) u místního adaptéru. Klávesnice Bluetooth nemusí být funkční v systému BIOS během spuštění.
Record Number: 172810
Source Name: BTHUSB
Time Written: 20110524103709.660000-000
Event Type: Informace
User:
Computer Name: alvr-PC
Event Code: 131
Message: Pause Function is Off
Record Number: 172809
Source Name: yukonwlh
Time Written: 20110524103502.026000-000
Event Type: Informace
User:
=====Application event log=====
Computer Name: alvr-PC
Event Code: 1
Message: Nokia M Platform 2.4.124 (NLib 0.8.346)
Nokia M Data Store opened at location "c:\users\alvr\appdata\local\nokia\nokiad~1\Thumbnail\DataBase\MDataStore.db3"
Record Number: 7141
Source Name: Nokia M Platform
Time Written: 20100604111604.000000-000
Event Type: Informace
User:
Computer Name: alvr-PC
Event Code: 1
Message: Nokia M Platform 2.4.124 (NLib 0.8.346)
Nokia M Data Store opened at location "c:\users\alvr\appdata\local\nokia\nokiad~1\DataBase\MDataStore.db3"
Record Number: 7140
Source Name: Nokia M Platform
Time Written: 20100604111603.000000-000
Event Type: Informace
User:
Computer Name: alvr-PC
Event Code: 1
Message: Nokia M Platform 2.4.124 (NLib 0.8.346)
Nokia M Data Store opened at location "c:\users\alvr\appdata\local\nokia\nokiad~1\DataBase\MDataStore.db3"
Record Number: 7139
Source Name: Nokia M Platform
Time Written: 20100604111558.000000-000
Event Type: Informace
User:
Computer Name: alvr-PC
Event Code: 1
Message: Nokia M Platform 2.4.124 (NLib 0.8.346)
Nokia M Data Store opened at location "c:\users\alvr\appdata\local\nokia\nokiad~1\DataBase\MDataStore.db3"
Record Number: 7138
Source Name: Nokia M Platform
Time Written: 20100604111558.000000-000
Event Type: Informace
User:
Computer Name: alvr-PC
Event Code: 0
Message:
Record Number: 7137
Source Name: Com4QLBEx
Time Written: 20100604111543.000000-000
Event Type: Informace
User:
=====Security event log=====
Computer Name: alvr-PC
Event Code: 4624
Message: Účet byl úspěšně přihlášen.
Předmět:
ID zabezpečení: S-1-0-0
Název účtu: -
Doména účtu: -
ID přihlášení: 0x0
Typ přihlášení: 0
Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3e7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}
Informace o procesu:
ID procesu: 0x4
Název procesu:
Informace o síti:
Název pracovní stanice: -
Adresa zdrojové sítě -
Zdrojový port: -
Podrobné informace o ověření:
Proces přihlášení: -
Balíček ověření: -
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0
Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.
Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.
Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).
Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.
Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.
Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 29813
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110203095720.672187-000
Event Type: Úspěch auditu
User:
Computer Name: alvr-PC
Event Code: 4608
Message: Spouští se systém Windows.
Tato událost je zaznamenána při spuštění procesu LSASS.EXE a inicializaci kontrolního podsystému.
Record Number: 29812
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110203095720.672187-000
Event Type: Úspěch auditu
User:
Computer Name: alvr-PC
Event Code: 1101
Message: Při přenosu byly vyřazeny události auditu. Soubor zálohy v reálném čase byl poškozen v důsledku nesprávného vypnutí.
Record Number: 29811
Source Name: Microsoft-Windows-Eventlog
Time Written: 20110203095722.778200-000
Event Type: Úspěch auditu
User:
Computer Name: alvr-PC
Event Code: 4634
Message: Účet byl odhlášen.
Předmět:
ID zabezpečení: S-1-5-21-3707792578-2563339705-3883948261-1000
Název účtu: alvr
Doména účtu: alvr-PC
ID přihlášení: 0x47a939
Typ přihlášení: 2
Tato událost je generována, pokud je zničena relace přihlášení. Může být spojena s událostí přihlášení pomocí hodnoty ID přihlášení. Hodnoty ID přihlášení jsou jednoznačné pouze v rámci jednotlivých restartů stejného počítače.
Record Number: 29810
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110202203545.223000-000
Event Type: Úspěch auditu
User:
Computer Name: alvr-PC
Event Code: 4672
Message: Novému přihlášení byla přiřazena zvláštní oprávnění.
Předmět:
ID zabezpečení: S-1-5-21-3707792578-2563339705-3883948261-1000
Název účtu: alvr
Doména účtu: alvr-PC
ID přihlášení: 0x47a939
Oprávnění: SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 29809
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110202203543.266000-000
Event Type: Úspěch auditu
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files\STMicroelectronics\st_toolset\asm;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\Broadcom\Broadcom 802.11\Driver;C:\Program Files\ActivIdentity\ActivClient\;C:\Program Files\Hewlett-Packard\IAM\bin;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Raisonance\Ride\bin;C:\Program Files\Microsoft SQL Server\90\Tools\binn\;C:\Program Files\Microsoft SQL Server\80\Tools\Binn\;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 10, GenuineIntel
"PROCESSOR_REVISION"=170a
"NUMBER_OF_PROCESSORS"=2
"TRACE_FORMAT_SEARCH_PATH"=\\NTREL202.ntdev.corp.microsoft.com\4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0\TraceFormat
"DFSTRACINGON"=FALSE
"P_SCHEMA"=C:\Program Files\Solid Edge ST2\Schema
"KMP_DUPLICATE_LIB_OK"=TRUE
"MKL_SERIAL"=YES
"CARBON_MEM_DISABLE"=1
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"AutInstLog"=C:\ProgramData\Siemens\Automation\Logfiles\Setup\
-----------------EOF-----------------
======Uninstall list======
Update for Microsoft Office 2007 (KB2508958)-->msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}
"Nero SoundTrax Help-->MsiExec.exe /X{98A67610-A3B5-4098-A423-3708040026D3}
7-Zip 4.65-->"C:\Program Files\7-Zip\Uninstall.exe"
ActivClient 6.1 x86-->MsiExec.exe /I{AC194855-F7AC-4D04-B4C9-07BA46FCB697}
ActiveCheck component for HP Active Support Library-->MsiExec.exe /X{254C37AA-6B72-4300-84F6-98A82419187E}
Adobe AIR-->c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}
Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\FlashUtil10l_Plugin.exe -maintain plugin
Adobe Flash Player 11 ActiveX-->C:\Windows\system32\Macromed\Flash\FlashUtil11c_ActiveX.exe -maintain activex
Adobe Photoshop 7.0 CE-->C:\WINDOWS\ISUN0405.EXE -f"C:\Program Files\Adobe\Photoshop 7.0 CE\Uninst.isu" -c"C:\Program Files\Adobe\Photoshop 7.0 CE\Uninst.dll"
Adobe Reader 9.4.6 - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-A94000000001}
Advertising Center-->MsiExec.exe /X{B2EC4A38-B545-4A00-8214-13FE0E915E6D}
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0405-0000-0000000FF1CE} /uninstall {0A1FAC46-B899-421D-B1A2-470896DC45DB}
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0405-0000-0000000FF1CE} /uninstall {5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0405-0000-0000000FF1CE} /uninstall {E68DD413-B834-4923-8181-0A03B7555187}
AuthenTec Fingerprint System-->MsiExec.exe /I{485D80AA-AFD9-4FF1-91D4-A44978B99F3D}
Avanquest update-->"C:\Program Files\InstallShield Installation Information\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\Setup.exe" -runfromtemp -l0x0009 -removeonly
AVR Jungo USB-->"C:\Program Files\InstallShield Installation Information\{E8F8861D-98E0-43FF-9E48-AC236CC3BE4E}\setup.exe" -runfromtemp -l0x0009 -removeonly
AVR Studio 5.0-->"C:\Program Files\InstallShield Installation Information\{60315A8A-5FCA-47CE-A856-681F3A9CDB5B}\setup.exe" -runfromtemp -l0x0409 -removeonly
AVRStudio4-->"C:\Program Files\InstallShield Installation Information\{D5D88F8F-FDA4-4CF4-9F3E-3F40118C2120}\setup.exe" -runfromtemp -l0x0009 -removeonly
AXIS Media Control Embedded-->rundll32 "C:\Program Files\Axis Communications\AXIS Media Control Embedded\AxisMediaControlEmb.dll",UninstallMe
Balíček ovladače systému Windows - RAISONANCE S.A.S. (WinUSB) RLinkWinUSBClass (05/22/2008 6.0.6001.18000)-->C:\PROGRA~1\DIFX\25C232B9F73C1237\DPInst_x86.exe /u C:\Windows\System32\DriverStore\FileRepository\rlink_winusb.inf_cc885738\rlink_winusb.inf
BIOS Configuration for HP ProtectTools-->MsiExec.exe /X{BB662A7E-DFF6-47C9-BBD2-430079EA8E74}
Broadcom 802.11 Wireless LAN Adapter-->"C:\Program Files\Broadcom\Broadcom 802.11\Driver\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Broadcom\Broadcom 802.11\Driver"
Canon Utilities PhotoStitch 3.1-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{218BBBE3-FE63-4BB2-81A8-7435575A84FA}
Catalyst Control Center - Branding-->MsiExec.exe /I{A3276EED-22A1-4808-9AA3-88A451482E10}
CD List 0.4.4-->"C:\Program Files\CD List\unins000.exe"
Cisco EAP-FAST Module-->MsiExec.exe /I{9BFD5911-93E3-42BB-BFCD-50E4BA5B8D67}
Cisco LEAP Module-->MsiExec.exe /I{99A4344A-C723-4661-A507-D9D939480358}
Cisco PEAP Module-->MsiExec.exe /I{CD344FA5-6657-47CD-940F-8727EED35595}
Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-0409-0000-0000000FF1CE}
COSMIC STM8 16K C Compiler-->"C:\Program Files\COSMIC\CXSTM8_16K\setup.exe" -runfromtemp -l0x0009 -removeonly
Credential Manager for HP ProtectTools-->rundll32.exe "C:\Program Files\Hewlett-Packard\IAM\Bin\SetupHelper.dll",ExecMain /Uninstall {06D3BAA7-8C97-4FF6-9F7B-99705BAC2169}
Device Access Manager for HP ProtectTools-->MsiExec.exe /X{55B52830-024A-443E-AF61-61E1E71AFA1B}
DivX H.264 decoder 8.2.0.26-->"C:\Program Files\DivX H.264 decoder\unins000.exe"
DolbyFiles-->MsiExec.exe /X{B1ADF008-E898-4FE2-8A1F-690D9A06ACAF}
DrayTek Smart VPN Client-->"C:\Program Files\Smart VPN Client\Uninstall.exe"
Drive Encryption for HP ProtectTools-->MsiExec.exe /I{E6272A04-665C-4E7D-A6BA-EAF4C6C11B00}
EAGLE 5.10.0-->cmd.exe /c start "EAGLE Uninstaller" /min "C:\Program Files\EAGLE-5.10.0\bin\uninstall.bat" C:\Program Files\EAGLE-5.10.0\bin
EAGLE 5.4.0-->cmd.exe /c start "EAGLE Uninstaller" /min "C:\Program Files\EAGLE-5.4.0\bin\uninstall.bat" C:\Program Files\EAGLE-5.4.0\bin
ESU for Microsoft Vista SP1-->MsiExec.exe /I{C03D2B19-70D8-43D5-89A4-420E4EA0D4B9}
ETC Scope 3.02-->"C:\Program Files\ETC\Scope\unins000.exe"
FastImageResizer 0.7.4-->"C:\Program Files\FastImageResizer\unins000.exe"
FileOpen Client-->MsiExec.exe /X{8122CFC0-BDA9-4EF7-99B1-DA2C0EFDDC6B}
Foxit Reader-->C:\Program Files\Foxit Software\Foxit Reader\Uninstall.exe
Free CD to MP3 Converter-->C:\PROGRA~1\CDTOMP~1\UNWISE.EXE C:\PROGRA~1\CDTOMP~1\INSTALL.LOG
FreeRIP v3.5-->"C:\Program Files\FreeRIP3\unins000.exe"
FX Configurator-EN-->C:\Windows\IsUninst.exe -fC:\MELSEC\DelslFXENET.isu
Google Earth Plug-in-->MsiExec.exe /X{A9F6CFB0-806D-11E0-8EA1-B8AC6F97B88E}
Google Earth-->MsiExec.exe /X{B3FED300-806C-11E0-A0D0-B8AC6F97B88E}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
GX IEC Developer 7.04-->MsiExec.exe /X{44E61F59-4A17-489E-BA9A-0C8E7332A343}
GX Simulator-->C:\Windows\IsUninst.exe -fC:\MELSEC\DelslLlt.isu
