Firewall nelze vypnout

[dorkon]

Dobrý den,prosí o pomoc s tímto problémem : při aktualizaci Firewallu Comodo vyskočila hláška ("Chybi disk Exception Processing Message c0000013 Parameters 75b4bf7c 475b4bf7c 75b4bf7c). Počítač se zablokoval a nešlo nic než restart z bedny.Potom jsem Comodo odinstaloval a úspěšně nainstaloval znovu. Program chtěl opět aktualizaci ,po které vyskočila stejná hláška o chybějícím disku. Potom jsem ho znovu odinstaloval a dal obnovení systému k staršímu datu. Po obnovení bylo Comodo stále v programech,ale už nejde odinstalovat.Vymazal jsem tedy ručně a za pomocí čističů registru vše co souvisí s Comodem,ale program je stále uveden v seznamu programů a dokonce je uveden i jako běžící firewall v centru zabezpečení.
Dokud se mi nepodaří odstranit zbytky Comoda,nemůžu ho znovu nainstalovat. Už jsem to zkoušel.

Přikládám log z RSIT:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Dorkon at 2014-04-13 17:09:41
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 2 GB (7%) free of 29 GB
Total RAM: 2047 MB (75% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:09:45, on 13.4.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Ulead Systems\Ulead Photo Explorer 7.0\Monitor.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\AdTrustMedia\PrivDog\2.1.0.19\trustedadssvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Documents and Settings\Dorkon\Plocha\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\Dorkon.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: PrivDogExtension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files\AdTrustMedia\PrivDog\2.1.0.19\trustedads.dll
O3 - Toolbar: (no name) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - (no file)
O4 - HKLM\..\Run: [Ulead Memory Card Detector] "C:\Program Files\Ulead Systems\Ulead Photo Explorer 7.0\Monitor.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] "C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe"
O4 - HKLM\..\Run: [RTHDCPL] "RTHDCPL.EXE"
O4 - HKLM\..\Run: [Alcmtr] "ALCMTR.EXE"
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [PrivDogService] "C:\Program Files\AdTrustMedia\PrivDog\2.1.0.19\trustedadssvc.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program Files\AdTrustMedia\PrivDog\2.1.0.19\trustedads.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 6924 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\CIS_{15198508-521A-4D69-8E5B-B94A6CCFF805}.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Dorkon\Data aplikací\Mozilla\Firefox\Profiles\ncumlcoi.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6906, {800b5000-a755-47e1-992b-48a1c1357f07}:2.0.0.8, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {ea614400-e918-4741-9a97-7a972ff7c30b}:2.1.14, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, jqs@sun.com:1.0, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"
prefs.js - "keyword.URL" - "https://www.google.com/search"

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.182 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_182.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nokia.com/EnablerPlugin]
"Description"=Nokia Suite Enabler Plugin
"Path"=C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll

C:\Documents and Settings\Dorkon\Data aplikací\Mozilla\Firefox\Profiles\ncumlcoi.default\extensions\
maps@ovi.com
PrivDog@AdTrustMedia.com
yasearch@yandex.ru
{20a82645-c095-46ed-80e3-08825760534b}
{ea614400-e918-4741-9a97-7a972ff7c30b}

C:\Documents and Settings\Dorkon\Data aplikací\Mozilla\Firefox\Profiles\ncumlcoi.default\searchplugins\
firmycz.xml
mapycz.xml
slovnk-encz.xml
videa.seznam.cz-205953.xml
ybqs-firmy.xml
ybqs-mapy.xml
ybqs-seznam.xml
ybqs-sz_vidia.xml
ybqs-zbozi.xml
zbocz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-18 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2014-04-02 597816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-18 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}]
PrivDog Extension - C:\Program Files\AdTrustMedia\PrivDog\2.1.0.19\trustedads.dll [2014-04-08 948392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Ulead Memory Card Detector"=C:\Program Files\Ulead Systems\Ulead Photo Explorer 7.0\Monitor.exe [2002-09-10 28672]
"HPDJ Taskbar Utility"=C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe [2001-10-12 196608]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-05-27 16208384]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"ATICustomerCare"=C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe [2010-05-04 311296]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"AvastUI.exe"=C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2014-04-02 3854640]
"PrivDogService"=C:\Program Files\AdTrustMedia\PrivDog\2.1.0.19\trustedadssvc.exe [2014-04-08 662696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
""= []
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-01-15 5625624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" C:\WINDOWS\system32\guard32.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2011-01-05 188416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2013-05-08 115440]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 1 month======

2014-04-13 17:09:41 ----D---- C:\rsit
2014-04-11 22:15:59 ----D---- C:\Documents and Settings\All Users\Data aplikací\VS Revo Group
2014-04-11 22:15:59 ----A---- C:\WINDOWS\system32\drivers\revoflt.sys
2014-04-11 22:15:56 ----D---- C:\Program Files\VS Revo Group
2014-04-11 22:04:43 ----N---- C:\WINDOWS\SchedLgU.Txt
2014-04-03 18:27:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adtrustmedia
2014-04-03 17:38:46 ----A---- C:\WINDOWS\system32\cmdcsr.dll
2014-04-03 17:38:20 ----SHD---- C:\Config.Msi
2014-04-03 16:54:01 ----D---- C:\Program Files\AdTrustMedia
2014-04-03 16:52:28 ----D---- C:\first_launch
2014-04-02 20:28:02 ----A---- C:\Documents and Settings\All Users\Data aplikací\cisF.exe
2014-04-02 20:27:59 ----A---- C:\Documents and Settings\All Users\Data aplikací\cisB.exe
2014-04-02 16:31:02 ----A---- C:\WINDOWS\avastSS.scr
2014-04-02 16:26:08 ----A---- C:\WINDOWS\system32\cmdvrt32.dll
2014-04-02 16:26:08 ----A---- C:\WINDOWS\system32\cmdkbd32.dll
2014-03-29 10:16:31 ----D---- C:\Program Files\Mozilla Firefox
2014-03-21 19:52:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2934207$
2014-03-21 19:46:05 ----N---- C:\WINDOWS\system32\xp_eos.exe

======List of files/folders modified in the last 1 month======

2014-04-13 17:09:45 ----D---- C:\Program Files\trend micro
2014-04-13 17:03:48 ----D---- C:\WINDOWS
2014-04-13 16:40:44 ----D---- C:\WINDOWS\Temp
2014-04-12 22:12:41 ----D---- C:\Documents and Settings\Dorkon\Data aplikací\Skype
2014-04-12 21:27:29 ----D---- C:\WINDOWS\Prefetch
2014-04-11 22:44:29 ----D---- C:\WINDOWS\Help
2014-04-11 22:26:54 ----D---- C:\WINDOWS\system32\CatRoot2
2014-04-11 22:16:08 ----HD---- C:\WINDOWS\inf
2014-04-11 22:16:08 ----D---- C:\WINDOWS\system32\drivers
2014-04-11 22:15:56 ----D---- C:\Program Files
2014-04-11 22:05:47 ----D---- C:\WINDOWS\SoftwareDistribution
2014-04-11 21:10:42 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-04-03 20:30:41 ----D---- C:\WINDOWS\system32
2014-04-03 20:07:46 ----RSD---- C:\WINDOWS\assembly
2014-04-03 20:06:48 ----D---- C:\WINDOWS\Microsoft.NET
2014-04-03 19:23:34 ----D---- C:\Program Files\Common Files
2014-04-03 19:23:22 ----D---- C:\WINDOWS\system32\config
2014-04-03 19:18:33 ----SHD---- C:\WINDOWS\Installer
2014-04-03 19:15:57 ----SD---- C:\WINDOWS\Tasks
2014-04-03 18:08:53 ----A---- C:\WINDOWS\CRC.INI
2014-04-03 17:45:28 ----D---- C:\WINDOWS\system32\wbem
2014-04-03 17:45:25 ----D---- C:\WINDOWS\Registration
2014-04-03 17:41:42 ----D---- C:\WINDOWS\system32\Restore
2014-04-03 17:36:40 ----D---- C:\WINDOWS\network diagnostic
2014-04-03 16:17:54 ----D---- C:\Program Files\CCleaner
2014-04-02 20:21:32 ----D---- C:\WINDOWS\Debug
2014-04-02 16:31:02 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-03-30 18:08:48 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-03-29 21:30:03 ----A---- C:\WINDOWS\Ulead32.ini
2014-03-29 10:17:14 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-03-25 21:22:36 ----A---- C:\WINDOWS\system32\guard32.dll
2014-03-21 19:52:34 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-03-18 20:51:09 ----D---- C:\WINDOWS\system32\MRT
2014-03-18 20:43:07 ----A---- C:\WINDOWS\system32\MRT.exe
2014-03-16 18:01:18 ----D---- C:\Documents and Settings\Dorkon\Data aplikací\ICQ

