Nelze ukončit IE8

[emcos]

Logfile of random's system information tool 1.08 (written by random/random)
Run by Miloš at 2012-01-09 22:01:20
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 282 GB (59%) free of 477 GB
Total RAM: 3326 MB (70% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:01:25, on 9.1.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\USB Safely Remove\USBSRService.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\SYMANT~1\vptray.exe
C:\WINDOWS\system32\bgsvcgen.exe
C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe
C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\USB Safely Remove\USBSafelyRemove.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\WINDOWS\System32\DVDRAMSV.exe
C:\WINDOWS\system32\RAMAsst.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\WINDOWS\system32\hasplms.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
C:\WINDOWS\system32\IoctlSvc.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\Clarus\Samsung SecretZone\SZAssistSVC.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Programy\RSIT.exe
C:\Program Files\trend micro\Miloš.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuze.dll
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: RewardsArcade - {597A9974-8CB0-4f41-B61F-ED065738A397} - C:\Program Files\RewardsArcade\RewardsArcade.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Vuze Remote - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuze.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuze.dll
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\\vptray.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [TrayServer] C:\Program Files\MAGIX\Movie_Edit_Pro_15_silver\TrayServer.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [USB Safely Remove] C:\Program Files\USB Safely Remove\USBSafelyRemove.exe /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: RAMASST.lnk = C:\WINDOWS\system32\RAMAsst.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Data aplikací\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube Download - C:\Documents and Settings\Miloš\Data aplikací\DVDVideoSoftIEHelpers\youtubedownload.htm
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Documents and Settings\Miloš\Data aplikací\DVDVideoSoftIEHelpers\youtubetomp3.htm
O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.autocont.cz
O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://support.microsoft.com/OAS/ActiveX/MSDcode.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... oader5.cab
O16 - DPF: {4FEE6316-7B6F-4A6C-BD4E-4157C59A9E9D} (Ovi maps browser plugin) - http://static.s2g.gate5.de/ovi_maps/Ovi ... .12.11.cab
O16 - DPF: {6D2EF4B4-CB62-4C0B-85F3-B79C236D702C} (ContactExtractor Class) - http://www.facebook.com/controls/contactx.dll
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 5424585265
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos-be ... canner.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... ader55.cab
O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} (AxisMediaControlEmb Class) - http://62.168.0.189/activex/AMC.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Autodesk Licensing Service - Autodesk, Inc. - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: AVerRemote - AVerMedia - C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe
O23 - Service: AVerScheduleService - Unknown owner - C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe
O23 - Service: AVerUpdateServer - AVerMedia TECHNOLOGIES, Inc. - C:\Program Files\AVerMedia\AVerUpdate\AVerUpdateServer.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\System32\DVDRAMSV.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Sentinel HASP License Manager (hasplms) - SafeNet Inc. - C:\WINDOWS\system32\hasplms.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: O&O Defrag Agent (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: SnugTV Service - AVerMedia Technologies, Inc. - C:\Program Files\SnugTV\SnugTV Station\AMAServer.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: SecretZone Assist Service (SZASSIST) - Clarus, Inc. - C:\Program Files\Clarus\Samsung SecretZone\SZAssistSVC.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: USB Safely Remove Assistant (USBSafelyRemoveService) - Unknown owner - C:\Program Files\USB Safely Remove\USBSRService.exe

--
End of file - 12588 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GlaryInitialize.job
C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-4036164967-4113303836-1484400983-1005.job
C:\WINDOWS\tasks\expressburnShakeIcon.job
C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-4036164967-4113303836-1484400983-1005.job
C:\WINDOWS\tasks\Norton Security Scan for Miloš.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-08-04 1586472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-11-12 414416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{597A9974-8CB0-4f41-B61F-ED065738A397}]
RewardsArcade - C:\Program Files\RewardsArcade\RewardsArcade.dll [2011-11-03 528216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-03-26 256112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2011-03-26 761840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
Vuze Remote Toolbar - C:\Program Files\Vuze_Remote\prxtbVuze.dll [2011-05-09 176936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2011-03-26 458736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-11-24 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-11-24 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-03-26 256112]
{ba14329e-9550-4989-b3f2-9732e92d17cc} - Vuze Remote Toolbar - C:\Program Files\Vuze_Remote\prxtbVuze.dll [2011-05-09 176936]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"vptray"=C:\PROGRA~1\SYMANT~1\\vptray.exe [2006-07-17 125072]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-12-09 18063872]
"OpwareSE4"=C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe [2007-02-04 79400]
"ccApp"=C:\Program Files\Common Files\Symantec Shared\ccApp.exe [2006-03-24 53408]
"TrayServer"=C:\Program Files\MAGIX\Movie_Edit_Pro_15_silver\TrayServer.exe [2008-11-13 90112]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2011-07-05 421888]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"USB Safely Remove"=C:\Program Files\USB Safely Remove\USBSafelyRemove.exe [2010-12-25 1794392]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
RAMASST.lnk - C:\WINDOWS\system32\RAMAsst.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2008-08-01 143360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\NavLogon]
C:\WINDOWS\system32\NavLogon.dll [2006-07-17 43664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
WgaLogon.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\totalcmd\TOTALCMD.EXE"="C:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Program Files\Foxit Software\PDF Editor\PDFEdit.exe"="C:\Program Files\Foxit Software\PDF Editor\PDFEdit.exe:*:Enabled:Foxit PDF Editor, the first REAL editor for PDF files!"
"C:\Program Files\Real\RealPlayer\RecordingManager.exe"="C:\Program Files\Real\RealPlayer\RecordingManager.exe:*:Enabled:RealNetworks Download and Record Manager"
"C:\Program Files\Java\JRE6\BIN\java.exe"="C:\Program Files\Java\JRE6\BIN\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe"="C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater"
"C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe"="C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process "
"C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe"="C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe:*:Enabled:Nokia Ovi Suite 2"
"C:\Program Files\SnugTV\SnugTV Station\ConfigMaster.exe"="C:\Program Files\SnugTV\SnugTV Station\ConfigMaster.exe:*:Enabled:SnugTV Configuration Master"
"C:\Program Files\SnugTV\SnugTV Station\ConfigWizard.exe"="C:\Program Files\SnugTV\SnugTV Station\ConfigWizard.exe:*:Enabled:SnugTV Configuration Wizard"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\EPLAN\Electric P8\1.9.11\BIN\W3u.exe"="C:\Program Files\EPLAN\Electric P8\1.9.11\BIN\W3u.exe:*:Enabled:EPLAN W3"
"C:\WINDOWS\System32\hasplms.exe"="C:\WINDOWS\System32\hasplms.exe:*:Enabled:HASP License Manager"
"C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe"="C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit"
"C:\Program Files\ICQ7.6\ICQ.exe"="C:\Program Files\ICQ7.6\ICQ.exe:*:Enabled:ICQ7.6"
"C:\Program Files\SnugTV\SnugTV Station\AMAServer.exe"="C:\Program Files\SnugTV\SnugTV Station\AMAServer.exe:*:Enabled:SnugTV Service"
"C:\Program Files\Vuze\Azureus.exe"="C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\ICQ7.6\ICQ.exe"="C:\Program Files\ICQ7.6\ICQ.exe:*:Enabled:ICQ7.6"

======File associations======

.scr - open - "C:\WINDOWS\notepad.exe" "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 months======

2012-01-09 22:01:20 ----D---- C:\rsit
2012-01-08 16:28:52 ----D---- C:\Program Files\RewardsArcade
2012-01-08 16:27:46 ----D---- C:\Program Files\Conduit
2012-01-08 16:27:45 ----D---- C:\Program Files\Vuze_Remote
2012-01-08 09:14:25 ----D---- C:\Program Files\cGPSmapper
2012-01-05 22:26:17 ----D---- C:\Nová složka
2012-01-02 19:47:18 ----D---- C:\Program Files\Amazon
2011-12-15 23:41:21 ----HD---- C:\WINDOWS\$NtUninstallKB2639417$
2011-12-15 23:41:16 ----HD---- C:\WINDOWS\$NtUninstallKB2624667$
2011-12-15 23:34:32 ----HD---- C:\WINDOWS\$NtUninstallKB2633952$
2011-12-15 23:34:29 ----HD---- C:\WINDOWS\$NtUninstallKB2619339$
2011-12-15 23:34:25 ----HD---- C:\WINDOWS\$NtUninstallKB2618451$
2011-12-15 23:34:17 ----HD---- C:\WINDOWS\$NtUninstallKB2620712$
2011-12-15 23:34:10 ----HD---- C:\WINDOWS\$NtUninstallKB2633171$
2011-12-15 21:13:56 ----SHD---- C:\Recycled
2011-12-15 20:43:38 ----A---- C:\DeQuarantine.txt
2011-12-14 18:05:40 ----ASH---- C:\hiberfil.sys
2011-12-14 18:02:53 ----D---- C:\WINDOWS\temp
2011-12-14 17:49:57 ----A---- C:\WINDOWS\ntbtlog.txt
2011-12-10 16:27:25 ----D---- C:\Program Files\FotoSketcher

======List of files/folders modified in the last 1 months======

2012-01-09 11:10:16 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-01-08 08:07:04 ----A---- C:\WINDOWS\NeroDigital.ini
2011-12-15 23:41:20 ----A---- C:\WINDOWS\imsins.BAK
2011-12-15 23:34:44 ----A---- C:\WINDOWS\system32\MRT.exe
2011-12-15 20:56:02 ----A---- C:\WINDOWS\system.ini
2011-12-14 23:05:24 ----A---- C:\WINDOWS\wincmd.ini
2011-12-14 23:05:04 ----A---- C:\WINDOWS\wcx_ftp.ini
2011-12-14 17:37:00 ----RASH---- C:\boot.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2011-03-04 45648]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-01-18 77696]
R1 AmgHips;AmgHips; \??\C:\WINDOWS\system32\Drivers\AmgHips.sys []
R1 cdrbsdrv;cdrbsdrv; C:\WINDOWS\system32\drivers\cdrbsdrv.sys [2005-05-11 32256]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 meiudf;meiudf; C:\WINDOWS\System32\Drivers\meiudf.sys [2006-09-20 113488]
R1 PCLEPCI;PCLEPCI; \??\C:\WINDOWS\system32\drivers\pclepci.sys []
R1 SAVRT;SAVRT; \??\C:\Program Files\Symantec AntiVirus\savrt.sys []
R1 SAVRTPEL;SAVRTPEL; \??\C:\Program Files\Symantec AntiVirus\Savrtpel.sys []
R1 StarOpen;StarBurn StarOpen Driver; \??\C:\WINDOWS\system32\drivers\StarOpen.sys []
R1 SYMTDI;SYMTDI; C:\WINDOWS\System32\Drivers\SYMTDI.SYS [2006-01-24 195776]
R2 aksfridge;aksfridge; \??\C:\WINDOWS\system32\drivers\aksfridge.sys []
R2 hardlock;hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys []
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 ASAPIW2k;ASAPIW2K; C:\WINDOWS\system32\drivers\ASAPIW2k.sys [2004-03-10 11264]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-08-01 3266560]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2008-05-21 93696]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-12-11 4959232]
R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2005-01-28 171008]
R3 mdf15;mdf15; \??\C:\Program Files\Clarus\Samsung SecretZone\mdf15.sys []
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 mvd21;mvd21; \??\C:\Program Files\Clarus\Samsung SecretZone\mvd21.sys []
R3 NAVENG;NAVENG; \??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20120107.009\naveng.sys []
R3 NAVEX15;NAVEX15; \??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20120107.009\navex15.sys []
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2009-02-25 47360]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-01-03 105856]
R3 SymEvent;SymEvent; \??\C:\Program Files\Symantec\SYMEVENT.SYS []
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 AVerAF35;AVerMedia A867 USB DVB-T; C:\WINDOWS\System32\Drivers\AVerAF35.sys [2010-01-29 477312]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys []
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-14 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2010-01-21 18048]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2009-12-30 22016]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf.sys [2010-05-28 14896]
S3 Ser2pl;Prolific Serial port driver; C:\WINDOWS\system32\DRIVERS\ser2pl.sys [2004-12-08 42752]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 SPBBCDrv;SPBBCDrv; \??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys []
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 SYMREDRV;SYMREDRV; C:\WINDOWS\System32\Drivers\SYMREDRV.SYS [2006-01-24 24768]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2009-12-30 7936]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-14 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2009-12-30 7936]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-01-18 83328]
S3 XHASP;XHASP; \??\c:\windows\system32\drivers\XHASP.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-08-01 573440]
R2 bgsvcgen;B's Recorder GOLD Library General Service; C:\WINDOWS\system32\bgsvcgen.exe [2006-09-22 118784]
R2 Capture Device Service;Capture Device Service; C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [2007-03-06 198168]
R2 ccEvtMgr;Symantec Event Manager; C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe [2006-03-24 192160]
R2 ccSetMgr;Symantec Settings Manager; C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe [2006-03-24 169632]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 DefWatch;Symantec AntiVirus Definition Watcher; C:\Program Files\Symantec AntiVirus\DefWatch.exe [2006-07-17 31376]
R2 DVD-RAM_Service;DVD-RAM_Service; C:\WINDOWS\System32\DVDRAMSV.exe [2006-09-20 110592]
R2 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-12-13 651720]
R2 hasplms;Sentinel HASP License Manager; C:\WINDOWS\system32\hasplms.exe [2010-09-27 4180576]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-11-12 153376]
R2 LiveUpdate;LiveUpdate; C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE [2006-06-01 2045632]
R2 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\WINDOWS\system32\IoctlSvc.exe [2006-12-19 81920]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo.exe [2009-11-29 244904]
R2 SNDSrvc;Symantec Network Drivers Service; C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe [2006-01-24 214720]
R2 Symantec AntiVirus;Symantec AntiVirus; C:\Program Files\Symantec AntiVirus\Rtvscan.exe [2006-07-17 1817744]
R2 SZASSIST;SecretZone Assist Service; C:\Program Files\Clarus\Samsung SecretZone\SZAssistSVC.exe [2010-07-30 90112]
R2 USBSafelyRemoveService;USB Safely Remove Assistant; C:\Program Files\USB Safely Remove\USBSRService.exe [2010-12-25 246616]
R2 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 IISADMIN;Správa služby IIS; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2008-07-31 593920]
S3 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2007-12-06 660768]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2009-02-19 74360]
S3 AVerRemote;AVerRemote; C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe [2010-04-27 348160]
S3 AVerScheduleService;AVerScheduleService; C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe [2009-12-06 397312]
S3 AVerUpdateServer;AVerUpdateServer; C:\Program Files\AVerMedia\AVerUpdate\AVerUpdateServer.exe [2011-01-06 168448]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe [2005-11-17 1527900]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 OODefragAgent;O&O Defrag Agent; C:\Program Files\OO Software\Defrag\oodag.exe [2011-01-25 2336072]
S3 SavRoam;SAVRoam; C:\Program Files\Symantec AntiVirus\SavRoam.exe [2006-07-17 118928]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-01-26 652800]
S3 SnugTV Service;SnugTV Service; C:\Program Files\SnugTV\SnugTV Station\AMAServer.exe [2011-01-05 570880]
S3 SPBBCSvc;SPBBCSvc; C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe [2006-04-11 1160848]
S3 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2007-03-03 67056]
S3 W3SVC;Publikování na webu; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2008-06-08 877864]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-06-24 537896]

-----------------EOF-----------------

[motji]

Dobrý večer
Nejde ukončit vůbec?

Stahněte MBAM http://www.viry.cz/forum/viewtopic.php?f=29&t=115222
-Nainstalujte,dejte úplný sken

NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

[emcos]

Občas nelze uzavřít okno IE8, nutno pak uzavřít pomocí Správce úloh.

Přikládám log:

Malwarebytes' Anti-Malware
www.malwarebytes.org

Verze databáze:

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

11.1.2012 19:02:26
mbam-log-2012-01-11 (19-02-26).txt

Typ: Úplná kontrola (C:\|D:\|)
Kontrolované objekty: 735057
Uplynulý čas: 1 hodin, 59 minut, 5 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

[motji]

Nevysledoval jste, kdy nejde zavřít?