HI-TECH C51-lite V9.60PL0-->"C:\Program Files\HI-TECH Software\HC51\lite\9.60\resources\setup.exe"
HI-TECH PICC lite V9.60PL0-->"C:\Program Files\HI-TECH Software\PICC\lite\9.60\resources\setup.exe"
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
HP 3D DriveGuard-->MsiExec.exe /X{21D0039E-2A72-4807-BB2A-61CAAD85520B}
HP Active Support Library-->"C:\Program Files\InstallShield Installation Information\{0295F89F-F698-4101-9A7D-49F407EC2D82}\setup.exe" -runfromtemp -l0x0409 -removeonly
HP Common Access Service Library-->MsiExec.exe /I{732A3F80-008B-4350-BD58-EC5AE98707B8}
HP Help and Support-->MsiExec.exe /I{0054A0F6-00C9-4498-B821-B5C9578F433E}
HP JavaCard for HP ProtectTools-->MsiExec.exe /I{6B21C4FD-B224-4599-A9BC-F565FDB90301}
HP ProtectTools Security Manager Suite-->C:\Windows\Installer\HPPTSuiteInstallEngine.exe /uninstall=C:\Windows\Installer\47550120.msi
HP ProtectTools Security Manager-->MsiExec.exe /I{554245D2-1EB4-4BA4-B74F-043972FAB66E}
HP Quick Launch Buttons-->C:\Program Files\InstallShield Installation Information\{34D2AB40-150D-475D-AE32-BD23FB5EE355}\setup.exe -runfromtemp -l0x0005 -removeonly uninst
HP Update-->MsiExec.exe /X{47F36D92-E58E-456D-B73C-3382737E4C42}
HP Webcam Driver-->C:\Program Files\InstallShield Installation Information\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}\setup.exe -runfromtemp -l0x0005 -removeonly
HP Webcam-->"C:\Program Files\InstallShield Installation Information\{F639E2A2-FE6B-4527-B8BE-C1C423B81844}\setup.exe" /z-uninstall
HP Webcam-->"C:\Program Files\InstallShield Installation Information\{F639E2A2-FE6B-4527-B8BE-C1C423B81844}\setup.exe" /z-uninstall
HP Wireless Assistant-->MsiExec.exe /X{E40CE35C-27F5-4EBF-82F9-13238BCA3572}
HPAsset component for HP Active Support Library-->MsiExec.exe /X{669D4A35-146B-4314-89F1-1AC3D7B88367}
HPNetworkAssistant-->MsiExec.exe /I{228C6B46-64E2-404E-898A-EF0830603EF4}
HTC BMP USB Driver-->MsiExec.exe /I{31A559C1-9E4D-423B-9DD3-34A6C5398752}
HTC Driver Installer-->MsiExec.exe /X{6D6664A9-3342-4948-9B7E-034EFE366F0F}
HTC Sync-->MsiExec.exe /I{923E3957-F939-453A-BD55-41CFB8D7F211}
IconCool Editor v5.x-->C:\PROGRA~1\ICONCO~1\ICONCO~1\UNWISE.EXE C:\PROGRA~1\ICONCO~1\ICONCO~1\INSTALL.LOG
ICQ Toolbar-->C:\Program Files\ICQ6Toolbar\ICQUnToolbar.exe
ICQ7.5-->"C:\Program Files\InstallShield Installation Information\{7578ADEA-D65F-4C89-A249-B1C88B6FFC20}\ICQ7.exe" -runfromtemp -l0x0009 -removeonly
Intel PROSet Wireless-->Intel PROSet Wireless
Intel® Matrix Storage Manager-->C:\Program Files\Intel\Intel Matrix Storage Manager\Uninstall\imsmudlg.exe -uninstall
JabloTool-->"C:\Windows\JabloTool Uninstaller.exe"
JABLOTRON serial interface (Driver Removal)-->C:\Windows\system32\Silabs\DriverUninstaller.exe VCP CP210x Cardinal\JABLCOMM&16D6&0001
Java(TM) 6 Update 26-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216026FF}
Kat MP3 Recorder-->C:\Program Files\Kat MP3 Recorder\uninstall.exe
K-Lite Mega Codec Pack 7.2.0-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
KONICA MINOLTA PagePro 1300W-->MUINST_N.EXE /PRN:"KONICA MINOLTA PagePro 1300W"
LightScribe System Software-->MsiExec.exe /X{CC8E94A2-55C7-4460-953C-2A790180578C}
Marvell Miniport Driver-->C:\Program Files\Marvell\Miniport Driver\Uninst.exe
Menu Templates - Starter Kit-->MsiExec.exe /X{B78120A0-CF84-4366-A393-4D0A59BC546C}
Microsoft .NET Framework 1.1 Czech Language Pack-->MsiExec.exe /X{5E65E94D-69F2-4850-9E93-6459C53A0F50}
Microsoft .NET Framework 1.1 Security Update (KB2572067)-->"C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\M2572067\M2572067Uninstall.msp"
Microsoft .NET Framework 1.1 Security Update (KB979906)-->"C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\M979906\M979906Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 3.5 Language Pack SP1 - csy-->MsiExec.exe /I{DD73CA82-EA82-38AA-863D-9A24A018DC96}
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - csy\setup.exe
Microsoft .NET Framework 3.5 SP1-->C:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\Setup.exe /repair /x86 /lcid 1029 /parameterfolder ClientLP
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->MsiExec.exe /X{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}
Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}
Microsoft .NET Framework 4 Extended-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\Setup.exe /repair /x86 /parameterfolder Extended
Microsoft .NET Framework 4 Extended-->MsiExec.exe /X{0A0CADCF-78DA-33C4-A350-CD51849B9702}
Microsoft .NET Framework 4 Multi-Targeting Pack-->MsiExec.exe /I{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}
Microsoft Help Viewer 1.1-->C:\Program Files\Microsoft Help Viewer\v1.0\Microsoft Help Viewer 1.1\install.exe
Microsoft Help Viewer 1.1-->MsiExec.exe /X{57BB52B7-6B7B-31F3-89F4-4EE8FE5CEF6D}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0016-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0018-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001A-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001B-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-006E-0405-0000-0000000FF1CE} /uninstall {A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {6E107EB7-8B55-48BF-ACCB-199F86A2CD93}
Microsoft Office Excel MUI (Czech) 2007-->MsiExec.exe /X{90120000-0016-0405-0000-0000000FF1CE}
Microsoft Office File Validation Add-In-->MsiExec.exe /I{90140000-2005-0000-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Czech) 2007-->MsiExec.exe /X{90120000-001A-0405-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Czech) 2007-->MsiExec.exe /X{90120000-0018-0405-0000-0000000FF1CE}
Microsoft Office PowerPoint Viewer 2007 (Czech)-->MsiExec.exe /X{95120000-00AF-0405-0000-0000000FF1CE}
Microsoft Office Proof (Czech) 2007-->MsiExec.exe /X{90120000-001F-0405-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Slovak) 2007-->MsiExec.exe /X{90120000-001F-041B-0000-0000000FF1CE}
Microsoft Office Proofing (Czech) 2007-->MsiExec.exe /X{90120000-002C-0405-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0405-0000-0000000FF1CE} /uninstall {0B7A4B67-2A38-42B1-9857-662FAB361E08}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {928D7B99-2BEA-49F9-83B8-20FA57860643}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {1FF96026-A04A-4C3E-B50A-BB7022654D0F}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-041B-0000-0000000FF1CE} /uninstall {FDF9A959-241A-4662-A8DE-7DED9C22D160}
Microsoft Office Shared MUI (Czech) 2007-->MsiExec.exe /X{90120000-006E-0405-0000-0000000FF1CE}
Microsoft Office Standard 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall STANDARDR /dll OSETUP.DLL
Microsoft Office Standard 2007-->MsiExec.exe /X{91120000-0012-0000-0000-0000000FF1CE}
Microsoft Office Word MUI (Czech) 2007-->MsiExec.exe /X{90120000-001B-0405-0000-0000000FF1CE}
Microsoft Primary Interoperability Assemblies 2005-->MsiExec.exe /X{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}
Microsoft SOAP Toolkit 3.0-->MsiExec.exe /I{BCB4C18A-ACA6-4383-8688-E19933A705DD}
Microsoft SQL Server 2005 Backward compatibility-->MsiExec.exe /I{0D61D68B-DF5E-4635-82C7-B0C53F0A581B}
Microsoft SQL Server 2005 Express Edition (WINCCPLUS)-->MsiExec.exe /I{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}
Microsoft SQL Server 2005-->"C:\Program Files\Microsoft SQL Server\90\Setup Bootstrap\ARPWrapper.exe" /Remove
Microsoft SQL Server 2008 R2 Management Objects-->MsiExec.exe /I{77F1F8AD-51B8-4490-AEEC-BF480073E0FC}
Microsoft SQL Server Native Client-->MsiExec.exe /I{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}
Microsoft SQL Server Setup Support Files (English)-->MsiExec.exe /X{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}
Microsoft SQL Server System CLR Types-->MsiExec.exe /I{877B76B2-F83F-4F5A-B28D-3F398641ADB6}
Microsoft SQL Server VSS Writer-->MsiExec.exe /I{E7084B89-69E0-46B3-A118-8F99D06988CD}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570-->MsiExec.exe /X{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974-->MsiExec.exe /X{B7E38540-E355-3503-AFD7-635B2F2F76E1}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219-->MsiExec.exe /X{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}
Microsoft Visual Studio 2010 Service Pack 1-->C:\ProgramData\VS\vs10sp1\SetupCache\Setup.exe
Microsoft Visual Studio 2010 Service Pack 1-->MsiExec.exe /X{5AB7D739-1735-3A9E-BE73-C43507CB4E6F}
Microsoft Visual Studio 2010 Shell (Isolated) - ENU-->MsiExec.exe /X{D64B6984-242F-32BC-B008-752806E5FC44}
Microsoft Visual Studio 2010 Tools for Office Runtime (x86)-->C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)\install.exe
Microsoft Visual Studio 2010 Tools for Office Runtime (x86)-->MsiExec.exe /X{B3D1CFF9-C5DA-3590-894B-40821DDB67C5}
Microsoft Works-->MsiExec.exe /I{99D7DE4C-2775-4B16-B155-7F09AE939E8E}
mini Ring Core Calculator 1.2-->"C:\Program Files\mini Ring Core Calculator\unins000.exe"
Moje slovíčka 1.3-->"C:\Program Files\Moje slovíčka\unins000.exe"
Movie Templates - Starter Kit-->MsiExec.exe /X{E498385E-1C51-459A-B45F-1721E37AA1A0}
Mozilla Firefox 5.0 (x86 cs)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Thunderbird (3.1.9)-->C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
MSXML 4.0 SP3 Parser (KB973685)-->MsiExec.exe /I{859DFA95-E4A6-48CD-B88E-A3E483E89B44}
MSXML 4.0 SP3 Parser-->MsiExec.exe /I{196467F1-C11F-4F76-858B-5812ADC83B94}
National Instruments Software-->"C:\Program Files\National Instruments\Shared\NIUninstaller\uninst.exe"
Nero 9-->C:\Program Files\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe REMOVESERIALNUMBER="1M03-01CM-3X4P-5EA5-TAKX-W1C8-CT6L-CTLM"
Nero BackItUp and Burn-->MsiExec.exe /X{E08CC458-41FB-4BB5-9B08-2C83DB55A5B9}
Nero BackItUp-->MsiExec.exe /X{0420F95C-11FF-4E02-B967-6CC22B188F9F}
Nero Burning ROM Help-->MsiExec.exe /X{086A7D8C-0A38-4C7F-819A-620275550D5C}
Nero BurnRights Help-->MsiExec.exe /X{F6BDD7C5-89ED-4569-9318-469AA9732572}
Nero BurnRights-->MsiExec.exe /X{397516AE-7DFE-4F90-84E0-BD616D559434}
Nero BurnRights-->MsiExec.exe /X{7829DB6F-A066-4E40-8912-CB07887C20BB}
Nero ControlCenter-->MsiExec.exe /X{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
Nero ControlCenter-->MsiExec.exe /X{F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}
Nero CoverDesigner Help-->MsiExec.exe /X{CE96F5A5-584D-4F8F-AA3E-9BAED413DB72}
Nero CoverDesigner-->MsiExec.exe /X{62AC81F6-BDD3-4110-9D36-3E9EAAB40999}
Nero Disc Copy Gadget Help-->MsiExec.exe /X{60C731FB-C951-41CE-AD41-8E54C8594609}
Nero Disc Copy Gadget-->MsiExec.exe /X{F1861F30-3419-44DB-B2A1-C274825698B3}
Nero DiscSpeed Help-->MsiExec.exe /X{CC019E3F-59D2-4486-8D4B-878105B62A71}
Nero DiscSpeed-->MsiExec.exe /X{869200DB-287A-4DC0-B02B-2B6787FBCD4C}