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-04-02 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-04-02 180760]
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2006-04-24 100736]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-07-13 91904]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 42496]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-04-02 54832]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-04-02 776976]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-04-02 411552]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-04-02 57672]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2014-03-25 607448]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2014-03-25 29912]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS []
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-04-02 67824]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2011-01-05 5656576]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-05-26 4279296]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-03-22 52736]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-03-22 18944]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S0 Inspect;COMODO Internet Security Firewall Driver; C:\WINDOWS\System32\DRIVERS\inspect.sys []
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2013-01-23 18560]
S3 nmwcdc;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2013-01-23 23168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2012-10-17 19072]
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys [2009-12-30 27064]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2013-01-23 8192]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2013-08-29 26240]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2013-01-23 8192]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-07-13 132224]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2013-10-11 120088]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2011-01-05 638976]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2014-04-02 50344]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-12-18 182696]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-12-28 136176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-11 257712]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-12-28 136176]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-03-29 119408]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[Rudy]

Zdravím!
Zkusíme to vyčistit. Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Program Files\Skype\Toolbars
C:\WINDOWS\tasks\CIS_{15198508-521A-4D69-8E5B-B94A6CCFF805}.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\System32\DRIVERS\cmdguard.sys
C:\WINDOWS\System32\DRIVERS\cmdhlp.sys
C:\WINDOWS\System32\DRIVERS\inspect.sys

:reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

:services
cmdGuard
cmdHlp
Inspect

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.

[dorkon]

Zatím bez úspěchu,Firewall je stále zapnutý.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Dorkon at 2014-04-13 18:54:56
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 2 GB (7%) free of 29 GB
Total RAM: 2047 MB (75% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:55:01, on 13.4.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\notepad.exe
C:\Program Files\Ulead Systems\Ulead Photo Explorer 7.0\Monitor.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\AdTrustMedia\PrivDog\2.1.0.19\trustedadssvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Documents and Settings\Dorkon\Plocha\RSIT.exe
C:\Program Files\trend micro\Dorkon.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: PrivDogExtension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files\AdTrustMedia\PrivDog\2.1.0.19\trustedads.dll
O3 - Toolbar: (no name) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - (no file)
O4 - HKLM\..\Run: [Ulead Memory Card Detector] "C:\Program Files\Ulead Systems\Ulead Photo Explorer 7.0\Monitor.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] "C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe"
O4 - HKLM\..\Run: [RTHDCPL] "RTHDCPL.EXE"
O4 - HKLM\..\Run: [Alcmtr] "ALCMTR.EXE"
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [PrivDogService] "C:\Program Files\AdTrustMedia\PrivDog\2.1.0.19\trustedadssvc.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program Files\AdTrustMedia\PrivDog\2.1.0.19\trustedads.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 6802 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Dorkon\Data aplikací\Mozilla\Firefox\Profiles\ncumlcoi.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6906, {800b5000-a755-47e1-992b-48a1c1357f07}:2.0.0.8, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {ea614400-e918-4741-9a97-7a972ff7c30b}:2.1.14, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, jqs@sun.com:1.0, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"
prefs.js - "keyword.URL" - "https://www.google.com/search"

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.182 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_182.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nokia.com/EnablerPlugin]
"Description"=Nokia Suite Enabler Plugin
"Path"=C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll

C:\Documents and Settings\Dorkon\Data aplikací\Mozilla\Firefox\Profiles\ncumlcoi.default\extensions\
maps@ovi.com
PrivDog@AdTrustMedia.com
yasearch@yandex.ru
{20a82645-c095-46ed-80e3-08825760534b}
{ea614400-e918-4741-9a97-7a972ff7c30b}

C:\Documents and Settings\Dorkon\Data aplikací\Mozilla\Firefox\Profiles\ncumlcoi.default\searchplugins\
firmycz.xml
mapycz.xml
slovnk-encz.xml
videa.seznam.cz-205953.xml
ybqs-firmy.xml
ybqs-mapy.xml
ybqs-seznam.xml
ybqs-sz_vidia.xml
ybqs-zbozi.xml
zbocz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-18 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2014-04-02 597816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-18 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}]
PrivDog Extension - C:\Program Files\AdTrustMedia\PrivDog\2.1.0.19\trustedads.dll [2014-04-08 948392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Ulead Memory Card Detector"=C:\Program Files\Ulead Systems\Ulead Photo Explorer 7.0\Monitor.exe [2002-09-10 28672]
"HPDJ Taskbar Utility"=C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe [2001-10-12 196608]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-05-27 16208384]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"ATICustomerCare"=C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe [2010-05-04 311296]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"AvastUI.exe"=C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2014-04-02 3854640]
"PrivDogService"=C:\Program Files\AdTrustMedia\PrivDog\2.1.0.19\trustedadssvc.exe [2014-04-08 662696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
""= []
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-01-15 5625624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" C:\WINDOWS\system32\guard32.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2011-01-05 188416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2013-05-08 115440]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 1 month======

2014-04-13 18:44:12 ----D---- C:\_OTM
2014-04-13 17:09:41 ----D---- C:\rsit
2014-04-11 22:15:59 ----D---- C:\Documents and Settings\All Users\Data aplikací\VS Revo Group
2014-04-11 22:15:59 ----A---- C:\WINDOWS\system32\drivers\revoflt.sys
2014-04-11 22:15:56 ----D---- C:\Program Files\VS Revo Group
2014-04-11 22:04:43 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-04-03 18:27:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adtrustmedia
2014-04-03 17:38:46 ----A---- C:\WINDOWS\system32\cmdcsr.dll
2014-04-03 17:38:20 ----SHD---- C:\Config.Msi
2014-04-03 16:54:01 ----D---- C:\Program Files\AdTrustMedia
2014-04-03 16:52:28 ----D---- C:\first_launch
2014-04-02 20:28:02 ----A---- C:\Documents and Settings\All Users\Data aplikací\cisF.exe
2014-04-02 20:27:59 ----A---- C:\Documents and Settings\All Users\Data aplikací\cisB.exe
2014-04-02 16:31:02 ----A---- C:\WINDOWS\avastSS.scr
2014-04-02 16:26:08 ----A---- C:\WINDOWS\system32\cmdvrt32.dll
2014-04-02 16:26:08 ----A---- C:\WINDOWS\system32\cmdkbd32.dll
2014-03-29 10:16:31 ----D---- C:\Program Files\Mozilla Firefox
2014-03-21 19:52:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2934207$
2014-03-21 19:46:05 ----N---- C:\WINDOWS\system32\xp_eos.exe

