Po restartu CleanUp pouze Nouzový režim

[Unisono]

CleanUp zmrazil náběh systému

Log z RSITu zde:

Logfile of random's system information tool 1.06 (written by random/random)
Run by Šeda at 2010-04-21 14:31:42
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 805 MB (5%) free of 18 GB
Total RAM: 1023 MB (62% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-73586283-1275210071-682003330-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-73586283-1275210071-682003330-1003UA.job
C:\WINDOWS\tasks\NeroLiveEpgUpdate-PC3_Šeda.job
C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
C:\WINDOWS\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{140BD8E3-C167-11D4-B4A3-080000180323}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-04-04 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll [2009-01-12 520192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}]
FGCatchUrl - E:\Program Files\FlashGet\jccatch.dll [2007-08-06 94308]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files\Norton Internet Security\Engine\17.6.0.32\coIEPlg.dll [2010-03-26 394608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64d23501-5195-4224-9446-e2b0fb64e859}]
HiGames Toolbar - C:\Program Files\HiGames\tbHiG1.dll [2010-02-19 2349080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files\Norton Internet Security\Engine\17.6.0.32\IPSBHO.DLL [2010-02-04 79224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B8A7839C-51E8-4067-ADA3-CA74BABC1976}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-03-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-03-09 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F156768E-81EF-470C-9057-481BA8380DBA}]
FlashGet GetFlash Class - E:\Program Files\FlashGet\getflash.dll [2007-05-18 163840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2004-08-26 405504]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll [2009-01-12 520192]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2008-06-12 958712]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-11-24 953800]
{64d23501-5195-4224-9446-e2b0fb64e859} - HiGames Toolbar - C:\Program Files\HiGames\tbHiG1.dll [2010-02-19 2349080]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files\Norton Internet Security\Engine\17.6.0.32\coIEPlg.dll [2010-03-26 394608]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-12-01 77824]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-03-27 13684736]
"nwiz"=nwiz.exe /install []
"RTBatteryMeter"=C:\Program Files\VibrateGameDeviceDriver\RFPIcon.exe [2003-01-16 49152]
"WinVNC"=E:\Program Files\RealVNC\WinVNC\winvnc.exe [2002-11-27 335872]
"PrintPack dispatcher"=E:\Program Files\Software602\Print2PDF\PrnPack.exe [2006-09-08 2543616]
"mouseElf"=C:\PROGRA~1\GENIUS~1\mouseElf.exe [2002-02-20 155648]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-06-16 221184]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"PCSuiteTrayApplication"=E:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe [2007-03-23 227328]
"CanonSolutionMenu"=C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2007-05-15 644696]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2007-04-04 1603152]
"Sony Ericsson PC Suite"=E:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2007-01-26 495616]
"CloneCDTray"=E:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2006-09-28 57344]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-01-05 413696]
"iTunesHelper"=E:\Program Files\iTunes\iTunesHelper.exe [2009-01-06 290088]
"InstantBurn"=E:\PROGRA~1\CYBERL~1\INSTAN~1\Win2K\IBurn.exe [2007-06-04 599600]
"LGODDFU"=E:\Program Files\lg_fwupdate\fwupdate.exe [2006-08-17 249856]
"BDRegion"=C:\Program Files\Cyberlink\Shared Files\brs.exe [2009-03-18 75048]
"RemoteControl"=E:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2008-07-21 87336]
"LanguageShortcut"=E:\Program Files\CyberLink\PowerDVD\Language\Language.exe [2008-05-14 62760]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-03-27 86016]
"NBKeyScan"=E:\Program Files\Nero\Nero BackItUp 4\NBKeyScan.exe [2008-09-24 2254120]
"Adobe Reader Speed Launcher"=E:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-04-04 36272]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-03-24 952768]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"OEXPRESS"=C:\Documents and Settings\All Users\Data aplikací\LangSoft\OETRN.EXE [2009-01-12 26624]
"WEBTRAN"= []
"SoftAuto.exe"=C:\Program Files\Creative\Software Update 3\SoftAuto.exe [2008-08-13 405504]
"Power2GoExpress"= []
"Google Update"=C:\Documents and Settings\Šeda\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2009-07-11 133104]
"DAEMON Tools Lite"=E:\Program Files\DAEMON Tools Lite\daemon.exe [2008-07-24 490952]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE
WinZip Quick Pick.lnk - C:\Program Files\WinZip\WZQKPICK.EXE

C:\Documents and Settings\Šeda\Nabídka Start\Programy\Po spuštění
OpenOffice.org 2.1.lnk - C:\Program Files\OpenOffice.org 2.1\program\quickstart.exe
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
_uninst_setup_9.0.0.722_18.04.2010_23-12.exe.lnk - C:\Documents and Settings\Šeda\Local Settings\Temp\_uninst_setup_9.0.0.722_18.04.2010_23-12.exe.bat

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\slbipsch]
C:\WINDOWS\system32\slbipsch.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
msmhost - {5E0AB119-E27E-4067-8D8C-FD648B2BC8EA}
msmdev - {B2546A54-2D3A-4F7D-B749-15D6D5D11CDC}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=149

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"E:\Program Files\ICQ\ICQLite\ICQLite.exe"="E:\Program Files\ICQ\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"E:\Hry\Infogrames\Grand Prix 4\GP4.exe"="E:\Hry\Infogrames\Grand Prix 4\GP4.exe:*:Enabled:GP4"
"C:\Program Files\totalcmd\TOTALCMD.EXE"="C:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"E:\Hry\TrackMania Nations ESWC\TmNationsESWC.exe"="E:\Hry\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"E:\Hry\HL2\hl2.exe"="E:\Hry\HL2\hl2.exe:*:Disabled:hl2"
"E:\Program Files\FlatOut\flatout.exe"="E:\Program Files\FlatOut\flatout.exe:*:Enabled:flatout"
"E:\Hry\NHL07\nhl2007.exe"="E:\Hry\NHL07\nhl2007.exe:*:Enabled:nhl2007"
"E:\Hry\Wiggles\Wiggles.exe"="E:\Hry\Wiggles\Wiggles.exe:*:Enabled:Wiggles"
"E:\Program Files\ICQ6\ICQ.exe"="E:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"E:\Program Files\Project Snowblind\Snowblind.MP"="E:\Program Files\Project Snowblind\Snowblind.MP:*:Disabled:Project: Snowblind (PC)"
"C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe"="C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"E:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe"="E:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"E:\Program Files\TrackMania Original Demo\TmOriginalDemo.exe"="E:\Program Files\TrackMania Original Demo\TmOriginalDemo.exe:*:Enabled:TmOriginalDemo"
"E:\Program Files\TrackMania Sunrise Extreme Demo\TmSunriseExtremeDemo.exe"="E:\Program Files\TrackMania Sunrise Extreme Demo\TmSunriseExtremeDemo.exe:*:Enabled:TmSunriseExtremeDemo"
"C:\Documents and Settings\Šeda\Plocha\TrackMania Nations ESWC\TmNationsESWC.exe"="C:\Documents and Settings\Šeda\Plocha\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"E:\Program Files\FlightGear\bin\Win32\fgfs.exe"="E:\Program Files\FlightGear\bin\Win32\fgfs.exe:*:Enabled:fgfs"
"C:\WINDOWS\system32\~.exe"="C:\WINDOWS\system32\~.exe:*:Enabled:Control"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"E:\Program Files\TmNationsForever\TmForever.exe"="E:\Program Files\TmNationsForever\TmForever.exe:*:Enabled:TmForever"
"E:\Program Files\EA SPORTS\NHL08\nhl2008.exe"="E:\Program Files\EA SPORTS\NHL08\nhl2008.exe:*:Enabled:nhl2008"
"E:\Program Files\TrackMania Sunrise\TmSunrise.exe"="E:\Program Files\TrackMania Sunrise\TmSunrise.exe:*:Enabled:TmSunrise"
"E:\Program Files\FlatOut2\FlatOut2.exe"="E:\Program Files\FlatOut2\FlatOut2.exe:*:Enabled:FlatOut2"
"E:\Program Files\Pinnacle\Studio 12\Programs\RM.exe"="E:\Program Files\Pinnacle\Studio 12\Programs\RM.exe:*:Enabled:Render Manager"
"E:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe"="E:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe:*:Enabled:Studio"
"E:\Program Files\Pinnacle\Studio 12\Programs\umi.exe"="E:\Program Files\Pinnacle\Studio 12\Programs\umi.exe:*:Enabled:umi"
"C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe"="C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe:*:Enabled:Nero ProductSetup"
"C:\Documents and Settings\Šeda\Local Settings\Temp\Nero Web\SetupXu.exe"="C:\Documents and Settings\Šeda\Local Settings\Temp\Nero Web\SetupXu.exe:*:Enabled:Nero ProductSetup"
"C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe"="C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe:*:Enabled:Nero ShowTime Essentials"
"E:\Program Files\ICQ6.5\ICQ.exe"="E:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"E:\Program Files\FlashGet\flashget.exe"="E:\Program Files\FlashGet\flashget.exe:*:Enabled:Flashget"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"E:\Program Files\iTunes\iTunes.exe"="E:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"E:\Program Files\CyberLink\PowerDVD\PowerDVD.exe"="E:\Program Files\CyberLink\PowerDVD\PowerDVD.exe:*:Enabled:PowerDVD"
"C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe"="C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process "
"C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe"="C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater"
"H:\qip\QIP\qip.exe"="H:\qip\QIP\qip.exe:*:Enabled:Quiet Internet Pager"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"E:\Program Files\uTorrent\utorrent.exe"="E:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Documents and Settings\Šeda\Local Settings\Temp\bulanci.tmp"="C:\Documents and Settings\Šeda\Local Settings\Temp\bulanci.tmp:*:Disabled:bulanci"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Disabled:Microsoft DirectPlay Helper"
"E:\Program Files\racer\racer\racer.exe"="E:\Program Files\racer\racer\racer.exe:*:Enabled:racer"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype. Take a deep breath "

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======File associations======

.scr - open -
.scr - install -
.scr - config -

======List of files/folders created in the last 1 months======

2010-04-21 12:35:18 ----D---- C:\rsit
2010-04-21 12:35:18 ----D---- C:\Program Files\trend micro
2010-04-21 11:57:15 ----A---- C:\WINDOWS\ntbtlog.txt
2010-04-21 07:09:34 ----D---- C:\Program Files\Symantec
2010-04-21 07:09:34 ----D---- C:\Program Files\Common Files\Symantec Shared
2010-04-21 07:09:34 ----A---- C:\WINDOWS\system32\S32EVNT1.DLL
2010-04-21 07:09:04 ----D---- C:\Program Files\Norton Internet Security
2010-04-21 07:09:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\Norton
2010-04-21 07:08:42 ----D---- C:\Program Files\NortonInstaller
2010-04-21 07:08:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\NortonInstaller
2010-04-20 12:24:02 ----A---- C:\WINDOWS\system32\bda4E6B.tmp
2010-04-20 09:12:02 ----D---- C:\Qoobox
2010-04-17 07:10:31 ----A---- C:\WINDOWS\system32\bda3D.tmp
2010-04-17 07:06:16 ----A---- C:\WINDOWS\system32\bda3B.tmp
2010-04-17 07:03:31 ----A---- C:\WINDOWS\system32\bda39.tmp
2010-04-17 07:02:45 ----A---- C:\WINDOWS\system32\bda38.tmp
2010-04-17 07:01:48 ----A---- C:\WINDOWS\system32\bda37.tmp
2010-04-17 07:01:37 ----A---- C:\WINDOWS\system32\bda36.tmp
2010-04-16 17:10:12 ----A---- C:\bdlog.txt
2010-04-16 12:25:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\BitDefender
2010-04-16 12:18:39 ----D---- C:\Program Files\Common Files\BitDefender
2010-04-15 19:27:35 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2010-04-15 19:27:14 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-04-15 19:21:31 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-04-15 19:21:15 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-04-15 19:20:51 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-04-15 19:20:14 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-04-09 11:26:59 ----A---- C:\WINDOWS\DCheck95.ini
2010-04-08 12:49:56 ----A---- C:\m23apdfj.tmp.X
2010-04-08 11:50:16 ----A---- C:\WINDOWS\system32\xvidcore.dll
2010-04-08 11:50:11 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2010-04-08 11:50:10 ----D---- C:\Program Files\Xvid
2010-04-07 05:51:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2010-04-07 05:51:24 ----A---- C:\WINDOWS\system32\javaws.exe
2010-04-07 05:51:24 ----A---- C:\WINDOWS\system32\javaw.exe
2010-04-07 05:51:23 ----A---- C:\WINDOWS\system32\java.exe
2010-04-02 17:20:45 ----D---- C:\Documents and Settings\Šeda\Data aplikací\UB
2010-04-02 17:19:25 ----D---- C:\Program Files\_uninstallation_info
2010-03-26 11:15:20 ----D---- C:\Program Files\Common Files\Freedom Scientific

======List of files/folders modified in the last 1 months======

2010-04-21 12:58:54 ----D---- C:\WINDOWS\system32
2010-04-21 12:35:18 ----D---- C:\Program Files
2010-04-21 12:32:40 ----SD---- C:\WINDOWS\Tasks
2010-04-21 12:25:55 ----D---- C:\WINDOWS\Temp
2010-04-21 12:02:22 ----D---- C:\WINDOWS\system32\CatRoot2
2010-04-21 11:57:15 ----D---- C:\WINDOWS
2010-04-21 11:38:01 ----D---- C:\Documents and Settings\Šeda\Data aplikací\OpenOffice.org2
2010-04-21 11:36:36 ----SHD---- C:\System Volume Information
2010-04-21 11:35:55 ----A---- C:\dummy.txt
2010-04-21 11:35:52 ----A---- C:\WINDOWS\lgfwup.ini
2010-04-21 11:35:35 ----A---- C:\log0.txt
2010-04-21 07:10:14 ----D---- C:\WINDOWS\Prefetch
2010-04-21 07:09:34 ----D---- C:\WINDOWS\system32\drivers
2010-04-21 07:09:34 ----D---- C:\Program Files\Common Files
2010-04-21 06:55:13 ----D---- C:\Program Files\ESET
2010-04-21 06:22:41 ----SHD---- C:\WINDOWS\Installer
2010-04-21 06:20:06 ----D---- C:\Config.Msi
2010-04-18 23:01:53 ----HD---- C:\WINDOWS\inf
2010-04-18 14:42:15 ----D---- C:\Documents and Settings
2010-04-17 07:08:17 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-04-16 12:24:28 ----D---- C:\WINDOWS\WinSxS
2010-04-16 01:44:12 ----D---- C:\WINDOWS\Minidump
2010-04-15 23:20:15 ----D---- C:\WINDOWS\Debug
2010-04-15 19:27:32 ----HD---- C:\WINDOWS\$hf_mig$
2010-04-15 19:20:34 ----D---- C:\WINDOWS\ie8updates
2010-04-15 13:41:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-04-12 14:46:46 ----A---- C:\WINDOWS\TRNCOM.INI
2010-04-11 20:46:03 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-04-11 19:15:28 ----D---- C:\WINDOWS\system32\config
2010-04-11 19:14:49 ----D---- C:\WINDOWS\system32\wbem
2010-04-11 19:14:46 ----D---- C:\WINDOWS\Registration
2010-04-09 11:26:43 ----D---- C:\WINDOWS\system32\NtmsData
2010-04-09 11:26:37 ----D---- C:\Program Files\Rapidown
2010-04-09 11:26:30 ----D---- C:\Documents and Settings\Šeda\Data aplikací\uTorrent
2010-04-09 11:26:29 ----D---- C:\Documents and Settings\Šeda\Data aplikací\AVG7
2010-04-08 12:55:24 ----D---- C:\Garmin
2010-04-08 12:54:15 ----HD---- C:\Program Files\InstallShield Installation Information
2010-04-08 12:25:42 ----D---- C:\Program Files\Internet Explorer
2010-04-08 10:53:49 ----D---- C:\Documents and Settings\Šeda\Data aplikací\Vso
2010-04-07 05:51:41 ----D---- C:\Program Files\Common Files\Java
2010-04-07 05:51:03 ----D---- C:\Program Files\Java
2010-04-07 05:50:03 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-04-06 10:52:56 ----A---- C:\WINDOWS\system32\MRT.exe
2010-04-06 08:02:35 ----D---- C:\Program Files\Mozilla Firefox
2010-04-01 23:03:28 ----D---- C:\Documents and Settings\Šeda\Data aplikací\Skype
2010-03-29 12:38:38 ----D---- C:\WINDOWS\system32\temp
2010-03-28 15:16:17 ----D---- C:\Program Files\MSXML 4.0
2010-03-26 11:15:17 ----D---- C:\Program Files\Common Files\soft602

