dotaz

Zpráva

peter391 · #1 Příspěvek od **peter391** » 28 pro 2010 01:10

neviem ci to tu nebudem opakovat ale po spusteni CF byt z plochy sa cf ukonci a zmaze aj samotny cf . preco to robi Ď.Peter

#2 Příspěvek od **motji** » 28 pro 2010 10:25

Hezké dopoledne

Tohle combofix dělává, pokud je napaden nějakým fileinfectorem - např virutem.
Poprosila bych Vás o log ze Rsitu, viz můj podpis.

Virut je jeden z nejhorších virů,protože napadá všechny spustitelné soubory, většinou napadne i systémové soubory a počítač nakonec zkolabuje. Proto by jste ted neměl žádné soubory nikam kopírovat, přesouvat, at si nenakazíte třeba flešku nebo jiný pc , dokud nezjistíme, co máte skutečně za nákazu.

peter391 · #3 Příspěvek od **peter391** » 28 pro 2010 12:26

zatial vopred ďakujem

Logfile of random's system information tool 1.08 (written by random/random)
Run by Peter at 2010-07-28 12:13:40
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 62 GB (13%) free of 477 GB
Total RAM: 1023 MB (27% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:13:46, on 28.7.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17093)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe
C:\Program Files\Java\jre6\bin\jqs.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\V0470Mon.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrv.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Peter\Local Settings\Temporary Internet Files\Content.IE5\0LKG3G7Y\RSIT[1].exe
C:\Program Files\trend micro\Peter.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.servis.pvt.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\PROGRA~1\PCTRAN~1\webie.dll
O3 - Toolbar: RSToolbar - {40DC3121-3B86-4BBF-99BE-67AB90E35DC3} - C:\Program Files\BRapid\RS Tool\RSToolbar.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\isuspm.exe -startup
O4 - HKLM\..\Run: [V0470Mon.exe] C:\WINDOWS\V0470Mon.exe
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [Creative Live! Cam Manager] C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Vytvořit mobilní oblíbenou položku… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: WebTran - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra 'Tools' menuitem: &Nastaviť prekladač - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra 'Tools' menuitem: Preložiť &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra 'Tools' menuitem: Preložiť &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlcdnet.asus.com/pub/ASUS/misc/d ... .2.5.0.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 0849267562
O16 - DPF: {98425C13-952B-4459-A742-B1B85BDFF330} (WebCamX Control) - http://live.dss.com.tw/WebCamX.cab
O16 - DPF: {C357FE0A-0556-4970-8990-64DF0B8E8C6B} (WebCamX Control) -
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E55FD215-A32E-43FE-A777-A7E8F165F554} (Flatcast Viewer 4.16) - http://data.myflatcast.com/data/objects/NpFv41629.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - Firebird Project - C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - Firebird Project - C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 9935 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{CCA8FD82-364E-43D1-9724-9942B392C758}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-03-21 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-03-21 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\PROGRA~1\PCTRAN~1\webie.dll [2004-05-13 319488]
{40DC3121-3B86-4BBF-99BE-67AB90E35DC3} - RSToolbar - C:\Program Files\BRapid\RS Tool\RSToolbar.dll [2008-09-30 710144]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-05-27 413696]
"PinnacleDriverCheck"=C:\WINDOWS\system32\PSDrvCheck.exe [2004-03-10 406016]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\System32\NvMcTray.dll [2006-10-22 86016]
"NvCplDaemon"=C:\WINDOWS\System32\NvCpl.dll [2006-10-22 7700480]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2010-03-21 149280]
"ISUSPM Startup"=c:\progra~1\common~1\instal~1\update~1\isuspm.exe [2004-06-16 221184]
"V0470Mon.exe"=C:\WINDOWS\V0470Mon.exe [2007-06-04 32768]
"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"H/PC Connection Agent"=C:\Program Files\Microsoft ActiveSync\wcescomm.exe [2006-11-13 1289000]
"Creative Live! Cam Manager"=C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe [2007-05-02 151552]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2010-05-14 1479680]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
C:\Program Files\DAEMON Tools\daemon.exe [2006-11-12 157592]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [2004-06-16 221184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Peter^Nabídka Start^Programy^Po spuštění^AntiVirus Systems.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"idsvc"=3
"IDriverT"=3
"ServiceLayer"=3
"MDM"=2
"ose"=3
"aspnet_state"=3
"WMPNetworkSvc"=3
"WinDefend"=2
"TapiSrv"=3

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Adobe Gamma Loader.exe.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-12-17 110592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:*:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Strong\StrongDC.exe"="C:\Program Files\Strong\StrongDC.exe:*:Enabled:StrongDC++"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:*:Enabled:ActiveSync Application"
"C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe"="C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater"
"C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe"="C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process "
"C:\Program Files\Strong\sdc221\StrongDC.exe"="C:\Program Files\Strong\sdc221\StrongDC.exe:*:Enabled:StrongDC++"
"C:\Program Files\AVerMedia\Digital Video Surveillance System\DVR.exe"="C:\Program Files\AVerMedia\Digital Video Surveillance System\DVR.exe:*:Enabled:Digital Video Surveillance System "
"C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab Setup Files\Kaspersky Anti-Virus 2009\English\setup.exe"="C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab Setup Files\Kaspersky Anti-Virus 2009\English\setup.exe:*:Disabled:Kaspersky Anti-Virus 2009 Setup"
"C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe"="C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe:LocalSubNet:Enabled:Firebird server 2.1"
"C:\Program Files\SpacialAudio\SAMBC\SAMBC.exe"="C:\Program Files\SpacialAudio\SAMBC\SAMBC.exe:*:Enabled:SAMBC"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"C:\Program Files\Pinnacle\Studio 12\Programs\RM.exe"="C:\Program Files\Pinnacle\Studio 12\Programs\RM.exe:*:Enabled:Render Manager"
"C:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe"="C:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe:*:Enabled:Studio"
"C:\Program Files\Pinnacle\Studio 12\Programs\umi.exe"="C:\Program Files\Pinnacle\Studio 12\Programs\umi.exe:*:Enabled:umi"
"C:\Program Files\Western Digital\WD Discovery Software\WD Discovery.exe"="C:\Program Files\Western Digital\WD Discovery Software\WD Discovery.exe:*:Enabled:WD Discovery Application"
"C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-12-17 04:05:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2296199$
2010-12-17 04:05:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2010-12-17 04:05:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2010-12-17 04:05:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2443685$
2010-12-17 04:05:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2436673$
2010-12-17 04:05:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2010-12-17 04:01:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2010-12-13 21:11:39 ----D---- C:\Program Files\SFaxTools
2010-12-11 19:04:22 ----D---- C:\Program Files\HDDGURU LLF Tool
2010-12-02 13:07:24 ----SHD---- C:\RECYCLER
2010-12-01 02:12:04 ----A---- C:\ComboFix.txt
2010-11-15 13:52:28 ----D---- C:\Program Files\Adobe Media Player
2010-11-15 13:49:40 ----D---- C:\Program Files\Common Files\Adobe AIR
2010-11-08 12:19:41 ----A---- C:\WINDOWS\IE4 Error Log.txt
2010-11-02 22:05:39 ----A---- C:\WINDOWS\system32\LMRTREND.dll
2010-11-02 22:05:38 ----A---- C:\WINDOWS\system32\dxtmsft3.dll
2010-11-02 22:05:31 ----A---- C:\WINDOWS\system32\unam4ie.exe
2010-11-02 22:05:28 ----A---- C:\WINDOWS\system32\vidx16.dll
2010-11-02 22:05:28 ----A---- C:\WINDOWS\system32\qcut.dll
2010-11-02 22:05:27 ----A---- C:\WINDOWS\system32\w95inf32.dll
2010-11-02 22:05:27 ----A---- C:\WINDOWS\system32\w95inf16.dll
2010-11-02 22:04:44 ----A---- C:\WINDOWS\CS_setup.ini
2010-11-02 21:16:33 ----D---- C:\Documents and Settings\Peter\Data aplikací\proDAD
2010-11-02 21:16:28 ----D---- C:\Program Files\proDAD
2010-11-02 21:16:21 ----D---- C:\Program Files\LooksBuilderSE
2010-11-02 21:15:40 ----RA---- C:\WINDOWS\system32\qtmlClient.dll
2010-11-02 21:15:40 ----A---- C:\WINDOWS\system32\MtxPreview.dll
2010-11-02 21:15:40 ----A---- C:\WINDOWS\system32\MtxParhBFXPreview.dll
2010-11-02 21:15:40 ----A---- C:\WINDOWS\system32\CvoAPI.dll
2010-11-02 21:15:40 ----A---- C:\WINDOWS\Graffiti5.2Pin.ini
2010-11-02 21:14:35 ----D---- C:\Program Files\Boris FX, Inc
2010-11-02 21:12:39 ----A---- C:\WINDOWS\system32\drivers\MarvinBus.sys
2010-11-02 21:12:28 ----D---- C:\Program Files\Common Files\Pinnacle
2010-11-02 21:12:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\Pinnacle Studio Ultimate
2010-11-02 21:07:07 ----D---- C:\Program Files\Common Files\Yahoo!
2010-11-02 21:07:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\Studio 12
2010-11-02 21:07:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\Pinnacle Studio Plus
2010-10-26 00:14:42 ----D---- C:\Program Files\Common Files\PCSuite
2010-10-26 00:01:49 ----A---- C:\WINDOWS\system32\drivers\prodigy.sys
2010-10-26 00:01:43 ----D---- C:\Program Files\NSS
2010-10-25 23:49:04 ----A---- C:\WINDOWS\system32\drivers\pccsmcfd.sys
2010-10-25 23:48:52 ----D---- C:\Program Files\PC Connectivity Solution
2010-10-25 21:46:17 ----D---- C:\Documents and Settings\All Users\Data aplikací\NokiaInstallerCache
2010-10-13 10:18:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2010-10-13 10:17:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2279986$
2010-10-13 10:17:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2010-10-13 10:17:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2010-10-13 10:16:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2010-10-13 10:16:39 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2010-10-13 10:16:29 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2010-10-13 10:13:21 ----HDC---- C:\WINDOWS\$NtUninstallKB981957$
2010-10-13 10:13:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2010-10-05 21:42:30 ----D---- C:\Program Files\Sygic Assistant
2010-09-28 23:07:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2158563$
2010-09-26 18:39:43 ----A---- C:\WINDOWS\system32\irmon.dll
2010-09-26 18:39:43 ----A---- C:\WINDOWS\system32\irftp.exe
2010-09-26 18:39:42 ----A---- C:\WINDOWS\system32\wshirda.dll
2010-09-24 20:37:39 ----D---- C:\Documents and Settings\Peter\Data aplikací\WD
2010-09-24 20:37:13 ----D---- C:\Program Files\Common Files\eSellerate
2010-09-24 19:48:57 ----D---- C:\Program Files\DVD Shrink
2010-09-18 17:50:19 ----D---- C:\Documents and Settings\Peter\Data aplikací\NeroDigital(TM)
2010-09-17 18:05:55 ----D---- C:\Program Files\Western Digital
2010-09-15 21:38:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2259922$
2010-09-15 21:37:59 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2010-09-15 21:37:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2010-09-15 21:37:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2121546$
2010-09-15 21:37:36 ----HDC---- C:\WINDOWS\$NtUninstallKB982802$
2010-09-15 21:37:27 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2010-09-15 21:34:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2141007$
2010-09-06 22:15:40 ----HDC---- C:\WINDOWS\$NtUninstallWudf01009$
2010-09-06 22:10:04 ----A---- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys
2010-09-06 22:10:04 ----A---- C:\WINDOWS\system32\drivers\nmwcdnsu.sys
2010-09-06 22:10:03 ----A---- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys
2010-09-06 22:10:02 ----A---- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys
2010-09-06 22:10:01 ----A---- C:\WINDOWS\system32\drivers\ccdcmbo.sys
2010-09-06 22:10:00 ----A---- C:\WINDOWS\system32\wdfcoinstaller01009.dll
2010-09-06 22:10:00 ----A---- C:\WINDOWS\system32\nmwcdcocls.dll
2010-09-06 22:10:00 ----A---- C:\WINDOWS\system32\drivers\ccdcmb.sys
2010-08-15 18:59:19 ----HDC---- C:\WINDOWS\$NtUninstallKB982214$
2010-08-15 18:59:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2010-08-15 18:58:51 ----HDC---- C:\WINDOWS\$NtUninstallKB981852$
2010-08-15 18:58:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2010-08-15 18:52:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2160329$
2010-08-15 18:52:11 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2010-08-15 18:48:40 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2010-08-15 18:48:24 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2010-08-03 01:45:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$
2010-07-28 12:13:40 ----D---- C:\rsit
2010-07-28 12:13:40 ----D---- C:\Program Files\trend micro
2010-07-28 00:01:22 ----D---- C:\Documents and Settings\Peter\Data aplikací\Malwarebytes
2010-07-28 00:01:11 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010-07-28 00:01:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-07-28 00:01:00 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2010-07-28 00:00:59 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-07-27 23:19:32 ----RA---- C:\ComboFix.exe
2010-07-25 18:14:16 ----RASHD---- C:\cmdcons
2010-07-14 23:38:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$