======List of files/folders modified in the last 1 month======

2014-04-13 18:54:59 ----D---- C:\Program Files\trend micro
2014-04-13 18:52:25 ----D---- C:\WINDOWS\Prefetch
2014-04-13 18:48:33 ----D---- C:\WINDOWS\Temp
2014-04-13 18:48:31 ----D---- C:\WINDOWS
2014-04-13 18:44:14 ----SD---- C:\WINDOWS\Tasks
2014-04-13 18:44:14 ----RD---- C:\Program Files\Skype
2014-04-13 18:44:14 ----D---- C:\WINDOWS\system32\drivers
2014-04-13 18:29:21 ----D---- C:\Documents and Settings\Dorkon\Data aplikací\Skype
2014-04-11 22:44:29 ----D---- C:\WINDOWS\Help
2014-04-11 22:26:54 ----D---- C:\WINDOWS\system32\CatRoot2
2014-04-11 22:16:08 ----HD---- C:\WINDOWS\inf
2014-04-11 22:15:56 ----D---- C:\Program Files
2014-04-11 22:05:47 ----D---- C:\WINDOWS\SoftwareDistribution
2014-04-11 21:10:42 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-04-03 20:30:41 ----D---- C:\WINDOWS\system32
2014-04-03 20:07:46 ----RSD---- C:\WINDOWS\assembly
2014-04-03 20:06:48 ----D---- C:\WINDOWS\Microsoft.NET
2014-04-03 19:23:34 ----D---- C:\Program Files\Common Files
2014-04-03 19:23:22 ----D---- C:\WINDOWS\system32\config
2014-04-03 19:18:33 ----SHD---- C:\WINDOWS\Installer
2014-04-03 18:08:53 ----A---- C:\WINDOWS\CRC.INI
2014-04-03 17:45:28 ----D---- C:\WINDOWS\system32\wbem
2014-04-03 17:45:25 ----D---- C:\WINDOWS\Registration
2014-04-03 17:41:42 ----D---- C:\WINDOWS\system32\Restore
2014-04-03 17:36:40 ----D---- C:\WINDOWS\network diagnostic
2014-04-03 16:17:54 ----D---- C:\Program Files\CCleaner
2014-04-02 20:21:32 ----D---- C:\WINDOWS\Debug
2014-04-02 16:31:02 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-03-30 18:08:48 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-03-29 21:30:03 ----A---- C:\WINDOWS\Ulead32.ini
2014-03-29 10:17:14 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-03-25 21:22:36 ----A---- C:\WINDOWS\system32\guard32.dll
2014-03-21 19:52:34 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-03-18 20:51:09 ----D---- C:\WINDOWS\system32\MRT
2014-03-18 20:43:07 ----A---- C:\WINDOWS\system32\MRT.exe
2014-03-16 18:01:18 ----D---- C:\Documents and Settings\Dorkon\Data aplikací\ICQ

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-04-02 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-04-02 180760]
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2006-04-24 100736]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-07-13 91904]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 42496]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-04-02 54832]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-04-02 776976]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-04-02 411552]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-04-02 57672]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS []
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-04-02 67824]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2011-01-05 5656576]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-05-26 4279296]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-03-22 52736]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-03-22 18944]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2013-01-23 18560]
S3 nmwcdc;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2013-01-23 23168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2012-10-17 19072]
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys [2009-12-30 27064]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2013-01-23 8192]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2013-08-29 26240]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2013-01-23 8192]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-07-13 132224]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2013-10-11 120088]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2011-01-05 638976]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2014-04-02 50344]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-12-18 182696]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-12-28 136176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-11 257712]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-12-28 136176]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-03-29 119408]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[Rudy]

OK. Zkuste toto:

- stáhni si Autoruns z http://technet.microsoft.com/en-us/sysi ... 63902.aspx, a rozbal celý obsah na nějaké místo, kde budeš mít přístup z nouzového režimu. Stáhni si instalačku Comoda, pokud ji nemáš.

- udělej si ručně bod obnovení systému, abychom se pozichrovali před případným karambolem.

- restartuj wokna do nouzového režimu v nějakém administrátorském účtu.

- spusť autoruns.exe. Počkej, až ti ukončí skenování - napíše Ready.

- v záložce "Everything" přes ikonu dalekohledu nebo Ctrl-F si dávej postupně vyhledat všechny výskyty slova "comodo", bez těch uvozovek. Pro každou nalezenou položku dej buď přes pravé myšítko Delete anebo Ctrl-D a potvrď smazání. Pak se vrať znova na začátek seznamu a opakuj hledání, pro jistotu, jestli bylo všechno smazáno. Mělo by to najít (asi) ty dva exáče, pak několikrát cavshel.dll, a cmdguard.sys, cmdhlp.sys, inspect.sys. Pak smázni (asi) z Program Files celý adresář pro Comodo Internet Security.

- restartuj do normálního režimu. Comodo by běžet nemělo, ani jeden z těchto exáču. Můžeš si ještě projít v tomto režimu znovu autoruns.

- pak nainstaluj znova, korektně nové Comodo. Včetně případných restartů. Až poběží korektně celé, pak jej odinstaluj přes jeho Startmenu - Uninstall or upgrade, volba Uninstall. Když jsem si to zkoušel na virtuálce, tak to ruční smazání nepodchytilo údaje v Centru zabezpečení a tudíž mi PC nehlásilo, že nemám nainstalovaného antivira. Proto bych chtěl tu normální odinstalaci, ať tam nezůstávájí nepodchycené zbytky, najmě v registrech.

[dorkon]

Nevím jistě jestli jsem se v nouzovém režimu přihlásil z administrátorského účtu. Při startu nouzového režimu vyskočí okno s nápisem administrátor a dorkon. Při kliknutí na administrátora to chce nějaké heslo,které neznám. Kliknul jsem tedy na dorkon,což jsem já jako jediný uživatel počítače. Nicméně i tak jsem provedl sken autoruns a našlo to jenom jednu položku comodo,kterou jsem vymazal. Po restartu do normálního režimu to comodo pořád běží. Udělal jsem ten sken ještě v normálním režimu,ale comodo a ani žádný cmdguard.sys, cmdhlp.sys,nebo inspect.sys,tam nebyly.
V programech už žádná složka comodo není,tu už jsem odstranil dříve.

[Rudy]

Ještě jednou spusťte OTM a do levého okna zkopírujte







Znovu spusťte OTM a do levého okna zkopírujte:

:reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""

:commands
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC.

[dorkon]

OTM proběhlo bez chyby,ale centrum zabezpečení stále hlásí že comodo je zapnuto. Nevím,mám už zkusit tu novou instalaci comoda?

[Rudy]

Zkuste.

[dorkon]

Tak bohužel to pořád nejde. Stále to píše : Pokud chcete nainstalovat novou verzi,musíte odinstalovat tu starou. Comodo internet security se stále objevuje mezi programy v menu ,,přidat nebo odebrat programy". Ale to provést nelze.

[Rudy]

Podle návodu: http://forum.viry.cz/viewtopic.php?f=46&t=2791 otevřte Regedit a odmažte z registry vše, co se týká Comoda. Do vyhledávání napište comodo.