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 CLBStor;InstantBurn Storage Helper Driver; C:\WINDOWS\system32\drivers\CLBStor.sys [2007-06-04 16048]
R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2007-01-14 34760]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-04-17 15464]
R3 genmcmn;Genus Mouse+ Driver; C:\WINDOWS\system32\DRIVERS\gmfiltr.sys [2001-09-21 6784]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\System32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S1 AmdK8;AMD Athlon64 Processor Driver; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [2004-10-21 35840]
S1 BHDrvx86;BHDrvx86; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.5.0.127\Definitions\BASHDefs\20100324.001\BHDrvx86.sys []
S1 ccHP;Symantec Hash Provider; C:\WINDOWS\system32\drivers\NIS\1106000.020\ccHPx86.sys [2010-02-26 501888]
S1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
S1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
S1 SRTSP;Symantec Real Time Storage Protection; C:\WINDOWS\System32\Drivers\NIS\1106000.020\SRTSP.SYS [2010-02-27 325680]
S1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:\WINDOWS\system32\drivers\NIS\1106000.020\SRTSPX.SYS [2010-02-27 43696]
S1 SymIRON;Symantec Iron Driver; C:\WINDOWS\system32\drivers\NIS\1106000.020\Ironx86.SYS [2010-02-27 116784]
S1 SYMTDI;Symantec Network Dispatch Driver; C:\WINDOWS\System32\Drivers\NIS\1106000.020\SYMTDI.SYS [2010-02-04 362032]
S1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\System32\DRIVERS\tcpip6.sys [2010-02-11 226880]
S2 {95808DC4-FA4A-4C74-92FE-5B863F82066B};Power Control [2009/04/27 20:36:09]; \??\E:\Program Files\CyberLink\PowerDVD\000.fcl []
S2 CLBUDF;CyberLink InstantBurn UDF Filesystem; C:\WINDOWS\system32\drivers\CLBUDF.sys [2007-06-04 162096]
S2 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2007-08-07 25160]
S2 MaVctrl;MaVctrl; C:\WINDOWS\system32\DRIVERS\MaVc2K.sys [2004-08-23 11089]
S3 ab3f5754;ab3f5754; C:\WINDOWS\system32\drivers\ab3f5754.sys []
S3 Ad-Watch Connect Filter;Ad-Watch Connect Kernel Filter; \??\C:\WINDOWS\system32\drivers\NSDriver.sys []
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-12-01 2300928]
S3 AR5523;Atheros USB Wireless Network Adapter Service; C:\WINDOWS\System32\DRIVERS\ar5523.sys []
S3 ATHFMWDL;Atheros USB Wireless Adapter Bootloader driver; C:\WINDOWS\System32\Drivers\ATHFMWDL.sys []
S3 DynCal;Dynamic Calibration Service; C:\WINDOWS\system32\drivers\Dyncal.sys []
S3 EraserUtilDrvI9;EraserUtilDrvI9; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilDrvI9.sys []
S3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 GVCplDrv;GVCplDrv; C:\WINDOWS\system32\drivers\GVCplDrv.sys [2004-05-02 23040]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\System32\DRIVERS\hidusb.sys []
S3 IDSxpx86;IDSxpx86; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.5.0.127\Definitions\IPSDefs\20100415.001\IDSxpx86.sys []
S3 MaRdPnp;MaRdPnp; C:\WINDOWS\system32\DRIVERS\MaRdP2K.sys [2004-08-12 49099]
S3 NAVENG;NAVENG; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.5.0.127\Definitions\VirusDefs\20100420.024\NAVENG.SYS []
S3 NAVEX15;NAVEX15; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.5.0.127\Definitions\VirusDefs\20100420.024\NAVEX15.SYS []
S3 nm;Ovladač programu Sledování sítě; C:\WINDOWS\System32\DRIVERS\NMnt.sys []
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys []
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys []
S3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2009-03-27 6280416]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [2004-11-24 33408]
S3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [2004-11-24 12928]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2009-02-08 47360]
S3 se58bus;Sony Ericsson Device 088 driver (WDM); C:\WINDOWS\system32\DRIVERS\se58bus.sys []
S3 se58mdfl;Sony Ericsson Device 088 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\se58mdfl.sys [2006-09-05 9360]
S3 se58mdm;Sony Ericsson Device 088 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\se58mdm.sys [2006-09-05 97088]
S3 se58mgmt;Sony Ericsson Device 088 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\se58mgmt.sys []
S3 se58nd5;Sony Ericsson Device 088 USB Ethernet Emulation SEMC58 (NDIS); C:\WINDOWS\system32\DRIVERS\se58nd5.sys []
S3 se58obex;Sony Ericsson Device 088 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\se58obex.sys []
S3 se58unic;Sony Ericsson Device 088 USB Ethernet Emulation SEMC58 (WDM); C:\WINDOWS\system32\DRIVERS\se58unic.sys []
S3 sea1bus;Sony Ericsson Device 0A1 driver (WDM); C:\WINDOWS\system32\DRIVERS\sea1bus.sys []
S3 sea1mdfl;Sony Ericsson Device 0A1 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\sea1mdfl.sys []
S3 sea1mdm;Sony Ericsson Device 0A1 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\sea1mdm.sys []
S3 sea1mgmt;Sony Ericsson Device 0A1 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\sea1mgmt.sys [2007-02-08 88624]
S3 sea1nd5;Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (NDIS); C:\WINDOWS\system32\DRIVERS\sea1nd5.sys [2007-02-08 18704]
S3 sea1obex;Sony Ericsson Device 0A1 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\sea1obex.sys [2007-02-08 86432]
S3 sea1unic;Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (WDM); C:\WINDOWS\system32\DRIVERS\sea1unic.sys [2007-02-08 90800]
S3 slabbus;USB Data Cable driver (WDM); C:\WINDOWS\System32\DRIVERS\slabbus.sys []
S3 slabser;USB Data Cable Drivers; C:\WINDOWS\System32\DRIVERS\slabser.sys []
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS []
S3 SymEvent;SymEvent; \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS []
S3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-13 12288]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys []
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\System32\DRIVERS\usbccgp.sys []
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys []
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys []
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys []
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys []
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sr;Ovladač filtru Obnovy systému; C:\WINDOWS\System32\DRIVERS\sr.sys [2008-04-14 73344]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2010-04-07 1265264]
S2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-11-07 132424]
S2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
S2 CTDevice_Srv;CT Device Query service; C:\Program Files\Creative\Shared Files\CTDevSrv.exe [2007-04-02 61440]
S2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2008-06-10 222456]
S2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-03-09 153376]
S2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-11-19 79136]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-24 935208]
S2 NIS;Norton Internet Security; C:\Program Files\Norton Internet Security\Engine\17.6.0.32\ccSvcHst.exe [2010-02-26 126392]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-03-27 163908]
S2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; E:\Program Files\Nero\Nero BackItUp 4\IoctlSvc.exe [2008-09-24 81920]
S2 SDPASVC;SDPAUMS server service; C:\WINDOWS\system32\sdpasvc.exe [2001-08-07 49152]
S2 SSHNAS;SSHNAS; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2005-01-31 49152]
S2 winvnc;VNC Server; E:\Program Files\RealVNC\WinVNC\winvnc.exe [2002-11-27 335872]
S2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-04-13 33632]
S3 bepprldr;BCL easyPDF SDK Loader; C:\Program Files\Common Files\BCL Technologies\easyPDF 4\bepprldr.exe [2006-08-23 86016]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-04-13 68952]
S3 CTUPnPSv;Creative Centrale Media Server; C:\Program Files\Creative\Creative Centrale\CTUPnPSv.exe [2008-05-21 64000]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2009-01-06 536872]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe []
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2007-03-26 292864]
S3 usprserv;User Privilege Service; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880]

-----------------EOF-----------------

[motji]

Jaký clean up?
Prosím Vás, překopírujte sem ty logy z toho druhého topicu, stačí ten ze Rsitu.
combofix jste spouštěl nebo ne?

[Unisono]

Jedná se o Windows CleanUp!

Log z RSITu se objevil tento. Chcete ještě info.txt

Logfile of random's system information tool 1.06 (written by random/random)
Run by Šeda at 2010-04-21 14:31:42
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 805 MB (5%) free of 18 GB
Total RAM: 1023 MB (62% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-73586283-1275210071-682003330-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-73586283-1275210071-682003330-1003UA.job
C:\WINDOWS\tasks\NeroLiveEpgUpdate-PC3_Šeda.job
C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
C:\WINDOWS\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{140BD8E3-C167-11D4-B4A3-080000180323}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-04-04 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll [2009-01-12 520192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}]
FGCatchUrl - E:\Program Files\FlashGet\jccatch.dll [2007-08-06 94308]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files\Norton Internet Security\Engine\17.6.0.32\coIEPlg.dll [2010-03-26 394608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64d23501-5195-4224-9446-e2b0fb64e859}]
HiGames Toolbar - C:\Program Files\HiGames\tbHiG1.dll [2010-02-19 2349080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files\Norton Internet Security\Engine\17.6.0.32\IPSBHO.DLL [2010-02-04 79224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B8A7839C-51E8-4067-ADA3-CA74BABC1976}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-03-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-03-09 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F156768E-81EF-470C-9057-481BA8380DBA}]
FlashGet GetFlash Class - E:\Program Files\FlashGet\getflash.dll [2007-05-18 163840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2004-08-26 405504]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll [2009-01-12 520192]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2008-06-12 958712]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-11-24 953800]
{64d23501-5195-4224-9446-e2b0fb64e859} - HiGames Toolbar - C:\Program Files\HiGames\tbHiG1.dll [2010-02-19 2349080]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files\Norton Internet Security\Engine\17.6.0.32\coIEPlg.dll [2010-03-26 394608]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-12-01 77824]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-03-27 13684736]
"nwiz"=nwiz.exe /install []
"RTBatteryMeter"=C:\Program Files\VibrateGameDeviceDriver\RFPIcon.exe [2003-01-16 49152]
"WinVNC"=E:\Program Files\RealVNC\WinVNC\winvnc.exe [2002-11-27 335872]
"PrintPack dispatcher"=E:\Program Files\Software602\Print2PDF\PrnPack.exe [2006-09-08 2543616]
"mouseElf"=C:\PROGRA~1\GENIUS~1\mouseElf.exe [2002-02-20 155648]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-06-16 221184]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"PCSuiteTrayApplication"=E:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe [2007-03-23 227328]
"CanonSolutionMenu"=C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2007-05-15 644696]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2007-04-04 1603152]
"Sony Ericsson PC Suite"=E:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2007-01-26 495616]
"CloneCDTray"=E:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2006-09-28 57344]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-01-05 413696]
"iTunesHelper"=E:\Program Files\iTunes\iTunesHelper.exe [2009-01-06 290088]
"InstantBurn"=E:\PROGRA~1\CYBERL~1\INSTAN~1\Win2K\IBurn.exe [2007-06-04 599600]
"LGODDFU"=E:\Program Files\lg_fwupdate\fwupdate.exe [2006-08-17 249856]
"BDRegion"=C:\Program Files\Cyberlink\Shared Files\brs.exe [2009-03-18 75048]
"RemoteControl"=E:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2008-07-21 87336]
"LanguageShortcut"=E:\Program Files\CyberLink\PowerDVD\Language\Language.exe [2008-05-14 62760]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-03-27 86016]
"NBKeyScan"=E:\Program Files\Nero\Nero BackItUp 4\NBKeyScan.exe [2008-09-24 2254120]
"Adobe Reader Speed Launcher"=E:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-04-04 36272]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-03-24 952768]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"OEXPRESS"=C:\Documents and Settings\All Users\Data aplikací\LangSoft\OETRN.EXE [2009-01-12 26624]
"WEBTRAN"= []
"SoftAuto.exe"=C:\Program Files\Creative\Software Update 3\SoftAuto.exe [2008-08-13 405504]
"Power2GoExpress"= []
"Google Update"=C:\Documents and Settings\Šeda\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2009-07-11 133104]
"DAEMON Tools Lite"=E:\Program Files\DAEMON Tools Lite\daemon.exe [2008-07-24 490952]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE
WinZip Quick Pick.lnk - C:\Program Files\WinZip\WZQKPICK.EXE

C:\Documents and Settings\Šeda\Nabídka Start\Programy\Po spuštění
OpenOffice.org 2.1.lnk - C:\Program Files\OpenOffice.org 2.1\program\quickstart.exe
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
_uninst_setup_9.0.0.722_18.04.2010_23-12.exe.lnk - C:\Documents and Settings\Šeda\Local Settings\Temp\_uninst_setup_9.0.0.722_18.04.2010_23-12.exe.bat

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\slbipsch]
C:\WINDOWS\system32\slbipsch.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
msmhost - {5E0AB119-E27E-4067-8D8C-FD648B2BC8EA}
msmdev - {B2546A54-2D3A-4F7D-B749-15D6D5D11CDC}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=149

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"E:\Program Files\ICQ\ICQLite\ICQLite.exe"="E:\Program Files\ICQ\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"E:\Hry\Infogrames\Grand Prix 4\GP4.exe"="E:\Hry\Infogrames\Grand Prix 4\GP4.exe:*:Enabled:GP4"
"C:\Program Files\totalcmd\TOTALCMD.EXE"="C:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"E:\Hry\TrackMania Nations ESWC\TmNationsESWC.exe"="E:\Hry\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"E:\Hry\HL2\hl2.exe"="E:\Hry\HL2\hl2.exe:*:Disabled:hl2"
"E:\Program Files\FlatOut\flatout.exe"="E:\Program Files\FlatOut\flatout.exe:*:Enabled:flatout"
"E:\Hry\NHL07\nhl2007.exe"="E:\Hry\NHL07\nhl2007.exe:*:Enabled:nhl2007"
"E:\Hry\Wiggles\Wiggles.exe"="E:\Hry\Wiggles\Wiggles.exe:*:Enabled:Wiggles"
"E:\Program Files\ICQ6\ICQ.exe"="E:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"E:\Program Files\Project Snowblind\Snowblind.MP"="E:\Program Files\Project Snowblind\Snowblind.MP:*:Disabled:Project: Snowblind (PC)"
"C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe"="C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"E:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe"="E:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"E:\Program Files\TrackMania Original Demo\TmOriginalDemo.exe"="E:\Program Files\TrackMania Original Demo\TmOriginalDemo.exe:*:Enabled:TmOriginalDemo"
"E:\Program Files\TrackMania Sunrise Extreme Demo\TmSunriseExtremeDemo.exe"="E:\Program Files\TrackMania Sunrise Extreme Demo\TmSunriseExtremeDemo.exe:*:Enabled:TmSunriseExtremeDemo"
"C:\Documents and Settings\Šeda\Plocha\TrackMania Nations ESWC\TmNationsESWC.exe"="C:\Documents and Settings\Šeda\Plocha\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"E:\Program Files\FlightGear\bin\Win32\fgfs.exe"="E:\Program Files\FlightGear\bin\Win32\fgfs.exe:*:Enabled:fgfs"
"C:\WINDOWS\system32\~.exe"="C:\WINDOWS\system32\~.exe:*:Enabled:Control"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"E:\Program Files\TmNationsForever\TmForever.exe"="E:\Program Files\TmNationsForever\TmForever.exe:*:Enabled:TmForever"
"E:\Program Files\EA SPORTS\NHL08\nhl2008.exe"="E:\Program Files\EA SPORTS\NHL08\nhl2008.exe:*:Enabled:nhl2008"
"E:\Program Files\TrackMania Sunrise\TmSunrise.exe"="E:\Program Files\TrackMania Sunrise\TmSunrise.exe:*:Enabled:TmSunrise"
"E:\Program Files\FlatOut2\FlatOut2.exe"="E:\Program Files\FlatOut2\FlatOut2.exe:*:Enabled:FlatOut2"
"E:\Program Files\Pinnacle\Studio 12\Programs\RM.exe"="E:\Program Files\Pinnacle\Studio 12\Programs\RM.exe:*:Enabled:Render Manager"
"E:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe"="E:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe:*:Enabled:Studio"
"E:\Program Files\Pinnacle\Studio 12\Programs\umi.exe"="E:\Program Files\Pinnacle\Studio 12\Programs\umi.exe:*:Enabled:umi"
"C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe"="C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe:*:Enabled:Nero ProductSetup"
"C:\Documents and Settings\Šeda\Local Settings\Temp\Nero Web\SetupXu.exe"="C:\Documents and Settings\Šeda\Local Settings\Temp\Nero Web\SetupXu.exe:*:Enabled:Nero ProductSetup"
"C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe"="C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe:*:Enabled:Nero ShowTime Essentials"
"E:\Program Files\ICQ6.5\ICQ.exe"="E:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"E:\Program Files\FlashGet\flashget.exe"="E:\Program Files\FlashGet\flashget.exe:*:Enabled:Flashget"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"E:\Program Files\iTunes\iTunes.exe"="E:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"E:\Program Files\CyberLink\PowerDVD\PowerDVD.exe"="E:\Program Files\CyberLink\PowerDVD\PowerDVD.exe:*:Enabled:PowerDVD"
"C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe"="C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process "
"C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe"="C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater"
"H:\qip\QIP\qip.exe"="H:\qip\QIP\qip.exe:*:Enabled:Quiet Internet Pager"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"E:\Program Files\uTorrent\utorrent.exe"="E:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Documents and Settings\Šeda\Local Settings\Temp\bulanci.tmp"="C:\Documents and Settings\Šeda\Local Settings\Temp\bulanci.tmp:*:Disabled:bulanci"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Disabled:Microsoft DirectPlay Helper"
"E:\Program Files\racer\racer\racer.exe"="E:\Program Files\racer\racer\racer.exe:*:Enabled:racer"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype. Take a deep breath "

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======File associations======

.scr - open -
.scr - install -
.scr - config -

======List of files/folders created in the last 1 months======

2010-04-21 12:35:18 ----D---- C:\rsit
2010-04-21 12:35:18 ----D---- C:\Program Files\trend micro
2010-04-21 11:57:15 ----A---- C:\WINDOWS\ntbtlog.txt
2010-04-21 07:09:34 ----D---- C:\Program Files\Symantec
2010-04-21 07:09:34 ----D---- C:\Program Files\Common Files\Symantec Shared
2010-04-21 07:09:34 ----A---- C:\WINDOWS\system32\S32EVNT1.DLL
2010-04-21 07:09:04 ----D---- C:\Program Files\Norton Internet Security
2010-04-21 07:09:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\Norton
2010-04-21 07:08:42 ----D---- C:\Program Files\NortonInstaller
2010-04-21 07:08:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\NortonInstaller
2010-04-20 12:24:02 ----A---- C:\WINDOWS\system32\bda4E6B.tmp
2010-04-20 09:12:02 ----D---- C:\Qoobox
2010-04-17 07:10:31 ----A---- C:\WINDOWS\system32\bda3D.tmp
2010-04-17 07:06:16 ----A---- C:\WINDOWS\system32\bda3B.tmp
2010-04-17 07:03:31 ----A---- C:\WINDOWS\system32\bda39.tmp
2010-04-17 07:02:45 ----A---- C:\WINDOWS\system32\bda38.tmp
2010-04-17 07:01:48 ----A---- C:\WINDOWS\system32\bda37.tmp
2010-04-17 07:01:37 ----A---- C:\WINDOWS\system32\bda36.tmp
2010-04-16 17:10:12 ----A---- C:\bdlog.txt
2010-04-16 12:25:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\BitDefender
2010-04-16 12:18:39 ----D---- C:\Program Files\Common Files\BitDefender
2010-04-15 19:27:35 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2010-04-15 19:27:14 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-04-15 19:21:31 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-04-15 19:21:15 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-04-15 19:20:51 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-04-15 19:20:14 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-04-09 11:26:59 ----A---- C:\WINDOWS\DCheck95.ini
2010-04-08 12:49:56 ----A---- C:\m23apdfj.tmp.X
2010-04-08 11:50:16 ----A---- C:\WINDOWS\system32\xvidcore.dll
2010-04-08 11:50:11 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2010-04-08 11:50:10 ----D---- C:\Program Files\Xvid
2010-04-07 05:51:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2010-04-07 05:51:24 ----A---- C:\WINDOWS\system32\javaws.exe
2010-04-07 05:51:24 ----A---- C:\WINDOWS\system32\javaw.exe
2010-04-07 05:51:23 ----A---- C:\WINDOWS\system32\java.exe
2010-04-02 17:20:45 ----D---- C:\Documents and Settings\Šeda\Data aplikací\UB
2010-04-02 17:19:25 ----D---- C:\Program Files\_uninstallation_info
2010-03-26 11:15:20 ----D---- C:\Program Files\Common Files\Freedom Scientific

