Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

řešení problému

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
lenička
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 03 kvě 2010 21:23

řešení problému

#1 Příspěvek od lenička »

Prosím o pomoc jde mi na kompu jen nouzový režim
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119512
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: řešení problému

#2 Příspěvek od Rudy »

Dejte log z RSIT: http://viry.cz/forum/viewtopic.php?f=24&t=81939 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
lenička
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 03 kvě 2010 21:23

Re: řešení problému

#3 Příspěvek od lenička »

OTL logfile created on: 3.5.2010 22:20:45 - Run 1
OTL by OldTimer - Version 3.2.4.1 Folder = C:\Users\nikolka\Desktop
Windows Vista Home Basic Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.17037)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 72,00% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 90,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 92,21 Gb Total Space | 21,98 Gb Free Space | 23,84% Space Free | Partition Type: NTFS
Drive D: | 45,12 Gb Total Space | 44,97 Gb Free Space | 99,67% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: NIKOLKA-PC
Current User Name: nikolka
Logged in as Administrator.

Current Boot Mode: SafeMode with Networking
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010.05.03 22:19:24 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Users\nikolka\Desktop\OTL.exe
PRC - [2009.12.09 18:02:38 | 000,017,904 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Essentials\MsMpEng.exe
PRC - [2008.10.29 08:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe


========== Modules (SafeList) ==========

MOD - [2010.05.03 22:19:24 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Users\nikolka\Desktop\OTL.exe
MOD - [2007.11.04 00:39:06 | 001,648,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.20656_none_463680b8218be5a3\comctl32.dll
MOD - [2006.11.02 11:44:49 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (Jetico Personal Firewall server)
SRV - [2010.01.03 17:07:48 | 000,246,520 | ---- | M] () [Auto | Stopped] -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2009.12.09 18:02:38 | 000,017,904 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Essentials\MsMpEng.exe -- (MsMpSvc)
SRV - [2009.11.13 13:31:14 | 000,092,008 | ---- | M] (TomTom) [Auto | Stopped] -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService)
SRV - [2009.08.14 16:25:18 | 000,009,728 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\TCPSVCS.EXE -- (simptcp)
SRV - [2008.11.26 19:18:32 | 000,254,040 | ---- | M] (ALWIL Software) [Auto | Stopped] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2008.11.26 19:16:23 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Stopped] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2008.10.15 15:31:53 | 000,068,865 | ---- | M] (Avira GmbH) [Auto | Stopped] -- C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe -- (AntiVirScheduler)
SRV - [2008.10.15 15:30:02 | 000,151,297 | ---- | M] (Avira GmbH) [Auto | Stopped] -- C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe -- (AntiVirService)
SRV - [2008.06.20 03:17:50 | 000,132,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2008.06.20 03:17:50 | 000,132,096 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpActivator)
SRV - [2008.06.20 03:17:50 | 000,132,096 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetPipeActivator)
SRV - [2008.06.20 03:17:50 | 000,132,096 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetMsmqActivator)
SRV - [2007.11.03 23:32:31 | 000,265,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007.10.11 03:41:53 | 000,013,824 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\inetsrv\inetinfo.exe -- (IISADMIN)
SRV - [2006.12.08 20:52:04 | 000,204,800 | ---- | M] (Fujitsu Siemens Computers) [Auto | Stopped] -- C:\FirstSteps\OnlineDiagnostic\TestManager\TestHandler.exe -- (TestHandler)
SRV - [2006.11.18 06:45:26 | 000,118,784 | ---- | M] (Wistron Corp.) [On_Demand | Stopped] -- C:\Program Files\Launch Manager\WisLMSvc.exe -- (WisLMSvc)
SRV - [2006.11.02 14:35:03 | 000,322,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2006.11.02 14:35:03 | 000,322,560 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\inetsrv\iisw3adm.dll -- (W3SVC)
SRV - [2006.11.02 14:35:03 | 000,035,328 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\lpdsvc.dll -- (LPDSVC)
SRV - [2006.11.02 14:34:40 | 000,047,104 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\snmp.exe -- (SNMP)
SRV - [2005.11.14 02:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT)


========== Driver Services (SafeList) ==========

DRV - [2010.03.04 13:50:14 | 000,261,152 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2009.12.28 14:51:44 | 000,054,336 | ---- | M] (Jetico, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\bcftdi.sys -- (bcftdi)
DRV - [2009.12.28 14:51:36 | 000,025,664 | ---- | M] (Jetico, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\bcfilter.sys -- (BcfilterMP)
DRV - [2009.12.28 14:51:36 | 000,025,664 | ---- | M] (Jetico, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bcfilter.sys -- (Bcfilter)
DRV - [2009.12.28 14:51:24 | 000,019,392 | ---- | M] (Jetico, Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\bc_ngn.sys -- (bc_ngn)
DRV - [2009.12.28 14:51:19 | 000,023,616 | ---- | M] (Jetico, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\bc_tdi_f.sys -- (bc_tdi_f)
DRV - [2009.12.28 14:51:17 | 000,019,008 | ---- | M] (Jetico, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\bc_prt_f.sys -- (bc_prt_f)
DRV - [2009.12.28 14:51:15 | 000,015,040 | ---- | M] (Jetico, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\bc_pat_f.sys -- (bc_pat_f)
DRV - [2009.12.28 14:51:12 | 000,035,648 | ---- | M] (Jetico, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\bc_ip_f.sys -- (bc_ip_f)
DRV - [2009.12.28 14:51:10 | 000,015,040 | ---- | M] (Jetico, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\bc_hash_f.sys -- (bc_hash_f)
DRV - [2009.12.02 15:23:40 | 000,149,040 | ---- | M] (Microsoft Corporation) [File_System | System | Stopped] -- C:\Windows\System32\drivers\MpFilter.sys -- (MpFilter)
DRV - [2009.12.02 15:23:40 | 000,042,368 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2009.10.14 19:08:32 | 000,032,000 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tap0901.sys -- (tap0901)
DRV - [2009.06.17 12:59:30 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mqac.sys -- (MQAC)
DRV - [2009.05.28 15:01:19 | 000,075,096 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2009.05.28 15:01:12 | 000,052,056 | ---- | M] (Avira GmbH) [File_System | On_Demand | Stopped] -- C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys -- (avgntflt)
DRV - [2009.05.28 15:01:08 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys -- (avgio)
DRV - [2009.02.24 19:51:07 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008.11.26 19:17:36 | 000,111,184 | ---- | M] (ALWIL Software) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2008.11.26 19:17:25 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Stopped] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2008.11.26 19:17:15 | 000,051,792 | ---- | M] (ALWIL Software) [File_System | Auto | Stopped] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2008.11.26 19:16:38 | 000,050,864 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2008.11.26 19:16:29 | 000,023,152 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2008.10.09 15:42:42 | 000,017,408 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\KMWDFILTER.sys -- (KMWDFILTER)
DRV - [2008.05.10 03:21:06 | 000,113,664 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\rmcast.sys -- (RMCAST) Ovladač protokolu RMCAST (Pgm)
DRV - [2008.02.11 19:36:10 | 002,302,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\igdkmd32.sys -- (igfx)
DRV - [2007.11.04 01:07:49 | 000,020,152 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2007.11.04 01:07:49 | 000,019,128 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2007.11.04 01:07:49 | 000,017,592 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2007.08.17 15:12:28 | 000,190,512 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SynTP.sys -- (SynTP)
DRV - [2007.08.01 22:30:40 | 000,016,376 | R--- | M] (Gemfor s.r.o.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\ethpdrv.sys -- (Ethpdrv)
DRV - [2007.07.18 19:32:40 | 001,841,312 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007.07.02 17:37:10 | 000,131,616 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvrd32.sys -- (nvrd32)
DRV - [2007.07.02 17:37:08 | 000,110,112 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor32.sys -- (nvstor32)
DRV - [2007.06.18 18:03:32 | 000,737,280 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2007.06.14 16:29:08 | 000,457,856 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PAC7302.SYS -- (PAC7302)
DRV - [2007.06.13 23:47:12 | 000,048,256 | ---- | M] (JMicron Technology Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\jraid.sys -- (JRAID)
DRV - [2007.03.21 12:58:56 | 000,304,920 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\iaStor.sys -- (iaStor)
DRV - [2007.03.01 11:34:22 | 000,028,352 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2006.11.02 11:51:45 | 000,900,712 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2006.11.02 11:51:38 | 000,420,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2006.11.02 11:51:34 | 000,316,520 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2006.11.02 11:51:32 | 000,297,576 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2006.11.02 11:51:25 | 000,235,112 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2006.11.02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2006.11.02 11:51:00 | 000,147,048 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2006.11.02 11:50:45 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2006.11.02 11:50:41 | 000,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2006.11.02 11:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006.11.02 11:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006.11.02 11:50:35 | 000,098,408 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2006.11.02 11:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2006.11.02 11:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006.11.02 11:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006.11.02 11:50:16 | 000,071,784 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2006.11.02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2006.11.02 11:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006.11.02 11:50:10 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2006.11.02 11:50:10 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2006.11.02 11:50:10 | 000,038,504 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2)
DRV - [2006.11.02 11:50:10 | 000,037,480 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2006.11.02 11:50:09 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2006.11.02 11:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006.11.02 11:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006.11.02 11:50:05 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2006.11.02 11:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006.11.02 11:50:04 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2006.11.02 11:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006.11.02 11:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006.11.02 11:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006.11.02 11:49:53 | 000,028,776 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2006.11.02 10:55:04 | 000,071,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) Ovladač zvuků USB (WDM)
DRV - [2006.11.02 10:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006.11.02 10:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006.11.02 10:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006.11.02 10:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006.11.02 10:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006.11.02 10:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006.11.02 09:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)
DRV - [2006.11.02 09:30:54 | 000,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R)
DRV - [2006.09.05 20:08:40 | 000,088,624 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\se59mgmt.sys -- (se59mgmt) Sony Ericsson Device 089 USB WMC Device Management Drivers (WDM)
DRV - [2006.09.05 20:07:52 | 000,097,088 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\se59mdm.sys -- (se59mdm)
DRV - [2006.09.05 20:07:48 | 000,009,360 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\se59mdfl.sys -- (se59mdfl)
DRV - [2006.09.05 20:07:00 | 000,061,536 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\se59bus.sys -- (se59bus) Sony Ericsson Device 089 driver (WDM)
DRV - [2005.02.23 15:58:56 | 000,011,776 | ---- | M] (Arcsoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\afc.sys -- (Afc)
DRV - [2003.04.28 21:27:06 | 000,009,867 | ---- | M] () [Kernel | System | Stopped] -- C:\Windows\System32\drivers\HOTKEY.sys -- (Hotkey)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
IE - HKLM\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - C:\Program Files\MyPlayCity\tbMyP1.dll (Conduit Ltd.)
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)


IE - HKU\.DEFAULT\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\SOFTWARE\Microsoft\Internet Explorer\Main,DefaultScope = {A3B1A68E-51A6-4355-BBD8-4F9F33248A0A}
IE - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\..\URLSearchHook: {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - C:\Program Files\MyPlayCity\tbMyP1.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
IE - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[2008.11.14 23:51:42 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\Mozilla\Extensions
[2008.11.14 23:51:42 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\Mozilla\Extensions\home2@tomtom.com

O1 HOSTS File: ([2010.04.27 19:59:30 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll File not found
O2 - BHO: (compliance 54328 Toolbar) - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - C:\Program Files\MyPlayCity\tbMyP1.dll (Conduit Ltd.)
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll File not found
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.)
O2 - BHO: (Lištička) - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\listicka.dll ()
O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (compliance 54328 Toolbar) - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - C:\Program Files\MyPlayCity\tbMyP1.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (&S-Rank) - {B71B15CF-3093-459C-B764-AEB2486F2273} - C:\Program Files\Seznam\Postak\SRank.dll (Seznam.cz a.s.)
O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\..\Toolbar\WebBrowser: (compliance 54328 Toolbar) - {4724C5D8-DFA7-417A-A2F5-1EABFEE9B4AC} - C:\Program Files\MyPlayCity\tbMyP1.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\..\Toolbar\WebBrowser: (&S-Rank) - {B71B15CF-3093-459C-B764-AEB2486F2273} - C:\Program Files\Seznam\Postak\SRank.dll (Seznam.cz a.s.)
O3 - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [CtrlVol] C:\Program Files\Launch Manager\CtrlVol.exe File not found
O4 - HKLM..\Run: [HotkeyApp] C:\Program Files\Launch Manager\HotkeyApp.exe (Wistron)
O4 - HKLM..\Run: [JeticoPFStartup] C:\Program Files\Jetico\Jetico Personal Firewall\jpf.exe File not found
O4 - HKLM..\Run: [LaunchAp] C:\Program Files\Launch Manager\LaunchAp.exe File not found
O4 - HKLM..\Run: [MSSE] C:\Program Files\Microsoft Security Essentials\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [PAC7302_Monitor] C:\Windows\Pixart\Pac7302\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [recinfo800] c:\RecInfo\RecInfo.exe ()
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [Wbutton] C:\Program Files\Launch Manager\WButton.exe File not found
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1326340626-3193023112-599807728-1000..\Run: [CollaborationHost] C:\Windows\System32\p2phost.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1326340626-3193023112-599807728-1000..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-1326340626-3193023112-599807728-1000..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKU\S-1-5-21-1326340626-3193023112-599807728-1000..\Run: [TomTomHOME.exe] C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
O4 - Startup: C:\Users\nikolka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideFastUserSwitching = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1326340626-3193023112-599807728-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll (Google Inc.)
O9 - Extra Button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra 'Tools' menuitem : Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra Button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra 'Tools' menuitem : Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra Button: Kniha klipů HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: HP Chytrý výběr - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/200 ... oader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab (DivXBrowserPlugin Object)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos-be ... canner.cab (Reg Error: Key error.)
O16 - DPF: {BAE1D8DF-0B35-47E3-A1E7-EEB3FF2ECD19} http://icq.oberon-media.com//online/onl ... 0.0.33.cab (CPlayFirstddfotgControl Object)
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} http://icq.oberon-media.com/Gameshell/G ... meHost.cab (Oberon Flash Game Host)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Users\nikolka\Pictures\2010-01-28\051.JPG
O24 - Desktop BackupWallPaper: C:\Users\nikolka\Pictures\2010-01-28\051.JPG
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias [2006.11.02 13:18:47 | 000,000,000 | ---D | M]
NetSvcs: Nla - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: Wmi - C:\Windows\System32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.siren - C:\Windows\System32\sirenacm.dll (Microsoft Corporation)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.tscc - C:\Windows\System32\tsccvid.dll (TechSmith Corporation)

CREATERESTOREPOINT
Error creating restore point.