======List of files/folders modified in the last 1 months======

2010-12-27 23:43:07 ----D---- C:\WINDOWS\system32\CatRoot2
2010-12-27 20:45:52 ----D---- C:\WINDOWS\Prefetch
2010-12-27 20:45:47 ----D---- C:\Qoobox
2010-12-27 18:22:31 ----D---- C:\Documents and Settings\Peter\Data aplikací\PC Suite
2010-12-25 11:34:31 ----D---- C:\Program Files\Advanced IP Scanner
2010-12-24 16:06:36 ----D---- C:\WINDOWS\system32\drivers\UMDF
2010-12-24 14:42:03 ----D---- C:\WINDOWS\inf
2010-12-23 12:39:01 ----D---- C:\WINDOWS\system32\NtmsData
2010-12-21 00:13:24 ----A---- C:\WINDOWS\wdict32.INI
2010-12-20 21:20:50 ----D---- C:\WINDOWS\Help
2010-12-17 04:05:46 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-12-17 04:05:40 ----A---- C:\WINDOWS\imsins.BAK
2010-12-17 04:05:27 ----HD---- C:\WINDOWS\$hf_mig$
2010-12-17 04:04:52 ----D---- C:\WINDOWS\system32\cs-cz
2010-12-17 04:04:52 ----D---- C:\Program Files\Internet Explorer
2010-12-17 04:04:40 ----D---- C:\WINDOWS\ie7updates
2010-12-17 04:01:26 ----A---- C:\WINDOWS\system32\MRT.exe
2010-12-17 04:01:16 ----D---- C:\Program Files\Outlook Express
2010-12-12 20:14:04 ----A---- C:\WINDOWS\NeroDigital.ini
2010-12-11 15:34:11 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-12-03 10:17:03 ----A---- C:\WINDOWS\wcx_ftp.ini
2010-12-03 10:16:40 ----A---- C:\WINDOWS\WINCMD.INI
2010-12-01 02:09:30 ----A---- C:\WINDOWS\system.ini
2010-12-01 02:09:20 ----D---- C:\WINDOWS\system32\drivers\etc
2010-12-01 02:04:19 ----D---- C:\WINDOWS\AppPatch
2010-12-01 02:04:17 ----D---- C:\Program Files\Common Files
2010-11-29 22:06:27 ----D---- C:\Temp
2010-11-21 23:53:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\DVD Shrink
2010-11-19 00:21:46 ----RASH---- C:\boot.ini
2010-11-18 20:15:47 ----A---- C:\WINDOWS\system32\isign32.dll
2010-11-16 19:54:38 ----D---- C:\Documents and Settings\Peter\Data aplikací\Adobe
2010-11-15 13:56:16 ----SHD---- C:\WINDOWS\Installer
2010-11-15 13:55:25 ----D---- C:\Program Files\Adobe
2010-11-15 13:53:55 ----D---- C:\Program Files\Common Files\Adobe
2010-11-15 13:53:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-11-15 13:51:50 ----RSD---- C:\WINDOWS\Fonts
2010-11-15 13:24:51 ----D---- C:\Install
2010-11-06 02:25:04 ----A---- C:\WINDOWS\system32\wininet.dll
2010-11-06 02:25:04 ----A---- C:\WINDOWS\system32\webcheck.dll
2010-11-06 02:25:04 ----A---- C:\WINDOWS\system32\urlmon.dll
2010-11-06 02:25:04 ----A---- C:\WINDOWS\system32\url.dll
2010-11-06 02:25:04 ----A---- C:\WINDOWS\system32\pngfilt.dll
2010-11-06 02:25:04 ----A---- C:\WINDOWS\system32\occache.dll
2010-11-06 02:25:04 ----A---- C:\WINDOWS\system32\mstime.dll
2010-11-06 02:25:04 ----A---- C:\WINDOWS\system32\msrating.dll
2010-11-06 02:25:04 ----A---- C:\WINDOWS\system32\mshtmled.dll
2010-11-06 02:25:04 ----A---- C:\WINDOWS\system32\mshtml.dll
2010-11-06 02:25:03 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2010-11-06 02:25:03 ----A---- C:\WINDOWS\system32\msfeeds.dll
2010-11-06 02:25:03 ----A---- C:\WINDOWS\system32\jsproxy.dll
2010-11-06 02:25:03 ----A---- C:\WINDOWS\system32\iertutil.dll
2010-11-06 02:25:03 ----A---- C:\WINDOWS\system32\iernonce.dll
2010-11-06 02:25:03 ----A---- C:\WINDOWS\system32\iepeers.dll
2010-11-06 02:25:03 ----A---- C:\WINDOWS\system32\ieframe.dll
2010-11-06 02:25:03 ----A---- C:\WINDOWS\system32\ieencode.dll
2010-11-06 02:25:03 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2010-11-06 02:25:03 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2010-11-06 02:25:03 ----A---- C:\WINDOWS\system32\ieaksie.dll
2010-11-06 02:25:03 ----A---- C:\WINDOWS\system32\ieakeng.dll
2010-11-06 02:25:03 ----A---- C:\WINDOWS\system32\icardie.dll
2010-11-06 02:25:03 ----A---- C:\WINDOWS\system32\extmgr.dll
2010-11-06 02:25:02 ----A---- C:\WINDOWS\system32\dxtrans.dll
2010-11-06 02:25:02 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2010-11-06 02:25:02 ----A---- C:\WINDOWS\system32\corpol.dll
2010-11-06 02:25:02 ----A---- C:\WINDOWS\system32\advpack.dll
2010-11-04 18:17:40 ----A---- C:\log.txt
2010-11-03 15:12:40 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-11-03 14:24:56 ----A---- C:\WINDOWS\system32\ieudinit.exe
2010-11-03 14:24:55 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2010-11-03 00:18:26 ----D---- C:\Documents and Settings\Peter\Data aplikací\ArcSoft
2010-11-02 22:05:39 ----D---- C:\Program Files\Windows Media Player
2010-11-02 22:04:43 ----HD---- C:\Program Files\InstallShield Installation Information
2010-11-02 21:13:39 ----D---- C:\Program Files\Pinnacle
2010-11-02 21:12:44 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-11-02 21:07:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\Pinnacle
2010-10-28 15:09:00 ----A---- C:\WINDOWS\system32\atmfd.dll
2010-10-26 00:42:12 ----D---- C:\Program Files\Common Files\Nokia
2010-10-26 00:41:27 ----D---- C:\Documents and Settings\Peter\Data aplikací\Nokia
2010-10-26 00:12:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\Installations
2010-10-25 23:47:30 ----D---- C:\Program Files\Nokia
2010-10-25 23:47:04 ----D---- C:\Documents and Settings\All Users\Data aplikací\Nokia
2010-10-25 21:47:44 ----D---- C:\WINDOWS\WinSxS
2010-10-24 01:06:24 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-10-18 13:06:11 ----A---- C:\WINDOWS\system32\ieakui.dll
2010-10-09 14:48:56 ----RSD---- C:\WINDOWS\assembly
2010-10-09 14:46:23 ----D---- C:\WINDOWS\Microsoft.NET
2010-09-27 12:07:30 ----D---- C:\Program Files\Google
2010-09-26 19:04:46 ----D---- C:\WINDOWS\security
2010-09-18 20:49:38 ----D---- C:\music
2010-09-18 12:23:38 ----A---- C:\WINDOWS\system32\mfc42u.dll
2010-09-18 08:53:37 ----N---- C:\WINDOWS\system32\mfc40u.dll
2010-09-18 08:53:37 ----A---- C:\WINDOWS\system32\mfc42.dll
2010-09-18 08:53:37 ----A---- C:\WINDOWS\system32\mfc40.dll
2010-09-15 21:30:10 ----D---- C:\Program Files\Canon
2010-09-15 21:29:43 ----D---- C:\Program Files\Common Files\Canon
2010-08-27 10:03:42 ----A---- C:\WINDOWS\system32\t2embed.dll
2010-08-27 07:54:10 ----A---- C:\WINDOWS\system32\srvsvc.dll
2010-08-27 03:43:50 ----A---- C:\WINDOWS\system32\xpsp4res.dll
2010-08-25 23:36:02 ----N---- C:\WINDOWS\system32\wmp.dll
2010-08-23 18:12:35 ----N---- C:\WINDOWS\system32\comctl32.dll
2010-08-17 15:17:06 ----N---- C:\WINDOWS\system32\spoolsv.exe
2010-08-16 10:45:05 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2010-08-15 18:48:44 ----D---- C:\Program Files\Movie Maker
2010-08-10 17:11:08 ----A---- C:\WINDOWS\msicpl.ini
2010-07-28 12:13:40 ----RD---- C:\Program Files
2010-07-28 12:11:29 ----D---- C:\WINDOWS
2010-07-28 12:04:47 ----A---- C:\WINDOWS\TRNCOM.INI
2010-07-28 11:41:39 ----D---- C:\WINDOWS\temp
2010-07-28 00:01:11 ----D---- C:\WINDOWS\system32\drivers
2010-07-27 23:30:36 ----D---- C:\WINDOWS\system32
2010-07-27 23:24:02 ----A---- C:\WINDOWS\ntbtlog.txt
2010-07-27 23:19:48 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-07-27 23:06:07 ----D---- C:\Program Files\Mozilla Firefox
2010-07-27 08:30:31 ----A---- C:\WINDOWS\system32\shell32.dll
2010-07-16 14:00:53 ----A---- C:\WINDOWS\system32\ole32.dll
2010-07-07 20:49:18 ----A---- C:\WINDOWS\wtran32.INI
2010-07-05 22:36:55 ----A---- C:\WINDOWS\system32\ieframe.dll.mui
2010-07-04 18:42:49 ----D---- C:\Program Files\Recover Files
2010-06-30 14:33:04 ----A---- C:\WINDOWS\system32\schannel.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\System32\DRIVERS\agp440.sys [2008-04-14 42368]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-08-10 50688]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2005-08-10 19968]
R0 sfvfs02;StarForce Protection VFS Driver (version 2.x); C:\WINDOWS\System32\drivers\sfvfs02.sys [2005-09-29 66048]
R0 viamraid;viamraid; C:\WINDOWS\system32\DRIVERS\viamraid.sys [2007-03-19 104064]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-07-13 91904]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-11-25 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 cdrblock;cdrblock; C:\WINDOWS\system32\DRIVERS\cdrblock.sys [2005-06-14 10368]
R1 cdrport;cdrport; C:\WINDOWS\system32\DRIVERS\cdrport.sys [2005-03-11 4608]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2003-03-14 4228]
R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-11-25 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-11-25 94160]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2007-05-18 271360]
R2 Hardlock;Hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys []
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2007-05-18 18048]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2003-03-13 100224]
R3 ASAPIW2k;ASAPIW2K; C:\WINDOWS\system32\drivers\ASAPIW2k.sys [2004-03-10 11264]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-12-17 1918464]
R3 HidBatt;Ovladač baterie zdroje UPS standardu HID; C:\WINDOWS\system32\DRIVERS\HidBatt.sys [2008-04-14 20352]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2005-09-24 171520]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2002-10-01 9856]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2006-12-14 85120]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-06-02 578304]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S1 intelppm;Řadič procesoru Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-14 40192]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S2 A88xEnc;AVerMedia 61051 MPEG Encoder; C:\WINDOWS\system32\drivers\A88xEnc.sys [2007-04-28 306944]
S2 ArgusA;ArgusA; C:\WINDOWS\system32\drivers\Di878A.sys [2005-08-04 38400]
S2 ArgusV;ArgusV; C:\WINDOWS\system32\drivers\Di878V.sys [2005-08-04 67072]
S2 AVerTV;AVerMedia MPEG Video Capture (EZMaker); C:\WINDOWS\system32\drivers\A88xVCap.sys [2007-04-28 251904]
S2 C182XBar;AVerMedia, MPEG Crossbar (88x), Service; C:\WINDOWS\system32\drivers\C182XBar.sys [2007-04-28 6784]
S2 CX88AUD;AVerMedia MPEG Audio Capture; C:\WINDOWS\system32\drivers\A88xaud.sys [2007-04-28 11264]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BTHMODEM;Ovladač komunikace modemu Bluetooth; C:\WINDOWS\system32\DRIVERS\bthmodem.sys [2008-04-13 37888]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 catchme;catchme; \??\C:\DOCUME~1\Peter\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 GMSIPCI;GMSIPCI; \??\K:\INSTALL\GMSIPCI.SYS []
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2003-04-16 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2010-02-26 18176]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2010-02-26 22528]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\WINDOWS\system32\drivers\nmwcdnsu.sys [2010-02-26 137344]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\WINDOWS\system32\drivers\nmwcdnsuc.sys [2010-02-26 8320]
S3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2006-10-22 3994624]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 PRODIGY;PRODIGY; C:\WINDOWS\System32\Drivers\PRODIGY.SYS [2006-08-29 32377]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 rtl8029;Realtek RTL8029(AS)-based PCI Ethernet Adapter NT Driver; C:\WINDOWS\System32\DRIVERS\RTL8029.SYS []
S3 SANDRA;SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Professional\Sandra.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\System32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2010-02-26 8192]
S3 usb_rndisx;Adaptér USB RNDIS; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2008-04-14 12800]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\System32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-14 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2010-02-26 8192]
S3 vaxscsi;vaxscsi; C:\WINDOWS\System32\Drivers\vaxscsi.sys [2009-02-21 223128]
S3 VF0470Vid;Live! Cam Notebook (VF0470); C:\WINDOWS\system32\DRIVERS\V0470Vid.sys [2007-05-09 146720]
S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2003-04-16 30208]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2009-07-14 444136]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-07-13 132224]
S3 yukonx86;NDIS5.1 Miniport Driver for Marvell Yukon Gigabit Ethernet Adapter; C:\WINDOWS\System32\DRIVERS\yukonx86.sys [2003-12-23 176256]
S4 RsFx0102;RsFx0102 Driver; C:\WINDOWS\system32\DRIVERS\RsFx0102.sys [2008-07-10 242712]
S4 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-02-21 611064]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-07-07 611664]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-12-17 434176]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe [2008-06-13 81920]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-03-21 153376]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2008-07-10 40999448]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-07-10 98840]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe [2008-06-13 2723840]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-09-29 616448]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-03-06 135664]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\System32\nvsvc32.exe [2006-10-22 159810]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-01-02 867080]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S4 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S4 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S4 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S4 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2008-07-10 47128]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS); c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2008-07-10 369688]
S4 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-07-10 258072]
S4 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]

-----------------EOF-----------------

#4 Příspěvek od **motji** » 28 pro 2010 12:40

Nic zásadního nevidím

Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
isapnp.sys
cdrom.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
CREATERESTOREPOINT

- zaškrtněte okénko Pro všechny uživatele.
-označte okénka Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
-po dokončení skenu se objeví logy OTL.Txt a Extras.txt, vložte je zde

Stahněte z mého podpisu AVPTOOl http://www.viry.cz/forum/viewtopic.php?f=29&t=58179

-Podle návodu nainstalujte a proveďte sken
-co najde nechejte léčit, mazat
-sken může trvat několik hodin
-vložte zde log z výsledky

peter391 · #5 Příspěvek od **peter391** » 28 pro 2010 15:32

dakujem za snahu

OTL Extras logfile created on: 28.7.2010 12:52:31 - Run 1
OTL by OldTimer - Version 3.2.18.0 Folder = C:\Documents and Settings\Peter\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d.M.yyyy

1 023,00 Mb Total Physical Memory | 285,00 Mb Available Physical Memory | 28,00% Memory free
3,00 Gb Paging File | 1,00 Gb Available in Paging File | 46,00% Paging File free
Paging file location(s): c:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 465,75 Gb Total Space | 60,58 Gb Free Space | 13,01% Space Free | Partition Type: NTFS
Drive I: | 1,87 Gb Total Space | 1,07 Gb Free Space | 57,02% Space Free | Partition Type: FAT
Drive J: | 487,96 Mb Total Space | 461,73 Mb Free Space | 94,63% Space Free | Partition Type: FAT

Computer Name: PC1 | User Name: Peter | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- Reg Error: Key error. File not found