======List of files/folders modified in the last 1 months======

2010-04-21 12:58:54 ----D---- C:\WINDOWS\system32
2010-04-21 12:35:18 ----D---- C:\Program Files
2010-04-21 12:32:40 ----SD---- C:\WINDOWS\Tasks
2010-04-21 12:25:55 ----D---- C:\WINDOWS\Temp
2010-04-21 12:02:22 ----D---- C:\WINDOWS\system32\CatRoot2
2010-04-21 11:57:15 ----D---- C:\WINDOWS
2010-04-21 11:38:01 ----D---- C:\Documents and Settings\Šeda\Data aplikací\OpenOffice.org2
2010-04-21 11:36:36 ----SHD---- C:\System Volume Information
2010-04-21 11:35:55 ----A---- C:\dummy.txt
2010-04-21 11:35:52 ----A---- C:\WINDOWS\lgfwup.ini
2010-04-21 11:35:35 ----A---- C:\log0.txt
2010-04-21 07:10:14 ----D---- C:\WINDOWS\Prefetch
2010-04-21 07:09:34 ----D---- C:\WINDOWS\system32\drivers
2010-04-21 07:09:34 ----D---- C:\Program Files\Common Files
2010-04-21 06:55:13 ----D---- C:\Program Files\ESET
2010-04-21 06:22:41 ----SHD---- C:\WINDOWS\Installer
2010-04-21 06:20:06 ----D---- C:\Config.Msi
2010-04-18 23:01:53 ----HD---- C:\WINDOWS\inf
2010-04-18 14:42:15 ----D---- C:\Documents and Settings
2010-04-17 07:08:17 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-04-16 12:24:28 ----D---- C:\WINDOWS\WinSxS
2010-04-16 01:44:12 ----D---- C:\WINDOWS\Minidump
2010-04-15 23:20:15 ----D---- C:\WINDOWS\Debug
2010-04-15 19:27:32 ----HD---- C:\WINDOWS\$hf_mig$
2010-04-15 19:20:34 ----D---- C:\WINDOWS\ie8updates
2010-04-15 13:41:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-04-12 14:46:46 ----A---- C:\WINDOWS\TRNCOM.INI
2010-04-11 20:46:03 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-04-11 19:15:28 ----D---- C:\WINDOWS\system32\config
2010-04-11 19:14:49 ----D---- C:\WINDOWS\system32\wbem
2010-04-11 19:14:46 ----D---- C:\WINDOWS\Registration
2010-04-09 11:26:43 ----D---- C:\WINDOWS\system32\NtmsData
2010-04-09 11:26:37 ----D---- C:\Program Files\Rapidown
2010-04-09 11:26:30 ----D---- C:\Documents and Settings\Šeda\Data aplikací\uTorrent
2010-04-09 11:26:29 ----D---- C:\Documents and Settings\Šeda\Data aplikací\AVG7
2010-04-08 12:55:24 ----D---- C:\Garmin
2010-04-08 12:54:15 ----HD---- C:\Program Files\InstallShield Installation Information
2010-04-08 12:25:42 ----D---- C:\Program Files\Internet Explorer
2010-04-08 10:53:49 ----D---- C:\Documents and Settings\Šeda\Data aplikací\Vso
2010-04-07 05:51:41 ----D---- C:\Program Files\Common Files\Java
2010-04-07 05:51:03 ----D---- C:\Program Files\Java
2010-04-07 05:50:03 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-04-06 10:52:56 ----A---- C:\WINDOWS\system32\MRT.exe
2010-04-06 08:02:35 ----D---- C:\Program Files\Mozilla Firefox
2010-04-01 23:03:28 ----D---- C:\Documents and Settings\Šeda\Data aplikací\Skype
2010-03-29 12:38:38 ----D---- C:\WINDOWS\system32\temp
2010-03-28 15:16:17 ----D---- C:\Program Files\MSXML 4.0
2010-03-26 11:15:17 ----D---- C:\Program Files\Common Files\soft602

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 CLBStor;InstantBurn Storage Helper Driver; C:\WINDOWS\system32\drivers\CLBStor.sys [2007-06-04 16048]
R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2007-01-14 34760]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-04-17 15464]
R3 genmcmn;Genus Mouse+ Driver; C:\WINDOWS\system32\DRIVERS\gmfiltr.sys [2001-09-21 6784]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\System32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S1 AmdK8;AMD Athlon64 Processor Driver; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [2004-10-21 35840]
S1 BHDrvx86;BHDrvx86; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.5.0.127\Definitions\BASHDefs\20100324.001\BHDrvx86.sys []
S1 ccHP;Symantec Hash Provider; C:\WINDOWS\system32\drivers\NIS\1106000.020\ccHPx86.sys [2010-02-26 501888]
S1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
S1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
S1 SRTSP;Symantec Real Time Storage Protection; C:\WINDOWS\System32\Drivers\NIS\1106000.020\SRTSP.SYS [2010-02-27 325680]
S1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:\WINDOWS\system32\drivers\NIS\1106000.020\SRTSPX.SYS [2010-02-27 43696]
S1 SymIRON;Symantec Iron Driver; C:\WINDOWS\system32\drivers\NIS\1106000.020\Ironx86.SYS [2010-02-27 116784]
S1 SYMTDI;Symantec Network Dispatch Driver; C:\WINDOWS\System32\Drivers\NIS\1106000.020\SYMTDI.SYS [2010-02-04 362032]
S1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\System32\DRIVERS\tcpip6.sys [2010-02-11 226880]
S2 {95808DC4-FA4A-4C74-92FE-5B863F82066B};Power Control [2009/04/27 20:36:09]; \??\E:\Program Files\CyberLink\PowerDVD\000.fcl []
S2 CLBUDF;CyberLink InstantBurn UDF Filesystem; C:\WINDOWS\system32\drivers\CLBUDF.sys [2007-06-04 162096]
S2 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2007-08-07 25160]
S2 MaVctrl;MaVctrl; C:\WINDOWS\system32\DRIVERS\MaVc2K.sys [2004-08-23 11089]
S3 ab3f5754;ab3f5754; C:\WINDOWS\system32\drivers\ab3f5754.sys []
S3 Ad-Watch Connect Filter;Ad-Watch Connect Kernel Filter; \??\C:\WINDOWS\system32\drivers\NSDriver.sys []
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-12-01 2300928]
S3 AR5523;Atheros USB Wireless Network Adapter Service; C:\WINDOWS\System32\DRIVERS\ar5523.sys []
S3 ATHFMWDL;Atheros USB Wireless Adapter Bootloader driver; C:\WINDOWS\System32\Drivers\ATHFMWDL.sys []
S3 DynCal;Dynamic Calibration Service; C:\WINDOWS\system32\drivers\Dyncal.sys []
S3 EraserUtilDrvI9;EraserUtilDrvI9; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilDrvI9.sys []
S3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 GVCplDrv;GVCplDrv; C:\WINDOWS\system32\drivers\GVCplDrv.sys [2004-05-02 23040]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\System32\DRIVERS\hidusb.sys []
S3 IDSxpx86;IDSxpx86; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.5.0.127\Definitions\IPSDefs\20100415.001\IDSxpx86.sys []
S3 MaRdPnp;MaRdPnp; C:\WINDOWS\system32\DRIVERS\MaRdP2K.sys [2004-08-12 49099]
S3 NAVENG;NAVENG; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.5.0.127\Definitions\VirusDefs\20100420.024\NAVENG.SYS []
S3 NAVEX15;NAVEX15; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.5.0.127\Definitions\VirusDefs\20100420.024\NAVEX15.SYS []
S3 nm;Ovladač programu Sledování sítě; C:\WINDOWS\System32\DRIVERS\NMnt.sys []
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys []
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys []
S3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2009-03-27 6280416]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [2004-11-24 33408]
S3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [2004-11-24 12928]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2009-02-08 47360]
S3 se58bus;Sony Ericsson Device 088 driver (WDM); C:\WINDOWS\system32\DRIVERS\se58bus.sys []
S3 se58mdfl;Sony Ericsson Device 088 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\se58mdfl.sys [2006-09-05 9360]
S3 se58mdm;Sony Ericsson Device 088 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\se58mdm.sys [2006-09-05 97088]
S3 se58mgmt;Sony Ericsson Device 088 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\se58mgmt.sys []
S3 se58nd5;Sony Ericsson Device 088 USB Ethernet Emulation SEMC58 (NDIS); C:\WINDOWS\system32\DRIVERS\se58nd5.sys []
S3 se58obex;Sony Ericsson Device 088 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\se58obex.sys []
S3 se58unic;Sony Ericsson Device 088 USB Ethernet Emulation SEMC58 (WDM); C:\WINDOWS\system32\DRIVERS\se58unic.sys []
S3 sea1bus;Sony Ericsson Device 0A1 driver (WDM); C:\WINDOWS\system32\DRIVERS\sea1bus.sys []
S3 sea1mdfl;Sony Ericsson Device 0A1 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\sea1mdfl.sys []
S3 sea1mdm;Sony Ericsson Device 0A1 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\sea1mdm.sys []
S3 sea1mgmt;Sony Ericsson Device 0A1 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\sea1mgmt.sys [2007-02-08 88624]
S3 sea1nd5;Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (NDIS); C:\WINDOWS\system32\DRIVERS\sea1nd5.sys [2007-02-08 18704]
S3 sea1obex;Sony Ericsson Device 0A1 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\sea1obex.sys [2007-02-08 86432]
S3 sea1unic;Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (WDM); C:\WINDOWS\system32\DRIVERS\sea1unic.sys [2007-02-08 90800]
S3 slabbus;USB Data Cable driver (WDM); C:\WINDOWS\System32\DRIVERS\slabbus.sys []
S3 slabser;USB Data Cable Drivers; C:\WINDOWS\System32\DRIVERS\slabser.sys []
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS []
S3 SymEvent;SymEvent; \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS []
S3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-13 12288]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys []
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\System32\DRIVERS\usbccgp.sys []
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys []
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys []
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys []
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys []
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sr;Ovladač filtru Obnovy systému; C:\WINDOWS\System32\DRIVERS\sr.sys [2008-04-14 73344]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2010-04-07 1265264]
S2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-11-07 132424]
S2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
S2 CTDevice_Srv;CT Device Query service; C:\Program Files\Creative\Shared Files\CTDevSrv.exe [2007-04-02 61440]
S2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2008-06-10 222456]
S2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-03-09 153376]
S2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-11-19 79136]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-24 935208]
S2 NIS;Norton Internet Security; C:\Program Files\Norton Internet Security\Engine\17.6.0.32\ccSvcHst.exe [2010-02-26 126392]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-03-27 163908]
S2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; E:\Program Files\Nero\Nero BackItUp 4\IoctlSvc.exe [2008-09-24 81920]
S2 SDPASVC;SDPAUMS server service; C:\WINDOWS\system32\sdpasvc.exe [2001-08-07 49152]
S2 SSHNAS;SSHNAS; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2005-01-31 49152]
S2 winvnc;VNC Server; E:\Program Files\RealVNC\WinVNC\winvnc.exe [2002-11-27 335872]
S2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-04-13 33632]
S3 bepprldr;BCL easyPDF SDK Loader; C:\Program Files\Common Files\BCL Technologies\easyPDF 4\bepprldr.exe [2006-08-23 86016]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-04-13 68952]
S3 CTUPnPSv;Creative Centrale Media Server; C:\Program Files\Creative\Creative Centrale\CTUPnPSv.exe [2008-05-21 64000]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2009-01-06 536872]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe []
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2007-03-26 292864]
S3 usprserv;User Privilege Service; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880]

-----------------EOF-----------------

[Unisono]

Combofix zatím nepoužit. Mám to udělat?

[Caroprd111]

Zdravím

Zaskočím za kolegyni.


ComboFix nespouštějte


Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe

• Spusťte, poté do spodního políčka vložte následující skript.

Kód: Vybrat vše

netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys 
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys 
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav 
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
CREATERESTOREPOINT

• Označte položku Pro všechny uživatele.
• Označte položky Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
• Klikněte na tlačítko Prohledat
• Po dokončení, sem vložte logy OTL.Txt a Extras.txt

[Unisono]

CleanUp stažen zde http://www.viry.cz/forum/viewtopic.php?t=46039

[Caroprd111]

Ok, počkám na log z OTL.

[Unisono]

Stáhnul, označil a spustil. Asi to chvilku pojede ...
Nyní musím nutně odjet. Kolem 18h budu opět zde a nakopíruji sem vše potřebné. MOC DÍÍÍKY. Jsme fakt na prášky....

[Unisono]

Ještě drobnost. Pokud to vyřešíte, pak mi připište rovnou číslo svého účtu. Pozor, už je tu výstup!!! Za chvilku ho máte ....

[Unisono]

Má moc znaků, posílám jako soubor v příloze!

[Unisono]

Dorazily přílohy?

[Caroprd111]

Problémy řeším ve svém volném čase, maximálně můžete podpořit fórum http://www.viry.cz/forum/viewtopic.php?f=7&t=78175 Log rozdělte do více příspěvků.

[Unisono]

Část první:


OTL logfile created on: 21.4.2010 14:54:32 - Run 1
OTL by OldTimer - Version 3.2.1.3 Folder = K:\Antivir\AAA
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1 023,00 Mb Total Physical Memory | 645,00 Mb Available Physical Memory | 63,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 93,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 17,37 Gb Total Space | 0,79 Gb Free Space | 4,53% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 168,94 Gb Total Space | 14,97 Gb Free Space | 8,86% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive K: | 962,10 Mb Total Space | 589,25 Mb Free Space | 61,25% Space Free | Partition Type: FAT32

Computer Name: PC3
Current User Name: Šeda
Logged in as Administrator.

Current Boot Mode: SafeMode
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010.04.21 14:48:54 | 000,562,176 | ---- | M] (OldTimer Tools) -- K:\Antivir\AAA\OTL.exe
PRC - [2010.04.07 16:50:19 | 001,265,264 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
PRC - [2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006.12.20 13:34:02 | 000,983,040 | R--- | M] (Teleca AB) -- C:\Program Files\Common Files\Teleca Shared\Generic.exe
PRC - [2006.12.11 09:16:10 | 000,872,448 | R--- | M] (Sony Ericsson Mobile Communications AB) -- E:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe


========== Modules (SafeList) ==========

MOD - [2010.04.21 14:48:54 | 000,562,176 | ---- | M] (OldTimer Tools) -- K:\Antivir\AAA\OTL.exe


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (NMIndexingService)
SRV - [2010.04.07 16:50:19 | 001,265,264 | ---- | M] (Lavasoft) [Auto | Running] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2010.02.26 01:21:50 | 000,126,392 | R--- | M] (Symantec Corporation) [Unknown | Stopped] -- C:\Program Files\Norton Internet Security\Engine\17.6.0.32\ccSvcHst.exe -- (NIS)
SRV - [2008.09.24 15:32:48 | 000,935,208 | ---- | M] (Nero AG) [Auto | Stopped] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2008.09.24 14:57:14 | 000,081,920 | ---- | M] (Prolific Technology Inc.) [Auto | Stopped] -- E:\Program Files\Nero\Nero BackItUp 4\IoctlSvc.exe -- (PLFlash DeviceIoControl Service)
SRV - [2008.06.10 20:26:28 | 000,222,456 | ---- | M] () [Auto | Stopped] -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2008.05.21 13:42:56 | 000,064,000 | ---- | M] (Creative Technology Ltd) [On_Demand | Stopped] -- C:\Program Files\Creative\Creative Centrale\CTUPnPSv.exe -- (CTUPnPSv)
SRV - [2007.04.02 08:15:40 | 000,061,440 | ---- | M] (Creative Technology Ltd) [Auto | Stopped] -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe -- (CTDevice_Srv)
SRV - [2007.03.26 13:06:24 | 000,292,864 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2006.10.30 04:34:02 | 000,122,880 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2006.08.23 13:17:08 | 000,086,016 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Common Files\BCL Technologies\easyPDF 4\bepprldr.exe -- (bepprldr)
SRV - [2005.01.31 10:45:20 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
SRV - [2002.11.27 13:47:02 | 000,335,872 | ---- | M] (RealVNC Ltd.) [Auto | Stopped] -- E:\Program Files\RealVNC\WinVNC\winvnc.exe -- (winvnc)
SRV - [2001.08.07 14:27:44 | 000,049,152 | ---- | M] ( Matsushita Electric Industrial Co.,Ltd.) [Auto | Stopped] -- C:\WINDOWS\System32\sdpasvc.exe -- (SDPASVC)