========== Files/Folders - Created Within 30 Days ==========

[2010.05.03 22:19:18 | 000,570,880 | ---- | C] (OldTimer Tools) -- C:\Users\nikolka\Desktop\OTL.exe
[2010.05.03 22:08:07 | 000,000,000 | ---D | C] -- C:\Windows\LastGood
[2010.05.03 22:04:24 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2010.05.03 15:49:24 | 000,000,000 | ---D | C] -- C:\ProgramData\ICQ
[2010.05.03 14:47:20 | 000,032,000 | ---- | C] (The OpenVPN Project) -- C:\Windows\System32\drivers\tap0901.sys
[2010.05.03 10:32:31 | 000,000,000 | ---D | C] -- C:\Users\nikolka\AppData\Roaming\Comodo
[2010.05.03 10:32:31 | 000,000,000 | ---D | C] -- C:\Program Files\Comodo
[2010.05.03 10:31:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo Downloader
[2010.05.02 21:30:34 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software(0)
[2010.05.02 16:56:34 | 000,000,000 | ---D | C] -- C:\Users\nikolka\AppData\Roaming\BitDefender
[2010.05.02 16:47:20 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Essentials
[2010.04.30 13:17:38 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2010.04.29 10:08:26 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010.04.29 10:08:26 | 000,000,000 | ---D | C] -- C:\rsit
[2010.04.28 21:26:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Alwil Software
[2010.04.27 22:30:58 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2010.04.27 22:16:02 | 000,000,000 | ---D | C] -- C:\Users\nikolka\AppData\Local\AOL
[2010.04.27 20:09:27 | 000,000,000 | ---D | C] -- C:\Users\nikolka\AppData\Local\temp
[2010.04.27 19:41:26 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2010.04.27 19:41:26 | 000,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2010.04.27 19:41:26 | 000,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2010.04.27 19:41:26 | 000,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2010.04.27 19:41:09 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2010.04.27 19:38:05 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010.04.26 17:35:33 | 000,000,000 | ---D | C] -- C:\Users\nikolka\Desktop\přehledy a danové přiznání
[2010.04.21 14:29:26 | 000,000,000 | ---D | C] -- C:\Users\nikolka\AppData\Roaming\Orneon
[2010.04.20 09:08:50 | 000,020,568 | ---- | C] (Check Point Software Technologies) -- C:\Windows\erase_SR.exe
[2010.04.18 12:42:45 | 000,139,264 | ---- | C] (Soft&Control Technology) -- C:\Windows\System32\FODBCLib.dll
[2010.04.18 12:42:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft NT Ident
[2010.04.14 09:10:12 | 003,504,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010.04.14 09:10:12 | 003,470,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010.04.14 09:10:05 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.04.14 09:09:56 | 000,220,672 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm
[2010.04.14 09:09:56 | 000,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
[2010.04.14 09:09:53 | 000,213,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2010.04.14 09:09:52 | 000,543,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2010.04.14 09:09:52 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll
[2010.04.14 09:09:52 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2010.04.14 09:09:52 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiougc.exe

========== Files - Modified Within 30 Days ==========

[2010.05.03 22:22:47 | 007,602,176 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat
[2010.05.03 22:19:24 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Users\nikolka\Desktop\OTL.exe
[2010.05.03 22:13:22 | 000,000,000 | ---- | M] () -- C:\boot.ini
[2010.05.03 22:09:41 | 001,456,946 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010.05.03 22:09:41 | 000,677,614 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010.05.03 22:09:41 | 000,543,160 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2010.05.03 22:09:41 | 000,128,290 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010.05.03 22:09:41 | 000,112,628 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2010.05.03 22:05:15 | 000,000,433 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.ics
[2010.05.03 22:02:26 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl
[2010.05.03 22:02:06 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.05.03 21:57:41 | 000,003,456 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010.05.03 21:57:40 | 000,003,456 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010.05.03 21:57:37 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010.05.03 21:57:11 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.05.03 21:02:20 | 000,000,134 | ---- | M] () -- C:\Users\nikolka\Desktop\Poradce při potížích s aplikací Internet Explorer.url
[2010.05.03 18:32:34 | 000,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini
[2010.05.03 18:32:32 | 000,001,356 | ---- | M] () -- C:\Users\nikolka\AppData\Local\d3d9caps.dat
[2010.05.03 17:25:13 | 000,001,528 | ---- | M] () -- C:\Users\nikolka\AppData\Roaming\wklnhst.dat
[2010.05.03 14:45:41 | 000,001,977 | ---- | M] () -- C:\Users\nikolka\Desktop\Google Chrome.lnk
[2010.05.03 11:05:29 | 000,000,426 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{37663F2B-B354-4A1D-B9ED-C8A644B0FB0C}.job
[2010.05.03 09:00:55 | 000,524,288 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat{dee70fd5-567e-11df-9e70-0016d387c8af}.TMContainer00000000000000000002.regtrans-ms
[2010.05.03 09:00:55 | 000,524,288 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat{dee70fd5-567e-11df-9e70-0016d387c8af}.TMContainer00000000000000000001.regtrans-ms
[2010.05.03 09:00:55 | 000,065,536 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat{dee70fd5-567e-11df-9e70-0016d387c8af}.TM.blf
[2010.05.03 08:37:21 | 000,524,288 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat{2ae4d739-567e-11df-a792-0016d387c8af}.TMContainer00000000000000000002.regtrans-ms
[2010.05.03 08:37:21 | 000,524,288 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat{2ae4d739-567e-11df-a792-0016d387c8af}.TMContainer00000000000000000001.regtrans-ms
[2010.05.03 08:37:20 | 000,065,536 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat{2ae4d739-567e-11df-a792-0016d387c8af}.TM.blf
[2010.05.03 08:31:53 | 000,524,288 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat{6b8dbf52-567d-11df-8f1d-0016d387c8af}.TMContainer00000000000000000002.regtrans-ms
[2010.05.03 08:31:53 | 000,524,288 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat{6b8dbf52-567d-11df-8f1d-0016d387c8af}.TMContainer00000000000000000001.regtrans-ms
[2010.05.03 08:31:53 | 000,065,536 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat{6b8dbf52-567d-11df-8f1d-0016d387c8af}.TM.blf
[2010.05.02 16:47:21 | 000,000,960 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk
[2010.05.02 10:16:40 | 000,524,288 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat{0e816d21-55be-11df-b2f1-0016d387c8af}.TMContainer00000000000000000002.regtrans-ms
[2010.05.02 10:16:40 | 000,524,288 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat{0e816d21-55be-11df-b2f1-0016d387c8af}.TMContainer00000000000000000001.regtrans-ms
[2010.05.02 10:16:40 | 000,065,536 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat{0e816d21-55be-11df-b2f1-0016d387c8af}.TM.blf
[2010.05.02 10:15:44 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2010.05.01 12:00:00 | 000,000,940 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010.05.01 09:46:39 | 000,000,175 | ---- | M] () -- C:\Users\nikolka\AppData\Local\RAExpertHistory.xml
[2010.05.01 00:31:09 | 000,000,175 | ---- | M] () -- C:\Users\nikolka\AppData\Local\rahistory.xml
[2010.04.30 13:30:47 | 000,524,288 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat{2207b165-544a-11df-b8ca-83fbe6478c9d}.TMContainer00000000000000000002.regtrans-ms
[2010.04.30 13:30:47 | 000,524,288 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat{2207b165-544a-11df-b8ca-83fbe6478c9d}.TMContainer00000000000000000001.regtrans-ms
[2010.04.30 13:30:47 | 000,065,536 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat{2207b165-544a-11df-b8ca-83fbe6478c9d}.TM.blf
[2010.04.29 00:20:29 | 000,524,288 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat{816088f0-52fc-11df-b311-0016d387c8af}.TMContainer00000000000000000002.regtrans-ms
[2010.04.29 00:20:29 | 000,524,288 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat{816088f0-52fc-11df-b311-0016d387c8af}.TMContainer00000000000000000001.regtrans-ms
[2010.04.29 00:20:29 | 000,065,536 | -HS- | M] () -- C:\Users\nikolka\ntuser.dat{816088f0-52fc-11df-b311-0016d387c8af}.TM.blf
[2010.04.27 22:46:21 | 000,185,344 | ---- | M] () -- C:\Users\nikolka\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.04.27 22:39:12 | 000,001,893 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010.04.27 20:00:00 | 000,000,215 | ---- | M] () -- C:\Windows\system.ini
[2010.04.27 19:59:30 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2010.04.27 10:44:49 | 011,803,830 | ---- | M] () -- C:\Users\nikolka\Documents\vizitky.tif
[2010.04.26 15:58:12 | 000,256,512 | ---- | M] () -- C:\Windows\PEV.exe
[2010.04.20 19:56:28 | 000,000,186 | ---- | M] () -- C:\Windows\tasks\{25AFF00E-2A30-45B8-B302-AB85347EEF1E}.job
[2010.04.15 10:17:38 | 000,022,016 | ---- | M] () -- C:\Users\nikolka\Documents\četné prohlášení.wps

========== Files Created - No Company Name ==========

[2010.05.03 22:13:22 | 000,000,000 | ---- | C] () -- C:\boot.ini
[2010.05.03 21:02:20 | 000,000,134 | ---- | C] () -- C:\Users\nikolka\Desktop\Poradce při potížích s aplikací Internet Explorer.url
[2010.05.03 08:41:54 | 000,524,288 | -HS- | C] () -- C:\Users\nikolka\ntuser.dat{dee70fd5-567e-11df-9e70-0016d387c8af}.TMContainer00000000000000000002.regtrans-ms
[2010.05.03 08:41:54 | 000,524,288 | -HS- | C] () -- C:\Users\nikolka\ntuser.dat{dee70fd5-567e-11df-9e70-0016d387c8af}.TMContainer00000000000000000001.regtrans-ms
[2010.05.03 08:41:54 | 000,065,536 | -HS- | C] () -- C:\Users\nikolka\ntuser.dat{dee70fd5-567e-11df-9e70-0016d387c8af}.TM.blf
[2010.05.03 08:37:21 | 000,524,288 | -HS- | C] () -- C:\Users\nikolka\ntuser.dat{2ae4d739-567e-11df-a792-0016d387c8af}.TMContainer00000000000000000002.regtrans-ms
[2010.05.03 08:37:21 | 000,524,288 | -HS- | C] () -- C:\Users\nikolka\ntuser.dat{2ae4d739-567e-11df-a792-0016d387c8af}.TMContainer00000000000000000001.regtrans-ms
[2010.05.03 08:37:20 | 000,065,536 | -HS- | C] () -- C:\Users\nikolka\ntuser.dat{2ae4d739-567e-11df-a792-0016d387c8af}.TM.blf
[2010.05.03 08:31:53 | 000,524,288 | -HS- | C] () -- C:\Users\nikolka\ntuser.dat{6b8dbf52-567d-11df-8f1d-0016d387c8af}.TMContainer00000000000000000002.regtrans-ms
[2010.05.03 08:31:53 | 000,524,288 | -HS- | C] () -- C:\Users\nikolka\ntuser.dat{6b8dbf52-567d-11df-8f1d-0016d387c8af}.TMContainer00000000000000000001.regtrans-ms
[2010.05.03 08:31:53 | 000,065,536 | -HS- | C] () -- C:\Users\nikolka\ntuser.dat{6b8dbf52-567d-11df-8f1d-0016d387c8af}.TM.blf
[2010.05.02 16:47:21 | 000,000,960 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk
[2010.05.02 10:12:47 | 000,001,977 | ---- | C] () -- C:\Users\nikolka\Desktop\Google Chrome.lnk
[2010.05.02 10:06:28 | 000,524,288 | -HS- | C] () -- C:\Users\nikolka\ntuser.dat{0e816d21-55be-11df-b2f1-0016d387c8af}.TMContainer00000000000000000002.regtrans-ms
[2010.05.02 10:06:28 | 000,524,288 | -HS- | C] () -- C:\Users\nikolka\ntuser.dat{0e816d21-55be-11df-b2f1-0016d387c8af}.TMContainer00000000000000000001.regtrans-ms
[2010.05.02 10:06:28 | 000,065,536 | -HS- | C] () -- C:\Users\nikolka\ntuser.dat{0e816d21-55be-11df-b2f1-0016d387c8af}.TM.blf
[2010.05.01 09:46:39 | 000,000,175 | ---- | C] () -- C:\Users\nikolka\AppData\Local\RAExpertHistory.xml
[2010.05.01 00:31:09 | 000,000,175 | ---- | C] () -- C:\Users\nikolka\AppData\Local\rahistory.xml
[2010.04.30 13:25:51 | 000,524,288 | -HS- | C] () -- C:\Users\nikolka\ntuser.dat{2207b165-544a-11df-b8ca-83fbe6478c9d}.TMContainer00000000000000000002.regtrans-ms
[2010.04.30 13:25:51 | 000,524,288 | -HS- | C] () -- C:\Users\nikolka\ntuser.dat{2207b165-544a-11df-b8ca-83fbe6478c9d}.TMContainer00000000000000000001.regtrans-ms
[2010.04.30 13:25:51 | 000,065,536 | -HS- | C] () -- C:\Users\nikolka\ntuser.dat{2207b165-544a-11df-b8ca-83fbe6478c9d}.TM.blf
[2010.04.29 00:11:14 | 000,524,288 | -HS- | C] () -- C:\Users\nikolka\ntuser.dat{816088f0-52fc-11df-b311-0016d387c8af}.TMContainer00000000000000000002.regtrans-ms
[2010.04.29 00:11:14 | 000,524,288 | -HS- | C] () -- C:\Users\nikolka\ntuser.dat{816088f0-52fc-11df-b311-0016d387c8af}.TMContainer00000000000000000001.regtrans-ms
[2010.04.29 00:11:13 | 000,065,536 | -HS- | C] () -- C:\Users\nikolka\ntuser.dat{816088f0-52fc-11df-b311-0016d387c8af}.TM.blf
Nahoru
lenička
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 03 kvě 2010 21:23

Re: řešení problému

#4 Příspěvek od lenička »

TL Extras logfile created on: 3.5.2010 22:20:45 - Run 1
OTL by OldTimer - Version 3.2.4.1 Folder = C:\Users\nikolka\Desktop
Windows Vista Home Basic Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.17037)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 72,00% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 90,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 92,21 Gb Total Space | 21,98 Gb Free Space | 23,84% Space Free | Partition Type: NTFS
Drive D: | 45,12 Gb Total Space | 44,97 Gb Free Space | 99,67% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: NIKOLKA-PC
Current User Name: nikolka
Logged in as Administrator.