[emcos]

Okno browsweru IE8 nejde ukončit po otevření 2. další stránky (po nějaké době).

[motji]

Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix

[emcos]

ComboFix 12-01-12.02 - Miloš 12.01.2012 20:39:40.8.4 - FAT32x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.3326.2573 [GMT 1:00]
Spuštěný z: c:\documents and settings\Miloš\Plocha\ComboFix.exe
Použité ovládací přepínače :: /u
AV: Symantec AntiVirus Corporate Edition *Disabled/Updated* {FB06448E-52B8-493A-90F3-E43226D3305C}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\RewardsArcade
c:\program files\RewardsArcade\appAPIinternalWrapper.js
c:\program files\RewardsArcade\fb.js
c:\program files\RewardsArcade\jquery.js
c:\program files\RewardsArcade\json.js
c:\program files\RewardsArcade\RewardsArcade.dll
c:\program files\RewardsArcade\RewardsArcade.exe
c:\program files\RewardsArcade\Uninstall.exe
c:\program files\RewardsArcade\UserConfirmation.exe
c:\windows\msmqinst.log
c:\windows\system32\TZLog.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-12-12 do 2012-01-12 )))))))))))))))))))))))))))))))
.
.
2012-01-12 19:26 . 2012-01-12 19:26 -------- d-----w- C:\FOUND.001
2012-01-12 17:53 . 2012-01-12 17:53 -------- d-----w- C:\FOUND.000
2012-01-11 20:29 . 2012-01-11 20:29 -------- d-----w- c:\program files\Ask.com
2012-01-11 20:29 . 2012-01-11 20:29 -------- d-----w- c:\documents and settings\Miloš\Local Settings\Data aplikací\AskToolbar
2012-01-11 20:29 . 2012-01-11 20:29 -------- d-----w- c:\documents and settings\Miloš\Local Settings\Data aplikací\APN
2012-01-09 21:01 . 2012-01-09 21:01 -------- d-----w- C:\rsit
2012-01-08 15:28 . 2012-01-08 15:28 -------- d-----w- c:\documents and settings\Miloš\Local Settings\Data aplikací\RewardsArcade
2012-01-08 15:27 . 2012-01-08 15:27 -------- d-----w- c:\program files\Conduit
2012-01-08 15:27 . 2012-01-08 15:27 -------- d-----w- c:\documents and settings\Miloš\Local Settings\Data aplikací\Vuze_Remote
2012-01-08 15:27 . 2012-01-08 15:27 -------- d-----w- c:\program files\Vuze_Remote
2012-01-08 08:14 . 2012-01-08 08:14 -------- d-----w- c:\program files\cGPSmapper
2012-01-05 21:26 . 2012-01-05 21:26 -------- d-----w- C:\Nová složka
2012-01-02 18:47 . 2012-01-02 18:47 -------- d-----w- c:\documents and settings\Miloš\Local Settings\Data aplikací\Amazon
2012-01-02 18:47 . 2012-01-02 18:47 -------- d-----w- c:\program files\Amazon
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-25 21:57 . 1979-12-31 23:00 293376 ----a-w- c:\windows\system32\winsrv.dll
2011-11-23 14:40 . 1980-01-01 00:00 1859584 ----a-w- c:\windows\system32\win32k.sys
2011-11-20 06:12 . 1979-12-31 23:00 60416 ----a-w- c:\windows\system32\packager.exe
2011-11-04 19:13 . 1979-12-31 23:00 916992 ----a-w- c:\windows\system32\wininet.dll
2011-11-04 19:13 . 1979-12-31 23:00 43520 ------w- c:\windows\system32\licmgr10.dll
2011-11-04 19:13 . 1979-12-31 23:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-11-04 11:24 . 1979-12-31 23:00 385024 ------w- c:\windows\system32\html.iec
2011-11-03 15:29 . 1979-12-31 23:00 386560 ----a-w- c:\windows\system32\qdvd.dll
2011-11-03 15:29 . 1979-12-31 23:00 1294848 ----a-w- c:\windows\system32\quartz.dll
2011-11-01 16:07 . 1979-12-31 23:00 1288192 ----a-w- c:\windows\system32\ole32.dll
2011-10-28 07:31 . 2011-10-28 07:31 25248 ----a-w- c:\windows\system32\drivers\AmgHips.sys
2011-10-28 05:32 . 1979-12-31 23:00 33280 ----a-w- c:\windows\system32\csrsrv.dll
2011-10-26 10:50 . 2008-04-14 08:06 2029056 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-10-26 10:50 . 2008-04-14 08:06 2150912 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-10-18 11:13 . 1979-12-31 23:00 186880 ----a-w- c:\windows\system32\encdec.dll
2011-03-18 17:55 . 2011-03-23 20:23 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{ba14329e-9550-4989-b3f2-9732e92d17cc}"= "c:\program files\Vuze_Remote\prxtbVuze.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
2011-05-09 08:49 176936 ----a-w- c:\program files\Vuze_Remote\prxtbVuze.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2011-08-23 20:20 1515688 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{ba14329e-9550-4989-b3f2-9732e92d17cc}"= "c:\program files\Vuze_Remote\prxtbVuze.dll" [2011-05-09 176936]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2011-08-23 1515688]
.
[HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{BA14329E-9550-4989-B3F2-9732E92D17CC}"= "c:\program files\Vuze_Remote\prxtbVuze.dll" [2011-05-09 176936]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2011-08-23 1515688]
.
[HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"USB Safely Remove"="c:\program files\USB Safely Remove\USBSafelyRemove.exe" [2010-12-25 1794392]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"vptray"="c:\progra~1\SYMANT~1\\vptray.exe" [2006-07-17 125072]
"RTHDCPL"="RTHDCPL.EXE" [2008-12-09 18063872]
"OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4\OpwareSE4.exe" [2007-02-04 79400]
"ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2006-03-24 53408]
"TrayServer"="c:\program files\MAGIX\Movie_Edit_Pro_15_silver\TrayServer.exe" [2008-11-13 90112]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2011-07-05 421888]
"ApnUpdater"="c:\program files\Ask.com\Updater\Updater.exe" [2011-08-23 887976]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
RAMASST.lnk - c:\windows\system32\RAMAsst.exe [2009-2-26 167936]
Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\totalcmd\\TOTALCMD.EXE"=
"c:\\Program Files\\Foxit Software\\PDF Editor\\PDFEdit.exe"=
"c:\\Program Files\\Real\\RealPlayer\\RecordingManager.exe"=
"c:\\Program Files\\Java\\JRE6\\BIN\\java.exe"=
"c:\\Program Files\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"=
"c:\\Program Files\\Common Files\\Nokia\\Service Layer\\A\\nsl_host_process.exe"=
"c:\\Program Files\\Nokia\\Nokia Ovi Suite\\NokiaOviSuite.exe"=
"c:\\Program Files\\SnugTV\\SnugTV Station\\ConfigMaster.exe"=
"c:\\Program Files\\SnugTV\\SnugTV Station\\ConfigWizard.exe"=
"c:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\EPLAN\\Electric P8\\1.9.11\\BIN\\W3u.exe"=
"c:\\WINDOWS\\System32\\hasplms.exe"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Program Files\\ICQ7.6\\ICQ.exe"=
"c:\\Program Files\\SnugTV\\SnugTV Station\\AMAServer.exe"=
"c:\\Program Files\\Vuze\\Azureus.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
.
R1 AmgHips;AmgHips;c:\windows\system32\drivers\AmgHips.sys [28.10.2011 8:31 25248]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18.3.2010 13:16 130384]
R2 hasplms;Sentinel HASP License Manager;c:\windows\system32\hasplms.exe -run --> c:\windows\system32\hasplms.exe -run [?]
R2 SZASSIST;SecretZone Assist Service;c:\program files\Clarus\Samsung SecretZone\SZAssistSVC.exe [16.1.2011 23:29 90112]
R2 USBSafelyRemoveService;USB Safely Remove Assistant;c:\program files\USB Safely Remove\USBSRService.exe [27.8.2011 22:31 246616]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\eengine\EraserUtilRebootDrv.sys [19.2.2009 19:01 106104]
R3 mdf15;mdf15;c:\program files\Clarus\Samsung SecretZone\mdf15.sys [16.1.2011 23:29 12288]
R3 mvd21;mvd21;c:\program files\Clarus\Samsung SecretZone\mvd21.sys [16.1.2011 23:29 64512]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [25.2.2009 20:49 47360]
S3 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service;c:\program files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [6.12.2007 21:03 660768]
S3 AVerAF35;AVerMedia A867 USB DVB-T;c:\windows\system32\drivers\AVerAF35.sys [9.11.2010 22:03 477312]
S3 AVerRemote;AVerRemote;c:\program files\Common Files\AVerMedia\Service\AVerRemote.exe [9.11.2010 22:04 348160]
S3 AVerScheduleService;AVerScheduleService;c:\program files\Common Files\AVerMedia\Service\AVerScheduleService.exe [9.11.2010 22:04 397312]
S3 AVerUpdateServer;AVerUpdateServer;c:\program files\AVerMedia\AVerUpdate\AVerUpdateServer.exe [6.1.2011 13:42 168448]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\MAGIX\Common\Database\bin\fbserver.exe [3.9.2011 15:34 1527900]
S3 OODefragAgent;O&O Defrag Agent;c:\program files\OO Software\Defrag\oodag.exe [25.1.2011 11:41 2336072]
S3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [28.5.2010 13:04 14896]
S3 SavRoam;SAVRoam;c:\program files\Symantec AntiVirus\SavRoam.exe [17.7.2006 17:38 118928]
S3 SnugTV Service;SnugTV Service;c:\program files\SnugTV\SnugTV Station\AMAServer.exe [5.1.2011 3:31 570880]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18.3.2010 13:16 753504]
S3 XHASP;XHASP;c:\windows\system32\drivers\XHASP.sys [28.5.2011 15:25 259584]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2}]
2010-02-16 18:02 114688 ----a-w- c:\program files\PixiePack Codec Pack\InstallerHelper.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2012-01-12 c:\windows\Tasks\GlaryInitialize.job
- c:\program files\Glary Utilities\initialize.exe [2009-02-23 16:58]
.
2012-01-12 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-4036164967-4113303836-1484400983-1005.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-09-27 12:40]
.
2012-01-12 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-4036164967-4113303836-1484400983-1005.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-09-27 12:40]
.
2012-01-12 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2011-08-23 20:20]
.
2012-01-11 c:\windows\Tasks\Norton Security Scan for Miloš.job
- c:\progra~1\NORTON~2\Engine\301~1.8\Nss.exe [2011-01-17 22:47]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: &Winamp Search - c:\documents and settings\All Users\Data aplikací\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Free YouTube Download - c:\documents and settings\Miloš\Data aplikací\DVDVideoSoftIEHelpers\youtubedownload.htm
IE: Free YouTube to Mp3 Converter - c:\documents and settings\Miloš\Data aplikací\DVDVideoSoftIEHelpers\youtubetomp3.htm
IE: {{7644E42D-B096-457F-8B5B-901238FC81AE} - c:\program files\ICQ7.6\ICQ.exe
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
DPF: {4FEE6316-7B6F-4A6C-BD4E-4157C59A9E9D} - hxxp://static.s2g.gate5.de/ovi_maps/OviMapsPlugin_4.0.12.11.cab
DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} - hxxp://62.168.0.189/activex/AMC.cab
FF - ProfilePath - c:\documents and settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.4.2&q=
pref('extensions.shownSelectionUI',true); pref('extensions.autoDisableScopes',0);
.
.
------- Asociace souborů -------
.
.scr=AutoCADScriptFile
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-RewardsArcade - c:\program files\RewardsArcade\Uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-01-12 20:49
Windows 5.1.2600 Service Pack 3 FAT NTAPI
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-4036164967-4113303836-1484400983-1005\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1360)
c:\windows\system32\Ati2evxx.dll
.
Celkový čas: 2012-01-12 20:51:30
ComboFix-quarantined-files.txt 2012-01-12 19:51
.
Před spuštěním: Volných bajtů: 294 120 882 176
Po spuštění: Volných bajtů: 294 284 328 960
.
- - End Of File - - DD74523D25D538945766F75E52867AA2

[motji]

Je to pořád stejné?

stáhněte
http://www.slunecnice.cz/sw/crystaldiskinfo/
- spusťte ho a v nabídce zvolte Kopírovat.
-Data ze schránky sem pak vložte pomocí Ctrl+V

[emcos]

----------------------------------------------------------------------------
CrystalDiskInfo 4.1.3 (C) 2008-2011 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows XP Professional SP3 [5.1 Build 2600] (x86)
Date : 2012/01/12 21:53:05

-- Controller Map ----------------------------------------------------------
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- Primární kanál IDE (0)
- Sekundární kanál IDE (1)
+ Intel(R) ICH9 4 port Serial ATA Storage Controller 1 - 2920 [ATA]
+ Primární kanál IDE (0)
- WDC WD1001FALS-00J7B0
- WDC WD5002ABYS-01B1B0
+ Sekundární kanál IDE (1)
- TSSTcorp CDDVDW SH-S223F
+ Intel(R) ICH9 2 port Serial ATA Storage Controller 2 - 2926 [ATA]
- Primární kanál IDE (0)
- Sekundární kanál IDE (1)

-- Disk List ---------------------------------------------------------------
(1) WDC WD5002ABYS-01B1B0 : 500.1 GB [0-5-0, pd1]
(2) WDC WD1001FALS-00J7B0 : 1000.2 GB [1-5-1, pd1]

----------------------------------------------------------------------------
(1) WDC WD5002ABYS-01B1B0
----------------------------------------------------------------------------
Model : WDC WD5002ABYS-01B1B0
Firmware : 02.03B02
Serial Number : WD-WMASY4259269
Disk Size : 500.1 GB (8.4/137.4/500.1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 976771055
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 10646 hod.
Power On Count : 1692 krát
Temparature : 34 C (93 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : 80FEh [ON]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 149 149 _21 000000001595 Čas na roztočení ploten
04 _99 _99 __0 00000000069C Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _86 _86 __0 000000002996 Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _99 _99 __0 00000000069C Počet cyklů zapnutí zařízení
C0 200 200 __0 000000000014 Počet vypnutí disku
C1 200 200 __0 00000000069C Počet cyklů načítání/vymazání
C2 113 104 __0 000000000022 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 100 253 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 42 7A 3F FF C8 37 00 10 00 00 00 00 00 3F 00 00
010: 00 00 00 00 20 20 20 20 20 57 44 2D 57 4D 41 53
020: 59 34 32 35 39 32 36 39 00 00 80 00 00 32 30 32
030: 2E 30 33 42 30 32 57 44 43 20 57 44 35 30 30 32
040: 41 42 59 53 2D 30 31 42 31 42 30 20 20 20 20 20
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10
060: 00 00 2F 00 40 01 00 00 00 00 00 07 3F FF 00 10
070: 00 3F FC 10 00 FB 01 10 FF FF 0F FF 00 00 00 07
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 1F 05 06 00 00 00 44 00 40
0A0: 01 FE 00 00 74 6B 7F 61 41 63 74 69 BE 41 41 63
0B0: 20 7F 00 30 00 30 00 00 FF FE 00 00 80 FE 00 00
0C0: 00 00 00 00 00 00 00 00 57 EF 3A 38 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 50 01 4E E0 AB 93 F3 C4
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 1C
0F0: 40 1C 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 29 00 00 00 00 00 00 00 00 16 AB 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 04 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 30 3F 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 1C 20 00 00 00 00 00 00 00 00 10 0E 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 01 10 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 A2 A5

----------------------------------------------------------------------------
(2) WDC WD1001FALS-00J7B0
----------------------------------------------------------------------------
Model : WDC WD1001FALS-00J7B0
Firmware : 05.00K05
Serial Number : WD-WMATV0323032
Disk Size : 1000.2 GB (8.4/137.4/1000.2)
Buffer Size : 32767 KB
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 10610 hod.
Power On Count : 1690 krát
Temparature : 33 C (91 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 227 226 _21 0000000021CA Čas na roztočení ploten
04 _99 _99 __0 00000000069B Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _86 _86 __0 000000002972 Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _99 _99 __0 00000000069A Počet cyklů zapnutí zařízení
C0 200 200 __0 000000000037 Počet vypnutí disku
C1 200 200 __0 00000000069B Počet cyklů načítání/vymazání
C2 117 110 __0 000000000021 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 200 200 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 42 7A 3F FF C8 37 00 10 00 00 00 00 00 3F 00 00
010: 00 00 00 00 20 20 20 20 20 57 44 2D 57 4D 41 54
020: 56 30 33 32 33 30 33 32 00 00 FF FF 00 32 30 35
030: 2E 30 30 4B 30 35 57 44 43 20 57 44 31 30 30 31
040: 46 41 4C 53 2D 30 30 4A 37 42 30 20 20 20 20 20
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10
060: 00 00 2F 00 40 01 00 00 00 00 00 07 3F FF 00 10
070: 00 3F FC 10 00 FB 01 10 FF FF 0F FF 00 00 00 07
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 1F 07 06 00 00 00 44 00 40
0A0: 01 FE 00 00 74 6B 7F 61 41 23 74 69 BC 41 41 23
0B0: 20 7F 00 61 00 61 00 00 FF FE 00 00 80 FE 00 00
0C0: 00 00 00 00 00 00 00 00 6D B0 74 70 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 50 01 4E E0 01 01 F6 D9
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 10
0F0: 40 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 29 00 00 00 00 00 00 00 00 16 A0 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 04 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 30 3F 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 10 0E 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 01 10 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 8B A5

[motji]

Co IE?