========== Driver Services (SafeList) ==========

DRV - [2010.04.21 07:20:57 | 001,324,720 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.5.0.127\Definitions\VirusDefs\20100420.024\navex15.sys -- (NAVEX15)
DRV - [2010.04.21 07:20:57 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Stopped] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2010.04.21 07:20:57 | 000,102,448 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2010.04.21 07:20:57 | 000,084,912 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.5.0.127\Definitions\VirusDefs\20100420.024\naveng.sys -- (NAVENG)
DRV - [2010.04.21 07:09:34 | 000,124,976 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2010.03.24 22:38:08 | 000,536,112 | ---- | M] (Symantec Corporation) [Kernel | System | Stopped] -- C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.5.0.127\Definitions\BASHDefs\20100324.001\BHDrvx86.sys -- (BHDrvx86)
DRV - [2010.02.27 04:23:54 | 000,116,784 | ---- | M] (Symantec Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\NIS\1106000.020\Ironx86.SYS -- (SymIRON)
DRV - [2010.02.27 04:23:21 | 000,325,680 | ---- | M] (Symantec Corporation) [File_System | System | Stopped] -- C:\WINDOWS\System32\Drivers\NIS\1106000.020\SRTSP.SYS -- (SRTSP)
DRV - [2010.02.27 04:23:21 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\NIS\1106000.020\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV - [2010.02.26 01:22:57 | 000,501,888 | ---- | M] (Symantec Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\NIS\1106000.020\ccHPx86.sys -- (ccHP)
DRV - [2010.02.11 14:02:15 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2010.02.04 17:53:02 | 000,064,288 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - [2010.02.04 03:40:52 | 000,362,032 | ---- | M] (Symantec Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\System32\Drivers\NIS\1106000.020\SYMTDI.SYS -- (SYMTDI)
DRV - [2010.02.04 03:40:50 | 000,172,592 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\NIS\1106000.020\SYMEFA.SYS -- (SymEFA)
DRV - [2009.11.17 02:51:14 | 000,329,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.5.0.127\Definitions\IPSDefs\20100415.001\IDSXpx86.sys -- (IDSxpx86)
DRV - [2009.10.15 05:50:05 | 000,328,752 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\NIS\1106000.020\SYMDS.SYS -- (SymDS)
DRV - [2009.03.27 10:03:00 | 006,280,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2009.03.18 14:56:06 | 000,087,536 | ---- | M] (CyberLink Corp.) [2009/04/27 20:36:09] [Kernel | Auto | Stopped] -- E:\Program Files\CyberLink\PowerDVD\000.fcl -- ({95808DC4-FA4A-4C74-92FE-5B863F82066B})
DRV - [2009.01.01 20:37:52 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008.04.14 04:06:20 | 000,030,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\modem.sys.new -- (Modem)
DRV - [2007.08.07 21:48:33 | 000,025,160 | ---- | M] (Elaborate Bytes AG) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV - [2007.06.04 19:25:14 | 000,016,048 | ---- | M] (Cyberlink Co.,Ltd.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\CLBStor.sys -- (CLBStor)
DRV - [2007.06.04 19:25:12 | 000,162,096 | ---- | M] (CyberLink Corporation.) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\drivers\CLBUDF.sys -- (CLBUDF)
DRV - [2007.02.22 10:15:56 | 000,137,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcd.sys -- (nmwcd)
DRV - [2007.02.22 10:15:14 | 000,008,320 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdc.sys -- (nmwcdc)
DRV - [2007.02.08 13:56:20 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1unic.sys -- (sea1unic) Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (WDM)
DRV - [2007.02.08 13:56:06 | 000,086,432 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1obex.sys -- (sea1obex)
DRV - [2007.02.08 13:56:02 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1nd5.sys -- (sea1nd5) Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (NDIS)
DRV - [2007.02.08 13:56:00 | 000,088,624 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1mgmt.sys -- (sea1mgmt) Sony Ericsson Device 0A1 USB WMC Device Management Drivers (WDM)
DRV - [2007.02.08 13:55:52 | 000,097,088 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1mdm.sys.bak -- (sea1mdm)
DRV - [2007.02.08 13:55:50 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1mdfl.sys.bak -- (sea1mdfl)
DRV - [2007.02.08 13:55:40 | 000,061,536 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1bus.sys.bak -- (sea1bus) Sony Ericsson Device 0A1 driver (WDM)
DRV - [2007.01.14 17:28:35 | 000,034,760 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV - [2007.01.12 20:09:53 | 000,082,296 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2006.09.05 20:00:54 | 000,086,432 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se58obex.sys.bak -- (se58obex)
DRV - [2006.09.05 19:59:18 | 000,097,088 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se58mdm.sys -- (se58mdm)
DRV - [2006.09.05 19:59:14 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se58mdfl.sys -- (se58mdfl)
DRV - [2006.09.05 19:57:54 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se58nd5.sys.bak -- (se58nd5) Sony Ericsson Device 088 USB Ethernet Emulation SEMC58 (NDIS)
DRV - [2006.09.05 19:57:48 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se58unic.sys.bak -- (se58unic) Sony Ericsson Device 088 USB Ethernet Emulation SEMC58 (WDM)
DRV - [2006.07.10 18:19:58 | 000,027,032 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2006.07.05 14:46:06 | 000,063,352 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01a.sys -- (sfdrv01a) StarForce Protection Environment Driver (version 1.x.a)
DRV - [2006.06.14 16:56:56 | 000,013,680 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2005.08.10 14:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2004.12.07 10:15:54 | 000,087,936 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\nvatabus.sys -- (nvatabus)
DRV - [2004.12.01 14:40:08 | 002,300,928 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2004.11.24 11:42:48 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2004.11.24 11:42:46 | 000,033,408 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2004.10.21 05:39:44 | 000,035,840 | R--- | M] (Advanced Micro Devices) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2004.08.23 09:40:04 | 000,011,089 | R--- | M] (Mobile Action Technology Inc.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\MaVc2K.sys -- (MaVctrl)
DRV - [2004.08.12 09:30:16 | 000,049,099 | R--- | M] (Mobile Action Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mardp2k.sys -- (MaRdPnp)
DRV - [2004.05.02 10:47:08 | 000,023,040 | R--- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\GVCplDrv.sys -- (GVCplDrv)
DRV - [2002.12.12 01:14:32 | 000,005,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mspclock.sys.new -- (MSPCLOCK)
DRV - [2002.09.16 18:14:32 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\PQNTDRV.sys -- (PQNTDrv)
DRV - [2001.09.21 16:58:40 | 000,006,784 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gmfiltr.sys -- (genmcmn)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-73586283-1275210071-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
IE - HKU\S-1-5-21-73586283-1275210071-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKU\S-1-5-21-73586283-1275210071-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}
IE - HKU\S-1-5-21-73586283-1275210071-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-73586283-1275210071-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-73586283-1275210071-682003330-1003\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-73586283-1275210071-682003330-1003\..\URLSearchHook: {64d23501-5195-4224-9446-e2b0fb64e859} - C:\Program Files\HiGames\tbHiG1.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-73586283-1275210071-682003330-1003\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-21-73586283-1275210071-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-73586283-1275210071-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
IE - HKU\S-1-5-21-73586283-1275210071-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = :

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "About:Blank"
FF - prefs.js..extensions.enabledItems: {003D3EDC-99B9-4a34-9C20-60CB94F7E829}:2009
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: xmlfiller@software602.cz:3.1.7
FF - prefs.js..extensions.enabledItems: FFToolbar@bitdefender.com:2.0
FF - prefs.js..network.proxy.ftp: ":"
FF - prefs.js..network.proxy.gopher: ":"
FF - prefs.js..network.proxy.http: ":"
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.socks: ":"
FF - prefs.js..network.proxy.ssl: ":"

FF - HKLM\software\mozilla\Firefox\Extensions\\FFToolbar@bitdefender.com: E:\Program Files\BitDefender\BitDefender 2010\bdaphffext\ [2010.04.21 06:19:33 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.5.0.127\IPSFFPlgn\ [2010.04.21 07:10:08 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.5.0.127\coFFPlgn\ [2010.04.21 07:10:10 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.04.16 17:20:00 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.04.16 01:40:24 | 000,000,000 | ---D | M]

[2009.01.02 11:28:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Mozilla\Extensions
[2010.04.14 17:10:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Mozilla\Firefox\Profiles\bbxsi0jh.default\extensions
[2009.01.12 07:34:54 | 000,000,000 | ---D | M] (WebTran) -- C:\Documents and Settings\Šeda\Data aplikací\Mozilla\Firefox\Profiles\bbxsi0jh.default\extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
[2010.03.10 15:10:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Mozilla\Firefox\Profiles\bbxsi0jh.default\extensions\radiobar@toolbar
[2010.04.12 20:46:43 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikací\Mozilla\Firefox\Profiles\bbxsi0jh.default\searchplugins\icqplugin-1.xml
[2009.02.10 22:34:06 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikací\Mozilla\Firefox\Profiles\bbxsi0jh.default\searchplugins\icqplugin-2.xml
[2009.04.20 11:33:14 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikací\Mozilla\Firefox\Profiles\bbxsi0jh.default\searchplugins\icqplugin-3.xml
[2009.06.01 13:18:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikací\Mozilla\Firefox\Profiles\bbxsi0jh.default\searchplugins\icqplugin-4.xml
[2009.06.15 16:49:10 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikací\Mozilla\Firefox\Profiles\bbxsi0jh.default\searchplugins\icqplugin-5.xml
[2008.11.18 14:56:02 | 000,000,944 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikací\Mozilla\Firefox\Profiles\bbxsi0jh.default\searchplugins\icqplugin.xml
[2010.04.14 17:10:42 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.03.26 11:15:29 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\xmlfiller@software602.cz
[2009.06.01 13:22:18 | 000,874,008 | ---- | M] (ParallelGraphics) -- C:\Program Files\Mozilla Firefox\plugins\npCortona.dll
[2009.12.17 16:39:34 | 000,090,112 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npfiller.dll
[2010.03.15 15:42:18 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.03.15 15:42:18 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.03.15 15:42:18 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.03.15 15:42:19 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.03.15 15:42:19 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2008.07.05 20:16:22 | 000,000,133 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: //DarkNest
O1 - Hosts: 216.107.250.194 nprotect.lineage2.com
O1 - Hosts: 89.185.242.193 l2authd.lineage2.com
O1 - Hosts: 89.185.242.193 l2testauthd.lineage2.com
O2 - BHO: (no name) - {140BD8E3-C167-11D4-B4A3-080000180323} - No CLSID value found.
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O2 - BHO: (FGCatchUrl) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - E:\Program Files\FlashGet\jccatch.dll (www.flashget.com)
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\17.6.0.32\coieplg.dll (Symantec Corporation)
O2 - BHO: (HiGames Toolbar) - {64d23501-5195-4224-9446-e2b0fb64e859} - C:\Program Files\HiGames\tbHiG1.dll (Conduit Ltd.)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\17.6.0.32\ipsbho.dll (Symantec Corporation)
O2 - BHO: (no name) - {B8A7839C-51E8-4067-ADA3-CA74BABC1976} - No CLSID value found.
O2 - BHO: (FlashGet GetFlash Class) - {F156768E-81EF-470C-9057-481BA8380DBA} - E:\Program Files\FlashGet\getflash.dll (www.flashget.com)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (HiGames Toolbar) - {64d23501-5195-4224-9446-e2b0fb64e859} - C:\Program Files\HiGames\tbHiG1.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\17.6.0.32\coieplg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (HiGames Toolbar) - {64D23501-5195-4224-9446-E2B0FB64E859} - C:\Program Files\HiGames\tbHiG1.dll (Conduit Ltd.)
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (HiGames Toolbar) - {64D23501-5195-4224-9446-E2B0FB64E859} - C:\Program Files\HiGames\tbHiG1.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-73586283-1275210071-682003330-1003\..\Toolbar\ShellBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-73586283-1275210071-682003330-1003\..\Toolbar\ShellBrowser: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
O3 - HKU\S-1-5-21-73586283-1275210071-682003330-1003\..\Toolbar\ShellBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKU\S-1-5-21-73586283-1275210071-682003330-1003\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-73586283-1275210071-682003330-1003\..\Toolbar\WebBrowser: (HiGames Toolbar) - {64D23501-5195-4224-9446-E2B0FB64E859} - C:\Program Files\HiGames\tbHiG1.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-73586283-1275210071-682003330-1003\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O4 - HKLM..\Run: [BDRegion] C:\Program Files\CyberLink\Shared Files\brs.exe (cyberlink)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [CloneCDTray] E:\Program Files\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.)
O4 - HKLM..\Run: [InstantBurn] E:\Program Files\CyberLink\InstantBurn\Win2K\IBurn.exe (CyberLink Corporation.)
O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [LanguageShortcut] E:\Program Files\CyberLink\PowerDVD\Language\Language.exe ()
O4 - HKLM..\Run: [LGODDFU] E:\Program Files\lg_fwupdate\fwupdate.exe (BL)
O4 - HKLM..\Run: [mouseElf] C:\Program Files\Genius Wireless TwinTouch+ Optical\MouseElf.exe (Genius)
O4 - HKLM..\Run: [NBKeyScan] E:\Program Files\Nero\Nero BackItUp 4\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [PCSuiteTrayApplication] E:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe (Nokia)
O4 - HKLM..\Run: [PrintPack dispatcher] E:\Program Files\Software602\Print2PDF\PrnPack.exe (Software602 a.s.)
O4 - HKLM..\Run: [RTBatteryMeter] C:\Program Files\VibrateGameDeviceDriver\rfpicon.exe (Ruling Tec Pte Ltd)
O4 - HKLM..\Run: [Sony Ericsson PC Suite] E:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe ()
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [WinVNC] E:\Program Files\RealVNC\WinVNC\winvnc.exe (RealVNC Ltd.)
O4 - HKU\.DEFAULT..\Run: [Nokia.PCSync] E:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe (Time Information Services Ltd.)
O4 - HKU\S-1-5-18..\Run: [Nokia.PCSync] E:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe (Time Information Services Ltd.)
O4 - HKU\S-1-5-21-73586283-1275210071-682003330-1003..\Run: [DAEMON Tools Lite] E:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-73586283-1275210071-682003330-1003..\Run: [OEXPRESS] C:\Documents and Settings\All Users\Data aplikací\LangSoft\OETRN.EXE ()
O4 - HKU\S-1-5-21-73586283-1275210071-682003330-1003..\Run: [Power2GoExpress] File not found
O4 - HKU\S-1-5-21-73586283-1275210071-682003330-1003..\Run: [SoftAuto.exe] C:\Program Files\Creative\Software Update 3\SoftAuto.exe (Creative Technology Ltd)
O4 - HKU\S-1-5-21-73586283-1275210071-682003330-1003..\Run: [WEBTRAN] File not found
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE (WinZip Computing, S.L.)
O4 - Startup: C:\Documents and Settings\Šeda\Nabídka Start\Programy\Po spuštění\OpenOffice.org 2.1.lnk = C:\Program Files\OpenOffice.org 2.1\program\quickstart.exe ()
O4 - Startup: C:\Documents and Settings\Šeda\Nabídka Start\Programy\Po spuštění\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\Šeda\Nabídka Start\Programy\Po spuštění\_uninst_setup_9.0.0.722_18.04.2010_23-12.exe.lnk = C:\Documents and Settings\Šeda\Local Settings\Temp\_uninst_setup_9.0.0.722_18.04.2010_23-12.exe.bat File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-21-73586283-1275210071-682003330-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-73586283-1275210071-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-21-73586283-1275210071-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O8 - Extra context menu item: &Stáhnout FlashGetem - E:\Program Files\FlashGet\JC_LINK.HTM ()
O8 - Extra context menu item: &Stáhnout všechny FlashGetem - E:\Program Files\FlashGet\JC_ALL.HTM ()
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Easy-WebPrint Add To Print List - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint High Speed Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Preview - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O9 - Extra 'Tools' menuitem : GigaSize Toolbar - {18955D47-882E-48fc-B903-A4BDD030E7FD} - Reg Error: Value error. File not found
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Print2PDF - {5B7027AD-AA6D-40df-8F56-9560F277D2A5} - C:\WINDOWS\system32\Print602.dll (Software602 a.s.)
O9 - Extra 'Tools' menuitem : Print2PDF - {5B7027AD-AA6D-40df-8F56-9560F277D2A5} - C:\WINDOWS\system32\Print602.dll (Software602 a.s.)
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - E:\Program Files\ICQ\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - E:\Program Files\ICQ\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - E:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O9 - Extra 'Tools' menuitem : FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - E:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - E:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - E:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKLM\..Trusted Domains: mojebanka.cz ([*] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mojebanka.cz ([www] https in Trusted sites)
O15 - HKU\S-1-5-21-73586283-1275210071-682003330-1003\..Trusted Domains: ([]msn in My Computer)
O15 - HKU\S-1-5-21-73586283-1275210071-682003330-1003\..Trusted Domains: mojebanka.cz ([*] https in Trusted sites)
O15 - HKU\S-1-5-21-73586283-1275210071-682003330-1003\..Trusted Domains: mojebanka.cz ([www] https in Trusted sites)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {50E43D86-A74D-11D0-98CE-004005249458} https://www.mojebanka.cz/jars/confwiz/MVSGif.cab (AnimatedGif Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} http://195.113.207.238/activex/AMC.cab (AxisMediaControlEmb Class)
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} http://arcade.icq.com/carlo/zuma/popcaploader_v5.cab (Reg Error: Key error.)
O16 - DPF: CW App KB R9 https://www.mojebanka.cz/jars/cwapp.cab (Reg Error: Key error.)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: IB App KB R9 https://www.mojebanka.cz/jars/ibapp.cab (Reg Error: Key error.)
O16 - DPF: KTPro SP KB R9 https://www.mojebanka.cz/jars/ktpsp.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O16 - DPF: SH App KB R9 https://www.mojebanka.cz/jars/shapp.cab (Reg Error: Key error.)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\slbipsch: DllName - C:\WINDOWS\system32\slbipsch.dll - C:\WINDOWS\System32\slbipsch.dll File not found
O21 - SSODL: msmdev - {B2546A54-2D3A-4F7D-B749-15D6D5D11CDC} - CLSID or File not found.
O21 - SSODL: msmhost - {5E0AB119-E27E-4067-8D8C-FD648B2BC8EA} - CLSID or File not found.
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (lsdelete) - C:\WINDOWS\System32\lsdelete.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: Ias - C:\WINDOWS\system32\ias [2005.12.15 22:40:15 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.clmp3enc - E:\Program Files\CyberLink\Power2Go\CLMP3Enc.ACM (CyberLink Corp.)
Drivers32: msacm.dvacm - C:\Program Files\Common Files\Ulead Systems\vio\DVACM.acm (Ulead Systems, Inc.)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.mpegacm - C:\Program Files\Common Files\Ulead Systems\MPEG\MPEGACM.acm (Ulead Systems, Inc.)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.ulmp3acm - C:\Program Files\Common Files\Ulead Systems\MPEG\ulmp3acm.acm (Ulead systems)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.mjpg - C:\WINDOWS\System32\pvmjpg30.dll (Pegasus Imaging Corporation)
Drivers32: vidc.tscc - C:\WINDOWS\System32\tsccvid.dll (TechSmith Corporation)
Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: VIDC.WMV3 - C:\WINDOWS\System32\wmv9vcm.dll (Microsoft Corporation)
Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Unable to start service SrService!