Current Boot Mode: SafeMode with Networking
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-1326340626-3193023112-599807728-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
https [open] -- "C:\Program Files\K-Meleon\K-Meleon.exe" "%1" File not found
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" File not found
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" File not found
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" File not found
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-1326340626-3193023112-599807728-1000]
"EnableNotificationsRef" = 2

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- File not found

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- File not found


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"%Product_Name% 4.2F " = Faktury 4.2F
"{10E1E87C-656C-4D08-86D6-5443D28583BE}" = TrayApp
"{13F00518-807A-4B3A-83B0-A7CD90F3A398}" = MarketResearch
"{1753255A-0AEB-4220-8C75-607B73F0C133}" = Copy
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{20D0CDB1-5F03-4A5D-86EB-7C218053B157}" = Windows Live Messenger
"{22466889-7642-488d-AA0E-F619704CF7AB}" = DeviceDiscovery
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{244E21B9-164C-4EC1-AED8-9BD64161E66D}" = ArcSoft VideoImpression 2
"{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}" = WebReg
"{2F173C40-563E-11D4-89C5-0010ADDAAC33}" = EA.com Matchup
"{2F28B3C9-2C89-4206-8B33-8ADC9577C49B}" = Scan
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{415CDA53-9100-476F-A7B2-476691E117C7}" = HP Smart Web Printing
"{487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}" = HPSSupply
"{493D452C-D36F-4E29-BC5D-98F60CEA9454}" = STORMWARE POHODA CZ Start
"{543E938C-BDC4-4933-A612-01293996845F}" = UnloadSupport
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7B1AF68B-4606-4152-9991-1E9D4FF5F0FA}" = Microsoft Antimalware Service CS-CZ Language Pack
"{81CD6232-10F5-4832-B3DA-1B88B1571029}" = Nero 7 Essentials
"{824D3839-DAA1-4315-A822-7AE3E620E528}" = VideoToolkit01
"{8389382B-53BA-4A87-8854-91E3D80A5AC7}" = HP Photosmart Essential2.01
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C13BEE4-E7CE-4E46-BD13-8F41DAD00FEF}" = SweetIM Toolbar for Internet Explorer 3.4
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{93028F9A-1EC0-467A-981B-DE93D96897C6}" = Windows Live Essentials
"{94D66D71-12F0-48A5-B46A-D4B835A0F1B7}" = FirstSteps Diagnostics
"{95120000-00AF-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (Czech)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{97C0EA4A-1A0B-4C53-ACEB-49984DA79C90}" = Google Earth
"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9AB97F52-512B-43EF-AAEC-4825C17B32ED}" = EA.com Update
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A6B90148-02C5-4fd3-8D7A-EF2386835CB9}" = F4100_Help
"{A6C265BE-E2C1-483e-843D-6B4C1E912AE0}" = F4100
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB40272D-92AB-4F30-B36B-22EDE16F8FE5}" = HP Update
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-7AD7-1029-7B44-A91000000001}" = Adobe Reader 9.1 - Czech
"{AEA07F97-9088-497c-8821-0F36BD5DC251}" = HPProductAssistant
"{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}" = AIO_Scan
"{B4509BCE-7BAD-4a8c-B1AE-4D0CE7467C42}" = F4100_doccd
"{B4F35A00-24FD-4fb3-BF5E-413D5423434D}" = DJ_AIO_Software_min
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Plus Web Player
"{BCD6CD1A-0DBE-412E-9F25-3B500D1E6BA1}" = SolutionCenter
"{BE3497CB-7278-4526-8918-9A3FD77AE790}}_is1" = iTeddy File Converter v. 0.2
"{BE38545B-08F7-4f80-95AE-752B99BF159C}" = Web'n'walk 4G software
"{C2ED62F4-4F0B-44DF-B630-DD02FD7E8C60}" = OpenOffice.org 2.4
"{C73B5B3B-F974-48CA-8B91-3E8A432AEA5B}" = Microsoft Works
"{CA50045C-5119-48e7-9BA7-6B317379857A}" = DJ_AIO_Software
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0846526-66DD-4DC9-A02C-98F9A2806812}" = Launch Manager V1.4.9
"{D0E39A1D-0CEE-4D85-B4A2-E3BE990D075E}" = Destination Component
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{E2662C24-B31E-4349-A084-32EB76E8B760}" = BufferChm
"{E548726E-F4E8-459f-BAB8-45551BC071E9}" = DJ_AIO_ProductContext
"{E590FD1C-E8C6-4D2E-8CA9-77B403F7EE01}" = Microsoft Antimalware
"{E9C18EBD-85BE-47D0-AA73-3FEDCC976B04}" = Toolbox
"{EA57EFB9-A257-4DD0-BC6D-0FA5625F3421}" = ArcSoft PhotoImpression 5
"{EF98A02A-1748-4762-9B7D-5ED1600520D5}" = Microsoft Security Essentials
"{F0B2D11F-E4D9-4C17-A195-B8BADEAE9C40}" = VGA USB Camera
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"{F72E2DDC-3DB8-4190-A21D-63883D955FE7}" = PSSWCORE
"{FA8A44D7-3E8A-4034-9C4F-088FA6B72BC4}" = HP Deskjet All-In-One Software 9.0
"{FD8D8B04-BEAD-4A55-AA1D-62D2373E7DEA}" = Status
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AntiVir PersonalEdition Classic" = Avira AntiVir Personal - Free Antivirus
"Business Card Studio_is1" = Business Card Studio 2.0
"BusinessCardsMX3_is1" = BusinessCardsMX 3.95
"Google Chrome" = Google Chrome
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"HP Imaging Device Functions" = HP Imaging Device Functions 9.0
"HP Photosmart Essential" = HP Photosmart Essential 2.01
"HP Solution Center & Imaging Support Tools" = HP Solution Center 9.0
"HPExtendedCapabilities" = HP Customer Participation Program 9.0
"ICQToolbar" = ICQ Toolbar
"Jetico Personal Firewall" = Jetico Personal Firewall 2.0
"LCS SIS Fakturace zdarma - 2008" = LCS SIS Fakturace zdarma - 2008
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Security Essentials" = Microsoft Security Essentials
"MSNIACC" = MSN Connection Center
"MyPlayCity Toolbar" = MyPlayCity Toolbar
"Nabídky Plus_is1" = Nabídky Plus
"Peněžní deník_is1" = Peněžní deník 1.4
"Picasa 3" = Picasa 3
"PrintParade Studio" = PrintParade Studio
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"szn-software-listicka" = Seznam Lištička 2 (Všichni uživatelé tohoto počítače.)
"TomTom HOME" = TomTom HOME 2.7.3.1894
"Watery Desktop 3D_is1" = PUSH Entertainment - Watery Desktop 3D
"Winamp Toolbar for Firefox" = Winamp Toolbar for Firefox
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1326340626-3193023112-599807728-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Adobe ConnectNow" = Adobe ConnectNow
"Adobe ConnectNow Add-in" = Adobe ConnectNow Add-in

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 27.1.2010 14:26:57 | Computer Name = nikolka-PC | Source = WerSvc | ID = 5007
Description =

Error - 27.1.2010 14:52:31 | Computer Name = nikolka-PC | Source = WerSvc | ID = 5007
Description =

Error - 28.1.2010 3:08:02 | Computer Name = nikolka-PC | Source = WerSvc | ID = 5007
Description =

Error - 28.1.2010 9:20:59 | Computer Name = nikolka-PC | Source = WerSvc | ID = 5007
Description =

Error - 28.1.2010 15:14:26 | Computer Name = nikolka-PC | Source = Google Update | ID = 20
Description =

Error - 29.1.2010 2:27:10 | Computer Name = nikolka-PC | Source = WerSvc | ID = 5007
Description =

Error - 29.1.2010 11:41:49 | Computer Name = nikolka-PC | Source = WerSvc | ID = 5007
Description =

Error - 29.1.2010 19:20:58 | Computer Name = nikolka-PC | Source = WerSvc | ID = 5007
Description =

Error - 30.1.2010 5:08:26 | Computer Name = nikolka-PC | Source = WerSvc | ID = 5007
Description =

Error - 31.1.2010 5:59:51 | Computer Name = nikolka-PC | Source = WerSvc | ID = 5007
Description =

[ System Events ]
Error - 3.5.2010 16:02:51 | Computer Name = nikolka-PC | Source = DCOM | ID = 10005
Description =

Error - 3.5.2010 16:02:53 | Computer Name = nikolka-PC | Source = DCOM | ID = 10005
Description =

Error - 3.5.2010 16:02:58 | Computer Name = nikolka-PC | Source = Service Control Manager | ID = 7003
Description =

Error - 3.5.2010 16:02:58 | Computer Name = nikolka-PC | Source = Service Control Manager | ID = 7001
Description =

Error - 3.5.2010 16:02:58 | Computer Name = nikolka-PC | Source = Service Control Manager | ID = 7024
Description =

Error - 3.5.2010 16:02:58 | Computer Name = nikolka-PC | Source = Service Control Manager | ID = 7001
Description =

Error - 3.5.2010 16:02:58 | Computer Name = nikolka-PC | Source = Service Control Manager | ID = 7001
Description =

Error - 3.5.2010 16:02:58 | Computer Name = nikolka-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 3.5.2010 16:04:24 | Computer Name = nikolka-PC | Source = DCOM | ID = 10005
Description =

Error - 3.5.2010 16:05:15 | Computer Name = nikolka-PC | Source = ipnathlp | ID = 30013
Description = Přidělování DHCP bylo automaticky vypnuto u adresy IP 10.1.4.153,
protože tato adresa nepatří do oboru 192.168.0.0/255.255.255.0, ze kterého jsou
přidělovány adresy klientům DHCP. Chcete-li přidělování DHCP u této adresy IP zapnout,
změňte obor tak, aby tuto adresu IP zahrnoval, nebo změňte adresu IP tak, aby patřila
do oboru.
Nahoru
lenička
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 03 kvě 2010 21:23

Re: řešení problému

#5 Příspěvek od lenička »

2010.04.27 19:41:26 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2010.04.27 19:41:26 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2010.04.27 19:41:26 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2010.04.27 19:41:26 | 000,077,312 | ---- | C] () -- C:\Windows\MBR.exe
[2010.04.27 19:41:26 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2010.04.27 10:43:10 | 011,803,830 | ---- | C] () -- C:\Users\nikolka\Documents\vizitky.tif
[2010.04.20 19:56:28 | 000,000,186 | ---- | C] () -- C:\Windows\tasks\{25AFF00E-2A30-45B8-B302-AB85347EEF1E}.job
[2010.04.20 09:10:03 | 000,004,133 | ---- | C] () -- C:\Windows\entrust.ini
[2010.04.15 10:17:38 | 000,022,016 | ---- | C] () -- C:\Users\nikolka\Documents\četné prohlášení.wps
[2009.12.03 09:27:28 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2009.03.28 20:12:48 | 000,000,566 | ---- | C] () -- C:\Windows\System32\SP7302.INI
[2009.01.05 13:54:09 | 000,033,792 | ---- | C] () -- C:\Windows\System32\TALEAN32.DLL
[2009.01.05 13:54:09 | 000,033,280 | ---- | C] () -- C:\Windows\System32\TALUPC32.dll
[2009.01.05 13:54:09 | 000,025,088 | ---- | C] () -- C:\Windows\System32\TALITF32.dll
[2009.01.05 13:54:09 | 000,019,456 | ---- | C] () -- C:\Windows\System32\TALZIP32.dll
[2009.01.05 13:54:08 | 000,041,472 | ---- | C] () -- C:\Windows\System32\TAL12832.dll
[2009.01.05 13:54:08 | 000,034,816 | ---- | C] () -- C:\Windows\System32\TALC9332.dll
[2009.01.05 13:54:08 | 000,034,304 | ---- | C] () -- C:\Windows\System32\TALC3932.DLL
[2009.01.05 13:54:08 | 000,023,552 | ---- | C] () -- C:\Windows\System32\TALCBR32.dll
[2009.01.05 13:54:07 | 000,069,632 | ---- | C] () -- C:\Windows\System32\ODMA32.dll
[2008.08.28 10:21:26 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2008.07.28 22:33:18 | 000,717,296 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2008.07.27 22:21:09 | 000,000,635 | ---- | C] () -- C:\Windows\Rtcw.INI
[2008.02.22 12:28:54 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2008.02.22 12:28:51 | 000,009,867 | ---- | C] () -- C:\Windows\System32\drivers\HOTKEY.sys
[2008.02.22 12:27:17 | 000,910,464 | ---- | C] () -- C:\Windows\System32\igmedkrn.dll
[2008.02.22 12:27:17 | 000,204,800 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1283.dll
[2008.02.11 19:55:18 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1437.dll
[2006.11.02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.08.11 19:52:02 | 000,012,288 | ---- | C] () -- C:\Windows\System32\EvOnlDiag.dll
[2005.10.14 11:56:50 | 000,921,600 | ---- | C] () -- C:\Windows\System32\VorbisEnc.dll
[2005.10.14 11:56:50 | 000,344,064 | ---- | C] () -- C:\Windows\System32\xvid.dll
[2005.10.14 11:56:50 | 000,237,568 | ---- | C] () -- C:\Windows\System32\OggDS.dll
[2005.10.14 11:56:50 | 000,188,416 | ---- | C] () -- C:\Windows\System32\vorbis.dll
[2005.10.14 11:56:50 | 000,155,136 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2005.10.14 11:56:50 | 000,045,056 | ---- | C] () -- C:\Windows\System32\ogg.dll