[emcos]

Je to Windows Internet Explorer 8.

Nyní IE8 pomalu startuje a po několikerém zakázání dopňku Linkury Smartbar Engine se opětovně instaluje.

Ukončování IE8 bez problémů.

[motji]

Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

netsvcs
drivers32
savembr:0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

/md5start
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
hal.dll
logevent.dll
netlogon.dll
ntelogon.dll
scecli.dll
sceclt.dll
ws2_32.dll
autochk.exe
csrss.exe
explorer.exe
lsass.exe
services.exe
smss.exe
spoolsv.exe
svchost.exe
userinit.exe
winlogon.exe
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
cdrom.sys
Changer.sys
fastfat.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
mv61xx.sys
ndis.sys
ntfs.sys
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
symmpi.sys
tcpip.sys
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
/md5stop

C:\windows\system32\spool\prtprocs|dll;true;true;true /FP
%systemroot%\system32\drivers\*.sys /5
%systemroot%\system32\drivers\*.sys /X
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\system32\*.* /5
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\config\*.sav
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\*.* /U /s
%systemroot%\*. /mp /s
%ALLUSERSPROFILE%\Data Aplikací\*.*
%ALLUSERSPROFILE%\Data Aplikací\*.exe /s
%ALLUSERSPROFILE%\Dáta aplikácií\*.*
%ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s
%APPDATA%\*.
%APPDATA%\*.*
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe


HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\BITS /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5 

- zaškrtněte okénko Pro všechny uživatele.
-označte okénka Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
-po dokončení skenu se objeví logy OTL.Txt a Extras.txt, vložte je zde

[emcos]

OTL logfile created on: 13.1.2012 17:52:37 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Miloš\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,25 Gb Total Physical Memory | 2,29 Gb Available Physical Memory | 70,39% Memory free
9,09 Gb Paging File | 8,51 Gb Available in Paging File | 93,68% Paging File free
Paging file location(s): [Binary data over 100 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 465,65 Gb Total Space | 274,03 Gb Free Space | 58,85% Space Free | Partition Type: FAT32
Drive D: | 931,28 Gb Total Space | 167,97 Gb Free Space | 18,04% Space Free | Partition Type: FAT32

Computer Name: DA364126 | User Name: Miloš | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012.01.13 17:51:16 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Miloš\Plocha\OTL.exe
PRC - [2011.08.23 21:20:18 | 000,887,976 | ---- | M] (Ask) -- C:\Program Files\Ask.com\Updater\Updater.exe
PRC - [2010.12.25 03:09:46 | 000,246,616 | ---- | M] () -- C:\Program Files\USB Safely Remove\USBSRService.exe
PRC - [2010.12.25 03:09:44 | 001,794,392 | ---- | M] (Crystal Rich Ltd) -- C:\Program Files\USB Safely Remove\USBSafelyRemove.exe
PRC - [2010.12.13 21:36:10 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
PRC - [2010.09.27 09:37:24 | 004,180,576 | ---- | M] (SafeNet Inc.) -- C:\WINDOWS\system32\hasplms.exe
PRC - [2010.07.30 11:40:54 | 000,090,112 | ---- | M] (Clarus, Inc.) -- C:\Program Files\Clarus\Samsung SecretZone\SZAssistSVC.exe
PRC - [2008.04.14 14:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.04.14 14:00:00 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe
PRC - [2007.03.06 10:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
PRC - [2007.02.04 12:02:14 | 000,079,400 | ---- | M] (Nuance Communications, Inc.) -- C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
PRC - [2006.09.22 20:37:00 | 000,118,784 | ---- | M] (B.H.A Corporation) -- C:\WINDOWS\system32\bgsvcgen.exe
PRC - [2006.09.20 20:44:00 | 000,167,936 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- C:\WINDOWS\system32\RAMAsst.exe
PRC - [2006.09.20 20:44:00 | 000,110,592 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- C:\WINDOWS\system32\DVDRAMSV.exe
PRC - [2006.07.17 17:39:52 | 000,125,072 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec AntiVirus\VPTray.exe
PRC - [2006.07.17 17:37:32 | 001,817,744 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec AntiVirus\Rtvscan.exe
PRC - [2006.07.17 17:35:36 | 000,031,376 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec AntiVirus\DefWatch.exe
PRC - [2006.06.01 13:34:54 | 002,045,632 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_0.EXE
PRC - [2006.03.24 17:14:58 | 000,169,632 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
PRC - [2006.03.24 17:14:52 | 000,192,160 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
PRC - [2006.01.24 20:06:58 | 000,214,720 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe


========== Modules (No Company Name) ==========

MOD - [2012.01.12 21:51:56 | 008,013,664 | ---- | M] () -- C:\WINDOWS\assembly\GAC\Microsoft.mshtml\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.mshtml.dll
MOD - [2012.01.12 21:51:56 | 000,145,208 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Interop.SHDocVw\1.1.0.0__84542ff99aed6a4d\Interop.SHDocVw.dll
MOD - [2012.01.11 22:19:18 | 000,425,984 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.dll
MOD - [2012.01.11 22:19:10 | 005,025,792 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
MOD - [2011.12.29 19:29:42 | 000,104,248 | ---- | M] () -- C:\Documents and Settings\Miloš\Local Settings\Data aplikací\Linkury\Application\SmartbarInternetExplorerExtension.dll
MOD - [2011.12.29 19:29:40 | 000,119,608 | ---- | M] () -- C:\Documents and Settings\Miloš\Local Settings\Data aplikací\Linkury\Application\SmartbarInternetExplorerBHO.dll
MOD - [2011.10.13 20:24:20 | 000,025,600 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\d86a3346c3d90ff12d0df9d7726f3ece\Accessibility.ni.dll
MOD - [2011.10.13 20:23:00 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\70cacc44f0b4257f6037eda7a59a0aeb\System.Xml.ni.dll
MOD - [2011.10.13 20:22:46 | 001,587,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\c10bea3c4bb7ef654651141bf9419090\System.Drawing.ni.dll
MOD - [2011.10.13 20:21:46 | 007,950,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\af39f6e644af02873b9bae319f2bfb13\System.ni.dll
MOD - [2011.10.13 20:21:42 | 011,490,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll
MOD - [2010.12.25 03:09:46 | 000,246,616 | ---- | M] () -- C:\Program Files\USB Safely Remove\USBSRService.exe
MOD - [2008.04.14 14:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2006.06.01 13:34:54 | 000,159,744 | ---- | M] () -- C:\Program Files\Symantec\LiveUpdate\UNRAR.DLL
MOD - [2006.02.25 18:50:46 | 000,061,440 | ---- | M] () -- C:\Program Files\Avi2Dvd\Programs\Filters\Haali media splitter\mmfinfo.dll
MOD - [2006.02.25 18:50:16 | 000,023,552 | ---- | M] () -- C:\Program Files\Avi2Dvd\Programs\Filters\Haali media splitter\mkunicode.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - [2011.01.25 11:41:48 | 002,336,072 | ---- | M] (O&O Software GmbH) [On_Demand | Stopped] -- C:\Program Files\OO Software\Defrag\oodag.exe -- (OODefragAgent)
SRV - [2011.01.06 13:42:04 | 000,168,448 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [On_Demand | Stopped] -- C:\Program Files\AVerMedia\AVerUpdate\AVerUpdateServer.exe -- (AVerUpdateServer)
SRV - [2011.01.05 03:31:34 | 000,570,880 | ---- | M] (AVerMedia Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files\SnugTV\SnugTV Station\AMAServer.exe -- (SnugTV Service)
SRV - [2010.12.25 03:09:46 | 000,246,616 | ---- | M] () [Auto | Running] -- C:\Program Files\USB Safely Remove\USBSRService.exe -- (USBSafelyRemoveService)
SRV - [2010.12.13 21:36:10 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) [Auto | Running] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010.09.27 09:37:24 | 004,180,576 | ---- | M] (SafeNet Inc.) [Auto | Running] -- C:\WINDOWS\System32\hasplms.exe -- (hasplms)
SRV - [2010.07.30 11:40:54 | 000,090,112 | ---- | M] (Clarus, Inc.) [Auto | Running] -- C:\Program Files\Clarus\Samsung SecretZone\SZAssistSVC.exe -- (SZASSIST)
SRV - [2010.04.27 11:02:50 | 000,348,160 | R--- | M] (AVerMedia) [On_Demand | Stopped] -- C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe -- (AVerRemote)
SRV - [2010.01.26 12:41:08 | 000,652,800 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2009.12.06 16:13:14 | 000,397,312 | R--- | M] () [On_Demand | Stopped] -- C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe -- (AVerScheduleService)
SRV - [2009.02.19 21:17:02 | 000,074,360 | ---- | M] (Autodesk, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service)
SRV - [2008.04.14 14:00:00 | 000,015,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (W3SVC)
SRV - [2008.04.14 14:00:00 | 000,015,872 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (IISADMIN)
SRV - [2007.12.06 21:03:42 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) [On_Demand | Stopped] -- C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.9.0)
SRV - [2007.03.06 10:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe -- (Capture Device Service)
SRV - [2007.03.03 13:48:28 | 000,067,056 | ---- | M] (Ulead Systems, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
SRV - [2006.09.22 20:37:00 | 000,118,784 | ---- | M] (B.H.A Corporation) [Auto | Running] -- C:\WINDOWS\System32\bgsvcgen.exe -- (bgsvcgen)
SRV - [2006.09.20 20:44:00 | 000,110,592 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) [Auto | Running] -- C:\WINDOWS\system32\DVDRAMSV.exe -- (DVD-RAM_Service)
SRV - [2006.07.17 17:38:20 | 000,118,928 | ---- | M] (symantec) [On_Demand | Stopped] -- C:\Program Files\Symantec AntiVirus\SavRoam.exe -- (SavRoam)
SRV - [2006.07.17 17:37:32 | 001,817,744 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec AntiVirus\Rtvscan.exe -- (Symantec AntiVirus)
SRV - [2006.07.17 17:35:36 | 000,031,376 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec AntiVirus\DefWatch.exe -- (DefWatch)
SRV - [2006.06.01 13:34:54 | 002,045,632 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_0.EXE -- (LiveUpdate)
SRV - [2006.04.11 17:13:38 | 001,160,848 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe -- (SPBBCSvc)
SRV - [2006.03.24 17:14:58 | 000,169,632 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe -- (ccSetMgr)
SRV - [2006.03.24 17:14:52 | 000,192,160 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe -- (ccEvtMgr)
SRV - [2006.01.24 20:06:58 | 000,214,720 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe -- (SNDSrvc)
SRV - [2005.11.17 14:18:52 | 001,527,900 | ---- | M] (MAGIX®) [On_Demand | Stopped] -- C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance)


========== Driver Services (SafeList) ==========

DRV - [2011.11.12 14:22:44 | 000,106,104 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\eengine\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2011.11.11 10:00:00 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\eengine\eeCtrl.sys -- (eeCtrl)
DRV - [2011.10.28 08:31:34 | 000,025,248 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\system32\drivers\AmgHips.sys -- (AmgHips)
DRV - [2011.08.18 10:00:00 | 001,576,312 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20120109.002\NAVEX15.SYS -- (NAVEX15)
DRV - [2011.08.18 10:00:00 | 000,086,136 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20120109.002\NAVENG.SYS -- (NAVENG)
DRV - [2011.05.28 15:25:02 | 000,259,584 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\XHASP.sys -- (XHASP)
DRV - [2010.09.27 14:24:50 | 000,356,864 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\aksfridge.sys -- (aksfridge)
DRV - [2010.06.14 14:14:48 | 000,064,512 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\Clarus\Samsung SecretZone\mvd21.sys -- (mvd21)
DRV - [2010.05.28 13:04:52 | 000,014,896 | ---- | M] (Secunia) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\psi_mf.sys -- (PSI)
DRV - [2010.03.18 16:24:34 | 000,012,288 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\Clarus\Samsung SecretZone\mdf15.sys -- (mdf15)
DRV - [2010.01.29 07:54:54 | 000,477,312 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AVerAF35.sys -- (AVerAF35)
DRV - [2010.01.21 14:53:16 | 000,018,048 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2009.12.30 11:30:56 | 000,007,936 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2009.12.30 11:30:48 | 000,022,016 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2009.12.30 11:30:48 | 000,007,936 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2009.12.09 22:27:18 | 000,588,800 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (hardlock)
DRV - [2008.12.11 17:24:20 | 004,959,232 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008.08.26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.08.01 07:38:22 | 003,266,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2008.06.08 16:41:06 | 000,005,504 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\system32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2008.05.21 00:53:36 | 000,093,696 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2008.04.14 00:16:24 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MPE.sys -- (MPE)
DRV - [2008.01.03 22:10:16 | 000,105,856 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2006.09.20 20:45:00 | 000,113,488 | ---- | M] (Matsushita Electric Industrial Co.,Ltd.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\meiudf.sys -- (meiudf)
DRV - [2006.05.05 16:19:50 | 000,107,696 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Symantec\SYMEVENT.SYS -- (SymEvent)
DRV - [2006.04.11 17:13:34 | 000,389,776 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2006.01.24 20:06:36 | 000,195,776 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\SYMTDI.SYS -- (SYMTDI)
DRV - [2006.01.24 20:06:32 | 000,024,768 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV)
DRV - [2005.12.19 20:41:58 | 000,054,968 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Symantec AntiVirus\Savrtpel.sys -- (SAVRTPEL)
DRV - [2005.12.19 20:41:56 | 000,337,592 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Symantec AntiVirus\savrt.sys -- (SAVRT)
DRV - [2005.05.11 00:33:00 | 000,032,256 | ---- | M] (B.H.A Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdrbsdrv.sys -- (cdrbsdrv)
DRV - [2005.01.28 14:36:00 | 000,171,008 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\MarvinBus.sys -- (MarvinBus)
DRV - [2004.12.08 17:55:10 | 000,042,752 | R--- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ser2pl.sys -- (Ser2pl)
DRV - [2004.07.16 15:47:14 | 000,014,165 | ---- | M] (Pinnacle Systems GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Pclepci.sys -- (PCLEPCI)
DRV - [2004.03.10 15:27:18 | 000,011,264 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\asapiW2k.sys -- (ASAPIW2k)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found


IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.autocont.cz

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.autocont.cz

IE - HKU\S-1-5-21-4036164967-4113303836-1484400983-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://cloud-search.linkury.com/results ... inkury.com
IE - HKU\S-1-5-21-4036164967-4113303836-1484400983-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://cloud-search.linkury.com/results ... inkury.com
IE - HKU\S-1-5-21-4036164967-4113303836-1484400983-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.google.cz/ [binary data]
IE - HKU\S-1-5-21-4036164967-4113303836-1484400983-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-4036164967-4113303836-1484400983-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 80 DB 41 54 D5 03 CA 01 [binary data]
IE - HKU\S-1-5-21-4036164967-4113303836-1484400983-1005\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://cloud-search.linkury.com/results ... inkury.com
IE - HKU\S-1-5-21-4036164967-4113303836-1484400983-1005\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://cloud-search.linkury.com/results ... inkury.com
IE - HKU\S-1-5-21-4036164967-4113303836-1484400983-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=937811&ilc=12"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.startup.homepage: "http://search.linkury.com"
FF - prefs.js..keyword.URL: "http://search.icq.com/search/afe_result ... r=1.4.3&q="