Nero DriveSpeed Help-->MsiExec.exe /X{E5C7D048-F9B4-4219-B323-8BDB01A2563D}
Nero DriveSpeed-->MsiExec.exe /X{33CF58F5-48D8-4575-83D6-96F574E4D83A}
Nero Express Help-->MsiExec.exe /X{83202942-84B3-4C50-8622-B8C0AA2D2885}
Nero Express-->MsiExec.exe /X{6C3CF7AC-5AB0-42D9-93C0-68166A57AFB6}
Nero InfoTool Help-->MsiExec.exe /X{20400DBD-E6DB-45B8-9B6B-1DD7033818EC}
Nero InfoTool-->MsiExec.exe /X{FBCDFD61-7DCF-4E71-9226-873BA0053139}
Nero Installer-->MsiExec.exe /X{E8A80433-302B-4FF1-815D-FCC8EAC482FF}
Nero Live Help-->MsiExec.exe /X{77E33D87-255E-413E-9C8D-EED2A7F9BEBF}
Nero Live-->MsiExec.exe /X{DF6A95F5-ADC1-406A-BDC6-2AA7CC0182AA}
Nero PhotoSnap Help-->MsiExec.exe /X{1C00C7C5-E615-4139-B817-7F4003DE68C0}
Nero PhotoSnap-->MsiExec.exe /X{9E82B934-9A25-445B-B8DF-8012808074AC}
Nero Recode Help-->MsiExec.exe /X{AD6BC5CC-2EF0-49C4-B33D-CDC8B2C4DC80}
Nero Recode-->MsiExec.exe /X{359CFC0A-BEB1-440D-95BA-CF63A86DA34F}
Nero Rescue Agent-->MsiExec.exe /X{368BA326-73AD-4351-84ED-3C0A7A52CC53}
Nero RescueAgent Help-->MsiExec.exe /X{5E08ECD1-C98E-4711-BF65-8FD736B3F969}
Nero RescueAgent-->MsiExec.exe /X{51E2F9B3-A972-4F58-B4EF-4D9676D9F5D1}
Nero ShowTime-->MsiExec.exe /X{02627EE5-EACA-4742-A9CC-E687631773E4}
Nero ShowTime-->MsiExec.exe /X{D9DCF92E-72EB-412D-AC71-3B01276E5F8B}
Nero StartSmart Help-->MsiExec.exe /X{2348B586-C9AE-46CE-936C-A68E9426E214}
Nero StartSmart-->MsiExec.exe /X{7748AC8C-18E3-43BB-959B-088FAEA16FB2}
Nero Vision Help-->MsiExec.exe /X{5D9BE3C1-8BA4-4E7E-82FD-9F74FA6815D1}
Nero Vision-->MsiExec.exe /X{43E39830-1826-415D-8BAE-86845787B54B}
Nero WaveEditor-->MsiExec.exe /X{A209525B-3377-43F4-B886-32F6B6E7356F}
NeroBurningROM-->MsiExec.exe /X{D025A639-B9C9-417D-8531-208859000AF8}
NeroExpress-->MsiExec.exe /X{595A3116-40BB-4E0F-A2E8-D7951DA56270}
NeroLiveGadget Help-->MsiExec.exe /X{85243696-5E58-4357-9CF8-3498C609941D}
NeroLiveGadget-->MsiExec.exe /X{9E9FDDE6-2C26-492A-85A0-05646B3F2795}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Nvu 1.0-->C:\Program Files\Nvu\uninst.exe
OGA Notifier 2.0.0048.0-->MsiExec.exe /I{B2544A03-10D0-4E5E-BA69-0362FFC20D18}
OLink 2.0.1-->"C:\Program Files\OLink\unins000.exe"
OPC Core Components Redistributable-->MsiExec.exe /I{75F9DAD1-792C-44E9-B48B-2E22C76E0CBF}
PDFCreator-->C:\Program Files\PDFCreator\unins000.exe
Prosave V7.4 incl. SP4 -->C:\Program Files\Common Files\Siemens\Bin\setupdeinstaller.exe /x {9B9856F7-FB16-4EDF-81FF-6382D0733D8F}
Prosave V7.4 incl. SP4 -->C:\Program Files\Common Files\Siemens\Bin\setupdeinstaller.exe /x {9B9856F7-FB16-4EDF-81FF-6382D0733D8F}
PSPad editor-->"C:\Program Files\PSPad editor\Uninst\unins000.exe"
Ride7-->MsiExec.exe /I{07964107-2400-44CC-B284-5BE58B4C30D4}
RKit-STM8 for Ride7-->MsiExec.exe /I{DD3AEFA1-8681-45F2-9ED5-21B78560ECF3}
Scan2PDF 1.6-->"C:\Program Files\Scan2PDF\unins000.exe"
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A8894F19-59C8-38D2-8A75-36C0CCE56A5B} /qb+ REBOOTPROMPT=""
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {3E0806DB-3085-378A-840A-F0D3AE3609D1} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {728D9A6A-2206-31E8-9F65-C3EABEFCF53E} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {7E97AB83-C1FE-38DE-B848-877E0A4BD81E} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {DB31DEDD-BF95-31E7-A9B7-5480561CEFF3} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile CSY Language Pack (KB2478663)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\setup.exe /uninstallpatch {728D9A6A-2206-31E8-9F65-C3EABEFCF53E} /parameterfolder ClientLP
Security Update for Microsoft .NET Framework 4 Client Profile CSY Language Pack (KB2518870)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder ClientLP
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {7A2C18A1-D2A2-3177-82F1-5FE9CC08ECB0} /parameterfolder Extended
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {42A3562E-8B4E-39A4-B82D-CC12F82889E3} /parameterfolder Extended
Sentinel System Driver Installer 7.5.1-->MsiExec.exe /I{BF9E346B-5ECE-4A18-9510-55729FD08323}
Siemens Totally Integrated Automation Portal V10-->C:\Program Files\Common Files\Siemens\Automation\Siemens Totally Integrated Automation Portal V10\SIA.exe /arpmode
Siemens Automation License Manager V4.0 + SP3 -->C:\Program Files\Common Files\Siemens\Bin\setupdeinstaller.exe /x {31BCC2ED-3E12-4A23-8899-6C89C208B8CE}
Siemens Automation License Manager-->C:\Program Files\Common Files\Siemens\Bin\setupdeinstaller.exe /x {31BCC2ED-3E12-4A23-8899-6C89C208B8CE}
Skype™ 4.2-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36}
Software Bluetooth WIDCOMM-->MsiExec.exe /X{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}
Software Intel(R) PROSet/Wireless WiFi-->MsiExec.exe /I{F22FD942-651D-4EE8-BD6F-7E0AF5E17625}
Solid Edge ST2-->MsiExec.exe /X{CC185D10-5C0E-40C3-91F2-63314BB365AF}
SolidWorks eDrawings 2010-->MsiExec.exe /I{EA9AAB32-160B-4FC1-AF18-71F11257C574}
SoundMAX-->C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\setup.exe -runfromtemp -l0x0005 -removeonly
SoundTrax-->MsiExec.exe /X{C5A7CB6C-E76D-408F-BA0E-85605420FE9D}
ST Toolset-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D80F4010-990F-11D3-B362-006008E7FE2C}\setup.exe" -l0x9 removeall
STORMWARE PDF Printer 5.0.0.614-->"C:\Program Files\STORMWARE\PDF Printer\unins000.exe"
STORMWARE POHODA Klient CZ Komplet-->MsiExec.exe /X{FAD050E3-0067-43D5-A6F0-EB29C96B4D6B}
Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
TIA Portal Single SetupPackage - HW Module Base Package V10.5 + HF1-->MsiExec.exe /X{F1D4FDEE-BB94-4C17-8BB0-AC06DAF854BD}
TIA Portal Single SetupPackage - HWConfig Single SetupPackage V10.5 + SP2-->MsiExec.exe /X{047BC977-015A-4339-B571-44CA33901F63}
TIA Portal Single SetupPackage - S7BASUCL V10.5 + SP12-->MsiExec.exe /X{37F822E3-B56D-4131-8E3D-0A6753DFB8A5}
TIA Portal Single SetupPackage - STEP 7 Single SetupPackage V10.5 + SP2-->MsiExec.exe /X{DC62C484-A0B2-421A-9A0F-1ABFE1E10D71}
TIA Portal Single SetupPackage - WinCC Single SetupPackage V10.5 + SP2-->MsiExec.exe /X{3EB30640-F847-4F59-AF74-837D0FD02B73}
TIA Portal Single SetupPackage - WINCCBASUCL V10.5 + SP12-->MsiExec.exe /X{ABE2EE7E-11F7-4374-B86B-CB75A5F276B0}
TightVNC 2.0.3-->C:\Program Files\TightVNC\uninstall.exe
Total Commander (Remove or Repair)-->c:\totalcmd\tcuninst.exe
Totally Integrated Automation Portal V10 - TIA Portal Single SetupPackage V10.5 + SP2-->MsiExec.exe /X{31C1839C-7967-469C-921D-0BEB49AC0652}
TrueCrypt-->"C:\Program Files\TrueCrypt\TrueCrypt Setup.exe" /u
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {FD988F49-E1C8-3C84-9683-0448B6BB8E20} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Client
Update for Microsoft .NET Framework 4 Extended (KB2468871)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Extended
Update for Microsoft .NET Framework 4 Extended (KB2533523)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Extended
Update for Outlook 2007 Junk Email Filter (KB2596560)-->msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {2964DDE1-4925-4DF1-AF2C-0A36B3442228}
VC User 71 RTL X86 ----->MsiExec.exe /I{A4A4567C-5C29-4756-992D-F84D8250C435}
Vista Default Settings-->MsiExec.exe /I{7DBAB5D6-4D71-4573-AA60-F82A500F0E8F}
WebEx-->C:\PROGRA~2\WebEx\atcliun.exe
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
XnView 1.97.8-->"C:\Program Files\XnView\unins000.exe"
======Hosts File======
127.0.0.1 www.eblaster.com
127.0.0.1 www.spectorsoft.com
127.0.0.1 eblaster.com
127.0.0.1 spectorsoft.com
127.0.0.1 www.u2a1376gf-43ty-245b.com
127.0.0.1 u2a1376gf-43ty-245b.com
127.0.0.1 www.v19170dc0-7597-11d.com
127.0.0.1 v19170dc0-7597-11d.com
127.0.0.1 www.d2a1376gf-43ty-245a.com
127.0.0.1 d2a1376gf-43ty-245a.com
======Security center information======
AS: Windows Defender
======System event log======
Computer Name: alvr-PC
Event Code: 4201
Message: Systém zjistil, že síťový adaptér Bezdrátové připojení k síti byl připojen k síti a inicializoval normální činnost.
Record Number: 172813
Source Name: Tcpip
Time Written: 20110524103711.676000-000
Event Type: Informace
User:
Computer Name: alvr-PC
Event Code: 4201
Message: Systém zjistil, že síťový adaptér Bezdrátové připojení k síti byl připojen k síti a inicializoval normální činnost.
Record Number: 172812
Source Name: Tcpip
Time Written: 20110524103711.676000-000
Event Type: Informace
User:
Computer Name: alvr-PC
Event Code: 1103
Message: Počítači byla úspěšně přidělena adresa ze sítě, takže se nyní může připojovat k jiným počítačům.
Record Number: 172811
Source Name: Microsoft-Windows-Dhcp-Client
Time Written: 20110524103711.000000-000
Event Type: Informace
User:
Computer Name: alvr-PC
Event Code: 18
Message: Systém Windows nemůže uložit ověřovací kódy Bluetooth (klíče linky) u místního adaptéru. Klávesnice Bluetooth nemusí být funkční v systému BIOS během spuštění.
Record Number: 172810
Source Name: BTHUSB
Time Written: 20110524103709.660000-000
Event Type: Informace
User:
Computer Name: alvr-PC
Event Code: 131
Message: Pause Function is Off
Record Number: 172809
Source Name: yukonwlh
Time Written: 20110524103502.026000-000
Event Type: Informace
User:
=====Application event log=====
Computer Name: alvr-PC
Event Code: 1
Message: Nokia M Platform 2.4.124 (NLib 0.8.346)
Nokia M Data Store opened at location "c:\users\alvr\appdata\local\nokia\nokiad~1\Thumbnail\DataBase\MDataStore.db3"
Record Number: 7141
Source Name: Nokia M Platform
Time Written: 20100604111604.000000-000
Event Type: Informace
User:
Computer Name: alvr-PC
Event Code: 1
Message: Nokia M Platform 2.4.124 (NLib 0.8.346)
Nokia M Data Store opened at location "c:\users\alvr\appdata\local\nokia\nokiad~1\DataBase\MDataStore.db3"
Record Number: 7140
Source Name: Nokia M Platform
Time Written: 20100604111603.000000-000
Event Type: Informace
User:
Computer Name: alvr-PC
Event Code: 1
Message: Nokia M Platform 2.4.124 (NLib 0.8.346)
Nokia M Data Store opened at location "c:\users\alvr\appdata\local\nokia\nokiad~1\DataBase\MDataStore.db3"
Record Number: 7139
Source Name: Nokia M Platform
Time Written: 20100604111558.000000-000
Event Type: Informace
User:
Computer Name: alvr-PC
Event Code: 1
Message: Nokia M Platform 2.4.124 (NLib 0.8.346)
Nokia M Data Store opened at location "c:\users\alvr\appdata\local\nokia\nokiad~1\DataBase\MDataStore.db3"
Record Number: 7138
Source Name: Nokia M Platform
Time Written: 20100604111558.000000-000
Event Type: Informace
User:
Computer Name: alvr-PC
Event Code: 0
Message:
Record Number: 7137
Source Name: Com4QLBEx
Time Written: 20100604111543.000000-000
Event Type: Informace
User:
=====Security event log=====
Computer Name: alvr-PC
Event Code: 4624
Message: Účet byl úspěšně přihlášen.