========== LOP Check ==========

[2010.05.02 16:59:44 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\BitDefender
[2009.08.24 16:07:41 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\com.lightmaker.deagostini.ScrapBook.6222A2764C1024538732969801657FD5CED216BF.1
[2009.02.24 19:57:50 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\DAEMON Tools
[2009.02.24 19:58:43 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\DAEMON Tools Lite
[2009.02.24 19:57:50 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\DAEMON Tools Pro
[2008.08.23 22:09:28 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\ESET
[2010.05.01 23:37:02 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\ICQ
[2008.07.30 16:32:15 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\ICQ Toolbar
[2009.01.17 01:35:19 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\mojosoft
[2008.08.27 19:58:41 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\Opera
[2010.02.15 19:54:09 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\ORIGO AUTOSKLO kalkulátor
[2010.04.21 14:29:26 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\Orneon
[2008.07.25 15:47:30 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\PeerNetworking
[2008.12.18 12:36:38 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\PetShowCraze
[2008.12.18 12:09:21 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\PlayFirst
[2009.01.17 00:38:01 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\Printparade
[2010.03.12 16:45:04 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\Sahmon Games
[2009.01.15 17:09:01 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\Serif
[2008.09.24 13:16:02 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\SoftMaker
[2008.07.28 23:33:09 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\Sports Interactive
[2008.07.27 21:35:44 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\Template
[2008.11.14 23:51:41 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\TomTom
[2008.08.28 20:33:40 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\uTorrent
[2008.08.28 23:56:45 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\Vso
[2008.08.20 22:47:54 | 000,000,000 | ---D | M] -- C:\Users\nikolka\AppData\Roaming\WebCompiler3
[2010.05.02 16:22:18 | 000,032,560 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2010.05.03 11:05:29 | 000,000,426 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{37663F2B-B354-4A1D-B9ED-C8A644B0FB0C}.job
[2010.04.20 19:56:28 | 000,000,186 | ---- | M] () -- C:\Windows\Tasks\{25AFF00E-2A30-45B8-B302-AB85347EEF1E}.job

========== Purity Check ==========



========== Custom Scans ==========


< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2007.12.16 13:41:51 | 001,232,896 | ---- | M] (Microsoft Corporation)
"CollaborationHost" = C:\Windows\system32\p2phost.exe -s -- [2006.11.02 14:34:47 | 000,191,488 | ---- | M] (Microsoft Corporation)
"swg" = "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" -- [2010.02.16 20:27:23 | 000,039,408 | ---- | M] (Google Inc.)
"TomTomHOME.exe" = "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" -s -- [2009.11.13 13:31:12 | 000,247,144 | ---- | M] (TomTom)
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun -- [2008.12.29 12:40:30 | 000,687,560 | ---- | M] (DT Soft Ltd)
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized -- [2010.04.06 02:27:46 | 026,102,056 | R--- | M] (Skype Technologies S.A.)
"WMPNSCFG" = C:\Program Files\Windows Media Player\WMPNSCFG.exe -- [2006.11.02 14:34:59 | 000,201,728 | ---- | M] (Microsoft Corporation)

< c:\windows\*.* /U >


< MD5 for: AGP440.SYS >
[2007.11.04 00:40:05 | 000,056,504 | ---- | M] (Microsoft Corporation) MD5=198636E76971EBC96404547EC0FD5E75 -- C:\Windows\ERDNT\cache\AGP440.sys
[2007.11.04 00:40:05 | 000,056,504 | ---- | M] (Microsoft Corporation) MD5=198636E76971EBC96404547EC0FD5E75 -- C:\Windows\System32\drivers\AGP440.sys
[2007.11.04 00:40:05 | 000,056,504 | ---- | M] (Microsoft Corporation) MD5=198636E76971EBC96404547EC0FD5E75 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_cb7c81c7\AGP440.sys
[2007.11.04 00:40:05 | 000,056,504 | ---- | M] (Microsoft Corporation) MD5=198636E76971EBC96404547EC0FD5E75 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6000.20598_none_b85cfa98dae9b436\AGP440.sys
[2006.11.02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys

< MD5 for: ATAPI.SYS >
[2007.11.04 01:07:49 | 000,021,688 | ---- | M] (Microsoft Corporation) MD5=0B77F93AB73798F97E8E0A0AA4CCBEEF -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_44b6b0d0\atapi.sys
[2007.11.04 01:07:49 | 000,021,688 | ---- | M] (Microsoft Corporation) MD5=0B77F93AB73798F97E8E0A0AA4CCBEEF -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20694_none_db7e36353dc64123\atapi.sys
[2006.11.02 11:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
[2008.01.19 07:06:48 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_7de13c21\atapi.sys
[2008.01.19 07:06:48 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.16632_none_db337a442479c42c\atapi.sys
[2008.01.19 06:33:23 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36AFC7C6F -- C:\Windows\ERDNT\cache\atapi.sys
[2008.01.19 06:33:23 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36AFC7C6F -- C:\Windows\System32\drivers\atapi.sys
[2008.01.19 06:33:23 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36AFC7C6F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_64dfd8ea\atapi.sys
[2008.01.19 06:33:23 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36AFC7C6F -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20757_none_dbac78a93da31a8b\atapi.sys

< MD5 for: CNGAUDIT.DLL >
[2006.11.02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\ERDNT\cache\cngaudit.dll
[2006.11.02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
[2006.11.02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll

< MD5 for: EXPLORER.EXE >
[2008.10.29 08:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\ERDNT\cache\explorer.exe
[2008.10.29 08:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\explorer.exe
[2008.10.29 08:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008.10.29 08:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008.10.30 05:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2007.11.04 01:06:49 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=6D06CD98D954FE87FB2DB8108793B399 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16549_none_4fac29707cae347a\explorer.exe
[2007.11.04 01:06:49 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=BD06F0BF753BC704B653C3A50F89D362 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20668_none_501f261995dcf2cf\explorer.exe
[2008.10.28 04:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2006.11.02 11:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=FD8C53FB002217F6F888BCF6F5D7084D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16386_none_4f7de5167cd15deb\explorer.exe

< MD5 for: HAL.DLL >
[2007.11.03 23:24:02 | 000,160,872 | ---- | M] (Microsoft Corporation) MD5=779D32272A54384807A4424D90293378 -- C:\Windows\System32\hal.dll

< MD5 for: IASTOR.SYS >
[2007.07.12 16:35:02 | 000,305,176 | ---- | M] (Intel Corporation) MD5=2358C53F30CB9DCD1D3843C4E2F299B2 -- C:\Windows\System32\DriverStore\FileRepository\iastor.inf_ec8a8d1b\iaStor.sys
[2007.03.21 12:58:56 | 000,304,920 | ---- | M] (Intel Corporation) MD5=997E8F5939F2D12CD9F2E6B395724C16 -- C:\DRIVER\SATA\INTEL1\iaStor.sys
[2007.03.21 12:58:56 | 000,304,920 | ---- | M] (Intel Corporation) MD5=997E8F5939F2D12CD9F2E6B395724C16 -- C:\Windows\System32\drivers\iaStor.sys
[2007.03.21 12:58:56 | 000,304,920 | ---- | M] (Intel Corporation) MD5=997E8F5939F2D12CD9F2E6B395724C16 -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_3a63e5a6\iaStor.sys

< MD5 for: IASTORV.SYS >
[2006.11.02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\drivers\iaStorV.sys
[2006.11.02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys

< MD5 for: LSASS.EXE >
[2009.06.15 14:51:56 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=203D86EBD6D8E4C8501B222421E81506 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\lsass.exe
[2009.09.10 16:44:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=2D3AC5E7AC01E905F3ABD2D745FE3A9B -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22223_none_a8a80213731ca5a7\lsass.exe
[2009.06.15 14:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\lsass.exe
[2009.02.13 09:26:04 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=59DE082968FDD257FFF0D209B9A5B460 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16820_none_a44eb0105fb4d975\lsass.exe
[2007.11.04 01:08:05 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=5CCBF199F0EC554A4A2EDF28D4460F3B -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.20672_none_a4a4382178f9402d\lsass.exe
[2006.11.02 11:45:21 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=6A0E382E74280E4CC0DF17FE2661D003 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16386_none_a413c8c65fe02762\lsass.exe
[2009.06.15 15:03:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=6F1F23D3599EAE17734451936B7F17C6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\lsass.exe
[2009.06.15 14:57:59 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A911ECAC81F94ADEAFBE8E3F7873EDB0 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\lsass.exe
[2009.02.13 06:58:37 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=AFF8A58280863629CA4FFA9E0B259F1E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21010_none_a4e2f4e978ca9090\lsass.exe
[2009.06.15 14:59:08 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=BA9A67672E025078C77967731BCFC560 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\lsass.exe
[2009.06.15 15:10:12 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=C731B1FE449D4E9CEA358C9D55B69BE9 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\lsass.exe
[2009.09.09 13:09:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=CB7E838C140B4087B2DA323F2D4523C5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22518_none_a6d1618975e9b345\lsass.exe
[2009.09.10 16:47:51 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=D09A5DA84B7C9CA9B02EBCD7FAE41C8D -- C:\Windows\ERDNT\cache\lsass.exe
[2009.09.10 16:47:51 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=D09A5DA84B7C9CA9B02EBCD7FAE41C8D -- C:\Windows\System32\lsass.exe
[2009.09.10 16:47:51 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=D09A5DA84B7C9CA9B02EBCD7FAE41C8D -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21125_none_a4dd285578ce285b\lsass.exe
[2008.01.19 09:33:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18215_none_a644c0145ccecd28\lsass.exe
[2009.02.13 10:20:29 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=F4C62B07E5BF96F1FDCA9DB393ECED22 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22376_none_a68e7da1761c2def\lsass.exe

< MD5 for: NDIS.SYS >
[2006.11.02 11:51:42 | 000,500,840 | ---- | M] (Microsoft Corporation) MD5=227C11E1E7CF6EF8AFB2A238D209760C -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6000.16386_none_a59069cb1f23fc44\ndis.sys
[2007.11.04 00:02:57 | 000,503,480 | ---- | M] (Microsoft Corporation) MD5=6E8DFFACE597629CEF5DF7D69217628F -- C:\Windows\ERDNT\cache\ndis.sys
[2007.11.04 00:02:57 | 000,503,480 | ---- | M] (Microsoft Corporation) MD5=6E8DFFACE597629CEF5DF7D69217628F -- C:\Windows\System32\drivers\ndis.sys
[2007.11.04 00:02:57 | 000,503,480 | ---- | M] (Microsoft Corporation) MD5=6E8DFFACE597629CEF5DF7D69217628F -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6000.20548_none_a64748c0381f5c1f\ndis.sys

< MD5 for: NETLOGON.DLL >
[2006.11.02 11:46:11 | 000,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\Windows\ERDNT\cache\netlogon.dll
[2006.11.02 11:46:11 | 000,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\Windows\System32\netlogon.dll
[2006.11.02 11:46:11 | 000,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6000.16386_none_fb80f5473b0ed783\netlogon.dll

< MD5 for: NVRD32.SYS >
[2007.07.02 17:37:10 | 000,131,616 | ---- | M] (NVIDIA Corporation) MD5=ED399014A8029DE02BA5AE01DA8CC9EE -- C:\Windows\System32\drivers\nvrd32.sys
[2007.07.02 17:37:10 | 000,131,616 | ---- | M] (NVIDIA Corporation) MD5=ED399014A8029DE02BA5AE01DA8CC9EE -- C:\Windows\System32\DriverStore\FileRepository\nvrd32.inf_bbf77119\nvrd32.sys

< MD5 for: NVSTOR.SYS >
[2006.11.02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\drivers\nvstor.sys
[2006.11.02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys

< MD5 for: NVSTOR32.SYS >
[2007.07.02 17:37:08 | 000,110,112 | ---- | M] (NVIDIA Corporation) MD5=703E3A7093B0FAC0EEBADBB8E931ECAF -- C:\Windows\System32\drivers\nvstor32.sys
[2007.07.02 17:37:08 | 000,110,112 | ---- | M] (NVIDIA Corporation) MD5=703E3A7093B0FAC0EEBADBB8E931ECAF -- C:\Windows\System32\DriverStore\FileRepository\nvrd32.inf_bbf77119\nvstor32.sys

< MD5 for: SCECLI.DLL >
[2006.11.02 11:46:12 | 000,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A08BFF61 -- C:\Windows\ERDNT\cache\scecli.dll
[2006.11.02 11:46:12 | 000,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A08BFF61 -- C:\Windows\System32\scecli.dll
[2006.11.02 11:46:12 | 000,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A08BFF61 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6000.16386_none_35d7205fdc305e3e\scecli.dll

< MD5 for: SMSS.EXE >
[2006.11.02 11:45:45 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=CAA75757BB3695478C23CB0624342A61 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6000.16386_none_aa03e6011c468ee6\smss.exe
[2007.11.04 00:29:35 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=E13854BC46CC634FCD4836FAE2752367 -- C:\Windows\System32\smss.exe
[2007.11.04 00:29:35 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=E13854BC46CC634FCD4836FAE2752367 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6000.20597_none_aa83b510356b611f\smss.exe

< MD5 for: SVCHOST.EXE >
[2006.11.02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=10DA15933D582D2FEDCF705EFE394B09 -- C:\Windows\ERDNT\cache\svchost.exe
[2006.11.02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=10DA15933D582D2FEDCF705EFE394B09 -- C:\Windows\System32\svchost.exe
[2006.11.02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=10DA15933D582D2FEDCF705EFE394B09 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6000.16386_none_b38497a50862ad11\svchost.exe

< MD5 for: USERINIT.EXE >
[2006.11.02 11:45:50 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=22027835939F86C3E47AD8E3FBDE3D11 -- C:\Windows\ERDNT\cache\userinit.exe
[2006.11.02 11:45:50 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=22027835939F86C3E47AD8E3FBDE3D11 -- C:\Windows\System32\userinit.exe
[2006.11.02 11:45:50 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=22027835939F86C3E47AD8E3FBDE3D11 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6000.16386_none_d9f1f819d4c4e737\userinit.exe

< MD5 for: VIAMRAID.SYS >
[2006.11.08 15:23:52 | 000,102,912 | ---- | M] (VIA Technologies inc,.ltd) MD5=7DC3E1DC6E4F8BE381C31BFEA578412A -- C:\Windows\System32\drivers\viamraid.sys
[2006.11.08 15:23:52 | 000,102,912 | ---- | M] (VIA Technologies inc,.ltd) MD5=7DC3E1DC6E4F8BE381C31BFEA578412A -- C:\Windows\System32\DriverStore\FileRepository\viamraid.inf_74a36694\viamraid.sys

< MD5 for: WINLOGON.EXE >
[2006.11.02 11:45:57 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=9F75392B9128A91ABAFB044EA350BAAD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6000.16386_none_6d8c3f1ad8066b21\winlogon.exe
[2007.11.04 00:30:30 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=A3FEA6ED9FD3CF07219A632E4A716226 -- C:\Windows\ERDNT\cache\winlogon.exe
[2007.11.04 00:30:30 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=A3FEA6ED9FD3CF07219A632E4A716226 -- C:\Windows\System32\winlogon.exe
[2007.11.04 00:30:30 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=A3FEA6ED9FD3CF07219A632E4A716226 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6000.20593_none_6e080d01f12ed7fe\winlogon.exe

