problém s pripojením USB kľúčov

[bobofero]

Dobrý deň, chcem vás poprosiť o radu - po pripojení USB kľúčov do PC sa mi všetko zmení čo je na kľúči na zástupcov zložiek pričom umiestnenie zložiek mi ukazuje napr zložka Foto je %windir%\system32\cmd.exe /c "start %cd%RECYCLER\6BCFEFE7B39416BAC43318CEACC04CC4.exe& &%windir%\explorer.exe G:\Foto"

Ak na pripojenom USB vytvorím novú zložku napr Film tak tá sa zmení až po odpojení a pripojení znova do PC znova na zástupcu. Ak dám otvoriť nejakú zložku na USB kľúči tak sa tá otvorí ale najprv mi vybehne malá čierna obrazovka s názvom súboru otvorí sa mi zložka aj veci ktoré tam sú a môžem s nimi pracovať, avšak po pripojení USB na iné PC sa zložky nedajú vôbec otvoriť vypíše sa mi „cesta neexistuje alebo sa nejedná o adresár“

Na PC som nerobil žiadne zmeny nič som neinštaloval nové. Deň pred touto zmenou som zadal start -> spustit -> cmd "ipconfig /release" a potom "ipconfig /renew".

Skúšal som aj cez obnovenie systému, vrátiť PC do predchádzajúcich dni ale opakuje sa mi ten problém znova. Mám Eset Smart Security licenc. MS WIN XP Service Pack 3 (všetky aktualizácie XP)
Ďakujem vám.

[bobofero]

este sa chcem informovat kde v PC viem najst odstranene-zmazane veci z USB - ci je to este mozne
Dakujem

[stell]

zdravim
Mas tam worma autorun.inf
Pripojte k počítaču všetky USB flash disky,externé pevné disky, USB kľúče,flash karty,iPod,MP3 prehrávač,fotoaparát,atď
Odstránenie:
Otvorte Notepad (Poznámkový blok) a skopíruj do neho text.

Kód: Vybrat vše

@ECHO off
attrib -s -r -h  c:\autorun.inf
del c:\autorun.inf
attrib -s -r -h d:\autorun.inf
del d:\autorun.inf
attrib -s -r -h  e:\autorun.inf
del e:\autorun.inf
attrib -s -r -h  f:\autorun.inf
del f:\autorun.inf
attrib -s -r -h  g:\autorun.inf
del g:\autorun.inf
attrib -s -r -h  h:\autorun.inf
del h:\autorun.inf
attrib -s -r -h  i:\autorun.inf
del i:\autorun.inf
attrib -s -r -h  j:\autorun.inf
del j:\autorun.inf

Potom klikneme na záložku Súbor v menu Uložiť ako.. .. Ako je Názov súboru tak do toho riadku napíšeme:oprava.bat
Typ súboru tak tam vyberiete všetky súbory
A uložíme ho na plochu.
2 x klikneme naň.
1:Zapneme zobrazovanie skrytých systémových a nechránených súborov.
2:Stiahnite si prosím Flash_Disinfector.exe a uložte ho na plochu.
3:Dvoj kliknite na Flash_Disinfector.exe spustiť a postupujte podľa pokynov,
4: Nástroj vás požiada aby ste pripojili flash disk alebo iné vymeniteľné Media.
5:Urobte tak prosím a pripojte všetky vymeniteľné média,ktoré používate cez USB.
6:Podržte kláves Shift pri vkladaní disku,ak je prítomný autorun.inf aby sa nespustil.
7:Čakať,až sa dokončí skenovanie a potom ukončite program.
8:Vypnut obnovu systemu.
8: Reštartovať počítač obnovu zapnut spat.

Stiahnes>>mbam-setup
Nainstalovat, aktualizovat, a spustit skan.
Spravit Uplny skan, co najde daj zmazat,
Log vloz sem.
Podrobny Navod:
http://www.viry.cz/forum/viewtopic.php?f=29&t=67229

[bobofero]

Ďakujem za radu, už je všetko OK - len neviem načo platím za antivirus f. ESET

[stell]

No, zaco platis?/, ak by si nemal AV, tak v dnesnej dobe je to atentat na pocitac.To ze sa ti tam dostane infekcia, vo vacsine pripadov AV nemoze,vacsine moze za to jedine ludsky faktor.

Treba vypnut autorun/autoplay na vsetkych jednotkach.
Tu mas navod:
Vypnúť Autorun,Autoplay
Nemas zaco.

[BINGMAN]

Měl jsem stejný problém, který jsem díky tomuto foru vyřešil. Ale mám novej problém. Ty složky, které jsem tam měl, se kvůli tomu viru hlásí, jako zástupci. Když jsem na něj klikl objevil se příkazový řádek a složka se otevřela. Po odstranění viru to už bohužel nejde a já se ptám, jak mám obnovit ty složky? Nemůžu se do nich dostat, ale místo na přenosným hardisku ty soubory zabírají. Pls pomoc. Mám tam všechny fotky, videa a školní práce! (a taky porno ale pšt )
Děkuji za případnou pomoc.

[stell]

Zdravim
Stiahnes>>RSIT >>logy vloz sem,

[BINGMAN]

tady je ten log

• Logfile of random's system information tool 1.08 (written by random/random)
  Run by Jakub Kříž at 2011-03-28 19:09:50
  Microsoft Windows XP Home Edition Service Pack 3
  System drive C: has 17 GB (15%) free of 111 GB
  Total RAM: 1023 MB (30% free)
  
  Logfile of Trend Micro HijackThis v2.0.4
  Scan saved at 19:13:05, on 28.3.2011
  Platform: Windows XP SP3 (WinNT 5.01.2600)
  MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
  Boot mode: Normal
  
  Running processes:
  C:\WINDOWS\System32\smss.exe
  C:\PROGRA~1\AVG\AVG10\avgchsvx.exe
  C:\WINDOWS\system32\winlogon.exe
  C:\WINDOWS\system32\services.exe
  C:\WINDOWS\system32\lsass.exe
  C:\WINDOWS\system32\Ati2evxx.exe
  C:\WINDOWS\system32\svchost.exe
  C:\WINDOWS\System32\svchost.exe
  C:\WINDOWS\system32\Ati2evxx.exe
  C:\WINDOWS\Explorer.EXE
  C:\WINDOWS\system32\spoolsv.exe
  C:\Program Files\AVG\AVG10\avgwdsvc.exe
  C:\Program Files\Common Files\Motive\McciCMService.exe
  C:\WINDOWS\System32\svchost.exe
  C:\WINDOWS\System32\svchost.exe
  C:\WINDOWS\system32\PnkBstrA.exe
  C:\WINDOWS\system32\svchost.exe
  C:\Program Files\TO2SSM\McciTrayApp.exe
  C:\WINDOWS\SOUNDMAN.EXE
  C:\WINDOWS\system32\qttask.exe
  C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
  C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
  C:\Program Files\Kodak\KODAK Share Button App\Listener.exe
  C:\Program Files\AVG\AVG10\avgtray.exe
  C:\WINDOWS\system32\ctfmon.exe
  C:\Program Files\DAEMON Tools Pro\DTProAgent.exe
  C:\Program Files\uTorrent\uTorrent.exe
  C:\Program Files\Steam\Steam.exe
  C:\Program Files\USB TV\EM28XX\BDARemote.exe
  C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
  C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
  C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
  C:\Program Files\AVG\AVG10\avgnsx.exe
  C:\Program Files\AVG\AVG10\avgemcx.exe
  C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
  C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
  C:\WINDOWS\system32\wuauclt.exe
  C:\PROGRA~1\AVG\AVG10\avgrsx.exe
  C:\Program Files\AVG\AVG10\avgcsrvx.exe
  C:\Program Files\Mozilla Firefox\firefox.exe
  C:\Program Files\Mozilla Firefox\plugin-container.exe
  C:\Documents and Settings\Jakub Kříž\Plocha\RSIT.exe
  C:\Program Files\trend micro\Jakub Kříž.exe
  
  R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.zaparit.cz/
  R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
  O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
  O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll
  O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
  O3 - Toolbar: Nero Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
  O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
  O4 - HKLM\..\Run: [TO2SSM_McciTrayApp] C:\Program Files\TO2SSM\McciTrayApp.exe
  O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
  O4 - HKLM\..\Run: [QuickTime Task] "C:\WINDOWS\system32\qttask.exe" -atboottime
  O4 - HKLM\..\Run: [MMTray] "C:\Program Files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\MMTray.exe"
  O4 - HKLM\..\Run: [mmtray2k] "C:\Program Files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\mmtray2k.exe"
  O4 - HKLM\..\Run: [mmtraylsi] "C:\Program Files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\mmtraylsi.exe"
  O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
  O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\\NeroCheck.exe
  O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
  O4 - HKLM\..\Run: [KodakShareButtonApp] C:\Program Files\Kodak\KODAK Share Button App\Listener.exe
  O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe
  O4 - HKLM\..\RunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/ww.special-uninstall ... er=9.0.872
  O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
  O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTProAgent.exe"
  O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe" /tray
  O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
  O4 - HKCU\..\Run: [Xfpkph] C:\Documents and Settings\Jakub Kříž\Data aplikací\Xfpkph.exe
  O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
  O4 - HKCU\..\Run: [{68D7B17C-FB1B-F223-9964-6626B9F5C9E0}] "C:\Documents and Settings\Jakub Kříž\Data aplikací\Ecik\iqdu.exe"
  O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
  O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
  O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
  O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
  O4 - Global Startup: BDARemote.lnk = C:\Program Files\USB TV\EM28XX\BDARemote.exe
  O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
  O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
  O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
  O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
  O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
  O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
  O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
  O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll
  O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
  O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
  O23 - Service: Application Driver Auto Removal Service (01) (appdrvrem01) - Protection Technology - C:\WINDOWS\System32\appdrvrem01.exe
  O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
  O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
  O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
  O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe
  O23 - Service: Dragon Age: Origins - Content Updater (DAUpdaterSvc) - BioWare - C:\Program Files\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
  O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe
  O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
  O23 - Service: Power Manager (PowerManager) - Unknown owner - C:\WINDOWS\svchost.exe (file missing)
  
  --
  End of file - 7359 bytes
  
  ======Scheduled tasks folder======
  
  C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
  
  ======Registry dump======
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
  Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
  AVG Safe Search - C:\Program Files\AVG\AVG10\avgssie.dll [2011-01-07 2731872]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
  Nero Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2011-02-01 1487240]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
  {D4027C7F-154A-4066-A1AD-4243D8127440} - Nero Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2011-02-01 1487240]
  
  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  "StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-04-23 61440]
  "TO2SSM_McciTrayApp"=C:\Program Files\TO2SSM\McciTrayApp.exe [2008-08-15 1473536]
  "SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2003-07-16 55296]
  "QuickTime Task"=C:\WINDOWS\system32\qttask.exe [2010-07-17 98304]
  "MMTray"=C:\Program Files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\MMTray.exe [2003-03-25 53248]
  "mmtray2k"=C:\Program Files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\mmtray2k.exe [2003-03-25 57344]
  "mmtraylsi"=C:\Program Files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\mmtraylsi.exe [2003-03-25 53248]
  "HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2006-02-19 49152]
  "NeroCheck"=C:\WINDOWS\system32\\NeroCheck.exe [2001-07-09 155648]
  "KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
  "KodakShareButtonApp"=C:\Program Files\Kodak\KODAK Share Button App\Listener.exe [2011-01-18 107008]
  "AVG_TRAY"=C:\Program Files\AVG\AVG10\avgtray.exe [2011-01-07 2747744]
  
  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
  "AvgUninstallURL"=cmd.exe /c start http://www.avg.com/ww.special-uninstall ... er=9.0.872 []
  
  [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
  "DAEMON Tools Pro Agent"=C:\Program Files\DAEMON Tools Pro\DTProAgent.exe [2007-09-06 136136]
  "BitComet"=C:\Program Files\BitComet\BitComet.exe /tray []
  "uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2010-11-25 328056]
  "Xfpkph"=C:\Documents and Settings\Jakub Kříž\Data aplikací\Xfpkph.exe []
  "Steam"=C:\Program Files\Steam\Steam.exe [2011-03-19 1242448]
  "{68D7B17C-FB1B-F223-9964-6626B9F5C9E0}"=C:\Documents and Settings\Jakub Kříž\Data aplikací\Ecik\iqdu.exe [2010-10-18 172546]
  
  C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Po spuštění
  BDARemote.lnk - C:\Program Files\USB TV\EM28XX\BDARemote.exe
  HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
  C:\WINDOWS\system32\Ati2evxx.dll [2009-04-24 155648]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
  WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
  
  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
  "dontdisplaylastusername"=0
  "legalnoticecaption"=
  "legalnoticetext"=
  "shutdownwithoutlogon"=1
  "undockwithoutlogon"=1
  
  [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
  "NoDriveTypeAutoRun"=36
  "NoDriveAutoRun"=0xFFFFFFFF
  