========== Files/Folders - Created Within 30 Days ==========

[2010.04.21 12:35:18 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010.04.21 12:35:18 | 000,000,000 | ---D | C] -- C:\rsit
[2010.04.21 11:53:37 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Šeda\Recent
[2010.04.21 07:21:41 | 000,501,888 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1106000.020\cchpx86.sys
[2010.04.21 07:21:41 | 000,362,032 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1106000.020\symtdi.sys
[2010.04.21 07:21:41 | 000,340,016 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1106000.020\symtdiv.sys
[2010.04.21 07:21:41 | 000,328,752 | R--- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1106000.020\symds.sys
[2010.04.21 07:21:41 | 000,325,680 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1106000.020\srtsp.sys
[2010.04.21 07:21:41 | 000,172,592 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1106000.020\symefa.sys
[2010.04.21 07:21:41 | 000,116,784 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1106000.020\ironx86.sys
[2010.04.21 07:21:41 | 000,043,696 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1106000.020\srtspx.sys
[2010.04.21 07:21:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NIS\1106000.020
[2010.04.21 07:09:34 | 000,124,976 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2010.04.21 07:09:34 | 000,060,808 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL
[2010.04.21 07:09:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2010.04.21 07:09:34 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec
[2010.04.21 07:09:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NIS
[2010.04.21 07:09:04 | 000,000,000 | ---D | C] -- C:\Program Files\Norton Internet Security
[2010.04.21 07:09:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Norton
[2010.04.21 07:08:42 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller
[2010.04.21 07:08:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\NortonInstaller
[2010.04.20 09:12:02 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010.04.17 07:00:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\LangSoft
[2010.04.16 12:25:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\BitDefender
[2010.04.16 12:18:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\BitDefender
[2010.04.16 01:25:49 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys
[2010.04.15 23:32:03 | 000,018,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdaudio.sys
[2010.04.15 23:31:54 | 000,030,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\modem.sys.new
[2010.04.15 23:31:54 | 000,030,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\modem.sys
[2010.04.15 23:31:51 | 000,034,688 | ---- | C] (Toshiba Corp.) -- C:\WINDOWS\System32\dllcache\lbrtfdc.sys
[2010.04.15 23:31:50 | 000,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys
[2010.04.15 23:31:47 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys
[2010.04.15 23:31:46 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys
[2010.04.15 23:31:44 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\changer.sys
[2010.04.15 23:31:43 | 000,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys
[2010.04.15 22:57:10 | 000,039,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\processr.sys
[2010.04.15 22:56:56 | 000,010,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidusb.sys
[2010.04.15 22:55:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\HiGames
[2010.04.15 22:54:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Conduit
[2010.04.09 11:58:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Šeda\Dokumenty\My Music
[2010.04.09 09:21:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Šeda\Local Settings\Data aplikací\jwProgramy
[2010.04.08 11:50:10 | 000,000,000 | ---D | C] -- C:\Program Files\Xvid
[2010.04.07 05:51:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Sun
[2010.04.07 05:51:24 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010.04.07 05:51:24 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010.04.07 05:51:23 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010.04.03 02:10:15 | 036,572,509 | ---- | C] (I Sioux B.V. ) -- C:\Documents and Settings\Šeda\Plocha\Play.exe
[2010.04.02 17:20:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Šeda\Data aplikací\UB
[2010.04.02 17:19:25 | 000,000,000 | ---D | C] -- C:\Program Files\_uninstallation_info
[2010.03.26 11:15:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Freedom Scientific
[2009.04.02 23:16:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Google
[2009.04.02 23:03:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Google
[2009.03.05 21:45:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Apple
[2009.02.08 03:57:23 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Data aplikací\Microsoft
[2008.01.01 16:29:45 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Šeda\Data aplikací\pcouffin.sys
[2007.02.02 09:58:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Microsoft
[2006.11.26 10:21:35 | 000,006,784 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\gmfiltr.sys
[2006.08.20 10:18:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Microsoft
[2006.07.09 11:26:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\AVG7
[2005.12.15 22:40:17 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Data aplikací\Microsoft
[7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[Unisono]

Druhá část:


[2010.04.21 14:57:03 | 000,802,304 | ---- | M] () -- C:\WINDOWS\System32\drivers\faybowoj.sys
[2010.04.21 14:57:02 | 000,586,240 | ---- | M] () -- C:\WINDOWS\System32\drivers\katnq.sys
[2010.04.21 12:58:54 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010.04.21 12:32:40 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2010.04.21 12:30:41 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.04.21 12:28:56 | 016,052,224 | ---- | M] () -- C:\Documents and Settings\Šeda\NTUSER.DAT
[2010.04.21 12:28:56 | 000,000,272 | -HS- | M] () -- C:\Documents and Settings\Šeda\ntuser.ini
[2010.04.21 11:48:04 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.04.21 11:44:00 | 000,000,280 | -H-- | M] () -- C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
[2010.04.21 11:35:52 | 000,000,289 | ---- | M] () -- C:\WINDOWS\lgfwup.ini
[2010.04.21 11:35:35 | 000,199,961 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010.04.21 11:35:05 | 000,000,280 | -H-- | M] () -- C:\WINDOWS\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job
[2010.04.21 11:33:47 | 000,904,474 | ---- | M] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\Cat.DB
[2010.04.21 11:24:03 | 000,001,022 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-73586283-1275210071-682003330-1003UA.job
[2010.04.21 07:31:39 | 000,001,979 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Norton Internet Security.LNK
[2010.04.21 07:09:34 | 000,124,976 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2010.04.21 07:09:34 | 000,060,808 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL
[2010.04.21 07:09:34 | 000,007,443 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2010.04.21 07:09:34 | 000,000,805 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2010.04.21 06:16:29 | 000,000,052 | ---- | M] () -- C:\WINDOWS\System32\ashttpstats.csv
[2010.04.21 05:52:48 | 000,781,909 | ---- | M] () -- C:\Documents and Settings\Šeda\Plocha\RSIT.exe
[2010.04.21 05:42:07 | 000,000,376 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikacíprivacy.xml
[2010.04.20 13:05:52 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.04.20 09:17:47 | 000,000,676 | ---- | M] () -- C:\Documents and Settings\Šeda\Plocha\Zástupce - procexp.lnk
[2010.04.20 08:12:13 | 000,375,942 | ---- | M] () -- C:\Documents and Settings\Šeda\Plocha\SH NOD32 viry.jpg
[2010.04.20 05:24:01 | 000,000,970 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-73586283-1275210071-682003330-1003Core.job
[2010.04.20 00:00:52 | 000,000,368 | ---- | M] () -- C:\WINDOWS\tasks\NeroLiveEpgUpdate-PC3_Šeda.job
[2010.04.19 11:57:00 | 003,919,755 | ---- | M] () -- C:\Documents and Settings\Šeda\Plocha\ComboFix.exe
[2010.04.19 01:52:28 | 000,294,864 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.04.19 01:47:57 | 000,001,047 | ---- | M] () -- C:\Documents and Settings\Šeda\Nabídka Start\Programy\Po spuštění\_uninst_setup_9.0.0.722_18.04.2010_23-12.exe.lnk
[2010.04.19 00:44:02 | 001,401,344 | ---- | M] () -- C:\Documents and Settings\Šeda\Plocha\HijackThis.msi
[2010.04.18 19:04:52 | 000,178,057 | ---- | M] () -- C:\Documents and Settings\Šeda\Dokumenty\PRIKAZ10 (+1).pdf
[2010.04.18 14:54:53 | 000,000,575 | ---- | M] () -- C:\Documents and Settings\Šeda\Plocha\CleanUp!.lnk
[2010.04.18 12:59:53 | 000,000,465 | ---- | M] () -- C:\Documents and Settings\Šeda\Plocha\Zástupce - Temp.lnk
[2010.04.17 07:01:21 | 000,000,004 | ---- | M] () -- C:\WINDOWS\System32\aspdict-en.dat
[2010.04.17 07:01:18 | 000,000,016 | ---- | M] () -- C:\WINDOWS\System32\asdict.dat
[2010.04.17 07:01:12 | 000,000,850 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikacíProductTweaks.xml
[2010.04.16 17:38:26 | 000,000,385 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikacíuser_gensett.xml
[2010.04.16 17:08:19 | 000,110,984 | ---- | M] (BitDefender LLC) -- C:\WINDOWS\System32\drivers\bdfndisf.sys
[2010.04.16 13:35:09 | 000,000,000 | ---- | M] () -- C:\WINDOWS\XXLGSC
[2010.04.16 13:25:41 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\wsbl.dat
[2010.04.16 13:25:41 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\phar_unmip.dat
[2010.04.16 13:25:41 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\phar_histprot.dat
[2010.04.16 13:25:41 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ph_summ.dat
[2010.04.16 13:25:41 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ph_spoof.sig
[2010.04.16 13:25:41 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ph_sign.slf
[2010.04.16 13:25:41 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ph_fuzzy.sig
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ph_white.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ph_black.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pcwords2.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pcwords.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_video.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_tabloids.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_socialnetworks.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_sign.slf
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_searchengines.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_regionaltlds.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_pornography.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_onlineshop.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_onlinepay.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_onlinedating.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_news.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_im.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_illegal.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_hate.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_games.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_gambling.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_drugs.dat
[2010.04.16 13:25:39 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_webproxy.dat
[2010.04.16 13:25:38 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ab_sbl.sig
[2010.04.16 13:25:38 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ab_bl.sig
[2010.04.16 01:40:24 | 000,001,597 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.04.15 23:13:36 | 000,000,658 | ---- | M] () -- C:\Documents and Settings\Šeda\Plocha\CCleaner.lnk
[2010.04.15 21:19:02 | 000,002,497 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Sony Ericsson PC Suite.lnk
[2010.04.15 19:12:29 | 000,082,560 | ---- | M] () -- C:\Documents and Settings\Šeda\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
[2010.04.15 14:39:26 | 000,000,616 | ---- | M] () -- C:\Documents and Settings\Šeda\Plocha\Dokumenty Unisono PC1.lnk
[2010.04.12 14:46:46 | 000,002,719 | ---- | M] () -- C:\WINDOWS\TRNCOM.INI
[2010.04.09 12:23:32 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\Šeda\Plocha\Clean Disk Security.lnk
[2010.04.09 11:27:47 | 000,000,040 | ---- | M] () -- C:\WINDOWS\DCheck95.ini
[2010.04.09 11:17:06 | 000,000,605 | ---- | M] () -- C:\Documents and Settings\Šeda\Plocha\DiskCheckerXP.lnk
[2010.04.09 08:59:29 | 000,000,546 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\jwDuplFiles.lnk
[2010.04.08 18:32:20 | 000,192,000 | ---- | M] () -- C:\Documents and Settings\Šeda\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.04.08 12:49:56 | 000,000,000 | ---- | M] () -- C:\m23apdfj.tmp.X
[2010.04.08 12:02:59 | 000,000,671 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikací\vso_ts_preview.xml
[2010.04.07 05:50:05 | 000,428,168 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.04.07 05:50:05 | 000,424,852 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.04.07 05:50:05 | 000,076,606 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.04.07 05:50:05 | 000,066,570 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.04.07 05:50:03 | 001,009,456 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.04.01 08:25:21 | 000,002,256 | ---- | M] () -- C:\Documents and Settings\Šeda\Plocha\Google Chrome.lnk
[2010.03.27 06:36:00 | 000,082,560 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikací\GDIPFONTCACHEV1.DAT
[2010.03.27 02:57:35 | 000,000,172 | ---- | M] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\isolate.ini
[2010.03.26 11:15:30 | 000,001,876 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\602XML Filler.lnk
[7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.04.21 07:30:50 | 000,904,474 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\Cat.DB
[2010.04.21 07:21:41 | 000,007,787 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\symnetv.cat
[2010.04.21 07:21:41 | 000,007,444 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\symefa.cat
[2010.04.21 07:21:41 | 000,007,442 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\srtspx.cat
[2010.04.21 07:21:41 | 000,007,438 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\srtsp.cat
[2010.04.21 07:21:41 | 000,007,438 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\iron.cat
[2010.04.21 07:21:41 | 000,007,425 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\symds.cat
[2010.04.21 07:21:41 | 000,007,368 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\symnet.cat
[2010.04.21 07:21:41 | 000,003,374 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\symefa.inf
[2010.04.21 07:21:41 | 000,002,793 | R--- | C] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\symds.inf
[2010.04.21 07:21:41 | 000,001,473 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\symnetv.inf
[2010.04.21 07:21:41 | 000,001,445 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\symnet.inf
[2010.04.21 07:21:41 | 000,001,388 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\srtspx.inf
[2010.04.21 07:21:41 | 000,001,382 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\srtsp.inf
[2010.04.21 07:21:41 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\iron.inf
[2010.04.21 07:21:40 | 000,007,396 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\cchpx86.cat
[2010.04.21 07:21:40 | 000,001,754 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\cchpx86.inf
[2010.04.21 07:21:10 | 000,000,172 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1106000.020\isolate.ini
[2010.04.21 07:09:34 | 000,007,443 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2010.04.21 07:09:34 | 000,000,805 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2010.04.21 07:09:31 | 000,001,979 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Norton Internet Security.LNK
[2010.04.21 06:47:41 | 000,586,240 | ---- | C] () -- C:\WINDOWS\System32\drivers\katnq.sys
[2010.04.21 06:11:53 | 000,781,909 | ---- | C] () -- C:\Documents and Settings\Šeda\Plocha\RSIT.exe
[2010.04.20 09:17:47 | 000,000,676 | ---- | C] () -- C:\Documents and Settings\Šeda\Plocha\Zástupce - procexp.lnk
[2010.04.20 09:16:58 | 001,401,344 | ---- | C] () -- C:\Documents and Settings\Šeda\Plocha\HijackThis.msi
[2010.04.20 09:14:14 | 003,919,755 | ---- | C] () -- C:\Documents and Settings\Šeda\Plocha\ComboFix.exe
[2010.04.20 08:12:11 | 000,375,942 | ---- | C] () -- C:\Documents and Settings\Šeda\Plocha\SH NOD32 viry.jpg
[2010.04.19 01:47:57 | 000,001,047 | ---- | C] () -- C:\Documents and Settings\Šeda\Nabídka Start\Programy\Po spuštění\_uninst_setup_9.0.0.722_18.04.2010_23-12.exe.lnk
[2010.04.18 19:04:31 | 000,178,057 | ---- | C] () -- C:\Documents and Settings\Šeda\Dokumenty\PRIKAZ10 (+1).pdf
[2010.04.18 14:56:21 | 000,000,575 | ---- | C] () -- C:\Documents and Settings\Šeda\Plocha\CleanUp!.lnk
[2010.04.18 12:59:51 | 000,000,465 | ---- | C] () -- C:\Documents and Settings\Šeda\Plocha\Zástupce - Temp.lnk
[2010.04.17 07:01:21 | 000,000,004 | ---- | C] () -- C:\WINDOWS\System32\aspdict-en.dat
[2010.04.17 07:01:18 | 000,000,016 | ---- | C] () -- C:\WINDOWS\System32\asdict.dat
[2010.04.17 07:01:12 | 000,000,850 | ---- | C] () -- C:\Documents and Settings\Šeda\Data aplikacíProductTweaks.xml
[2010.04.16 17:38:26 | 000,000,385 | ---- | C] () -- C:\Documents and Settings\Šeda\Data aplikacíuser_gensett.xml
[2010.04.16 17:20:09 | 000,000,376 | ---- | C] () -- C:\Documents and Settings\Šeda\Data aplikacíprivacy.xml
[2010.04.16 17:11:36 | 000,000,052 | ---- | C] () -- C:\WINDOWS\System32\ashttpstats.csv
[2010.04.16 13:25:41 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\wsbl.dat
[2010.04.16 13:25:41 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\phar_unmip.dat
[2010.04.16 13:25:41 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\phar_histprot.dat
[2010.04.16 13:25:41 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ph_summ.dat
[2010.04.16 13:25:41 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ph_spoof.sig
[2010.04.16 13:25:41 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ph_sign.slf
[2010.04.16 13:25:41 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ph_fuzzy.sig
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ph_white.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ph_black.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pcwords2.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pcwords.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_video.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_tabloids.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_socialnetworks.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_sign.slf
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_searchengines.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_regionaltlds.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_pornography.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_onlineshop.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_onlinepay.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_onlinedating.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_news.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_im.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_illegal.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_hate.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_games.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_gambling.dat
[2010.04.16 13:25:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_drugs.dat
[2010.04.16 13:25:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_webproxy.dat
[2010.04.16 13:25:38 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ab_sbl.sig
[2010.04.16 13:25:38 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ab_bl.sig
[2010.04.15 23:13:36 | 000,000,658 | ---- | C] () -- C:\Documents and Settings\Šeda\Plocha\CCleaner.lnk
[2010.04.09 12:23:32 | 000,000,630 | ---- | C] () -- C:\Documents and Settings\Šeda\Plocha\Clean Disk Security.lnk
[2010.04.09 11:26:59 | 000,000,040 | ---- | C] () -- C:\WINDOWS\DCheck95.ini
[2010.04.09 11:17:06 | 000,000,605 | ---- | C] () -- C:\Documents and Settings\Šeda\Plocha\DiskCheckerXP.lnk
[2010.04.09 08:59:29 | 000,000,546 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\jwDuplFiles.lnk
[2010.04.08 12:49:56 | 000,000,000 | ---- | C] () -- C:\m23apdfj.tmp.X
[2010.04.08 11:50:16 | 000,815,104 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010.04.08 11:50:16 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\xvid.ax
[2010.04.08 11:50:11 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010.04.08 11:39:37 | 000,000,280 | -H-- | C] () -- C:\WINDOWS\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job
[2010.04.08 11:39:31 | 000,000,280 | -H-- | C] () -- C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
[2010.03.26 11:15:30 | 000,001,876 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\602XML Filler.lnk
[2010.02.27 20:41:36 | 000,802,304 | ---- | C] () -- C:\WINDOWS\System32\drivers\faybowoj.sys
[2010.02.27 20:40:50 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\Šeda\Data aplikací\avdrn.dat
[2010.01.20 20:50:42 | 000,000,571 | ---- | C] () -- C:\WINDOWS\System32\FeMakro.ini
[2010.01.20 20:50:42 | 000,000,497 | ---- | C] () -- C:\WINDOWS\System32\FeAnim.ini
[2009.07.09 00:25:46 | 000,000,020 | ---- | C] () -- C:\WINDOWS\mafosav.INI
[2009.02.27 16:43:53 | 000,334,272 | ---- | C] () -- C:\Documents and Settings\Šeda\elists.db
[2009.02.27 16:23:52 | 000,229,248 | ---- | C] () -- C:\Documents and Settings\Šeda\gncontent.cch
[2009.02.26 17:41:39 | 000,000,289 | ---- | C] () -- C:\WINDOWS\lgfwup.ini
[2009.02.08 13:04:05 | 000,000,671 | ---- | C] () -- C:\Documents and Settings\Šeda\Data aplikací\vso_ts_preview.xml
[2009.02.08 13:03:45 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Šeda\Data aplikací\inst.exe
[2009.01.30 07:30:18 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Šeda\Data aplikací\downloads.m3u
[2009.01.29 18:28:00 | 000,000,163 | ---- | C] () -- C:\Documents and Settings\Šeda\Data aplikací\default.rss
[2009.01.28 02:47:30 | 000,004,767 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2009.01.12 07:33:50 | 000,002,719 | ---- | C] () -- C:\WINDOWS\TRNCOM.INI
[2009.01.11 15:02:43 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2009.01.11 15:02:43 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2009.01.11 15:02:43 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2009.01.11 15:02:43 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2009.01.11 15:02:43 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2009.01.11 15:02:43 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2009.01.10 19:34:05 | 000,695,800 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2009.01.09 14:57:34 | 000,000,091 | ---- | C] () -- C:\Documents and Settings\Šeda\default.pls
[2009.01.09 14:56:53 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009.01.05 22:50:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Graffiti5.2Pin.ini
[2009.01.05 22:50:39 | 000,237,568 | R--- | C] () -- C:\WINDOWS\System32\qtmlClient.dll
[2009.01.01 20:37:52 | 000,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2008.09.22 21:45:37 | 000,000,038 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2008.09.22 07:40:24 | 000,053,395 | ---- | C] () -- C:\WINDOWS\System32\tdssinit.dll
[2008.06.20 16:49:19 | 000,000,006 | ---- | C] () -- C:\Documents and Settings\Šeda\Data aplikací\bin.dll
[2008.02.08 18:13:44 | 000,319,488 | ---- | C] () -- C:\WINDOWS\System32\LS3Renderer.dll
[2008.01.01 16:30:05 | 000,000,014 | ---- | C] () -- C:\WINDOWS\System32\systeminfo3.dll
[2008.01.01 16:30:01 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\Šeda\Data aplikací\pcouffin.log
[2008.01.01 16:29:45 | 000,081,920 | ---- | C] () -- C:\Documents and Settings\Šeda\Data aplikací\ezpinst.exe
[2008.01.01 16:29:45 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Šeda\Data aplikací\pcouffin.cat
[2008.01.01 16:29:45 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Šeda\Data aplikací\pcouffin.inf
[2007.11.11 04:15:05 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2007.08.03 22:37:19 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\QTSBandwidthCache
[2007.07.27 18:27:08 | 000,000,776 | ---- | C] () -- C:\WINDOWS\Thps3.INI
[2007.07.08 22:08:52 | 000,000,124 | ---- | C] () -- C:\Documents and Settings\Šeda\Local Settings\Data aplikací\fusioncache.dat
[2007.06.16 17:08:28 | 002,031,616 | ---- | C] () -- C:\WINDOWS\System32\libmysql.dll
[2007.03.07 20:25:39 | 000,000,018 | ---- | C] () -- C:\WINDOWS\REZEK.INI
[2007.02.27 14:10:37 | 000,000,369 | ---- | C] () -- C:\WINDOWS\Wdbe.INI
[2007.02.22 15:36:25 | 000,043,008 | ---- | C] () -- C:\WINDOWS\System32\winbri21.dll
[2007.01.26 03:04:12 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\mase32.dll
[2007.01.26 03:04:12 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\ma32.dll
[2007.01.06 19:36:26 | 000,000,126 | -HS- | C] () -- C:\Documents and Settings\All Users\Data aplikací\.zreglib
[2006.12.31 00:42:04 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI
[2006.12.25 11:03:50 | 000,000,000 | ---- | C] () -- C:\WINDOWS\xt2in5uk.ini
[2006.11.26 10:21:35 | 000,004,096 | ---- | C] () -- C:\WINDOWS\System32\drivers\gmcoinst.dll
[2006.09.28 15:55:34 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\PhysXLoader.dll
[2006.09.26 15:01:40 | 000,045,056 | R--- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2006.09.25 10:15:03 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\CNMVS7D.DLL
[2006.09.10 23:26:13 | 000,000,226 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2006.09.08 10:01:50 | 000,045,056 | R--- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2006.09.08 10:01:50 | 000,045,056 | R--- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2006.09.08 10:01:50 | 000,045,056 | R--- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2006.09.08 10:01:50 | 000,045,056 | R--- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2006.09.08 10:01:50 | 000,045,056 | R--- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2006.09.08 10:01:50 | 000,045,056 | R--- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2006.09.08 10:01:50 | 000,045,056 | R--- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2006.09.08 10:01:50 | 000,045,056 | R--- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2006.08.17 12:04:09 | 000,262,144 | ---- | C] () -- C:\Documents and Settings\All Users\ntuser.dat
[2006.08.17 12:04:09 | 000,001,024 | -H-- | C] () -- C:\Documents and Settings\All Users\ntuser.dat.LOG
[2006.06.17 14:49:43 | 000,000,023 | ---- | C] () -- C:\WINDOWS\Hlavouni.ini
[2006.04.14 21:07:09 | 000,000,082 | ---- | C] () -- C:\WINDOWS\SILCOM_P.INI
[2006.03.25 21:35:44 | 000,192,000 | ---- | C] () -- C:\Documents and Settings\Šeda\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006.02.26 15:43:09 | 000,000,494 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006.02.26 11:02:45 | 000,000,018 | ---- | C] () -- C:\WINDOWS\cnc.ini
[2006.02.26 10:38:01 | 000,000,042 | ---- | C] () -- C:\WINDOWS\STXKBD.INI
[2006.02.26 10:38:00 | 000,002,634 | ---- | C] () -- C:\WINDOWS\WINTRAN.INI
[2006.02.26 10:38:00 | 000,000,882 | ---- | C] () -- C:\WINDOWS\WDICT32.INI
[2006.02.26 10:38:00 | 000,000,033 | ---- | C] () -- C:\WINDOWS\WTRDCTM.INI
[2006.02.05 15:04:41 | 000,000,306 | ---- | C] () -- C:\WINDOWS\QTW.INI
[2006.01.30 17:18:51 | 000,000,009 | ---- | C] () -- C:\WINDOWS\podst_jm.ini
[2006.01.29 21:30:49 | 000,000,168 | ---- | C] () -- C:\WINDOWS\kingpong1.INI
[2006.01.27 20:03:14 | 000,000,074 | ---- | C] () -- C:\WINDOWS\bf.ini
[2006.01.24 21:47:12 | 000,000,211 | ---- | C] () -- C:\WINDOWS\fre.INI
[2006.01.24 15:50:43 | 000,000,009 | ---- | C] () -- C:\WINDOWS\slv_druh.ini
[2006.01.24 15:38:03 | 000,000,010 | ---- | C] () -- C:\WINDOWS\trampoty.ini
[2006.01.24 15:15:31 | 000,000,009 | ---- | C] () -- C:\WINDOWS\vyjm_slv.ini
[2006.01.24 15:15:31 | 000,000,002 | ---- | C] () -- C:\WINDOWS\ponset.ini
[2006.01.24 15:15:11 | 000,035,001 | ---- | C] () -- C:\WINDOWS\wmqfrm.dll
[2006.01.15 18:22:27 | 000,000,163 | ---- | C] () -- C:\WINDOWS\spidla.INI
[2006.01.04 20:17:06 | 000,000,143 | ---- | C] () -- C:\WINDOWS\compedia.ini
[2006.01.04 20:15:44 | 000,000,026 | ---- | C] () -- C:\WINDOWS\Technika.ini
[2006.01.04 20:15:44 | 000,000,026 | ---- | C] () -- C:\WINDOWS\RegSP.ini
[2006.01.04 19:58:50 | 000,000,071 | ---- | C] () -- C:\WINDOWS\CONTEXT.INI
[2006.01.02 02:41:42 | 000,000,237 | ---- | C] () -- C:\WINDOWS\level.ini
[2005.12.20 21:12:38 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Šeda\Data aplikací\sversion.ini
[2005.12.20 21:12:27 | 000,001,402 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2005.12.20 21:09:11 | 000,000,095 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2005.12.15 22:56:55 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2005.12.15 22:56:26 | 000,023,040 | R--- | C] () -- C:\WINDOWS\System32\drivers\GVCplDrv.sys
[2005.12.15 22:49:14 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2005.12.15 22:43:37 | 016,052,224 | ---- | C] () -- C:\Documents and Settings\Šeda\NTUSER.DAT
[2005.12.15 22:43:37 | 001,232,896 | -H-- | C] () -- C:\Documents and Settings\Šeda\ntuser.dat.LOG
[2005.12.15 22:43:37 | 000,000,272 | -HS- | C] () -- C:\Documents and Settings\Šeda\ntuser.ini
[2005.12.07 12:31:00 | 000,202,752 | R--- | C] () -- C:\WINDOWS\System32\CddbCdda.dll
[2005.06.15 11:20:00 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2005.06.15 11:20:00 | 001,503,232 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2005.06.15 11:20:00 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2005.06.15 11:20:00 | 000,540,672 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2005.06.15 11:20:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2002.07.30 19:17:25 | 000,282,112 | ---- | C] () -- C:\WINDOWS\System32\CNCS232.DLL
[1996.04.03 21:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