< MD5 for: WS2_32.DLL >
[2006.11.02 11:46:14 | 000,178,688 | ---- | M] (Microsoft Corporation) MD5=D99A071C1018BB3D4ABAAD4B62048AC2 -- C:\Windows\ERDNT\cache\ws2_32.dll
[2006.11.02 11:46:14 | 000,178,688 | ---- | M] (Microsoft Corporation) MD5=D99A071C1018BB3D4ABAAD4B62048AC2 -- C:\Windows\System32\ws2_32.dll
[2006.11.02 11:46:14 | 000,178,688 | ---- | M] (Microsoft Corporation) MD5=D99A071C1018BB3D4ABAAD4B62048AC2 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6000.16386_none_f080eec6d16af4f0\ws2_32.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >

< >

========== Alternate Data Streams ==========

@Alternate Data Stream - 151 bytes -> C:\ProgramData\TEMP:798A3728
@Alternate Data Stream - 140 bytes -> C:\ProgramData\TEMP:708AB985
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:997E6AF4
@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:E54FA796
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:561568A4
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:DFC5A2B2
@Alternate Data Stream - 115 bytes -> C:\ProgramData\TEMP:981349EA
@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:72E546C1
@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:102394C6
@Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:C31F31E6
< End of report >
Nahoru
lenička
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 03 kvě 2010 21:23

Re: řešení problému

#6 Příspěvek od lenička »

Budu moc vděčná za pomoc :roll:
Nahoru
lenička
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 03 kvě 2010 21:23

Re: řešení problému

#7 Příspěvek od lenička »

Logfile of random's system information tool 1.06 (written by random/random)
Run by nikolka at 2010-05-03 23:49:56
Microsoft® Windows Vista™ Home Basic
System drive C: has 23 GB (24%) free of 94 GB
Total RAM: 2038 MB (73% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:50:08, on 3.5.2010
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.17037)
Boot mode: Safe mode with network support

Running processes:
C:\Windows\Explorer.EXE
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\nikolka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\B3I7CVBB\RSIT[1].exe
C:\Program Files\trend micro\nikolka.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: compliance 54328 Toolbar - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - C:\Program Files\MyPlayCity\tbMyP1.dll
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: compliance 54328 Toolbar - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - C:\Program Files\MyPlayCity\tbMyP1.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\listicka.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: &S-Rank - {B71B15CF-3093-459C-B764-AEB2486F2273} - C:\Program Files\Seznam\Postak\SRank.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: compliance 54328 Toolbar - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - C:\Program Files\MyPlayCity\tbMyP1.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [HotkeyApp] "C:\Program Files\Launch Manager\HotkeyApp.exe"
O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
O4 - HKLM\..\Run: [recinfo800] c:\RecInfo\RecInfo.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [PAC7302_Monitor] C:\Windows\PixArt\PAC7302\Monitor.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [JeticoPFStartup] "C:\Program Files\Jetico\Jetico Personal Firewall\jpf.exe"
O4 - HKLM\..\Run: [MSSE] "C:\Program Files\Microsoft Security Essentials\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [CtrlVol] C:\Program Files\Launch Manager\CtrlVol.exe
O4 - HKLM\..\Run: [LaunchAp] C:\Program Files\Launch Manager\LaunchAp.exe
O4 - HKLM\..\Run: [Wbutton] C:\Program Files\Launch Manager\WButton.exe
O4 - HKLM\..\RunOnce: [wextract_cleanup0] rundll32.exe C:\Windows\system32\advpack.dll,DelNodeRunDLL32 "C:\Users\nikolka\AppData\Local\Temp\IXP000.TMP\"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [CollaborationHost] C:\Windows\system32\p2phost.exe -s
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" -s
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra button: Kniha klipů HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: HP Chytrý výběr - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... oader5.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos-be ... canner.cab
O16 - DPF: {BAE1D8DF-0B35-47E3-A1E7-EEB3FF2ECD19} (CPlayFirstddfotgControl Object) - http://icq.oberon-media.com//online/onl ... 0.0.33.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{535A070F-BA9A-45CC-93EC-541DCAD3DC67}: NameServer = 10.1.0.3,10.1.0.20
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Služba Google Update (gupdate1ca899792d24184) (gupdate1ca899792d24184) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Jetico Personal Firewall server - Unknown owner - C:\Program Files\Jetico\Jetico Personal Firewall\jpfsrv.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Fujitsu Siemens Computers Diagnostic Testhandler (TestHandler) - Fujitsu Siemens Computers - C:\firststeps\OnlineDiagnostic\TestManager\TestHandler.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe

--
End of file - 10488 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\User_Feed_Synchronization-{37663F2B-B354-4A1D-B9ED-C8A644B0FB0C}.job
C:\Windows\tasks\{25AFF00E-2A30-45B8-B302-AB85347EEF1E}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{053F9267-DC04-4294-A72C-58F732D338C0}]
HP Print Clips - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll [2007-03-02 177768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}]
compliance 54328 Toolbar - C:\Program Files\MyPlayCity\tbMyP1.dll [2010-04-01 2349080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-02-16 279664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll [2010-02-16 812528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Lištička - C:\Program Files\Seznam.cz\listicka.dll [2010-01-18 1414808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetIM Toolbar Helper - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-05-20 1258808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{B71B15CF-3093-459C-B764-AEB2486F2273} - &S-Rank - C:\Program Files\Seznam\Postak\SRank.dll [2007-05-16 269632]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-05-20 1258808]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-02-16 279664]
{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - compliance 54328 Toolbar - C:\Program Files\MyPlayCity\tbMyP1.dll [2010-04-01 2349080]
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2010-01-03 1019128]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2007-11-03 1006264]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-07-06 4669440]
"HotkeyApp"=C:\Program Files\Launch Manager\HotkeyApp.exe [2007-07-27 192512]
"SynTPStart"=C:\Program Files\Synaptics\SynTP\SynTPStart.exe [2007-08-17 102400]
"recinfo800"=c:\RecInfo\RecInfo.exe [2007-06-06 2768896]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-02-26 153136]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2008-11-26 81000]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-03-11 49152]
"avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]
"PAC7302_Monitor"=C:\Windows\PixArt\PAC7302\Monitor.exe [2006-11-03 319488]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2008-02-11 141848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2008-02-11 166424]
"Persistence"=C:\Windows\system32\igfxpers.exe [2008-02-11 133656]
"JeticoPFStartup"=C:\Program Files\Jetico\Jetico Personal Firewall\jpf.exe []
"MSSE"=C:\Program Files\Microsoft Security Essentials\msseces.exe [2010-02-21 1093208]
"CtrlVol"=C:\Program Files\Launch Manager\CtrlVol.exe []
"LaunchAp"=C:\Program Files\Launch Manager\LaunchAp.exe []
"Wbutton"=C:\Program Files\Launch Manager\WButton.exe []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"wextract_cleanup0"=C:\Windows\system32\advpack.dll [2010-03-09 124928]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2007-12-16 1232896]
"CollaborationHost"=C:\Windows\system32\p2phost.exe [2006-11-02 191488]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-02-16 39408]
"TomTomHOME.exe"=C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2009-11-13 247144]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2008-12-29 687560]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2010-04-06 26102056]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2006-11-02 201728]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

C:\Users\nikolka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OpenOffice.org 2.4.lnk - C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2008-02-11 204800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideFastUserSwitching"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2010-05-03 23:49:56 ----D---- C:\rsit
2010-05-03 22:13:22 ----A---- C:\boot.ini
2010-05-03 22:04:24 ----D---- C:\Windows\SoftwareDistribution
2010-05-03 15:49:24 ----D---- C:\ProgramData\ICQ
2010-05-03 10:46:52 ----A---- C:\Windows\ntbtlog.txt
2010-05-03 10:32:31 ----D---- C:\Users\nikolka\AppData\Roaming\Comodo
2010-05-03 10:32:31 ----D---- C:\Program Files\Comodo
2010-05-03 10:31:24 ----D---- C:\ProgramData\Comodo Downloader
2010-05-02 21:30:34 ----D---- C:\Program Files\Alwil Software(0)
2010-05-02 16:56:34 ----D---- C:\Users\nikolka\AppData\Roaming\BitDefender
2010-05-02 16:47:20 ----D---- C:\Program Files\Microsoft Security Essentials
2010-04-30 13:17:38 ----D---- C:\Windows\pss
2010-04-29 10:08:26 ----D---- C:\Program Files\trend micro
2010-04-28 21:26:08 ----D---- C:\ProgramData\Alwil Software
2010-04-27 22:30:58 ----SHD---- C:\$RECYCLE.BIN
2010-04-27 19:41:26 ----A---- C:\Windows\PEV.exe
2010-04-27 19:41:26 ----A---- C:\Windows\MBR.exe
2010-04-27 19:41:09 ----D---- C:\Windows\ERDNT
2010-04-21 14:29:26 ----D---- C:\Users\nikolka\AppData\Roaming\Orneon
2010-04-20 09:10:03 ----A---- C:\Windows\entrust.ini
2010-04-20 09:08:50 ----A---- C:\Windows\erase_SR.exe
2010-04-18 12:42:45 ----A---- C:\Windows\system32\FODBCLib.dll
2010-04-18 12:42:29 ----D---- C:\ProgramData\Microsoft NT Ident
2010-04-14 09:10:12 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-04-14 09:10:12 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-04-14 09:10:05 ----A---- C:\Windows\system32\vbscript.dll
2010-04-14 09:09:52 ----A---- C:\Windows\system32\tcpipcfg.dll
2010-04-14 09:09:52 ----A---- C:\Windows\system32\netiougc.exe
2010-04-14 09:09:52 ----A---- C:\Windows\system32\iphlpsvc.dll
2010-04-14 09:09:52 ----A---- C:\Windows\system32\IKEEXT.DLL
2010-04-14 09:09:52 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2010-04-14 09:09:52 ----A---- C:\Windows\system32\BFE.DLL
2010-04-14 09:07:51 ----A---- C:\Windows\system32\cabview.dll
2010-04-14 09:07:08 ----A---- C:\Windows\system32\wintrust.dll