  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
  "HonorAutoRunSetting"=1
  
  [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
  "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
  "C:\Program Files\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\xrEngine.exe"="C:\Program Files\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\xrEngine.exe:*:Enabled:S.T.A.L.K.E.R. - Clear Sky (CLI)"
  "C:\Program Files\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\dedicated\xrEngine.exe"="C:\Program Files\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\dedicated\xrEngine.exe:*:Enabled:S.T.A.L.K.E.R. - Clear Sky (SRV)"
  "C:\Program Files\BitComet\BitComet.exe"="C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet.exe"
  "C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
  "C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
  "C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
  "C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
  "C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
  "C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
  "C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"
  "C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe"
  "C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
  "C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
  "C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe"
  "C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe"="C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher"
  "C:\Program Files\Ubisoft\Tom Clancy's Splinter Cell Conviction\src\system\conviction_game.exe"="C:\Program Files\Ubisoft\Tom Clancy's Splinter Cell Conviction\src\system\conviction_game.exe:*:Enabled:Tom Clancy's Splinter Cell Conviction"
  "C:\Program Files\Ubisoft\Tom Clancy's Splinter Cell Conviction\src\system\gu.exe"="C:\Program Files\Ubisoft\Tom Clancy's Splinter Cell Conviction\src\system\gu.exe:*:Enabled:Tom Clancy's Splinter Cell Conviction Update"
  "C:\Program Files\2K Games\Gearbox Software\Borderlands\Binaries\Borderlands.exe"="C:\Program Files\2K Games\Gearbox Software\Borderlands\Binaries\Borderlands.exe:*:Enabled:Borderlands"
  "C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club"
  "C:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe"="C:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV"
  "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
  "C:\Program Files\Rockstar Games\Grand Theft Auto IV\GTAIV.exe"="C:\Program Files\Rockstar Games\Grand Theft Auto IV\GTAIV.exe:*:Enabled:Grand Theft Auto IV"
  "C:\Program Files\Electronic Arts\Dead Space\Dead Space.exe"="C:\Program Files\Electronic Arts\Dead Space\Dead Space.exe:*:Enabled:Dead Space ™"
  "C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe"="C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
  "C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
  "C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
  "C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) "
  "C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
  "L:\Games\Mass Effect\Binaries\MassEffect.exe"="L:\Games\Mass Effect\Binaries\MassEffect.exe:*:Enabled:Mass Effect Game"
  "L:\Games\Mass Effect\MassEffectLauncher.exe"="L:\Games\Mass Effect\MassEffectLauncher.exe:*:Enabled:Mass Effect Launcher"
  "C:\Program Files\Dragon Age\bin_ship\daorigins.exe"="C:\Program Files\Dragon Age\bin_ship\daorigins.exe:*:Enabled:Dragon Age Origins Game"
  "C:\Program Files\Dragon Age\DAOriginsLauncher.exe"="C:\Program Files\Dragon Age\DAOriginsLauncher.exe:*:Enabled:Dragon Age Origins Launcher"
  "C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe"="C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe:*:Enabled:Dragon Age Origins Updater"
  "C:\SIERRA\Half-Life\hl.exe"="C:\SIERRA\Half-Life\hl.exe:*:Enabled:Half-Life Launcher"
  "C:\Program Files\Valve\Half-Life\hl.exe"="C:\Program Files\Valve\Half-Life\hl.exe:*:Enabled:Half-Life Launcher"
  "C:\Program Files\Valve\Half-Life 2\hl2.exe"="C:\Program Files\Valve\Half-Life 2\hl2.exe:*:Enabled:HL2_1"
  "C:\Program Files\Valve\Half-Life 2 Episode One\hl2.exe"="C:\Program Files\Valve\Half-Life 2 Episode One\hl2.exe:*:Enabled:HL2_2"
  "C:\Program Files\Valve\Half-Life 2 Episode Two\hl2.exe"="C:\Program Files\Valve\Half-Life 2 Episode Two\hl2.exe:*:Enabled:HL2_3"
  "C:\Program Files\AVG\AVG10\avgmfapx.exe"="C:\Program Files\AVG\AVG10\avgmfapx.exe:*:Enabled:Instalátor AVG"
  "C:\Program Files\Left4Dead\hl2.exe"="C:\Program Files\Left4Dead\hl2.exe:*:Enabled:hl2"
  "C:\Program Files\Garena\Garena.exe"="C:\Program Files\Garena\Garena.exe:*:Enabled:Garena"
  "C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
  "C:\Program Files\Left4Dead\left4dead.exe"="C:\Program Files\Left4Dead\left4dead.exe:*:Enabled:left4dead"
  "C:\WINDOWS\explorer.exe"="C:\WINDOWS\explorer.exe:*:Enabled:Průzkumník Windows"
  "C:\Program Files\AVG\AVG10\avgdiagex.exe"="C:\Program Files\AVG\AVG10\avgdiagex.exe:*:Enabled:AVG Diagnostika 2011"
  "C:\Program Files\AVG\AVG10\avgnsx.exe"="C:\Program Files\AVG\AVG10\avgnsx.exe:*:Enabled:Webový štít"
  "C:\Program Files\AVG\AVG10\avgemcx.exe"="C:\Program Files\AVG\AVG10\avgemcx.exe:*:Enabled:Obecná kontrola pošty"
  
  [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
  "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
  "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
  
  ======List of files/folders created in the last 1 months======
  
  2011-03-28 19:09:57 ----D---- C:\Program Files\trend micro
  2011-03-28 19:09:50 ----D---- C:\rsit
  2011-03-28 18:43:24 ----AD---- C:\Prince
  2011-03-28 18:32:33 ----AD---- C:\Disc
  2011-03-27 20:38:06 ----D---- C:\Documents and Settings\Jakub Kříž\Data aplikací\Xewaoz
  2011-03-27 20:38:06 ----D---- C:\Documents and Settings\Jakub Kříž\Data aplikací\Ecik
  2011-03-27 20:38:06 ----AH---- C:\Documents and Settings\Jakub Kříž\Data aplikací\sE6Eff10.txef28K1segE0G.txt
  2011-03-27 20:25:09 ----HD---- C:\$AVG
  2011-03-27 18:53:10 ----D---- C:\Documents and Settings\Jakub Kříž\Data aplikací\Malwarebytes
  2011-03-27 18:52:58 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
  2011-03-27 18:52:57 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Malwarebytes
  2011-03-27 18:52:53 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
  2011-03-27 18:52:53 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
  2011-03-27 18:37:06 ----AD---- C:\autorun.inf
  2011-03-27 03:31:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2524375$
  2011-03-19 16:09:39 ----D---- C:\Program Files\Steam
  2011-03-19 15:57:34 ----D---- C:\Program Files\Garena
  2011-03-18 22:48:58 ----D---- C:\Program Files\GeMM
  2011-03-17 17:59:34 ----D---- C:\Documents and Settings\Jakub Kříž\Data aplikací\AVG10
  2011-03-17 17:51:06 ----HD---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Common Files
  2011-03-17 17:42:48 ----D---- C:\WINDOWS\system32\drivers\AVG
  2011-03-17 17:42:48 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\AVG10
  2011-03-17 17:25:38 ----AD---- C:\ufo
  2011-03-17 17:10:40 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\MFAData
  2011-03-17 04:07:26 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
  2011-03-17 03:44:09 ----D---- C:\Program Files\Portal
  2011-03-10 00:27:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
  2011-03-10 00:24:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
  2011-03-08 18:34:40 ----A---- C:\SteamNew.exe
  2011-03-02 18:51:07 ----A---- C:\WINDOWS\system32\SNWValid.dll
  2011-03-02 18:51:07 ----A---- C:\WINDOWS\system32\SierraNW.dll
  2011-03-02 18:51:06 ----D---- C:\Program Files\Sierra On-Line
  2011-03-02 18:49:59 ----A---- C:\WINDOWS\SIERRA.INI
  2011-03-02 18:48:54 ----AD---- C:\Settlers
  
  ======List of files/folders modified in the last 1 months======
  
  2011-03-28 19:11:19 ----D---- C:\Documents and Settings\Jakub Kříž\Data aplikací\uTorrent
  2011-03-28 19:09:57 ----RD---- C:\Program Files
  2011-03-28 19:03:31 ----D---- C:\Program Files\DOSBox-0.74
  2011-03-28 18:32:06 ----D---- C:\WINDOWS\Temp
  2011-03-28 11:52:18 ----D---- C:\WINDOWS\system32\CatRoot2
  2011-03-28 11:50:54 ----D---- C:\WINDOWS\system32
  2011-03-27 23:35:12 ----A---- C:\WINDOWS\SchedLgU.Txt
  2011-03-27 21:57:27 ----D---- C:\WINDOWS\Prefetch
  2011-03-27 21:36:37 ----SHD---- C:\WINDOWS\Installer
  2011-03-27 21:36:24 ----HD---- C:\Config.Msi
  2011-03-27 21:36:05 ----RSHDC---- C:\WINDOWS\system32\dllcache
  2011-03-27 21:17:15 ----D---- C:\WINDOWS\system32\drivers
  2011-03-27 21:16:02 ----HDC---- C:\WINDOWS\$NtUninstallKB971468_0$
  2011-03-27 21:15:17 ----SD---- C:\WINDOWS\Tasks
  2011-03-27 14:43:37 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
  2011-03-27 13:27:58 ----HD---- C:\WINDOWS\inf
  2011-03-27 13:27:42 ----D---- C:\WINDOWS
  2011-03-27 03:30:58 ----HD---- C:\WINDOWS\$hf_mig$
  2011-03-26 19:07:16 ----D---- C:\Program Files\Mozilla Firefox
  2011-03-20 18:13:45 ----D---- C:\Program Files\Ask.com
  2011-03-17 17:37:49 ----D---- C:\Program Files\AVG
  2011-03-17 17:05:29 ----SD---- C:\Documents and Settings\Jakub Kříž\Data aplikací\Microsoft
  2011-03-17 04:10:30 ----A---- C:\WINDOWS\imsins.BAK
  2011-03-10 18:28:44 ----A---- C:\WINDOWS\m3jp2k.ini
  2011-03-10 16:59:50 ----A---- C:\reclock_log.txt
  2011-03-10 00:24:33 ----D---- C:\WINDOWS\Debug
  2011-03-10 00:24:26 ----A---- C:\WINDOWS\system32\MRT.exe
  2011-03-10 00:23:36 ----D---- C:\WINDOWS\system32\CatRoot
  2011-03-09 19:48:31 ----D---- C:\Program Files\Microsoft Silverlight
  2011-03-08 17:15:17 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\DAEMON Tools Pro
  2011-03-05 19:27:20 ----A---- C:\WINDOWS\mmtvmj.ini
  
  ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
  
  R0 AVGIDSEH;AVGIDSEH; C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys [2010-09-13 25680]
  R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\WINDOWS\system32\DRIVERS\avgrkx86.sys [2010-09-07 26064]
  R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
  R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-08-10 50688]
  R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-05-16 6656]
  R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2006-02-21 19968]
  R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-07-13 685816]
  R0 viaagp;Filtr VIA sběrnice AGP ; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-14 42240]
  R1 appdrv01;Application Driver (01); C:\WINDOWS\System32\Drivers\appdrv01.sys [2010-07-18 2915944]
  R1 Avgldx86;AVG AVI Loader Driver; C:\WINDOWS\system32\DRIVERS\avgldx86.sys [2010-12-08 251728]
  R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\WINDOWS\system32\DRIVERS\avgmfx86.sys [2010-09-07 34384]
  R1 Avgtdix;AVG TDI Driver; C:\WINDOWS\system32\DRIVERS\avgtdix.sys [2010-11-12 299984]
  R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
  R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2004-08-04 11868]
  R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2003-07-24 403968]
  R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2003-07-24 461312]
  R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-04-24 4049408]
  R3 AVGIDSDriver;AVGIDSDriver; C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys [2010-08-03 123472]
  R3 AVGIDSFilter;AVGIDSFilter; C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys [2010-08-03 30288]
  R3 AVGIDSShim;AVGIDSShim; C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys [2010-08-03 26192]
  R3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
  R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
  R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
  R3 HSF_DP;HSF_DP; C:\WINDOWS\system32\DRIVERS\HSFDPSP2.sys [2004-08-04 1041536]
  R3 HSFHWBS2;HSFHWBS2; C:\WINDOWS\system32\DRIVERS\HSFBS2S2.sys [2004-08-04 220032]
  R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-18 12160]
  R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
  R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
  R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSFCXTS2.sys [2004-08-04 685056]
  S3 a05tibr1;a05tibr1; C:\WINDOWS\system32\drivers\a05tibr1.sys []
  S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
  S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files\Garena\safedrv.sys []
  S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2007-03-08 49920]
  S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2007-03-08 16496]
  S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2007-03-08 21568]
  S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
  S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
  S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
  S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
  S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
  S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
  S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
  S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
  S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
  S3 usbscan;Usbscan; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
  S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
  S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
  
  ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
  
  R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-04-24 602112]
  R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2011-01-06 6128720]
  R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG10\avgwdsvc.exe [2010-10-22 265400]
  R2 McciCMService;McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [2007-10-15 303104]
  R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
  R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
  R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2011-01-21 75136]
  S2 appdrvrem01;Application Driver Auto Removal Service (01); C:\WINDOWS\System32\appdrvrem01.exe [2010-07-18 304528]
  S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2009-04-23 593920]
  S2 PowerManager;Power Manager; C:\WINDOWS\svchost.exe []
  S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
  S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
  S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater; C:\Program Files\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-12-15 25832]
  S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
  S3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
  S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
  S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
  S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
  S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
  S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
  
  -----------------EOF-----------------

[stell]

No mas to zavirene,
1:odinstaluj AVG, nakolko tento antivirak, blokuje combofix
2:Použij ComboFix podle tohoto návodu: http://www.bleepingcomputer.com/combofi ... t-combofix
Log znej vloz sem.