[dorkon]

Nedaří se,už dvakrát jsem musel obnovit systém. Asi jsem v registrech vymazal něco důležitého. Podruhé jsem si ale dával pozor a stejně po restartu byl počítač velmi pomalý,protože CPU šlo stále na 100%. Comodo firewall,ale stále podle centra zabezpečení byl a je spuštěn.

[Rudy]

Zkuste ještě Start>spustit>(napsat) services.msc>OK. V otevřeném okně najděte věechny služby comoda, zastavte je a zakažte.

[dorkon]

Bohužel ani tohle nepomohlo. Vypadá to,že mě nakonec formátování nemine. Předpokládám,že se mi nepodaří nainstalovat ani jiný firewall.

[cernohous13]

Pardon,

Stáhni zde - http://screen317.changelog.fr/SecurityCheck.exe
nebo zde - http://screen317.spywareinfoforum.org/SecurityCheck.exe
nebo zde - http://www.bleepingcomputer.com/download/securitycheck/
ulož na plochu a spusť - další informace v černém okně
až skončí, otevře se notepad - obsah zkopíruj do své odpovědi.
zavřením notepadu se ukončí i program.

Stáhni "System Look" - http://jpshortstuff.247fixes.com/SystemLook.exe
Spusť jej a do okna zkopíruj

Kód: Vybrat vše

:filefind
*comodo*
cmd*.dll
:regfind
comodo
cis
:dir
*comodo*
*cis*

Klik na "Look" a po scanu sem zkopíruj výsledek hledání

[dorkon]

Děkuji,že se ještě nevzdáváte! Tady jsou ty logy:

Results of screen317's Security Check version 0.99.82
Windows XP Service Pack 3 x86
Internet Explorer 8
``````````````Antivirus/Firewall Check:``````````````
avast! Antivirus
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Ad-Aware
SUPERAntiSpyware
CCleaner
Java 7 Update 51
Java version out of Date!
Adobe Flash Player 13.0.0.182
Adobe Reader 10.1.9 Adobe Reader out of Date!
Mozilla Firefox 27.0.1 Firefox out of Date!
Google Chrome 33.0.1750.146
Google Chrome 33.0.1750.154
````````Process Check: objlist.exe by Laurent````````
Ad-Aware AAWService.exe is disabled!
Ad-Aware AAWTray.exe is disabled!
Alwil Software Avast5 AvastSvc.exe
Alwil Software Avast5 AvastUI.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C::
````````````````````End of Log``````````````````````




SystemLook 30.07.11 by jpshortstuff
Log created at 17:40 on 18/04/2014 by Dorkon
Administrator - Elevation successful

========== filefind ==========

Searching for "*comodo*"
C:\WINDOWS\system32\config\systemprofile\Cookies\system@secure.comodo[1].txt --a--c- 433 bytes [22:12 01/05/2011] [22:12 01/05/2011] 0C87D2352C456C6509D089028B35A004

Searching for "cmd*.dll"
C:\WINDOWS\$NtServicePackUninstall$\cmdevtgprov.dll -----c- 45568 bytes [12:28 26/12/2010] [13:49 17/08/2004] F3E7C840A28C0B24768CA10152822862
C:\WINDOWS\$NtServicePackUninstall$\cmdial32.dll -----c- 345600 bytes [12:28 26/12/2010] [13:49 17/08/2004] 23CF3D82971552DBBD3F348348ABE745
C:\WINDOWS\ServicePackFiles\i386\cmdial32.dll -----c- 346624 bytes [03:21 14/04/2008] [03:21 14/04/2008] CF8EFEED513F751546EA0BF88900D4AD
C:\WINDOWS\system32\cmdcsr.dll --a---- 36000 bytes [15:38 03/04/2014] [19:22 25/03/2014] 2243672CC73947B9F71465417DE12541
C:\WINDOWS\system32\cmdial32.dll --a--c- 346624 bytes [13:49 17/08/2004] [03:21 14/04/2008] CF8EFEED513F751546EA0BF88900D4AD
C:\WINDOWS\system32\cmdkbd32.dll --a---- 40664 bytes [14:26 02/04/2014] [19:22 25/03/2014] 13BAF2D26FB1F01422800DF199A7EDA6
C:\WINDOWS\system32\cmdvrt32.dll --a---- 284888 bytes [14:26 02/04/2014] [19:22 25/03/2014] 99F430FF00AB780342DA6A2E2A14F59B
C:\WINDOWS\system32\dllcache\cmdial32.dll --a--c- 346624 bytes [13:49 17/08/2004] [03:21 14/04/2008] CF8EFEED513F751546EA0BF88900D4AD
C:\WINDOWS\system32\wbem\cmdevtgprov.dll --a--c- 45056 bytes [13:49 17/08/2004] [03:21 14/04/2008] D87F13E8432736155BD4EA2C18F017D4

========== regfind ==========

Searching for "comodo"
[HKEY_CURRENT_USER\Software\ComodoGroup]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\Documents and Settings\Dorkon\Plocha\cfw_installer.exe"="COMODO Internet Security"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\DOCUME~1\Dorkon\LOCALS~1\Temp\~nsu.tmp\Au_.exe"="Comodo Dragon"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\Comodo Antivirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CavShell.CntMenu]
@="Comodo Antivirus Context Menu Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CavShell.CntMenu.1]
@="Comodo Antivirus Context Menu Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCFF154D-A97B-4138-A1AC-A2B0C3C05696}\6799132d-1ccb-4d88-b655-4c40a6973652]
"lastAnswer"="ComodoLove.NextOne.Yes"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\Comodo Antivirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\file\ShellEx\ContextMenuHandlers\Comodo Antivirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\Comodo Antivirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\D871E8DFE4B8AD244B43FE2F0723B9C1]
"ProductName"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{7A27FFB6-B771-4159-81DA-1F3CCEF5A23C}\1.0\HELPDIR]
@="C:\Program Files\COMODO\COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{96D27592-5FAA-4B65-AE65-C41AA290ABCD}\1.0]
@="Comodo Antivirus Shell Menu"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{96D27592-5FAA-4B65-AE65-C41AA290ABCD}\1.0\0\win64]
@="C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{96D27592-5FAA-4B65-AE65-C41AA290ABCD}\1.0\HELPDIR]
@="C:\Program Files\COMODO\COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\COMODO]
[HKEY_LOCAL_MACHINE\SOFTWARE\ComodoGroup]
[HKEY_LOCAL_MACHINE\SOFTWARE\ComodoGroup\CDI\1]
"InstallProductPath"="C:\Program Files\COMODO\COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\ComodoGroup\CDI\1]
"Product Name"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\265D0406C87211546AB7717F49CE3AF3]
"D871E8DFE4B8AD244B43FE2F0723B9C1"="01:\Software\ComodoGroup\CIS\CIS_PFShortcuts_FilesCFW"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29A1D8D4B1639A14D9A0AC98939ECEB6]
"D871E8DFE4B8AD244B43FE2F0723B9C1"="02:\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\35B9D2F62AF55D54DAB59E313EC18C65]
"D871E8DFE4B8AD244B43FE2F0723B9C1"="C:\Program Files\COMODO\COMODO Internet Security\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\59467F7B0FB297240A363A088E9A5EF0]
"D871E8DFE4B8AD244B43FE2F0723B9C1"="01:\Software\ComodoGroup\CIS\CIS_DesktopShortcut_FilesCFW"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7531C22B6CA47CE4C918EC69FD221664]
"D871E8DFE4B8AD244B43FE2F0723B9C1"="01:\Software\ComodoGroup\CIS\COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\79973047FCFBA8346BAE074D5F856B50]
"D871E8DFE4B8AD244B43FE2F0723B9C1"="02:\SYSTEM\software\Comodo\Firewall Pro\Options\LanguageName"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB3A0A2A2DE53474BA79F7EB7A2A3C36]
"D871E8DFE4B8AD244B43FE2F0723B9C1"="02:\SOFTWARE\ComodoGroup\CDI\1\InstallProductPath"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1A606CA9DC57EC4F8C341E3754A2CA9]
"D871E8DFE4B8AD244B43FE2F0723B9C1"="C:\Program Files\COMODO\COMODO Internet Security\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D871E8DFE4B8AD244B43FE2F0723B9C1\InstallProperties]
"Publisher"="COMODO Group Inc."
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D871E8DFE4B8AD244B43FE2F0723B9C1\InstallProperties]
"DisplayName"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]
"{4255A182-CAD9-4214-A19B-7BA7FB633BBD}"="Comodo Antivirus"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_CMDAGENT\0000]
"DeviceDesc"="COMODO Internet Security Helper Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Eventlog\Application\GeekBuddyRSP]
"CategoryMessageFile"="C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Eventlog\Application\GeekBuddyRSP]
"EventMessageFile"="C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Eventlog\Application\GeekBuddyRSP]
"ParameterMessageFile"="C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_CMDAGENT\0000]
"DeviceDesc"="COMODO Internet Security Helper Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Eventlog\Application\GeekBuddyRSP]
"CategoryMessageFile"="C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Eventlog\Application\GeekBuddyRSP]
"EventMessageFile"="C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Eventlog\Application\GeekBuddyRSP]
"ParameterMessageFile"="C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO]
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro]
"Proxy"="C:\Program Files\COMODO\COMODO Internet Security\msica.dll"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations]
"InstallPath"="C:\Program Files\COMODO\COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0]
"Name"="COMODO - Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\AV\Settings]
"QuarantinedPath"="C:\Program Files\COMODO\COMODO Internet Security\Quarantine"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\AV\Settings\Exclusions\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\AV\Settings\Exclusions\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\3\3]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\3\3]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\3\4]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cmdinstall.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\3\4]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cmdinstall.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\4\10]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cavscan.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\4\10]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cavscan.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\6]
"Name"="Soubory/adresáře COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\6\0]
"Filename"="C:\Program Files\COMODO*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\6\0]
"DeviceName"="C:\Program Files\COMODO*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\6\7]
"Filename"="C:\Documents and Settings\All Users\Data aplikací\Comodo*|"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\6\7]
"DeviceName"="C:\Documents and Settings\All Users\Data aplikací\Comodo*|"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\7]
"Name"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\7\0]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\7\0]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\7\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\7\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\7\2]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfpupdat.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\7\2]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfpupdat.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\7\3]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfplogvw.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\7\3]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfplogvw.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\7\4]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\crashrep.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\File Groups\7\4]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\crashrep.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\Firewall\Policy\0]
"DeviceName"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\HIPS\Policy\4]
"DeviceName"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\HIPS\Policy\4\Protections\0\Exceptions\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\HIPS\Policy\4\Protections\0\Exceptions\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\HIPS\Policy\4\Protections\1\Exceptions\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\HIPS\Policy\4\Protections\1\Exceptions\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\HIPS\Protected Files\2]
"DeviceName"="Soubory/adresáře COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\HIPS\Protected Keys\1]
"DeviceName"="Klíče COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\HIPS\Registry Groups\1]
"Name"="Klíče COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\HIPS\Registry Groups\1\0]
"Filename"="HKLM\System\Software\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\HIPS\Registry Groups\1\0]
"DeviceName"="HKLM\System\Software\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\HIPS\Registry Groups\1\1]
"Filename"="*\SOFTWARE\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\0\HIPS\Registry Groups\1\1]
"DeviceName"="*\SOFTWARE\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1]
"Name"="COMODO - Proactive Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\AV\Settings]