======List of files/folders modified in the last 1 months======

2010-05-03 23:49:12 ----D---- C:\Windows\Temp
2010-05-03 23:18:38 ----D---- C:\Windows\system32\inetsrv
2010-05-03 23:08:08 ----D---- C:\Windows
2010-05-03 22:58:46 ----D---- C:\Windows\system32\drivers
2010-05-03 22:09:41 ----D---- C:\Windows\System32
2010-05-03 22:09:41 ----D---- C:\Windows\inf
2010-05-03 22:09:41 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-05-03 18:32:34 ----A---- C:\Windows\NeroDigital.ini
2010-05-03 18:29:35 ----D---- C:\Windows\system32\config
2010-05-03 18:28:58 ----D---- C:\Windows\system32\zh-TW
2010-05-03 18:28:58 ----D---- C:\Windows\system32\zh-HK
2010-05-03 18:28:58 ----D---- C:\Windows\system32\zh-CN
2010-05-03 18:28:58 ----D---- C:\Windows\system32\wbem
2010-05-03 18:28:58 ----D---- C:\Windows\system32\uk-UA
2010-05-03 18:28:58 ----D---- C:\Windows\system32\tr-TR
2010-05-03 18:28:58 ----D---- C:\Windows\system32\th-TH
2010-05-03 18:28:58 ----D---- C:\Windows\system32\sysprep
2010-05-03 18:28:58 ----D---- C:\Windows\system32\sv-SE
2010-05-03 18:28:58 ----D---- C:\Windows\system32\sr-Latn-CS
2010-05-03 18:28:58 ----D---- C:\Windows\system32\SLUI
2010-05-03 18:28:58 ----D---- C:\Windows\system32\sl-SI
2010-05-03 18:28:58 ----D---- C:\Windows\system32\sk-SK
2010-05-03 18:28:58 ----D---- C:\Windows\system32\setup
2010-05-03 18:28:58 ----D---- C:\Windows\system32\ru-RU
2010-05-03 18:28:58 ----D---- C:\Windows\system32\ro-RO
2010-05-03 18:28:58 ----D---- C:\Windows\system32\ras
2010-05-03 18:28:58 ----D---- C:\Windows\system32\pt-PT
2010-05-03 18:28:58 ----D---- C:\Windows\system32\pt-BR
2010-05-03 18:28:58 ----D---- C:\Windows\system32\pl-PL
2010-05-03 18:28:58 ----D---- C:\Windows\system32\oobe
2010-05-03 18:28:58 ----D---- C:\Windows\system32\nl-NL
2010-05-03 18:28:58 ----D---- C:\Windows\system32\nb-NO
2010-05-03 18:28:58 ----D---- C:\Windows\system32\migwiz
2010-05-03 18:28:58 ----D---- C:\Windows\system32\migration
2010-05-03 18:28:58 ----D---- C:\Windows\system32\lv-LV
2010-05-03 18:28:58 ----D---- C:\Windows\system32\lt-LT
2010-05-03 18:28:58 ----D---- C:\Windows\system32\ko-KR
2010-05-03 18:28:58 ----D---- C:\Windows\system32\ja-JP
2010-05-03 18:28:58 ----D---- C:\Windows\system32\it-IT
2010-05-03 18:28:58 ----D---- C:\Windows\system
2010-05-03 18:28:52 ----D---- C:\Windows\system32\icsxml
2010-05-03 18:28:52 ----D---- C:\Windows\system32\hu-HU
2010-05-03 18:28:52 ----D---- C:\Windows\system32\hr-HR
2010-05-03 18:28:52 ----D---- C:\Windows\system32\he-IL
2010-05-03 18:28:52 ----D---- C:\Windows\system32\fr-FR
2010-05-03 18:28:52 ----D---- C:\Windows\system32\fi-FI
2010-05-03 18:28:52 ----D---- C:\Windows\system32\et-EE
2010-05-03 18:28:52 ----D---- C:\Windows\system32\es-ES
2010-05-03 18:28:52 ----D---- C:\Windows\system32\en-US
2010-05-03 18:28:52 ----D---- C:\Windows\system32\el-GR
2010-05-03 18:28:52 ----D---- C:\Windows\system32\de-DE
2010-05-03 18:28:49 ----D---- C:\Windows\system32\da-DK
2010-05-03 18:28:49 ----D---- C:\Windows\system32\cs-CZ
2010-05-03 18:28:49 ----D---- C:\Windows\system32\cs
2010-05-03 18:28:43 ----RSD---- C:\Windows\Fonts
2010-05-03 18:28:43 ----D---- C:\Windows\system32\com
2010-05-03 18:28:43 ----D---- C:\Windows\system32\Boot
2010-05-03 18:28:43 ----D---- C:\Windows\system32\bg-BG
2010-05-03 18:28:43 ----D---- C:\Windows\system32\ar-SA
2010-05-03 18:28:43 ----D---- C:\Windows\system32\AdvancedInstallers
2010-05-03 18:28:43 ----D---- C:\Windows\servicing
2010-05-03 18:28:43 ----D---- C:\Windows\MSAgent
2010-05-03 18:28:43 ----D---- C:\Windows\IME
2010-05-03 18:28:43 ----D---- C:\Program Files\Windows Sidebar
2010-05-03 18:28:43 ----D---- C:\Program Files\Windows Photo Gallery
2010-05-03 18:28:43 ----D---- C:\Program Files\Windows Media Player
2010-05-03 18:28:43 ----D---- C:\Program Files\Windows Mail
2010-05-03 18:28:43 ----D---- C:\Program Files\Windows Defender
2010-05-03 18:28:43 ----D---- C:\Program Files\Windows Collaboration
2010-05-03 18:28:43 ----D---- C:\Program Files\Windows Calendar
2010-05-03 18:28:43 ----D---- C:\Program Files\MSN
2010-05-03 18:28:43 ----D---- C:\Program Files\Movie Maker
2010-05-03 18:28:43 ----D---- C:\Program Files\Internet Explorer
2010-05-03 18:28:43 ----D---- C:\Program Files\Common Files\Services
2010-05-03 18:28:01 ----D---- C:\Windows\Tasks
2010-05-03 18:28:00 ----D---- C:\Windows\system32\spool
2010-05-03 18:28:00 ----D---- C:\Windows\system32\RTCOM
2010-05-03 18:28:00 ----D---- C:\Windows\system32\Oem
2010-05-03 18:28:00 ----D---- C:\Windows\system32\Msdtc
2010-05-03 18:27:35 ----D---- C:\Windows\system32\CodeIntegrity
2010-05-03 18:27:32 ----D---- C:\Program Files\Launch Manager
2010-05-03 18:25:53 ----D---- C:\Program Files\Google
2010-05-03 18:25:51 ----D---- C:\Windows\registration
2010-05-03 18:25:45 ----D---- C:\Program Files\Common Files\System
2010-05-03 18:09:50 ----D---- C:\Program Files\PUSH Entertainment
2010-05-03 18:08:42 ----D---- C:\Program Files\Alwil Software
2010-05-03 17:29:14 ----RD---- C:\Program Files
2010-05-03 16:10:43 ----RSD---- C:\Windows\assembly
2010-05-03 16:07:56 ----D---- C:\Windows\AppPatch
2010-05-03 15:49:24 ----D---- C:\ProgramData
2010-05-03 15:02:23 ----D---- C:\Windows\tracing
2010-05-03 14:47:35 ----D---- C:\Windows\system32\catroot
2010-05-03 14:44:31 ----D---- C:\Users\nikolka\AppData\Roaming\OpenOffice.org2
2010-05-03 10:54:26 ----D---- C:\Windows\Debug
2010-05-03 09:43:43 ----D---- C:\Windows\Minidump
2010-05-03 08:50:31 ----D---- C:\Program Files\Common Files
2010-05-03 08:45:15 ----D---- C:\Windows\system32\catroot2
2010-05-03 08:31:30 ----SHD---- C:\System Volume Information
2010-05-02 22:02:33 ----AD---- C:\ProgramData\TEMP
2010-05-02 17:08:56 ----D---- C:\Windows\system32\WDI
2010-05-02 17:02:16 ----SHD---- C:\Windows\Installer
2010-05-02 16:55:40 ----D---- C:\Windows\winsxs
2010-05-02 16:47:33 ----SD---- C:\ProgramData\Microsoft
2010-05-02 16:14:09 ----D---- C:\Users\nikolka\AppData\Roaming\Skype
2010-05-02 10:10:03 ----D---- C:\Windows\Prefetch
2010-05-01 23:37:02 ----D---- C:\Users\nikolka\AppData\Roaming\ICQ
2010-04-30 23:33:17 ----D---- C:\Program Files\Microsoft Silverlight
2010-04-30 23:25:51 ----D---- C:\Program Files\MyPlayCity.com
2010-04-30 15:09:47 ----D---- C:\ProgramData\ESET
2010-04-30 13:24:08 ----D---- C:\Windows\system32\Tasks
2010-04-28 15:29:32 ----D---- C:\Users\nikolka\AppData\Roaming\skypePM
2010-04-27 22:49:38 ----D---- C:\Program Files\ICQ6Toolbar
2010-04-27 22:48:51 ----D---- C:\ProgramData\HPSSUPPLY
2010-04-27 22:16:37 ----HD---- C:\Program Files\InstallShield Installation Information
2010-04-27 20:00:00 ----A---- C:\Windows\system.ini
2010-04-27 19:56:53 ----D---- C:\Boot
2010-04-27 19:54:36 ----SD---- C:\Windows\Downloaded Program Files
2010-04-20 09:19:26 ----D---- C:\ProgramData\SweetIM
2010-04-20 09:18:52 ----D---- C:\Program Files\SweetIM
2010-04-20 09:06:09 ----D---- C:\Program Files\Sweet Games
2010-04-06 19:52:54 ----A---- C:\Windows\system32\mrt.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2008-11-26 23152]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2008-11-26 50864]
R1 bc_hash_f;BC_HASH_Filter; C:\Windows\system32\drivers\bc_hash_f.sys [2009-12-28 15040]
R1 bc_ip_f;BC_IP_Filter; C:\Windows\system32\drivers\bc_ip_f.sys [2009-12-28 35648]
R1 bc_pat_f;BC_PAT_Filter; C:\Windows\system32\drivers\bc_pat_f.sys [2009-12-28 15040]
R1 bc_prt_f;BC_Protocol_Filter; C:\Windows\system32\drivers\bc_prt_f.sys [2009-12-28 19008]
R1 bc_tdi_f;BC_TDI_Filter; C:\Windows\system32\drivers\bc_tdi_f.sys [2009-12-28 23616]
R1 bcftdi;BCFTDI; C:\Windows\system32\drivers\bcftdi.sys [2009-12-28 54336]
R3 Afc;PPdus ASPI Shell; C:\Windows\system32\drivers\Afc.sys [2005-02-23 11776]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2007-06-18 737280]
R3 BcfilterMP;BcfilterMP; C:\Windows\system32\DRIVERS\bcfilter.sys [2009-12-28 25664]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-08-03 91648]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-08-17 190512]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2007-11-04 11264]
S1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2008-11-26 111184]
S1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys [2009-05-28 11608]
S1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2009-05-28 75096]
S1 Hotkey;Hotkey; C:\Windows\system32\drivers\Hotkey.sys [2003-04-28 9867]
S1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2009-12-02 149040]
S1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2007-03-01 28352]
S2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2008-11-26 20560]
S2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2008-11-26 51792]
S2 Ethpdrv;Ethernet Packet Driver; C:\Windows\system32\DRIVERS\ethpdrv.sys [2007-08-01 16376]
S2 RMCAST;Ovladač protokolu RMCAST (Pgm); C:\Windows\system32\DRIVERS\RMCAST.sys [2008-05-10 113664]
S3 aen6j8v1;aen6j8v1; C:\Windows\system32\drivers\aen6j8v1.sys []
S3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys [2009-05-28 52056]
S3 Bcfilter;Jetico Personal Firewall Network Monitor; C:\Windows\system32\DRIVERS\bcfilter.sys [2009-12-28 25664]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\DRIVERS\BthEnum.sys [2008-04-29 19456]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2006-11-02 92160]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2008-04-29 220160]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2008-04-29 29184]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys []
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys []
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys []
S3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2007-11-04 14208]
S3 Dot4;Ovladač MS IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4.sys [2006-11-02 131584]
S3 Dot4Print;Ovladač třídy tiskárny standardu IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2006-11-02 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2006-11-02 36864]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2006-11-02 5632]
S3 dtscsi;dtscsi; C:\Windows\System32\Drivers\dtscsi.sys []
S3 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys []
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2008-02-11 2302976]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-07-18 1841312]
S3 KMWDFILTER;HIDUASDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys [2008-10-09 17408]
S3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2009-12-02 42368]
S3 MQAC;@mqutil.dll,-6101; C:\Windows\system32\drivers\mqac.sys [2009-06-17 126464]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2006-11-02 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2006-11-02 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2006-11-02 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2006-11-02 6016]
S3 PAC7302;PAC7302 VGA USB Camera; C:\Windows\system32\DRIVERS\PAC7302.SYS [2007-06-14 457856]
S3 Pcouffin;Low level access layer for CD devices; C:\Windows\System32\Drivers\Pcouffin.sys []
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2006-11-02 49664]
S3 se59bus;Sony Ericsson Device 089 driver (WDM); C:\Windows\system32\DRIVERS\se59bus.sys [2006-09-05 61536]
S3 se59mdfl;Sony Ericsson Device 089 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\se59mdfl.sys [2006-09-05 9360]
S3 se59mdm;Sony Ericsson Device 089 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\se59mdm.sys [2006-09-05 97088]
S3 se59mgmt;Sony Ericsson Device 089 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\se59mgmt.sys [2006-09-05 88624]
S3 tap0901;TAP-Win32 Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2009-10-14 32000]
S3 usbaudio;Ovladač zvuků USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2006-11-02 71552]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2006-11-02 35328]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2006-11-02 39936]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2007-11-04 82688]
S4 JRAID;JRAID; C:\Windows\system32\drivers\jraid.sys [2007-06-13 48256]
S4 nvrd32;NVIDIA nForce RAID Driver; C:\Windows\system32\drivers\nvrd32.sys [2007-07-02 131616]
S4 nvstor32;nvstor32; C:\Windows\system32\drivers\nvstor32.sys [2007-07-02 110112]
S4 viamraid;viamraid; C:\Windows\system32\drivers\viamraid.sys [2006-11-08 102912]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Essentials\MsMpEng.exe [2009-12-09 17904]
S2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-15 151297]
S2 AntiVirScheduler;Avira AntiVir Personal - Free Antivirus Scheduler; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-15 68865]
S2 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2008-11-26 254040]
S2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2006-11-02 22016]
S2 CISVC;@%systemroot%\system32\CISVC.EXE,-1; C:\Windows\system32\CISVC.EXE [2006-11-02 11264]
S2 gupdate1ca899792d24184;Služba Google Update (gupdate1ca899792d24184); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-12-30 133104]
S2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2006-11-02 22016]
S2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2010-01-03 246520]
S2 IISADMIN;@%windir%\system32\inetsrv\iisres.dll,-30007; C:\Windows\system32\inetsrv\inetinfo.exe [2007-10-11 13824]
S2 Jetico Personal Firewall server;Jetico Personal Firewall server; C:\Program Files\Jetico\Jetico Personal Firewall\jpfsrv.exe []
S2 LPDSVC;@%systemroot%\system32\lpdsvc.dll,-500; C:\Windows\System32\svchost.exe [2006-11-02 22016]
S2 MSMQ;@mqutil.dll,-6102; C:\Windows\system32\mqsvc.exe [2009-06-17 8704]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2006-11-02 22016]
S2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-06-20 132096]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-06-20 132096]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-06-20 132096]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2006-11-02 22016]
S2 simptcp;@%SystemRoot%\system32\simptcp.dll,-200; C:\Windows\System32\tcpsvcs.exe [2009-08-14 9728]
S2 SNMP;@%SystemRoot%\system32\snmp.exe,-3; C:\Windows\System32\snmp.exe [2006-11-02 47104]
S2 TestHandler;Fujitsu Siemens Computers Diagnostic Testhandler; C:\firststeps\OnlineDiagnostic\TestManager\TestHandler.exe [2006-12-08 204800]
S2 TlntSvr;telnet; C:\Windows\System32\tlntsvr.exe [2006-11-02 75776]
S2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2009-11-13 92008]
S2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2006-11-02 22016]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2008-11-26 352920]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-02-16 182768]
S3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2006-11-02 22016]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-02-26 267824]
S3 NtmsSvc;@%SystemRoot%\system32\ntmssvc.dll,-2; C:\Windows\system32\svchost.exe [2006-11-02 22016]
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2006-11-02 22016]
S3 WisLMSvc;WisLMSvc; C:\Program Files\Launch Manager\WisLMSvc.exe [2006-11-18 118784]

-----------------EOF-----------------
Nahoru
lenička
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 03 kvě 2010 21:23

Re: řešení problému

#8 Příspěvek od lenička »

Prosím o kontrolu jde mi jen nouzový režim a nespustím to normálně.děkuji moc
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119512
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: řešení problému

#9 Příspěvek od Rudy »

Nevidím nic nebezpečného. Zkuste obnovu systému k datu, kdy korektně fungoval.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
lenička
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 03 kvě 2010 21:23

Re: řešení problému

#10 Příspěvek od lenička »

Můžu radu jak se to dělá? obnova systemu k datu? mne tostale nejde a hlasí mi to selhání-možnosti zabezpečení.Děkuji za radu
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119512
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: řešení problému

#11 Příspěvek od Rudy »

Ve vistě to přesně nevím. V XP je to start>všechny programy>příslušenství>systémov é nástroje>obnovení systému. Ve Vistě to bude podobně. Příp. použijte nápovědu systému.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
lenička
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 03 kvě 2010 21:23

Re: řešení problému

#12 Příspěvek od lenička »

to jsem našla ale otevře se mi okno s nápisem na systémovém disku počítače nebyli vytvořeny žádné body obnovení.chceteli vytvořit bod obnovení zvolte nástroj ochrana systému a dál mi to nepustí :( už jsem z toho neštastná
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119512
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: řešení problému

#13 Příspěvek od Rudy »

Obnova systému je buď vypnuta, nebo body obnovy byly smazány. Proveďte pro jistotu ještě úplný sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte. Bude li sken čistý, nezbude, než oprava z instal. CD.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
lenička
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 03 kvě 2010 21:23

Re: řešení problému

#14 Příspěvek od lenička »

Scan Results Scan date: 2010-05-04 21:42:10.289000
Total problems found: 842

--------------------------------------------------------------------------------

System related errors
Errors affecting all users on this computer.