Předmět:
ID zabezpečení: S-1-0-0
Název účtu: -
Doména účtu: -
ID přihlášení: 0x0
Typ přihlášení: 0
Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3e7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}
Informace o procesu:
ID procesu: 0x4
Název procesu:
Informace o síti:
Název pracovní stanice: -
Adresa zdrojové sítě -
Zdrojový port: -
Podrobné informace o ověření:
Proces přihlášení: -
Balíček ověření: -
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0
Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.
Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.
Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).
Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.
Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.
Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 29813
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110203095720.672187-000
Event Type: Úspěch auditu
User:
Computer Name: alvr-PC
Event Code: 4608
Message: Spouští se systém Windows.
Tato událost je zaznamenána při spuštění procesu LSASS.EXE a inicializaci kontrolního podsystému.
Record Number: 29812
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110203095720.672187-000
Event Type: Úspěch auditu
User:
Computer Name: alvr-PC
Event Code: 1101
Message: Při přenosu byly vyřazeny události auditu. Soubor zálohy v reálném čase byl poškozen v důsledku nesprávného vypnutí.
Record Number: 29811
Source Name: Microsoft-Windows-Eventlog
Time Written: 20110203095722.778200-000
Event Type: Úspěch auditu
User:
Computer Name: alvr-PC
Event Code: 4634
Message: Účet byl odhlášen.
Předmět:
ID zabezpečení: S-1-5-21-3707792578-2563339705-3883948261-1000
Název účtu: alvr
Doména účtu: alvr-PC
ID přihlášení: 0x47a939
Typ přihlášení: 2
Tato událost je generována, pokud je zničena relace přihlášení. Může být spojena s událostí přihlášení pomocí hodnoty ID přihlášení. Hodnoty ID přihlášení jsou jednoznačné pouze v rámci jednotlivých restartů stejného počítače.
Record Number: 29810
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110202203545.223000-000
Event Type: Úspěch auditu
User:
Computer Name: alvr-PC
Event Code: 4672
Message: Novému přihlášení byla přiřazena zvláštní oprávnění.
Předmět:
ID zabezpečení: S-1-5-21-3707792578-2563339705-3883948261-1000
Název účtu: alvr
Doména účtu: alvr-PC
ID přihlášení: 0x47a939
Oprávnění: SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 29809
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110202203543.266000-000
Event Type: Úspěch auditu
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files\STMicroelectronics\st_toolset\asm;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\Broadcom\Broadcom 802.11\Driver;C:\Program Files\ActivIdentity\ActivClient\;C:\Program Files\Hewlett-Packard\IAM\bin;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Raisonance\Ride\bin;C:\Program Files\Microsoft SQL Server\90\Tools\binn\;C:\Program Files\Microsoft SQL Server\80\Tools\Binn\;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 10, GenuineIntel
"PROCESSOR_REVISION"=170a
"NUMBER_OF_PROCESSORS"=2
"TRACE_FORMAT_SEARCH_PATH"=\\NTREL202.ntdev.corp.microsoft.com\4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0\TraceFormat
"DFSTRACINGON"=FALSE
"P_SCHEMA"=C:\Program Files\Solid Edge ST2\Schema
"KMP_DUPLICATE_LIB_OK"=TRUE
"MKL_SERIAL"=YES
"CARBON_MEM_DISABLE"=1
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"AutInstLog"=C:\ProgramData\Siemens\Automation\Logfiles\Setup\
-----------------EOF-----------------
Re: zabrzdeny NTB, caste padani ve sleep rezimu, atd...
Dobrý večer 
Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken
NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.
Stahněte MBAM z mého podpisu-Nainstalujte,dejte úplný sken
NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: zabrzdeny NTB, caste padani ve sleep rezimu, atd...
Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org
Verze databáze: 8154
Windows 6.0.6002 Service Pack 2
Internet Explorer 9.0.8112.16421
13.11.2011 20:37:23
mbam-log-2011-11-13 (20-37-23).txt
Typ: Rychlá kontrola
Kontrolované objekty: 227916
Uplynulý čas: 13 minut, 56 sekund
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)
www.malwarebytes.org
Verze databáze: 8154
Windows 6.0.6002 Service Pack 2
Internet Explorer 9.0.8112.16421
13.11.2011 20:37:23
mbam-log-2011-11-13 (20-37-23).txt
Typ: Rychlá kontrola
Kontrolované objekty: 227916
Uplynulý čas: 13 minut, 56 sekund
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)
Re: zabrzdeny NTB, caste padani ve sleep rezimu, atd...
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: zabrzdeny NTB, caste padani ve sleep rezimu, atd...
ComboFix 11-11-13.03 - alvr 13.11.2011 21:39:24.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.3065.1369 [GMT 1:00]
Spuštěný z: c:\users\alvr\Desktop\ComboFix.exe
AV: ESET Smart Security 4.2 *Disabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}
FW: ESET personal firewall *Disabled* {F3340042-195E-BB41-42D1-CDB495BB46DE}
SP: ESET Smart Security 4.2 *Disabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\etc
c:\program files\etc\M520\Drv0102\DrvInst.exe
c:\program files\etc\M520\Drv0102\em52x.dll
c:\program files\etc\M520\Drv0102\EM52X.inf
c:\program files\etc\M520\Drv0102\EM52X.sys
c:\program files\etc\M520\Drv0102\meascls.dll
c:\program files\etc\Scope\Drv0208\em500.cat
c:\program files\etc\Scope\Drv0208\em500.inf
c:\program files\etc\Scope\Drv0208\em52x.dll
c:\program files\etc\Scope\Drv0208\em52x.s32
c:\program files\etc\Scope\Drv0208\em52x.s64
c:\program files\etc\Scope\Drv0208\em53x.dll
c:\program files\etc\Scope\Drv0208\em53x.s32
c:\program files\etc\Scope\Drv0208\em53x.s64
c:\program files\etc\Scope\Drv0208\em57x.dll
c:\program files\etc\Scope\Drv0208\em57x.s32
c:\program files\etc\Scope\Drv0208\em57x.s64
c:\program files\etc\Scope\Drv0208\em59x.dll
c:\program files\etc\Scope\Drv0208\em59x.s32
c:\program files\etc\Scope\Drv0208\em59x.s64
c:\program files\etc\Scope\Drv0208\em77x.dll
c:\program files\etc\Scope\Drv0208\em77x.s32
c:\program files\etc\Scope\Drv0208\em77x.s64
c:\program files\etc\Scope\Drv0208\meascls.d32
c:\program files\etc\Scope\Drv0208\meascls.d64
c:\program files\etc\Scope\Guide\ScopeGuide.pdf
c:\program files\etc\Scope\Help\contents.htm
c:\program files\etc\Scope\Help\Files\filelist.xml
c:\program files\etc\Scope\Help\Files\header.htm
c:\program files\etc\Scope\Help\Files\image001.wmz
c:\program files\etc\Scope\Help\Files\image002.gif
c:\program files\etc\Scope\Help\Files\image003.wmz
c:\program files\etc\Scope\Help\Files\image004.gif
c:\program files\etc\Scope\Help\Files\image005.wmz
c:\program files\etc\Scope\Help\Files\image006.gif
c:\program files\etc\Scope\Help\Files\image007.wmz
c:\program files\etc\Scope\Help\Files\image008.gif
c:\program files\etc\Scope\Help\Files\image009.jpg
c:\program files\etc\Scope\Help\Files\image010.jpg
c:\program files\etc\Scope\Help\Files\image011.png
c:\program files\etc\Scope\Help\Files\image012.jpg
c:\program files\etc\Scope\Help\Files\image013.jpg
c:\program files\etc\Scope\Help\Files\image014.jpg
c:\program files\etc\Scope\Help\Files\image015.jpg
c:\program files\etc\Scope\Help\Files\image016.jpg
c:\program files\etc\Scope\Help\Files\image017.emz
c:\program files\etc\Scope\Help\Files\image018.gif
c:\program files\etc\Scope\Help\Files\image019.jpg
c:\program files\etc\Scope\Help\Files\image020.jpg
c:\program files\etc\Scope\Help\Files\image021.png
c:\program files\etc\Scope\Help\Files\image022.jpg
c:\program files\etc\Scope\Help\Files\image023.png
c:\program files\etc\Scope\Help\Files\image024.jpg
c:\program files\etc\Scope\Help\Files\image025.png
c:\program files\etc\Scope\Help\Files\image026.jpg
c:\program files\etc\Scope\Help\Files\image027.png
c:\program files\etc\Scope\Help\Files\image028.jpg
c:\program files\etc\Scope\Help\Files\image029.png
c:\program files\etc\Scope\Help\Files\image030.jpg
c:\program files\etc\Scope\Help\Files\image031.png
c:\program files\etc\Scope\Help\Files\image032.jpg
c:\program files\etc\Scope\Help\Files\image033.png
c:\program files\etc\Scope\Help\Files\image034.jpg
c:\program files\etc\Scope\Help\Files\image035.png
c:\program files\etc\Scope\Help\Files\image036.jpg
c:\program files\etc\Scope\Help\Files\image037.png
c:\program files\etc\Scope\Help\Files\image038.jpg
c:\program files\etc\Scope\Help\Files\image039.png
c:\program files\etc\Scope\Help\Files\image040.jpg
c:\program files\etc\Scope\Help\Files\image041.png
c:\program files\etc\Scope\Help\Files\image042.jpg
c:\program files\etc\Scope\Help\Files\image043.png
c:\program files\etc\Scope\Help\Files\image044.jpg
c:\program files\etc\Scope\Help\Files\image045.png
c:\program files\etc\Scope\Help\Files\image046.jpg
c:\program files\etc\Scope\Help\Files\image047.png
c:\program files\etc\Scope\Help\Files\image048.jpg
c:\program files\etc\Scope\Help\Files\image049.png
c:\program files\etc\Scope\Help\Files\image050.jpg
c:\program files\etc\Scope\Help\Files\image051.png
c:\program files\etc\Scope\Help\Files\image052.jpg
c:\program files\etc\Scope\Help\Files\image053.png
c:\program files\etc\Scope\Help\Files\image054.jpg
c:\program files\etc\Scope\Help\Files\image055.png
c:\program files\etc\Scope\Help\Files\image056.jpg
c:\program files\etc\Scope\Help\Files\image057.png
c:\program files\etc\Scope\Help\Files\image058.jpg
c:\program files\etc\Scope\Help\Files\image059.png
c:\program files\etc\Scope\Help\Files\image060.jpg
c:\program files\etc\Scope\Help\Files\image061.png
c:\program files\etc\Scope\Help\Files\image062.jpg
c:\program files\etc\Scope\Help\Files\image063.png
c:\program files\etc\Scope\Help\Files\image064.jpg
c:\program files\etc\Scope\Help\Files\image065.png
c:\program files\etc\Scope\Help\Files\image066.jpg
c:\program files\etc\Scope\Help\Files\image067.png
c:\program files\etc\Scope\Help\Files\image068.jpg
c:\program files\etc\Scope\Help\Files\image069.png
c:\program files\etc\Scope\Help\Files\image070.jpg
c:\program files\etc\Scope\Help\Files\image071.png
c:\program files\etc\Scope\Help\Files\image072.jpg
c:\program files\etc\Scope\Help\Files\image073.png
c:\program files\etc\Scope\Help\Files\image074.jpg
c:\program files\etc\Scope\Help\Files\image075.png
c:\program files\etc\Scope\Help\Files\image076.jpg
c:\program files\etc\Scope\Help\Files\image077.png
c:\program files\etc\Scope\Help\Files\image078.jpg
c:\program files\etc\Scope\Help\Files\image079.png
c:\program files\etc\Scope\Help\Files\image080.jpg
c:\program files\etc\Scope\Help\Files\image081.png
c:\program files\etc\Scope\Help\Files\image082.jpg
c:\program files\etc\Scope\Help\Files\image083.png
c:\program files\etc\Scope\Help\Files\image084.jpg
c:\program files\etc\Scope\Help\Files\image085.png
c:\program files\etc\Scope\Help\Files\image086.jpg
c:\program files\etc\Scope\Help\Files\image087.png