[HKEY_USERS\S-1-5-21-746137067-299502267-682003330-1003\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
https [open] -- Reg Error: Value error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Browse with FastStone] -- "C:\Program Files\FastStone Image Viewer\FSViewer.exe" "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Môj CEWE Fotosvet] -- "C:\Program Files\Fotolab\Môj Cewe Fotosvet\Môj CEWE Fotosvet.exe" "%1" ()
Directory [Môj Cewe Fotosvet.exe] -- "C:\Program Files\Fotolab\Môj CEWE Fotosvet\Môj CEWE Fotosvet.exe" "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"13364:UDP" = 13364:UDP:*:Enabled:Print Server Utility
"13107:UDP" = 13107:UDP:*:Enabled:Print Server Utility
"69:UDP" = 69:UDP:*:Enabled:Print Server Utility
"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"13364:UDP" = 13364:UDP:*:Enabled:Print Server Utility
"13107:UDP" = 13107:UDP:*:Enabled:Print Server Utility
"69:UDP" = 69:UDP:*:Enabled:Print Server Utility
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009
"5353:TCP" = 5353:TCP:*:Enabled:Adobe CSI CS4

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:*:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation)
"C:\Program Files\Strong\StrongDC.exe" = C:\Program Files\Strong\StrongDC.exe:*:Enabled:StrongDC++ -- ()
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:*:Enabled:ActiveSync Application -- (Microsoft Corporation)
"C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe" = C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater -- (Nokia Corporation)
"C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe" = C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process -- (Nokia Corporation)
"C:\Program Files\Strong\sdc221\StrongDC.exe" = C:\Program Files\Strong\sdc221\StrongDC.exe:*:Enabled:StrongDC++ -- ()
"C:\Program Files\AVerMedia\Digital Video Surveillance System\DVR.exe" = C:\Program Files\AVerMedia\Digital Video Surveillance System\DVR.exe:*:Enabled:Digital Video Surveillance System -- ()
"C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab Setup Files\Kaspersky Anti-Virus 2009\English\setup.exe" = C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab Setup Files\Kaspersky Anti-Virus 2009\English\setup.exe:*:Disabled:Kaspersky Anti-Virus 2009 Setup -- (Kaspersky Lab)
"C:\totalcmd\TOTALCMD.EXE" = C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows -- (C. Ghisler & Co.)
"C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe" = C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe:LocalSubNet:Enabled:Firebird server 2.1 -- (Firebird Project)
"C:\Program Files\SpacialAudio\SAMBC\SAMBC.exe" = C:\Program Files\SpacialAudio\SAMBC\SAMBC.exe:*:Enabled:SAMBC -- ()
"C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Program Files\Google\Google Earth\client\googleearth.exe" = C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth -- (Google)
"C:\Program Files\Pinnacle\Studio 12\Programs\RM.exe" = C:\Program Files\Pinnacle\Studio 12\Programs\RM.exe:*:Enabled:Render Manager -- (Pinnacle Systems)
"C:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe" = C:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe:*:Enabled:Studio -- (Pinnacle Systems)
"C:\Program Files\Pinnacle\Studio 12\Programs\umi.exe" = C:\Program Files\Pinnacle\Studio 12\Programs\umi.exe:*:Enabled:umi -- (Pinnacle Systems)
"C:\Program Files\Western Digital\WD Discovery Software\WD Discovery.exe" = C:\Program Files\Western Digital\WD Discovery Software\WD Discovery.exe:*:Enabled:WD Discovery Application -- ()
"C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" = C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4 -- (Adobe Systems Incorporated)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4
"{044F9133-B8D7-4d11-BF39-803FA20F5C8B}" = Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Win32
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{0711500B-9912-4D60-9A49-C577B4503D42}" = Nero Recode Help
"{07FF7593-9DEA-40B5-9F87-F557E65BBF60}" = Nero Recode
"{08CA9554-B5FE-4313-938F-D4A417B81175}" = QuickTime
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{0C19D563-5F25-4621-BF10-01F741BD283F}" = Microsoft SQL Server Compact 3.5 SP1 Design Tools English
"{0CA21011-069B-B16A-A5CA-9ABE49DAC05C}" = Windows Installer 4.5 SDK
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{105CFC7C-6992-11D5-BD9D-000102C10FD8}" = Lizardtech DjVu Control
"{1122AAC4-AAAA-43BF-B2D4-3C8C12378952}" = Nero InfoTool
"{11A84FCA-C3C7-4AFD-A797-111DB8569DBC}" = Nero BurningROM
"{12ED438C-3908-43CD-8E35-0EB75C4F5B9F}_is1" = Sygic Assistant
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E217EA-C3E0-402D-8D4F-6189DB74497A}" = Studio 9.1 Patch
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{196E77C5-F524-4B50-BD1A-2C21EEE9B8F7}" = Microsoft SQL Server 2008 Common Files
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{1B040683-C390-4711-ABC7-DA8D85E470E7}" = NeroBurningROM
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}" = Nokia PC Suite
"{262BF2CD-601D-4F43-919C-4B00B1D1F338}" = Boris Graffiti
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17
"{3097B151-1F61-4211-A4CC-D70127B226AE}" = SoundTrax
"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java(TM) 6 Update 3
"{33359986-DD66-44E1-A709-D1FA943B014F}" = iGO Updater
"{342D4AD7-EC4C-4EC8-AEA6-E70F5905A490}" = SQL Server System CLR Types
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{4286E640-B5FB-11DF-AC4B-005056C00008}" = Google Earth
"{4815BD99-96A4-49FE-A885-DCF06E9E4E78}" = Microsoft SQL Server 2008 Database Engine Shared
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4A6F34E2-09E5-4616-B227-4A26A488A6F9}" = Microsoft SQL Server 2008 Common Files
"{4E8C27C2-D727-4C00-A90E-C3F6376EEE70}" = Nero ControlCenter
"{546C143E-68DC-314D-97BC-1E454E3BA429}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY
"{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4
"{56BE5CC9-95E6-4128-ABEA-968414CA9C80}" = DolbyFiles
"{58721EC3-8D4E-4B79-BC51-1054E2DDCD10}" = Microsoft SQL Server 2008 Database Engine Services
"{590D4F8F-98FE-47FA-AC2B-3F22FDCF7C09}" = ShareIns
"{5AE12194-3EAA-40DF-B2BF-FE1D6B78BBF4}" = Nero Vision
"{5BE1E709-30E4-3D6D-A708-96CE8D5E5E8D}" = Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for .NET Framework - enu
"{5EB90C06-964F-4195-B83E-BD7E55C88415}" = Ovladače videa společnosti Pinnacle
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{650E2ABD-270A-499C-BA9F-09180DDDDA16}" = Nokia Software Updater
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PartitionMagic
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{78523651-D8B1-11DC-CCEE-741589645873}" = Nero DiscSpeed
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90170405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office FrontPage 2003
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{943CC0C0-2253-4FE0-9493-DD386F7857FD}" = Nero Express
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{961D53EA-40DC-4156-AD74-25684CE05F81}" = Nero Installer
"{97D541D9-1CF2-4986-B594-80C4ADAD968E}" = OL 3.1 (OTP S 1)
"{99052DB7-9592-4522-A558-5417BBAD48EE}" = Microsoft ActiveSync
"{9A875B56-A35C-46BA-A3AA-DF8D03EE9F2F}" = Nero ControlCenter
"{9D6D76A6-4328-49E8-97A7-531A74841DA5}" = Microsoft SQL Server 2008 Setup Support Files (English)
"{9F3523F8-DAD7-AE52-6DA7-45CDDDF33726}" = Advertising Center
"{A2C9CD1B-2551-3AED-B244-6698FB929FA6}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A3A77807-E352-4786-BA53-7EF8DAFF69D5}" = Avigilon Control Center Player
"{A4418082-E601-3954-805B-D56A2B50EC8B}" = Microsoft Visual C# 2008 Express Edition with SP1 - ENU
"{A73BEC3C-40A0-480E-87EF-EFCD33629088}" = NeroExpress
"{A8D93648-9F7F-407D-915C-62044644C3DA}" = MSI to redistribute MS VS2005 CRT libraries
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AAA12554-2589-11DC-92EF-E98356D81493}" = Nero InfoTool
"{AABBCC54-D8B1-11DC-92EF-E98356D81493}" = Nero DiscSpeed
"{AC76BA86-7AD7-1029-7B44-A81200000003}" = Adobe Reader 8 - Czech
"{AC76BA86-7AD7-2447-0000-800000000003}" = Chinese Simplified Fonts Support For Adobe Reader 8
"{AC76BA86-7AD7-2448-0000-800000000003}" = Chinese Traditional Fonts Support For Adobe Reader 8
"{AC76BA86-7AD7-5464-3428-800000000003}" = Spelling Dictionaries Support For Adobe Reader 8
"{AC76BA86-7AD7-5670-0000-800000000003}" = Korean Fonts Support For Adobe Reader 8
"{AC76BA86-7AD7-5760-0000-800000000003}" = Japanese Fonts Support For Adobe Reader 8
"{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}" = REALTEK GbE & FE Ethernet PCI NIC Driver
"{AD13BFB0-FDD2-4AFA-A8AF-9F4A950D56B7}" = ArcSoft Camera Suite 1.3
"{AD708DF0-9F04-4CB3-821A-85804A833B4D}" = ArcSoft Camera Suite
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B2C12C8D-65DC-40BD-B309-5ADB0C6C8D8F}" = Nero WaveEditor
"{B5153233-9AEE-4CD4-9D2C-4FAAC870DBE2}" = Microsoft SQL Server 2008 Database Engine Services
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B857D868-F8B0-43EE-BC2B-D9E5ED21F237}" = Microsoft SQL Server VSS Writer
"{B96C2601-52F5-4D5D-816A-63469EA311EF}" = "Nero SoundTrax Help
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BCD82AB5-670D-4242-90FA-1F97103C16CD}" = Movie Templates - Starter Kit
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C688457E-03FD-4941-923B-A27F4D42A7DD}" = Microsoft SQL Server 2008 Browser
"{C965F01C-76EA-4BD7-973E-46236AE312D7}" = Sql Server Customer Experience Improvement Program
"{C99C89A3-119A-45E6-B26E-DD5643CAA0C5}" = Menu Templates - Starter Kit
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D041EB9E-890A-4098-8F94-51DA194AC72A}" = Pinnacle Studio 12
"{D1860E6E-520E-4380-8433-E58E8F88B473}" = Pinnacle Studio 12 Ultimate Plugins
"{D94E53DD-9428-11D6-90F5-0048545B0D01}" = Digital Video Surveillance System
"{D9D937B0-E842-4130-9588-B948E876904A}" = Microsoft SQL Server 2008 Native Client
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{e2510689-1a29-4878-8ad5-5b33a0bdf0b6}" = Nero 9
"{E3DBED25-09EE-45FE-BE53-4B07B0CBA0FC}" = PC Connectivity Solution
"{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4
"{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}" = Microsoft SQL Server Compact 3.5 SP1 English
"{E86156E5-9859-440D-8876-26CED1349802}" = Nero WaveEditor Help
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F1DC7648-8623-442F-92B7-E118DF61872E}" = Microsoft SQL Server 2008 RsFx Driver
"{F1FDAA01-988C-423F-AC12-0D8F333943FD}" = Nokia Connectivity Cable Driver
"{F2A34EE8-F7E7-11D6-9D38-0050BAEF4D56}" = Digital Video Surveillance System - Klient vzdaleneho pristupu
"{F3494AB6-6900-41C6-AF57-823626827ED8}" = Microsoft SQL Server 2008 Database Engine Shared
"{F53F6769-AC46-49E3-ABE3-2C8AFD39D0DD}" = Nero Vision
"{F5E87B12-3C27-452F-8E78-21D42164FD83}" = Microsoft SQL Server 2008 Management Objects
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"0C5EDC3653FED5B121F464339EAC12534D253B25" = Balíček ovladače systému Windows - Nokia Modem (02/15/2007 3.1)
"34EA302E7F4CBD17A19E33BBCB72363234956D7E" = Balíček ovladače systému Windows - Nokia Modem (06/09/2010 4.5)
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"9CD348AE9C64C4B939B624E8E24F3903EFDFC82B" = Balíček ovladače systému Windows - Nokia Modem (05/22/2008 7.00.0.1)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player Plugin
"Adobe PageMaker 6.5 CZ" = Adobe PageMaker 6.5 CZ
"Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4
"Advanced IP Scanner v1.5" = Advanced IP Scanner v1.5
"ATI Display Driver" = ATI Display Driver
"avast!" = avast! Antivirus
"B726756F5B5A5AA9D798B399386FC6205A45F19E" = Balíček ovladače systému Windows - Nokia Modem (02/15/2007 3.1)
"C5A76DC11BABDA0A881E7BE8DDEB641365A77FFD" = Balíček ovladače systému Windows - Nokia Modem (05/22/2008 3.8)
"Canon RAW Codec" = Canon RAW Codec
"CBF192A85B624E32B8D19ADEEF2DCFC5BC3AA73A" = Balíček ovladače systému Windows - Nokia Modem (03/05/2008 3.7)
"CD8424B9400BFF7D34AA18F816C71322AC4BDAA7" = Balíček ovladače systému Windows - Nokia Modem (05/24/2007 6.84.0.1)
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Cool's_Codec_pack_4.12" = Codec Pack - G400 5.0.4.4
"Creative Live! Cam Center" = Creative Live! Cam Center
"Creative Live! Cam Manager" = Creative Live! Cam Manager
"Demoverzia MRPKS" = MRP-KS, účtovný systém - demoverzia
"doPDF 5 printer_is1" = doPDF 5.0 printer
"DVD Shrink_is1" = DVD Shrink 3.2
"DXTXTRA" = Microsoft DirectX Transform optional components
"E092B2EBF2FFE83E896F8F7F829A7B5D7D1B2F9D" = Balíček ovladače systému Windows - Nokia Modem (03/13/2008 6.86.0.1)
"EEEE705096F837B7907659F100C9FE6DA001970F" = Balíček ovladače systému Windows - Nokia Modem (06/09/2010 7.01.0.7)
"FastStone Image Viewer" = FastStone Image Viewer 3.9
"FaxSee Pro_is1" = FaxSee Pro 3.00
"FBDBServer_2_1_is1" = Firebird 2.1.1.17910 (Win32)
"FLV to AVI MPEG WMV 3GP MP4 iPod Converter_is1" = FLV to AVI MPEG WMV 3GP MP4 iPod Converter 3.9.1120
"FLVPlayer" = FLV Player 1.3.3
"FMS" = FMS
"Hard Disk Low Level Format Tool_is1" = Hard Disk Low Level Format Tool 2.36 build 1181
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"incompd" = Testo Comfort Software Professional
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
"InstallShield_{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PowerQuest PartitionMagic 8.0
"Intelli-studio" = SAMSUNG Intelli-studio
"IrfanView" = IrfanView (remove only)
"Leaklog-1.0_is1" = Leaklog 0.9.5
"Magic Bullet Looks Studio" = Magic Bullet Looks Studio
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft SQL Server 10" = Microsoft SQL Server 2008
"Microsoft SQL Server 10 Release" = Microsoft SQL Server 2008
"Microsoft Visual C# 2008 Express Edition with SP1 - ENU" = Microsoft Visual C# 2008 Express Edition with SP1 - ENU
"Mozilla Firefox (3.0.15)" = Mozilla Firefox (3.0.15)
"Môj Cewe Fotosvet" = Môj CEWE Fotosvet
"MRP Jednoduche uctovnictvo" = MRP Jednoduché účtovníctvo + sklad
"MRP Zaklad" = MRP Základ vizuálneho systému
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Nero - Burning Rom!UninstallKey" = Nero 6
"NeroVision!UninstallKey" = NeroVision Express 3
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Nokia PC Suite" = Nokia PC Suite
"NSS" = NSS (remove only)
"NVIDIA Drivers" = NVIDIA Drivers
"OziExplorer 3.95_is1" = OziExplorer 3.95
"PC Translator 2004 Komplet" = PC Translator 2004 Komplet
"PrintServer Utilities" = PrintServer Utilities
"proDAD-Vitascene-1.0" = proDAD Vitascene 1.0
"QuickTime32" = QuickTime for Windows (32-bit)
"Recover Files_is1" = Recover Files 3.11
"Recover My Files_is1" = Recover My Files
"RSTool 1.0_is1" = RSTool for Internet Explorer
"SAM3" = SAM Broadcaster (remove only)
"SiSoftware Sandra Professional MAX3! (Jagged Onl~74D864A4_is1" = SiSoftware Sandra Professional MAX3! (Jagged Online Ltd Edition
"TDS Offline" = TDS Offline
"Total Video Converter 3.02_is1" = Total Video Converter 3.02
"Totalcmd" = Total Commander (Remove or Repair)
"V8400 Digital Camera Driver" = V8400 Digital Camera Driver
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR archivátor
"WinZip" = WinZip
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01009" = Microsoft User-Mode Driver Framework Feature Pack 1.9
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-746137067-299502267-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Avigilon Control Center Player" = Avigilon Control Center Player
"IAS Web Start Viewer 3.1.2" = IAS Web Start Viewer 3.1.2