"QuarantinedPath"="C:\Program Files\COMODO\COMODO Internet Security\Quarantine"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\AV\Settings\Exclusions\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\AV\Settings\Exclusions\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\3\3]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\3\3]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\3\4]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cmdinstall.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\3\4]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cmdinstall.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\4\10]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cavscan.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\4\10]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cavscan.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\6]
"Name"="Soubory/adresáře COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\6\0]
"Filename"="C:\Program Files\COMODO*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\6\0]
"DeviceName"="C:\Program Files\COMODO*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\6\7]
"Filename"="C:\Documents and Settings\All Users\Data aplikací\Comodo*|"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\6\7]
"DeviceName"="C:\Documents and Settings\All Users\Data aplikací\Comodo*|"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\7]
"Name"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\7\0]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\7\0]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\7\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\7\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\7\2]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfpupdat.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\7\2]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfpupdat.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\7\3]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfplogvw.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\7\3]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfplogvw.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\7\4]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\crashrep.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\File Groups\7\4]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\crashrep.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\Firewall\Policy\29]
"Filename"="C:\Program Files\COMODO\Registry Cleaner\CRC.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\Firewall\Policy\29]
"DeviceName"="C:\Program Files\COMODO\Registry Cleaner\CRC.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\Firewall\Policy\30]
"Filename"="C:\Program Files\COMODO\COMODO livePCsupport\CLPS.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\Firewall\Policy\30]
"DeviceName"="C:\Program Files\COMODO\COMODO livePCsupport\CLPS.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\Firewall\Policy\31]
"Filename"="C:\Program Files\COMODO\COMODO Cloud Scanner\CloudScanner.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\Firewall\Policy\31]
"DeviceName"="C:\Program Files\COMODO\COMODO Cloud Scanner\CloudScanner.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\Firewall\Policy\77]
"DeviceName"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\HIPS\Policy\19]
"DeviceName"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\HIPS\Policy\19\Protections\0\Exceptions\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\HIPS\Policy\19\Protections\0\Exceptions\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\HIPS\Policy\19\Protections\1\Exceptions\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\HIPS\Policy\19\Protections\1\Exceptions\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\HIPS\Policy\20\Rules\0\Allowed\10]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\HIPS\Policy\20\Rules\0\Allowed\10]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\HIPS\Protected Files\2]
"DeviceName"="Soubory/adresáře COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\HIPS\Protected Keys\1]
"DeviceName"="Klíče COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\HIPS\Registry Groups\1]
"Name"="Klíče COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\HIPS\Registry Groups\1\0]
"Filename"="HKLM\System\Software\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\HIPS\Registry Groups\1\0]
"DeviceName"="HKLM\System\Software\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\HIPS\Registry Groups\1\1]
"Filename"="*\SOFTWARE\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\1\HIPS\Registry Groups\1\1]
"DeviceName"="*\SOFTWARE\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2]
"Name"="COMODO - Firewall Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\AV\Settings]
"QuarantinedPath"="C:\Program Files\COMODO\COMODO Internet Security\Quarantine"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\AV\Settings\Exclusions\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\AV\Settings\Exclusions\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\3\3]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\3\3]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\3\4]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cmdinstall.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\3\4]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cmdinstall.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\4\10]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cavscan.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\4\10]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cavscan.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\6]
"Name"="Soubory/adresáře COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\6\0]
"Filename"="C:\Program Files\COMODO*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\6\0]
"DeviceName"="C:\Program Files\COMODO*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\6\7]
"Filename"="C:\Documents and Settings\All Users\Data aplikací\Comodo*|"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\6\7]
"DeviceName"="C:\Documents and Settings\All Users\Data aplikací\Comodo*|"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\7]
"Name"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\7\0]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\7\0]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\7\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\7\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\7\2]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfpupdat.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\7\2]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfpupdat.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\7\3]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfplogvw.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\7\3]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfplogvw.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\7\4]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\crashrep.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\File Groups\7\4]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\crashrep.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\Firewall\Policy\0]
"DeviceName"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\HIPS\Policy\4]
"DeviceName"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\HIPS\Policy\4\Protections\0\Exceptions\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\HIPS\Policy\4\Protections\0\Exceptions\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\HIPS\Policy\4\Protections\1\Exceptions\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\HIPS\Policy\4\Protections\1\Exceptions\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\HIPS\Protected Files\4]
"DeviceName"="Soubory/adresáře COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\HIPS\Protected Keys\1]
"DeviceName"="Klíče COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\HIPS\Registry Groups\1]
"Name"="Klíče COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\HIPS\Registry Groups\1\0]
"Filename"="HKLM\System\Software\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\HIPS\Registry Groups\1\0]
"DeviceName"="HKLM\System\Software\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\HIPS\Registry Groups\1\1]
"Filename"="*\SOFTWARE\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\HIPS\Registry Groups\1\1]
"DeviceName"="*\SOFTWARE\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Options]
"Partner"="Comodo"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Options]
"UpdateURL"="http://download.comodo.com/"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0]
"Name"="COMODO - Internet Security - 5.12.256249.2599"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\AV\Settings]
"QuarantinedPath"="C:\Program Files\COMODO\COMODO Internet Security\Quarantine"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\AV\Settings\Exclusions\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\AV\Settings\Exclusions\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\3\3]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\3\3]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\3\4]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cmdinstall.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\3\4]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cmdinstall.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\4\10]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cavscan.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\4\10]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cavscan.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\6]
"Name"="Soubory/adresáře COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\6\0]
"Filename"="C:\Program Files\COMODO*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\6\0]
"DeviceName"="C:\Program Files\COMODO*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\6\7]
"Filename"="C:\Documents and Settings\All Users\Data aplikací\Comodo*|"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\6\7]
"DeviceName"="C:\Documents and Settings\All Users\Data aplikací\Comodo*|"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\7]
"Name"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\7\0]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\7\0]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\7\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\7\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\7\2]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfpupdat.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\7\2]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfpupdat.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\7\3]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfplogvw.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\7\3]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfplogvw.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\7\4]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\crashrep.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\File Groups\7\4]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\crashrep.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\Firewall\Policy\0]
"DeviceName"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\HIPS\Policy\4]
"DeviceName"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\HIPS\Policy\4\Protections\0\Exceptions\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\HIPS\Policy\4\Protections\0\Exceptions\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\HIPS\Policy\4\Protections\1\Exceptions\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\HIPS\Policy\4\Protections\1\Exceptions\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\HIPS\Protected Files\2]