c:\program files\etc\Scope\Help\Files\image088.jpg
c:\program files\etc\Scope\Help\Files\image089.png
c:\program files\etc\Scope\Help\Files\image090.jpg
c:\program files\etc\Scope\Help\Files\image091.png
c:\program files\etc\Scope\Help\Files\image092.jpg
c:\program files\etc\Scope\Help\Files\image093.png
c:\program files\etc\Scope\Help\Files\image094.jpg
c:\program files\etc\Scope\Help\Files\image095.png
c:\program files\etc\Scope\Help\Files\image096.jpg
c:\program files\etc\Scope\Help\Files\image097.png
c:\program files\etc\Scope\Help\Files\image098.jpg
c:\program files\etc\Scope\Help\Files\image099.png
c:\program files\etc\Scope\Help\Files\image100.jpg
c:\program files\etc\Scope\Help\Files\image101.png
c:\program files\etc\Scope\Help\Files\image102.jpg
c:\program files\etc\Scope\Help\Files\image103.png
c:\program files\etc\Scope\Help\Files\image104.jpg
c:\program files\etc\Scope\Help\Files\image105.png
c:\program files\etc\Scope\Help\Files\image106.jpg
c:\program files\etc\Scope\Help\Files\image107.png
c:\program files\etc\Scope\Help\Files\image108.jpg
c:\program files\etc\Scope\Help\Files\image109.png
c:\program files\etc\Scope\Help\Files\image110.jpg
c:\program files\etc\Scope\Help\Files\image111.png
c:\program files\etc\Scope\Help\Files\image112.jpg
c:\program files\etc\Scope\Help\Files\image113.png
c:\program files\etc\Scope\Help\Files\image114.jpg
c:\program files\etc\Scope\Help\Files\image115.png
c:\program files\etc\Scope\Help\Files\image116.jpg
c:\program files\etc\Scope\Help\Files\image117.png
c:\program files\etc\Scope\Help\Files\image118.jpg
c:\program files\etc\Scope\Help\Files\image119.png
c:\program files\etc\Scope\Help\Files\image120.jpg
c:\program files\etc\Scope\Help\Files\image121.png
c:\program files\etc\Scope\Help\Files\image122.jpg
c:\program files\etc\Scope\Help\Files\image123.png
c:\program files\etc\Scope\Help\Files\image124.jpg
c:\program files\etc\Scope\Help\Files\image125.png
c:\program files\etc\Scope\Help\Files\image126.jpg
c:\program files\etc\Scope\Help\Files\image127.png
c:\program files\etc\Scope\Help\Files\image128.jpg
c:\program files\etc\Scope\Help\Files\image129.png
c:\program files\etc\Scope\Help\Files\image130.jpg
c:\program files\etc\Scope\Help\Files\image131.png
c:\program files\etc\Scope\Help\Files\image132.jpg
c:\program files\etc\Scope\Help\Files\image133.png
c:\program files\etc\Scope\Help\Files\image134.jpg
c:\program files\etc\Scope\Help\Files\image135.png
c:\program files\etc\Scope\Help\Files\image136.jpg
c:\program files\etc\Scope\Help\Files\image137.png
c:\program files\etc\Scope\Help\Files\image138.jpg
c:\program files\etc\Scope\Help\Files\image139.png
c:\program files\etc\Scope\Help\Files\image140.jpg
c:\program files\etc\Scope\Help\Files\image141.png
c:\program files\etc\Scope\Help\Files\image142.jpg
c:\program files\etc\Scope\Help\Files\image143.png
c:\program files\etc\Scope\Help\Files\image144.jpg
c:\program files\etc\Scope\Help\Files\image145.png
c:\program files\etc\Scope\Help\Files\image146.jpg
c:\program files\etc\Scope\Help\Files\image147.png
c:\program files\etc\Scope\Help\Files\image148.jpg
c:\program files\etc\Scope\Help\Files\image149.png
c:\program files\etc\Scope\Help\Files\image150.jpg
c:\program files\etc\Scope\Help\Files\image151.png
c:\program files\etc\Scope\Help\Files\image152.jpg
c:\program files\etc\Scope\Help\Files\image153.png
c:\program files\etc\Scope\Help\Files\image154.jpg
c:\program files\etc\Scope\Help\Files\image155.png
c:\program files\etc\Scope\Help\Files\image156.jpg
c:\program files\etc\Scope\Help\Files\image157.png
c:\program files\etc\Scope\Help\Files\image158.jpg
c:\program files\etc\Scope\Help\Files\image159.png
c:\program files\etc\Scope\Help\Files\image160.jpg
c:\program files\etc\Scope\Help\Files\image161.png
c:\program files\etc\Scope\Help\Files\image162.jpg
c:\program files\etc\Scope\Help\Files\image163.png
c:\program files\etc\Scope\Help\Files\image164.jpg
c:\program files\etc\Scope\Help\Files\image165.png
c:\program files\etc\Scope\Help\Files\image166.jpg
c:\program files\etc\Scope\Help\Files\image167.png
c:\program files\etc\Scope\Help\Files\image168.jpg
c:\program files\etc\Scope\Help\Files\image169.png
c:\program files\etc\Scope\Help\Files\image170.jpg
c:\program files\etc\Scope\Help\Files\image171.png
c:\program files\etc\Scope\Help\Files\image172.jpg
c:\program files\etc\Scope\Help\Files\image173.png
c:\program files\etc\Scope\Help\Files\image174.jpg
c:\program files\etc\Scope\Help\Files\image175.png
c:\program files\etc\Scope\Help\Files\image176.jpg
c:\program files\etc\Scope\Help\Files\image177.png
c:\program files\etc\Scope\Help\Files\image178.jpg
c:\program files\etc\Scope\Help\Files\image179.png
c:\program files\etc\Scope\Help\Files\image180.jpg
c:\program files\etc\Scope\Help\Files\image181.png
c:\program files\etc\Scope\Help\Files\image182.jpg
c:\program files\etc\Scope\Help\Files\image183.png
c:\program files\etc\Scope\Help\Files\image184.jpg
c:\program files\etc\Scope\Help\Files\image185.png
c:\program files\etc\Scope\Help\Files\image186.jpg
c:\program files\etc\Scope\Help\Files\image187.png
c:\program files\etc\Scope\Help\Files\image188.jpg
c:\program files\etc\Scope\Help\Files\image189.png
c:\program files\etc\Scope\Help\Files\image190.jpg
c:\program files\etc\Scope\Help\Files\image191.png
c:\program files\etc\Scope\Help\Files\image192.jpg
c:\program files\etc\Scope\Help\Files\image193.png
c:\program files\etc\Scope\Help\Files\image194.jpg
c:\program files\etc\Scope\Help\Files\image195.png
c:\program files\etc\Scope\Help\Files\image196.jpg
c:\program files\etc\Scope\Help\Files\image197.png
c:\program files\etc\Scope\Help\Files\image198.jpg
c:\program files\etc\Scope\Help\Files\image199.png
c:\program files\etc\Scope\Help\Files\image200.jpg
c:\program files\etc\Scope\Help\Files\image201.png
c:\program files\etc\Scope\Help\Files\image202.jpg
c:\program files\etc\Scope\Help\Files\oledata.mso
c:\program files\etc\Scope\Help\help.htm
c:\program files\etc\Scope\Help\ScopeGuide.htm
c:\program files\etc\Scope\layouts.lay
c:\program files\etc\Scope\m52xdrv.dll
c:\program files\etc\Scope\m570drv.dll
c:\program files\etc\Scope\m590drv.dll
c:\program files\etc\Scope\m770drv.dll
c:\program files\etc\Scope\modules\adjustcursors.dll
c:\program files\etc\Scope\modules\aminusb.dll
c:\program files\etc\Scope\modules\aplusb.dll
c:\program files\etc\Scope\modules\FFT.dll
c:\program files\etc\Scope\modules\IFT.dll
c:\program files\etc\Scope\modules\InvA.dll
c:\program files\etc\Scope\modules\InvB.dll
c:\program files\etc\Scope\modules\InvVoltageA.dll
c:\program files\etc\Scope\modules\InvVoltageB.dll
c:\program files\etc\Scope\modules\phase.dll
c:\program files\etc\Scope\modules\wanal.dll
c:\program files\etc\Scope\modules\XOnY.dll
c:\program files\etc\Scope\printdll.dll
c:\program files\etc\Scope\readme.txt
c:\program files\etc\Scope\scope.exe
c:\program files\etc\Scope\Settings.fry
c:\program files\etc\Scope\Settings.xml
c:\program files\etc\Scope\unins000.dat
c:\program files\etc\Scope\unins000.exe
c:\programdata\Roaming
C:\System
c:\windows\IsUn0405.exe
c:\windows\iun6002.exe
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\system32\binisext.dll
c:\windows\system32\conarapp.dll
c:\windows\system32\matatip.dll
c:\windows\system32\ntirlan.dll
c:\windows\system32\sapinxml.exe
c:\windows\system32\unisoocx.dll
c:\windows\winhelp.ini
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_WINDRIVER
-------\Service_WinDriver
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-13 do 2011-11-13 )))))))))))))))))))))))))))))))
.
.
2011-11-13 20:59 . 2011-11-13 20:59 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{03079336-F766-424F-AFB6-10E92A39FCB4}\offreg.dll
2011-11-13 20:51 . 2011-11-13 21:02 -------- d-----w- c:\users\alvr\AppData\Local\temp
2011-11-13 20:51 . 2011-11-13 20:51 -------- d-----w- c:\users\Guest\AppData\Local\temp
2011-11-13 20:51 . 2011-11-13 20:51 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-11-13 19:18 . 2011-11-13 19:20 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-11-13 19:18 . 2011-08-31 16:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-13 16:49 . 2011-11-13 16:49 -------- d-----w- C:\rsit
2011-11-13 16:49 . 2011-11-13 16:49 -------- d-----w- c:\program files\trend micro
2011-11-12 15:58 . 2011-11-12 15:58 -------- d-----w- c:\programdata\VS
2011-11-11 07:16 . 2011-10-07 03:48 6668624 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{03079336-F766-424F-AFB6-10E92A39FCB4}\mpengine.dll
2011-11-09 17:51 . 2011-10-17 11:41 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2011-11-09 17:51 . 2011-09-30 15:57 707584 ----a-w- c:\program files\Common Files\System\wab32.dll
2011-11-09 17:51 . 2011-09-20 21:02 905088 ----a-w- c:\windows\system32\drivers\tcpip.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-12 16:03 . 2011-04-22 09:52 84448 ----a-w- c:\programdata\Microsoft\VisualStudio\10.0\1033\ResourceCache.dll
2011-10-11 15:41 . 2011-06-05 09:55 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-12 08:57 . 2011-09-12 08:57 0 ----a-w- c:\windows\system32\drivers\vipehsub.sys
2011-09-06 13:30 . 2011-10-12 07:16 2043392 ----a-w- c:\windows\system32\win32k.sys
2011-09-01 02:35 . 2011-10-12 07:23 1798144 ----a-w- c:\windows\system32\jscript9.dll
2011-09-01 02:28 . 2011-10-12 07:23 1126912 ----a-w- c:\windows\system32\wininet.dll
2011-09-01 02:22 . 2011-10-12 07:23 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-08-28 17:28 . 2011-08-28 17:28 231248 ----a-w- c:\windows\system32\drivers\truecrypt.sys
2011-08-25 16:15 . 2011-10-12 07:16 555520 ----a-w- c:\windows\system32\UIAutomationCore.dll
2011-08-25 16:14 . 2011-10-12 07:16 563712 ----a-w- c:\windows\system32\oleaut32.dll
2011-08-25 16:14 . 2011-10-12 07:16 238080 ----a-w- c:\windows\system32\oleacc.dll
2011-08-25 13:31 . 2011-10-12 07:16 4096 ----a-w- c:\windows\system32\oleaccrc.dll
2011-08-22 07:47 . 2011-08-22 07:48 472808 ----a-w- c:\windows\system32\deployJava1.dll
2008-12-10 12:50 . 2008-12-10 12:50 118784 ----a-w- c:\program files\internet explorer\plugins\LV86ActiveXControl.dll
2009-10-07 14:11 . 2009-10-07 14:11 158720 ----a-w- c:\program files\internet explorer\plugins\LV90ActiveXControl.dll
2011-06-16 04:30 . 2011-07-09 04:29 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{081230F8-EA50-42A9-983C-D22ABC2EED3B}"= "c:\program files\FreeRIP3\toolband.dll" [2010-09-09 286720]
.
[HKEY_CLASSES_ROOT\clsid\{081230f8-ea50-42a9-983c-d22abc2eed3b}]
[HKEY_CLASSES_ROOT\ToolBand.ToolBandObj.1]
[HKEY_CLASSES_ROOT\TypeLib\{0097E905-1DFB-4A9C-9871-A4F95FD58945}]
[HKEY_CLASSES_ROOT\ToolBand.ToolBandObj]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{081230F8-EA50-42A9-983C-D22ABC2EED3B}"= "c:\program files\FreeRIP3\toolband.dll" [2010-09-09 286720]
.