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.669: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.669: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.669: C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.669: C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.669: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Documents and Settings\Miloš\Local Settings\Data aplikací\Google\Update\1.2.183.39\npGoogleOneClick8.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\ [2010.03.16 16:45:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011.11.12 14:27:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\crossriderapp498@crossrider.com: C:\Documents and Settings\Miloš\Local Settings\Data aplikací\RewardsArcade\498\Firefox [2012.01.08 16:28:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.02.10 19:35:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.02.10 19:35:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2010.03.16 16:45:30 | 000,000,000 | ---D | M]

[2010.02.10 19:35:48 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Extensions
[2010.02.10 19:35:48 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\extensions
[2012.01.12 22:05:54 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011.10.29 22:17:52 | 000,000,000 | ---D | M] (Searchqu Toolbar) -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7}
[2010.11.28 21:30:34 | 000,000,000 | ---D | M] ("DVDVideoSoft Menu") -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2011.03.23 21:24:12 | 000,000,000 | ---D | M] (Vuze Remote Community Toolbar) -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}
[2011.11.24 22:25:06 | 000,000,000 | ---D | M] (Seznam lištiÄŤka) -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2011.04.05 15:09:38 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\extensions\engine@conduit.com
[2012.01.12 21:52:36 | 000,000,000 | ---D | M] ("Linkury Smartbar") -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\extensions\helperbar@helperbar.com
[2012.01.11 21:29:42 | 000,000,000 | ---D | M] (Support.com Toolbar) -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\extensions\toolbar@ask.com
[2011.03.05 16:29:06 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\searchplugins\icqplugin-5.xml
[2011.03.23 21:24:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\searchplugins\icqplugin-6.xml
[2011.03.23 21:26:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\searchplugins\icqplugin-7.xml
[2011.03.24 06:04:52 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\searchplugins\icqplugin-8.xml
[2011.03.24 06:06:50 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\searchplugins\icqplugin-1.xml
[2011.07.19 22:22:32 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\searchplugins\icqplugin-2.xml
[2011.03.30 14:14:34 | 000,001,042 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\searchplugins\icqplugin.xml
[2011.10.29 22:17:48 | 000,002,520 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\searchplugins\SearchResults.xml
[2011.11.09 22:57:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\searchplugins\icqplugin-9.xml
[2011.11.24 22:27:08 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\searchplugins\icqplugin-3.xml
[2011.11.25 10:03:48 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\searchplugins\icqplugin-10.xml
[2011.11.17 19:25:44 | 000,002,333 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\searchplugins\askcom.xml
[2012.01.12 17:57:58 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\searchplugins\icqplugin-4.xml
[2012.01.12 21:52:36 | 000,002,412 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\searchplugins\Linkury Smartbar Search.xml
[2012.01.04 14:54:58 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\searchplugins\icqplugin.src
[2012.01.04 14:54:58 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\searchplugins\icqplugin.gif
[2011.03.23 21:23:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\distribution\extensions
[2011.03.23 21:23:24 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Program Files\Mozilla Firefox\distribution\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\DATA APLIKACĂ­\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\MILOš\DATA APLIKACí\MOZILLA\FIREFOX\PROFILES\0FZOX30T.DEFAULT\EXTENSIONS\{19503E42-CA3C-4C27-B1E2-9CDB2170EE34}.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\MILOš\DATA APLIKACí\MOZILLA\FIREFOX\PROFILES\0FZOX30T.DEFAULT\EXTENSIONS\{800B5000-A755-47E1-992B-48A1C1357F07}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\MILOš\DATA APLIKACí\MOZILLA\FIREFOX\PROFILES\0FZOX30T.DEFAULT\EXTENSIONS\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\MILOš\DATA APLIKACí\MOZILLA\FIREFOX\PROFILES\0FZOX30T.DEFAULT\EXTENSIONS\{BA14329E-9550-4989-B3F2-9732E92D17CC}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\MILOš\DATA APLIKACí\MOZILLA\FIREFOX\PROFILES\0FZOX30T.DEFAULT\EXTENSIONS\{EA614400-E918-4741-9A97-7A972FF7C30B}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\MILOš\DATA APLIKACí\MOZILLA\FIREFOX\PROFILES\0FZOX30T.DEFAULT\EXTENSIONS\ARTUR.DUBOVOY@GMAIL.COM.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\MILOš\DATA APLIKACí\MOZILLA\FIREFOX\PROFILES\0FZOX30T.DEFAULT\EXTENSIONS\ENGINE@CONDUIT.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\MILOš\DATA APLIKACí\MOZILLA\FIREFOX\PROFILES\0FZOX30T.DEFAULT\EXTENSIONS\HELPERBAR@HELPERBAR.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\MILOš\DATA APLIKACí\MOZILLA\FIREFOX\PROFILES\0FZOX30T.DEFAULT\EXTENSIONS\TOOLBAR@ASK.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\MILOš\LOCAL SETTINGS\DATA APLIKACí\REWARDSARCADE\498\FIREFOX
[2010.10.19 06:11:58 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011.03.18 18:55:52 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.06.30 20:30:14 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2010.11.12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2010.01.01 09:00:00 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2010.01.01 09:00:00 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2010.01.01 09:00:00 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2010.01.01 09:00:00 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2010.01.01 09:00:00 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
[2011.10.29 22:17:48 | 000,002,520 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\SearchResults.xml

========== Chrome ==========

CHR - default_search_provider: Linkury Smartbar Search (Enabled)
CHR - default_search_provider: search_url = http://cloud-search.linkury.com/results ... inkury.com
CHR - default_search_provider: suggest_url =
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Milo\u0161\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\10.0.648.204\pdf.dll
CHR - plugin: Google Gears 0.5.33.0 (Enabled) = C:\Documents and Settings\Milo\u0161\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\10.0.648.204\gears.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Milo\u0161\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\10.0.648.204\gcswf32.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java(TM) Platform SE 6 U22 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Java Deployment Toolkit 6.0.220.4 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Winamp Application Detector (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npwachk.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\Documents and Settings\All Users\Data aplikac\u00ED\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Milo\u0161\Local Settings\Data aplikac\u00ED\Google\Update\1.2.183.39\npGoogleOneClick8.dll
CHR - plugin: Garmin Communicator Plug-In (Enabled) = C:\Program Files\Garmin GPS Plugin\npGarmin.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: Sammsoft Toolbar = C:\Documents and Settings\Miloš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aaaanplonkoccjbnlleoidjplmhgeahe\7.13.1.0_0\
CHR - Extension: Linkury Smartbar = C:\Documents and Settings\Miloš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl\1.4_0\
CHR - Extension: RewardsArcade = C:\Documents and Settings\Miloš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dcmagccbogebndpoodhhhafmofelpffh\1.13.61_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Documents and Settings\Miloš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\

O1 HOSTS File: ([2012.01.12 20:49:26 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
O2 - BHO: (Support.com Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKLM\..\Toolbar: (Support.com Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - No CLSID value found.
O3 - HKU\S-1-5-21-4036164967-4113303836-1484400983-1005\..\Toolbar\WebBrowser: (no name) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - No CLSID value found.
O3 - HKU\S-1-5-21-4036164967-4113303836-1484400983-1005\..\Toolbar\WebBrowser: (no name) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No CLSID value found.
O3 - HKU\S-1-5-21-4036164967-4113303836-1484400983-1005\..\Toolbar\WebBrowser: (Support.com Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O4 - HKLM..\Run: [ApnUpdater] C:\Program Files\Ask.com\Updater\Updater.exe (Ask)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [OpwareSE4] C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [TrayServer] C:\Program Files\MAGIX\Movie_Edit_Pro_15_silver\Trayserver.exe (MAGIX AG)
O4 - HKLM..\Run: [vptray] C:\PROGRA~1\SYMANT~1\\vptray.exe ()
O4 - HKU\S-1-5-21-4036164967-4113303836-1484400983-1005..\Run: [Linkury Chrome Smartbar] C:\Documents and Settings\Miloš\Local Settings\Data aplikací\Linkury\Application\Linkury.exe ()
O4 - HKU\S-1-5-21-4036164967-4113303836-1484400983-1005..\Run: [USB Safely Remove] C:\Program Files\USB Safely Remove\USBSafelyRemove.exe (Crystal Rich Ltd)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\RAMASST.lnk = C:\WINDOWS\system32\RAMAsst.exe (Matsushita Electric Industrial Co., Ltd.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-4036164967-4113303836-1484400983-1005\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-4036164967-4113303836-1484400983-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-4036164967-4113303836-1484400983-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-4036164967-4113303836-1484400983-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O7 - HKU\S-1-5-21-4036164967-4113303836-1484400983-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Data aplikací\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html File not found
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Free YouTube Download - C:\Documents and Settings\Miloš\Data aplikací\DVDVideoSoftIEHelpers\youtubedownload.htm ()
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Documents and Settings\Miloš\Data aplikací\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} https://support.microsoft.com/OAS/ActiveX/MSDcode.cab (Microsoft Data Collection Control)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/200 ... oader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {4FEE6316-7B6F-4A6C-BD4E-4157C59A9E9D} http://static.s2g.gate5.de/ovi_maps/Ovi ... .12.11.cab (Ovi maps browser plugin)
O16 - DPF: {6D2EF4B4-CB62-4C0B-85F3-B79C236D702C} http://www.facebook.com/controls/contactx.dll (ContactExtractor Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftup ... 5424585265 (MUWebControl Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos-be ... canner.cab (Reg Error: Key error.)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/200 ... ader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} http://62.168.0.189/activex/AMC.cab (AxisMediaControlEmb Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0E21FEAC-1114-40DF-B94E-D5BCF776D093}: DhcpNameServer = 213.46.172.36 213.46.172.37
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\NavLogon: DllName - (C:\WINDOWS\system32\NavLogon.dll) - C:\WINDOWS\system32\NavLogon.dll (Symantec Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - File not found
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Miloš\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Miloš\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.12.13 21:28:54 | 000,000,000 | ---D | M] - C:\Autodesk -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: HidServ - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.dvacm - C:\Program Files\Common Files\Ulead Systems\VIO\DVACM.acm (InterVideo Digital Technology Corporation)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.MPEGacm - C:\Program Files\Common Files\Ulead Systems\MPEG\MPEGACM.acm (Ulead Systems, Inc.)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.ulmp3acm - C:\Program Files\Common Files\Ulead Systems\MPEG\ulmp3acm.acm (Ulead systems)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: VIDC.I420 - C:\WINDOWS\System32\i420vfw.dll (www.helixcommunity.org)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.MJPG - C:\WINDOWS\System32\pvmjpg21.dll (Pegasus Imaging Corporation)
Drivers32: VIDC.PIM1 - C:\WINDOWS\System32\pclepim1.dll (Pinnacle Systems)
Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\WINDOWS\System32\yv12vfw.dll (www.helixcommunity.org)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

[emcos]

========== Files/Folders - Created Within 30 Days ==========

File not found -- C:\WINDOWS\System32\drivers\mshcmd.sys.
[2012.01.13 17:51:13 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Miloš\Plocha\OTL.exe
[2012.01.12 22:43:09 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Miloš\Recent
[2012.01.12 21:51:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Miloš\Local Settings\Data aplikací\Linkury
[2012.01.12 21:51:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Miloš\Data aplikací\OpenCandy
[2012.01.12 21:51:30 | 000,000,000 | ---D | C] -- C:\Program Files\CrystalDiskInfo
[2012.01.12 20:36:46 | 000,000,000 | ---D | C] -- C:\ComboFix
[2012.01.12 20:26:08 | 000,000,000 | ---D | C] -- C:\FOUND.001
[2012.01.12 18:53:40 | 000,000,000 | ---D | C] -- C:\FOUND.000
[2012.01.12 18:43:29 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2012.01.12 18:43:29 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2012.01.12 18:43:29 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2012.01.12 18:43:29 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2012.01.12 18:43:20 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012.01.12 18:36:08 | 004,381,405 | R--- | C] (Swearware) -- C:\Documents and Settings\Miloš\Plocha\ComboFix.exe
[2012.01.11 21:29:13 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com
[2012.01.11 21:29:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Miloš\Local Settings\Data aplikací\AskToolbar
[2012.01.11 21:29:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Miloš\Local Settings\Data aplikací\APN
[2012.01.09 22:01:20 | 000,000,000 | ---D | C] -- C:\rsit
[2012.01.08 16:28:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Miloš\Local Settings\Data aplikací\RewardsArcade
[2012.01.08 16:27:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Miloš\Local Settings\Data aplikací\Vuze_Remote
[2012.01.08 16:27:46 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit
[2012.01.08 16:27:45 | 000,000,000 | ---D | C] -- C:\Program Files\Vuze_Remote
[2012.01.08 09:14:25 | 000,000,000 | ---D | C] -- C:\Program Files\cGPSmapper
[2012.01.05 22:26:17 | 000,000,000 | ---D | C] -- C:\Nová složka
[2012.01.02 19:47:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Miloš\Dokumenty\My Kindle Content
[2012.01.02 19:47:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Miloš\Nabídka Start\Programy\Amazon
[2012.01.02 19:47:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Miloš\Local Settings\Data aplikací\Amazon
[2012.01.02 19:47:18 | 000,000,000 | ---D | C] -- C:\Program Files\Amazon
[2011.12.19 23:40:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Miloš\Dokumenty\Recordings
[2011.12.14 18:02:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2009.02.25 20:49:30 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Miloš\Data aplikací\pcouffin.sys

========== Files - Modified Within 30 Days ==========

File not found -- C:\WINDOWS\System32\drivers\mshcmd.sys.
[2012.01.13 17:54:30 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.01.13 17:51:16 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Miloš\Plocha\OTL.exe
[2012.01.13 17:29:02 | 000,000,234 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2012.01.13 17:26:46 | 000,000,402 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for Miloš.job
[2012.01.13 17:21:34 | 000,000,308 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job
[2012.01.13 17:21:34 | 000,000,278 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-4036164967-4113303836-1484400983-1005.job
[2012.01.13 17:21:26 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.01.13 17:21:24 | 000,003,568 | ---- | M] () -- C:\WINDOWS\System32\ativvaxx.cap
[2012.01.13 17:21:20 | 3488,075,776 | -HS- | M] () -- C:\hiberfil.sys
[2012.01.13 03:22:20 | 000,000,286 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-4036164967-4113303836-1484400983-1005.job
[2012.01.12 21:51:32 | 000,001,552 | ---- | M] () -- C:\Documents and Settings\Miloš\Plocha\CrystalDiskInfo.lnk
[2012.01.12 18:36:24 | 004,381,405 | R--- | M] (Swearware) -- C:\Documents and Settings\Miloš\Plocha\ComboFix.exe
[2012.01.11 22:27:04 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012.01.11 22:19:24 | 000,535,906 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.01.11 22:19:24 | 000,533,348 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2012.01.11 22:19:24 | 000,112,798 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2012.01.11 22:19:24 | 000,096,678 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.01.08 08:07:04 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012.01.02 19:51:28 | 000,001,544 | ---- | M] () -- C:\Documents and Settings\Miloš\Plocha\Kindle.lnk
[2012.01.01 13:24:34 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.12.27 16:25:34 | 000,000,180 | ---- | M] () -- C:\Documents and Settings\Miloš\Plocha\Facebook.url
[2011.12.16 08:51:04 | 000,476,352 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.12.14 23:05:24 | 000,002,122 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2011.12.14 23:05:04 | 000,000,578 | ---- | M] () -- C:\WINDOWS\wcx_ftp.ini
[2011.12.14 22:47:08 | 025,362,628 | ---- | M] () -- C:\Documents and Settings\Miloš\Dokumenty\Marian Varga_ Hommage a J. S. Bach.flv
[2011.12.14 18:01:32 | 000,000,552 | ---- | M] () -- C:\WINDOWS\System32\d3d8caps.dat