"DeviceName"="Soubory/adresáře COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\HIPS\Protected Keys\1]
"DeviceName"="Klíče COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\HIPS\Registry Groups\1]
"Name"="Klíče COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\HIPS\Registry Groups\1\0]
"Filename"="HKLM\System\Software\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\HIPS\Registry Groups\1\0]
"DeviceName"="HKLM\System\Software\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\HIPS\Registry Groups\1\1]
"Filename"="*\SOFTWARE\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\0\HIPS\Registry Groups\1\1]
"DeviceName"="*\SOFTWARE\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1]
"Name"="COMODO - Proactive Security - 5.12.256249.2599"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\AV\Settings]
"QuarantinedPath"="C:\Program Files\COMODO\COMODO Internet Security\Quarantine"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\AV\Settings\Exclusions\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\AV\Settings\Exclusions\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\3\3]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\3\3]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\3\4]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cmdinstall.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\3\4]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cmdinstall.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\4\10]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cavscan.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\4\10]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cavscan.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\6]
"Name"="Soubory/adresáře COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\6\0]
"Filename"="C:\Program Files\COMODO*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\6\0]
"DeviceName"="C:\Program Files\COMODO*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\6\7]
"Filename"="C:\Documents and Settings\All Users\Data aplikací\Comodo*|"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\6\7]
"DeviceName"="C:\Documents and Settings\All Users\Data aplikací\Comodo*|"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\7]
"Name"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\7\0]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\7\0]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\7\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\7\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\7\2]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfpupdat.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\7\2]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfpupdat.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\7\3]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfplogvw.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\7\3]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfplogvw.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\7\4]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\crashrep.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\File Groups\7\4]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\crashrep.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\Firewall\Policy\29]
"Filename"="C:\Program Files\COMODO\Registry Cleaner\CRC.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\Firewall\Policy\29]
"DeviceName"="C:\Program Files\COMODO\Registry Cleaner\CRC.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\Firewall\Policy\30]
"Filename"="C:\Program Files\COMODO\COMODO livePCsupport\CLPS.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\Firewall\Policy\30]
"DeviceName"="C:\Program Files\COMODO\COMODO livePCsupport\CLPS.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\Firewall\Policy\31]
"Filename"="C:\Program Files\COMODO\COMODO Cloud Scanner\CloudScanner.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\Firewall\Policy\31]
"DeviceName"="C:\Program Files\COMODO\COMODO Cloud Scanner\CloudScanner.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\Firewall\Policy\77]
"DeviceName"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\HIPS\Policy\19]
"DeviceName"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\HIPS\Policy\19\Protections\0\Exceptions\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\HIPS\Policy\19\Protections\0\Exceptions\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\HIPS\Policy\19\Protections\1\Exceptions\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\HIPS\Policy\19\Protections\1\Exceptions\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\HIPS\Policy\20\Rules\0\Allowed\10]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\HIPS\Policy\20\Rules\0\Allowed\10]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\HIPS\Protected Files\2]
"DeviceName"="Soubory/adresáře COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\HIPS\Protected Keys\1]
"DeviceName"="Klíče COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\HIPS\Registry Groups\1]
"Name"="Klíče COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\HIPS\Registry Groups\1\0]
"Filename"="HKLM\System\Software\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\HIPS\Registry Groups\1\0]
"DeviceName"="HKLM\System\Software\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\HIPS\Registry Groups\1\1]
"Filename"="*\SOFTWARE\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\1\HIPS\Registry Groups\1\1]
"DeviceName"="*\SOFTWARE\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2]
"Name"="COMODO - Firewall Security - 5.12.256249.2599"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\AV\Settings]
"QuarantinedPath"="C:\Program Files\COMODO\COMODO Internet Security\Quarantine"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\AV\Settings\Exclusions\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\AV\Settings\Exclusions\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\3\3]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\3\3]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\3\4]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cmdinstall.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\3\4]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cmdinstall.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\4\10]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cavscan.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\4\10]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cavscan.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\6]
"Name"="Soubory/adresáře COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\6\0]
"Filename"="C:\Program Files\COMODO*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\6\0]
"DeviceName"="C:\Program Files\COMODO*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\6\7]
"Filename"="C:\Documents and Settings\All Users\Data aplikací\Comodo*|"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\6\7]
"DeviceName"="C:\Documents and Settings\All Users\Data aplikací\Comodo*|"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\7]
"Name"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\7\0]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\7\0]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\7\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\7\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\7\2]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfpupdat.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\7\2]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfpupdat.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\7\3]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\cfplogvw.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\7\3]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\cfplogvw.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\7\4]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\crashrep.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\File Groups\7\4]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\crashrep.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\Firewall\Policy\0]
"DeviceName"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\HIPS\Policy\4]
"DeviceName"="COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\HIPS\Policy\4\Protections\0\Exceptions\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\HIPS\Policy\4\Protections\0\Exceptions\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\HIPS\Policy\4\Protections\1\Exceptions\1]
"Filename"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\HIPS\Policy\4\Protections\1\Exceptions\1]
"DeviceName"="C:\Program Files\COMODO\COMODO Internet Security\*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\HIPS\Protected Files\4]
"DeviceName"="Soubory/adresáře COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\HIPS\Protected Keys\1]
"DeviceName"="Klíče COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\HIPS\Registry Groups\1]
"Name"="Klíče COMODO"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\HIPS\Registry Groups\1\0]
"Filename"="HKLM\System\Software\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\HIPS\Registry Groups\1\0]
"DeviceName"="HKLM\System\Software\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\HIPS\Registry Groups\1\1]
"Filename"="*\SOFTWARE\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\2\HIPS\Registry Groups\1\1]
"DeviceName"="*\SOFTWARE\Comodo*"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDAGENT\0000]
"DeviceDesc"="COMODO Internet Security Helper Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\GeekBuddyRSP]
"CategoryMessageFile"="C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\GeekBuddyRSP]
"EventMessageFile"="C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\GeekBuddyRSP]
"ParameterMessageFile"="C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe"
[HKEY_USERS\.DEFAULT\Software\COMODO]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\Documents and Settings\All Users\Dokumenty\COMODO\binaries\clps_setup_3.2.186150.46.exe"="COMODO livePCsupport setup"
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\WINDOWS\temp\dragon_setup.exe"="Comodo Dragon"
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\Program Files\COMODO\GeekBuddy\version_logging.exe"="livePCsupport Component"
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\Program Files\COMODO\GeekBuddy\launcher.exe"="livePCsupport Component"
[HKEY_USERS\.DEFAULT\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QImageIOHandlerFactoryInterface:\C:\Program Files\COMODO]
[HKEY_USERS\.DEFAULT\Software\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\C:\Program Files\COMODO]
[HKEY_USERS\S-1-5-21-823518204-706699826-839522115-1003\Software\ComodoGroup]
[HKEY_USERS\S-1-5-21-823518204-706699826-839522115-1003\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\Documents and Settings\Dorkon\Plocha\cfw_installer.exe"="COMODO Internet Security"
[HKEY_USERS\S-1-5-21-823518204-706699826-839522115-1003\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\DOCUME~1\Dorkon\LOCALS~1\Temp\~nsu.tmp\Au_.exe"="Comodo Dragon"
[HKEY_USERS\S-1-5-18\Software\COMODO]