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 15.2.2010 12:15:25 | Computer Name = PC1 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\DOCUMENTS AND SETTINGS\PETER\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\GSYN3GVG\TOP150BOREZ[1].JPG
failed, 00000005.

Error - 15.2.2010 12:16:52 | Computer Name = PC1 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\DOCUMENTS AND SETTINGS\PETER\DATA APLIKACí\MICROSOFT\ŠABLONY\NORMAL.DOT failed,
00000005.

Error - 10.3.2010 15:33:26 | Computer Name = PC1 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\DOCUMENTS AND SETTINGS\PETER\DATA APLIKACí\MICROSOFT\ŠABLONY\NORMAL.DOT failed,
00000005.

Error - 11.3.2010 13:58:31 | Computer Name = PC1 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\DOCUMENTS AND SETTINGS\PETER\LOCAL SETTINGS\DATA APLIKACí\MICROSOFT\FEEDS\FEEDSSTORE.FEEDSDB-MS
failed, 00000005.

Error - 11.3.2010 14:00:02 | Computer Name = PC1 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\DOCUMENTS AND SETTINGS\PETER\DATA APLIKACí\MICROSOFT\ŠABLONY\NORMAL.DOT failed,
00000005.

Error - 11.3.2010 14:05:03 | Computer Name = PC1 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\DOCUMENTS AND SETTINGS\PETER\LOCAL SETTINGS\DATA APLIKACí\MICROSOFT\FEEDS\FEEDSSTORE.FEEDSDB-MS
failed, 00000005.

Error - 11.4.2010 9:46:28 | Computer Name = PC1 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\DOCUMENTS AND SETTINGS\PETER\LOCAL SETTINGS\DATA APLIKACí\MICROSOFT\FEEDS\FEEDSSTORE.FEEDSDB-MS
failed, 00000005.

Error - 12.5.2010 16:19:52 | Computer Name = PC1 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of A:\POHONY.EXE failed, 0000001E.

Error - 2.9.2010 19:52:20 | Computer Name = PC1 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://download.microsoft.com/download/ ... e_spcd.iso
failed, 00000084.

Error - 27.12.2010 15:01:47 | Computer Name = PC1 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Documents and Settings\Peter\Plocha\ComboFix.exe failed, 00000005.

[ Application Events ]
Error - 8.11.2010 6:19:37 | Computer Name = PC1 | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.5512, chybující modul
nerodigitalext.dll, verze 1.1.0.6, adresa chyby 0x000117e4.

Error - 22.11.2010 14:37:56 | Computer Name = PC1 | Source = Application Error | ID = 1000
Description = Chybující aplikace f1upgradeutility.exe, verze 1.0.0.14, chybující
modul msvbvm60.dll, verze 6.0.98.2, adresa chyby 0x000728bc.

Error - 22.11.2010 14:37:59 | Computer Name = PC1 | Source = Application Error | ID = 1000
Description = Chybující aplikace f1upgradeutility.exe, verze 1.0.0.14, chybující
modul msvbvm60.dll, verze 6.0.98.2, adresa chyby 0x000728bc.

Error - 22.11.2010 14:38:01 | Computer Name = PC1 | Source = Application Error | ID = 1000
Description = Chybující aplikace f1upgradeutility.exe, verze 1.0.0.14, chybující
modul kernel32.dll, verze 5.1.2600.5781, adresa chyby 0x0000df3c.

Error - 30.11.2010 17:31:54 | Computer Name = PC1 | Source = Application Error | ID = 1000
Description = Chybující aplikace tvp.exe, verze 1.0.6.907, chybující modul vcen.dll,
verze 3.0.2.0, adresa chyby 0x0035e53c.

Error - 3.12.2010 4:14:30 | Computer Name = PC1 | Source = Application Error | ID = 1000
Description = Chybující aplikace tvp.exe, verze 1.0.6.907, chybující modul playback.dll,
verze 1.0.6.825, adresa chyby 0x00001fb4.

Error - 6.12.2010 16:25:13 | Computer Name = PC1 | Source = Application Error | ID = 1000
Description = Chybující aplikace tvp.exe, verze 1.0.6.907, chybující modul vcen.dll,
verze 3.0.2.0, adresa chyby 0x0035e53c.

Error - 6.12.2010 16:25:26 | Computer Name = PC1 | Source = Application Error | ID = 1000
Description = Chybující aplikace tvp.exe, verze 1.0.6.907, chybující modul vcen.dll,
verze 3.0.2.0, adresa chyby 0x0035e53c.

Error - 11.12.2010 10:26:30 | Computer Name = PC1 | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.5512, chybující modul
nerodigitalext.dll, verze 1.1.0.6, adresa chyby 0x000117e4.

Error - 12.12.2010 14:13:50 | Computer Name = PC1 | Source = Application Error | ID = 1000
Description = Chybující aplikace tvp.exe, verze 1.0.6.907, chybující modul ntdll.dll,
verze 5.1.2600.5755, adresa chyby 0x0001b21a.

[ System Events ]
Error - 27.12.2010 17:25:15 | Computer Name = PC1 | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058

Error - 27.12.2010 17:25:36 | Computer Name = PC1 | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058

Error - 27.12.2010 17:25:38 | Computer Name = PC1 | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058

Error - 27.12.2010 17:25:55 | Computer Name = PC1 | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058

Error - 27.12.2010 17:26:12 | Computer Name = PC1 | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058

Error - 27.12.2010 17:26:29 | Computer Name = PC1 | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058

Error - 27.12.2010 17:26:46 | Computer Name = PC1 | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058

Error - 27.12.2010 17:27:03 | Computer Name = PC1 | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058

Error - 27.12.2010 17:27:20 | Computer Name = PC1 | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058

Error - 27.12.2010 17:27:20 | Computer Name = PC1 | Source = Service Control Manager | ID = 7001
Description = Služba Správce vzdáleného přístupu závisí na službě Telefonní subsystém,
která neuspěla při spuštění v důsledku následující chyby: %%1058

< End of report >

#6 Příspěvek od **motji** » 28 pro 2010 16:37

LOG INFO.TXT BY SE NENAŠEL?

#7 Příspěvek od **motji** » 28 pro 2010 23:47

Ještě poznámka - máte špatně nastavený systémový čas

OTL Extras logfile created on: 28.7.2010 12:52:31 - Run 1

Zkuste upravit datum a rozjet combofix.

(branda - díky za upozornění )

peter391 · #8 Příspěvek od **peter391** » 29 pro 2010 17:18

je to paráda odpaja mi to pomali všetko čo mam na usb start pc trva aj 20min a tak sa mi vidi ze to prenásam aj do druheho pc cez usb kluc tie scany aj niečo našli a pomazali ale problem pretrvava stale. log som nasiel ale nie som schopny ho dostat do tohoto okna.som dost odkazany na tento pc aj ked mam dost zaloh ale ono sa vzdy nieco strati .ja som tento pc nepreinstaloval uz pekne dlho.
inak dakujem za pomoc a ten cas som presuval ja kôli cf a zabudol som ho vratit.

#9 Příspěvek od **motji** » 29 pro 2010 19:17

Prosím Vás, nevíte co AVPtool našel? Nebyl to náhodou virut nebo vitro?
Já nemám žádné logy, minimum informací, nemám se od čeho odpíchnout

.
Máte inst.cd se sp3? Že by jste udělal opravu systému.

#10 Příspěvek od **motji** » 29 pro 2010 19:19

Já tu ted budu průběžně celý večer, pokud máte čas, tak se na to ted vrhneme psolu, at s tím pohneme

peter391 · #11 Příspěvek od **peter391** » 29 pro 2010 19:22

nie som schopny preposlat log bud je to sem velke alebo co nevim teraz sa mi podaril spustit cf odmazal akysi trncom.ini posielal som aj z tohoto log nic nejde

peter391 · #12 Příspěvek od **peter391** » 29 pro 2010 19:24

ComboFix 10-12-26.01 - Peter 29.12.2010 18:42:32.15.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1023.455 [GMT 1:00]
Spuštěný z: c:\documents and settings\Peter\Plocha\ComboFix.exe
AV: avast! antivirus 4.8.1368 [VPS 101228-1] *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Peter\Local Settings\Temporary Internet Files\TRNCOM.INI

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-11-28 do 2010-12-29 )))))))))))))))))))))))))))))))
.

2010-12-16 07:44 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2010-12-16 07:43 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2010-12-13 19:11 . 2010-12-15 16:28 1200 ----a-w- c:\windows\system32\rzeksfsp.dat
2010-12-13 19:11 . 2010-12-13 19:11 -------- d-----w- c:\program files\SFaxTools
2010-12-11 17:04 . 2010-12-11 17:04 -------- d-----w- c:\program files\HDDGURU LLF Tool

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-12-27 21:35 . 2010-07-27 21:19 3998686 ----a-r- C:\ComboFix.exe
2010-11-29 15:42 . 2010-07-27 22:01 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-11-29 15:42 . 2010-07-27 22:01 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-11-18 18:15 . 2007-04-28 12:06 81920 ----a-w- c:\windows\system32\isign32.dll
2010-11-06 00:25 . 2003-04-16 12:00 832512 ----a-w- c:\windows\system32\wininet.dll
2010-11-06 00:25 . 2007-04-29 09:02 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-11-06 00:25 . 2003-04-16 12:00 1830912 ----a-w- c:\windows\system32\inetcpl.cpl
2010-11-06 00:25 . 2003-04-16 12:00 17408 ----a-w- c:\windows\system32\corpol.dll
2010-11-03 12:25 . 2007-04-29 09:02 389120 ----a-w- c:\windows\system32\html.iec
2010-11-02 20:05 . 2010-11-02 20:05 4608 ----a-w- c:\windows\system32\w95inf32.dll
2010-11-02 20:05 . 2010-11-02 20:05 2272 ----a-w- c:\windows\system32\w95inf16.dll
2010-11-02 19:10 . 2010-11-02 19:10 69632 ----a-r- c:\documents and settings\Peter\Data aplikací\Microsoft\Installer\{D041EB9E-890A-4098-8F94-51DA194AC72A}\SC_ContentTransfer.exe
2010-11-02 19:10 . 2010-11-02 19:10 65536 ----a-r- c:\documents and settings\Peter\Data aplikací\Microsoft\Installer\{D041EB9E-890A-4098-8F94-51DA194AC72A}\SC_ReadMe.exe
2010-11-02 19:10 . 2010-11-02 19:10 45056 ----a-r- c:\documents and settings\Peter\Data aplikací\Microsoft\Installer\{D041EB9E-890A-4098-8F94-51DA194AC72A}\SC_Help_HH.exe
2010-11-02 19:10 . 2010-11-02 19:10 434176 ----a-r- c:\documents and settings\Peter\Data aplikací\Microsoft\Installer\{D041EB9E-890A-4098-8F94-51DA194AC72A}\SC_GuidedTour.exe
2010-11-02 19:10 . 2010-11-02 19:10 69632 ----a-r- c:\documents and settings\Peter\Data aplikací\Microsoft\Installer\{D041EB9E-890A-4098-8F94-51DA194AC72A}\Studio.exe
2010-11-02 19:10 . 2010-11-02 19:10 49152 ----a-r- c:\documents and settings\Peter\Data aplikací\Microsoft\Installer\{D041EB9E-890A-4098-8F94-51DA194AC72A}\SC_Check3D.exe
2010-11-02 19:10 . 2010-11-02 19:10 40960 ----a-r- c:\documents and settings\Peter\Data aplikací\Microsoft\Installer\{D041EB9E-890A-4098-8F94-51DA194AC72A}\SC_AMCap.exe
2010-11-02 15:17 . 2003-04-16 12:00 40960 ----a-w- c:\windows\system32\drivers\ndproxy.sys
2010-10-28 13:09 . 2003-04-16 12:00 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-10-26 13:58 . 2003-04-16 12:00 1853312 ----a-w- c:\windows\system32\win32k.sys
.