[BINGMAN]

ComboFix 11-03-28.01 - Jakub Kříž 28.03.2011 20:26:26.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1023.581 [GMT 2:00]
Spuštěný z: c:\documents and settings\Jakub Kříž\Plocha\ComboFix.exe
.
/wow section - STAGE 4
Přístup byl odepřen.
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Content\System
c:\documents and settings\Content\System\bindings.deu
c:\documents and settings\Jakub Kříž\Data aplikací\Ecik
c:\documents and settings\Jakub Kříž\Data aplikací\Ecik\iqdu.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_POWERMANAGER
-------\Legacy_SSHNAS
-------\Service_PowerManager
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-02-28 do 2011-03-28 )))))))))))))))))))))))))))))))
.
.
2011-03-28 17:09 . 2011-03-28 17:13 -------- d-----w- c:\program files\trend micro
2011-03-28 17:09 . 2011-03-28 17:13 -------- d-----w- C:\rsit
2011-03-28 16:43 . 2004-09-20 09:40 -------- d---a-w- C:\Prince
2011-03-28 16:32 . 2011-03-28 16:44 -------- d---a-w- C:\Disc
2011-03-27 18:38 . 2011-03-28 17:21 -------- d-----w- c:\documents and settings\Jakub Kříž\Data aplikací\Xewaoz
2011-03-27 18:25 . 2011-03-27 18:25 -------- d-----w- C:\$AVG
2011-03-27 16:53 . 2011-03-27 16:53 -------- d-----w- c:\documents and settings\Jakub Kříž\Data aplikací\Malwarebytes
2011-03-27 16:52 . 2010-12-20 16:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-03-27 16:52 . 2011-03-27 16:52 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Data aplikací\Malwarebytes
2011-03-27 16:52 . 2011-03-27 16:53 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-03-27 16:52 . 2010-12-20 16:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-03-19 14:09 . 2011-03-28 18:37 -------- d-----w- c:\program files\Steam
2011-03-19 13:57 . 2011-03-19 14:00 -------- d-----w- c:\program files\Garena
2011-03-18 20:49 . 2011-03-18 20:49 -------- d-----w- c:\documents and settings\Jakub Kříž\Local Settings\Data aplikací\FOMM
2011-03-18 20:48 . 2011-03-18 20:48 -------- d-----w- c:\program files\GeMM
2011-03-17 15:59 . 2011-03-17 15:59 -------- d-----w- c:\documents and settings\Jakub Kříž\Data aplikací\AVG10
2011-03-17 15:51 . 2011-03-17 15:51 -------- d--h--w- c:\documents and settings\All Users.WINDOWS\Data aplikací\Common Files
2011-03-17 15:42 . 2011-03-28 18:04 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Data aplikací\AVG10
2011-03-17 15:25 . 2003-05-13 10:04 -------- d---a-w- C:\ufo
2011-03-17 15:10 . 2011-03-17 15:37 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Data aplikací\MFAData
2011-03-17 01:44 . 2011-03-17 23:32 -------- d-----w- c:\program files\Portal
2011-03-08 16:34 . 2011-03-08 16:34 1242448 ----a-w- C:\SteamNew.exe
2011-03-02 16:51 . 1998-10-30 21:21 231936 ----a-w- c:\windows\system32\SNWValid.dll
2011-03-02 16:51 . 1998-10-30 21:21 1022976 ----a-w- c:\windows\system32\SierraNW.dll
2011-03-02 16:51 . 2011-03-02 16:51 -------- d-----w- c:\program files\Sierra On-Line
2011-03-02 16:49 . 2011-03-02 16:49 -------- d-----w- c:\documents and settings\Jakub Kříž\WINDOWS
2011-03-02 16:48 . 2004-11-02 10:18 -------- d---a-w- C:\Settlers
2011-02-28 16:43 . 2011-02-28 16:43 -------- d-----w- c:\documents and settings\Builds
2011-02-28 16:42 . 2011-03-28 18:33 -------- d-----w- c:\documents and settings\Content
2011-02-28 13:57 . 2011-02-28 13:57 -------- d-----w- c:\program files\2K Games
2011-02-27 20:25 . 2011-02-27 20:25 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Data aplikacÝ
2011-02-26 20:56 . 2011-02-26 20:56 -------- d-----w- c:\documents and settings\Jakub Kříž\Local Settings\Data aplikací\Help
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-02-09 13:53 . 2004-08-18 12:00 270848 ----a-w- c:\windows\system32\sbe.dll
2011-02-09 13:53 . 2004-08-18 12:00 186880 ----a-w- c:\windows\system32\encdec.dll
2011-02-08 17:16 . 2011-02-08 17:16 418480 ----a-w- c:\windows\system32\wrap_oal.dll
2011-02-08 17:16 . 2011-02-08 17:16 115432 ----a-w- c:\windows\system32\OpenAL32.dll
2011-02-02 07:58 . 2010-07-13 14:22 2067456 ----a-w- c:\windows\system32\mstscax.dll
2011-01-27 11:57 . 2010-07-13 14:22 677888 ----a-w- c:\windows\system32\mstsc.exe
2011-01-21 18:44 . 2010-11-27 17:44 138160 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2011-01-21 18:44 . 2010-11-27 17:43 75136 ----a-w- c:\windows\system32\PnkBstrA.exe
2011-01-21 18:43 . 2010-11-27 23:27 271200 ----a-w- c:\windows\system32\PnkBstrB.xtr
2011-01-21 18:43 . 2010-11-27 17:43 271200 ----a-w- c:\windows\system32\PnkBstrB.exe
2011-01-21 18:40 . 2010-11-27 17:44 138056 ----a-w- c:\documents and settings\Jakub Kříž\Data aplikací\PnkBstrK.sys
2011-01-21 14:44 . 2004-08-18 12:00 440320 ----a-w- c:\windows\system32\shimgvw.dll
2011-01-07 14:09 . 2004-08-18 12:00 290048 ----a-w- c:\windows\system32\atmfd.dll
2011-01-02 12:53 . 2010-11-27 17:43 271200 ----a-w- c:\windows\system32\PnkBstrB.ex0
2010-12-31 14:04 . 2004-08-18 12:00 1854976 ----a-w- c:\windows\system32\win32k.sys
2007-06-27 17:31 . 2010-03-22 15:57 90112 -c--a-w- c:\program files\axesstel.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2011-02-01 18:17 1487240 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2011-02-01 1487240]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2011-02-01 1487240]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Pro Agent"="c:\program files\DAEMON Tools Pro\DTProAgent.exe" [2007-09-06 136136]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2010-11-25 328056]
"Steam"="c:\program files\Steam\Steam.exe" [2011-03-19 1242448]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-04-23 61440]
"TO2SSM_McciTrayApp"="c:\program files\TO2SSM\McciTrayApp.exe" [2008-08-15 1473536]
"SoundMan"="SOUNDMAN.EXE" [2003-07-16 55296]
"QuickTime Task"="c:\windows\system32\qttask.exe" [2010-07-17 98304]
"MMTray"="c:\program files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\MMTray.exe" [2003-03-25 53248]
"mmtray2k"="c:\program files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\mmtray2k.exe" [2003-03-25 57344]
"mmtraylsi"="c:\program files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\mmtraylsi.exe" [2003-03-25 53248]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2006-02-19 49152]
"NeroCheck"="c:\windows\system32\\NeroCheck.exe" [2001-07-09 155648]
"KodakShareButtonApp"="c:\program files\Kodak\KODAK Share Button App\Listener.exe" [2011-01-18 107008]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users.WINDOWS\Nabˇdka Start\Programy\Po spuçtŘnˇ\
BDARemote.lnk - c:\program files\USB TV\EM28XX\BDARemote.exe [2010-1-7 81997]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2006-2-19 288472]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Electronic Arts\\Dead Space\\Dead Space.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"=
"c:\\Program Files\\Dragon Age\\bin_ship\\daorigins.exe"=
"c:\\Program Files\\Dragon Age\\DAOriginsLauncher.exe"=
"c:\\Program Files\\Dragon Age\\bin_ship\\daupdatersvc.service.exe"=
"c:\\Program Files\\Garena\\Garena.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"17265:TCP"= 17265:TCP:BitComet 17265 TCP
"17265:UDP"= 17265:UDP:BitComet 17265 UDP
.
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [13.7.2010 19:14 685816]
R1 appdrv01;Application Driver (01);c:\windows\system32\drivers\appdrv01.sys [18.7.2010 23:14 2915944]
S2 appdrvrem01;Application Driver Auto Removal Service (01);c:\windows\System32\appdrvrem01.exe svc --> c:\windows\System32\appdrvrem01.exe svc [?]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;c:\program files\Dragon Age\bin_ship\daupdatersvc.service.exe [15.12.2009 22:07 25832]
S3 GGSAFERDriver;GGSAFER Driver;\??\c:\program files\Garena\safedrv.sys --> c:\program files\Garena\safedrv.sys [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08
.
Obsah adresáře 'Naplánované úlohy'
.
2011-03-28 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2011-02-01 18:17]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.zaparit.cz/
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Jakub Kříž\Data aplikací\Mozilla\Firefox\Profiles\qd84jgz2.default\
FF - prefs.js: browser.search.selectedEngine - My Web Search
FF - prefs.js: browser.startup.homepage - www.seznam.cz
FF - prefs.js: keyword.URL - hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?id=ZNfox000&ptb=oGFPKVxHpUJK91e0OxS_zw&psa=&ind=2010090910&ptnrS=ZNfox000&si=&st=kwd&n=77cf8d9e&searchfor=
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Ant Video Downloader: anttoolbar@ant.com - %profile%\extensions\anttoolbar@ant.com
FF - Ext: Flash and Video Download: {bee6eb20-01e0-ebd1-da83-080329fb9a3a} - %profile%\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
FF - Ext: Nero Toolbar: toolbar@ask.com - %profile%\extensions\toolbar@ask.com
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKCU-Run-BitComet - c:\program files\BitComet\BitComet.exe
HKCU-Run-Xfpkph - c:\documents and settings\Jakub Kříž\Data aplikací\Xfpkph.exe
HKCU-Run-{68D7B17C-FB1B-F223-9964-6626B9F5C9E0} - c:\documents and settings\Jakub Kříž\Data aplikací\Ecik\iqdu.exe
AddRemove-3ivx MPEG-4 5.0.2 - c:\program files\3ivx\3ivx MPEG-4 5.0.2\uninstaller.exe
AddRemove-69083DC58646DE46A09847A522A1CC487F918039 - c:\progra~1\DIFX\270581355A767BF1\dpinst32.exe
AddRemove-9722CA1E8F72F362E93CBEC75A707FDABFC8D880 - c:\progra~1\DIFX\270581355A767BF1\dpinst32.exe
AddRemove-FINAL FANTASY VIII - c:\program files\Eidos Interactive\Square Soft
AddRemove-Half-Life - c:\sierra\Half-Life\Uninst.isu
AddRemove-Machinarium - c:\program files\Machinarium\uninst.exe
AddRemove-Metro 2033_is1 - c:\program files\THQ\Metro 2033\unins000.exe
AddRemove-Prince of Persia Písky času - c:\program files\UBISOFT\Prince of Persia The Sands of Time\uninstall.exe
AddRemove-Runic Games Torchlight - c:\program files\Runic Games\Torchlight\uninstall.exe
AddRemove-{FFFF6D5C-E2F1-4B40-BC89-8923312E89EB}}_is1 - c:\program files\ACE Mega CoDecS Pack\unins000.exe
AddRemove-čeština do hry Vampire the Masquerade: Bloodlines_is1 - c:\program files\Activision\Call of Duty 2\Vampire\unins000.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-28 20:37
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-220523388-492894223-839522115-1004\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:a0,ba,03,3d,52,a5,33,43,b8,60,7b,9f,65,9a,34,b2,d5,6b,3f,37,8e,89,77,
1b,f0,99,60,94,04,d9,21,30,0e,fc,61,6d,71,0b,f4,21,e3,c8,9f,ea,31,9a,2e,02,\
"??"=hex:35,fc,c6,3d,c9,02,ad,db,37,1f,61,de,0f,33,8f,50
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(684)
c:\windows\system32\Ati2evxx.dll
.
- - - - - - - > 'explorer.exe'(3156)
c:\program files\Windows Media Player\wmpband.dll
c:\windows\system32\msi.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Common Files\Motive\McciCMService.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\SOUNDMAN.EXE
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\HP\Digital Imaging\bin\hpqSTE08.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Celkový čas: 2011-03-28 20:44:35 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-03-28 18:44
.
Před spuštěním: Volných bajtů: 16 533 913 600
Po spuštění: Volných bajtů: 16 728 870 912
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect /usepmtimer
.
- - End Of File - - 98FF863B967CAF6F875C8FC0803A4D9F

[stell]

Pri tejto akcii je nutné mať ComboFix na ploche.

Vypni>FIREWALL>Antivir>Antispyware>vsetko rezidentne.

Otvor Notepad (Poznámkový blok) a zkopíruj do neho celý zeleny tex:

Kód: Vybrat vše

KILLALL::
Folder::
c:\documents and settings\Jakub Køíž\Data aplikací\Xewaoz
c:\program files\Ask.com
Registry::
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"=-
[-HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"=-
[-HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QuickTime Task"=-
"NeroCheck"=-
File::
c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
Extra::
FireFox::
FF - ProfilePath - c:\documents and settings\Jakub Køíž\Data aplikací\Mozilla\Firefox\Profiles\qd84jgz2.default\
FF - prefs.js: browser.search.selectedEngine - My Web Search
FF - prefs.js: keyword.URL - hxxp://search.mywebsearch.com/mywebsear ... searchfor=

Potom klik na Subor -> Uložiť ako.. .. -> Ako je Názov souboru tak do toho riadku napiš:CFScript.txt
Typ súboru tak tam vyberies *všetky súbory
A ulož ho na plochu.> Pozor CFScript.txt>Neotvarat a nemoze byt ani>CFScript.txt.txt A Urobis Toto :


Po skonceni skenu vlož log čo ComboFix vytvorí

[BINGMAN]