========== Files Created - No Company Name ==========

[2012.01.13 17:54:29 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.01.12 21:51:31 | 000,001,552 | ---- | C] () -- C:\Documents and Settings\Miloš\Plocha\CrystalDiskInfo.lnk
[2012.01.12 18:43:29 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2012.01.12 18:43:29 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2012.01.12 18:43:29 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2012.01.12 18:43:29 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2012.01.12 18:43:29 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2012.01.11 21:29:41 | 000,000,234 | ---- | C] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2012.01.02 19:47:22 | 000,001,544 | ---- | C] () -- C:\Documents and Settings\Miloš\Plocha\Kindle.lnk
[2011.12.15 21:08:59 | 000,000,286 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-4036164967-4113303836-1484400983-1005.job
[2011.12.15 21:08:59 | 000,000,278 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-4036164967-4113303836-1484400983-1005.job
[2011.12.14 22:43:33 | 025,362,628 | ---- | C] () -- C:\Documents and Settings\Miloš\Dokumenty\Marian Varga_ Hommage a J. S. Bach.flv
[2011.12.14 18:05:40 | 3488,075,776 | -HS- | C] () -- C:\hiberfil.sys
[2011.12.14 18:01:31 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2011.10.28 08:31:33 | 000,025,248 | ---- | C] () -- C:\WINDOWS\System32\drivers\AmgHips.sys
[2011.09.03 15:32:44 | 000,120,200 | ---- | C] () -- C:\WINDOWS\System32\DLLDEV32i.dll
[2011.05.28 16:14:12 | 000,000,720 | ---- | C] () -- C:\WINDOWS\MyHeritage.INI
[2011.05.28 16:13:39 | 000,454,656 | ---- | C] () -- C:\WINDOWS\System32\PaintX.dll
[2011.05.28 15:27:57 | 000,000,043 | ---- | C] () -- C:\WINDOWS\W3u.INI
[2011.05.28 15:25:56 | 000,004,856 | ---- | C] () -- C:\WINDOWS\System32\drivers\B5187ED5.bin
[2011.05.28 15:25:01 | 000,259,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\XHASP.sys
[2011.03.14 22:56:24 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\hlduinst.exe
[2011.03.12 08:23:21 | 000,001,866 | ---- | C] () -- C:\WINDOWS\cyklopruvodce.INI
[2011.01.06 23:22:53 | 000,005,504 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2010.12.13 23:36:45 | 001,060,096 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2010.12.06 17:40:01 | 000,000,028 | ---- | C] () -- C:\WINDOWS\v2d.INI
[2010.12.05 19:01:11 | 000,001,057 | ---- | C] () -- C:\Documents and Settings\Miloš\Data aplikací\vso_ts_preview.xml
[2010.12.05 16:01:54 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
[2010.11.28 22:58:16 | 001,183,658 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-4036164967-4113303836-1484400983-1005-0.dat
[2010.11.28 22:58:16 | 000,423,482 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
[2010.11.09 22:05:48 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\AVerIO.dll
[2010.11.09 22:05:48 | 000,003,456 | R--- | C] () -- C:\WINDOWS\System32\AVerIO.sys
[2010.11.09 22:05:05 | 000,606,208 | R--- | C] () -- C:\WINDOWS\System32\sptlib21.dll
[2010.11.09 22:05:05 | 000,311,296 | R--- | C] () -- C:\WINDOWS\System32\sptlib01.dll
[2010.11.09 22:05:05 | 000,294,912 | R--- | C] () -- C:\WINDOWS\System32\sptlib11.dll
[2010.11.09 22:05:05 | 000,290,816 | R--- | C] () -- C:\WINDOWS\System32\sptlib22.dll
[2010.11.09 22:05:05 | 000,249,856 | R--- | C] () -- C:\WINDOWS\System32\sptlib03.dll
[2010.11.09 22:05:05 | 000,225,280 | R--- | C] () -- C:\WINDOWS\System32\sptlib02.dll
[2010.11.09 22:05:05 | 000,135,168 | R--- | C] () -- C:\WINDOWS\System32\sptlib12.dll
[2010.11.09 22:03:46 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd.dll
[2010.04.11 21:04:47 | 000,000,076 | ---- | C] () -- C:\WINDOWS\System32\netjr32.dll
[2010.01.08 19:13:38 | 000,000,065 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2009.12.13 23:03:14 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
[2009.11.25 13:40:50 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009.11.01 00:43:11 | 000,815,104 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009.11.01 00:43:11 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009.08.03 15:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009.08.03 15:07:42 | 000,230,768 | ---- | C] () -- C:\WINDOWS\System32\OGAEXEC.exe
[2009.06.24 23:03:48 | 000,161,262 | ---- | C] () -- C:\WINDOWS\Expstudio Audio Editor FREE Uninstaller.exe
[2009.06.24 16:37:42 | 000,000,206 | ---- | C] () -- C:\WINDOWS\smrpro.INI
[2009.05.19 17:28:21 | 000,072,192 | ---- | C] () -- C:\WINDOWS\unlite3.exe
[2009.05.09 10:24:04 | 000,290,816 | ---- | C] () -- C:\WINDOWS\System32\decdll.dll
[2009.04.23 22:46:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009.04.05 10:04:28 | 000,007,883 | ---- | C] () -- C:\WINDOWS\hcstd.ini
[2009.04.05 10:04:28 | 000,007,733 | ---- | C] () -- C:\WINDOWS\hsisb.ini
[2009.04.05 10:04:28 | 000,001,005 | ---- | C] () -- C:\WINDOWS\HRCM.INI
[2009.04.05 10:04:28 | 000,000,177 | ---- | C] () -- C:\WINDOWS\detect.ini
[2009.04.05 10:04:28 | 000,000,052 | ---- | C] () -- C:\WINDOWS\HECATSE.INI
[2009.04.02 21:15:17 | 000,000,578 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2009.03.13 21:51:55 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2009.03.13 17:04:32 | 000,210,456 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2009.03.13 17:04:32 | 000,206,360 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2009.03.13 17:04:32 | 000,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2009.03.13 17:04:32 | 000,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2009.03.13 17:04:32 | 000,194,072 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2009.03.13 17:04:32 | 000,026,136 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2009.03.13 12:04:28 | 000,000,017 | ---- | C] () -- C:\WINDOWS\MovingPicture.ini
[2009.03.13 11:22:19 | 000,000,096 | ---- | C] () -- C:\Documents and Settings\Miloš\Data aplikací\default.pls
[2009.03.12 22:44:23 | 000,128,000 | ---- | C] () -- C:\Documents and Settings\Miloš\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.02.26 22:38:54 | 000,406,016 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.exe
[2009.02.25 21:43:40 | 000,058,716 | ---- | C] () -- C:\WINDOWS\System32\w3ctrs.ini
[2009.02.25 21:43:39 | 000,018,097 | ---- | C] () -- C:\WINDOWS\System32\infoctrs.ini
[2009.02.25 21:43:39 | 000,014,691 | ---- | C] () -- C:\WINDOWS\System32\axperf.ini
[2009.02.25 20:49:30 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Miloš\Data aplikací\pcouffin.cat
[2009.02.25 20:49:30 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Miloš\Data aplikací\pcouffin.inf
[2009.02.24 22:47:33 | 000,210,944 | ---- | C] () -- C:\WINDOWS\System32\MSVCRT10.DLL
[2009.02.24 22:47:33 | 000,000,149 | ---- | C] () -- C:\WINDOWS\KPCMS.INI
[2009.02.24 22:42:44 | 000,021,240 | ---- | C] () -- C:\WINDOWS\System32\solidlocalmon.dll
[2009.02.24 22:42:44 | 000,013,560 | ---- | C] () -- C:\WINDOWS\System32\solidlocalui.dll
[2009.02.24 21:15:20 | 000,000,028 | ---- | C] () -- C:\WINDOWS\revouninstaller.INI
[2009.02.22 23:04:09 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009.02.22 09:12:30 | 000,001,559 | ---- | C] () -- C:\WINDOWS\WEBWTR.INI
[2009.02.22 09:12:21 | 000,001,223 | ---- | C] () -- C:\WINDOWS\WDICT32.INI
[2009.02.22 09:12:21 | 000,000,042 | ---- | C] () -- C:\WINDOWS\STXKBD.INI
[2009.02.22 09:12:21 | 000,000,033 | ---- | C] () -- C:\WINDOWS\WTRDCTM.INI
[2009.02.22 09:12:20 | 000,002,410 | ---- | C] () -- C:\WINDOWS\WINTRAN.INI
[2009.02.19 21:46:51 | 000,000,711 | ---- | C] () -- C:\WINDOWS\PowerReg.dat
[2009.02.19 21:35:34 | 000,040,129 | ---- | C] () -- C:\WINDOWS\iccsigs.dat
[2009.02.19 21:35:33 | 000,112,688 | ---- | C] () -- C:\WINDOWS\System32\shw32.dll
[2009.02.18 21:46:47 | 000,002,122 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2009.02.18 21:36:52 | 000,000,412 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
[2009.02.18 21:24:33 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009.02.18 19:54:25 | 000,000,000 | ---- | C] () -- C:\WINDOWS\vpc32.INI
[2009.02.18 19:08:15 | 000,000,125 | ---- | C] () -- C:\Documents and Settings\Miloš\Local Settings\Data aplikací\fusioncache.dat
[2009.01.19 13:39:11 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2009.01.19 10:49:38 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2009.01.19 10:29:03 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2009.01.19 10:19:08 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009.01.19 10:15:04 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009.01.19 10:14:36 | 000,476,352 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008.08.01 04:59:05 | 003,107,788 | ---- | C] () -- C:\WINDOWS\System32\ativvaxx.dat
[2008.08.01 04:59:05 | 003,107,788 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2008.08.01 04:59:05 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2008.06.23 14:47:40 | 000,174,820 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2007.11.09 13:01:59 | 000,000,164 | ---- | C] () -- C:\WINDOWS\System32\psyswin32.dll
[2007.08.21 22:51:16 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ATIODE.exe
[2007.08.21 20:36:12 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ATIODCLI.exe
[2005.10.14 11:56:50 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2005.10.14 11:56:50 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2005.10.14 11:56:50 | 000,778,240 | ---- | C] () -- C:\WINDOWS\System32\DivXsm.exe
[2005.10.14 11:56:50 | 000,344,064 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005.10.14 11:56:50 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2005.10.14 11:56:50 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2005.10.14 11:56:50 | 000,155,136 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2005.10.14 11:56:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2004.03.18 07:44:29 | 001,663,068 | ---- | C] () -- C:\WINDOWS\System32\libmmd.dll
[1980.01.01 00:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[1980.01.01 00:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[1980.01.01 00:00:00 | 000,535,906 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[1980.01.01 00:00:00 | 000,533,348 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[1980.01.01 00:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[1980.01.01 00:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[1980.01.01 00:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[1980.01.01 00:00:00 | 000,112,798 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[1980.01.01 00:00:00 | 000,096,678 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[1980.01.01 00:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[1980.01.01 00:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[1980.01.01 00:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[1980.01.01 00:00:00 | 000,014,060 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[1980.01.01 00:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[1980.01.01 00:00:00 | 000,004,524 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[1980.01.01 00:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[1980.01.01 00:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

========== LOP Check ==========

[2009.01.19 10:37:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[2009.01.19 13:29:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Temp
[2009.02.18 21:33:48 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonBJ
[2009.02.18 21:36:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ScanSoft
[2009.02.18 21:49:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2009.02.19 21:09:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Autodesk
[2009.02.20 16:16:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2009.02.20 16:17:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2009.02.20 18:15:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ashampoo
[2009.02.24 22:42:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SolidDocuments
[2009.02.25 21:19:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\vsosdk
[2009.02.26 22:32:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle
[2009.02.26 22:40:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SmartSound Software Inc
[2009.03.13 17:03:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ulead Systems
[2009.03.13 17:04:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\InterVideo
[2009.03.25 22:47:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Azureus
[2009.03.29 00:01:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Anvsoft
[2009.07.19 00:16:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\GARMIN
[2009.10.26 21:41:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Cogniview
[2009.11.17 16:05:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\WinZip
[2010.01.16 21:52:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Nokia
[2010.03.16 16:45:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\OviInstallerCache
[2010.05.07 22:04:48 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{55A29068-F2CE-456C-9148-C869879E2357}
[2010.05.07 22:05:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2010.05.07 22:28:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\NCH Swift Sound
[2010.11.09 22:06:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVerTV
[2010.11.10 22:07:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVerSetup
[2010.11.28 21:20:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\RapidSolution
[2011.01.11 15:03:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SnugTV
[2011.01.16 23:25:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Clarus
[2011.04.03 22:24:54 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2011.05.28 15:21:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EPLAN
[2011.05.28 16:13:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MyHeritage
[2011.08.10 20:44:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\USBSRService
[2011.09.03 15:32:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MAGIX
[2011.10.29 22:17:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
[2011.11.12 15:00:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\YouTube Downloader
[2009.03.14 08:04:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\IEPro
[2009.02.18 21:36:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\ScanSoft
[2009.02.18 21:49:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\ICQ
[2009.02.18 21:50:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\IEPro
[2009.02.19 21:09:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Autodesk
[2009.02.20 16:17:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Nokia
[2009.02.20 16:17:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\PC Suite
[2009.02.20 18:16:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Ashampoo
[2009.02.21 12:38:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Canon
[2009.02.22 22:07:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\XnView
[2009.02.24 22:43:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\SolidDocuments
[2009.02.24 22:53:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Musicmatch
[2009.02.25 00:07:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\GlarySoft
[2009.02.25 20:49:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Vso
[2009.02.25 23:22:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Any Video Converter
[2009.03.13 17:05:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Ulead Systems
[2009.03.25 22:47:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Azureus
[2009.03.29 08:53:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Zoner
[2009.03.31 23:38:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\IObit
[2009.04.18 21:23:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2009.05.05 20:55:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Orbit
[2009.05.05 20:56:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\GrabPro
[2009.05.14 22:24:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\FDRLab
[2009.07.19 00:16:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\GARMIN
[2009.07.26 22:31:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\fltk.org
[2009.07.26 22:35:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\anpo.republika.pl
[2009.10.20 22:53:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Any DVD Converter Professional
[2009.10.26 21:59:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Cogniview
[2009.10.31 20:13:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\TreeCardGames
[2009.11.12 22:21:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\geoget
[2009.12.31 15:23:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\OpenOffice.org
[2010.04.11 21:04:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\J River
[2010.05.07 22:05:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\TuneUp Software
[2010.05.07 22:27:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Audacity
[2010.05.07 22:28:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\NCH Swift Sound
[2010.05.15 22:20:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\JAlbum
[2010.06.10 22:09:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\PhotoScape
[2010.08.16 23:14:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Uniblue
[2010.11.28 21:30:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\DVDVideoSoftIEHelpers
[2010.12.27 17:59:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Digiarty
[2011.01.07 22:21:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\calibre
[2011.01.28 16:20:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Artisteer
[2011.03.05 16:28:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Raptr
[2011.05.07 10:26:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Movier
[2011.05.28 16:13:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\The Complete Genealogy Reporter - FTB
[2011.05.28 16:13:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\MyHeritage
[2011.08.10 20:44:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\USBSafelyRemove
[2011.09.03 15:34:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\MAGIX
[2011.09.27 19:03:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\ASCON
[2011.10.29 22:17:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\searchqutoolbar
[2011.10.29 22:17:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\searchquband
[2011.10.29 22:18:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\FreeMoviesToDVD
[2011.11.12 14:24:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\PersBackup5
[2012.01.12 21:51:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\OpenCandy
[2012.01.13 17:21:34 | 000,000,308 | ---- | M] () -- C:\WINDOWS\Tasks\GlaryInitialize.job
[2010.05.07 22:28:46 | 000,000,256 | ---- | M] () -- C:\WINDOWS\Tasks\expressburnShakeIcon.job
[2012.01.13 17:29:02 | 000,000,234 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job