((((((((((((((((((((((((((((( SnapShot_2010-12-01_00.09.29 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-12-29 16:47 . 2010-12-29 16:47 16384 c:\windows\temp\Perflib_Perfdata_674.dat
+ 2010-12-29 16:50 . 2010-12-29 16:50 16384 c:\windows\temp\Perflib_Perfdata_184.dat
- 2007-01-29 08:58 . 2010-06-21 14:46 46080 c:\windows\system32\tzchange.exe
+ 2007-01-29 08:58 . 2010-11-03 13:12 46080 c:\windows\system32\tzchange.exe
+ 2003-04-16 12:00 . 2010-11-06 00:25 44544 c:\windows\system32\pngfilt.dll
- 2003-04-16 12:00 . 2010-09-09 13:34 44544 c:\windows\system32\pngfilt.dll
+ 2003-04-16 12:00 . 2010-12-11 13:34 93370 c:\windows\system32\perfc009.dat
+ 2006-11-07 19:03 . 2010-11-06 00:25 52224 c:\windows\system32\msfeedsbs.dll
- 2006-11-07 19:03 . 2010-09-09 13:34 52224 c:\windows\system32\msfeedsbs.dll
- 2003-04-16 12:00 . 2010-09-09 13:34 27648 c:\windows\system32\jsproxy.dll
+ 2003-04-16 12:00 . 2010-11-06 00:25 27648 c:\windows\system32\jsproxy.dll
- 2006-11-07 01:26 . 2010-09-08 15:57 13824 c:\windows\system32\ieudinit.exe
+ 2006-11-07 01:26 . 2010-11-03 12:24 13824 c:\windows\system32\ieudinit.exe
+ 2003-04-16 12:00 . 2010-11-06 00:25 44544 c:\windows\system32\iernonce.dll
- 2003-04-16 12:00 . 2010-09-09 13:34 44544 c:\windows\system32\iernonce.dll
+ 2003-04-16 12:00 . 2010-11-03 12:24 70656 c:\windows\system32\ie4uinit.exe
- 2003-04-16 12:00 . 2010-09-08 15:57 70656 c:\windows\system32\ie4uinit.exe
- 2006-10-17 09:58 . 2010-09-09 13:34 63488 c:\windows\system32\icardie.dll
+ 2006-10-17 09:58 . 2010-11-06 00:25 63488 c:\windows\system32\icardie.dll
+ 2007-08-13 16:36 . 2010-11-06 00:25 44544 c:\windows\system32\dllcache\pngfilt.dll
- 2007-08-13 16:36 . 2010-09-09 13:34 44544 c:\windows\system32\dllcache\pngfilt.dll
- 2009-01-01 23:06 . 2010-09-09 13:34 52224 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2009-01-01 23:06 . 2010-11-06 00:25 52224 c:\windows\system32\dllcache\msfeedsbs.dll
- 2007-08-13 16:54 . 2010-09-09 13:34 27648 c:\windows\system32\dllcache\jsproxy.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 27648 c:\windows\system32\dllcache\jsproxy.dll
+ 2010-11-18 18:15 . 2010-11-18 18:15 81920 c:\windows\system32\dllcache\isign32.dll
+ 2009-01-01 23:06 . 2010-11-03 12:24 13824 c:\windows\system32\dllcache\ieudinit.exe
- 2009-01-01 23:06 . 2010-09-08 15:57 13824 c:\windows\system32\dllcache\ieudinit.exe
+ 2007-08-13 16:39 . 2010-11-06 00:25 44544 c:\windows\system32\dllcache\iernonce.dll
- 2007-08-13 16:39 . 2010-09-09 13:34 44544 c:\windows\system32\dllcache\iernonce.dll
- 2007-08-13 16:45 . 2010-09-09 13:34 78336 c:\windows\system32\dllcache\ieencode.dll
+ 2007-08-13 16:45 . 2010-11-06 00:25 78336 c:\windows\system32\dllcache\ieencode.dll
+ 2007-08-13 16:39 . 2010-11-03 12:24 70656 c:\windows\system32\dllcache\ie4uinit.exe
- 2007-08-13 16:39 . 2010-09-08 15:57 70656 c:\windows\system32\dllcache\ie4uinit.exe
- 2009-01-01 23:06 . 2010-09-09 13:34 63488 c:\windows\system32\dllcache\icardie.dll
+ 2009-01-01 23:06 . 2010-11-06 00:25 63488 c:\windows\system32\dllcache\icardie.dll
+ 2007-08-13 16:42 . 2010-11-06 00:25 17408 c:\windows\system32\dllcache\corpol.dll
- 2007-08-13 16:42 . 2010-09-09 13:34 17408 c:\windows\system32\dllcache\corpol.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 44544 c:\windows\ie7updates\KB2416400-IE7\pngfilt.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 52224 c:\windows\ie7updates\KB2416400-IE7\msfeedsbs.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 27648 c:\windows\ie7updates\KB2416400-IE7\jsproxy.dll
+ 2010-12-17 02:04 . 2010-09-08 15:57 13824 c:\windows\ie7updates\KB2416400-IE7\ieudinit.exe
+ 2010-12-17 02:04 . 2010-09-09 13:34 44544 c:\windows\ie7updates\KB2416400-IE7\iernonce.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 78336 c:\windows\ie7updates\KB2416400-IE7\ieencode.dll
+ 2010-12-17 02:04 . 2010-09-08 15:57 70656 c:\windows\ie7updates\KB2416400-IE7\ie4uinit.exe
+ 2010-12-17 02:04 . 2010-09-09 13:34 63488 c:\windows\ie7updates\KB2416400-IE7\icardie.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 17408 c:\windows\ie7updates\KB2416400-IE7\corpol.dll
- 2003-04-16 12:00 . 2010-09-09 13:34 233472 c:\windows\system32\webcheck.dll
+ 2003-04-16 12:00 . 2010-11-06 00:25 233472 c:\windows\system32\webcheck.dll
+ 2003-04-16 12:00 . 2010-11-06 00:25 105984 c:\windows\system32\url.dll
- 2003-04-16 12:00 . 2010-09-09 13:34 105984 c:\windows\system32\url.dll
+ 2003-04-16 12:00 . 2010-12-11 13:34 501488 c:\windows\system32\perfh009.dat
+ 2003-04-16 12:00 . 2010-12-11 13:34 498154 c:\windows\system32\perfh005.dat
+ 2003-04-16 12:00 . 2010-12-11 13:34 104306 c:\windows\system32\perfc005.dat
- 2003-04-16 12:00 . 2010-09-09 13:34 102912 c:\windows\system32\occache.dll
+ 2003-04-16 12:00 . 2010-11-06 00:25 102912 c:\windows\system32\occache.dll
+ 2003-04-16 12:00 . 2010-11-06 00:25 671232 c:\windows\system32\mstime.dll
- 2003-04-16 12:00 . 2010-09-09 13:34 671232 c:\windows\system32\mstime.dll
- 2003-04-16 12:00 . 2010-09-09 13:34 193024 c:\windows\system32\msrating.dll
+ 2003-04-16 12:00 . 2010-11-06 00:25 193024 c:\windows\system32\msrating.dll
- 2003-04-16 12:00 . 2010-09-09 13:34 478208 c:\windows\system32\mshtmled.dll
+ 2003-04-16 12:00 . 2010-11-06 00:25 478208 c:\windows\system32\mshtmled.dll
+ 2006-11-07 19:03 . 2010-11-06 00:25 468480 c:\windows\system32\msfeeds.dll
- 2006-11-07 19:03 . 2010-09-09 13:34 468480 c:\windows\system32\msfeeds.dll
+ 2006-10-17 09:57 . 2010-11-06 00:25 268288 c:\windows\system32\iertutil.dll
- 2006-10-17 09:57 . 2010-09-09 13:34 268288 c:\windows\system32\iertutil.dll
- 2003-04-16 12:00 . 2010-09-09 13:34 192512 c:\windows\system32\iepeers.dll
+ 2003-04-16 12:00 . 2010-11-06 00:25 192512 c:\windows\system32\iepeers.dll
+ 2003-04-16 12:00 . 2010-11-06 00:25 384512 c:\windows\system32\iedkcs32.dll
- 2003-04-16 12:00 . 2010-09-09 13:34 384512 c:\windows\system32\iedkcs32.dll
+ 2006-10-17 09:27 . 2010-11-06 00:25 380928 c:\windows\system32\ieapfltr.dll
- 2006-10-17 09:27 . 2010-09-09 13:34 380928 c:\windows\system32\ieapfltr.dll
+ 2003-04-16 12:00 . 2010-10-18 11:06 161792 c:\windows\system32\ieakui.dll
- 2003-04-16 12:00 . 2010-08-25 11:29 161792 c:\windows\system32\ieakui.dll
+ 2003-04-16 12:00 . 2010-11-06 00:25 230400 c:\windows\system32\ieaksie.dll
- 2003-04-16 12:00 . 2010-09-09 13:34 230400 c:\windows\system32\ieaksie.dll
+ 2003-04-16 12:00 . 2010-11-06 00:25 153088 c:\windows\system32\ieakeng.dll
- 2003-04-16 12:00 . 2010-09-09 13:34 153088 c:\windows\system32\ieakeng.dll
+ 2007-04-29 09:02 . 2010-11-06 00:25 133120 c:\windows\system32\extmgr.dll
- 2007-04-29 09:02 . 2010-09-09 13:34 133120 c:\windows\system32\extmgr.dll
+ 2003-04-16 12:00 . 2010-11-06 00:25 214528 c:\windows\system32\dxtrans.dll
- 2003-04-16 12:00 . 2010-09-09 13:34 214528 c:\windows\system32\dxtrans.dll
+ 2003-04-16 12:00 . 2010-11-06 00:25 347136 c:\windows\system32\dxtmsft.dll
- 2003-04-16 12:00 . 2010-09-09 13:34 347136 c:\windows\system32\dxtmsft.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 832512 c:\windows\system32\dllcache\wininet.dll
- 2007-08-13 16:54 . 2010-09-09 13:34 832512 c:\windows\system32\dllcache\wininet.dll
- 2007-08-13 16:54 . 2010-09-09 13:34 233472 c:\windows\system32\dllcache\webcheck.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 233472 c:\windows\system32\dllcache\webcheck.dll
- 2007-08-13 16:44 . 2010-09-09 13:34 105984 c:\windows\system32\dllcache\url.dll
+ 2007-08-13 16:44 . 2010-11-06 00:25 105984 c:\windows\system32\dllcache\url.dll
- 2007-08-13 16:44 . 2010-09-09 13:34 102912 c:\windows\system32\dllcache\occache.dll
+ 2007-08-13 16:44 . 2010-11-06 00:25 102912 c:\windows\system32\dllcache\occache.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 671232 c:\windows\system32\dllcache\mstime.dll
- 2007-08-13 16:54 . 2010-09-09 13:34 671232 c:\windows\system32\dllcache\mstime.dll
+ 2007-08-13 16:44 . 2010-11-06 00:25 193024 c:\windows\system32\dllcache\msrating.dll
- 2007-08-13 16:44 . 2010-09-09 13:34 193024 c:\windows\system32\dllcache\msrating.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 478208 c:\windows\system32\dllcache\mshtmled.dll
- 2007-08-13 16:54 . 2010-09-09 13:34 478208 c:\windows\system32\dllcache\mshtmled.dll
- 2009-01-01 23:06 . 2010-09-09 13:34 468480 c:\windows\system32\dllcache\msfeeds.dll
+ 2009-01-01 23:06 . 2010-11-06 00:25 468480 c:\windows\system32\dllcache\msfeeds.dll
+ 2007-08-13 16:43 . 2010-10-18 11:07 634648 c:\windows\system32\dllcache\iexplore.exe
- 2007-08-13 16:43 . 2010-08-25 11:30 634648 c:\windows\system32\dllcache\iexplore.exe
+ 2009-01-01 23:06 . 2010-11-06 00:25 268288 c:\windows\system32\dllcache\iertutil.dll
- 2009-01-01 23:06 . 2010-09-09 13:34 268288 c:\windows\system32\dllcache\iertutil.dll
- 2007-08-13 16:54 . 2010-09-09 13:34 192512 c:\windows\system32\dllcache\iepeers.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 192512 c:\windows\system32\dllcache\iepeers.dll
- 2007-08-13 16:39 . 2010-09-09 13:34 384512 c:\windows\system32\dllcache\iedkcs32.dll
+ 2007-08-13 16:39 . 2010-11-06 00:25 384512 c:\windows\system32\dllcache\iedkcs32.dll
+ 2009-01-01 23:06 . 2010-11-06 00:25 380928 c:\windows\system32\dllcache\ieapfltr.dll
- 2009-01-01 23:06 . 2010-09-09 13:34 380928 c:\windows\system32\dllcache\ieapfltr.dll
- 2003-04-16 12:00 . 2010-08-25 11:29 161792 c:\windows\system32\dllcache\ieakui.dll
+ 2003-04-16 12:00 . 2010-10-18 11:06 161792 c:\windows\system32\dllcache\ieakui.dll
+ 2007-08-13 16:39 . 2010-11-06 00:25 230400 c:\windows\system32\dllcache\ieaksie.dll
- 2007-08-13 16:39 . 2010-09-09 13:34 230400 c:\windows\system32\dllcache\ieaksie.dll
- 2007-08-13 16:39 . 2010-09-09 13:34 153088 c:\windows\system32\dllcache\ieakeng.dll
+ 2007-08-13 16:39 . 2010-11-06 00:25 153088 c:\windows\system32\dllcache\ieakeng.dll
- 2007-08-13 16:54 . 2010-09-09 13:34 133120 c:\windows\system32\dllcache\extmgr.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 133120 c:\windows\system32\dllcache\extmgr.dll
+ 2007-08-13 16:35 . 2010-11-06 00:25 214528 c:\windows\system32\dllcache\dxtrans.dll
- 2007-08-13 16:35 . 2010-09-09 13:34 214528 c:\windows\system32\dllcache\dxtrans.dll
+ 2007-08-13 16:35 . 2010-11-06 00:25 347136 c:\windows\system32\dllcache\dxtmsft.dll
- 2007-08-13 16:35 . 2010-09-09 13:34 347136 c:\windows\system32\dllcache\dxtmsft.dll
+ 2010-04-20 05:32 . 2010-10-28 13:09 290048 c:\windows\system32\dllcache\atmfd.dll
+ 2007-08-13 16:39 . 2010-11-06 00:25 124928 c:\windows\system32\dllcache\advpack.dll
- 2007-08-13 16:39 . 2010-09-09 13:34 124928 c:\windows\system32\dllcache\advpack.dll
+ 2003-04-16 12:00 . 2010-11-06 00:25 124928 c:\windows\system32\advpack.dll
- 2003-04-16 12:00 . 2010-09-09 13:34 124928 c:\windows\system32\advpack.dll
+ 2010-12-29 16:41 . 2010-12-23 10:33 234496 c:\windows\PCHealth\HelpCtr\Config\Cache\Professional_32_1029.dat
+ 2010-12-17 02:04 . 2010-09-09 13:34 832512 c:\windows\ie7updates\KB2416400-IE7\wininet.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 233472 c:\windows\ie7updates\KB2416400-IE7\webcheck.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 105984 c:\windows\ie7updates\KB2416400-IE7\url.dll
+ 2010-12-17 02:04 . 2010-02-22 14:21 391032 c:\windows\ie7updates\KB2416400-IE7\spuninst\updspapi.dll
+ 2010-12-17 02:04 . 2010-02-22 14:20 233848 c:\windows\ie7updates\KB2416400-IE7\spuninst\spuninst.exe
+ 2010-12-17 02:04 . 2010-09-09 13:34 102912 c:\windows\ie7updates\KB2416400-IE7\occache.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 671232 c:\windows\ie7updates\KB2416400-IE7\mstime.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 193024 c:\windows\ie7updates\KB2416400-IE7\msrating.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 478208 c:\windows\ie7updates\KB2416400-IE7\mshtmled.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 468480 c:\windows\ie7updates\KB2416400-IE7\msfeeds.dll
+ 2010-12-17 02:04 . 2010-08-25 11:30 634648 c:\windows\ie7updates\KB2416400-IE7\iexplore.exe
+ 2010-12-17 02:04 . 2010-09-09 13:34 268288 c:\windows\ie7updates\KB2416400-IE7\iertutil.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 192512 c:\windows\ie7updates\KB2416400-IE7\iepeers.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 384512 c:\windows\ie7updates\KB2416400-IE7\iedkcs32.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 380928 c:\windows\ie7updates\KB2416400-IE7\ieapfltr.dll
+ 2010-12-17 02:04 . 2010-08-25 11:29 161792 c:\windows\ie7updates\KB2416400-IE7\ieakui.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 230400 c:\windows\ie7updates\KB2416400-IE7\ieaksie.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 153088 c:\windows\ie7updates\KB2416400-IE7\ieakeng.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 133120 c:\windows\ie7updates\KB2416400-IE7\extmgr.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 214528 c:\windows\ie7updates\KB2416400-IE7\dxtrans.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 347136 c:\windows\ie7updates\KB2416400-IE7\dxtmsft.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 124928 c:\windows\ie7updates\KB2416400-IE7\advpack.dll
+ 2003-04-16 12:00 . 2010-11-06 00:25 1168384 c:\windows\system32\urlmon.dll
- 2003-04-16 12:00 . 2010-09-09 13:34 1168384 c:\windows\system32\urlmon.dll
+ 2003-04-16 12:00 . 2010-11-06 00:25 3604480 c:\windows\system32\mshtml.dll
+ 2006-11-07 19:03 . 2010-11-06 00:25 6075904 c:\windows\system32\ieframe.dll
- 2006-11-07 19:03 . 2010-09-09 13:34 6075904 c:\windows\system32\ieframe.dll
+ 2007-04-28 13:54 . 2010-12-17 02:22 2399048 c:\windows\system32\FNTCACHE.DAT
+ 2009-01-01 22:58 . 2010-10-26 13:58 1853312 c:\windows\system32\dllcache\win32k.sys
- 2007-08-13 16:54 . 2010-09-09 13:34 1168384 c:\windows\system32\dllcache\urlmon.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 1168384 c:\windows\system32\dllcache\urlmon.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 3604480 c:\windows\system32\dllcache\mshtml.dll
- 2009-01-01 23:06 . 2010-09-09 13:34 6075904 c:\windows\system32\dllcache\ieframe.dll
+ 2009-01-01 23:06 . 2010-11-06 00:25 6075904 c:\windows\system32\dllcache\ieframe.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 1168384 c:\windows\ie7updates\KB2416400-IE7\urlmon.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 3601920 c:\windows\ie7updates\KB2416400-IE7\mshtml.dll
+ 2010-12-17 02:04 . 2010-09-09 13:34 6075904 c:\windows\ie7updates\KB2416400-IE7\ieframe.dll
+ 2007-04-29 10:20 . 2010-12-17 02:01 37366216 c:\windows\system32\MRT.exe
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{40DC3121-3B86-4BBF-99BE-67AB90E35DC3}"= "c:\program files\BRapid\RS Tool\RSToolbar.dll" [2008-09-30 710144]