--------------------------------------------------------------------------------

Scan subsection: Application paths
Entries found: 13
Entries:
Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\jpf.exe
Value name:
Value: C:\Program Files\Jetico\Jetico Personal Firewall\jpf.exe
Reason: The default value in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/App Paths/jpf.exe contains an invalid path C:/Program Files/Jetico/Jetico Personal Firewall/jpf.exe

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\WBINST.EXE
Value name:
Value: c:\mzda2008\WBINST.EXE
Reason: The default value in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/App Paths/WBINST.EXE contains an invalid path c:/mzda2008/WBINST.EXE

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\WBSERVER.EXE
Value name:
Value: c:\mzda2008\WBSERVER.EXE
Reason: The default value in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/App Paths/WBSERVER.EXE contains an invalid path c:/mzda2008/WBSERVER.EXE

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\chrome.exe
Value name:
Value: C:\Program Files\Google\Chrome\Application\chrome.exe
Reason: The default value in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/App Paths/chrome.exe contains an invalid path C:/Program Files/Google/Chrome/Application/chrome.exe

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\setup.exe
Value name:
Value: C:\Program Files\VGA USB Camera\Setup.exe
Reason: The default value in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/App Paths/setup.exe contains an invalid path C:/Program Files/VGA USB Camera/Setup.exe

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\BERLE.EXE
Value name:
Value: c:\mzda2008\BERLE.EXE
Reason: The default value in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/App Paths/BERLE.EXE contains an invalid path c:/mzda2008/BERLE.EXE

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\combofix.exe
Value name:
Value: C:\Users\nikolka\Desktop\ComboFix.exe
Reason: The default value in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/App Paths/combofix.exe contains an invalid path C:/Users/nikolka/Desktop/ComboFix.exe

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\WBADMIN.EXE
Value name:
Value: c:\mzda2008\WBADMIN.EXE
Reason: The default value in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/App Paths/WBADMIN.EXE contains an invalid path c:/mzda2008/WBADMIN.EXE

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\WB602.EXE
Value name:
Value: c:\mzda2008\WB602.EXE
Reason: The default value in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/App Paths/WB602.EXE contains an invalid path c:/mzda2008/WB602.EXE

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\WBR602.EXE
Value name:
Value: c:\mzda2008\WBR602.EXE
Reason: The default value in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/App Paths/WBR602.EXE contains an invalid path c:/mzda2008/WBR602.EXE

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\ZALOHA.EXE
Value name:
Value: c:\mzda2008\ZALOHA.EXE
Reason: The default value in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/App Paths/ZALOHA.EXE contains an invalid path c:/mzda2008/ZALOHA.EXE

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\hpqSSupply.exe
Value name:
Value:
Reason: The default value in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/App Paths/hpqSSupply.exe contains an invalid path

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\WBMAILER.EXE
Value name:
Value: c:\mzda2008\WBMAILER.EXE
Reason: The default value in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/App Paths/WBMAILER.EXE contains an invalid path c:/mzda2008/WBMAILER.EXE

--------------------------------------------------------------------------------


--------------------------------------------------------------------------------

Scan subsection: System software settings
Entries found: 21
Entries:
Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{b05566ac-fe9c-4368-be01-7a4cbb6cba13}
Value name: HelpTopic
Value: C:\Windows\Help\AuthFW.chm
Reason: The value HelpTopic in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{b05566ac-fe9c-4368-be01-7a4cbb6cba13} contains an invalid path C:/Windows/Help/AuthFW.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{b05566ac-fe9c-4368-be01-7a4cbb6cba13}
Value name: LinkedHelpTopics
Value: C:\Windows\Help\AuthFW.chm
Reason: The value LinkedHelpTopics in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{b05566ac-fe9c-4368-be01-7a4cbb6cba13} contains an invalid path C:/Windows/Help/AuthFW.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{b05566ac-fe9c-4368-be02-7a4cbb7cbe11}
Value name: HelpTopic
Value: C:\Windows\Help\AuthFW.chm
Reason: The value HelpTopic in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{b05566ac-fe9c-4368-be02-7a4cbb7cbe11} contains an invalid path C:/Windows/Help/AuthFW.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{b05566ac-fe9c-4368-be02-7a4cbb7cbe11}
Value name: LinkedHelpTopics
Value: C:\Windows\Help\AuthFW.chm
Reason: The value LinkedHelpTopics in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{b05566ac-fe9c-4368-be02-7a4cbb7cbe11} contains an invalid path C:/Windows/Help/AuthFW.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb06-bfe1-4c2e-9217-7a69a95bbac4}
Value name: HelpTopic
Value: C:\Windows\Help\taskscheduler.chm
Reason: The value HelpTopic in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{c7b8fb06-bfe1-4c2e-9217-7a69a95bbac4} contains an invalid path C:/Windows/Help/taskscheduler.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb06-bfe1-4c2e-9217-7a69a95bbac4}
Value name: LinkedHelpTopics
Value: C:\Windows\Help\taskscheduler.chm
Reason: The value LinkedHelpTopics in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{c7b8fb06-bfe1-4c2e-9217-7a69a95bbac4} contains an invalid path C:/Windows/Help/taskscheduler.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb07-bfe1-4c2e-9217-7a69a95bbac4}
Value name: HelpTopic
Value: C:\Windows\Help\taskscheduler.chm
Reason: The value HelpTopic in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{c7b8fb07-bfe1-4c2e-9217-7a69a95bbac4} contains an invalid path C:/Windows/Help/taskscheduler.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb07-bfe1-4c2e-9217-7a69a95bbac4}
Value name: LinkedHelpTopic
Value: C:\Windows\Help\taskscheduler.chm
Reason: The value LinkedHelpTopic in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{c7b8fb07-bfe1-4c2e-9217-7a69a95bbac4} contains an invalid path C:/Windows/Help/taskscheduler.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb07-bfe1-4c2e-9217-7a69a95bbac4}
Value name: LinkedHelpTopics
Value: C:\Windows\Help\taskscheduler.chm
Reason: The value LinkedHelpTopics in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{c7b8fb07-bfe1-4c2e-9217-7a69a95bbac4} contains an invalid path C:/Windows/Help/taskscheduler.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{b05566ac-fe9c-4368-be01-7a4cbb6cba12}
Value name: HelpTopic
Value: C:\Windows\Help\AuthFW.chm
Reason: The value HelpTopic in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{b05566ac-fe9c-4368-be01-7a4cbb6cba12} contains an invalid path C:/Windows/Help/AuthFW.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{b05566ac-fe9c-4368-be01-7a4cbb6cba12}
Value name: LinkedHelpTopics
Value: C:\Windows\Help\AuthFW.chm
Reason: The value LinkedHelpTopics in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{b05566ac-fe9c-4368-be01-7a4cbb6cba12} contains an invalid path C:/Windows/Help/AuthFW.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{a1bc4ecb-66b2-44e8-9915-be02e84438ba}
Value name: HelpTopic
Value: C:\Windows\Help\nap.chm
Reason: The value HelpTopic in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{a1bc4ecb-66b2-44e8-9915-be02e84438ba} contains an invalid path C:/Windows/Help/nap.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{a1bc4ecb-66b2-44e8-9915-be02e84438ba}
Value name: LinkHelpTopic
Value: C:\Windows\Help\nap.chm
Reason: The value LinkHelpTopic in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{a1bc4ecb-66b2-44e8-9915-be02e84438ba} contains an invalid path C:/Windows/Help/nap.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{a1bc4eca-66b2-44e8-9915-be02e84438ba}
Value name: HelpTopic
Value: C:\Windows\Help\nap.chm
Reason: The value HelpTopic in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{a1bc4eca-66b2-44e8-9915-be02e84438ba} contains an invalid path C:/Windows/Help/nap.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{a1bc4eca-66b2-44e8-9915-be02e84438ba}
Value name: LinkHelpTopic
Value: C:\Windows\Help\nap.chm
Reason: The value LinkHelpTopic in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{a1bc4eca-66b2-44e8-9915-be02e84438ba} contains an invalid path C:/Windows/Help/nap.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{7d3830aa-e69e-4e17-8bd1-1b87b97099da}
Value name: HelpTopic
Value: C:\Windows\Help\tpmadmin.chm
Reason: The value HelpTopic in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{7d3830aa-e69e-4e17-8bd1-1b87b97099da} contains an invalid path C:/Windows/Help/tpmadmin.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{7d3830aa-e69e-4e17-8bd1-1b87b97099da}
Value name: LinkedHelpTopics
Value: C:\Windows\Help\tpmadmin.chm
Reason: The value LinkedHelpTopics in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{7d3830aa-e69e-4e17-8bd1-1b87b97099da} contains an invalid path C:/Windows/Help/tpmadmin.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{b05566ad-fe9c-4363-be05-7a4cbb7cb510}
Value name: HelpTopic
Value: C:\Windows\Help\eventviewer.chm
Reason: The value HelpTopic in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{b05566ad-fe9c-4363-be05-7a4cbb7cb510} contains an invalid path C:/Windows/Help/eventviewer.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{b05566ad-fe9c-4363-be05-7a4cbb7cb510}
Value name: LinkedHelpTopics
Value: C:\Windows\Help\eventviewer.chm
Reason: The value LinkedHelpTopics in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{b05566ad-fe9c-4363-be05-7a4cbb7cb510} contains an invalid path C:/Windows/Help/eventviewer.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{b05566ae-fe9c-4363-be05-7a4cbb7cb510}
Value name: HelpTopic
Value: C:\Windows\Help\eventviewer.chm
Reason: The value HelpTopic in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{b05566ae-fe9c-4363-be05-7a4cbb7cb510} contains an invalid path C:/Windows/Help/eventviewer.chm

--------------------------------------------------------------------------------

Entry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{b05566ae-fe9c-4363-be05-7a4cbb7cb510}
Value name: LinkedHelpTopics
Value: C:\Windows\Help\eventviewer.chm
Reason: The value LinkedHelpTopics in HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/MMC/SnapIns/FX:{b05566ae-fe9c-4363-be05-7a4cbb7cb510} contains an invalid path C:/Windows/Help/eventviewer.chm

--------------------------------------------------------------------------------


--------------------------------------------------------------------------------

Scan subsection: ActiveX, OLE, COM sections
Entries found: 486
Entries:
Entry: HKEY_CLASSES_ROOT\Interface\{777BA811-2498-4875-933A-3067DE883070}\ProxyStubClsid32
Value name:
Value: {777BA81B-2498-4875-933A-3067DE883070}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{777BA811-2498-4875-933A-3067DE883070}/ProxyStubClsid32 points to a missing reference {777BA81B-2498-4875-933A-3067DE883070}

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\Interface\{777BA812-2498-4875-933A-3067DE883070}\ProxyStubClsid32
Value name:
Value: {777BA81B-2498-4875-933A-3067DE883070}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{777BA812-2498-4875-933A-3067DE883070}/ProxyStubClsid32 points to a missing reference {777BA81B-2498-4875-933A-3067DE883070}

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{A20B1BB0-AC3D-4530-85F3-791B81303190}\InprocServer32
Value name:
Value: C:\PROGRA~1\ICQ6.5\ICQDEV~1.OCX
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{A20B1BB0-AC3D-4530-85F3-791B81303190}/InprocServer32 points to the missing file C:/PROGRA~1/ICQ6.5/ICQDEV~1.OCX

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{8097D7E9-DB9E-4AEF-9B28-61D82A1DF784}\LocalServer32
Value name:
Value: C:\Program Files\Google\Google Earth\googleearth.exe
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{8097D7E9-DB9E-4AEF-9B28-61D82A1DF784}/LocalServer32 points to the missing file C:/Program Files/Google/Google Earth/googleearth.exe

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{645EEE5A-BD51-4C05-A6AF-6F2CF8950AAB}\LocalServer32
Value name:
Value: C:\Program Files\Google\Google Earth\googleearth.exe
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{645EEE5A-BD51-4C05-A6AF-6F2CF8950AAB}/LocalServer32 points to the missing file C:/Program Files/Google/Google Earth/googleearth.exe

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{2E74C695-8E9C-4179-B0A0-BC2EBDEB5C2B}\InProcServer32
Value name:
Value: C:\Program Files\Winamp\elevatorps.dll
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{2E74C695-8E9C-4179-B0A0-BC2EBDEB5C2B}/InProcServer32 points to the missing file C:/Program Files/Winamp/elevatorps.dll

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{73A12615-8F24-4602-A1B4-7754EDCE70C6}\InProcServer32
Value name:
Value: C:\Program Files\Jetico\Jetico Personal Firewall\jpfpsm.dll
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{73A12615-8F24-4602-A1B4-7754EDCE70C6}/InProcServer32 points to the missing file C:/Program Files/Jetico/Jetico Personal Firewall/jpfpsm.dll

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{35D70DAE-96FF-4F6C-93CB-33D8715366AA}\InProcServer32
Value name:
Value: C:\Program Files\Jetico\Jetico Personal Firewall\jpf_ip.dll
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{35D70DAE-96FF-4F6C-93CB-33D8715366AA}/InProcServer32 points to the missing file C:/Program Files/Jetico/Jetico Personal Firewall/jpf_ip.dll

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{A2D4475B-C9AA-48E2-A029-1DB829DACF7B}\LocalServer32
Value name:
Value: C:\Program Files\Google\Google Earth\googleearth.exe
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{A2D4475B-C9AA-48E2-A029-1DB829DACF7B}/LocalServer32 points to the missing file C:/Program Files/Google/Google Earth/googleearth.exe

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{CBD4FB70-F00B-4963-B249-4B056E6A981A}\LocalServer32
Value name:
Value: C:\Program Files\Google\Google Earth\googleearth.exe
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{CBD4FB70-F00B-4963-B249-4B056E6A981A}/LocalServer32 points to the missing file C:/Program Files/Google/Google Earth/googleearth.exe

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{2991AD3E-B76C-493F-BB47-0B1460D0442D}\InProcServer32
Value name:
Value: C:\Program Files\Jetico\Jetico Personal Firewall\jpflog.dll
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{2991AD3E-B76C-493F-BB47-0B1460D0442D}/InProcServer32 points to the missing file C:/Program Files/Jetico/Jetico Personal Firewall/jpflog.dll

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{D4304BCF-B8E9-4B35-BEA0-DC5B522670C2}\LocalServer32
Value name:
Value: C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{D4304BCF-B8E9-4B35-BEA0-DC5B522670C2}/LocalServer32 points to the missing file C:/Windows/system32/Macromed/Flash/FlashUtil9f.exe