========== LOP Check ==========

[2010.03.03 18:02:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2007.01.26 20:49:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVG7
[2010.04.21 06:19:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\BitDefender
[2007.12.28 10:14:02 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonBJ
[2008.01.02 14:56:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DVDXStudio
[2007.01.06 19:36:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Elaborate Bytes
[2009.01.24 13:39:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2009.04.22 08:24:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2009.01.12 07:34:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\LangSoft
[2009.02.26 18:04:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\LightScribe
[2009.04.22 08:34:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Nokia
[2007.09.23 08:31:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2009.01.05 22:15:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle
[2009.01.05 22:15:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle Studio Plus
[2009.01.05 22:18:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle Studio Ultimate
[2006.07.25 14:19:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PopCap
[2010.03.08 18:36:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Sprouts Adventure
[2009.01.05 22:15:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Studio 12
[2007.12.28 13:03:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Teleca
[2010.03.12 23:37:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TrackMania
[2009.01.11 15:00:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ulead Systems
[2009.02.08 13:16:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\vsosdk
[2007.09.27 11:36:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\WinZip
[2009.02.20 20:13:45 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{12DD4DFD-49D5-4382-9533-B21955C1FD4C}
[2009.02.23 23:22:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[2009.02.20 20:12:49 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{6608C652-8B5C-4778-BAC8-B59DD368D024}
[2010.03.03 17:10:34 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6}
[2009.02.21 00:45:47 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{F40E9D30-5DFC-4B21-BFDB-A5CDEE6440A6}
[2007.07.08 22:32:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Data aplikací\PC Suite
[2006.07.09 11:26:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\AVG7
[2010.04.17 07:00:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\LangSoft
[2007.07.08 22:53:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek Miloslav\Data aplikací\ICQ Toolbar
[2007.07.08 22:52:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek Miloslav\Data aplikací\PC Suite
[2010.04.09 11:26:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\AVG7
[2009.08.10 00:13:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\BSplayer Pro
[2009.09.29 19:22:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Canon
[2006.10.02 18:00:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\CD-LabelPrint
[2009.01.01 20:37:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\DAEMON Tools
[2007.04.01 21:39:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Datalayer
[2007.10.18 21:04:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\EBookSys
[2007.08.01 00:10:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\flightgear.org
[2007.07.29 23:21:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\fltk.org
[2009.09.08 22:27:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\GigaSizeToolbar
[2008.03.09 13:29:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\gtk-2.0
[2010.01.31 11:49:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\ICQ
[2007.10.17 09:15:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\ICQ Toolbar
[2006.07.24 23:47:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\ICQLite
[2008.03.04 22:17:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Inkscape
[2009.01.12 21:38:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\LangSoft
[2006.08.22 16:03:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Leadertech
[2006.12.25 11:50:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Medicopter4
[2007.02.03 15:29:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\MobileAction
[2007.04.01 21:34:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Nokia
[2009.04.21 21:55:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Nokia Multimedia Player
[2009.04.21 21:41:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\PC Suite
[2010.01.20 20:50:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\pdfMachine
[2009.01.05 22:51:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\proDAD
[2007.11.11 04:21:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Publish Providers
[2007.12.23 15:22:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\SlySoft
[2007.11.11 04:16:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Sony
[2007.12.28 13:09:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Teleca
[2010.04.02 17:23:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\UB
[2009.01.11 17:23:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Ulead DVD MovieFactory
[2009.01.11 15:05:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Ulead Systems
[2010.04.09 11:26:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\uTorrent
[2009.01.08 15:57:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Video DVD Maker FREE
[2010.04.08 10:53:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Vso
[2006.04.28 17:30:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\ZapSpot
[2010.04.21 12:32:40 | 000,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
[2010.04.21 11:44:00 | 000,000,280 | -H-- | M] () -- C:\WINDOWS\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
[2010.04.21 11:35:05 | 000,000,280 | -H-- | M] () -- C:\WINDOWS\Tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job

========== Purity Check ==========



========== Custom Scans ==========


< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 05:22:17 | 000,015,360 | ---- | M] (Microsoft Corporation)
"OEXPRESS" = C:\Documents and Settings\All Users\Data aplikací\LangSoft\OETRN.EXE -- [2009.01.12 07:34:03 | 000,026,624 | ---- | M] ()
"WEBTRAN" =
"SoftAuto.exe" = "C:\Program Files\Creative\Software Update 3\SoftAuto.exe" -- [2008.08.13 05:49:30 | 000,405,504 | ---- | M] (Creative Technology Ltd)
"Power2GoExpress" =
"Google Update" = "C:\Documents and Settings\Šeda\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c -- [2009.07.11 12:04:50 | 000,133,104 | ---- | M] (Google Inc.)
"DAEMON Tools Lite" = "E:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun -- [2008.07.24 17:02:06 | 000,490,952 | ---- | M] (DT Soft Ltd)

< c:\windows\*.* /U >
[2 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >
[2001.05.24 13:59:30 | 000,162,304 | ---- | M] () -- C:\UNWISE.EXE

< %ALLUSERSPROFILE%\Application Data\*. >
[2007.07.27 08:32:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2007.02.27 16:13:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Adobe
[2006.08.22 15:49:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\AdobeAUM
[2006.01.29 13:31:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\AdobeUM
[2009.01.09 14:55:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Ahead
[2006.08.20 11:29:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Apple Computer
[2010.04.09 11:26:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\AVG7
[2009.08.10 00:13:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\BSplayer Pro
[2009.09.29 19:22:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Canon
[2006.10.02 18:00:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\CD-LabelPrint
[2009.03.21 07:54:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Creative
[2009.02.26 23:20:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\CyberLink
[2009.01.01 20:37:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\DAEMON Tools
[2007.04.01 21:39:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Datalayer
[2009.01.05 22:20:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\DivX
[2007.10.18 21:04:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\EBookSys
[2007.08.01 00:10:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\flightgear.org
[2007.07.29 23:21:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\fltk.org
[2009.09.08 22:27:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\GigaSizeToolbar
[2007.09.27 11:50:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Google
[2008.03.09 13:29:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\gtk-2.0
[2008.03.06 15:04:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Help
[2010.01.31 11:49:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\ICQ
[2007.10.17 09:15:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\ICQ Toolbar
[2006.07.24 23:47:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\ICQLite
[2009.04.21 23:07:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Identities
[2008.03.04 22:17:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Inkscape
[2009.09.08 22:28:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Kodak
[2009.01.12 21:38:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\LangSoft
[2008.04.28 21:31:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Lavasoft
[2006.08.22 16:03:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Leadertech
[2006.09.23 20:19:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Macromedia
[2006.12.25 11:50:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Medicopter4
[2009.04.24 23:44:48 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Šeda\Data aplikací\Microsoft
[2007.02.03 15:29:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\MobileAction
[2009.01.02 11:28:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Mozilla
[2006.07.12 23:37:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\MSN6
[2009.01.29 00:52:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Nero
[2007.04.01 21:34:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Nokia
[2009.04.21 21:55:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Nokia Multimedia Player
[2010.04.21 11:38:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\OpenOffice.org2
[2009.04.21 21:41:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\PC Suite
[2010.01.20 20:50:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\pdfMachine
[2009.01.05 22:51:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\proDAD
[2007.11.11 04:21:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Publish Providers
[2008.09.22 21:57:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Real
[2007.12.25 11:59:16 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\Šeda\Data aplikací\SecuROM
[2010.04.01 23:03:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Skype
[2007.12.23 15:22:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\SlySoft
[2007.11.11 04:16:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Sony
[2007.09.08 20:38:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Sony Ericsson
[2007.08.28 21:23:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Sun
[2007.12.28 13:09:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Teleca
[2010.04.02 17:23:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\UB
[2009.01.11 17:23:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Ulead DVD MovieFactory
[2009.01.11 15:05:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Ulead Systems
[2010.04.09 11:26:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\uTorrent
[2009.01.08 15:57:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Video DVD Maker FREE
[2010.04.08 10:53:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\Vso
[2009.01.09 17:18:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\WinRAR
[2006.04.28 17:30:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Šeda\Data aplikací\ZapSpot