[HKEY_CLASSES_ROOT\clsid\{40dc3121-3b86-4bbf-99be-67ab90e35dc3}]
[HKEY_CLASSES_ROOT\KBBar.KBBarBand.1]
[HKEY_CLASSES_ROOT\TypeLib\{5437E643-E709-4A8C-9BF6-E441F090E050}]
[HKEY_CLASSES_ROOT\KBBar.KBBarBand]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Creative Live! Cam Manager"="c:\program files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe" [2007-05-02 151552]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2010-05-14 1479680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-05-27 413696]
"PinnacleDriverCheck"="c:\windows\system32\PSDrvCheck.exe" [2004-03-10 406016]
"nwiz"="nwiz.exe" [2006-10-22 1622016]
"NvMediaCenter"="c:\windows\System32\NvMcTray.dll" [2006-10-22 86016]
"NvCplDaemon"="c:\windows\System32\NvCpl.dll" [2006-10-22 7700480]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2004-06-16 81920]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2010-03-21 149280]
"ISUSPM Startup"="c:\progra~1\common~1\instal~1\update~1\isuspm.exe" [2004-06-16 221184]
"V0470Mon.exe"="c:\windows\V0470Mon.exe" [2007-06-03 32768]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Adobe Gamma Loader.exe.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2008-1-27 113664]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"

[HKLM\~\startupfolder\C:^Documents and Settings^Peter^Nabídka Start^Programy^Po spuštění^AntiVirus Systems.lnk]
backup=c:\windows\pss\AntiVirus Systems.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
2006-11-12 10:48 157592 ----a-w- c:\program files\DAEMON Tools\daemon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
2004-06-16 04:03 221184 ----a-w- c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"idsvc"=3 (0x3)
"IDriverT"=3 (0x3)
"ServiceLayer"=3 (0x3)
"MDM"=2 (0x2)
"ose"=3 (0x3)
"aspnet_state"=3 (0x3)
"WMPNetworkSvc"=3 (0x3)
"WinDefend"=2 (0x2)
"TapiSrv"=3 (0x3)

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe"=
"c:\\Program Files\\Strong\\StrongDC.exe"=
"c:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe"=
"c:\\Program Files\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"=
"c:\\Program Files\\Common Files\\Nokia\\Service Layer\\A\\nsl_host_process.exe"=
"c:\\Program Files\\Strong\\sdc221\\StrongDC.exe"=
"c:\\Program Files\\AVerMedia\\Digital Video Surveillance System\\DVR.exe"=
"c:\\Documents and Settings\\All Users\\Data aplikací\\Kaspersky Lab Setup Files\\Kaspersky Anti-Virus 2009\\English\\setup.exe"=
"c:\\totalcmd\\TOTALCMD.EXE"=
"c:\\Program Files\\SpacialAudio\\SAMBC\\SAMBC.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"=
"c:\\Program Files\\Pinnacle\\Studio 12\\Programs\\RM.exe"=
"c:\\Program Files\\Pinnacle\\Studio 12\\Programs\\Studio.exe"=
"c:\\Program Files\\Pinnacle\\Studio 12\\Programs\\umi.exe"=
"c:\\Program Files\\Western Digital\\WD Discovery Software\\WD Discovery.exe"=
"c:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"13364:UDP"= 13364:UDP:Print Server Utility
"13107:UDP"= 13107:UDP:Print Server Utility
"69:UDP"= 69:UDP:Print Server Utility
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
"5353:TCP"= 5353:TCP:Adobe CSI CS4

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [5.4.2008 22:18 114768]
R1 cdrblock;cdrblock;c:\windows\system32\drivers\cdrblock.sys [10.1.2009 22:34 10368]
R1 cdrport;cdrport;c:\windows\system32\drivers\cdrport.sys [10.1.2009 22:34 4608]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [5.4.2008 22:18 20560]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\Firebird\Firebird_2_1\bin\fbguard.exe [24.11.2009 15:05 81920]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\Firebird\Firebird_2_1\bin\fbserver.exe [24.11.2009 15:05 2723840]
S2 ArgusA;ArgusA;c:\windows\system32\drivers\Di878A.sys [22.1.2008 22:51 38400]
S2 ArgusV;ArgusV;c:\windows\system32\drivers\Di878V.sys [22.1.2008 22:51 67072]
S2 C182XBar;AVerMedia, MPEG Crossbar (88x), Service;c:\windows\system32\drivers\C182XBar.sys [28.4.2007 13:38 6784]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [6.3.2010 17:50 135664]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [6.9.2010 21:10 137344]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [6.9.2010 21:10 8320]
S3 PRODIGY;PRODIGY;c:\windows\system32\drivers\prodigy.sys [25.10.2010 23:01 32377]
S3 vaxscsi;vaxscsi;c:\windows\system32\drivers\vaxscsi.sys [21.2.2009 16:21 223128]
S3 VF0470Vid;Live! Cam Notebook (VF0470);c:\windows\system32\drivers\V0470Vid.sys [30.8.2009 22:03 146720]
S3 yukonx86;NDIS5.1 Miniport Driver for Marvell Yukon Gigabit Ethernet Adapter;c:\windows\system32\drivers\yukonx86.sys [14.9.2008 19:18 176256]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\Microsoft SQL Server\100\Shared\sqladhlp.exe [10.7.2008 16:28 47128]
S4 RsFx0102;RsFx0102 Driver;c:\windows\system32\drivers\RsFx0102.sys [10.7.2008 1:49 242712]
S4 sptd;sptd;c:\windows\system32\drivers\sptd.sys [18.5.2007 15:31 611064]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [10.7.2008 16:28 369688]
.
Obsah adresáře 'Naplánované úlohy'

2010-12-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-06 16:50]

2010-12-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-06 16:50]

2010-12-29 c:\windows\Tasks\User_Feed_Synchronization-{CCA8FD82-364E-43D1-9724-9942B392C758}.job
- c:\windows\system32\msfeedssync.exe [2006-10-17 16:36]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.servis.pvt.sk/
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\progra~1\PCTRAN~1\webie.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\progra~1\PCTRAN~1\webie.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\progra~1\PCTRAN~1\webie.dll
DPF: {98425C13-952B-4459-A742-B1B85BDFF330} - hxxp://live.dss.com.tw/WebCamX.cab
DPF: {C357FE0A-0556-4970-8990-64DF0B8E8C6B}
DPF: {E55FD215-A32E-43FE-A777-A7E8F165F554} - hxxp://data.myflatcast.com/data/objects/NpFv41629.dll
FF - ProfilePath - c:\documents and settings\Peter\Data aplikací\Mozilla\Firefox\Profiles\w0ur79jz.default\
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
FF - Ext: PC Sync 2 Synchronisation Extension: bkmrksync@nokia.com - c:\program files\Nokia\Nokia PC Suite 7\bkmrksync
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-12-29 19:02
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(696)
c:\windows\system32\Ati2evxx.dll
c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
.
Celkový čas: 2010-12-29 19:12:17
ComboFix-quarantined-files.txt 2010-12-29 18:12
ComboFix2.txt 2010-12-01 00:12
ComboFix3.txt 2010-11-04 16:17
ComboFix4.txt 2010-11-02 08:03
ComboFix5.txt 2010-12-29 17:38

Před spuštěním: Volných bajtů: 70 199 988 224
Po spuštění: Volných bajtů: 71 128 477 696

Current=1 Default=1 Failed=0 LastKnownGood=5 Sets=1,2,3,4,5
- - End Of File - - 91487FACBF313DC153E6D27F8E1B4E61

#13 Příspěvek od **motji** » 29 pro 2010 19:29

Tohle znáte?
c:\windows\system32\rzeksfsp.dat
c:\program files\SFaxTools
c:\program files\HDDGURU LLF Tool

Logy se dají rozdělit do více příspěvků

Ted se pc chová jak? Neepamatujete si co našel ten avptool?

peter391 · #14 Příspěvek od **peter391** » 29 pro 2010 19:38

ten prvy zapis netusim druhy zapis pochadza zrejme z programu na faxy nedavno mi posielali fax nemal som cim otvorit zrejme nejaky kratky program z netu treti je tiez podobný program mozno pochadza z poslednej opravy co som robil na jednom disku hddlow level format.v podstate uz ich mozem zlikvidovat ale to prve???
ten log pohladam

peter391 · #15 Příspěvek od **peter391** » 29 pro 2010 19:42

OTL logfile created on: 28.7.2010 12:52:31 - Run 1
OTL by OldTimer - Version 3.2.18.0 Folder = C:\Documents and Settings\Peter\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d.M.yyyy

1 023,00 Mb Total Physical Memory | 285,00 Mb Available Physical Memory | 28,00% Memory free
3,00 Gb Paging File | 1,00 Gb Available in Paging File | 46,00% Paging File free
Paging file location(s): c:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 465,75 Gb Total Space | 60,58 Gb Free Space | 13,01% Space Free | Partition Type: NTFS
Drive I: | 1,87 Gb Total Space | 1,07 Gb Free Space | 57,02% Space Free | Partition Type: FAT
Drive J: | 487,96 Mb Total Space | 461,73 Mb Free Space | 94,63% Space Free | Partition Type: FAT

Computer Name: PC1 | User Name: Peter | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2010.09.29 09:57:46 | 000,616,448 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
PRC - [2010.07.28 12:50:15 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Peter\Plocha\OTL.exe
PRC - [2010.07.28 12:13:42 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\trend micro\Peter.exe
PRC - [2010.06.22 14:22:52 | 000,138,752 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
PRC - [2010.05.14 10:32:30 | 001,479,680 | ---- | M] (Nokia) -- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
PRC - [2010.05.11 11:11:58 | 000,134,144 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrv.exe
PRC - [2009.11.25 01:51:40 | 000,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009.11.25 01:51:35 | 000,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009.11.25 01:43:56 | 000,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009.10.27 10:15:02 | 000,120,832 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
PRC - [2008.07.07 08:15:18 | 000,611,664 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
PRC - [2008.06.13 15:24:02 | 000,081,920 | ---- | M] (Firebird Project) -- C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe
PRC - [2008.06.13 15:22:50 | 002,723,840 | ---- | M] (Firebird Project) -- C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe
PRC - [2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.06.04 01:01:00 | 000,032,768 | ---- | M] (Creative Technology Ltd.) -- C:\WINDOWS\V0470Mon.exe
PRC - [2007.05.02 10:30:20 | 000,151,552 | ---- | M] (Creative Technology Ltd.) -- C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe
PRC - [2006.11.13 16:50:20 | 001,289,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\wcescomm.exe
PRC - [2004.06.16 06:03:04 | 000,081,920 | ---- | M] (InstallShield Software Corporation) -- C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe

========== Modules (SafeList) ==========

MOD - [2010.08.23 18:12:33 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2010.07.28 12:50:15 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Peter\Plocha\OTL.exe
MOD - [2009.11.25 01:50:32 | 000,139,264 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\AhJsctNs.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - [2010.09.29 09:57:46 | 000,616,448 | ---- | M] (Nokia) [On_Demand | Running] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010.01.02 15:30:04 | 000,867,080 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009.11.25 01:51:35 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV - [2009.11.25 01:51:21 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Stopped] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2009.11.25 01:48:48 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Stopped] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2009.11.25 01:43:56 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV - [2008.07.07 08:15:18 | 000,611,664 | ---- | M] (Lavasoft) [Auto | Running] -- C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe -- (aawservice)
SRV - [2008.06.13 15:24:02 | 000,081,920 | ---- | M] (Firebird Project) [Auto | Running] -- C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe -- (FirebirdGuardianDefaultInstance)
SRV - [2008.06.13 15:22:50 | 002,723,840 | ---- | M] (Firebird Project) [On_Demand | Running] -- C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe -- (FirebirdServerDefaultInstance)
SRV - [2005.11.14 02:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [Disabled | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\RTL8029.SYS -- (rtl8029) Realtek RTL8029(AS)
DRV - File not found [Kernel | On_Demand | Stopped] -- K:\INSTALL\GMSIPCI.SYS -- (GMSIPCI)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Peter\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - [2010.02.26 14:32:58 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010.02.26 14:32:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010.02.26 14:32:44 | 000,022,528 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010.02.26 14:32:44 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2010.02.26 14:21:22 | 000,137,344 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2010.02.26 14:21:22 | 000,008,320 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
DRV - [2009.11.25 01:50:59 | 000,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2009.11.25 01:50:12 | 000,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2009.11.25 01:50:00 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2009.11.25 01:49:07 | 000,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2009.11.25 01:48:57 | 000,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2009.11.25 01:47:54 | 000,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2009.02.21 17:21:26 | 000,223,128 | ---- | M] (Alcohol Soft Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\vaxscsi.sys -- (vaxscsi)
DRV - [2009.02.21 17:17:44 | 000,611,064 | ---- | M] (Duplex Secure Ltd.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2008.08.26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.08.14 08:57:42 | 000,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\adfs.sys -- (adfs)
DRV - [2008.07.10 02:49:14 | 000,242,712 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\RsFx0102.sys -- (RsFx0102)
DRV - [2008.04.14 00:15:14 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Ovladač zvukové karty USB (WDM)
DRV - [2007.05.18 16:43:58 | 000,271,360 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2007.05.18 16:43:58 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2007.05.09 01:00:00 | 000,146,720 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\V0470Vid.sys -- (VF0470Vid) Live! Cam Notebook (VF0470)
DRV - [2007.04.28 14:38:26 | 000,306,944 | ---- | M] (AVerMedia Technologies, Inc.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\A88xEnc.sys -- (A88xEnc)
DRV - [2007.04.28 14:38:26 | 000,251,904 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\A88xVCap.sys -- (AVerTV) AVerMedia MPEG Video Capture (EZMaker)
DRV - [2007.04.28 14:38:26 | 000,011,264 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\A88xaud.sys -- (CX88AUD)
DRV - [2007.04.28 14:38:26 | 000,006,784 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\C182XBar.sys -- (C182XBar) AVerMedia, MPEG Crossbar (88x)
DRV - [2006.12.17 04:50:30 | 001,918,464 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2006.12.14 10:44:06 | 000,085,120 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2006.10.22 12:22:00 | 003,994,624 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2006.08.29 16:56:20 | 000,032,377 | ---- | M] (B-phreaks) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\prodigy.sys -- (PRODIGY)
DRV - [2005.09.29 19:01:51 | 000,066,048 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2005.09.24 00:18:32 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\MarvinBus.sys -- (MarvinBus)
DRV - [2005.08.10 16:06:28 | 000,019,968 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2005.08.10 14:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005.08.04 12:10:38 | 000,067,072 | ---- | M] (Di878) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\Di878V.sys -- (ArgusV)
DRV - [2005.08.04 12:10:38 | 000,038,400 | ---- | M] (Di878) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\Di878A.sys -- (ArgusA)
DRV - [2005.07.28 09:18:40 | 000,685,056 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (Hardlock)
DRV - [2005.06.14 19:34:12 | 000,010,368 | ---- | M] (Canopus Co,. Ltd.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\cdrblock.sys -- (cdrblock)
DRV - [2005.05.16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2005.03.11 17:28:30 | 000,004,608 | ---- | M] (Canopus Co,. Ltd.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\cdrport.sys -- (cdrport)
DRV - [2004.03.10 17:27:18 | 000,011,264 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\asapiW2k.sys -- (ASAPIW2k)
DRV - [2003.12.23 00:32:00 | 000,176,256 | ---- | M] (Marvell Semiconductor Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\yukonx86.sys -- (yukonx86)
DRV - [2003.05.19 13:21:19 | 000,012,800 | ---- | M] (SiSoftware) [Kernel | On_Demand | Stopped] -- C:\Program Files\SiSoftware\SiSoftware Sandra Professional\sandra.sys -- (SANDRA)
DRV - [2003.03.14 13:18:30 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\PQNTDRV.sys -- (PQNTDrv)
DRV - [2002.10.01 10:22:32 | 000,009,856 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-746137067-299502267-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.servis.pvt.sk/
IE - HKU\S-1-5-21-746137067-299502267-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: bkmrksync@nokia.com:1.0.0.733

FF - HKLM\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2010.10.26 00:14:41 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.12.20 21:51:14 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.12.20 21:51:14 | 000,000,000 | ---D | M]

[2009.03.04 21:01:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Peter\Data aplikací\Mozilla\Extensions
[2010.07.27 23:06:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Peter\Data aplikací\Mozilla\Firefox\Profiles\w0ur79jz.default\extensions
[2009.12.03 22:08:58 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Peter\Data aplikací\Mozilla\Firefox\Profiles\w0ur79jz.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.12.20 22:01:35 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2007.02.04 23:02:56 | 001,642,496 | ---- | M] (LizardTech) -- C:\Program Files\Mozilla Firefox\plugins\npdjvu.dll
[2010.12.20 21:51:05 | 000,001,583 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\atlas-sk.xml
[2010.12.20 21:51:05 | 000,001,380 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\azet-sk.xml
[2010.12.20 21:51:05 | 000,001,479 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\dunaj-sk.xml
[2010.12.20 21:51:05 | 000,001,104 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-sk.xml
[2010.12.20 21:51:05 | 000,000,830 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\zoznam-sk.xml

O1 HOSTS File: ([2010.12.01 02:09:20 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (RSToolbar) - {40DC3121-3B86-4BBF-99BE-67AB90E35DC3} - C:\Program Files\BRapid\RS Tool\RSToolbar.dll (BRapid)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Program Files\PC Translator\webie.dll ()
O3 - HKU\S-1-5-21-746137067-299502267-682003330-1003\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [ISUSPM Startup] c:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe ()
O4 - HKLM..\Run: [V0470Mon.exe] C:\WINDOWS\V0470Mon.exe (Creative Technology Ltd.)
O4 - HKU\S-1-5-21-746137067-299502267-682003330-1003..\Run: [Creative Live! Cam Manager] C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe (Creative Technology Ltd.)
O4 - HKU\S-1-5-21-746137067-299502267-682003330-1003..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-746137067-299502267-682003330-1003..\Run: [PC Suite Tray] C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Gamma Loader.exe.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-746137067-299502267-682003330-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-746137067-299502267-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-746137067-299502267-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-746137067-299502267-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Vytvořit mobilní oblíbenou položku… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: WebTran - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Program Files\PC Translator\webie.dll ()
O9 - Extra 'Tools' menuitem : &Nastaviť prekladač - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Program Files\PC Translator\webie.dll ()
O9 - Extra 'Tools' menuitem : Preložiť &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Program Files\PC Translator\webie.dll ()
O9 - Extra 'Tools' menuitem : Preložiť &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Program Files\PC Translator\webie.dll ()
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (InterTrust Technologies Corporation, Inc.)
O16 - DPF: {00000161-0000-0010-8000-00AA00389B71} http://codecs.microsoft.com/codecs/i386/msaudio.cab (Reg Error: Key error.)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlcdnet.asus.com/pub/ASUS/misc/d ... .2.5.0.cab (DLM Control)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/windows ... 0849267562 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {98425C13-952B-4459-A742-B1B85BDFF330} http://live.dss.com.tw/WebCamX.cab (WebCamX Control)
O16 - DPF: {C357FE0A-0556-4970-8990-64DF0B8E8C6B} Reg Error: Value error. (WebCamX Control)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {E55FD215-A32E-43FE-A777-A7E8F165F554} http://data.myflatcast.com/data/objects/NpFv41629.dll (Flatcast Viewer 4.16)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 80.242.44.36 80.242.44.85
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Peter\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Peter\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007.10.03 18:23:59 | 000,000,050 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009.11.01 20:36:44 | 000,000,511 | ---- | M] () - I:\autorun.inf -- [ FAT ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (lsdelete) - C:\WINDOWS\System32\lsdelete.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: HidServ - C:\WINDOWS\System32\hidserv.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.mjpg - C:\WINDOWS\System32\pvmjpg30.dll (Pegasus Imaging Corporation)
Drivers32: VIDC.WMV3 - C:\WINDOWS\System32\wmv9vcm.dll (Microsoft Corporation)
Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (56308606093492224)