========== Purity Check ==========



========== Custom Scans ==========


< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"USB Safely Remove" = C:\Program Files\USB Safely Remove\USBSafelyRemove.exe /startup -- [2010.12.25 03:09:44 | 001,794,392 | ---- | M] (Crystal Rich Ltd)
"Linkury Chrome Smartbar" = C:\Documents and Settings\Miloš\Local Settings\Data aplikací\Linkury\Application\Linkury.exe startup -- [2011.12.29 19:28:52 | 000,019,768 | ---- | M] ()
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 14:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation)

< >


< MD5 for: AGP440.SYS >
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\I386\sp3.cab:AGP440.sys
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys

< MD5 for: ATAPI.SYS >
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\I386\sp3.cab:atapi.sys
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008.04.14 15:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\i386\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0009\DriverFiles\i386\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\I386\AUTOCHK.EXE
[2008.04.14 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2008.04.14 15:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\dllcache\autochk.exe

< MD5 for: CDROM.SYS >
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\I386\sp3.cab:cdrom.sys
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 14:00:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2008.04.14 14:00:00 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ERDNT\cache\cryptsvc.dll
[2008.04.14 14:00:00 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
[2008.04.14 15:00:00 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\dllcache\cryptsvc.dll

< MD5 for: CSRSS.EXE >
[2008.04.14 14:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=628CE66E3FD35BFC7969DBAC245DC069 -- C:\WINDOWS\system32\csrss.exe
[2008.04.14 15:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=628CE66E3FD35BFC7969DBAC245DC069 -- C:\WINDOWS\system32\dllcache\csrss.exe

< MD5 for: EVENTLOG.DLL >
[2008.04.14 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2008.04.14 15:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2008.04.14 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2008.06.06 14:03:52 | 000,007,216 | ---- | M] () MD5=C2A279A458A06DE2C83D842AA042B5A8 -- C:\Program Files\CyberLink\PowerDirector\EventLog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 14:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008.04.14 14:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 14:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\system32\dllcache\explorer.exe

< MD5 for: FASTFAT.SYS >
[2008.04.14 14:00:00 | 000,143,744 | ---- | M] (Microsoft Corporation) MD5=38D332A6D56AF32635675F132548343E -- C:\WINDOWS\system32\dllcache\fastfat.sys
[2008.04.14 14:00:00 | 000,143,744 | ---- | M] (Microsoft Corporation) MD5=38D332A6D56AF32635675F132548343E -- C:\WINDOWS\system32\drivers\fastfat.sys

< MD5 for: HAL.DLL >
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\I386\sp3.cab:hal.dll
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 14:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\hal.dll

< MD5 for: CHANGER.SYS >
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\I386\sp3.cab:Changer.sys
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys

< MD5 for: ISAPNP.SYS >
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\I386\sp3.cab:isapnp.sys
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 14:00:00 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys

< MD5 for: LSASS.EXE >
[2008.04.14 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ERDNT\cache\lsass.exe
[2008.04.14 15:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\dllcache\lsass.exe
[2008.04.14 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.14 14:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2008.04.14 14:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys
[2008.04.14 14:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys

< MD5 for: NETLOGON.DLL >
[2008.04.14 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2008.04.14 15:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2008.04.14 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: NTFS.SYS >
[2008.04.14 14:00:00 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\I386\NTFS.SYS
[2008.04.14 14:00:00 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\ERDNT\cache\ntfs.sys
[2008.04.14 14:00:00 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\system32\dllcache\ntfs.sys
[2008.04.14 14:00:00 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\system32\drivers\ntfs.sys
[2004.08.03 23:15:10 | 000,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\cmdcons\NTFS.SYS

< MD5 for: SCECLI.DLL >
[2008.04.14 14:00:00 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 15:00:00 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\dllcache\scecli.dll
[2008.04.14 14:00:00 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SERVICES.EXE >
[2009.02.09 13:18:56 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=3D107D45CCFDB266E91D84B52CD7F430 -- C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\services.exe
[2009.02.09 13:25:58 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\ERDNT\cache\services.exe
[2009.02.09 13:25:58 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\system32\dllcache\services.exe
[2009.02.09 13:25:58 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\system32\services.exe
[2008.04.14 14:00:00 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=F0D2AE69035092BF22DAD6B50FAB85C2 -- C:\WINDOWS\$NtUninstallKB956572$\services.exe

< MD5 for: SMSS.EXE >
[2004.08.17 15:49:28 | 000,164,864 | ---- | M] (Microsoft Corporation) MD5=3C100B7FDB179B63829103DF6541337F -- C:\cmdcons\SYSTEM32\SMSS.EXE
[2008.04.14 15:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\dllcache\smss.exe
[2008.04.14 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
[2008.04.14 14:00:00 | 000,481,792 | ---- | M] (Microsoft Corporation) MD5=F209B5C79A87A9521DC0BD88B039EEE3 -- C:\I386\SYSTEM32\SMSS.EXE

< MD5 for: SPOOLSV.EXE >
[2010.08.17 15:19:36 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=258DD5D4283FD9F9A7166BE9AE45CE73 -- C:\WINDOWS\$hf_mig$\KB2347290\SP3QFE\spoolsv.exe
[2010.08.17 15:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=60784F891563FB1B767F70117FC2428F -- C:\WINDOWS\ERDNT\cache\spoolsv.exe
[2010.08.17 15:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=60784F891563FB1B767F70117FC2428F -- C:\WINDOWS\system32\dllcache\spoolsv.exe
[2010.08.17 15:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=60784F891563FB1B767F70117FC2428F -- C:\WINDOWS\system32\spoolsv.exe
[2008.04.14 14:00:00 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=CB1090BCA0E7B40D0B5B4E4D66531809 -- C:\WINDOWS\$NtUninstallKB2347290$\spoolsv.exe

< MD5 for: SVCHOST.EXE >
[2008.04.14 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2008.04.14 15:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\dllcache\svchost.exe
[2008.04.14 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\ERDNT\cache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 14:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2008.04.14 14:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\dllcache\userinit.exe
[2008.04.14 14:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe

< MD5 for: WINLOGON.EXE >
[2008.04.14 14:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008.04.14 15:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2008.04.14 14:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< MD5 for: WS2_32.DLL >
[2008.04.14 14:00:00 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ERDNT\cache\ws2_32.dll
[2008.04.14 15:00:00 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\dllcache\ws2_32.dll
[2008.04.14 14:00:00 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll

< >

< C:\windows\system32\spool\prtprocs|dll;true;true;true /FP >
[2008.07.06 13:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
[2007.03.18 21:00:00 | 000,027,136 | ---- | M] (CANON INC.) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPD8T.DLL
[2007.03.18 21:00:00 | 000,069,632 | ---- | M] (CANON INC.) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPP8T.DLL
[2004.03.22 15:17:08 | 000,025,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll
[2008.07.06 13:06:10 | 000,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\x64\filterpipelineprintproc.dll

< %systemroot%\system32\drivers\*.sys /5 >

< %systemroot%\system32\drivers\*.sys /X >
[2008.04.14 14:00:00 | 003,440,660 | ---- | M] () -- C:\WINDOWS\system32\drivers\gm.dls
[2008.04.14 14:00:00 | 000,000,646 | ---- | M] () -- C:\WINDOWS\system32\drivers\gmreadme.txt
[2008.08.01 04:39:52 | 000,053,248 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\drivers\ati2erec.dll
[2006.01.24 19:45:16 | 000,000,020 | ---- | M] () -- C:\WINDOWS\system32\drivers\SymRedir.cat
[2006.01.24 19:45:16 | 000,001,133 | ---- | M] () -- C:\WINDOWS\system32\drivers\SymRedir.inf
[2009.03.18 20:55:30 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
[2009.03.18 20:55:30 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
[2009.11.19 21:29:06 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\system32\drivers\MsftWdf_user_01_07_00.Wdf
[2009.11.19 21:29:08 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\system32\drivers\Msft_User_PCCSWpdDriver_01_07_00.Wdf
[2011.02.25 15:50:40 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\system32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2011.05.28 15:28:34 | 000,004,856 | ---- | M] () -- C:\WINDOWS\system32\drivers\B5187ED5.bin

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\system32\*.* /5 >
[2012.01.11 22:19:24 | 000,096,678 | ---- | M] () -- C:\WINDOWS\system32\perfc009.dat
[2012.01.11 22:19:24 | 000,535,906 | ---- | M] () -- C:\WINDOWS\system32\perfh009.dat
[2012.01.11 22:19:24 | 000,112,798 | ---- | M] () -- C:\WINDOWS\system32\perfc005.dat
[2012.01.11 22:19:24 | 000,533,348 | ---- | M] () -- C:\WINDOWS\system32\perfh005.dat
[2012.01.11 22:20:24 | 052,128,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MRT.exe
[2012.01.11 22:19:24 | 001,256,046 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI
[2012.01.13 17:21:24 | 000,003,568 | ---- | M] () -- C:\WINDOWS\system32\ativvaxx.cap

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\config\*.sav >
[2009.01.19 10:14:00 | 000,524,288 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
[2009.01.19 10:14:00 | 001,093,632 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2009.01.19 10:14:00 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\*.* /U /s >
[5 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]

< %systemroot%\*. /mp /s >

< %ALLUSERSPROFILE%\Data Aplikací\*.* >
[2009.01.19 10:14:58 | 000,000,062 | -HS- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\desktop.ini

< %ALLUSERSPROFILE%\Data Aplikací\*.exe /s >
[2007.03.23 22:10:18 | 003,124,038 | ---- | M] (Microsoft Corporation ) -- C:\Documents and Settings\All Users\Data Aplikací\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}\Microsoft Office Activation Assistant.exe
[2010.08.02 07:23:36 | 010,682,513 | ---- | M] (AVerMedia Technologies, Inc. ) -- C:\Documents and Settings\All Users\Data Aplikací\AVerSetup\SnugTVStationSetup-v2010_07_27.exe
[2011.01.10 12:15:06 | 011,153,553 | ---- | M] (AVerMedia Technologies, Inc. ) -- C:\Documents and Settings\All Users\Data Aplikací\AVerSetup\SnugTVStationSetup-v2011_01_07.exe
[2008.12.22 08:14:20 | 033,981,616 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{58FB2F9A-5F2D-40E8-82DF-4987E60AD8BD}\Nokia_PC_Suite_7_1_18_0_cze_web.exe
[2009.02.20 16:16:26 | 000,008,192 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{58FB2F9A-5F2D-40E8-82DF-4987E60AD8BD}\Installer\CommonCustomActions\UninstCCD.exe
[2009.02.20 16:16:26 | 000,010,240 | ---- | M] (Nokia) -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{58FB2F9A-5F2D-40E8-82DF-4987E60AD8BD}\Installer\CommonCustomActions\UninstPCS.exe
[2009.02.20 16:16:26 | 000,061,440 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{58FB2F9A-5F2D-40E8-82DF-4987E60AD8BD}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
[2010.01.16 21:43:28 | 034,698,816 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Nokia_PC_Suite_7_1_40_1_cze.exe
[2010.01.16 21:44:00 | 000,008,192 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstCCD.exe
[2010.01.16 21:44:00 | 000,010,240 | ---- | M] (Nokia) -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstPCS.exe
[2010.01.16 21:44:00 | 000,061,440 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
[2010.01.16 21:44:00 | 000,095,232 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\pcswpcsi.exe
[2010.03.14 19:13:44 | 034,818,368 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{D8DDC00B-2881-407D-AAC2-44AEE70AF0B7}\NokiaSoftwareUpdaterSetup_2.4.6CZ.exe
[2010.03.14 19:14:04 | 003,203,453 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{D8DDC00B-2881-407D-AAC2-44AEE70AF0B7}\Installer\CommonCustomActions\vcredistExec.exe
[2010.03.14 19:14:04 | 000,036,864 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{D8DDC00B-2881-407D-AAC2-44AEE70AF0B7}\Installer\CommonCustomActions\Sleep.exe
[2010.03.14 19:14:04 | 003,351,812 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{D8DDC00B-2881-407D-AAC2-44AEE70AF0B7}\Installer\CommonCustomActions\msxml6Exec.exe
[2005.10.08 16:14:46 | 000,040,960 | ---- | M] (Magix AG) -- C:\Documents and Settings\All Users\Data Aplikací\MAGIX\Movie_Edit_Pro_15_silver\Default\fcdummy.exe
[2009.03.19 08:10:18 | 000,029,912 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\MAGIX\Movie_Edit_Pro_15_silver\Default\Validation.exe
[2004.09.13 13:29:46 | 000,200,704 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\MAGIX\Movie_Edit_Pro_15_silver\DVD\WMV_DISC\licgen.exe
[1997.10.15 22:03:40 | 000,018,944 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\MAGIX\Movie_Edit_Pro_15_silver\DVD\WMV_DISC\components\shelexec.exe
[2003.11.04 18:20:34 | 000,006,144 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\MAGIX\Movie_Edit_Pro_15_silver\DVD\WMV_DISC\components\videowritetest.exe
[2011.07.26 23:59:48 | 009,466,208 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\All Users\Data Aplikací\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe
[2010.06.26 13:58:10 | 002,568,656 | ---- | M] (Adobe Systems, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\NOS\Adobe_Downloads\install_flash_player.exe
[2010.03.16 16:36:00 | 098,366,952 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Nokia_Ovi_Suite_webinstaller_ALL.exe
[2010.03.16 22:48:20 | 000,050,000 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\pcswpc.exe
[2010.03.16 22:48:20 | 000,077,824 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\Run_XML6_SP1.exe
[2010.03.16 22:48:20 | 000,058,880 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\WMF11Runx64.exe
[2010.03.16 22:48:20 | 000,061,440 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\WMF11Runx86.exe
[2010.03.16 22:48:22 | 013,930,312 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\All Users\Data Aplikací\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X64-ENU.exe
[2010.03.16 22:48:24 | 012,212,040 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\All Users\Data Aplikací\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X86-ENU.exe
[2010.12.01 22:53:14 | 085,786,704 | ---- | M] (PC Tools ) -- C:\Documents and Settings\All Users\Data Aplikací\PC Tools\DownloadManager\Spyware Doctor8.0\sdsetup_dl.exe
[2009.02.24 22:43:10 | 002,686,232 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\All Users\Data Aplikací\SolidDocuments\Installer\Solid PDF Tools\Miloš\SolidSFX_Data\components\vcredist_x86.exe
[2009.01.19 13:29:28 | 000,053,319 | ---- | M] ( ) -- C:\Documents and Settings\All Users\Data Aplikací\Temp\{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}\PostBuild.exe
[2010.02.16 22:52:24 | 000,036,864 | ---- | M] ( ) -- C:\Documents and Settings\All Users\Data Aplikací\Temp\{80E158EA-7181-40FE-A701-301CE6BE64AB}\PostBuild.exe
[2011.10.09 17:25:04 | 000,036,864 | ---- | M] ( ) -- C:\Documents and Settings\All Users\Data Aplikací\Temp\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\PostBuild.exe
[2011.11.12 15:01:12 | 005,342,064 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\YouTube Downloader\ytd_installer.exe