ComboFix 11-03-28.01 - Jakub Kříž 28.03.2011 21:37:44.2.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1023.593 [GMT 2:00]
Spuštěný z: c:\documents and settings\Jakub Kříž\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Jakub Kříž\Plocha\CFScript.txt
.
FILE ::
"c:\windows\Tasks\Scheduled Update for Ask Toolbar.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Ask.com
c:\program files\Ask.com\assets\oobe\b.png
c:\program files\Ask.com\assets\oobe\bl.png
c:\program files\Ask.com\assets\oobe\br.png
c:\program files\Ask.com\assets\oobe\l.png
c:\program files\Ask.com\assets\oobe\pointer.png
c:\program files\Ask.com\assets\oobe\r.png
c:\program files\Ask.com\assets\oobe\t.png
c:\program files\Ask.com\assets\oobe\tl.png
c:\program files\Ask.com\assets\oobe\tr.png
c:\program files\Ask.com\cobrand.ico
c:\program files\Ask.com\config.xml
c:\program files\Ask.com\favicon.ico
c:\program files\Ask.com\fv_a4.ico
c:\program files\Ask.com\GenericAskToolbar.dll
c:\program files\Ask.com\mupcfg.xml
c:\program files\Ask.com\SaUpdate.exe
c:\program files\Ask.com\TaskScheduler.exe
c:\program files\Ask.com\UpdateTask.exe
c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-02-28 do 2011-03-28 )))))))))))))))))))))))))))))))
.
.
2011-03-28 17:09 . 2011-03-28 17:13 -------- d-----w- c:\program files\trend micro
2011-03-28 17:09 . 2011-03-28 17:13 -------- d-----w- C:\rsit
2011-03-28 16:43 . 2004-09-20 09:40 -------- d---a-w- C:\Prince
2011-03-28 16:32 . 2011-03-28 16:44 -------- d---a-w- C:\Disc
2011-03-27 18:38 . 2011-03-28 17:21 -------- d-----w- c:\documents and settings\Jakub Kříž\Data aplikací\Xewaoz
2011-03-27 18:25 . 2011-03-27 18:25 -------- d-----w- C:\$AVG
2011-03-27 16:53 . 2011-03-27 16:53 -------- d-----w- c:\documents and settings\Jakub Kříž\Data aplikací\Malwarebytes
2011-03-27 16:52 . 2010-12-20 16:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-03-27 16:52 . 2011-03-27 16:52 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Data aplikací\Malwarebytes
2011-03-27 16:52 . 2011-03-27 16:53 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-03-27 16:52 . 2010-12-20 16:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-03-19 14:09 . 2011-03-28 19:48 -------- d-----w- c:\program files\Steam
2011-03-19 13:57 . 2011-03-19 14:00 -------- d-----w- c:\program files\Garena
2011-03-18 20:49 . 2011-03-18 20:49 -------- d-----w- c:\documents and settings\Jakub Kříž\Local Settings\Data aplikací\FOMM
2011-03-18 20:48 . 2011-03-18 20:48 -------- d-----w- c:\program files\GeMM
2011-03-17 15:59 . 2011-03-17 15:59 -------- d-----w- c:\documents and settings\Jakub Kříž\Data aplikací\AVG10
2011-03-17 15:51 . 2011-03-17 15:51 -------- d--h--w- c:\documents and settings\All Users.WINDOWS\Data aplikací\Common Files
2011-03-17 15:42 . 2011-03-28 18:04 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Data aplikací\AVG10
2011-03-17 15:25 . 2003-05-13 10:04 -------- d---a-w- C:\ufo
2011-03-17 15:10 . 2011-03-17 15:37 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Data aplikací\MFAData
2011-03-17 01:44 . 2011-03-17 23:32 -------- d-----w- c:\program files\Portal
2011-03-08 16:34 . 2011-03-08 16:34 1242448 ----a-w- C:\SteamNew.exe
2011-03-02 16:51 . 1998-10-30 21:21 231936 ----a-w- c:\windows\system32\SNWValid.dll
2011-03-02 16:51 . 1998-10-30 21:21 1022976 ----a-w- c:\windows\system32\SierraNW.dll
2011-03-02 16:51 . 2011-03-02 16:51 -------- d-----w- c:\program files\Sierra On-Line
2011-03-02 16:49 . 2011-03-02 16:49 -------- d-----w- c:\documents and settings\Jakub Kříž\WINDOWS
2011-03-02 16:48 . 2004-11-02 10:18 -------- d---a-w- C:\Settlers
2011-02-28 16:43 . 2011-02-28 16:43 -------- d-----w- c:\documents and settings\Builds
2011-02-28 16:42 . 2011-03-28 18:33 -------- d-----w- c:\documents and settings\Content
2011-02-28 13:57 . 2011-02-28 13:57 -------- d-----w- c:\program files\2K Games
2011-02-27 20:25 . 2011-02-27 20:25 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Data aplikacÝ
2011-02-26 20:56 . 2011-02-26 20:56 -------- d-----w- c:\documents and settings\Jakub Kříž\Local Settings\Data aplikací\Help
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-02-09 13:53 . 2004-08-18 12:00 270848 ----a-w- c:\windows\system32\sbe.dll
2011-02-09 13:53 . 2004-08-18 12:00 186880 ----a-w- c:\windows\system32\encdec.dll
2011-02-08 17:16 . 2011-02-08 17:16 418480 ----a-w- c:\windows\system32\wrap_oal.dll
2011-02-08 17:16 . 2011-02-08 17:16 115432 ----a-w- c:\windows\system32\OpenAL32.dll
2011-02-02 07:58 . 2010-07-13 14:22 2067456 ----a-w- c:\windows\system32\mstscax.dll
2011-01-27 11:57 . 2010-07-13 14:22 677888 ----a-w- c:\windows\system32\mstsc.exe
2011-01-21 18:44 . 2010-11-27 17:44 138160 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2011-01-21 18:44 . 2010-11-27 17:43 75136 ----a-w- c:\windows\system32\PnkBstrA.exe
2011-01-21 18:43 . 2010-11-27 23:27 271200 ----a-w- c:\windows\system32\PnkBstrB.xtr
2011-01-21 18:43 . 2010-11-27 17:43 271200 ----a-w- c:\windows\system32\PnkBstrB.exe
2011-01-21 18:40 . 2010-11-27 17:44 138056 ----a-w- c:\documents and settings\Jakub Kříž\Data aplikací\PnkBstrK.sys
2011-01-21 14:44 . 2004-08-18 12:00 440320 ----a-w- c:\windows\system32\shimgvw.dll
2011-01-07 14:09 . 2004-08-18 12:00 290048 ----a-w- c:\windows\system32\atmfd.dll
2011-01-02 12:53 . 2010-11-27 17:43 271200 ----a-w- c:\windows\system32\PnkBstrB.ex0
2010-12-31 14:04 . 2004-08-18 12:00 1854976 ----a-w- c:\windows\system32\win32k.sys
2007-06-27 17:31 . 2010-03-22 15:57 90112 -c--a-w- c:\program files\axesstel.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Pro Agent"="c:\program files\DAEMON Tools Pro\DTProAgent.exe" [2007-09-06 136136]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2010-11-25 328056]
"Steam"="c:\program files\Steam\Steam.exe" [2011-03-19 1242448]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-04-23 61440]
"TO2SSM_McciTrayApp"="c:\program files\TO2SSM\McciTrayApp.exe" [2008-08-15 1473536]
"SoundMan"="SOUNDMAN.EXE" [2003-07-16 55296]
"MMTray"="c:\program files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\MMTray.exe" [2003-03-25 53248]
"mmtray2k"="c:\program files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\mmtray2k.exe" [2003-03-25 57344]
"mmtraylsi"="c:\program files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\mmtraylsi.exe" [2003-03-25 53248]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2006-02-19 49152]
"KodakShareButtonApp"="c:\program files\Kodak\KODAK Share Button App\Listener.exe" [2011-01-18 107008]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users.WINDOWS\Nabˇdka Start\Programy\Po spuçtŘnˇ\
BDARemote.lnk - c:\program files\USB TV\EM28XX\BDARemote.exe [2010-1-7 81997]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2006-2-19 288472]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Electronic Arts\\Dead Space\\Dead Space.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"=
"c:\\Program Files\\Dragon Age\\bin_ship\\daorigins.exe"=
"c:\\Program Files\\Dragon Age\\DAOriginsLauncher.exe"=
"c:\\Program Files\\Dragon Age\\bin_ship\\daupdatersvc.service.exe"=
"c:\\Program Files\\Garena\\Garena.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"17265:TCP"= 17265:TCP:BitComet 17265 TCP
"17265:UDP"= 17265:UDP:BitComet 17265 UDP
.
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [13.7.2010 19:14 685816]
R1 appdrv01;Application Driver (01);c:\windows\system32\drivers\appdrv01.sys [18.7.2010 23:14 2915944]
S2 appdrvrem01;Application Driver Auto Removal Service (01);c:\windows\System32\appdrvrem01.exe svc --> c:\windows\System32\appdrvrem01.exe svc [?]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;c:\program files\Dragon Age\bin_ship\daupdatersvc.service.exe [15.12.2009 22:07 25832]
S3 GGSAFERDriver;GGSAFER Driver;\??\c:\program files\Garena\safedrv.sys --> c:\program files\Garena\safedrv.sys [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.zaparit.cz/
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Jakub Kříž\Data aplikací\Mozilla\Firefox\Profiles\qd84jgz2.default\
FF - prefs.js: browser.search.selectedEngine - My Web Search
FF - prefs.js: browser.startup.homepage - www.seznam.cz
FF - prefs.js: keyword.URL - hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?id=ZNfox000&ptb=oGFPKVxHpUJK91e0OxS_zw&psa=&ind=2010090910&ptnrS=ZNfox000&si=&st=kwd&n=77cf8d9e&searchfor=
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Ant Video Downloader: anttoolbar@ant.com - %profile%\extensions\anttoolbar@ant.com
FF - Ext: Flash and Video Download: {bee6eb20-01e0-ebd1-da83-080329fb9a3a} - %profile%\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
FF - Ext: Nero Toolbar: toolbar@ask.com - %profile%\extensions\toolbar@ask.com
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-28 21:48
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-220523388-492894223-839522115-1004\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:a0,ba,03,3d,52,a5,33,43,b8,60,7b,9f,65,9a,34,b2,d5,6b,3f,37,8e,89,77,
1b,f0,99,60,94,04,d9,21,30,0e,fc,61,6d,71,0b,f4,21,e3,c8,9f,ea,31,9a,2e,02,\
"??"=hex:35,fc,c6,3d,c9,02,ad,db,37,1f,61,de,0f,33,8f,50
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(688)
c:\windows\system32\Ati2evxx.dll
.
- - - - - - - > 'explorer.exe'(3280)
c:\program files\Windows Media Player\wmpband.dll
c:\windows\system32\msi.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Common Files\Motive\McciCMService.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\rundll32.exe
c:\windows\SOUNDMAN.EXE
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\HP\Digital Imaging\bin\hpqSTE08.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
.
**************************************************************************
.
Celkový čas: 2011-03-28 21:55:50 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-03-28 19:55
ComboFix2.txt 2011-03-28 18:44
.
Před spuštěním: Volných bajtů: 14 632 415 232
Po spuštění: Volných bajtů: 14 622 453 760
.
- - End Of File - - 078A1AABAB6A4EBCB834B1C755D6CE16

[stell]

Hm, zaujimave,,,
Stahni OTListIt2>> OTL
Označ položku Pro všechny uživatele.
Označ položky Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
do okna >vloz zeleny text a klik Klikn na tlačítko Prohledat
Po dokončení, sem vlož logy OTL.Txt a Extras.txt

Kód: Vybrat vše

msconfig
safebootminimal
activex
drivers32
netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\drivers\*.sys /90

[BINGMAN]

OTL
OTL logfile created on: 28.3.2011 22:14:05 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\Jakub Kříž\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1 023,00 Mb Total Physical Memory | 483,00 Mb Available Physical Memory | 47,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 81,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 108,81 Gb Total Space | 13,31 Gb Free Space | 12,23% Space Free | Partition Type: NTFS
Drive L: | 298,02 Gb Total Space | 57,85 Gb Free Space | 19,41% Space Free | Partition Type: FAT32

Computer Name: GENESIS | User Name: Jakub Kříž | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011.03.28 22:13:07 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jakub Kříž\Plocha\OTL.exe
PRC - [2011.03.26 19:06:40 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011.03.19 16:10:29 | 001,242,448 | ---- | M] (Valve Corporation) -- C:\Program Files\Steam\Steam.exe
PRC - [2011.01.18 16:06:42 | 000,107,008 | ---- | M] (Eastman Kodak Company) -- C:\Program Files\Kodak\KODAK Share Button App\Listener.exe
PRC - [2010.11.25 20:10:37 | 000,328,056 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe
PRC - [2008.08.15 18:33:08 | 001,473,536 | ---- | M] (Motive Communications, Inc.) -- C:\Program Files\TO2SSM\McciTrayApp.exe
PRC - [2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.09.06 15:08:02 | 000,136,136 | ---- | M] (DT Soft Ltd.) -- C:\Program Files\DAEMON Tools Pro\DTProAgent.exe
PRC - [2007.06.26 12:22:42 | 000,081,997 | ---- | M] () -- C:\Program Files\USB TV\EM28XX\BDARemote.exe
PRC - [2003.07.16 16:50:50 | 000,055,296 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE


========== Modules (SafeList) ==========

MOD - [2011.03.28 22:13:07 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jakub Kříž\Plocha\OTL.exe
MOD - [2010.08.23 18:12:33 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2008.04.10 20:11:48 | 000,198,144 | ---- | M] (Motive Communications, Inc.) -- C:\Program Files\Common Files\Motive\McciContextHook_6-1-0_DSR.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (hpqcxs08)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2010.07.18 23:14:43 | 000,304,528 | ---- | M] (Protection Technology) [Auto | Stopped] -- C:\WINDOWS\System32\appdrvrem01.exe -- (appdrvrem01) Application Driver Auto Removal Service (01)
SRV - [2009.12.15 22:07:16 | 000,025,832 | ---- | M] (BioWare) [On_Demand | Stopped] -- C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe -- (DAUpdaterSvc)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Running] -- -- (catchme)
DRV - [2010.07.18 23:14:44 | 002,915,944 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\appdrv01.sys -- (appdrv01) Application Driver (01)
DRV - [2010.07.13 19:14:40 | 000,685,816 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009.04.24 03:30:57 | 004,049,408 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2008.03.29 11:20:55 | 000,021,248 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Motive\MREMP50.sys -- (MREMP50)
DRV - [2008.03.29 11:20:55 | 000,020,096 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Motive\MRESP50.sys -- (MRESP50)
DRV - [2006.02.21 13:12:00 | 000,019,968 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2005.08.10 14:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005.05.16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2003.07.24 09:34:56 | 000,403,968 | ---- | M] (Sensaura Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS)
DRV - [2003.07.24 07:23:16 | 000,461,312 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