< %APPDATA%\*.exe /s >
[2008.01.02 14:56:43 | 000,081,920 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikací\ezpinst.exe
[2009.02.08 13:03:45 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikací\inst.exe
[2009.11.29 21:01:30 | 000,279,582 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikací\Microsoft\Installer\{4D8844AB-21A5-43EC-B2F4-7CD8BBC7432E}\_0FC2ABA1133D135F351AC5.exe
[2009.11.29 21:01:30 | 000,010,134 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikací\Microsoft\Installer\{4D8844AB-21A5-43EC-B2F4-7CD8BBC7432E}\_3FB50CDAFF3C68CB5E3C65.exe
[2009.11.29 21:01:30 | 000,279,582 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikací\Microsoft\Installer\{4D8844AB-21A5-43EC-B2F4-7CD8BBC7432E}\_6FEFF9B68218417F98F549.exe
[2009.11.29 21:01:30 | 000,279,582 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikací\Microsoft\Installer\{4D8844AB-21A5-43EC-B2F4-7CD8BBC7432E}\_E8AE008DE8CFC308FA1A1E.exe
[2007.10.18 22:05:02 | 000,010,134 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikací\Microsoft\Installer\{B3940EA5-7872-487E-AF15-CF20DBD65F1B}\_2E6FA81F66FC2982781BC3.exe
[2007.10.18 22:05:02 | 000,010,134 | ---- | M] () -- C:\Documents and Settings\Šeda\Data aplikací\Microsoft\Installer\{B3940EA5-7872-487E-AF15-CF20DBD65F1B}\_8ECC23A7EE16983412592E.exe


< MD5 for: AGP440.SYS >
[2006.08.20 09:54:10 | 022,286,602 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.10.22 09:54:36 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2006.08.20 09:54:10 | 022,286,602 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:AGP440.sys
[2008.10.22 09:54:36 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
[2004.08.04 08:07:41 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\$NtServicePackUninstall$\agp440.sys

< MD5 for: ATAPI.SYS >
[2002.09.20 19:17:54 | 010,174,968 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp1.cab:atapi.sys
[2006.08.20 09:54:10 | 022,286,602 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.10.22 09:54:36 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2006.08.20 09:54:10 | 022,286,602 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:atapi.sys
[2008.10.22 09:54:36 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2002.08.29 02:27:50 | 000,086,912 | ---- | M] (Microsoft Corporation) MD5=95B858761A00E1D4F81F79A0DA019ACA -- C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386\atapi.sys
[2002.08.29 02:27:50 | 000,086,912 | ---- | M] (Microsoft Corporation) MD5=95B858761A00E1D4F81F79A0DA019ACA -- C:\WINDOWS\system32\ReinstallBackups\0003\DriverFiles\i386\atapi.sys
[2002.08.29 02:27:50 | 000,086,912 | ---- | M] (Microsoft Corporation) MD5=95B858761A00E1D4F81F79A0DA019ACA -- C:\WINDOWS\system32\ReinstallBackups\0004\DriverFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.04 07:59:42 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys

< MD5 for: CRYPTSVC.DLL >
[2004.08.18 00:49:03 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll

< MD5 for: EVENTLOG.DLL >
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2004.08.18 00:49:06 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004.08.18 00:49:22 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
[2007.06.13 15:11:59 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=9B32416BD5988C97B6397CE0B02CAF97 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007.06.13 15:23:39 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=ED7B460B142A32097B8A8F6ECC941815 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: HAL.DLL >
[2002.09.20 19:17:54 | 010,174,968 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp1.cab:hal.dll
[2006.08.20 09:54:10 | 022,286,602 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.10.22 09:54:36 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2006.08.20 09:54:10 | 022,286,602 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:hal.dll
[2008.10.22 09:54:36 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008.04.13 20:31:28 | 000,131,840 | ---- | M] (Microsoft Corporation) MD5=6F61D3287A6A15A08A9433222C09D17F -- C:\WINDOWS\system32\HAL.DLL
[2004.08.04 07:59:09 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: CHANGER.SYS >
[2006.08.20 09:54:10 | 022,286,602 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.10.22 09:54:36 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2006.08.20 09:54:10 | 022,286,602 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:Changer.sys
[2008.10.22 09:54:36 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\system32\dllcache\changer.sys
[2004.08.04 08:00:12 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=DAF1A8193B6CAF0FB858CADCC5C4AF4A -- C:\WINDOWS\$NtServicePackUninstall$\changer.sys

< MD5 for: LSASS.EXE >
[2004.08.18 00:49:23 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004.08.04 08:14:28 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

< MD5 for: NETLOGON.DLL >
[2004.08.18 00:49:13 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: NVATABUS.SYS >
[2004.12.07 10:15:54 | 000,087,936 | R--- | M] (NVIDIA Corporation) MD5=E4F1F95A6BBBFBBFF9A713C6063AA2CB -- C:\WINDOWS\system32\drivers\nvatabus.sys

< MD5 for: SCECLI.DLL >
[2004.08.18 00:49:16 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SMSS.EXE >
[2004.08.18 00:49:27 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe

< MD5 for: SVCHOST.EXE >
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.18 00:49:27 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2006.04.20 13:51:50 | 000,359,808 | ---- | M] (Microsoft Corporation) MD5=1DBF125862891817F374F407626967F4 -- C:\WINDOWS\$hf_mig$\KB917953\SP2GDR\tcpip.sys
[2006.04.20 13:51:50 | 000,359,808 | ---- | M] (Microsoft Corporation) MD5=1DBF125862891817F374F407626967F4 -- C:\WINDOWS\$NtUninstallKB941644$\tcpip.sys
[2002.08.29 02:58:12 | 000,332,928 | ---- | M] (Microsoft Corporation) MD5=244A2F9816BC9B593957281EF577D976 -- C:\WINDOWS\$NtUninstallKB917953_0$\tcpip.sys
[2008.06.20 12:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2007.10.30 18:53:32 | 000,360,832 | ---- | M] (Microsoft Corporation) MD5=64798ECFA43D78C7178375FCDD16D8C8 -- C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys
[2008.06.20 12:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2007.10.30 19:20:55 | 000,360,064 | ---- | M] (Microsoft Corporation) MD5=90CAFF4B094573449A0872A0F919B178 -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2004.08.04 08:14:40 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB917953$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[2006.04.20 14:18:35 | 000,360,576 | ---- | M] (Microsoft Corporation) MD5=B2220C618B42A2212A59D91EBD6FC4B4 -- C:\WINDOWS\$hf_mig$\KB917953\SP2QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.18 00:49:27 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004.08.18 00:49:27 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< MD5 for: WS2_32.DLL >
[2004.08.18 00:49:20 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2001.10.25 14:00:00 | 000,075,264 | ---- | M] (Microsoft Corporation) MD5=748494B94A871A828C64D1D5C738D2B7 -- C:\WINDOWS\$NtUninstallKB914388_0$\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[7 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010.04.21 15:00:39 | 000,802,304 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\faybowoj.sys
[2010.04.21 15:00:43 | 000,586,240 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\katnq.sys
[2009.01.01 20:37:52 | 000,717,296 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys

< %systemroot%\System32\config\*.sav >
[2005.12.15 23:32:38 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2005.12.15 23:32:38 | 000,630,784 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2005.12.15 23:32:38 | 000,413,696 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >
[7 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< End of report >

[Unisono]

A tady je Extras:

OTL Extras logfile created on: 21.4.2010 14:54:32 - Run 1
OTL by OldTimer - Version 3.2.1.3 Folder = K:\Antivir\AAA
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1 023,00 Mb Total Physical Memory | 645,00 Mb Available Physical Memory | 63,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 93,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 17,37 Gb Total Space | 0,79 Gb Free Space | 4,53% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 168,94 Gb Total Space | 14,97 Gb Free Space | 8,86% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive K: | 962,10 Mb Total Space | 589,25 Mb Free Space | 61,25% Space Free | Partition Type: FAT32

Computer Name: PC3
Current User Name: Šeda
Logged in as Administrator.

Current Boot Mode: SafeMode
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.scr [@ = Reg Error: Key error.] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Browse with &IrfanView] -- "C:\Program Files\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- File not found
"E:\Program Files\ICQ\ICQLite\ICQLite.exe" = E:\Program Files\ICQ\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite -- File not found
"E:\Hry\Infogrames\Grand Prix 4\GP4.exe" = E:\Hry\Infogrames\Grand Prix 4\GP4.exe:*:Enabled:GP4 -- File not found
"C:\Program Files\totalcmd\TOTALCMD.EXE" = C:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows -- (C. Ghisler & Co.)
"E:\Hry\TrackMania Nations ESWC\TmNationsESWC.exe" = E:\Hry\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC -- ()
"E:\Hry\HL2\hl2.exe" = E:\Hry\HL2\hl2.exe:*:Disabled:hl2 -- ()
"E:\Program Files\FlatOut\flatout.exe" = E:\Program Files\FlatOut\flatout.exe:*:Enabled:flatout -- File not found
"E:\Hry\NHL07\nhl2007.exe" = E:\Hry\NHL07\nhl2007.exe:*:Enabled:nhl2007 -- ()
"E:\Hry\Wiggles\Wiggles.exe" = E:\Hry\Wiggles\Wiggles.exe:*:Enabled:Wiggles -- (SEK-Ost)
"E:\Program Files\ICQ6\ICQ.exe" = E:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6 -- File not found
"E:\Program Files\Project Snowblind\Snowblind.MP" = E:\Program Files\Project Snowblind\Snowblind.MP:*:Disabled:Project: Snowblind (PC) -- File not found
"C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe" = C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC -- File not found
"E:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe" = E:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC -- ()
"E:\Program Files\TrackMania Original Demo\TmOriginalDemo.exe" = E:\Program Files\TrackMania Original Demo\TmOriginalDemo.exe:*:Enabled:TmOriginalDemo -- ()
"E:\Program Files\TrackMania Sunrise Extreme Demo\TmSunriseExtremeDemo.exe" = E:\Program Files\TrackMania Sunrise Extreme Demo\TmSunriseExtremeDemo.exe:*:Enabled:TmSunriseExtremeDemo -- ()
"C:\Documents and Settings\Šeda\Plocha\TrackMania Nations ESWC\TmNationsESWC.exe" = C:\Documents and Settings\Šeda\Plocha\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC -- File not found
"E:\Program Files\FlightGear\bin\Win32\fgfs.exe" = E:\Program Files\FlightGear\bin\Win32\fgfs.exe:*:Enabled:fgfs -- File not found
"C:\WINDOWS\system32\~.exe" = C:\WINDOWS\system32\~.exe:*:Enabled:Control -- File not found
"E:\Program Files\TmNationsForever\TmForever.exe" = E:\Program Files\TmNationsForever\TmForever.exe:*:Enabled:TmForever -- ()
"E:\Program Files\EA SPORTS\NHL08\nhl2008.exe" = E:\Program Files\EA SPORTS\NHL08\nhl2008.exe:*:Enabled:nhl2008 -- ()
"E:\Program Files\TrackMania Sunrise\TmSunrise.exe" = E:\Program Files\TrackMania Sunrise\TmSunrise.exe:*:Enabled:TmSunrise -- ()
"E:\Program Files\FlatOut2\FlatOut2.exe" = E:\Program Files\FlatOut2\FlatOut2.exe:*:Enabled:FlatOut2 -- ()
"E:\Program Files\Pinnacle\Studio 12\Programs\RM.exe" = E:\Program Files\Pinnacle\Studio 12\Programs\RM.exe:*:Enabled:Render Manager -- (Pinnacle Systems)
"E:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe" = E:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe:*:Enabled:Studio -- (Pinnacle Systems)
"E:\Program Files\Pinnacle\Studio 12\Programs\umi.exe" = E:\Program Files\Pinnacle\Studio 12\Programs\umi.exe:*:Enabled:umi -- (Pinnacle Systems)
"C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe" = C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe:*:Enabled:Nero ProductSetup -- File not found
"C:\Documents and Settings\Šeda\Local Settings\Temp\Nero Web\SetupXu.exe" = C:\Documents and Settings\Šeda\Local Settings\Temp\Nero Web\SetupXu.exe:*:Enabled:Nero ProductSetup -- File not found
"C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe" = C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe:*:Enabled:Nero ShowTime Essentials -- File not found
"E:\Program Files\ICQ6.5\ICQ.exe" = E:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6 -- (ICQ, LLC.)
"E:\Program Files\FlashGet\flashget.exe" = E:\Program Files\FlashGet\flashget.exe:*:Enabled:Flashget -- (FlashGet.com)
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"E:\Program Files\iTunes\iTunes.exe" = E:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"E:\Program Files\CyberLink\PowerDVD\PowerDVD.exe" = E:\Program Files\CyberLink\PowerDVD\PowerDVD.exe:*:Enabled:PowerDVD -- (CyberLink Corp.)
"C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe" = C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process -- (Nokia Corporation)
"C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe" = C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater -- (Nokia Corporation)
"H:\qip\QIP\qip.exe" = H:\qip\QIP\qip.exe:*:Enabled:Quiet Internet Pager -- File not found
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- File not found
"E:\Program Files\uTorrent\utorrent.exe" = E:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent -- File not found
"C:\Documents and Settings\Šeda\Local Settings\Temp\bulanci.tmp" = C:\Documents and Settings\Šeda\Local Settings\Temp\bulanci.tmp:*:Disabled:bulanci -- File not found
"C:\WINDOWS\system32\dplaysvr.exe" = C:\WINDOWS\system32\dplaysvr.exe:*:Disabled:Microsoft DirectPlay Helper -- (Microsoft Corporation)
"E:\Program Files\racer\racer\racer.exe" = E:\Program Files\racer\racer\racer.exe:*:Enabled:racer -- ()