========== Files/Folders - Created Within 30 Days ==========

[2010.12.16 09:44:03 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys
[2010.12.16 09:43:00 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2010.12.13 21:11:39 | 000,000,000 | ---D | C] -- C:\Program Files\SFaxTools
[2010.12.11 19:04:22 | 000,000,000 | ---D | C] -- C:\Program Files\HDDGURU LLF Tool
[2010.12.11 16:30:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Plocha\TOSHIBA
[2010.12.11 15:46:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Plocha\usb
[2010.12.02 13:07:24 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010.11.29 18:43:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Plocha\Tatry_2010oficial
[2010.11.20 19:27:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\misha
[2010.11.18 20:15:47 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isign32.dll
[2010.11.15 13:52:28 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe Media Player
[2010.11.15 13:49:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2010.11.13 01:41:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Plocha\mecar
[2010.11.06 23:26:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Plocha\new_2010
[2010.11.06 21:26:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Plocha\Tatry_new
[2010.11.02 22:05:39 | 000,140,800 | ---- | C] (The Duck Corporation) -- C:\WINDOWS\System32\tm20dec.ax
[2010.11.02 22:05:39 | 000,038,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LMRTREND.dll
[2010.11.02 22:05:38 | 000,182,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtmsft3.dll
[2010.11.02 22:05:31 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\unam4ie.exe
[2010.11.02 22:05:28 | 000,194,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcut.dll
[2010.11.02 22:05:28 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mciqtz.drv
[2010.11.02 22:05:27 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\w95inf32.dll
[2010.11.02 22:05:27 | 000,002,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\w95inf16.dll
[2010.11.02 22:04:58 | 000,163,840 | ---- | C] (ArcSoft Inc.) -- C:\WINDOWS\System32\PhotoImpression Screen Saver.scr
[2010.11.02 21:16:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Data aplikací\proDAD
[2010.11.02 21:16:28 | 000,000,000 | ---D | C] -- C:\Program Files\proDAD
[2010.11.02 21:16:21 | 000,000,000 | ---D | C] -- C:\Program Files\LooksBuilderSE
[2010.11.02 21:15:40 | 000,069,632 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\MtxPreview.dll
[2010.11.02 21:15:40 | 000,049,152 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\MtxParhBFXPreview.dll
[2010.11.02 21:15:40 | 000,049,152 | ---- | C] (Canopus Co., Ltd.) -- C:\WINDOWS\System32\CvoAPI.dll
[2010.11.02 21:14:35 | 000,000,000 | ---D | C] -- C:\Program Files\Boris FX, Inc
[2010.11.02 21:12:39 | 000,171,520 | ---- | C] (Pinnacle Systems GmbH) -- C:\WINDOWS\System32\drivers\MarvinBus.sys
[2010.11.02 21:12:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Pinnacle
[2010.11.02 21:12:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Local Settings\Data aplikací\Downloaded Installations
[2010.11.02 21:12:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle Studio Ultimate
[2010.11.02 21:12:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikac
[2010.11.02 21:07:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Yahoo!
[2010.11.02 21:07:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Studio 12
[2010.11.02 21:07:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle Studio Plus
[2010.11.02 21:07:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Pinnacle
[2010.11.02 21:07:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\My Projects
[2010.10.31 18:21:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Plocha\Tatry2010
[2010.10.26 00:14:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PCSuite
[2010.10.26 00:01:49 | 000,032,377 | ---- | C] (B-phreaks) -- C:\WINDOWS\System32\drivers\prodigy.sys
[2010.10.26 00:01:43 | 000,000,000 | ---D | C] -- C:\Program Files\NSS
[2010.10.25 23:49:04 | 000,018,816 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys
[2010.10.25 23:48:52 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
[2010.10.25 21:58:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikacĂ
[2010.10.25 21:57:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Dokumenty\Ovi
[2010.10.25 21:51:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Local Settings\Data aplikací\NokiaAccount
[2010.10.25 21:51:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Local Settings\Data aplikací\Nokia
[2010.10.25 21:46:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\NokiaInstallerCache
[2010.10.13 08:52:11 | 000,974,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll
[2010.10.13 08:52:11 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll
[2010.10.13 08:51:32 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll
[2010.10.05 21:42:30 | 000,000,000 | ---D | C] -- C:\Program Files\Sygic Assistant
[2010.10.01 10:08:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Plocha\Tatramat
[2010.09.26 18:39:43 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irftp.exe
[2010.09.26 18:39:43 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irftp.exe
[2010.09.26 18:39:43 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irmon.dll
[2010.09.26 18:39:42 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wshirda.dll
[2010.09.26 18:39:42 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wshirda.dll
[2010.09.24 20:37:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Data aplikací\WD
[2010.09.24 20:37:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ServiceTest
[2010.09.24 20:37:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\eSellerate
[2010.09.24 19:48:57 | 000,000,000 | ---D | C] -- C:\Program Files\DVD Shrink
[2010.09.18 17:50:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Data aplikací\NeroDigital(TM)
[2010.09.18 12:23:38 | 000,974,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42u.dll
[2010.09.17 18:05:55 | 000,000,000 | ---D | C] -- C:\Program Files\Western Digital
[2010.09.17 18:04:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Dokumenty\wdc
[2010.09.06 22:10:04 | 000,137,344 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\nmwcdnsu.sys
[2010.09.06 22:10:04 | 000,008,320 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\nmwcdnsuc.sys
[2010.09.06 22:10:03 | 000,008,192 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\usbser_lowerfltj.sys
[2010.09.06 22:10:02 | 000,008,192 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\usbser_lowerflt.sys
[2010.09.06 22:10:01 | 000,022,528 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmbo.sys
[2010.09.06 22:10:00 | 001,461,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfcoinstaller01009.dll
[2010.09.06 22:10:00 | 000,662,016 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcocls.dll
[2010.09.06 22:10:00 | 000,018,176 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmb.sys
[2010.08.27 07:54:10 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srvsvc.dll
[2010.08.17 15:17:06 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spoolsv.exe
[2010.08.15 18:43:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Plocha\pista
[2010.08.07 19:50:50 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\foto
[2010.08.03 14:27:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Plocha\chladenie
[2010.07.28 12:50:15 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Peter\Plocha\OTL.exe
[2010.07.28 12:13:40 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010.07.28 12:13:40 | 000,000,000 | ---D | C] -- C:\rsit
[2010.07.28 00:01:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Data aplikací\Malwarebytes
[2010.07.28 00:01:11 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.07.28 00:01:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2010.07.28 00:01:00 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.07.28 00:00:59 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010.07.27 23:54:51 | 007,622,112 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Peter\Plocha\mbam-setup-1.50.0.0.exe
[2010.07.25 18:14:16 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010.07.16 14:00:53 | 001,287,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ole32.dll
[2010.07.14 16:38:50 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2010.07.04 19:54:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Local Settings\Data aplikací\RapidSharing.eu
[2007.06.29 15:07:34 | 000,018,944 | ---- | C] ( ) -- C:\WINDOWS\System32\implode.dll
[10 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010.12.27 23:44:56 | 000,000,422 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{CCA8FD82-364E-43D1-9724-9942B392C758}.job
[2010.12.27 23:42:37 | 000,000,483 | ---- | M] () -- C:\Documents and Settings\Peter\Dokumenty\Zástupce - ComboFix.exe.lnk
[2010.12.27 23:35:10 | 003,998,686 | R--- | M] () -- C:\ComboFix.exe
[2010.12.27 20:11:00 | 000,000,998 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.12.27 14:35:20 | 000,013,030 | ---- | M] () -- C:\PDOXUSRS.NET
[2010.12.25 16:56:01 | 000,001,307 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\MyBookWorld (172.16.0.5).lnk
[2010.12.24 13:59:31 | 000,054,141 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\Vianoce.jpg
[2010.12.24 13:46:35 | 000,043,048 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\20835.jpg
[2010.12.23 00:38:55 | 000,001,742 | -H-- | M] () -- C:\Documents and Settings\Peter\Dokumenty\Default.rdp
[2010.12.23 00:07:35 | 000,000,443 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\MyBookWorld (172.16.0.8).lnk
[2010.12.22 10:41:56 | 000,517,854 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\quadriga.pdf
[2010.12.21 20:23:30 | 009,897,736 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\f1e4a985aa36225d4f52e0010cde3013[1].mp4
[2010.12.21 00:13:24 | 000,004,733 | ---- | M] () -- C:\WINDOWS\wdict32.INI
[2010.12.17 04:22:32 | 002,399,048 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.12.17 04:05:40 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010.12.16 10:10:55 | 002,432,680 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\TSSL.pdf
[2010.12.15 22:45:45 | 000,231,936 | ---- | M] () -- C:\Documents and Settings\Peter\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.12.15 18:28:20 | 000,001,200 | ---- | M] () -- C:\WINDOWS\System32\rzeksfsp.dat
[2010.12.12 20:14:04 | 000,000,229 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.12.11 19:04:22 | 000,000,668 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\Hard Disk Low Level Format Tool.lnk
[2010.12.11 15:34:11 | 000,501,488 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.12.11 15:34:11 | 000,498,154 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.12.11 15:34:11 | 000,104,306 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.12.11 15:34:11 | 000,093,370 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.12.03 10:17:03 | 000,000,737 | ---- | M] () -- C:\WINDOWS\wcx_ftp.ini
[2010.12.03 10:16:40 | 000,000,855 | ---- | M] () -- C:\WINDOWS\WINCMD.INI
[2010.12.03 10:16:35 | 000,000,553 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\Total Commander.lnk
[2010.12.02 13:02:03 | 000,008,827 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\SPAM_____ Re_ cauko.zip
[2010.12.01 02:09:20 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010.11.29 22:12:12 | 001,633,167 | ---- | M] () -- C:\Documents and Settings\Peter\Dokumenty\sľuk.mp4
[2010.11.29 21:52:50 | 067,076,118 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\SLUK__Najkrajsie_slovenske_ludove_piesne.zip
[2010.11.29 21:52:37 | 000,000,349 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\PCLECHAL.INI
[2010.11.29 17:42:18 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.11.29 17:42:06 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.11.27 10:35:48 | 000,947,755 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\OTP.pdf
[2010.11.26 10:25:19 | 002,495,105 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\LGACSELE.ppt
[2010.11.26 10:25:19 | 001,536,000 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\LG AC SELECTOR MULTI F DX.xls
[2010.11.24 22:23:49 | 000,001,082 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\b.bmp
[2010.11.22 21:15:55 | 001,354,457 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\dm2.pdf
[2010.11.22 21:14:13 | 000,694,407 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\dm1.pdf
[2010.11.19 00:21:46 | 000,000,281 | RHS- | M] () -- C:\boot.ini
[2010.11.18 23:55:38 | 001,194,049 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\majka3.pdf
[2010.11.18 23:55:01 | 001,101,952 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\majka2.pdf
[2010.11.18 23:54:13 | 001,447,924 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\majka1.pdf
[2010.11.18 23:53:54 | 001,390,236 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\majka0.pdf
[2010.11.18 20:15:47 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll
[2010.11.18 20:15:47 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isign32.dll
[2010.11.17 23:21:07 | 000,000,070 | ---- | M] () -- C:\Documents and Settings\Peter\default.pls
[2010.11.13 02:41:27 | 015,167,442 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\mecar.exe
[2010.11.06 02:25:04 | 003,604,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2010.11.06 02:25:04 | 001,168,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll
[2010.11.06 02:25:04 | 000,832,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll
[2010.11.06 02:25:04 | 000,671,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstime.dll
[2010.11.06 02:25:04 | 000,671,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstime.dll
[2010.11.06 02:25:04 | 000,478,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmled.dll
[2010.11.06 02:25:04 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\webcheck.dll
[2010.11.06 02:25:04 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msrating.dll
[2010.11.06 02:25:04 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrating.dll
[2010.11.06 02:25:04 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\url.dll
[2010.11.06 02:25:04 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\url.dll
[2010.11.06 02:25:04 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\occache.dll
[2010.11.06 02:25:04 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pngfilt.dll
[2010.11.06 02:25:04 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pngfilt.dll
[2010.11.06 02:25:03 | 006,075,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2010.11.06 02:25:03 | 001,830,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcpl.cpl
[2010.11.06 02:25:03 | 001,830,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcpl.cpl
[2010.11.06 02:25:03 | 000,468,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeeds.dll
[2010.11.06 02:25:03 | 000,468,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2010.11.06 02:25:03 | 000,384,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll
[2010.11.06 02:25:03 | 000,384,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedkcs32.dll
[2010.11.06 02:25:03 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieapfltr.dll
[2010.11.06 02:25:03 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dll
[2010.11.06 02:25:03 | 000,268,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2010.11.06 02:25:03 | 000,230,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieaksie.dll
[2010.11.06 02:25:03 | 000,230,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieaksie.dll
[2010.11.06 02:25:03 | 000,192,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll
[2010.11.06 02:25:03 | 000,192,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iepeers.dll
[2010.11.06 02:25:03 | 000,153,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieakeng.dll
[2010.11.06 02:25:03 | 000,153,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieakeng.dll
[2010.11.06 02:25:03 | 000,133,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\extmgr.dll
[2010.11.06 02:25:03 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieencode.dll
[2010.11.06 02:25:03 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieencode.dll
[2010.11.06 02:25:03 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icardie.dll
[2010.11.06 02:25:03 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeedsbs.dll
[2010.11.06 02:25:03 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2010.11.06 02:25:03 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iernonce.dll
[2010.11.06 02:25:03 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iernonce.dll
[2010.11.06 02:25:03 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jsproxy.dll
[2010.11.06 02:25:03 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll
[2010.11.06 02:25:02 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtmsft.dll
[2010.11.06 02:25:02 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtmsft.dll
[2010.11.06 02:25:02 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtrans.dll
[2010.11.06 02:25:02 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtrans.dll
[2010.11.06 02:25:02 | 000,124,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\advpack.dll
[2010.11.06 02:25:02 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\corpol.dll
[2010.11.06 02:25:02 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\corpol.dll
[2010.11.03 14:25:53 | 000,389,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\html.iec
[2010.11.03 14:24:56 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieudinit.exe
[2010.11.03 14:24:56 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieudinit.exe
[2010.11.03 14:24:55 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe
[2010.11.03 14:24:55 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ie4uinit.exe
[2010.11.03 01:13:48 | 011,593,131 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\4779-705013.pdf
[2010.11.03 00:47:07 | 000,000,650 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\RegCleaner.lnk
[2010.11.02 22:05:35 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010.11.02 22:05:35 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010.11.02 22:05:26 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\w95inf32.dll
[2010.11.02 22:05:26 | 000,002,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\w95inf16.dll
[2010.11.02 21:19:10 | 000,002,145 | ---- | M] () -- C:\WINDOWS\Graffiti5.2Pin.ini
[2010.11.02 21:10:46 | 000,000,902 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\Pinnacle Studio 12.lnk
[2010.11.02 17:17:02 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys
[2010.10.28 15:09:00 | 000,290,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll
[2010.10.28 15:09:00 | 000,290,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\atmfd.dll
[2010.10.26 15:58:35 | 001,853,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\win32k.sys
[2010.10.26 15:58:35 | 001,853,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys
[2010.10.26 00:51:28 | 000,001,768 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Nokia PC Suite.lnk
[2010.10.26 00:26:16 | 000,000,685 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\NSS.lnk
[2010.10.25 23:47:43 | 000,001,860 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Nokia Software Updater.lnk
[2010.10.25 23:46:08 | 036,732,728 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\NokiaSoftwareUpdaterSetup_SK.exe
[2010.10.25 15:02:29 | 000,000,873 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\Recover My Files.lnk
[2010.10.24 00:54:13 | 000,000,039 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\Default.PLS
[2010.10.22 13:58:08 | 000,709,277 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\21102010374.jpg
[2010.10.19 12:46:19 | 000,861,966 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\Neurlg.pdf
[2010.10.19 12:44:11 | 000,716,844 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\CT.pdf
[2010.10.18 13:07:43 | 000,634,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe
[2010.10.18 13:06:11 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieakui.dll
[2010.10.18 13:06:11 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieakui.dll
[2010.10.11 16:59:30 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2010.10.10 15:46:34 | 000,593,894 | ---- | M] () -- C:\Documents and Settings\Peter\Dokumenty\VZT_PRIZEMIE_020910-Model.pdf
[2010.10.05 21:42:33 | 000,000,831 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\Sygic Assistant.lnk
[2010.10.04 18:21:39 | 008,808,947 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\VZT_PRIZEMIE_020910-Model1.psd
[2010.10.01 09:27:32 | 001,448,347 | ---- | M] () -- C:\Documents and Settings\Peter\Dokumenty\Tatramat290910.pdf
[2010.09.27 12:07:53 | 000,001,920 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Earth.lnk
[2010.09.24 20:28:21 | 000,000,846 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\WD Discovery.lnk
[2010.09.24 19:48:58 | 000,000,675 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\DVD Shrink 3.2.lnk
[2010.09.18 12:23:38 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc42u.dll
[2010.09.18 12:23:38 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42u.dll
[2010.09.18 08:53:37 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc42.dll
[2010.09.18 08:53:37 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll
[2010.09.18 08:53:37 | 000,954,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc40.dll
[2010.09.18 08:53:37 | 000,954,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40.dll
[2010.09.18 08:53:37 | 000,953,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc40u.dll
[2010.09.18 08:53:37 | 000,953,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll
[2010.09.06 22:16:11 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_User_PCCSWpdDriver_01_09_00.Wdf
[2010.09.06 22:16:06 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_user_01_09_00.Wdf
[2010.08.27 10:03:42 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\t2embed.dll
[2010.08.27 10:03:42 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll
[2010.08.27 07:54:10 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srvsvc.dll
[2010.08.26 15:39:50 | 000,357,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys
[2010.08.25 23:36:02 | 010,841,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmp.dll
[2010.08.23 18:12:35 | 000,617,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll
[2010.08.17 15:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spoolsv.exe
[2010.08.16 10:45:05 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll
[2010.08.10 17:11:08 | 000,000,139 | ---- | M] () -- C:\WINDOWS\msicpl.ini
[2010.07.29 22:52:02 | 013,150,378 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\IMG_6717.tif
[2010.07.28 12:50:15 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Peter\Plocha\OTL.exe
[2010.07.28 12:04:47 | 000,000,598 | ---- | M] () -- C:\WINDOWS\TRNCOM.INI
[2010.07.28 00:01:13 | 000,000,789 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.07.27 23:54:51 | 007,622,112 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Peter\Plocha\mbam-setup-1.50.0.0.exe
[2010.07.27 23:30:56 | 000,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.07.27 23:30:49 | 000,000,994 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.07.27 23:30:36 | 000,000,202 | ---- | M] () -- C:\WINDOWS\System32\PSLOG
[2010.07.27 23:30:35 | 008,405,015 | ---- | M] () -- C:\WINDOWS\TempFile
[2010.07.27 23:29:53 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.07.27 08:30:31 | 008,466,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shell32.dll
[2010.07.25 15:43:32 | 001,869,090 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\interaudit_TO.pdf
[2010.07.23 12:52:48 | 000,053,760 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\ZoDLogis.doc
[2010.07.16 14:00:53 | 001,287,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ole32.dll
[2010.07.15 10:34:41 | 000,094,797 | ---- | M] () -- C:\Documents and Settings\Peter\Dokumenty\Logis15071.pdf
[2010.07.07 20:49:18 | 000,003,732 | ---- | M] () -- C:\WINDOWS\wtran32.INI
[2010.07.07 20:49:18 | 000,000,000 | ---- | M] () -- C:\WINDOWS\XXLGSC
[2010.07.06 22:37:56 | 000,001,627 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\Zástupce - Objednávky.lnk
[2010.07.05 22:36:55 | 001,024,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll.mui
[2010.07.04 19:50:20 | 004,403,479 | ---- | M] () -- C:\Documents and Settings\Peter\Plocha\Rapget.RS_Public_v1.0.9.0_cz.exe
[2010.06.30 14:33:04 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schannel.dll
[10 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

VIRY.CZ

dotaz

dotaz

Re: dotaz

Re: dotaz

Re: dotaz

Re: dotaz

Re: dotaz

Re: dotaz

Re: dotaz

Re: dotaz

Re: dotaz

Re: dotaz

Re: dotaz

Re: dotaz

Re: dotaz

Re: dotaz