IE - HKU\S-1-5-21-220523388-492894223-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.zaparit.cz/
IE - HKU\S-1-5-21-220523388-492894223-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "My Web Search"
FF - prefs.js..browser.startup.homepage: "www.seznam.cz"
FF - prefs.js..extensions.enabledItems: anttoolbar@ant.com:2.3.0
FF - prefs.js..extensions.enabledItems: {bee6eb20-01e0-ebd1-da83-080329fb9a3a}:0.1
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.11.3.15590
FF - prefs.js..keyword.URL: "http://search.mywebsearch.com/mywebsear ... searchfor="
FF - prefs.js..network.proxy.type: 0


FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.03.26 19:06:50 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.03.26 19:06:50 | 000,000,000 | ---D | M]

[2010.07.13 17:52:35 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Jakub Kříž\Data aplikací\Mozilla\Extensions
[2011.03.28 18:37:01 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Jakub Kříž\Data aplikací\Mozilla\Firefox\Profiles\qd84jgz2.default\extensions
[2011.01.05 16:15:18 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Jakub Kříž\Data aplikací\Mozilla\Firefox\Profiles\qd84jgz2.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.08.07 19:05:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Jakub Kříž\Data aplikací\Mozilla\Firefox\Profiles\qd84jgz2.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}-trash
[2010.10.11 15:06:35 | 000,000,000 | ---D | M] (Flash and Video Download) -- C:\Documents and Settings\Jakub Kříž\Data aplikací\Mozilla\Firefox\Profiles\qd84jgz2.default\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
[2011.03.09 23:51:54 | 000,000,000 | ---D | M] (Ant Video Downloader) -- C:\Documents and Settings\Jakub Kříž\Data aplikací\Mozilla\Firefox\Profiles\qd84jgz2.default\extensions\anttoolbar@ant.com
[2011.03.20 18:14:42 | 000,000,000 | ---D | M] (Nero Toolbar) -- C:\Documents and Settings\Jakub Kříž\Data aplikací\Mozilla\Firefox\Profiles\qd84jgz2.default\extensions\toolbar@ask.com
[2010.09.09 16:53:22 | 000,010,017 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Data aplikací\Mozilla\Firefox\Profiles\qd84jgz2.default\searchplugins\mywebsearch.xml
[2011.03.28 18:37:03 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\JAKUB Kříż\DATA APLIKACí\MOZILLA\FIREFOX\PROFILES\QD84JGZ2.DEFAULT\EXTENSIONS\{20A82645-C095-46ED-80E3-08825760534B}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\JAKUB Kříż\DATA APLIKACí\MOZILLA\FIREFOX\PROFILES\QD84JGZ2.DEFAULT\EXTENSIONS\{BEE6EB20-01E0-EBD1-DA83-080329FB9A3A}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\JAKUB Kříż\DATA APLIKACí\MOZILLA\FIREFOX\PROFILES\QD84JGZ2.DEFAULT\EXTENSIONS\ANTTOOLBAR@ANT.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\JAKUB Kříż\DATA APLIKACí\MOZILLA\FIREFOX\PROFILES\QD84JGZ2.DEFAULT\EXTENSIONS\TOOLBAR@ASK.COM
[2010.02.21 12:22:32 | 000,712,704 | ---- | M] (BitComet) -- C:\Program Files\Mozilla Firefox\plugins\npBitCometAgent.dll
[2010.06.26 10:27:08 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.06.26 10:27:08 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.06.26 10:27:08 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.06.26 10:27:08 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.06.26 10:27:08 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2011.03.28 21:47:57 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O3 - HKU\S-1-5-21-220523388-492894223-839522115-1004\..\Toolbar\ShellBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [KodakShareButtonApp] C:\Program Files\Kodak\KODAK Share Button App\Listener.exe (Eastman Kodak Company)
O4 - HKLM..\Run: [MMTray] C:\Program Files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\MMTray.exe (Morgan Multimedia)
O4 - HKLM..\Run: [mmtray2k] C:\Program Files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\mmtray2k.exe ()
O4 - HKLM..\Run: [mmtraylsi] C:\Program Files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\mmtraylsi.exe (Morgan Multimedia)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [TO2SSM_McciTrayApp] C:\Program Files\TO2SSM\McciTrayApp.exe (Motive Communications, Inc.)
O4 - HKU\S-1-5-21-220523388-492894223-839522115-1004..\Run: [DAEMON Tools Pro Agent] C:\Program Files\DAEMON Tools Pro\DTProAgent.exe (DT Soft Ltd.)
O4 - HKU\S-1-5-21-220523388-492894223-839522115-1004..\Run: [Steam] C:\Program Files\Steam\Steam.exe (Valve Corporation)
O4 - HKU\S-1-5-21-220523388-492894223-839522115-1004..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - Startup: C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Po spuštění\BDARemote.lnk = C:\Program Files\USB TV\EM28XX\BDARemote.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-220523388-492894223-839522115-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-220523388-492894223-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-220523388-492894223-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-220523388-492894223-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Jakub Kříž\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Jakub Kříž\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.01.07 13:06:55 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011.03.27 18:38:18 | 000,000,000 | ---D | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2011.03.27 18:37:08 | 000,000,000 | ---D | M] - L:\autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*


SafeBootMin: AppMgmt - File not found
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vykreslování vektorové grafiky (VML)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Datové vazby jazyka DHTML pro jazyk Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Sada nástrojů pro procházení offline
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Vylepšené vytváření obsahu
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Nápověda aplikace Internet Explorer
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - Třídy DirectAnimation jazyka Java
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.7
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Instalační nástroje aplikace Internet Explorer
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Vylepšení procházení
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - Přístup ke službě MSN
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - %SystemRoot%\system32\ie4uinit.exe
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Datové vazby jazyka DHTML
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Hlavní písma aplikace Internet Explorer
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Plánovač úloh
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player 9 ActiveX
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - Nápověda HTML
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE

Drivers32: msacm.at3 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\SONY\atrac3.acm ()
Drivers32: msacm.CoreFLAC_ACM - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Core\CoreFLAC_ACM.acm ()
Drivers32: msacm.divxa32 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxa32.acm (Kristal StudioDFileDescription)
Drivers32: msacm.iac2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\iac25_32.ax (Intel Corporation)
Drivers32: msacm.imaadpcm - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\imaadp32.acm (Microsoft Corporation)
Drivers32: msacm.imc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\imc32.acm (Intel Corporation)
Drivers32: msacm.l3acm - C:\Program Files\ACE Mega CoDecS Pack\SystemS\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\Program Files\ACE Mega CoDecS Pack\SystemS\lameacm.acm (http://www.mp3dev.org/)
Drivers32: msacm.lhacm - C:\Program Files\ACE Mega CoDecS Pack\SystemS\lhacm.acm (Microsoft Corporation)
Drivers32: msacm.msadpcm - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msadp32.acm (Microsoft Corporation)
Drivers32: msacm.msg711 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msg711.acm (Microsoft Corporation)
Drivers32: msacm.msg723 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msg723.acm (Microsoft Corporation)
Drivers32: msacm.msgsm610 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msgsm32.acm (Microsoft Corporation)
Drivers32: msacm.pcdv - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Canopus\pcdv.acm (Canopus Co., Ltd.)
Drivers32: msacm.qmpeg - C:\Program Files\ACE Mega CoDecS Pack\SystemS\QDesign\qmpeg.acm (QDesign Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\Program Files\ACE Mega CoDecS Pack\SystemS\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.vorbis - C:\Program Files\ACE Mega CoDecS Pack\SystemS\OGG\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: msacm.voxacm160 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\VoxWare\vct3216.acm (Voxware, Inc.)
Drivers32: vidc.3iv0 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\3ivx\3ivxVfWCodec.dll (3ivx.com)
Drivers32: vidc.3iv1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\3ivx\3ivxVfWCodec.dll (3ivx.com)
Drivers32: vidc.3iv2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\3ivx\3ivxVfWCodec.dll (3ivx.com)
Drivers32: vidc.3ivd - C:\Program Files\ACE Mega CoDecS Pack\SystemS\3ivx\3ivxVfWCodec.dll (3ivx.com)
Drivers32: vidc.3ivx - C:\Program Files\ACE Mega CoDecS Pack\SystemS\3ivx\3ivxVfWCodec.dll (3ivx.com)
Drivers32: vidc.aas4 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Autodesk\aasc32.dll (Autodesk, Inc.)
Drivers32: vidc.aasc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Autodesk\aasc32.dll (Autodesk, Inc.)
Drivers32: vidc.advj - C:\Program Files\ACE Mega CoDecS Pack\SystemS\avidavicodec.dll (Avid Technology, Inc)
Drivers32: vidc.advs - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Adaptec\dvc.dll (Adaptec)
Drivers32: vidc.aflc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Autodesk\flccodec32.dll (Autodesk, Inc.)
Drivers32: vidc.afli - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Autodesk\flccodec32.dll (Autodesk, Inc.)
Drivers32: vidc.ap41 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32f.dll (Hacked with Joy !)
Drivers32: vidc.asv1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\ASUS\asusasv1.dll ()
Drivers32: vidc.asv2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\ASUS\asusasv2.dll ()
Drivers32: vidc.asvx - C:\Program Files\ACE Mega CoDecS Pack\SystemS\ASUS\asusasv2.dll ()
Drivers32: vidc.avi1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MainConcept\mcmjpg32.dll (MainConcept)
Drivers32: vidc.avi2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MainConcept\mcmjpg32.dll (MainConcept)
Drivers32: vidc.avrn - C:\Program Files\ACE Mega CoDecS Pack\SystemS\avidavicodec.dll (Avid Technology, Inc)
Drivers32: vidc.bt20 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Brooktree\btvvc32.drv (Brooktree Corporation)
Drivers32: vidc.cdvc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Canopus\csccdvc.dll (Canopus Co., Ltd.)
Drivers32: vidc.cram - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msvidc32.dll (Microsoft Corporation)
Drivers32: vidc.cscd - C:\Program Files\ACE Mega CoDecS Pack\SystemS\camcodec.dll (RenderSoft Software.)
Drivers32: vidc.cvid - C:\Program Files\ACE Mega CoDecS Pack\SystemS\iccvid.dll (Compression Technologies, Inc.)
Drivers32: vidc.davc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\dicas\davcvfw.dll (dicas)
Drivers32: vidc.dcap - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pinnacle\mirodv2avi.dll (Pinnacle Systems)
Drivers32: vidc.dcmj - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MainConcept\mcmjpg32.dll (MainConcept)
Drivers32: vidc.ddvc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Canopus\cscdvsd.dll (Canopus Co., Ltd.)
Drivers32: vidc.div3 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32.dll (Hacked with Joy !)
Drivers32: vidc.div4 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32f.dll (Hacked with Joy !)
Drivers32: vidc.div5 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32.dll (Hacked with Joy !)
Drivers32: vidc.div6 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32f.dll (Hacked with Joy !)
Drivers32: vidc.divx - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\DivX520.dll (DivXNetworks, Inc.)
Drivers32: vidc.dmb1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\m3jpeg32.dll (Morgan Multimedia)
Drivers32: vidc.dmb2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\pmjpeg32.dll (White Pine Software and Paradigm Matrix)
Drivers32: vidc.dv25 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.dv50 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.dvc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MainConcept\mcdvd_32.dll (MainConcept)
Drivers32: vidc.dvcp - C:\Program Files\ACE Mega CoDecS Pack\SystemS\SONY\sonydv.dll (Sony Corporation)
Drivers32: vidc.dvcs - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MainConcept\mcdvd_32.dll (MainConcept)
Drivers32: vidc.dvsd - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MainConcept\mcdvd_32.dll (MainConcept)
Drivers32: vidc.dvx4 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\DivX4.dll (DivXNetworks, Inc.)
Drivers32: vidc.DX50 - C:\WINDOWS\System32\DivXVfWCodec.dll ()
Drivers32: vidc.em2v - C:\Program Files\ACE Mega CoDecS Pack\SystemS\etxcodec.dll (Etymonix Inc.)
Drivers32: vidc.ffds - C:\Program Files\Combined Community Codec Pack\Filters\FFDShow\ff_vfw.dll ()
Drivers32: vidc.fljp - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\mmtvmj.dll (Morgan Multimedia)
Drivers32: vidc.frwa - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Forward\frwt.dll (Darim Vision Co.)
Drivers32: vidc.frwd - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Forward\frwd.dll (Darim Vision Co.)
Drivers32: vidc.frwt - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Forward\frwd.dll (Darim Vision Co.)
Drivers32: vidc.frwu - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Forward\frwu.dll (Darim Vision Co.)
Drivers32: vidc.gepj - C:\Program Files\ACE Mega CoDecS Pack\SystemS\pmjpeg32.dll (White Pine Software and Paradigm Matrix)
Drivers32: vidc.glzw - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Gabest\glzw.dll (Gabest)
Drivers32: vidc.gpeg - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Gabest\gpeg.dll (Gabest)
Drivers32: vidc.gpjm - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pinnacle\rtmjpgcdc.dll (Pinnacle Systems)
Drivers32: vidc.hfyu - C:\Program Files\ACE Mega CoDecS Pack\SystemS\huffyuv.dll (Disappearing Inc.)
Drivers32: vidc.i263 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\i263_32.drv (Intel Corporation)
Drivers32: vidc.i420 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msh263.drv (Microsoft Corporation)
Drivers32: vidc.ipdv - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Panasonic\idvcodec.dll (Matsushita Electric Industrial Co., Ltd. I-O DATA DEVICE,INC.)
Drivers32: vidc.ir21 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir21_r.dll ()
Drivers32: vidc.iv30 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv31 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv33 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv34 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv35 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv36 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv37 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv38 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv39 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir32_32.dll ()
Drivers32: vidc.iv40 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv41 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv42 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv43 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv44 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv45 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv46 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv47 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv48 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv49 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iv50 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir50_32.dll (Intel Corporation)
Drivers32: vidc.iyuv - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\iyuv_32.dll (Microsoft Corporation)
Drivers32: vidc.lead - C:\Program Files\ACE Mega CoDecS Pack\SystemS\LEAD\lcodccmp.dll (LEAD Technologies, Inc.)
Drivers32: vidc.m261 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msh261.drv (Microsoft Corporation)
Drivers32: vidc.m263 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msh263.drv (Microsoft Corporation)
Drivers32: vidc.miro - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pinnacle\mirodv2avi.dll (Pinnacle Systems)
Drivers32: vidc.mj2c - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\m3jp2k32.dll (Morgan Multimedia)
Drivers32: vidc.mjpa - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pinnacle\rtmjpgcdc.dll (Pinnacle Systems)
Drivers32: vidc.mjpg - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\m3jpeg32.dll (Morgan Multimedia)
Drivers32: vidc.mjpx - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pegasus\pvmjpg21.dll (Pegasus Imaging Corporation)
Drivers32: vidc.mkvc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\kmvidc32.dll ()
Drivers32: vidc.mmes - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mmjp - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mp41 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\mpg4c32.dll ()
Drivers32: vidc.mp42 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\mpg4c32.dll ()
Drivers32: vidc.mp43 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\mpg4c32.dll ()
Drivers32: vidc.mp4s - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\mpg4c32.dll ()
Drivers32: vidc.mp4v - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\mpg4c32.dll ()
Drivers32: vidc.mpg3 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32.dll (Hacked with Joy !)
Drivers32: vidc.mpg4 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\mpg4c32.dll ()
Drivers32: vidc.mrle - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msrle32.dll (Microsoft Corporation)
Drivers32: vidc.msmc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.msvc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msvidc32.dll (Microsoft Corporation)
Drivers32: vidc.mszh - C:\Program Files\ACE Mega CoDecS Pack\SystemS\avimszh.dll ()
Drivers32: vidc.mtx1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx3 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx4 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx5 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx6 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx7 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx8 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx9 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mwv1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Aware\icmw_32.dll (Aware Inc.)
Drivers32: vidc.nt00 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Newtek\ntcodec.dll (NewTek, Inc)
Drivers32: vidc.pdvc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Panasonic\idvcodec.dll (Matsushita Electric Industrial Co., Ltd. I-O DATA DEVICE,INC.)
Drivers32: vidc.pim1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pinnacle\pclepim1.dll (Pinnacle Systems)
Drivers32: vidc.pimj - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pegasus\pvljpg20.dll (Pegasus Imaging Corporation)
Drivers32: vidc.png1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Core\CorePNG_vfw.dll ()
Drivers32: vidc.pvw2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pegasus\pvwv220.dll (Pegasus Imaging Corporation)
Drivers32: vidc.q1.0 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\qpeg32.dll (Q-Team Dr. Knabe GmbH, Korschenbroich, Germany)
Drivers32: vidc.qpeg - C:\Program Files\ACE Mega CoDecS Pack\SystemS\qpeg32.dll (Q-Team Dr. Knabe GmbH, Korschenbroich, Germany)
Drivers32: vidc.rmp4 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\REALmagic\rmp4.dll ()
Drivers32: vidc.rt21 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\ir21_r.dll ()
Drivers32: vidc.rud0 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Rududu\rududu.dll (nico)
Drivers32: vidc.s422 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Tekram\tekyuv.dll ()
Drivers32: vidc.SEDG - C:\WINDOWS\System32\SamsungVfWCodec.dll ()
Drivers32: vidc.sjpg - C:\Program Files\ACE Mega CoDecS Pack\SystemS\pmjpeg32.dll (White Pine Software and Paradigm Matrix)
Drivers32: vidc.sony - C:\Program Files\ACE Mega CoDecS Pack\SystemS\SONY\sonydv.dll (Sony Corporation)
Drivers32: vidc.t420 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Toshiba\tsbyuv.dll (Microsoft Corporation)
Drivers32: vidc.tscc - C:\Program Files\ACE Mega CoDecS Pack\SystemS\tsccvid.dll (TechSmith Corporation)
Drivers32: vidc.tvmj - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Morgan Multimedia\mmtvmj.dll (Morgan Multimedia)
Drivers32: vidc.uyvy - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.vcr1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\ATI\ativcr1.dll (ATI Technologies, Inc.)
Drivers32: vidc.vcr2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\ATI\ativcr2.dll (ATI Technologies, Inc.)
Drivers32: vidc.vifp - C:\Program Files\ACE Mega CoDecS Pack\SystemS\vfcodec.dll ()
Drivers32: vidc.vixl - C:\Program Files\ACE Mega CoDecS Pack\SystemS\MIRO\miroxl32.dll (Pinnacle Systems)
Drivers32: vidc.vp30 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\On2 Technologies\vp31vfw.dll (On2.com)
Drivers32: vidc.vp31 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\On2 Technologies\vp31vfw.dll (On2.com)
Drivers32: vidc.vp60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.vp61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.vssv - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Vanguard Software Sollutions\vsscodec.dll (Vanguard Software Solutions, Inc.)
Drivers32: vidc.wmv3 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\wmv9vcm.dll (Microsoft Corporation)
Drivers32: vidc.wnv1 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\wnvplay1.dll (Winnov)
Drivers32: vidc.wrpr - C:\Program Files\ACE Mega CoDecS Pack\SystemS\aviwrap.dll ()
Drivers32: vidc.xvid - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: vidc.y411 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Toshiba\tsbyuv.dll (Microsoft Corporation)
Drivers32: vidc.y41p - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Brooktree\btvvc32.drv (Brooktree Corporation)
Drivers32: vidc.yuy2 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.yv12 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\ATI\atiyuv12.dll ()
Drivers32: vidc.yvu9 - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\iyvu9_32.dll ()
Drivers32: vidc.yvyu - C:\Program Files\ACE Mega CoDecS Pack\SystemS\Microsoft\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.zlib - C:\Program Files\ACE Mega CoDecS Pack\SystemS\avizlib.dll ()