< %ALLUSERSPROFILE%\Dáta aplikácií\*.* >

< %ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s >

< %APPDATA%\*. >
[2009.01.19 10:30:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Identities
[2009.01.19 13:27:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Nero
[2009.01.19 13:30:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\CyberLink
[2009.01.19 10:14:46 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Miloš\Data aplikací\Microsoft
[2009.02.18 20:07:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Google
[2009.02.18 20:14:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Help
[2009.02.18 21:36:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\ScanSoft
[2009.02.18 21:49:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\ICQ
[2009.02.18 21:49:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla
[2009.02.18 21:50:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\IEPro
[2009.02.18 21:50:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Adobe
[2009.02.18 21:50:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Macromedia
[2009.02.18 22:08:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\AdobeUM
[2009.02.19 06:13:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\ArcSoft
[2009.02.19 19:21:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\WinRAR
[2009.02.19 19:46:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\FastStone
[2009.02.19 21:09:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Autodesk
[2009.02.20 16:17:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Nokia
[2009.02.20 16:17:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\PC Suite
[2009.02.20 18:16:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Ashampoo
[2009.02.21 12:38:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Canon
[2009.02.22 22:07:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\XnView
[2009.02.24 21:19:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Corel
[2009.02.24 22:43:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\SolidDocuments
[2009.02.24 22:53:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Musicmatch
[2009.02.25 00:07:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\GlarySoft
[2009.02.25 20:49:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Vso
[2009.02.25 23:22:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Any Video Converter
[2009.02.26 22:27:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\InstallShield
[2009.03.13 17:05:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Ulead Systems
[2009.03.25 22:45:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Sun
[2009.03.25 22:47:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Azureus
[2009.03.28 13:40:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Media Player Classic
[2009.03.29 08:53:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Zoner
[2009.03.31 23:38:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\IObit
[2009.04.18 21:23:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2009.05.05 20:55:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Orbit
[2009.05.05 20:56:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\GrabPro
[2009.05.09 11:19:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\AVS4YOU
[2009.05.12 21:23:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Winamp
[2009.05.14 22:24:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\FDRLab
[2009.05.27 22:19:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Real
[2009.07.19 00:16:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\GARMIN
[2009.07.26 22:31:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\fltk.org
[2009.07.26 22:35:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\anpo.republika.pl
[2009.10.20 22:53:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Any DVD Converter Professional
[2009.10.20 22:54:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\dvdcss
[2009.10.26 21:59:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Cogniview
[2009.10.31 20:13:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\TreeCardGames
[2009.11.12 22:21:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\geoget
[2009.12.31 15:23:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\OpenOffice.org
[2010.04.10 22:52:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Apple Computer
[2010.04.11 21:04:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\J River
[2010.05.07 22:05:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\TuneUp Software
[2010.05.07 22:27:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Audacity
[2010.05.07 22:28:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\NCH Swift Sound
[2010.05.15 22:20:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\JAlbum
[2010.06.10 22:09:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\PhotoScape
[2010.08.16 23:14:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Uniblue
[2010.11.28 21:30:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\DVDVideoSoftIEHelpers
[2010.12.27 17:59:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Digiarty
[2011.01.07 22:21:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\calibre
[2011.01.28 16:20:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Artisteer
[2011.03.05 16:28:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Raptr
[2011.03.12 13:27:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\ABBYY
[2011.04.15 22:41:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Malwarebytes
[2011.05.03 06:00:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Skype
[2011.05.07 10:26:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\Movier
[2011.05.28 16:13:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\The Complete Genealogy Reporter - FTB
[2011.05.28 16:13:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\MyHeritage
[2011.08.10 20:44:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\USBSafelyRemove
[2011.09.03 15:34:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\MAGIX
[2011.09.27 19:03:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\ASCON
[2011.10.29 22:17:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\searchqutoolbar
[2011.10.29 22:17:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\searchquband
[2011.10.29 22:18:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\FreeMoviesToDVD
[2011.11.12 14:24:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\PersBackup5
[2012.01.12 21:51:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Miloš\Data aplikací\OpenCandy

< %APPDATA%\*.* >
[2009.01.19 10:14:58 | 000,000,062 | -HS- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\desktop.ini
[2009.02.25 20:49:32 | 000,001,144 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\pcouffin.inf
[2009.02.25 20:49:32 | 000,047,360 | ---- | M] (VSO Software) -- C:\Documents and Settings\Miloš\Data aplikací\pcouffin.sys
[2009.02.25 20:49:32 | 000,007,887 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\pcouffin.cat
[2009.02.25 20:49:34 | 000,000,034 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\pcouffin.log
[2011.12.25 22:05:02 | 000,150,592 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\GDIPFONTCACHEV1.DAT
[2010.12.05 14:58:48 | 000,000,096 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\default.pls
[2010.12.05 19:01:42 | 000,001,057 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\vso_ts_preview.xml

< %APPDATA%\*.exe /s >
[2010.08.12 22:31:16 | 000,310,208 | ---- | M] (Georgia Institute of Technology) -- C:\Documents and Settings\Miloš\Data aplikací\Azureus\plugins\mlab\ShaperProbeC.exe
[2012.01.08 16:26:54 | 009,739,704 | ---- | M] (Vuze Inc.) -- C:\Documents and Settings\Miloš\Data aplikací\Azureus\tmp\AZU4027558018431363111.tmp\Vuze_4.7.0.2d_win32.exe
[2011.12.24 15:00:42 | 000,188,152 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\Mozilla\Firefox\Profiles\0fzox30t.default\FlashGot.exe
[2011.02.02 09:26:24 | 075,862,048 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\Nokia\Ovi Suite\Software Updater\NokiaOviSuite2Installer.exe
[2012.01.12 21:51:38 | 005,926,256 | ---- | M] () -- C:\Documents and Settings\Miloš\Data aplikací\OpenCandy\1A365107155B4CF1B4F9452F52637750\LinkuryInstaller_p1v9.exe
[2010.12.01 23:31:32 | 000,506,024 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\Miloš\Data aplikací\Real\Update\setup3.13\setup.exe
[2012.01.07 21:12:18 | 000,315,512 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\Miloš\Data aplikací\Real\Update\UpgradeHelper\RealPlayer\9.01\rnupgagent.exe

< %SYSTEMDRIVE%\*.exe >

< >

< >

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2012-01-11 21:27:08

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\BITS /s >
"StateIndex" = 1

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER
BOOTEXECUTE REG_MULTI_SZ autocheck autochk *\0\0

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER

< >

< type c:\boot.ini >> test.txt /c >
[boot loader]
timeout=5
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.01.13 17:54:30 | 000,000,512 | ---- | M] () MD5=888E59F94B79A1B2CECA2D8442C11007 -- C:\PhysicalMBR.bin

< >

< >

========== Files - Unicode (All) ==========
[2009.06.20 10:23:10 | 000,000,000 | ---D | M](C:\Documents and Settings\Milo?\Data aplikací\Nokia) -- C:\Documents and Settings\Miloš\Data aplikací\Nokia
[2009.02.19 20:17:02 | 000,030,208 | ---- | C] ()(C:\Documents and Settings\Miloš\Dokumenty\?? ???????? EMCOS s.doc) -- C:\Documents and Settings\Miloš\Dokumenty\ОБ ОБЩЕСТВЕ EMCOS s.doc
[2008.06.26 20:49:30 | 000,030,208 | ---- | M] ()(C:\Documents and Settings\Miloš\Dokumenty\?? ???????? EMCOS s.doc) -- C:\Documents and Settings\Miloš\Dokumenty\ОБ ОБЩЕСТВЕ EMCOS s.doc

< End of report >

[emcos]

OTL Extras logfile created on: 13.1.2012 17:52:38 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Miloš\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,25 Gb Total Physical Memory | 2,29 Gb Available Physical Memory | 70,39% Memory free
9,09 Gb Paging File | 8,51 Gb Available in Paging File | 93,68% Paging File free
Paging file location(s): [Binary data over 100 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 465,65 Gb Total Space | 274,03 Gb Free Space | 58,85% Space Free | Partition Type: FAT32
Drive D: | 931,28 Gb Total Space | 167,97 Gb Free Space | 18,04% Space Free | Partition Type: FAT32