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{052831b4-db6b-45e6-9c08-eca0e9b95c11}" = Nero 9 HD
"{066D65EA-ED53-44E4-A96A-F81B6E409D2E}" = PC Connectivity Solution
"{0711500B-9912-4D60-9A49-C577B4503D42}" = Nero Recode Help
"{07FF7593-9DEA-40B5-9F87-F557E65BBF60}" = Nero Recode
"{098F0462-A6D9-4FB4-87B0-0F46BF0E7EFB}" = Úžasňákovi
"{0A2A5039-B37F-489D-B1DC-A5258DF9E697}" = FIFA 08
"{0E19A83E-F53B-40CF-8C91-96F32D955E6A}" = LightScribe System Software 1.10.23.1
"{11202615-E557-4ECF-9B86-F59C81E52909}" = FIFA 10
"{1122AAC4-AAAA-43BF-B2D4-3C8C12378952}" = Nero InfoTool
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4500_series" = Canon iP4500 series
"{11A84FCA-C3C7-4AFD-A797-111DB8569DBC}" = Nero BurningROM
"{12345674-DE9A-677A-CCEE-666356D89777}" = Nero BurnRights
"{15AC0C5D-A6FB-4CE2-8CD0-28179EEB5625}" = Nokia Connectivity Cable Driver
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{19C64880-BBCA-11D4-9EEE-0004ACDDDB3B}" = CyberLink InstantBurn
"{1B040683-C390-4711-ABC7-DA8D85E470E7}" = NeroBurningROM
"{1C0D204E-B14D-49B2-9832-8B2FF8B47B7C}" = AEC-creative DXFViewer
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = Hi-Def Suite
"{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}" = QuickTime
"{2562fb27-6fb6-4a51-b480-d452c3a638cb}" = Nero BackItUp 4 Essentials
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 19
"{26E20136-E332-4BC6-903F-ADDCAEE53263}" = ArCon 9 Profesionál
"{2987EE84-C4EE-4FF5-8160-32DE00D6ABC6}" = GTA2
"{2D2D8FE2-605C-4D3C-B706-36E981E7EEF0}" = BD/HD Advisor 1.0
"{2D3455A8-3B15-41A8-99F8-0D4215746463}" = Nero StartSmart
"{3097B151-1F61-4211-A4CC-D70127B226AE}" = SoundTrax
"{3248F0A8-6813-11D6-A77B-00B0D0150100}" = J2SE Runtime Environment 5.0 Update 10
"{338F08AB-C262-42C7-B000-34DE1A475273}" = Ad-Aware Email Scanner for Outlook
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{37202D60-B24A-44A2-8433-74855F2655E6}" = Print2PDF
"{38857712-DC91-448B-BED5-A16E082E9885}" = MicroMachines V4 Demo
"{3D5E5C0A-5B36-4F98-99A7-287F7DBDCE03}" = Skype Plugin Manager
"{3F30CC51-0788-487B-AA83-7214A239C0C0}" = Nero Disc Copy Gadget Help
"{3F50AF3B-8997-4916-0095-99D63DDB785A}" = Harry Potter TM
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go 5.0
"{41F5ED14-FA4D-4090-A05B-6C6C5A90F8D5}" = Cobra 11 - Nitro Demo
"{4442AB48-DEC4-4B39-B067-1F75BF8017E7}" = Creative Centrale
"{4817189D-1785-4627-A33C-39FD90919300}" = The Sims™ 2 Mazlíčci
"{491DD792-AD81-429C-9EB4-86DD3D22E333}" = Windows Communication Foundation
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AB7968D-0F0D-4800-B27C-BABC99EB2860}_is1" = Medicopter 4
"{4D42353B-533F-4306-AD0B-7FEF292ADE04}" = Nero CoverDesigner Help
"{4D8844AB-21A5-43EC-B2F4-7CD8BBC7432E}" = SnakeWorld Game
"{4E8C27C2-D727-4C00-A90E-C3F6376EEE70}" = Nero ControlCenter
"{548F99E0-14CC-4D53-A7D6-4A62A5F2C748}" = Nero PhotoSnap
"{56BE5CC9-95E6-4128-ABEA-968414CA9C80}" = DolbyFiles
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}" = Nokia PC Suite
"{5A62A775-A29A-4CE1-BBC2-4A9CD0B211EF}" = Nero Live Help
"{5AE12194-3EAA-40DF-B2BF-FE1D6B78BBF4}" = Nero Vision
"{5C2E8A0F-80E2-4C68-8CC0-D8D16E7196BF}" = Nero RescueAgent Help
"{5C42EAB8-54F9-423A-948C-1CBEF25F8DB4}" = Nero PhotoSnap Help
"{5C9BB0B3-E830-4814-BBA4-D93535E1C7B9}" = Nero Live
"{60451544-C17E-4057-9273-5F10176472BD}" = Creative ZEN X-Fi Video Converter
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{6179550A-3E7C-499E-BCC9-9E8113E0A285}" = LG ODD Auto Firmware Update
"{654A4E00-D4E7-11D5-BA56-00C0CA129740}" = Wiggles
"{65883ddf-2152-4cb7-8e13-b99194b13498}" = Nero BackItUp
"{668B2B3A-4241-409F-A4AE-79B5016A487E}" = Sony Ericsson PC Suite
"{6755A780-599A-11D5-A8D4-00010287680B}" = Panasonic USB R/W Driver for SD Memory Card
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = CyberLink PowerDVD
"{6842DCCB-2840-4E46-8AF3-BEA9CFF3455B}" = Sony Sound Forge 9.0
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PartitionMagic
"{6E7DD182-9FC6-4651-0095-2E666CC6AF35}" = The Sims 2
"{6EF72FC6-842E-4FE6-BF88-BFBF03C9DA74}" = Windows Workflow Foundation CS Language Pack
"{7104189A-C592-4A56-AC9E-7C0CA135DA3C}" = AGEIA PhysX v6.10.25
"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{75321954-2589-11DC-DDCC-E98356D81493}" = Nero DriveSpeed
"{753973C4-B961-43BF-B2D4-3C8C92F7216E}" = Nero DriveSpeed
"{75c53f52-398b-4d66-b28a-f9ef170b3b34}" = Nero BackItUp
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
"{76C24F39-B161-498F-BD8B-C64789812D13}_is1" = ConvertXtoDVD 3.4.7.121
"{76F4DD9B-C246-4BE0-00B6-3DE9ABF72299}" = Need For Speed Hot Pursuit 2
"{78523651-D8B1-11DC-CCEE-741589645873}" = Nero DiscSpeed
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7BF68B83-5057-4D4B-0093-28285EEB9EE3}" = Harry Potter II
"{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}" = Windows Workflow Foundation
"{7F947BFE-C2DF-4779-9909-5BEE746BD0C4}" = Microsoft .NET Framework 2.0 Language Pack - CSY
"{827B97A9-B347-4110-9F89-37AF2B758F94}" = NHL™ 09
"{84DDE556-43EF-43ed-B2DF-37AF9E5DDD75}" = The Sims™ 2 H&M® Móda Kolekce
"{86604C06-DA30-425E-AECE-47304FE81C45}" = Creative Software Update
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}" = Bonjour
"{8C654BD0-1949-43DE-84F2-EC2A1ABB0CB4}" = Nero ShowTime
"{8E240C1C-25D0-4248-BC6C-ACC3472E35CE}" = SigmaTel MSCN Audio Player
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90280405-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional s aplikací FrontPage
"{909F8EBC-EC7F-48FF-0085-475D818F0F31}" = Need for Speed Underground 2
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91D77E9E-A69B-4B7A-9E8B-22861AAEBF5C}" = OpenOffice.org 2.1
"{92C7D009-A464-4948-A980-7A3E28CB2F49}_is1" = Richard Burns Rally
"{943CC0C0-2253-4FE0-9493-DD386F7857FD}" = Nero Express
"{948FFAAE-C57F-447B-9B07-3721E950BFDC}" = Nero ShowTime
"{97C0EA4A-1A0B-4C53-ACEB-49984DA79C90}" = Google Earth
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9DE9E293-5D7B-4312-88C2-BDFAEC5310AE}" = Microsoft .NET Framework 3.0
"{9F3523F8-DAD7-AE52-6DA7-45CDDDF33726}" = Advertising Center
"{A483F88A-41E9-45B2-AAC9-A823DD9B4873}" = PC TWIN SHOCK
"{A73BEC3C-40A0-480E-87EF-EFCD33629088}" = NeroExpress
"{A7AA93B6-6909-4073-B4EC-45CCDEFD4665}" = NHL® 08
"{A8399F58-234A-48C6-BA55-30C15738BF3C}" = Nero CoverDesigner
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{AAA12554-2589-11DC-92EF-E98356D81493}" = Nero InfoTool
"{AAB6D0F8-02B3-4E89-B24C-0BB153C21445}" = Windows Presentation Foundation Language Pack (CSY)
"{AABBCC54-D8B1-11DC-92EF-E98356D81493}" = Nero DiscSpeed
"{AC76BA86-7AD7-1029-7B44-A93000000001}" = Adobe Reader 9.3.2 - Czech
"{AC76BA86-7AD7-5464-3428-800000000003}" = Spelling Dictionaries Support For Adobe Reader 8
"{ADD5DB49-72CF-11D8-9D75-000129760D75}" = PowerBackup
"{ADE91A13-434D-4229-00BC-182BAD607303}" = Need for Speed™ Most Wanted
"{B2C12C8D-65DC-40BD-B309-5ADB0C6C8D8F}" = Nero WaveEditor
"{B3940EA5-7872-487E-AF15-CF20DBD65F1B}" = RapidLeecher
"{B5FDA445-CAC4-4BA6-A8FB-A7212BD439DE}" = Microsoft XML Parser
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = PowerProducer
"{B96C2601-52F5-4D5D-816A-63469EA311EF}" = "Nero SoundTrax Help
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BCD82AB5-670D-4242-90FA-1F97103C16CD}" = Movie Templates - Starter Kit
"{BDE1289F-4025-41A5-AD17-101DB4D82CA7}" = TRS2004
"{C06CE867-0019-4BDD-88C3-CD96F79FCDC7}" = Cortona3D Viewer
"{C309F5A9-C9F4-40A9-9839-44046E5DD267}_is1" = Prehistoric v1.0
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"{C99C89A3-119A-45E6-B26E-DD5643CAA0C5}" = Menu Templates - Starter Kit
"{CCAB8729-19FA-4CF2-A882-AED4F0255795}" = Úžasňákovi - Vzpoura Podkopávače
"{CD1826A5-CFCC-4C6E-9F9D-E181876162EA}" = Nero Rescue Agent
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240B5}" = WinZip 11.1
"{D04113AE-140C-496C-B48D-38FF07291C2F}" = Putt Mania
"{D041EB9E-890A-4098-8F94-51DA194AC72A}" = Pinnacle Studio 12
"{D1860E6E-520E-4380-8433-E58E8F88B473}" = Pinnacle Studio 12 Ultimate Plugins
"{D4006E71-FF32-44FF-AD5A-B5EE4389B825}_is1" = FlatOut2
"{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
"{D533C9D4-ED96-4191-B9C3-279C0DD6BABA}" = Sony Noise Reduction Plug-In 2.0e
"{D7C206B6-1A63-4389-A8B1-8F607D0BFF1F}" = Nero StartSmart Help
"{D8979435-753B-40AE-9318-5E712C160A71}" = Windows Communication Foundation Language Pack - CSY
"{D99C322D-C21B-40C7-AE71-EE51AA096B6E}" = Nokia Flashing Cable Driver
"{DA932D71-E52A-43D5-009E-395A1AEC1474}" = The Sims™ Životní Příběhy
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{E26DEDC7-1A99-4F8C-9615-6DB112E6495B}_is1" = Texas Hold'em Poker 3D - Deluxe Edition 1.0
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
"{E4A8DD87-A746-4443-BF25-CAF99CED6767}" = Nero Disc Copy Gadget
"{E5C8C4ED-A76A-49F3-BDB8-56DEEE92F19B}" = 602XML Filler
"{E6FC9938-1B6E-41F6-98BD-ECD70C371DBE}" = VibrateGameDeviceDriver
"{E86156E5-9859-440D-8876-26CED1349802}" = Nero WaveEditor Help
"{e8a80433-302b-4ff1-815d-fcc8eac482ff}" = Nero Installer
"{EA9FFE54-D8B1-11DC-92EF-E98356D81493}" = Nero BurnRights
"{EC4455AB-F155-4CC1-A4C5-88F3777F9886}" = Apple Mobile Device Support
"{EF4F620F-F295-41D7-92C0-6B635709C850}" = Nokia Software Updater
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F3B76517-C1BC-40A7-814C-4C0A87E7D9DF}" = Garmin MapSource
"{f4041dce-3fe1-4e18-8a9e-9de65231ee36}" = Nero ControlCenter
"{F4851D03-553C-4ACE-ADBD-CA6BE8451072}" = Singles 2
"{F53F6769-AC46-49E3-ABE3-2C8AFD39D0DD}" = Nero Vision
"{F5C63795-2708-4D15-BF18-5ABBFF7DFFC8}" = iTunes
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FB09515C-8E3E-4E0F-A1F2-032F38DEC185}" = Microsoft .NET Framework 3.0 Czech Language Pack
"{FE84CCD3-0933-41EB-BE60-7336C75A7F17}" = Genius Wireless TwinTouch+ Optical
"{FF164702-AF8B-4F2F-8038-74A4C536866B}" = DVD MovieFactory 5 for Sanyo
"{FF895069-BD9A-11D5-986D-00500443CF9F}" = Moorhuhn 3 DL
"0852D05415AB9A4F1EF451E342267F76C776ED2F" = Balíček ovladače systému Windows - Nokia Modem (11/03/2006 6.82.0.1)
"0C5EDC3653FED5B121F464339EAC12534D253B25" = Windows Driver Package - Nokia Modem (02/15/2007 3.1)
"3D Petanque Unlimited Shareware" = 3D Petanque Unlimited Shareware (Uninstall)
"6230 USB-Handset Manager" = 6230 USB-Handset Manager
"82A44D22-9452-49FB-00FB-CEC7DCAF7E23" = EA SPORTS online 2007
"Ad-Aware" = Ad-Aware
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player
"AudibleManager" = AudibleManager
"AXIS Media Control Embedded" = AXIS Media Control Embedded
"Bus Driver" = Bus Driver 1.0
"Cactus" = Cactus
"CanonMyPrinter" = Canon My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"CCleaner" = CCleaner
"CDex" = CDex extraction audio
"Clean Disk Security" = Clean Disk Security 7.75
"CleanUp!" = CleanUp!
"CloneCD" = CloneCD
"CptWesco" = CptWesco
"Crazy Racing Cars_is1" = Crazy Racing Cars Powered by AdVantage
"Creative Centrale" = Creative Centrale
"Creative ZEN X-Fi Video Converter" = Creative ZEN X-Fi Video Converter
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"Desktop Graffitist" = Desktop Graffitist
"DiskCheckerXP" = DiskCheckerXP 6.1
"Dispecer" = Dispecer
"DVD Decrypter" = DVD Decrypter (Remove Only)
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"Easy-WebPrint" = Easy-WebPrint
"EAX Unified" = EAX Unified
"Empire XP" = Empire XP 2.0
"ESET Online Scanner" = ESET Online Scanner v3
"Euro Truck Simulator" = Euro Truck Simulator
"Exact Audio Copy" = Exact Audio Copy 0.95b4
"F064B256B4A20996EA9E333B5E0F14B61AB3333D" = Windows Driver Package - Nokia (WUDFRd) WPD (03/19/2007 6.83.31.1)
"FifaBotby Lupus" = FifaBotby Lupus
"FlashGet" = FlashGet 1.9.6.1073
"HiGames Toolbar" = HiGames Toolbar
"HijackThis" = HijackThis 1.99.1
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"ChordWizard Gold 2.0" = ChordWizard Gold 2.0
"ICQToolbar" = ICQ Toolbar
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"Image Composer" = Microsoft Image Composer 1.5
"Inkscape" = Inkscape 0.45
"InstallShield_{098F0462-A6D9-4FB4-87B0-0F46BF0E7EFB}" = Úžasňákovi
"InstallShield_{1C0D204E-B14D-49B2-9832-8B2FF8B47B7C}" = AEC-creative DXFViewer
"InstallShield_{26E20136-E332-4BC6-903F-ADDCAEE53263}" = ArCon 9 Profesionál
"InstallShield_{41F5ED14-FA4D-4090-A05B-6C6C5A90F8D5}" = Cobra 11 - Nitro Demo
"InstallShield_{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PowerQuest PartitionMagic 8.0
"InstallShield_{CCAB8729-19FA-4CF2-A882-AED4F0255795}" = Úžasňákovi - Vzpoura Podkopávače
"IrfanView" = IrfanView (remove only)
"jwDuplFiles_is1" = jwDuplFiles 2.0
"Lexmark Printer Software Uninstall" = Lexmark Printer Software Uninstall
"Magic Bullet Looks Studio" = Magic Bullet Looks Studio
"MainApp.exe_is1" = CloneDVD 4.1.0.23
"MavenAppMgr" = Maven Application Manager
"MediaNavigation.CDLabelPrint" = CD-LabelPrint
"MHD Simulator 2009 BETA VERSION 0.92" = MHD Simulator 2009 BETA VERSION 0.92
"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0
"Microsoft .NET Framework 2.0 Language Pack - CSY" = Microsoft .NET Framework 2.0 Language Pack - CSY
"Microsoft .NET Framework 3.0" = Microsoft .NET Framework 3.0
"Microsoft .NET Framework 3.0 Czech Language Pack" = Microsoft .NET Framework 3.0 Czech Language Pack
"Moorhuhn 2 V1.1" = Moorhuhn 2 V1.1
"Moorhuhn Winter-Edition" = Moorhuhn Winter-Edition
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Need For Speed III" = Need For Speed III
"NIS" = Norton Internet Security
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Nokia PC Suite" = Nokia PC Suite
"NVIDIA Drivers" = NVIDIA Drivers
"Pinball Arcade Trial Version 1.0" = Microsoft Pinball Arcade Trial
"Pizzadude" = Pizzadude 1.0
"Plane Arcade" = Plane Arcade
"Porrasturvat - Stair Dismount" = Porrasturvat - Stair Dismount (remove only)
"proDAD-Vitascene-1.0" = proDAD Vitascene 1.0
"rajče průvodce_is1" = rajče beta32
"Registrace uživatele zařízení Canon iP4500 series" = Registrace uživatele zařízení Canon iP4500 series
"Room Arranger" = Room Arranger
"Shockwave" = Shockwave
"Skype_is1" = Skype 3.1
"SnadBoy's Revelation v2" = SnadBoy's Revelation v2
"Sparticles" = Sparticles
"ST6UNST #1" = Proteus2_51
"ST6UNST #3" = ProtEd2_2
"Syncrosoft's License Control" = Syncrosoft's License Control
"Table Tennis Pro V2 Lite_is1" = Table Tennis Pro V2 Lite (V2.32)
"The KMPlayer" = The KMPlayer 2.9.3.1429
"TmNations_is1" = TrackMania Nations ESWC 0.1.7.5
"TmNationsForever_is1" = TmNationsForever
"TmOriginalDemo_is1" = TrackMania Original Demo 1.5.0
"TmSunrise_is1" = TrackMania Sunrise Extreme 1.5.1
"TmSunriseExtremeDemo_is1" = TrackMania Sunrise Extreme Demo 1.5.0
"Tony Hawk's Pro Skater 3®" = Tony Hawk's Pro Skater 3®
"Totalcmd" = Total Commander (Remove or Repair)
"Trabi II_is1" = Trabi II
"TS Přírodověda 2 (minimální instalace)" = TS Přírodověda 2 (minimální instalace)
"TS Přírodověda 3 (minimální instalace)" = TS Přírodověda 3 (minimální instalace)
"TS Přírodověda 4 (minimální instalace)" = TS Přírodověda 4 (minimální instalace)
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows Media Encoder 9" = Windows Media Encoder 9 Series
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"WinVNC_is1" = VNC 3.3.6
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01005" = Microsoft User-Mode Driver Framework Feature Pack 1.5
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
"Xvid_is1" = Xvid 1.2.1 final uninstall
"ZENX-FI" = Creative ZEN X-Fi User's Guide

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-73586283-1275210071-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"5f48e2ab41c5d005" = RapidShare Manager
"ETS CZ" = ETS CZ
"Google Chrome" = Google Chrome
"Motorické testy pro žáky" = Motorické testy pro žáky
"PC vs VIRUS v2.0 - Mach37" = PC vs VIRUS v2.0 - Mach37
"sc09-ORF_MAIN" = ORF-Ski Challenge 2009

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 19.4.2010 23:24:06 | Computer Name = PC3 | Source = Google Update | ID = 20
Description =

Error - 20.4.2010 0:24:05 | Computer Name = PC3 | Source = Google Update | ID = 20
Description =

Error - 20.4.2010 1:24:05 | Computer Name = PC3 | Source = Google Update | ID = 20
Description =

Error - 20.4.2010 2:24:05 | Computer Name = PC3 | Source = Google Update | ID = 20
Description =

Error - 20.4.2010 3:24:06 | Computer Name = PC3 | Source = Google Update | ID = 20
Description =

Error - 20.4.2010 4:24:15 | Computer Name = PC3 | Source = Google Update | ID = 20
Description =

Error - 20.4.2010 5:24:19 | Computer Name = PC3 | Source = Google Update | ID = 20
Description =

Error - 20.4.2010 6:28:39 | Computer Name = PC3 | Source = Google Update | ID = 20
Description =

Error - 20.4.2010 23:50:37 | Computer Name = PC3 | Source = ESENT | ID = 485
Description = wuauclt (2832) Pokus o odstranění složky C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb
se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru,
neboť jej právě využívá jiný proces. . Operace odstranění složky se nezdaří a dojde
k chybě -1032 (0xfffffbf8).

Error - 21.4.2010 0:24:15 | Computer Name = PC3 | Source = Google Update | ID = 20
Description =

[ System Events ]
Error - 21.4.2010 6:47:11 | Computer Name = PC3 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 21.4.2010 6:55:35 | Computer Name = PC3 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 21.4.2010 6:57:49 | Computer Name = PC3 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 21.4.2010 6:58:52 | Computer Name = PC3 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 21.4.2010 6:59:01 | Computer Name = PC3 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby netman
s argumenty za účelem spuštění serveru: {BA126AE5-2166-11D1-B1D0-00805FC1270E}

Error - 21.4.2010 6:59:01 | Computer Name = PC3 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 21.4.2010 7:03:26 | Computer Name = PC3 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 21.4.2010 8:32:27 | Computer Name = PC3 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 21.4.2010 8:32:38 | Computer Name = PC3 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 21.4.2010 8:52:53 | Computer Name = PC3 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}


< End of report >