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

========== Files/Folders - Created Within 30 Days ==========

File not found -- C:\Documents and Settings\Jakub Kříž\Plocha\[Torrentreactor.to] - Ashes to Ashes Season 3 - xtremetv.org.torrent
[2011.03.28 22:13:03 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Jakub Kříž\Plocha\OTL.exe
[2011.03.28 21:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2011.03.28 21:36:07 | 000,000,000 | ---D | C] -- C:\ComboFix
[2011.03.28 20:25:01 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011.03.28 20:20:07 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011.03.28 20:20:07 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011.03.28 20:20:07 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011.03.28 20:20:07 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011.03.28 20:18:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011.03.28 20:13:17 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011.03.28 19:09:57 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.03.28 19:09:50 | 000,000,000 | ---D | C] -- C:\rsit
[2011.03.28 18:43:24 | 000,000,000 | ---D | C] -- C:\Prince
[2011.03.28 18:32:33 | 000,000,000 | ---D | C] -- C:\Disc
[2011.03.27 21:52:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jakub Kříž\Plocha\Fallout - Moody
[2011.03.27 21:40:11 | 001,625,616 | ---- | C] (File Recovery Ltd.) -- C:\Documents and Settings\Jakub Kříž\Plocha\undelete-360.exe
[2011.03.27 20:38:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jakub Kříž\Data aplikací\Xewaoz
[2011.03.27 20:25:09 | 000,000,000 | ---D | C] -- C:\$AVG
[2011.03.27 18:53:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jakub Kříž\Data aplikací\Malwarebytes
[2011.03.27 18:52:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Malwarebytes' Anti-Malware
[2011.03.27 18:52:58 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011.03.27 18:52:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Malwarebytes
[2011.03.27 18:52:53 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011.03.27 18:52:53 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011.03.27 18:37:06 | 000,000,000 | ---D | C] -- C:\autorun.inf
[2011.03.19 16:09:39 | 000,000,000 | ---D | C] -- C:\Program Files\Steam
[2011.03.19 16:09:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Steam
[2011.03.19 15:57:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jakub Kříž\Nabídka Start\Programy\Garena
[2011.03.19 15:57:34 | 000,000,000 | ---D | C] -- C:\Program Files\Garena
[2011.03.18 22:49:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jakub Kříž\Local Settings\Data aplikací\FOMM
[2011.03.18 22:48:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Fallout Mod Manager
[2011.03.18 22:48:58 | 000,000,000 | ---D | C] -- C:\Program Files\GeMM
[2011.03.17 17:59:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jakub Kříž\Data aplikací\AVG10
[2011.03.17 17:51:06 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Common Files
[2011.03.17 17:42:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\AVG10
[2011.03.17 17:25:38 | 000,000,000 | ---D | C] -- C:\ufo
[2011.03.17 17:10:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\MFAData
[2011.03.17 03:44:09 | 000,000,000 | ---D | C] -- C:\Program Files\Portal
[2011.03.17 03:38:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jakub Kříž\Plocha\Portal
[2011.03.08 22:24:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jakub Kříž\Start Menu
[2011.03.08 18:34:40 | 001,242,448 | ---- | C] (Valve Corporation) -- C:\SteamNew.exe
[2011.03.03 18:25:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Valve
[2011.03.02 18:53:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Sierra
[2011.03.02 18:51:07 | 001,022,976 | ---- | C] (Cendant Software) -- C:\WINDOWS\System32\SierraNW.dll
[2011.03.02 18:51:07 | 000,231,936 | ---- | C] (Cendant Software) -- C:\WINDOWS\System32\SNWValid.dll
[2011.03.02 18:51:06 | 000,000,000 | ---D | C] -- C:\Program Files\Sierra On-Line
[2011.03.02 18:49:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jakub Kříž\WINDOWS
[2011.03.02 18:48:54 | 000,000,000 | ---D | C] -- C:\Settlers
[2011.02.28 15:57:37 | 000,000,000 | ---D | C] -- C:\Program Files\2K Games
[2011.02.27 22:25:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikacÝ
[2011.02.26 22:56:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jakub Kříž\Local Settings\Data aplikací\Help
[2011.02.26 22:56:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jakub Kříž\Data aplikací\Help
[2010.03.22 17:57:50 | 000,090,112 | ---- | C] (Axesstel) -- C:\Program Files\axesstel.dll
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[10 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