[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\Documents and Settings\All Users\Dokumenty\COMODO\binaries\clps_setup_3.2.186150.46.exe"="COMODO livePCsupport setup"
[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\WINDOWS\temp\dragon_setup.exe"="Comodo Dragon"
[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\Program Files\COMODO\GeekBuddy\version_logging.exe"="livePCsupport Component"
[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\Program Files\COMODO\GeekBuddy\launcher.exe"="livePCsupport Component"
[HKEY_USERS\S-1-5-18\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QImageIOHandlerFactoryInterface:\C:\Program Files\COMODO]
[HKEY_USERS\S-1-5-18\Software\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\C:\Program Files\COMODO]

Searching for "cis"
[HKEY_CURRENT_USER\Software\CISRA]
[HKEY_CURRENT_USER\Software\ComodoGroup\CIS]
[HKEY_LOCAL_MACHINE\SOFTWARE\ATI Technologies\Install\Packages\W-05-000U-000-003-002-001-00-00\Localization\TRK]
"ProductName"="ATI Catalyst Yükleme Yöneticisi"
[HKEY_LOCAL_MACHINE\SOFTWARE\Canon\ZoomBrowser EX\Task Categories\Print\{F33DF90B-EEB2-4d78-97B0-EE60BCFBC3E2}\Dependency]
"Key"="SOFTWARE\CISRA\PhotoRecord"
[HKEY_LOCAL_MACHINE\SOFTWARE\CISRA]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCFF154D-A97B-4138-A1AC-A2B0C3C05696}\33677ca6-d094-406f-a25c-e1e8d1655ec8]
"lastAnswer"="CisProOffer.NextOne.Yes"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCFF154D-A97B-4138-A1AC-A2B0C3C05696}\4680051D-F069-42C1-81E1-A28C7F507DCE]
"lastAnswer"="CisProOffer.NextOne.Yes"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCFF154D-A97B-4138-A1AC-A2B0C3C05696}\4E7644DA-C17B-11E2-8A2A-1A5B6188709B]
"lastAnswer"="CisCompleteOffer.NextOne.Yes"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCFF154D-A97B-4138-A1AC-A2B0C3C05696}\6274E4C9-87D7-45C9-B9B9-2F438CB9886A]
"lastAnswer"="CisProOffer.NextOne.Yes"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCFF154D-A97B-4138-A1AC-A2B0C3C05696}\C0BE8CA3-BE41-4609-8647-80B8642D920C]
"lastAnswer"="CisCompleteOffer.NextOne.Yes"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCFF154D-A97B-4138-A1AC-A2B0C3C05696}\CB297D8F-8036-4A20-8C56-19549FFA083E]
"lastAnswer"="CisProOffer.NextOne.Yes"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCFF154D-A97B-4138-A1AC-A2B0C3C05696}\E39F65A-F5CB-11E0-A0F4-06054824019B]
"lastAnswer"="CisPro.NextOne.Yes"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\D871E8DFE4B8AD244B43FE2F0723B9C1]
"FeatureShortcutsCIS"="ProductFeature"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\D871E8DFE4B8AD244B43FE2F0723B9C1\SourceList]
"PackageName"="CIS_Setup.msi"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{0007AEEC-58C3-4461-A605-D2F25EDFAA52}]
@="ICisRmControl3"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{08D1F165-8BCE-402A-B74B-FFBCC9157E80}]
@="ICisAgent2"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{10D82495-7F93-4C84-901A-65A9E1DED8EB}]
@="ICisRmControl7"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{157A3B3A-0924-4141-A222-F99BD5B2925A}]
@="ICisRmControl6"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{221745E8-E9C7-4A68-89EC-53A124187604}]
@="IDmvVolumeItemOriginalDecisionData"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{46E040B5-3395-4B9A-985D-E498640315AB}]
@="ICisRmControl2"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{7BDBBCBE-8A78-4A7A-9A3B-D8265CCFBA27}]
@="ICisRmControl5"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{A5E3A461-651E-4E3F-95A1-B765749C52CA}]
@="ICisRmControl8"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{A68C849C-2AFF-4F08-8EAA-80475AA2B199}]
@="ICisAgent"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{C6EBC129-535C-497C-AA55-59A712EF0C34}]
@="ICisControlCallback2"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{CEEFE079-2327-43E6-8002-94564FC09D56}]
@="ICisAgentCallback"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{D69AE3A4-3DEF-4031-B711-3D051A47C14D}]
@="ICisRmControl4"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{DEB43A60-3626-4EE4-AD3D-D96B84B7A47A}]
@="AsyncIShdocvwBroker"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E2CC28CC-68B2-440E-AE74-C93399CF37E2}]
@="ICisControlCallback"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{F2B830DA-DF8E-4CBF-946F-DED196916210}]
@="ICisRmControl"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\{DEA8AFA0-CC85-11d0-9CE2-0080C7221EBD}]
"Provider"="Cisco Systems, Inc."
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows XP\SP4\KB2598479\Filelist\1]
"FileName"="mciseq.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows XP\SP4\KB2598479\Filelist\3]
"FileName"="mciseq.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows XP\SP4\KB2598479\Filelist\5]
"FileName"="mciseq.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\265D0406C87211546AB7717F49CE3AF3]
"D871E8DFE4B8AD244B43FE2F0723B9C1"="01:\Software\ComodoGroup\CIS\CIS_PFShortcuts_FilesCFW"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\59467F7B0FB297240A363A088E9A5EF0]
"D871E8DFE4B8AD244B43FE2F0723B9C1"="01:\Software\ComodoGroup\CIS\CIS_DesktopShortcut_FilesCFW"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7531C22B6CA47CE4C918EC69FD221664]
"D871E8DFE4B8AD244B43FE2F0723B9C1"="01:\Software\ComodoGroup\CIS\COMODO Internet Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\98B2CBBB391E84348AC38CDD28014ACA\InstallProperties]
"Publisher"="Cisra"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D871E8DFE4B8AD244B43FE2F0723B9C1\Features]
"FeatureShortcutsCIS"="PzDm,e[uj9b{{a&LinP@K'D13yFf?9?vygdB+_'ZTkN-p0el%=`fE_2fS)K[ProductFeature"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{BBBC2B89-E193-4348-A83C-C8DD8210A4AC}]
"Publisher"="Cisra"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\drivers.desc]
"mciseq.dll"="(MCI) Midi Sequencer"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\MCI]
"Sequencer"="mciseq.drv"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\MCI32]
"Sequencer"="mciseq.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local\ipsecISAKMPPolicy{72385231-70fa-11d1-864c-14a300000000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local\ipsecISAKMPPolicy{72385231-70fa-11d1-864c-14a300000000}]
"ClassName"="ipsecISAKMPPolicy"
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local\ipsecISAKMPPolicy{72385231-70fa-11d1-864c-14a300000000}]
"name"="ipsecISAKMPPolicy{72385231-70fa-11d1-864c-14a300000000}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local\ipsecISAKMPPolicy{72385234-70fa-11d1-864c-14a300000000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local\ipsecISAKMPPolicy{72385234-70fa-11d1-864c-14a300000000}]
"ClassName"="ipsecISAKMPPolicy"
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local\ipsecISAKMPPolicy{72385234-70fa-11d1-864c-14a300000000}]
"name"="ipsecISAKMPPolicy{72385234-70fa-11d1-864c-14a300000000}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local\ipsecISAKMPPolicy{72385237-70fa-11d1-864c-14a300000000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local\ipsecISAKMPPolicy{72385237-70fa-11d1-864c-14a300000000}]
"ClassName"="ipsecISAKMPPolicy"
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local\ipsecISAKMPPolicy{72385237-70fa-11d1-864c-14a300000000}]
"name"="ipsecISAKMPPolicy{72385237-70fa-11d1-864c-14a300000000}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local\ipsecISAKMPPolicy{7238523d-70fa-11d1-864c-14a300000000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local\ipsecISAKMPPolicy{7238523d-70fa-11d1-864c-14a300000000}]
"ClassName"="ipsecISAKMPPolicy"
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local\ipsecISAKMPPolicy{7238523d-70fa-11d1-864c-14a300000000}]
"name"="ipsecISAKMPPolicy{7238523d-70fa-11d1-864c-14a300000000}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local\ipsecPolicy{72385230-70fa-11d1-864c-14a300000000}]
"ipsecISAKMPReference"="SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local\ipsecISAKMPPolicy{72385231-70fa-11d1-864c-14a300000000}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local\ipsecPolicy{72385236-70fa-11d1-864c-14a300000000}]
"ipsecISAKMPReference"="SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local\ipsecISAKMPPolicy{72385237-70fa-11d1-864c-14a300000000}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local\ipsecPolicy{7238523c-70fa-11d1-864c-14a300000000}]
"ipsecISAKMPReference"="SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local\ipsecISAKMPPolicy{7238523d-70fa-11d1-864c-14a300000000}"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\MediaProperties\PrivateProperties\Joystick\OEM\VID_047D&PID_3905]
"OEMName"="Gravis Eliminator Precision Pro (GamePort)"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\WOW]
"KnownDLLs"="comm.drv commdlg.dll ctl3dv2.dll ddeml.dll keyboard.drv lanman.drv mmsystem.dll mouse.drv netapi.dll olecli.dll olesvr.dll pmspl.dll shell.dll sound.drv system.drv toolhelp.dll vga.drv wfwnet.drv win87em.dll winoldap.mod winsock.dll winspool.exe wowdeb.exe timer.drv rasapi16.dll compobj.dll storage.dll ole2.dll ole2disp.dll ole2nls.dll typelib.dll msvideo.dll avifile.dll msacm.dll mciavi.drv mciseq.drv mciwave.drv progman.exe avicap.dll mapi.dll"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CiSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CiSvc]
"ImagePath"="%SystemRoot%\system32\cisvc.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Control\MediaProperties\PrivateProperties\Joystick\OEM\VID_047D&PID_3905]
"OEMName"="Gravis Eliminator Precision Pro (GamePort)"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Control\WOW]
"KnownDLLs"="comm.drv commdlg.dll ctl3dv2.dll ddeml.dll keyboard.drv lanman.drv mmsystem.dll mouse.drv netapi.dll olecli.dll olesvr.dll pmspl.dll shell.dll sound.drv system.drv toolhelp.dll vga.drv wfwnet.drv win87em.dll winoldap.mod winsock.dll winspool.exe wowdeb.exe timer.drv rasapi16.dll compobj.dll storage.dll ole2.dll ole2disp.dll ole2nls.dll typelib.dll msvideo.dll avifile.dll msacm.dll mciavi.drv mciseq.drv mciwave.drv progman.exe avicap.dll mapi.dll"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\CiSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\CiSvc]
"ImagePath"="%SystemRoot%\system32\cisvc.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Cam\CIS]
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\License\Cam\CIS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\MediaProperties\PrivateProperties\Joystick\OEM\VID_047D&PID_3905]
"OEMName"="Gravis Eliminator Precision Pro (GamePort)"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\WOW]
"KnownDLLs"="comm.drv commdlg.dll ctl3dv2.dll ddeml.dll keyboard.drv lanman.drv mmsystem.dll mouse.drv netapi.dll olecli.dll olesvr.dll pmspl.dll shell.dll sound.drv system.drv toolhelp.dll vga.drv wfwnet.drv win87em.dll winoldap.mod winsock.dll winspool.exe wowdeb.exe timer.drv rasapi16.dll compobj.dll storage.dll ole2.dll ole2disp.dll ole2nls.dll typelib.dll msvideo.dll avifile.dll msacm.dll mciavi.drv mciseq.drv mciwave.drv progman.exe avicap.dll mapi.dll"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CiSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CiSvc]
"ImagePath"="%SystemRoot%\system32\cisvc.exe"
[HKEY_USERS\S-1-5-21-823518204-706699826-839522115-1003\Software\CISRA]
[HKEY_USERS\S-1-5-21-823518204-706699826-839522115-1003\Software\ComodoGroup\CIS]

========== dir ==========

*comodo* - Unable to find folder.

*cis* - Unable to find folder.

-= EOF =-