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{b350124f-37ed-4306-adc6-15b89096c14a}\InprocServer32
Value name:
Value: c:\program files\ea sports\fifa 2003\becontrols_pc_z.dll
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{b350124f-37ed-4306-adc6-15b89096c14a}/InprocServer32 points to the missing file c:/program files/ea sports/fifa 2003/becontrols_pc_z.dll

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{EA700552-3B02-4C92-A55D-5970F1D16034}\InprocServer32
Value name:
Value: C:\Program Files\Jetico\Jetico Personal Firewall\jpflog.dll
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{EA700552-3B02-4C92-A55D-5970F1D16034}/InprocServer32 points to the missing file C:/Program Files/Jetico/Jetico Personal Firewall/jpflog.dll

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{29A96789-9595-4947-BEDB-0FCC776F7DB8}\InProcServer32
Value name:
Value: C:\Program Files\Google\Update\1.2.183.23\goopdate.dll
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{29A96789-9595-4947-BEDB-0FCC776F7DB8}/InProcServer32 points to the missing file C:/Program Files/Google/Update/1.2.183.23/goopdate.dll

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{693566bc-21f8-401e-8d42-e2c5ce50dacc}\LocalServer32
Value name:
Value: C:\Users\nikolka\AppData\Local\Temp\{d5641912-e47a-429c-879e-cfe13eac7a13}\IDriver.NonElevated.exe
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{693566bc-21f8-401e-8d42-e2c5ce50dacc}/LocalServer32 points to the missing file C:/Users/nikolka/AppData/Local/Temp/{d5641912-e47a-429c-879e-cfe13eac7a13}/IDriver.NonElevated.exe

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6}\InprocServer32
Value name:
Value: C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{9030D464-4C02-4ABF-8ECC-5164760863C6}/InprocServer32 points to the missing file C:/Program Files/Common Files/Microsoft Shared/Windows Live/WindowsLiveLogin.dll

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{4B8FC018-F9B8-4EEE-BA3C-EB21B094EBCA}\InprocServer32
Value name:
Value: C:\Windows\system32\btsendto_ie.dll
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{4B8FC018-F9B8-4EEE-BA3C-EB21B094EBCA}/InprocServer32 points to the missing file C:/Windows/system32/btsendto_ie.dll

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{63E6BE14-A742-4EEA-8AF3-0EC39F10F850}\LocalServer32
Value name:
Value: C:\Program Files\Google\Google Earth\googleearth.exe
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{63E6BE14-A742-4EEA-8AF3-0EC39F10F850}/LocalServer32 points to the missing file C:/Program Files/Google/Google Earth/googleearth.exe

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{1A239250-B650-4B63-B4CF-7FCC4DC07DC6}\LocalServer32
Value name:
Value: C:\Program Files\Google\Google Earth\googleearth.exe
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{1A239250-B650-4B63-B4CF-7FCC4DC07DC6}/LocalServer32 points to the missing file C:/Program Files/Google/Google Earth/googleearth.exe

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{B9F1D9B8-1DA6-4F17-962F-69EC82EA2704}\InprocServer32
Value name:
Value: C:\Program Files\Common Files\Microsoft Shared\Windows Live\LogicalDevice.dll
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{B9F1D9B8-1DA6-4F17-962F-69EC82EA2704}/InprocServer32 points to the missing file C:/Program Files/Common Files/Microsoft Shared/Windows Live/LogicalDevice.dll

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{32F34900-9288-101B-96B8-04021C007002}\LocalServer32
Value name:
Value: c:\mzda2008\wbole602.exe
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{32F34900-9288-101B-96B8-04021C007002}/LocalServer32 points to the missing file c:/mzda2008/wbole602.exe

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{77C4C807-E257-43AD-BB3F-7CA88760BD29}\LocalServer32
Value name:
Value: C:\Program Files\Google\Google Earth\googleearth.exe
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{77C4C807-E257-43AD-BB3F-7CA88760BD29}/LocalServer32 points to the missing file C:/Program Files/Google/Google Earth/googleearth.exe

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{A4F65992-5738-475B-9C16-CF102BCDE153}\LocalServer32
Value name:
Value: C:\Program Files\Google\Google Earth\googleearth.exe
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{A4F65992-5738-475B-9C16-CF102BCDE153}/LocalServer32 points to the missing file C:/Program Files/Google/Google Earth/googleearth.exe

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{672EE252-D813-4F5E-81BB-5DD163DD4FA5}\InprocServer32
Value name:
Value: C:\PROGRA~1\SOFTWA~1\602XML\Filler\AFILLE~1.OCX
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{672EE252-D813-4F5E-81BB-5DD163DD4FA5}/InprocServer32 points to the missing file C:/PROGRA~1/SOFTWA~1/602XML/Filler/AFILLE~1.OCX

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{D93BF052-FC68-4DB6-A4F8-A4DC9BEEB1C0}\LocalServer32
Value name:
Value: C:\Program Files\Google\Google Earth\googleearth.exe
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{D93BF052-FC68-4DB6-A4F8-A4DC9BEEB1C0}/LocalServer32 points to the missing file C:/Program Files/Google/Google Earth/googleearth.exe

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{D2517915-48CE-4286-970F-921E881B8C5C}\InprocServer32
Value name:
Value: C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{D2517915-48CE-4286-970F-921E881B8C5C}/InprocServer32 points to the missing file C:/Program Files/Common Files/Microsoft Shared/Windows Live/WindowsLiveLogin.dll

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{A0717E52-8AC8-4dd9-8682-0B76775125E6}\LocalServer32
Value name:
Value: C:\Windows\system32\DivXsm.exe
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{A0717E52-8AC8-4dd9-8682-0B76775125E6}/LocalServer32 points to the missing file C:/Windows/system32/DivXsm.exe

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{1C109E4C-2F30-4EA3-A57A-A290877A2303}\InprocServer32
Value name:
Value: C:\Program Files\Common Files\Microsoft Shared\Windows Live\HWDeviceLogin.dll
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{1C109E4C-2F30-4EA3-A57A-A290877A2303}/InprocServer32 points to the missing file C:/Program Files/Common Files/Microsoft Shared/Windows Live/HWDeviceLogin.dll

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{42DF0D46-7D49-4AE5-8EF6-9CA6E41EFEC1}\LocalServer32
Value name:
Value: C:\Program Files\Google\Google Earth\googleearth.exe
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{42DF0D46-7D49-4AE5-8EF6-9CA6E41EFEC1}/LocalServer32 points to the missing file C:/Program Files/Google/Google Earth/googleearth.exe

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{31AC3F11-E5EA-4A85-8A3D-8E095A39C27B}\InProcServer32
Value name:
Value: C:\Users\nikolka\AppData\Local\Google\Update\1.2.131.27\goopdate.dll
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{31AC3F11-E5EA-4A85-8A3D-8E095A39C27B}/InProcServer32 points to the missing file C:/Users/nikolka/AppData/Local/Google/Update/1.2.131.27/goopdate.dll

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{E3B1561E-0A04-42a2-86F7-9829CE20E959}\InprocServer32
Value name:
Value: c:\program files\ea sports\fifa 2003\browserengine2.dll
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{E3B1561E-0A04-42a2-86F7-9829CE20E959}/InprocServer32 points to the missing file c:/program files/ea sports/fifa 2003/browserengine2.dll

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\InprocServer32
Value name:
Value: C:\Program Files\AVG\AVG8\avgssie.dll
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}/InprocServer32 points to the missing file C:/Program Files/AVG/AVG8/avgssie.dll

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{32F34912-9288-101B-96B8-04021C007002}\InprocServer32
Value name:
Value: c:\mzda2008\WBVIEW.OCX
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{32F34912-9288-101B-96B8-04021C007002}/InprocServer32 points to the missing file c:/mzda2008/WBVIEW.OCX

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{8EB7A6B2-14C0-4BD8-9507-A6E6A9BA7618}\InprocServer32
Value name:
Value: C:\Windows\system32\btsendto_wab.dll
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{8EB7A6B2-14C0-4BD8-9507-A6E6A9BA7618}/InprocServer32 points to the missing file C:/Windows/system32/btsendto_wab.dll

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{3B29AB5C-52CB-4A36-9314-E3FEE0BA7468}\LocalServer32
Value name:
Value: C:\Program Files\Winamp\elevator.exe
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{3B29AB5C-52CB-4A36-9314-E3FEE0BA7468}/LocalServer32 points to the missing file C:/Program Files/Winamp/elevator.exe

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{AFD07A5E-3E20-4D77-825C-2F6D1A50BE5B}\LocalServer32
Value name:
Value: C:\Program Files\Google\Google Earth\googleearth.exe
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{AFD07A5E-3E20-4D77-825C-2F6D1A50BE5B}/LocalServer32 points to the missing file C:/Program Files/Google/Google Earth/googleearth.exe

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{B153D707-447A-4538-913E-6146B3FDEE02}\LocalServer32
Value name:
Value: C:\Program Files\Google\Google Earth\googleearth.exe
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{B153D707-447A-4538-913E-6146B3FDEE02}/LocalServer32 points to the missing file C:/Program Files/Google/Google Earth/googleearth.exe

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{1171A62F-05D2-11D1-83FC-00A0C9089C5A}\InprocServer32
Value name:
Value: C:\Windows\system32\macromed\flash\Flash.ocx
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{1171A62F-05D2-11D1-83FC-00A0C9089C5A}/InprocServer32 points to the missing file C:/Windows/system32/macromed/flash/Flash.ocx

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{32F34910-9288-101B-96B8-04021C007002}\InprocServer32
Value name:
Value: c:\mzda2008\WBVIEW.OCX
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{32F34910-9288-101B-96B8-04021C007002}/InprocServer32 points to the missing file c:/mzda2008/WBVIEW.OCX

--------------------------------------------------------------------------------

Entry: HKEY_CLASSES_ROOT\CLSID\{32F34902-9288-101B-96B8-04021C007002}\LocalServer32
Value name:
Value
Nahoru
lenička
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 03 kvě 2010 21:23

Re: řešení problému

#15 Příspěvek od lenička »

2010-05-04 21:54:47,259 WARNING - initialise - Failed to load cPickled settings
2010-05-04 21:54:51,861 INFO - init_connections - Init connection: Currently using db c:\users\nikolka\appdata\local\temp\831705f8-47bb-41d8-924e-ec9bfff2694ee64266e157b611df9e4d0016d387c8af. Version 15
2010-05-04 21:54:51,861 WARNING - __initialize - Failed to load cPickled settings from download_history.dat
2010-05-04 21:54:54,561 INFO - init_connections - Init connection: Currently using db c:\users\nikolka\appdata\local\temp\831705f8-47bb-41d8-924e-ec9bfff2694ee76bf2c057b611dfbc960016d387c8af. Version 15
2010-05-04 21:54:54,575 INFO - init_connections - Init connection: Currently using db c:\users\nikolka\appdata\local\temp\831705f8-47bb-41d8-924e-ec9bfff2694ee76bf2c057b611dfbc960016d387c8af. Version 15
2010-05-04 21:54:56,542 INFO - init_connections - Init connection: Currently using db c:\users\nikolka\appdata\local\temp\831705f8-47bb-41d8-924e-ec9bfff2694ee64266e157b611df9e4d0016d387c8af. Version 15
2010-05-04 21:54:56,776 INFO - run - Downloading 'http://ds.drivers.s3.amazonaws.com/driv ... sqlite.zip', saving as 'C:\Users\nikolka\AppData\Local\Temp\drivers-26.sqlite.zip'
2010-05-04 21:55:34,621 INFO - init_connections - Init connection: Currently using db c:\users\nikolka\appdata\local\temp\831705f8-47bb-41d8-924e-ec9bfff2694eff62225157b611dfb8020016d387c8af. Version 26
2010-05-04 21:55:34,621 INFO - check_db_update - Database updated to version: 26
2010-05-04 21:55:47,023 ERROR - __start_scan - **********Driver match found for hwId PCI\VEN_168C&DEV_001C&SUBSYS_3067168C
2010-05-04 21:55:47,023 ERROR - __start_scan - **********Driver match found for hwId PCI\VEN_10EC&DEV_8136&SUBSYS_11231734&REV_01
2010-05-04 21:58:51,634 INFO - init_connections - Init connection: Currently using db c:\users\nikolka\appdata\local\temp\831705f8-47bb-41d8-924e-ec9bfff2694e752cb49e57b711dfa7d70016d387c8af. Version 15
2010-05-04 21:58:51,634 WARNING - __initialize - Failed to load cPickled settings from download_history.dat
2010-05-04 21:58:53,661 INFO - init_connections - Init connection: Currently using db c:\users\nikolka\appdata\local\temp\831705f8-47bb-41d8-924e-ec9bfff2694e752cb49e57b711dfa7d70016d387c8af. Version 15
2010-05-04 21:58:53,957 INFO - run - Downloading 'http://ds.drivers.s3.amazonaws.com/driv ... sqlite.zip', saving as 'C:\Users\nikolka\AppData\Local\Temp\drivers-26.sqlite.zip'
2010-05-04 21:59:32,802 INFO - init_connections - Init connection: Currently using db c:\users\nikolka\appdata\local\temp\831705f8-47bb-41d8-924e-ec9bfff2694e8c2daec057b711dfac870016d387c8af. Version 26
2010-05-04 21:59:32,802 INFO - check_db_update - Database updated to version: 26
2010-05-04 21:59:47,684 ERROR - __start_scan - **********Driver match found for hwId PCI\VEN_168C&DEV_001C&SUBSYS_3067168C
2010-05-04 21:59:47,684 ERROR - __start_scan - **********Driver match found for hwId PCI\VEN_10EC&DEV_8136&SUBSYS_11231734&REV_01
2010-05-04 22:00:13,706 INFO - init_connections - Init connection: Currently using db c:\users\nikolka\appdata\local\temp\831705f8-47bb-41d8-924e-ec9bfff2694e8c2daec057b711dfac870016d387c8af. Version 26
2010-05-04 22:00:15,078 INFO - check_db_update - No database changes
2010-05-04 22:00:28,805 ERROR - __start_scan - **********Driver match found for hwId PCI\VEN_168C&DEV_001C&SUBSYS_3067168C
2010-05-04 22:00:28,805 ERROR - __start_scan - **********Driver match found for hwId PCI\VEN_10EC&DEV_8136&SUBSYS_11231734&REV_01
2010-05-04 22:09:44,009 INFO - init_connections - Init connection: Currently using db c:\users\nikolka\appdata\local\temp\831705f8-47bb-41d8-924e-ec9bfff2694e8c2daec057b711dfac870016d387c8af. Version 26
2010-05-04 22:09:44,665 INFO - check_db_update - No database changes
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“