Computer Name: DA364126 | User Name: Miloš | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [FSIV] -- "C:\Program Files\FastStone Image Viewer\FSViewer.exe" "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\ICQ7.6\ICQ.exe" = C:\Program Files\ICQ7.6\ICQ.exe:*:Enabled:ICQ7.6 -- (ICQ, LLC.)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\totalcmd\TOTALCMD.EXE" = C:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows -- (Ghisler Software GmbH)
"C:\Program Files\Foxit Software\PDF Editor\PDFEdit.exe" = C:\Program Files\Foxit Software\PDF Editor\PDFEdit.exe:*:Enabled:Foxit PDF Editor, the first REAL editor for PDF files! -- (Foxit Software Company)
"C:\Program Files\Real\RealPlayer\RecordingManager.exe" = C:\Program Files\Real\RealPlayer\RecordingManager.exe:*:Enabled:RealNetworks Download and Record Manager -- (RealNetworks, Inc.)
"C:\Program Files\Java\JRE6\BIN\java.exe" = C:\Program Files\Java\JRE6\BIN\java.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe" = C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater -- (Nokia Corporation)
"C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe" = C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process -- (Nokia Corporation)
"C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe" = C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe:*:Enabled:Nokia Ovi Suite 2 -- (Nokia)
"C:\Program Files\SnugTV\SnugTV Station\ConfigMaster.exe" = C:\Program Files\SnugTV\SnugTV Station\ConfigMaster.exe:*:Enabled:SnugTV Configuration Master -- (AVerMedia Technologies, Inc.)
"C:\Program Files\SnugTV\SnugTV Station\ConfigWizard.exe" = C:\Program Files\SnugTV\SnugTV Station\ConfigWizard.exe:*:Enabled:SnugTV Configuration Wizard -- (AVerMedia Technologies, Inc.)
"C:\Program Files\Google\Google Earth\client\googleearth.exe" = C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth -- (Google)
"C:\Program Files\EPLAN\Electric P8\1.9.11\BIN\W3u.exe" = C:\Program Files\EPLAN\Electric P8\1.9.11\BIN\W3u.exe:*:Enabled:EPLAN W3 -- (EPLAN Software & Service GmbH & Co. KG)
"C:\WINDOWS\System32\hasplms.exe" = C:\WINDOWS\System32\hasplms.exe:*:Enabled:HASP License Manager -- (SafeNet Inc.)
"C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe" = C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit -- (Apple Inc.)
"C:\Program Files\ICQ7.6\ICQ.exe" = C:\Program Files\ICQ7.6\ICQ.exe:*:Enabled:ICQ7.6 -- (ICQ, LLC.)
"C:\Program Files\SnugTV\SnugTV Station\AMAServer.exe" = C:\Program Files\SnugTV\SnugTV Station\AMAServer.exe:*:Enabled:SnugTV Service -- (AVerMedia Technologies, Inc.)
"C:\Program Files\Vuze\Azureus.exe" = C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze -- (Vuze Inc.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0100BD88-3990-431F-9175-AB60E31AFFDE}" = EPLAN License Client
"{066F8ECD-D51D-41E0-BEA8-F6A437D4EFFD}" = Mediaraptor
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0C127331-DAFB-4797-BAAE-1F3D042030CC}" = PhotoFilter 1.0
"{10F755FD-ED31-4ABF-8720-49A399C52297}" = calibre
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP220_series" = Canon MP220 series
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{198F93FD-9919-4010-8164-06BC2349959C}" = SnugTV Station
"{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = YouTube Downloader 3.4
"{1BBD9C84-4FDE-4318-8A32-B31CF4CF4CF8}" = TOPO Czech 3.1
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Nástroj pro odesílání služby Windows Live
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 23
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}" = CyberLink PowerDVD 8
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3862105D-1AD3-470D-9CE5-94A2DB91D6CC}" = Slovakia_Topo_v3_Beta2
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3C19E918-13AF-4C57-B50D-8C3738EFCABF}" = TOPO Czech 2010
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3E62B27C-342F-4B44-9331-CA4BC59A586F}" = Asistent pro přihlášení ke službě Windows Live
"{45D4F727-43B5-49CD-B474-B9866A8F4FB8}" = Nokia Map Loader
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin
"{4BE1E11A-4580-41BE-899F-60B5DC1DB2EA}" = Cogniview PDF2XL OCR Evaluation
"{4E1CD3D5-D4EE-4246-AE24-F0FD5A60390D}" = OviMPlatform
"{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}" = Photo Story 3 for Windows
"{4F50C25D-9236-42EE-86A4-F0BC39A543AE}" = TOPO Czech 3.1 PRO
"{4FFD1AB4-54F0-4069-88D9-3A55B38F874B}" = Nokia Ovi Suite Software Updater
"{50D028BA-9E14-4CD3-98D1-4CF921F7B057}" = The Panorama Factory V5 m32 Edition
"{521AAD14-5030-44BB-8B0E-5CE65FCE57E0}" = InterVideo DeviceService
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5783F2D7-0221-0405-0000-0060B0CE6BBA}" = DWG TrueConvert™
"{5783F2D7-0301-0405-0002-0060B0CE6BBA}" = AutoCAD 2005 - Český
"{5783F2D7-8001-0405-0002-0060B0CE6BBA}" = AutoCAD 2010 - česky
"{5783F2D7-8001-0405-1002-0060B0CE6BBA}" = Jazykový balíček aplikace AutoCAD 2010 - čeština
"{57C14BDB-7D29-4DB9-98CA-F5F49120B8CF}" = Software for DVD Video Camera
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{60DED9C2-22BF-47A3-B6C8-6B141BA31DFD}" = Ovi Desktop Sync Engine
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{65F9E1F3-A2C1-4AA9-9F33-A3AEB0255F0E}" = Garmin USB Drivers
"{66491E5A-7899-4863-A2E9-057E10BCB578}" = Samsung SecretZone
"{6A3F9D74-BB80-4451-8CA1-4B3A857F1359}" = Apple Application Support
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{70986410-EFB0-11D5-AFA3-000629F9FE32}" = Elektronický katalog Schneider Electric 2008
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71F07569-1EE3-4FB6-8432-8E28A71F5A64}" = AVSVideoConverter6 & Remaker
"{7397EDED-F38A-4654-B669-BF61065803D0}" = PC Connectivity Solution
"{7644E42D-B096-457F-8B5B-901238FC81AE}" = ICQ7.6
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{77812021-EECC-419F-A906-F44B78A4C5F5}" = TOPO Czech v 1.20
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78D891EF-9E2D-4FC8-A71F-E6F897BA1B21}" = Symantec AntiVirus
"{7AA38575-25A1-4C2F-B40B-2188EB73FF0E}" = Garmin TOPO Österreich v2
"{80E158EA-7181-40FE-A701-301CE6BE64AB}" = CyberLink MediaShow
"{821D6F49-1B20-4809-8C73-286CFC52B1B1}" = Samsung Auto Backup
"{85D3CC30-8859-481A-9654-FD9B74310BEF}" = Musicmatch® Jukebox
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{8715FC88-4ED3-4B10-ABCE-F74090AF96C3}" = Linkury Smartbar
"{891D0B03-05DF-4CD1-B267-268FDA1C1029}" = Nero 8 Essentials
"{8C20F904-9288-4A7A-A0C4-1458AA2B295E}" = TOPO Czech PRO 2011
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90280405-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional s aplikací FrontPage
"{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}" = Nokia PC Suite
"{92C41B26-EBC5-41C5-8B6F-E3EF7E57FF16}" = AVerMedia Applications
"{93028F9A-1EC0-467A-981B-DE93D96897C6}" = Windows Live Essentials
"{944EDC84-FD35-47CF-A8B0-C9F4C58479E1}" = HTML kódy
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D765FA6-F2BC-40AF-8145-50808F9BDF4E}" = DVD-RAM Driver
"{9E491AB7-4589-48CA-9CBB-874CB2788391}" = Studio 9
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A2DE62D8-EF1B-36CB-B461-B1E221ED8608}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A49098C1-980A-4C99-A579-4D10409AD899}" = DVDfunSTUDIO
"{A62392EE-03CB-4FA8-8E79-B5F95A346FB3}" = Kontrola české gramatiky pro sadu Microsoft Office 2003
"{A8019072-B760-47E2-9BDD-DF94B4FBFFBB}" = ArcSoft TotalMedia Backup
"{A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2}" = PixiePack Codec Pack
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-A94000000001}" = Adobe Reader 9.4.7 - Czech
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{AE255C55-E0CF-4591-AA86-CAA19AA32C53}" = Garmin TOPO Deutschland v3
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{AFBAB9A0-DDE8-49AE-8C17-A01B61BEE64B}" = Garmin MapSource
"{AFE499B5-FCC4-45E6-A1A5-3C51AE0E539B}" = Mobipocket Creator 4.2
"{AFE83615-88BE-47F6-B3E4-A3FEF8B7B57F}_is1" = xrecode II 1.0.0.137
"{B1102A25-3AA3-446B-AA0F-A699B07A02FD}" = Garmin USB Drivers
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B67624DE-75CE-4FAD-9F29-5C115773CE61}" = Studio 9 Content CD/DVD
"{B9C9DB4C-6D77-4AE9-AD1C-C708C23239A0}" = Nokia Connectivity Cable Driver
"{BB406CEB-6207-4512-9BB2-89950DC9D6B6}_is1" = ConvertXtoDVD 2.0.9b
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C7DD94A8-F775-426C-B56C-8E555A59F9E2}" = Garmin Communicator Plugin
"{C9E14402-3631-4182-B377-6B0DFB1C0339}" = QuickTime
"{CA567AD5-33A4-403D-86D1-EE2D38251951}_is1" = VDownloader 0.73
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D8DDC00B-2881-407D-AAC2-44AEE70AF0B7}" = Nokia Software Updater
"{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}" = Nokia Ovi Suite
"{DEE88727-779B-47A9-ACEF-F87CA5F92A65}" = ScanSoft OmniPage SE 4
"{E10D2C16-8584-41C5-8DCD-DC91554B1158}" = EPLAN Electric P8 1.9.11
"{E26C402E-01FE-4EF2-964A-AC54734539B7}" = DVD-MovieAlbumSE 4.3
"{E28B1E6F-E0AA-4228-AB89-DB4A0C89D426}" = AVerTV
"{E29CFB36-F070-4612-8DB5-7038161B6294}" = O&O Defrag Free Edition
"{E55B3271-7CA8-4D0C-AE06-69A24856E996}_is1" = Uniblue SpeedUpMyPC
"{E7C6D565-2E48-4303-A114-AFE7B2E561AF}_is1" = FotoSketcher 2.10
"{EC25B803-4BDB-47F7-B877-FCE7D7966C0F}" = Visual C++ CRT 9.0 SP1
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1BA3CD5-89DC-4273-8603-A75F33E9B335}" = Nokia Connectivity Adapter Cable DKU-5
"{F1CECE09-7CBE-4E98-B435-DA87CDA86167}" = Skype™ 5.3
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F9000000-0001-0000-0000-074957833700}" = ABBYY FineReader 9.0 Professional Edition
"{F983A570-F639-11DC-72AE-016197C62CD6}" = LP Recorder - Magazine CD
"{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9}" = VideoStudio
"{FAB43061-FEFB-46E8-A159-96710395DB5E}" = OpenOffice.org 3.2
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"05B59228C7E1C21DFBE89260F879BD95880548D8" = Balíček ovladače systému Windows - Nokia Modem (10/05/2009 4.2)
"3DJournal - FREE" = 3DJournal - FREE v.2.1
"3GP Player_is1" = 3GP Player 1.1.7
"45A7283175C62FAC673F913C1F532C5361F97841" = Windows Driver Package - Garmin (grmnusb) GARMIN Devices (03/08/2007 2.2.1.0)
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"7-Zip" = 7-Zip 4.65
"8461-7759-5462-8226" = Vuze
"8CDCFB95BB84DD9C0F88F22266A0CA86035E55BA" = Balíček ovladače systému Windows - Nokia Modem (06/01/2009 7.01.0.4)
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop 7.0" = Adobe Photoshop 7.0
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Aide PDF to DXF Converter_is1" = Aide PDF to DXF Converter 9.6
"Amazon Kindle" = Amazon Kindle
"Any DVD Converter Professional_is1" = Any DVD Converter Professional 3.7.8
"Any Video Converter_is1" = Any Video Converter 2.6.7
"Artisteer 2" = Artisteer 2
"Ashampoo Burning Studio 2009_is1" = Ashampoo Burning Studio 2009
"Ashampoo Burning Studio 2010 Advanced_is1" = Ashampoo Burning Studio 2010 Advanced
"Ashampoo Burning Studio 2010_is1" = Ashampoo Burning Studio 2010
"Ashampoo Burning Studio 2012_is1" = Ashampoo Burning Studio 2012 v10.0.15
"Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE v.6.80
"Ashampoo Burning Studio Elements_is1" = Ashampoo Burning Studio Elements 10.0.4
"Ashampoo Photo Optimizer 3_is1" = Ashampoo Photo Optimizer 3 v.3.13
"Ashampoo Undeleter_is1" = Ashampoo Undeleter v.1.00
"ATI Display Driver" = ATI Display Driver
"Audacity_is1" = Audacity 1.2.6
"AutoCAD 2010 - česky" = AutoCAD 2010 - česky
"Autodesk DWF Viewer" = Autodesk DWF Viewer
"AVerMedia A867 USB DVB-T" = AVerMedia A867 USB DVB-T 8.0.0.55
"Avi2Dvd" = Avi2Dvd 0.5
"AviSynth" = AviSynth 2.5
"AXIS Media Control Embedded" = AXIS Media Control Embedded
"Běžecké tratě Chip 2012" = Běžecké tratě Chip 2012
"CanonMyPrinter" = Canon My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"CCleaner" = CCleaner
"cGPSmapper Free_is1" = cGPSmapper Free 0100d
"Corel Applications" = Corel Applications
"CrystalDiskInfo_is1" = CrystalDiskInfo 4.1.3
"Cykloturistický průvodce_is1" = Cykloturistický průvodce ČR verze 1.4.1
"DVDFab Platinum 4_is1" = DVDFab Platinum 4.1.2.0
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"ERIFLEX SYSTEM v4.0" = ERIFLEX SYSTEM v4.0
"EVEREST Ultimate + Corporate Edition_is1" = EVEREST Ultimate v4.20.1257 + Corporate Edition Beta Registered
"Expstudio Audio Editor FREE" = Expstudio Audio Editor FREE
"Family Tree Builder" = MyHeritage Family Tree Builder
"FastStone Image Viewer" = FastStone Image Viewer 2.9
"ffdshow_is1" = ffdshow [rev 2844] [2009-03-30]
"FinePrint pdfFactory" = FinePrint pdfFactory
"Firebird SQL Server UK" = Firebird SQL Server - MAGIX Edition
"FLV Player" = FLV Player 2.0 (build 25)
"Foto2Avi" = Foto2Avi 3.3
"Foxit PDF Editor" = Foxit PDF Editor
"Free MKV Video2Dvd 3.20_is1" = Free MKV Video2Dvd 3.20
"Free Studio_is1" = Free Studio version 4.6
"Free Videos To DVD_is1" = Free Videos To DVD V 4.0.0
"Freemake Video Downloader_is1" = Freemake Video Downloader version 1.1.14
"Fx Icon 32" = Fx Icon 32
"Geocaching" = Geocaching
"GeoGet_is1" = GeoGet 2.6.2.663
"Glary Utilities_is1" = Glary Utilities 2.8.0.366
"HijackThis" = HijackThis 2.0.2
"Hollywood FX 5.5 Additional Effects" = Hollywood FX 5.5 Additional Effects
"Hollywood FX for Studio" = Pinnacle Hollywood FX for Studio
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie8" = Windows Internet Explorer 8
"Img2gps_is1" = Img2gps v2.81
"Incomedia WebSite X5 Smart" = Incomedia WebSite X5 Smart
"InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}" = CyberLink PowerDVD 8
"InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin
"InstallShield_{4BE1E11A-4580-41BE-899F-60B5DC1DB2EA}" = Cogniview PDF2XL OCR Evaluation
"InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}" = CyberLink MediaShow
"InstallShield_{92C41B26-EBC5-41C5-8B6F-E3EF7E57FF16}" = AVerMedia Applications
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"InstallShield_{E28B1E6F-E0AA-4228-AB89-DB4A0C89D426}" = AVerTV
"InstallShield_{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9}" = Ulead VideoStudio 11
"Kindle Auto eBook Converter" = Kindle Auto eBook Converter 0.4.50
"KLiteCodecPack_is1" = K-Lite Codec Pack 4.8.0 (Standard)
"Lingea Pocket ENCZ" = Lingea kapesní knižní slovník
"LiveUpdate" = LiveUpdate 3.0 (Symantec Corporation)
"MacX HD Video Converter Pro For Windows_is1" = MacX HD Video Converter Pro For Windows 3.10.2
"MAGIX Movie Edit Pro silver UK" = MAGIX Movie Edit Pro silver 8.6.0.17 (UK)
"MAGIX Speed burnR UK" = MAGIX Speed burnR
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware verze 1.51.1.1800
"Media Jukebox 12" = Media Jukebox 12
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Movier" = Movier 1.0.16
"MoZiGo&Colorado minimalizátor&MoZi 1.1 pre PDA&M~AC363B41_is1" = MoZiGo 2009.7.29.23
"Mozilla Firefox 4.0 (x86 cs)" = Mozilla Firefox 4.0 (x86 cs)
"MP Navigator EX 1.0" = Canon MP Navigator EX 1.0
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Nokia Maps Updater_is1" = Nokia Maps Updater 1.0.12
"Nokia Ovi Suite" = Nokia Ovi Suite
"Nokia PC Suite" = Nokia PC Suite
"NSS" = Norton Security Scan
"OJOsoft Total Video Converter_is1" = OJOsoft Total Video Converter
"Personal Backup 5_is1" = Personal Backup 5.1
"PHARAOHEDITOR_is1" = MAX's HTML Beauty++ 2004
"Photo Resizer_is1" = Version 1.03 Lite (Free)
"PhotoScape" = PhotoScape
"proDAD-Heroglyph-1.0" = proDAD Heroglyph 1.0
"PSPad editor_is1" = PSPad editor
"RealPlayer 12.0" = RealPlayer
"Red Eye Remover Pro_is1" = Red Eye Remover Pro 1.2
"Registrace uživatele zařízení Canon MP220 series" = Registrace uživatele zařízení Canon MP220 series
"Revo Uninstaller" = Revo Uninstaller 1.92
"SearchCore for Browsers" = SearchCore for Browsers
"Secunia PSI" = Secunia PSI
"Seznam CD a DVD_is1" = Seznam CD a DVD 1.1
"Smart Defrag_is1" = Smart Defrag 1.11
"Super Mp3 Recorder Professional_is1" = Super Mp3 Recorder Professional v5.1
"tint" = Tint
"TopStyle Lite (Version 3.0)" = TopStyle Lite (Version 3)
"Torrent Harvester" = Torrent Harvester
"TorrentDownload" = Torrent Download 2.1
"Totalcmd" = Total Commander (Remove or Repair)
"TsActiveXClient" = Webové připojení ke vzdálené ploše
"TSLite3_is1" = TopStyle Lite (Version 3)
"UltraGet Video Downloader_is1" = UltraGet Video Downloader 1.0.1
"Uninstall_is1" = Uninstall 1.0.0.1
"USB Safely Remove_is1" = USB Safely Remove 4.4
"VinylStudio" = VinylStudio
"Vuze_Remote Toolbar" = Vuze Remote Toolbar
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"WinHTTrack Website Copier_is1" = WinHTTrack Website Copier 3.43-9C
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"WinX DVD Copy Pro_is1" = WinX DVD Copy Pro 2.2.0
"WinZip" = WinZip
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01007" = Microsoft User-Mode Driver Framework Feature Pack 1.7
"XnView_is1" = XnView 1.97.6
"Xvid_is1" = Xvid 1.2.1 final uninstall

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-4036164967-4113303836-1484400983-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"GeoKuk" = GeoKuk
"Google Chrome" = Google Chrome
"Winamp Detect" = Winamp Application Detect

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 8.1.2012 13:38:32 | Computer Name = DA364126 | Source = Symantec AntiVirus | ID = 16711731
Description = Bylo nalezeno bezpečnostní riziko!Riziko: W32.Spybot.Worm v souboru:
D:\DATA_07 Instalace\AutoCad 2011 cz\xf_32bits.exe dle: Auto-Protect prověření.
Akce: Vyčištěno odstraněním. Popis akce:

Error - 8.1.2012 17:03:23 | Computer Name = DA364126 | Source = Symantec AntiVirus | ID = 16711726
Description = Bylo nalezeno bezpečnostní riziko!Riziko: W32.Spybot.Worm v souboru:
Není k dispozici dle: Neplatný : (15) prověření. Akce: Odstranit selhalo. Popis
akce: Soubor byl ponechán nezměněn.

Error - 8.1.2012 17:03:32 | Computer Name = DA364126 | Source = Symantec AntiVirus | ID = 16711731
Description = Bylo nalezeno bezpečnostní riziko!Riziko: W32.Spybot.Worm v souboru:
Není k dispozici dle: Neplatný : (15) prověření. Akce: Odstranit selhalo : Ponechat
selhalo. Popis akce:

Error - 9.1.2012 1:05:38 | Computer Name = DA364126 | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 10.1.2012 2:24:56 | Computer Name = DA364126 | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 10.1.2012 12:13:34 | Computer Name = DA364126 | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 12.1.2012 12:39:15 | Computer Name = DA364126 | Source = .NET Runtime Optimization Service | ID = 1103
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Tried to start a service that wasn't the latest version of CLR Optimization service.
Will shutdown

Error - 12.1.2012 13:54:43 | Computer Name = DA364126 | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 12.1.2012 15:27:06 | Computer Name = DA364126 | Source = PerfNet | ID = 2005
Description = Nelze číst data o výkonu ze služby serveru. V tomto vzorku nebudou
vrácena žádná data o výkonu serveru. Vrácený chybový kód je v datech DWORD 0, IOSB.Status
je DWORD 1 a IOSB.Information je DWORD 2.

Error - 12.1.2012 15:27:06 | Computer Name = DA364126 | Source = PerfNet | ID = 2006
Description = Nelze číst data o výkonu fronty ze služby serveru. V tomto vzorku nebudou
vrácena žádná data o výkonu fronty serveru. Vrácený chybový kód je v datech DWORD
0, IOSB.Status je DWORD 1 a IOSB.Information je DWORD 2.

[ AVer AutoUpdate Events ]
Error - 20.11.2010 5:38:41 | Computer Name = DA364126 | Source = AVerUpdate Server | ID = 0
Description =

Error - 22.11.2010 1:23:17 | Computer Name = DA364126 | Source = AVerUpdate Server | ID = 0
Description =

Error - 22.11.2010 1:23:17 | Computer Name = DA364126 | Source = AVerUpdate Server | ID = 0
Description =

Error - 22.11.2010 1:40:00 | Computer Name = DA364126 | Source = AVerUpdate Server | ID = 0
Description =

Error - 22.11.2010 2:00:12 | Computer Name = DA364126 | Source = AVerUpdate Server | ID = 0
Description =

Error - 22.11.2010 2:00:12 | Computer Name = DA364126 | Source = AVerUpdate Server | ID = 0
Description =

Error - 10.1.2011 17:14:45 | Computer Name = DA364126 | Source = AVerUpdate Server | ID = 0
Description =

Error - 10.1.2011 17:14:45 | Computer Name = DA364126 | Source = AVerUpdate Server | ID = 0
Description =

Error - 17.4.2011 14:12:05 | Computer Name = DA364126 | Source = AVerUpdate Server | ID = 0
Description =

Error - 21.8.2011 8:15:09 | Computer Name = DA364126 | Source = AVerUpdate Server | ID = 0
Description =

[ System Events ]
Error - 12.1.2012 15:31:14 | Computer Name = DA364126 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {E8933C4B-2C90-4A04-A677-E958D9509F1A}

Error - 12.1.2012 15:31:14 | Computer Name = DA364126 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {E8933C4B-2C90-4A04-A677-E958D9509F1A}

Error - 12.1.2012 15:31:14 | Computer Name = DA364126 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {E8933C4B-2C90-4A04-A677-E958D9509F1A}

Error - 12.1.2012 15:31:14 | Computer Name = DA364126 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {E8933C4B-2C90-4A04-A677-E958D9509F1A}

Error - 12.1.2012 15:31:14 | Computer Name = DA364126 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {E8933C4B-2C90-4A04-A677-E958D9509F1A}

Error - 12.1.2012 15:31:26 | Computer Name = DA364126 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {E8933C4B-2C90-4A04-A677-E958D9509F1A}

Error - 12.1.2012 15:31:27 | Computer Name = DA364126 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {E8933C4B-2C90-4A04-A677-E958D9509F1A}

Error - 12.1.2012 15:31:27 | Computer Name = DA364126 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {E8933C4B-2C90-4A04-A677-E958D9509F1A}

Error - 12.1.2012 15:31:27 | Computer Name = DA364126 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {E8933C4B-2C90-4A04-A677-E958D9509F1A}

Error - 12.1.2012 15:36:38 | Computer Name = DA364126 | Source = Service Control Manager | ID = 7034
Description = Služba LiveUpdate byla neočekávaně ukončena. Tento stav nastal již
1krát.


< End of report >