File not found -- C:\Documents and Settings\Jakub Kříž\Plocha\[Torrentreactor.to] - Ashes to Ashes Season 3 - xtremetv.org.torrent
[2011.03.28 22:13:07 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jakub Kříž\Plocha\OTL.exe
[2011.03.28 22:12:54 | 298,897,065 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part04.rar.part
[2011.03.28 22:12:54 | 266,243,037 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part05.rar.part
[2011.03.28 22:12:53 | 335,824,329 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part06.rar.part
[2011.03.28 22:12:52 | 224,868,297 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part07.rar.part
[2011.03.28 22:12:50 | 331,646,925 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part08.rar.part
[2011.03.28 22:12:50 | 294,014,143 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part09.rar.part
[2011.03.28 22:12:49 | 316,926,549 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part10.rar.part
[2011.03.28 22:12:49 | 312,063,801 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part11.rar.part
[2011.03.28 22:12:47 | 360,280,365 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part01.rar.part
[2011.03.28 22:12:46 | 298,361,277 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part02.rar.part
[2011.03.28 22:12:45 | 365,520,633 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part03.rar.part
[2011.03.28 21:47:57 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011.03.28 21:47:43 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.03.28 21:47:42 | 000,169,584 | ---- | M] () -- C:\WINDOWS\System32\ativvaxx.cap
[2011.03.28 20:25:08 | 000,000,339 | RHS- | M] () -- C:\boot.ini
[2011.03.28 20:19:12 | 004,305,021 | R--- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\ComboFix.exe
[2011.03.28 19:22:25 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part11.rar
[2011.03.28 19:22:20 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part10.rar
[2011.03.28 19:22:16 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part09.rar
[2011.03.28 19:22:12 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part08.rar
[2011.03.28 19:22:07 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part07.rar
[2011.03.28 19:22:02 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part06.rar
[2011.03.28 19:21:59 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part05.rar
[2011.03.28 19:21:54 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part04.rar
[2011.03.28 19:21:51 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part03.rar
[2011.03.28 19:21:48 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part02.rar
[2011.03.28 19:21:45 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part01.rar
[2011.03.28 19:09:06 | 000,339,991 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\RSIT.exe
[2011.03.28 17:04:31 | 386,612,072 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part12.rar
[2011.03.28 13:39:30 | 000,067,072 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.03.27 21:40:14 | 001,625,616 | ---- | M] (File Recovery Ltd.) -- C:\Documents and Settings\Jakub Kříž\Plocha\undelete-360.exe
[2011.03.27 18:52:59 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Malwarebytes' Anti-Malware.lnk
[2011.03.27 14:43:38 | 000,432,492 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011.03.27 14:43:38 | 000,429,024 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2011.03.27 14:43:38 | 000,078,052 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2011.03.27 14:43:38 | 000,067,448 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011.03.26 14:05:27 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.03.17 22:38:15 | 000,000,880 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\.recently-used.xbel
[2011.03.17 04:10:30 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011.03.10 18:28:44 | 000,000,761 | ---- | M] () -- C:\WINDOWS\m3jp2k.ini
[2011.03.08 18:34:50 | 001,242,448 | ---- | M] (Valve Corporation) -- C:\SteamNew.exe
[2011.03.08 18:34:50 | 000,548,328 | ---- | M] () -- C:\steam_64.pkg
[2011.03.08 18:34:50 | 000,000,014 | ---- | M] () -- C:\steam_64.mst
[2011.03.05 19:27:20 | 000,000,702 | ---- | M] () -- C:\WINDOWS\mmtvmj.ini
[2011.03.03 23:01:50 | 000,988,291 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\zombieanimals.jpg
[2011.03.02 23:54:24 | 466,287,742 | ---- | M] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Half.Life.Single.Player.Pack.rar
[2011.03.02 19:18:21 | 000,000,454 | ---- | M] () -- C:\WINDOWS\SIERRA.INI
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[10 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.03.28 20:25:07 | 000,000,223 | ---- | C] () -- C:\Boot.bak
[2011.03.28 20:25:04 | 000,261,312 | RHS- | C] () -- C:\cmldr
[2011.03.28 20:20:07 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2011.03.28 20:20:07 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2011.03.28 20:20:07 | 000,089,088 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2011.03.28 20:20:07 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2011.03.28 20:20:07 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2011.03.28 19:59:12 | 004,305,021 | R--- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\ComboFix.exe
[2011.03.28 19:22:25 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part11.rar
[2011.03.28 19:22:23 | 312,063,801 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part11.rar.part
[2011.03.28 19:22:20 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part10.rar
[2011.03.28 19:22:18 | 316,926,549 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part10.rar.part
[2011.03.28 19:22:16 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part09.rar
[2011.03.28 19:22:14 | 294,014,143 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part09.rar.part
[2011.03.28 19:22:12 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part08.rar
[2011.03.28 19:22:10 | 331,646,925 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part08.rar.part
[2011.03.28 19:22:07 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part07.rar
[2011.03.28 19:22:05 | 224,868,297 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part07.rar.part
[2011.03.28 19:22:02 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part06.rar
[2011.03.28 19:22:01 | 335,824,329 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part06.rar.part
[2011.03.28 19:21:59 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part05.rar
[2011.03.28 19:21:57 | 266,243,037 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part05.rar.part
[2011.03.28 19:21:54 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part04.rar
[2011.03.28 19:21:52 | 298,897,065 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part04.rar.part
[2011.03.28 19:21:51 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part03.rar
[2011.03.28 19:21:49 | 365,520,633 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part03.rar.part
[2011.03.28 19:21:48 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part02.rar
[2011.03.28 19:21:46 | 298,361,277 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part02.rar.part
[2011.03.28 19:21:45 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part01.rar
[2011.03.28 19:21:43 | 360,280,365 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part01.rar.part
[2011.03.28 19:09:05 | 000,339,991 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\RSIT.exe
[2011.03.28 15:15:14 | 386,612,072 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Left 4 Dead 2 by SkillGrow.part12.rar
[2011.03.27 18:52:59 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Malwarebytes' Anti-Malware.lnk
[2011.03.17 22:38:15 | 000,000,880 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\.recently-used.xbel
[2011.03.08 18:34:40 | 000,548,328 | ---- | C] () -- C:\steam_64.pkg
[2011.03.08 18:34:40 | 000,000,014 | ---- | C] () -- C:\steam_64.mst
[2011.03.03 23:01:49 | 000,988,291 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\zombieanimals.jpg
[2011.03.02 22:57:21 | 466,287,742 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Plocha\Half.Life.Single.Player.Pack.rar
[2011.03.02 18:49:59 | 000,000,454 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2011.02.12 13:06:41 | 000,000,292 | ---- | C] () -- C:\WINDOWS\vtmb.ini
[2011.02.05 13:05:19 | 000,000,303 | ---- | C] () -- C:\WINDOWS\Wininit.ini
[2010.11.28 01:25:01 | 000,835,440 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe
[2010.11.27 19:44:01 | 000,138,160 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010.11.27 19:44:00 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Data aplikací\PnkBstrK.sys
[2010.11.27 19:43:44 | 000,271,200 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2010.11.27 19:43:42 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2010.11.27 19:43:32 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2010.10.24 12:36:37 | 000,000,629 | ---- | C] () -- C:\WINDOWS\scummvm.ini
[2010.10.12 18:03:30 | 000,001,016 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Local Settings\Data aplikací\SRDownloader.nast
[2010.08.08 20:53:47 | 000,000,221 | ---- | C] () -- C:\WINDOWS\NCLogConfig.ini
[2010.08.08 20:40:58 | 000,127,176 | ---- | C] () -- C:\WINDOWS\hpoins11.dat
[2010.08.08 20:24:08 | 000,127,743 | ---- | C] () -- C:\WINDOWS\hpoins11.dat.temp
[2010.08.08 20:24:08 | 000,011,634 | ---- | C] () -- C:\WINDOWS\hpomdl11.dat.temp
[2010.08.08 20:21:14 | 000,077,824 | R--- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll
[2010.08.08 19:52:09 | 000,158,026 | ---- | C] () -- C:\WINDOWS\hpoins14.dat
[2010.08.08 19:52:08 | 000,002,000 | ---- | C] () -- C:\WINDOWS\hpomdl14.dat
[2010.07.22 23:38:46 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2010.07.17 21:01:59 | 000,067,072 | ---- | C] () -- C:\Documents and Settings\Jakub Kříž\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.07.17 13:50:52 | 000,000,761 | ---- | C] () -- C:\WINDOWS\m3jp2k.ini
[2010.07.17 13:50:52 | 000,000,702 | ---- | C] () -- C:\WINDOWS\mmtvmj.ini
[2010.07.17 13:50:51 | 000,000,714 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini
[2010.07.17 13:50:46 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll
[2010.07.17 13:33:23 | 000,021,764 | ---- | C] () -- C:\WINDOWS\System32\CoreAAC-uninstall.exe
[2010.07.14 14:38:33 | 000,286,208 | ---- | C] () -- C:\WINDOWS\System32\binkw32.dll
[2010.07.13 20:57:07 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2010.07.13 20:56:59 | 000,000,864 | ---- | C] () -- C:\WINDOWS\System32\drivers\alcxinit.dat
[2010.07.13 20:56:17 | 000,003,245 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2010.07.13 20:56:16 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2010.07.13 17:52:17 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010.07.13 17:50:01 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010.07.13 17:48:34 | 000,216,856 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.07.13 17:13:56 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2010.07.13 16:48:46 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2010.07.13 16:48:38 | 000,887,724 | R--- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2010.07.13 16:48:37 | 000,189,051 | R--- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2010.07.13 16:48:37 | 000,000,003 | R--- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2010.07.13 16:31:27 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010.07.13 16:24:32 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009.07.14 17:15:00 | 000,178,432 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2009.06.07 16:24:04 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009.06.07 16:16:12 | 000,819,200 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009.02.18 19:55:21 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\ATIODE.exe
[2009.02.03 22:52:03 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ATIODCLI.exe
[2009.01.28 20:50:44 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2008.12.22 06:59:26 | 000,025,312 | ---- | C] () -- C:\WINDOWS\System32\DivXVfWCodec.dll
[2008.12.22 06:59:24 | 000,025,312 | ---- | C] () -- C:\WINDOWS\System32\SamsungVfWCodec.dll
[2008.12.22 06:59:08 | 000,447,200 | ---- | C] () -- C:\WINDOWS\System32\OpenQuicktimeLib.dll
[2008.12.22 06:52:02 | 000,066,272 | ---- | C] () -- C:\WINDOWS\System32\libfaac.dll
[2006.05.05 12:59:01 | 000,011,634 | ---- | C] () -- C:\WINDOWS\hpomdl11.dat
[2004.08.18 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004.08.18 14:00:00 | 000,432,492 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004.08.18 14:00:00 | 000,429,024 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2004.08.18 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004.08.18 14:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2004.08.18 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004.08.18 14:00:00 | 000,078,052 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2004.08.18 14:00:00 | 000,067,448 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004.08.18 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004.08.18 14:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2004.08.18 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004.08.18 14:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004.08.18 14:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004.08.18 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2003.09.30 11:47:39 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2003.09.30 11:47:39 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2003.09.30 11:47:39 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2003.09.30 11:47:39 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2003.04.18 10:19:08 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2003.04.18 10:16:40 | 000,004,524 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2001.07.07 03:00:00 | 000,003,165 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI

========== LOP Check ==========

[2011.03.28 20:04:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\AVG10
[2010.12.19 03:34:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\BioWare
[2011.03.17 17:51:06 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Common Files
[2010.07.13 19:04:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\DAEMON Tools Lite
[2011.03.08 17:15:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\DAEMON Tools Pro
[2011.03.17 17:37:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\MFAData
[2011.01.30 00:21:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\POP3Profiles
[2011.01.07 00:07:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\POPWWPROFILES
[2010.09.07 18:39:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Ubisoft
[2011.02.21 21:22:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{41054FB7-AE0F-4DCF-9073-74BC03EFC472}
[2011.01.19 10:38:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jakub Kříž\Data aplikací\AskToolbar
[2011.03.17 17:59:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jakub Kříž\Data aplikací\AVG10
[2011.02.28 21:34:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jakub Kříž\Data aplikací\AVI ReComp
[2010.08.07 00:00:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jakub Kříž\Data aplikací\BitComet
[2010.07.13 19:04:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jakub Kříž\Data aplikací\DAEMON Tools Lite
[2010.07.13 19:21:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jakub Kříž\Data aplikací\DAEMON Tools Pro
[2010.10.22 19:15:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jakub Kříž\Data aplikací\GHISLER
[2011.01.22 16:05:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jakub Kříž\Data aplikací\gtk-2.0
[2010.10.21 16:56:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jakub Kříž\Data aplikací\Image Zone Express
[2010.10.21 21:06:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jakub Kříž\Data aplikací\runic games
[2011.02.04 15:43:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jakub Kříž\Data aplikací\ScummVM
[2011.03.28 22:18:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jakub Kříž\Data aplikací\uTorrent
[2011.03.28 19:21:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jakub Kříž\Data aplikací\Xewaoz
[2010.07.21 16:59:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jakub Kříž\Data aplikací\XRay Engine
[2010.01.08 14:14:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\AVGTOOLBAR
[2010.01.07 19:08:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xx\Data aplikací\AVGTOOLBAR
[2010.05.12 17:49:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xx\Data aplikací\avidemux
[2010.01.07 22:46:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xx\Data aplikací\DAEMON Tools Lite
[2010.04.23 20:01:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xx\Data aplikací\GetRightToGo
[2010.02.25 17:38:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xx\Data aplikací\gtk-2.0
[2010.04.02 13:11:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xx\Data aplikací\id Software
[2010.01.09 12:35:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xx\Data aplikací\Image Zone Express
[2010.06.26 19:58:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xx\Data aplikací\Ubisoft

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >
[2011.03.08 18:34:50 | 001,242,448 | ---- | M] (Valve Corporation) -- C:\SteamNew.exe


< MD5 for: AGP440.SYS >
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\7267cf70057c86bc62f757\i386\sp3.cab:AGP440.sys
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ERDNT\cache\agp440.sys
[2008.04.14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\agp440.sys
[2008.04.14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

< MD5 for: ATAPI.SYS >
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\7267cf70057c86bc62f757\i386\sp3.cab:atapi.sys
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys

< MD5 for: EVENTLOG.DLL >
[2008.04.14 08:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2008.04.14 08:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\eventlog.dll
[2008.04.14 08:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll

< MD5 for: NETLOGON.DLL >
[2009.02.06 20:47:20 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=1F43B8C0F4C767FBED89711C30E704D9 -- C:\WINDOWS\$hf_mig$\KB968389\SP2QFE\netlogon.dll
[2009.02.06 20:47:20 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=1F43B8C0F4C767FBED89711C30E704D9 -- C:\WINDOWS\$hf_mig$\KB975467\SP2QFE\netlogon.dll
[2008.04.14 08:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2008.04.14 08:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\netlogon.dll
[2008.04.14 08:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: SCECLI.DLL >
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2009.04.24 02:15:17 | 000,442,368 | R--- | M] (Advanced Micro Devices, Inc.) Unable to obtain MD5 -- C:\WINDOWS\system32\ATIDEMGX.dll
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010.07.13 19:14:40 | 000,685,816 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys

< %systemroot%\System32\config\*.sav >
[2010.07.13 17:47:52 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2010.07.13 17:47:52 | 000,638,976 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2010.07.13 17:47:52 | 000,458,752 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< %systemroot%\system32\drivers\*.sys /90 >
[2011.01.21 20:44:41 | 000,138,160 | ---- | M] () -- C:\WINDOWS\system32\drivers\PnkBstrK.sys

< End of report >
[/code]

[BINGMAN]

extras
OTL Extras logfile created on: 28.3.2011 22:14:05 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\Jakub Kříž\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1 023,00 Mb Total Physical Memory | 483,00 Mb Available Physical Memory | 47,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 81,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 108,81 Gb Total Space | 13,31 Gb Free Space | 12,23% Space Free | Partition Type: NTFS
Drive L: | 298,02 Gb Total Space | 57,85 Gb Free Space | 19,41% Space Free | Partition Type: FAT32

Computer Name: GENESIS | User Name: Jakub Kříž | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-220523388-492894223-839522115-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"17265:TCP" = 17265:TCP:*:Enabled:BitComet 17265 TCP
"17265:UDP" = 17265:UDP:*:Enabled:BitComet 17265 UDP