[HKEY_CLASSES_ROOT\clsid\{081230f8-ea50-42a9-983c-d22abc2eed3b}]
[HKEY_CLASSES_ROOT\ToolBand.ToolBandObj.1]
[HKEY_CLASSES_ROOT\TypeLib\{0097E905-1DFB-4A9C-9871-A4F95FD58945}]
[HKEY_CLASSES_ROOT\ToolBand.ToolBandObj]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-09-02 13351304]
"ICQ"="c:\program files\ICQ7.5\ICQ.exe" [2011-08-01 124480]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-05-14 61440]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2009-02-18 177720]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-02-06 1430824]
"WirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2009-03-10 506936]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2010-02-26 2140880]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-12-17 186904]
"accrdsub"="c:\program files\ActivIdentity\ActivClient\accrdsub.exe" [2007-11-27 298536]
"CognizanceTS"="c:\progra~1\HEWLET~1\IAM\Bin\ASTSVCC.dll" [2009-01-28 24848]
"HPCam_Menu"="c:\program files\Hewlett-Packard\HP Webcam\MUITransfer\MUIStartMenu.exe" [2009-02-25 218408]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2008-12-04 75016]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2009-05-18 1314816]
"NI Background Service"="c:\program files\National Instruments\Shared\Update Service\BackgroundService.exe" [2009-08-25 77824]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-09-07 37296]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
"SiemensAutomationFileStorage"="c:\program files\Siemens\Automation\Portal V10\Bin\Siemens.Automation.ObjectFrame.FileStorage.Server.exe" [2009-11-17 364544]
"HTC Sync Loader"="c:\program files\HTC\HTC Sync 3.0\htcUPCTLoader.exe" [2011-01-27 585728]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2010-11-30 113664]
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-3-1 789032]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DeviceNP]
2008-08-06 13:23 69632 ----a-w- c:\windows\System32\DeviceNP.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\APSHook.dll c:\windows\System32\APSHook.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate1cc09a1fdc34a0b;Služba Google Update (gupdate1cc09a1fdc34a0b);c:\program files\Google\Update\GoogleUpdate.exe [2010-12-06 136176]
R2 MAC_MOT;MAC_MOT;c:\windows\System32\drivers\MAC_MOT.SYS [x]
R2 MLPTDR_N;MLPTDR_N;c:\windows\system32\MLPTDR_N.sys [2003-07-19 18848]
R2 STM Parallel Driver;STM Parallel Driver;c:\windows\system32\drivers\parstm.sys [2003-07-09 43776]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv.sys [2008-08-06 32256]
R3 Easysocket;MITSUBISHI Easysocket Driver;c:\windows\system32\Drivers\ECUsbd.sys [2007-07-25 17920]
R3 em52x;EM52x driver for ETC EM520 series;c:\windows\system32\Drivers\em52x.sys [2009-06-16 20584]
R3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\system32\flcdlock.exe [2008-08-06 349432]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2010-12-06 136176]
R3 HP ProtectTools Service;HP ProtectTools Service;c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [2009-02-11 45056]
R3 HTCAND32;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [2009-06-09 24576]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2010-06-23 23040]
R3 silabenm;JABLOTRON serial interface Serial Port Enumerator Driver;c:\windows\system32\DRIVERS\silabenm.sys [2007-09-04 17920]
R3 silabser;JABLOTRON serial interface Driver;c:\windows\system32\DRIVERS\silabser.sys [2007-09-04 58368]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S0 SafeBoot;SafeBoot; [x]
S0 SbAlg;SbAlg; [x]
S0 SbFsLock;SbFsLock; [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-02-26 114984]
S1 RsvLock;RsvLock; [x]
S2 accoca;ActivClient Middleware Service;c:\program files\ActivIdentity\ActivClient\accoca.exe [2007-11-27 185896]
S2 almservice;Automation License Manager Service;c:\program files\Common Files\Siemens\sws\almsrv\almsrvx.exe [2009-04-23 1200128]
S2 ASBroker;Logon Session Broker;c:\windows\System32\svchost.exe [2008-01-21 21504]
S2 ASChannel;Local Communication Channel;c:\windows\System32\svchost.exe [2008-01-21 21504]
S2 ATService;AuthenTec Fingerprint Service;c:\program files\Fingerprint Sensor\AtService.exe [2008-10-03 1185016]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-02-26 133512]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2010-02-26 810120]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2010-02-26 41312]
S2 FileOpenManagerSvc;FileOpenManagerSvc;c:\programdata\FileOpen\Services\FileOpenManagerSvc32.exe [2011-04-18 211840]
S2 hasplms;HASP License Manager;c:\windows\system32\hasplms.exe -run [x]
S2 HpFkCryptService;Drive Encryption Service;c:\program files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2008-10-01 256544]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2008-08-27 24880]
S2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [2010-09-06 247096]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
S2 MSSQL$WINCCPLUS;SQL Server (WINCCPLUS);c:\program files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
S2 PassThru Service;Internet Pass-Through Service;c:\program files\HTC\Internet Pass-Through\PassThruSvr.exe [2010-09-16 80896]
S2 s7oiehsx;SIMATIC IEPG Help Service;c:\program files\Common Files\Siemens\S7IEPG\s7oiehsx.exe [2010-06-07 1576072]
S2 S7opcsrtx;PROFINET IO RT-Protocol (LLDP);c:\windows\system32\DRIVERS\s7opcsrtx.sys [2010-06-07 31744]
S2 s7snsrtx;PROFINET IO RT-Protocol V1.0;c:\windows\system32\DRIVERS\s7snsrtx.sys [2009-02-24 73088]
S2 S7TraceServiceX;S7TraceServiceX;c:\program files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceServiceX.exe [2010-06-07 240776]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-03-11 29736]
S3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-12-04 222512]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-08-31 22216]
S3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\NETw5v32.sys [2009-03-04 4232704]
S3 VPPP;DrayTek Virtual PPP Adapter;c:\windows\system32\DRIVERS\VPPP.sys [2010-03-31 31696]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*Deregistered* - FileOpenWebPublisherScreenHookDriver
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ
Bioscrypt REG_MULTI_SZ ASBroker ASChannel
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-08-20 11:24 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2011-11-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-12-06 21:48]
.
2011-11-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-12-06 21:48]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: &FreeRIP Search - c:\program files\FreeRIP3\toolband.dll/MENUSEARCH.HTM
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {{7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - c:\program files\ICQ7.5\ICQ.exe
Trusted Zone: unmz.cz\www.csnonline
TCP: DhcpNameServer = 78.157.167.7 78.157.167.57
DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} - hxxp://80.82.144.83/activex/AMC.cab
FF - ProfilePath - c:\users\alvr\AppData\Roaming\Mozilla\Firefox\Profiles\yslq8mya.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.1.7&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-Run-Nokia FastStart - c:\program files\Nokia\Nokia Music\NokiaMusic.exe
AddRemove-Adobe Photoshop 7.0 CE - c:\windows\ISUN0405.EXE
AddRemove-JABLCOMM&16D6&0001 - c:\windows\system32\Silabs\DriverUninstaller.exe VCP CP210x Cardinal\JABLCOMM&16D6&0001
AddRemove-scope_is1 - c:\program files\ETC\Scope\unins000.exe
AddRemove-{07D20D73-A857-47D0-8804-CA5771903DA4} - c:\users\alvr\AppData\Local\{F66F5828-6EF5-4CEE-93A1-CB534D874C67}\IconDeveloper_Setup.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-13 22:03
Windows 6.0.6002 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(2196)
c:\program files\WIDCOMM\Bluetooth Software\btmmhook.dll
c:\program files\WIDCOMM\Bluetooth Software\btncopy.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\WLANExt.exe
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\AEADISRV.EXE
c:\program files\ActivIdentity\ActivClient\acevents.exe
c:\program files\WIDCOMM\Bluetooth Software\btwdins.exe
c:\program files\Common Files\Siemens\ALMPanelPlugin\ALMPanelPlugin.exe
c:\program files\Intel\WiFi\bin\EvtEng.exe
c:\windows\system32\hasplms.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\windows\system32\lkads.exe
c:\windows\system32\lktsrv.exe
c:\program files\Common Files\Nero\Nero BackItUp 4\NBService.exe
c:\program files\National Instruments\Shared\Security\nidmsrv.exe
c:\windows\system32\nisvcloc.exe
c:\windows\system32\IoctlSvc.exe
c:\program files\Common Files\Intel\WirelessCommon\RegSrvc.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\program files\Hewlett-Packard\IAM\Bin\AsGHost.exe
c:\program files\Windows Media Player\wmpnscfg.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\ActivIdentity\ActivClient\acevents.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\program files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
c:\program files\WIDCOMM\Bluetooth Software\BtStackServer.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\program files\Hewlett-Packard\Shared\hpqToaster.exe
c:\program files\Skype\Plugin Manager\skypePM.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
c:\program files\Common Files\Java\Java Update\jucheck.exe
.
**************************************************************************
.
Celkový čas: 2011-11-13 22:17:17 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-11-13 21:17
.
Před spuštěním: Volných bajtů: 116 218 961 920
Po spuštění: Volných bajtů: 122 500 243 456
.
- - End Of File - - 57709BB4674ED26061F44FB4EF940218
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.3065.1369 [GMT 1:00]
Spuštěný z: c:\users\alvr\Desktop\ComboFix.exe
AV: ESET Smart Security 4.2 *Disabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}
FW: ESET personal firewall *Disabled* {F3340042-195E-BB41-42D1-CDB495BB46DE}
SP: ESET Smart Security 4.2 *Disabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\etc
c:\program files\etc\M520\Drv0102\DrvInst.exe
c:\program files\etc\M520\Drv0102\em52x.dll
c:\program files\etc\M520\Drv0102\EM52X.inf
c:\program files\etc\M520\Drv0102\EM52X.sys
c:\program files\etc\M520\Drv0102\meascls.dll
c:\program files\etc\Scope\Drv0208\em500.cat
c:\program files\etc\Scope\Drv0208\em500.inf
c:\program files\etc\Scope\Drv0208\em52x.dll
c:\program files\etc\Scope\Drv0208\em52x.s32
c:\program files\etc\Scope\Drv0208\em52x.s64
c:\program files\etc\Scope\Drv0208\em53x.dll
c:\program files\etc\Scope\Drv0208\em53x.s32
c:\program files\etc\Scope\Drv0208\em53x.s64
c:\program files\etc\Scope\Drv0208\em57x.dll
c:\program files\etc\Scope\Drv0208\em57x.s32
c:\program files\etc\Scope\Drv0208\em57x.s64
c:\program files\etc\Scope\Drv0208\em59x.dll
c:\program files\etc\Scope\Drv0208\em59x.s32
c:\program files\etc\Scope\Drv0208\em59x.s64
c:\program files\etc\Scope\Drv0208\em77x.dll
c:\program files\etc\Scope\Drv0208\em77x.s32
c:\program files\etc\Scope\Drv0208\em77x.s64
c:\program files\etc\Scope\Drv0208\meascls.d32
c:\program files\etc\Scope\Drv0208\meascls.d64
c:\program files\etc\Scope\Guide\ScopeGuide.pdf
c:\program files\etc\Scope\Help\contents.htm
c:\program files\etc\Scope\Help\Files\filelist.xml
c:\program files\etc\Scope\Help\Files\header.htm
c:\program files\etc\Scope\Help\Files\image001.wmz
c:\program files\etc\Scope\Help\Files\image002.gif
c:\program files\etc\Scope\Help\Files\image003.wmz
c:\program files\etc\Scope\Help\Files\image004.gif
c:\program files\etc\Scope\Help\Files\image005.wmz
c:\program files\etc\Scope\Help\Files\image006.gif
c:\program files\etc\Scope\Help\Files\image007.wmz
c:\program files\etc\Scope\Help\Files\image008.gif
c:\program files\etc\Scope\Help\Files\image009.jpg
c:\program files\etc\Scope\Help\Files\image010.jpg
c:\program files\etc\Scope\Help\Files\image011.png
c:\program files\etc\Scope\Help\Files\image012.jpg
c:\program files\etc\Scope\Help\Files\image013.jpg
c:\program files\etc\Scope\Help\Files\image014.jpg
c:\program files\etc\Scope\Help\Files\image015.jpg
c:\program files\etc\Scope\Help\Files\image016.jpg
c:\program files\etc\Scope\Help\Files\image017.emz
c:\program files\etc\Scope\Help\Files\image018.gif
c:\program files\etc\Scope\Help\Files\image019.jpg
c:\program files\etc\Scope\Help\Files\image020.jpg
c:\program files\etc\Scope\Help\Files\image021.png
c:\program files\etc\Scope\Help\Files\image022.jpg
c:\program files\etc\Scope\Help\Files\image023.png
c:\program files\etc\Scope\Help\Files\image024.jpg
c:\program files\etc\Scope\Help\Files\image025.png
c:\program files\etc\Scope\Help\Files\image026.jpg
c:\program files\etc\Scope\Help\Files\image027.png
c:\program files\etc\Scope\Help\Files\image028.jpg
c:\program files\etc\Scope\Help\Files\image029.png
c:\program files\etc\Scope\Help\Files\image030.jpg
c:\program files\etc\Scope\Help\Files\image031.png
c:\program files\etc\Scope\Help\Files\image032.jpg
c:\program files\etc\Scope\Help\Files\image033.png
c:\program files\etc\Scope\Help\Files\image034.jpg
c:\program files\etc\Scope\Help\Files\image035.png
c:\program files\etc\Scope\Help\Files\image036.jpg
c:\program files\etc\Scope\Help\Files\image037.png
c:\program files\etc\Scope\Help\Files\image038.jpg
c:\program files\etc\Scope\Help\Files\image039.png
c:\program files\etc\Scope\Help\Files\image040.jpg
c:\program files\etc\Scope\Help\Files\image041.png
c:\program files\etc\Scope\Help\Files\image042.jpg
c:\program files\etc\Scope\Help\Files\image043.png
c:\program files\etc\Scope\Help\Files\image044.jpg
c:\program files\etc\Scope\Help\Files\image045.png
c:\program files\etc\Scope\Help\Files\image046.jpg
c:\program files\etc\Scope\Help\Files\image047.png
c:\program files\etc\Scope\Help\Files\image048.jpg
c:\program files\etc\Scope\Help\Files\image049.png
c:\program files\etc\Scope\Help\Files\image050.jpg
c:\program files\etc\Scope\Help\Files\image051.png
c:\program files\etc\Scope\Help\Files\image052.jpg
c:\program files\etc\Scope\Help\Files\image053.png
c:\program files\etc\Scope\Help\Files\image054.jpg
c:\program files\etc\Scope\Help\Files\image055.png
c:\program files\etc\Scope\Help\Files\image056.jpg
c:\program files\etc\Scope\Help\Files\image057.png
c:\program files\etc\Scope\Help\Files\image058.jpg
c:\program files\etc\Scope\Help\Files\image059.png
c:\program files\etc\Scope\Help\Files\image060.jpg
c:\program files\etc\Scope\Help\Files\image061.png
c:\program files\etc\Scope\Help\Files\image062.jpg
c:\program files\etc\Scope\Help\Files\image063.png
c:\program files\etc\Scope\Help\Files\image064.jpg
c:\program files\etc\Scope\Help\Files\image065.png
c:\program files\etc\Scope\Help\Files\image066.jpg
c:\program files\etc\Scope\Help\Files\image067.png
c:\program files\etc\Scope\Help\Files\image068.jpg
c:\program files\etc\Scope\Help\Files\image069.png
c:\program files\etc\Scope\Help\Files\image070.jpg
c:\program files\etc\Scope\Help\Files\image071.png
c:\program files\etc\Scope\Help\Files\image072.jpg
c:\program files\etc\Scope\Help\Files\image073.png
c:\program files\etc\Scope\Help\Files\image074.jpg
c:\program files\etc\Scope\Help\Files\image075.png
c:\program files\etc\Scope\Help\Files\image076.jpg
c:\program files\etc\Scope\Help\Files\image077.png
c:\program files\etc\Scope\Help\Files\image078.jpg
c:\program files\etc\Scope\Help\Files\image079.png
c:\program files\etc\Scope\Help\Files\image080.jpg
c:\program files\etc\Scope\Help\Files\image081.png
c:\program files\etc\Scope\Help\Files\image082.jpg
c:\program files\etc\Scope\Help\Files\image083.png
c:\program files\etc\Scope\Help\Files\image084.jpg
c:\program files\etc\Scope\Help\Files\image085.png
c:\program files\etc\Scope\Help\Files\image086.jpg
c:\program files\etc\Scope\Help\Files\image087.png
c:\program files\etc\Scope\Help\Files\image088.jpg
c:\program files\etc\Scope\Help\Files\image089.png
c:\program files\etc\Scope\Help\Files\image090.jpg
c:\program files\etc\Scope\Help\Files\image091.png
c:\program files\etc\Scope\Help\Files\image092.jpg
c:\program files\etc\Scope\Help\Files\image093.png
c:\program files\etc\Scope\Help\Files\image094.jpg
c:\program files\etc\Scope\Help\Files\image095.png
c:\program files\etc\Scope\Help\Files\image096.jpg
c:\program files\etc\Scope\Help\Files\image097.png
c:\program files\etc\Scope\Help\Files\image098.jpg
c:\program files\etc\Scope\Help\Files\image099.png
c:\program files\etc\Scope\Help\Files\image100.jpg
c:\program files\etc\Scope\Help\Files\image101.png
c:\program files\etc\Scope\Help\Files\image102.jpg
c:\program files\etc\Scope\Help\Files\image103.png
c:\program files\etc\Scope\Help\Files\image104.jpg
c:\program files\etc\Scope\Help\Files\image105.png
c:\program files\etc\Scope\Help\Files\image106.jpg
c:\program files\etc\Scope\Help\Files\image107.png
c:\program files\etc\Scope\Help\Files\image108.jpg
c:\program files\etc\Scope\Help\Files\image109.png
c:\program files\etc\Scope\Help\Files\image110.jpg
c:\program files\etc\Scope\Help\Files\image111.png
c:\program files\etc\Scope\Help\Files\image112.jpg
c:\program files\etc\Scope\Help\Files\image113.png
c:\program files\etc\Scope\Help\Files\image114.jpg
c:\program files\etc\Scope\Help\Files\image115.png
c:\program files\etc\Scope\Help\Files\image116.jpg
c:\program files\etc\Scope\Help\Files\image117.png
c:\program files\etc\Scope\Help\Files\image118.jpg
c:\program files\etc\Scope\Help\Files\image119.png
c:\program files\etc\Scope\Help\Files\image120.jpg
c:\program files\etc\Scope\Help\Files\image121.png
c:\program files\etc\Scope\Help\Files\image122.jpg
c:\program files\etc\Scope\Help\Files\image123.png
c:\program files\etc\Scope\Help\Files\image124.jpg
c:\program files\etc\Scope\Help\Files\image125.png
c:\program files\etc\Scope\Help\Files\image126.jpg
c:\program files\etc\Scope\Help\Files\image127.png
c:\program files\etc\Scope\Help\Files\image128.jpg
c:\program files\etc\Scope\Help\Files\image129.png
c:\program files\etc\Scope\Help\Files\image130.jpg
c:\program files\etc\Scope\Help\Files\image131.png
c:\program files\etc\Scope\Help\Files\image132.jpg
c:\program files\etc\Scope\Help\Files\image133.png
c:\program files\etc\Scope\Help\Files\image134.jpg
c:\program files\etc\Scope\Help\Files\image135.png
c:\program files\etc\Scope\Help\Files\image136.jpg
c:\program files\etc\Scope\Help\Files\image137.png
c:\program files\etc\Scope\Help\Files\image138.jpg
c:\program files\etc\Scope\Help\Files\image139.png
c:\program files\etc\Scope\Help\Files\image140.jpg
c:\program files\etc\Scope\Help\Files\image141.png
c:\program files\etc\Scope\Help\Files\image142.jpg
c:\program files\etc\Scope\Help\Files\image143.png
c:\program files\etc\Scope\Help\Files\image144.jpg
c:\program files\etc\Scope\Help\Files\image145.png
c:\program files\etc\Scope\Help\Files\image146.jpg
c:\program files\etc\Scope\Help\Files\image147.png
c:\program files\etc\Scope\Help\Files\image148.jpg
c:\program files\etc\Scope\Help\Files\image149.png
c:\program files\etc\Scope\Help\Files\image150.jpg
c:\program files\etc\Scope\Help\Files\image151.png
c:\program files\etc\Scope\Help\Files\image152.jpg
c:\program files\etc\Scope\Help\Files\image153.png
c:\program files\etc\Scope\Help\Files\image154.jpg
c:\program files\etc\Scope\Help\Files\image155.png
c:\program files\etc\Scope\Help\Files\image156.jpg
c:\program files\etc\Scope\Help\Files\image157.png
c:\program files\etc\Scope\Help\Files\image158.jpg
c:\program files\etc\Scope\Help\Files\image159.png
c:\program files\etc\Scope\Help\Files\image160.jpg
c:\program files\etc\Scope\Help\Files\image161.png
c:\program files\etc\Scope\Help\Files\image162.jpg
c:\program files\etc\Scope\Help\Files\image163.png
c:\program files\etc\Scope\Help\Files\image164.jpg
c:\program files\etc\Scope\Help\Files\image165.png
c:\program files\etc\Scope\Help\Files\image166.jpg
c:\program files\etc\Scope\Help\Files\image167.png
c:\program files\etc\Scope\Help\Files\image168.jpg
c:\program files\etc\Scope\Help\Files\image169.png
c:\program files\etc\Scope\Help\Files\image170.jpg
c:\program files\etc\Scope\Help\Files\image171.png
c:\program files\etc\Scope\Help\Files\image172.jpg
c:\program files\etc\Scope\Help\Files\image173.png
c:\program files\etc\Scope\Help\Files\image174.jpg
c:\program files\etc\Scope\Help\Files\image175.png
c:\program files\etc\Scope\Help\Files\image176.jpg
c:\program files\etc\Scope\Help\Files\image177.png
c:\program files\etc\Scope\Help\Files\image178.jpg
c:\program files\etc\Scope\Help\Files\image179.png
c:\program files\etc\Scope\Help\Files\image180.jpg
c:\program files\etc\Scope\Help\Files\image181.png
c:\program files\etc\Scope\Help\Files\image182.jpg
c:\program files\etc\Scope\Help\Files\image183.png
c:\program files\etc\Scope\Help\Files\image184.jpg
c:\program files\etc\Scope\Help\Files\image185.png
c:\program files\etc\Scope\Help\Files\image186.jpg
c:\program files\etc\Scope\Help\Files\image187.png
c:\program files\etc\Scope\Help\Files\image188.jpg
c:\program files\etc\Scope\Help\Files\image189.png
c:\program files\etc\Scope\Help\Files\image190.jpg
c:\program files\etc\Scope\Help\Files\image191.png
c:\program files\etc\Scope\Help\Files\image192.jpg
c:\program files\etc\Scope\Help\Files\image193.png
c:\program files\etc\Scope\Help\Files\image194.jpg
c:\program files\etc\Scope\Help\Files\image195.png
c:\program files\etc\Scope\Help\Files\image196.jpg
c:\program files\etc\Scope\Help\Files\image197.png
c:\program files\etc\Scope\Help\Files\image198.jpg
c:\program files\etc\Scope\Help\Files\image199.png
c:\program files\etc\Scope\Help\Files\image200.jpg
c:\program files\etc\Scope\Help\Files\image201.png
c:\program files\etc\Scope\Help\Files\image202.jpg
c:\program files\etc\Scope\Help\Files\oledata.mso
c:\program files\etc\Scope\Help\help.htm
c:\program files\etc\Scope\Help\ScopeGuide.htm
c:\program files\etc\Scope\layouts.lay
c:\program files\etc\Scope\m52xdrv.dll
c:\program files\etc\Scope\m570drv.dll
c:\program files\etc\Scope\m590drv.dll
c:\program files\etc\Scope\m770drv.dll
c:\program files\etc\Scope\modules\adjustcursors.dll
c:\program files\etc\Scope\modules\aminusb.dll
c:\program files\etc\Scope\modules\aplusb.dll
c:\program files\etc\Scope\modules\FFT.dll
c:\program files\etc\Scope\modules\IFT.dll
c:\program files\etc\Scope\modules\InvA.dll
c:\program files\etc\Scope\modules\InvB.dll
c:\program files\etc\Scope\modules\InvVoltageA.dll
c:\program files\etc\Scope\modules\InvVoltageB.dll
c:\program files\etc\Scope\modules\phase.dll
c:\program files\etc\Scope\modules\wanal.dll
c:\program files\etc\Scope\modules\XOnY.dll
c:\program files\etc\Scope\printdll.dll
c:\program files\etc\Scope\readme.txt
c:\program files\etc\Scope\scope.exe
c:\program files\etc\Scope\Settings.fry
c:\program files\etc\Scope\Settings.xml
c:\program files\etc\Scope\unins000.dat
c:\program files\etc\Scope\unins000.exe
c:\programdata\Roaming
C:\System
c:\windows\IsUn0405.exe
c:\windows\iun6002.exe
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\system32\binisext.dll
c:\windows\system32\conarapp.dll
c:\windows\system32\matatip.dll
c:\windows\system32\ntirlan.dll
c:\windows\system32\sapinxml.exe
c:\windows\system32\unisoocx.dll
c:\windows\winhelp.ini
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_WINDRIVER
-------\Service_WinDriver
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-13 do 2011-11-13 )))))))))))))))))))))))))))))))
.
.
2011-11-13 20:59 . 2011-11-13 20:59 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{03079336-F766-424F-AFB6-10E92A39FCB4}\offreg.dll
2011-11-13 20:51 . 2011-11-13 21:02 -------- d-----w- c:\users\alvr\AppData\Local\temp
2011-11-13 20:51 . 2011-11-13 20:51 -------- d-----w- c:\users\Guest\AppData\Local\temp
2011-11-13 20:51 . 2011-11-13 20:51 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-11-13 19:18 . 2011-11-13 19:20 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-11-13 19:18 . 2011-08-31 16:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-13 16:49 . 2011-11-13 16:49 -------- d-----w- C:\rsit
2011-11-13 16:49 . 2011-11-13 16:49 -------- d-----w- c:\program files\trend micro
2011-11-12 15:58 . 2011-11-12 15:58 -------- d-----w- c:\programdata\VS
2011-11-11 07:16 . 2011-10-07 03:48 6668624 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{03079336-F766-424F-AFB6-10E92A39FCB4}\mpengine.dll
2011-11-09 17:51 . 2011-10-17 11:41 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2011-11-09 17:51 . 2011-09-30 15:57 707584 ----a-w- c:\program files\Common Files\System\wab32.dll
2011-11-09 17:51 . 2011-09-20 21:02 905088 ----a-w- c:\windows\system32\drivers\tcpip.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-12 16:03 . 2011-04-22 09:52 84448 ----a-w- c:\programdata\Microsoft\VisualStudio\10.0\1033\ResourceCache.dll
2011-10-11 15:41 . 2011-06-05 09:55 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-12 08:57 . 2011-09-12 08:57 0 ----a-w- c:\windows\system32\drivers\vipehsub.sys
2011-09-06 13:30 . 2011-10-12 07:16 2043392 ----a-w- c:\windows\system32\win32k.sys
2011-09-01 02:35 . 2011-10-12 07:23 1798144 ----a-w- c:\windows\system32\jscript9.dll
2011-09-01 02:28 . 2011-10-12 07:23 1126912 ----a-w- c:\windows\system32\wininet.dll
2011-09-01 02:22 . 2011-10-12 07:23 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-08-28 17:28 . 2011-08-28 17:28 231248 ----a-w- c:\windows\system32\drivers\truecrypt.sys
2011-08-25 16:15 . 2011-10-12 07:16 555520 ----a-w- c:\windows\system32\UIAutomationCore.dll
2011-08-25 16:14 . 2011-10-12 07:16 563712 ----a-w- c:\windows\system32\oleaut32.dll
2011-08-25 16:14 . 2011-10-12 07:16 238080 ----a-w- c:\windows\system32\oleacc.dll
2011-08-25 13:31 . 2011-10-12 07:16 4096 ----a-w- c:\windows\system32\oleaccrc.dll
2011-08-22 07:47 . 2011-08-22 07:48 472808 ----a-w- c:\windows\system32\deployJava1.dll
2008-12-10 12:50 . 2008-12-10 12:50 118784 ----a-w- c:\program files\internet explorer\plugins\LV86ActiveXControl.dll
2009-10-07 14:11 . 2009-10-07 14:11 158720 ----a-w- c:\program files\internet explorer\plugins\LV90ActiveXControl.dll
2011-06-16 04:30 . 2011-07-09 04:29 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{081230F8-EA50-42A9-983C-D22ABC2EED3B}"= "c:\program files\FreeRIP3\toolband.dll" [2010-09-09 286720]
.