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" = C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\Electronic Arts\Dead Space\Dead Space.exe" = C:\Program Files\Electronic Arts\Dead Space\Dead Space.exe:*:Enabled:Dead Space ™ -- ()
"C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe" = C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) -- ()
"C:\Program Files\Dragon Age\bin_ship\daorigins.exe" = C:\Program Files\Dragon Age\bin_ship\daorigins.exe:*:Enabled:Dragon Age Origins Game -- (BioWare)
"C:\Program Files\Dragon Age\DAOriginsLauncher.exe" = C:\Program Files\Dragon Age\DAOriginsLauncher.exe:*:Enabled:Dragon Age Origins Launcher -- (BioWare)
"C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe" = C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe:*:Enabled:Dragon Age Origins Updater -- (BioWare)
"C:\Program Files\Garena\Garena.exe" = C:\Program Files\Garena\Garena.exe:*:Enabled:Garena -- (Garena Online PTE LTD)
"C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02EBDBB9-4600-41D3-B566-40CB861511D2}" = World of Warcraft FREE Trial
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{05C56753-F144-44BC-BA67-83CC5DBF395C}" = F300
"{0887E2BC-9207-7C72-3973-1CBACF39B2FE}" = Catalyst Control Center Core Implementation
"{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club
"{08F8FD7C-44A5-4423-B87C-EBD3D94C9F87}" = Vampire - The Masquerade Bloodlines
"{11C7441C-0BAE-246F-01CD-43F0C9204128}" = Catalyst Control Center Graphics Full New
"{16390577-650D-BE5E-6A32-CC1036018865}" = Catalyst Control Center Localization All
"{1DDEC88B-FC16-F7C4-6A23-941455990C63}" = CCC Help Russian
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2376813B-2E5A-4641-B7B3-A0D5ADB55229}" = HPPhotoSmartExpress
"{2758691A-2CDE-4942-A4AC-0E8F61FE2067}" = USB Video Driver
"{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}" = WebReg
"{2F28B3C9-2C89-4206-8B33-8ADC9577C49B}" = Scan
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{3BD633E0-4BF8-4499-9149-88F0767D449C}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch
"{45B8A76B-57EC-4242-B019-066400CD8428}" = BufferChm
"{466D379F-D2A4-4F9B-86E2-E2CBA6056D87}" = Aplikace KODAK Share Button
"{4D87DC92-C328-46EC-A7B4-9C88129DC696}" = Dead Space™
"{4EA684E9-5C81-4033-A696-3019EC57AC3A}" = HPProductAssistant
"{5371387C-01DC-C818-BFD0-FCC201FC0E5C}" = ccc-core-static
"{54194F60-988C-4D03-B922-C2B00EFDA39A}" = NVIDIA PhysX
"{543E938C-BDC4-4933-A612-01293996845F}" = UnloadSupport
"{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV
"{5B635F26-70E1-7035-2D10-C71DF4688D9C}" = CCC Help Czech
"{5DA6F06A-B389-407B-BF8C-1548767914D8}" = ATI Problem Report Wizard
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{68763C27-235D-4165-A961-FDEA228CE504}" = AiOSoftwareNPI
"{6909F917-5499-482e-9AA1-FAD06A99F231}" = Toolbox
"{6994491D-D491-48F1-AE1F-E179C1FFFC2F}" = HP Photosmart Essential
"{6D8DDB4A-C263-40DE-BA16-AFDAD159D59A}" = Tom Clancy's Splinter Cell Conviction
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{6FC189B3-C221-8212-24C8-4BD420353F4D}" = CCC Help Italian
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{736C803C-DD3B-4015-BC51-AFB9E67B9076}" = Readme
"{74BE6CF2-480C-EC4F-D7C6-44D5BADE9E82}" = CCC Help Thai
"{7621EA53-7D9D-C84E-E641-31B1B43CCAFD}" = CCC Help Dutch
"{7821D0DC-1CF1-67E3-38B1-9CFC77137DBE}" = CCC Help French
"{7B95E787-556B-293D-30F5-EBB3292E350F}" = CCC Help Korean
"{7CB42F5A-3211-AB65-174F-CC65243F1A91}" = CCC Help Hungarian
"{7E7B7865-6C80-4373-8BC1-C2EB9431F9DE}" = ProductContextNPI
"{8331C3EA-0C91-43AA-A4D4-27221C631139}" = Status
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8503C901-85D7-4262-88D2-8D8B2A7B08B8}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Patch
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{879A4884-6B86-D0CA-B517-C00BED903BBE}" = ccc-utility
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89175DF1-45F4-490C-B804-D6347D36D82E}" = ATI AVIVO Codecs
"{8988F2A7-AF56-F0C1-1EFB-1C2413BFC955}" = CCC Help Polish
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"{8A418C1B-D006-01DE-7F91-0A718F80DDBC}" = CCC Help German
"{8A4CE7FD-9657-4B06-9943-E1819F3D5D67}" = DocProc
"{8C58B1E4-833F-D05C-4383-686A993D9980}" = Catalyst Control Center Graphics Full Existing
"{8EFC1EBA-3A9A-986B-1295-03B408207E80}" = CCC Help Portuguese
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90850409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Word Viewer 2003
"{931C06CF-FEAC-CFC3-539B-90056AED042F}" = CCC Help Turkish
"{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"{94B03155-4E42-196A-3A62-9D74E9422D3F}" = Skins
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{97836753-DFB8-5C36-3A6D-1110FCA126E2}" = CCC Help Finnish
"{985F0C69-F2B9-4D74-8932-D78CAE01FFF8}" = ATI MCE Encoder
"{996512CF-F35B-48DE-9291-557FA5316967}" = ScannerCopy
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A4D7B764-4140-11D4-88EB-0050DA3579C0}" = Nero - Burning Rom
"{A9C365A3-06C0-43b4-A2DB-EDF0A6079AA9}" = DJ_AIO_Software
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-7AD7-1033-7B44-A90000000001}" = Adobe Reader 9
"{AEC81925-9C76-4707-84A9-40696C613ED3}" = Dragon Age: Origins
"{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}" = AIO_Scan
"{B1083EC3-C102-422C-B7F9-071DF50EC0FA}" = Sam And Max - Season One
"{B1EF8404-8CE2-736B-8364-42360AB71FB3}" = Catalyst Control Center HydraVision Full
"{B45FABE7-D101-4D99-A671-E16DA40AF7F0}" = Microsoft Games for Windows - LIVE
"{B578C85A-A84C-4230-A177-C5B2AF565B8C}" = Microsoft Games for Windows - LIVE Redistributable
"{BB15AB25-DA56-760E-9B2C-4DB11FA89B1E}" = Catalyst Control Center Graphics Light
"{BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E}" = HP Software Update
"{BD2AA35B-EE5C-E73B-1657-AC8E29EE642E}" = CCC Help English
"{BDBE2F3E-42DB-4d4a-8CB1-19BA765DBC6C}" = HP Photosmart, Officejet and Deskjet 7.0.A
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C4E2A4A7-B623-40CB-8EEA-72F577E49D56}" = Vampire - The Masquerade Bloodlines
"{C7F54CF8-D6FB-4E0A-93A3-E68AE0D6C476}" = SolutionCenter
"{C8753E28-2680-49BF-BD48-DD38FD086EFE}" = AiO_Scan_CDA
"{CBF1B588-E996-6B26-11E5-DBD9B0687BA7}" = CCC Help Danish
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CF714A90-0A41-7913-EAD7-A5DB26156A8F}" = CCC Help Spanish
"{D16F2920-A26F-D4D6-867F-37748D95EB2F}" = CCC Help Chinese Traditional
"{D3B1C799-CB73-42DE-BA0F-2344793A095C}" = Catalyst Control Center - Branding
"{D79429DF-8974-FF16-96E3-1CFB13938D2A}" = CCC Help Japanese
"{DBC20735-34E6-4E97-A9E5-2066B66B243D}" = TrayApp
"{DF391159-2A1F-BD11-CCAB-70BEC48390C1}" = CCC Help Chinese Standard
"{DFFE2B1F-07E0-45A9-8801-CD8514CAA876}" = Prince of Persia T2T
"{E1B80DEE-A795-4258-8445-074C06AE3AB8}" = MarketResearch
"{E1D07026-77E3-EF8C-3711-63B47251F732}" = CCC Help Greek
"{E2F868EB-838C-40C5-BBFF-FAAD14666FD5}" = Prince of Persia The Two Thrones
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218
"{E5966E4C-0A93-4F59-A981-BD3173D4799F}" = F300_Help
"{E9C18EBD-85BE-47D0-AA73-3FEDCC976B04}" = Toolbox
"{EE5BC0BB-9EDA-423C-8276-48857B735D68}" = Prince of Persia Warrior Within
"{EF0018DA-1B22-71F5-391A-7B137B3C4071}" = CCC Help Norwegian
"{EF7A5927-C3D6-29F6-FDE2-A446CC1BB0E8}" = ccc-core-preinstall
"{EFACDB2B-4242-8864-BAB7-DA959531B5F1}" = CCC Help Swedish
"{F157460F-720E-482f-8625-AD7843891E5F}" = InstantShareDevicesMFC
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"{F3B8871F-D1B9-1046-BB76-25719A02E89E}" = Catalyst Control Center Graphics Previews Common
"{F56D6F46-1D62-4734-BF12-6457A1ED17BD}" = DJ_AIO_Software_min
"{F6076EF9-08E1-442F-B6A2-BFB61B295A14}" = Fax_CDA
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FB15E224-67C3-491F-9F5C-F257BC418412}" = Destinations
"{FBB980B0-63F8-4B48-8D65-90F1D9F81D9F}" = NewCopy_CDA
"{FCCDE84B-0154-459E-A8F2-C6B3FA5C1881}" = HydraVision
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"3FA1705966809259F916AF817C59B4F389F4572C" = Balíček ovladače systému Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"All ATI Software" = Softarová utilita ATI - Odinstalovat
"ATI Display Driver" = ATI Display Driver
"AVI ReComp" = AVI ReComp 1.5.1
"Avisynth" = AviSynth 2.5
"Broken Sword" = Broken Sword
"CodecInstaller" = CodecInstaller 2.10.2
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2009-09-09
"CoreAAC Audio Decoder" = CoreAAC Audio Decoder (remove only)
"Čeština Dragon Age Origins 1.00" = Čeština Dragon Age Origins 1.00
"EAX(tm) Unified (SHELL)" = EAX(tm) Unified (SHELL)
"Fallout New Vegas_is1" = Fallout New Vegas
"GameParkClient_is1" = GamePark
"Garena" = Garena 2010
"Generic Mod Manager_is1" = Fallout Mod Manager 0.13.21
"HP Imaging Device Functions" = HP Imaging Device Functions 7.0
"HP Solution Center & Imaging Support Tools" = HP Solution Center 7.0
"HPExtendedCapabilities" = HP Customer Participation Program 7.0
"HPOCR" = OCR Software by I.R.I.S 7.0
"InstallShield_{3BD633E0-4BF8-4499-9149-88F0767D449C}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch
"InstallShield_{8503C901-85D7-4262-88D2-8D8B2A7B08B8}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Multiplayer Patch
"InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"InstallShield_{C4E2A4A7-B623-40CB-8EEA-72F577E49D56}" = Vampire - The Masquerade Bloodlines
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.6.16)" = Mozilla Firefox (3.6.16)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"O2 Internet Konfigurator" = O2 Internet Konfigurator
"OpenAL" = OpenAL
"PunkBusterSvc" = PunkBuster Services
"ReClock" = ReClock (remove only)
"Sam and Max - Season Two" = Sam & Max - Season Two
"ShockwaveFlash" = Adobe Flash Player 9 ActiveX
"Sierra Utilities" = Sierra Utilities
"SubtitleWorkshop" = Subtitle Workshop 2.51
"Totalcmd" = Total Commander (Remove or Repair)
"uTorrent" = µTorrent
"VLC media player" = VLC media player 1.1.4
"VobSub" = VobSub 2.23
"WIC" = Windows Imaging Component
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"WinGimp-2.0_is1" = GIMP 2.6.11
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xvid_is1" = Xvid 1.2.2

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 6.2.2011 13:07:35 | Computer Name = GENESIS | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace rundll32.exe, verze 5.1.2600.5512, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 6.2.2011 13:07:38 | Computer Name = GENESIS | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace rundll32.exe, verze 5.1.2600.5512, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 6.2.2011 13:07:39 | Computer Name = GENESIS | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace rundll32.exe, verze 5.1.2600.5512, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 6.2.2011 13:07:40 | Computer Name = GENESIS | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace rundll32.exe, verze 5.1.2600.5512, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 6.2.2011 13:07:40 | Computer Name = GENESIS | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace rundll32.exe, verze 5.1.2600.5512, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 6.2.2011 13:07:41 | Computer Name = GENESIS | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace rundll32.exe, verze 5.1.2600.5512, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 6.2.2011 13:07:42 | Computer Name = GENESIS | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace rundll32.exe, verze 5.1.2600.5512, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 7.2.2011 12:42:00 | Computer Name = GENESIS | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace Saboteur.exe, verze 1.0.0.1, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 8.2.2011 13:19:23 | Computer Name = GENESIS | Source = MsiInstaller | ID = 1013
Description = Product: NVIDIA PhysX -- Installation terminated

Error - 12.2.2011 17:39:01 | Computer Name = GENESIS | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 1.9.2.3989, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

[ System Events ]
Error - 28.3.2011 14:23:10 | Computer Name = GENESIS | Source = Disk | ID = 262151
Description = Zařízení \Device\Harddisk0\D má chybný blok.

Error - 28.3.2011 14:23:19 | Computer Name = GENESIS | Source = Disk | ID = 262151
Description = Zařízení \Device\Harddisk0\D má chybný blok.

Error - 28.3.2011 14:23:19 | Computer Name = GENESIS | Source = Disk | ID = 262151
Description = Zařízení \Device\Harddisk0\D má chybný blok.

Error - 28.3.2011 14:23:19 | Computer Name = GENESIS | Source = Disk | ID = 262151
Description = Zařízení \Device\Harddisk0\D má chybný blok.

Error - 28.3.2011 14:23:19 | Computer Name = GENESIS | Source = Disk | ID = 262151
Description = Zařízení \Device\Harddisk0\D má chybný blok.

Error - 28.3.2011 15:37:40 | Computer Name = GENESIS | Source = Service Control Manager | ID = 7034
Description = Služba Ati HotKey Poller byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 28.3.2011 15:37:40 | Computer Name = GENESIS | Source = Service Control Manager | ID = 7034
Description = Služba McciCMService byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 28.3.2011 15:37:40 | Computer Name = GENESIS | Source = Service Control Manager | ID = 7034
Description = Služba PnkBstrA byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error - 28.3.2011 15:37:40 | Computer Name = GENESIS | Source = Service Control Manager | ID = 7034
Description = Služba Služba brány aplikačního rozhraní byla neočekávaně ukončena.
Tento stav nastal již 1krát.

Error - 28.3.2011 15:37:40 | Computer Name = GENESIS | Source = Service Control Manager | ID = 7034
Description = Služba Zařazování tisku byla neočekávaně ukončena. Tento stav nastal
již 1krát.


< End of report >
[/code]