[HKEY_CLASSES_ROOT\clsid\{081230f8-ea50-42a9-983c-d22abc2eed3b}]
[HKEY_CLASSES_ROOT\ToolBand.ToolBandObj.1]
[HKEY_CLASSES_ROOT\TypeLib\{0097E905-1DFB-4A9C-9871-A4F95FD58945}]
[HKEY_CLASSES_ROOT\ToolBand.ToolBandObj]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{081230F8-EA50-42A9-983C-D22ABC2EED3B}"= "c:\program files\FreeRIP3\toolband.dll" [2010-09-09 286720]
.
[HKEY_CLASSES_ROOT\clsid\{081230f8-ea50-42a9-983c-d22abc2eed3b}]
[HKEY_CLASSES_ROOT\ToolBand.ToolBandObj.1]
[HKEY_CLASSES_ROOT\TypeLib\{0097E905-1DFB-4A9C-9871-A4F95FD58945}]
[HKEY_CLASSES_ROOT\ToolBand.ToolBandObj]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-09-02 13351304]
"ICQ"="c:\program files\ICQ7.5\ICQ.exe" [2011-08-01 124480]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-05-14 61440]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2009-02-18 177720]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-02-06 1430824]
"WirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2009-03-10 506936]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2010-02-26 2140880]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-12-17 186904]
"accrdsub"="c:\program files\ActivIdentity\ActivClient\accrdsub.exe" [2007-11-27 298536]
"CognizanceTS"="c:\progra~1\HEWLET~1\IAM\Bin\ASTSVCC.dll" [2009-01-28 24848]
"HPCam_Menu"="c:\program files\Hewlett-Packard\HP Webcam\MUITransfer\MUIStartMenu.exe" [2009-02-25 218408]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2008-12-04 75016]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2009-05-18 1314816]
"NI Background Service"="c:\program files\National Instruments\Shared\Update Service\BackgroundService.exe" [2009-08-25 77824]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-09-07 37296]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
"SiemensAutomationFileStorage"="c:\program files\Siemens\Automation\Portal V10\Bin\Siemens.Automation.ObjectFrame.FileStorage.Server.exe" [2009-11-17 364544]
"HTC Sync Loader"="c:\program files\HTC\HTC Sync 3.0\htcUPCTLoader.exe" [2011-01-27 585728]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2010-11-30 113664]
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-3-1 789032]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DeviceNP]
2008-08-06 13:23 69632 ----a-w- c:\windows\System32\DeviceNP.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\APSHook.dll c:\windows\System32\APSHook.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate1cc09a1fdc34a0b;Služba Google Update (gupdate1cc09a1fdc34a0b);c:\program files\Google\Update\GoogleUpdate.exe [2010-12-06 136176]
R2 MAC_MOT;MAC_MOT;c:\windows\System32\drivers\MAC_MOT.SYS [x]
R2 MLPTDR_N;MLPTDR_N;c:\windows\system32\MLPTDR_N.sys [2003-07-19 18848]
R2 STM Parallel Driver;STM Parallel Driver;c:\windows\system32\drivers\parstm.sys [2003-07-09 43776]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv.sys [2008-08-06 32256]
R3 Easysocket;MITSUBISHI Easysocket Driver;c:\windows\system32\Drivers\ECUsbd.sys [2007-07-25 17920]
R3 em52x;EM52x driver for ETC EM520 series;c:\windows\system32\Drivers\em52x.sys [2009-06-16 20584]
R3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\system32\flcdlock.exe [2008-08-06 349432]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2010-12-06 136176]
R3 HP ProtectTools Service;HP ProtectTools Service;c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [2009-02-11 45056]
R3 HTCAND32;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [2009-06-09 24576]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2010-06-23 23040]
R3 silabenm;JABLOTRON serial interface Serial Port Enumerator Driver;c:\windows\system32\DRIVERS\silabenm.sys [2007-09-04 17920]
R3 silabser;JABLOTRON serial interface Driver;c:\windows\system32\DRIVERS\silabser.sys [2007-09-04 58368]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S0 SafeBoot;SafeBoot; [x]
S0 SbAlg;SbAlg; [x]
S0 SbFsLock;SbFsLock; [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-02-26 114984]
S1 RsvLock;RsvLock; [x]
S2 accoca;ActivClient Middleware Service;c:\program files\ActivIdentity\ActivClient\accoca.exe [2007-11-27 185896]
S2 almservice;Automation License Manager Service;c:\program files\Common Files\Siemens\sws\almsrv\almsrvx.exe [2009-04-23 1200128]
S2 ASBroker;Logon Session Broker;c:\windows\System32\svchost.exe [2008-01-21 21504]
S2 ASChannel;Local Communication Channel;c:\windows\System32\svchost.exe [2008-01-21 21504]
S2 ATService;AuthenTec Fingerprint Service;c:\program files\Fingerprint Sensor\AtService.exe [2008-10-03 1185016]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-02-26 133512]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2010-02-26 810120]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2010-02-26 41312]
S2 FileOpenManagerSvc;FileOpenManagerSvc;c:\programdata\FileOpen\Services\FileOpenManagerSvc32.exe [2011-04-18 211840]
S2 hasplms;HASP License Manager;c:\windows\system32\hasplms.exe -run [x]
S2 HpFkCryptService;Drive Encryption Service;c:\program files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2008-10-01 256544]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2008-08-27 24880]
S2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [2010-09-06 247096]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
S2 MSSQL$WINCCPLUS;SQL Server (WINCCPLUS);c:\program files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
S2 PassThru Service;Internet Pass-Through Service;c:\program files\HTC\Internet Pass-Through\PassThruSvr.exe [2010-09-16 80896]
S2 s7oiehsx;SIMATIC IEPG Help Service;c:\program files\Common Files\Siemens\S7IEPG\s7oiehsx.exe [2010-06-07 1576072]
S2 S7opcsrtx;PROFINET IO RT-Protocol (LLDP);c:\windows\system32\DRIVERS\s7opcsrtx.sys [2010-06-07 31744]
S2 s7snsrtx;PROFINET IO RT-Protocol V1.0;c:\windows\system32\DRIVERS\s7snsrtx.sys [2009-02-24 73088]
S2 S7TraceServiceX;S7TraceServiceX;c:\program files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceServiceX.exe [2010-06-07 240776]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-03-11 29736]
S3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-12-04 222512]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-08-31 22216]
S3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\NETw5v32.sys [2009-03-04 4232704]
S3 VPPP;DrayTek Virtual PPP Adapter;c:\windows\system32\DRIVERS\VPPP.sys [2010-03-31 31696]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*Deregistered* - FileOpenWebPublisherScreenHookDriver
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ
Bioscrypt REG_MULTI_SZ ASBroker ASChannel
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-08-20 11:24 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2011-11-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-12-06 21:48]
.
2011-11-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-12-06 21:48]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: &FreeRIP Search - c:\program files\FreeRIP3\toolband.dll/MENUSEARCH.HTM
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {{7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - c:\program files\ICQ7.5\ICQ.exe
Trusted Zone: unmz.cz\www.csnonline
TCP: DhcpNameServer = 78.157.167.7 78.157.167.57
DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} - hxxp://80.82.144.83/activex/AMC.cab
FF - ProfilePath - c:\users\alvr\AppData\Roaming\Mozilla\Firefox\Profiles\yslq8mya.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.1.7&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-Run-Nokia FastStart - c:\program files\Nokia\Nokia Music\NokiaMusic.exe
AddRemove-Adobe Photoshop 7.0 CE - c:\windows\ISUN0405.EXE
AddRemove-JABLCOMM&16D6&0001 - c:\windows\system32\Silabs\DriverUninstaller.exe VCP CP210x Cardinal\JABLCOMM&16D6&0001
AddRemove-scope_is1 - c:\program files\ETC\Scope\unins000.exe
AddRemove-{07D20D73-A857-47D0-8804-CA5771903DA4} - c:\users\alvr\AppData\Local\{F66F5828-6EF5-4CEE-93A1-CB534D874C67}\IconDeveloper_Setup.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-13 22:03
Windows 6.0.6002 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(2196)
c:\program files\WIDCOMM\Bluetooth Software\btmmhook.dll
c:\program files\WIDCOMM\Bluetooth Software\btncopy.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\WLANExt.exe
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\AEADISRV.EXE
c:\program files\ActivIdentity\ActivClient\acevents.exe
c:\program files\WIDCOMM\Bluetooth Software\btwdins.exe
c:\program files\Common Files\Siemens\ALMPanelPlugin\ALMPanelPlugin.exe
c:\program files\Intel\WiFi\bin\EvtEng.exe
c:\windows\system32\hasplms.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\windows\system32\lkads.exe
c:\windows\system32\lktsrv.exe
c:\program files\Common Files\Nero\Nero BackItUp 4\NBService.exe
c:\program files\National Instruments\Shared\Security\nidmsrv.exe
c:\windows\system32\nisvcloc.exe
c:\windows\system32\IoctlSvc.exe
c:\program files\Common Files\Intel\WirelessCommon\RegSrvc.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\program files\Hewlett-Packard\IAM\Bin\AsGHost.exe
c:\program files\Windows Media Player\wmpnscfg.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\ActivIdentity\ActivClient\acevents.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\program files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
c:\program files\WIDCOMM\Bluetooth Software\BtStackServer.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\program files\Hewlett-Packard\Shared\hpqToaster.exe
c:\program files\Skype\Plugin Manager\skypePM.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
c:\program files\Common Files\Java\Java Update\jucheck.exe
.
**************************************************************************
.
Celkový čas: 2011-11-13 22:17:17 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-11-13 21:17
.
Před spuštěním: Volných bajtů: 116 218 961 920
Po spuštění: Volných bajtů: 122 500 243 456
.
- - End Of File - - 57709BB4674ED26061F44FB4EF940218
Re: zabrzdeny NTB, caste padani ve sleep rezimu, atd...
Combofix smazal tuto složku, znal jste ji? c:\program files\etc
Ted to s pc vypadá jak?
Ted to s pc vypadá jak?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: zabrzdeny NTB, caste padani ve sleep rezimu, atd...
Ano, byl to SW pro osciloskop od slovenske firmy ETC. Nejde ho ted spustit.
Re: zabrzdeny NTB, caste padani ve sleep rezimu, atd...
Navic se samovolne vypinani ve sleep modu nespravilo. Problem porad pretrvava. To bude nejspis HW problem, ze?
Re: zabrzdeny NTB, caste padani ve sleep rezimu, atd...
Ten program budete muset přeinstalovat, combofix ho vymazal, omlouvám se.
Zeptám se kolegy na to vypínání. Jinak pc už zbržděný není?
Zeptám se kolegy na to vypínání. Jinak pc už zbržděný není?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: zabrzdeny NTB, caste padani ve sleep rezimu, atd...
Program znovu nainstaluji, nic se nedeje. Mozna k nejakemu zrychleni doslo, ale minimalne.Zadna extra zmena. Nejkritictejsi je start systemu, ale je fakt, ze tam uz mam hodne programu. Nasla se z tech logu najaka zrada, vir, a podobne? Nebo to spis vypada na casem zaneseny a unaveny system? Asi by to uz chtelo cele reinstalovat, ze?
Re: zabrzdeny NTB, caste padani ve sleep rezimu, atd...
Dobrý den, můžete mi upnout soubory ze složky C:\Windows\Minidump na www.leteckaposta.cz?
Pokud jste s naší pomocí spokojeni, můžete nás podpořit. Informace zde
Re: zabrzdeny NTB, caste padani ve sleep rezimu, atd...
Podívejte se na výrobní štítek notebooku a napište mi, jaký WiFi adaptér je uvnitř.
Naposledy upravil(a) MiliNess dne 14 lis 2011 17:49, celkem upraveno 2 x.
Pokud jste s naší pomocí spokojeni, můžete nás podpořit. Informace zde
Re: zabrzdeny NTB, caste padani ve sleep rezimu, atd...
prikladam fotku
- Přílohy
-
- IMAG0233.jpg (289.02 KiB) Zobrazeno 4826 x
Přispějete na provoz fóra?