Agremove.exe

[xaver100]

Můžete mi prosím někdo vysvětlit k čemu slouží tento program?
Od včera mi vyskauje hláška celkem pravidelně, zhruba po 12 minutách, že nastala chyba v tomto souboru.
Soubor leží v adresáři system32

Děkuji za informaci

[motji]

Hezké odpoledne
Dotyčný soubor otestujte na www.virustotal.com

Poprosím o log ze Rsitu, viz můj podpis .

[xaver100]

1.část

Logfile náhodných systém informační nástroj 1,07 (napsaný náhodně / random)

Systém Microsoft Windows XP Professional Service Pack 3
Systém disku C: se 3 GB (3%) bez 88 GB
Celkem RAM: 2047 MB (9% zdarma)

Logfile Trend Micro HijackThis v2.0.4
Skenování uložen v 14:55:51, dne 8.6.2010
Platforma: Windows XP SP3 (WinNT 1.05.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Zaváděcí mód: Normální

Běžících procesů:
C: \ WINDOWS \ System32 \ Smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ Ati2evxx.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ Program Files \ Microsoft Security Essentials \ MsMpEng.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ IFXTCS.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ WLTRYSVC.EXE
C: \ WINDOWS \ System32 \ bcmwltry.exe
C: \ Program Files \ Lavasoft \ Ad-Aware \ aawservice.exe
C: \ Program Files \ Fortinet \ FortiClient \ scheduler.exe
C: \ Program Files \ Fortinet \ FortiClient \ FCDBLog.exe
C: \ Program Files \ Fortinet \ FortiClient \ fcappdb.exe
C: \ Program Files \ Fortinet \ FortiClient \ FortiProxy.exe
C: \ Program Files \ Fortinet \ FortiClient \ rmon.exe
C: \ Program Files \ Fortinet \ FortiClient \ fortifw.exe
C: \ Program Files \ Fortinet \ FortiClient \ fortiwf.exe
C: \ Program Files \ Fortinet \ FortiClient \ FortiWad.exe
C: \ Program Files \ Fortinet \ FortiClient \ FortiWadbd.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ WINDOWS \ system32 \ netdde.exe
C: \ Program Files \ Common Files \ soft602 \ 602updsvc \ 602updsvc.exe
C: \ Program Files \ Aladdin \ Aladdin SQL Server \ AladdinSQL.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ Program Files \ Common Files \ AVerMedia \ Service \ AVerRemote.exe
C: \ Program Files \ Common Files \ AVerMedia \ Service \ AVerScheduleService.exe
C: \ Program Files \ Bonjour \ mDNSResponder.exe
C: \ Program Files \ WIDCOMM \ Bluetooth Software \ bin \ btwdins.exe
C: \ Program Files \ Prevx \ prevx.exe
C: \ Program Files \ Common Files \ AVerMedia \ AVerQuick \ AVerHIDReceiver.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ Program Files \ Firebird \ Firebird_1_5 \ bin \ fbguard.exe
C: \ Program Files \ Google \ Update \ GoogleUpdate.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ Program Files \ HW group \ HW VSP3s \ HW_VSP3s_srv.exe
C: \ WINDOWS \ system32 \ IFXSPMGT.exe
C: \ WINDOWS \ system32 \ inetsrv \ inetinfo.exe
C: \ Program Files \ Prevx \ prevx.exe
C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe
C: \ Program Files \ Common Files \ LightScribe \ LSSrvc.exe
C: \ Program Files \ Common Files \ Microsoft Shared \ VS7DEBUG \ MDM.EXE
c: \ Program Files \ Microsoft SQL Server \ MSSQL.1 \ MSSQL \ Binn \ sqlservr.exe
C: \ Program Files \ ProtectTools \ zabudovaný bezpečnostní Software \ PSDsrvc.EXE
C: \ WINDOWS \ system32 \ HPZipm12.exe
C: \ WINDOWS \ system32 \ PnkBstrA.exe
C: \ Novadigm \ ManagementAgent \ nvdkit.exe
C: \ WINDOWS \ system32 \ rpcnet.exe
C: \ WINDOWS \ Installer \ MSIDD4.tmp
C: \ Program Files \ Microsoft \ Vyhledávání Vylepšení Pack \ Seaport \ SeaPort.exe
c: \ Program Files \ Microsoft SQL Server \ 90 \ Shared \ sqlbrowser.exe
c: \ Program Files \ Microsoft SQL Server \ 90 \ Shared \ sqlwriter.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ TUProgSt.exe
C: \ Program Files \ Common Files \ Microsoft Shared \ Windows Live \ WLIDSVC.EXE
C: \ WINDOWS \ system32 \ SearchIndexer.exe
C: \ Program Files \ Fortinet \ FortiClient \ FortiTray.exe
C: \ Program Files \ Hewlett-Packard \ Shared \ hpqwmiex.exe
C: \ WINDOWS \ system32 \ mqsvc.exe
C: \ WINDOWS \ system32 \ mqtgsvc.exe
C: \ WINDOWS \ system32 \ wscntfy.exe
C: \ Program Files \ Common Files \ Microsoft Shared \ Windows Live \ WLIDSvcM.exe
C: \ Program Files \ Firebird \ Firebird_1_5 \ bin \ fbserver.exe
C: \ WINDOWS \ system32 \ Ati2evxx.exe
C: \ Program Files \ HPQ \ IAM \ bin \ asghost.exe
C: \ Program Files \ ProtectTools \ zabudovaný bezpečnostní Software \ PSDrt.exe
C: \ Program Files \ ProtectTools \ zabudovaný bezpečnostní Software \ SpTna.exe
C: \ WINDOWS \ explorer.exe
C: \ Program Files \ HPQ \ HP ProtectTools Security Manager \ PTServs.exe
C: \ WINDOWS \ system32 \ AccelerometerSt.exe
C: \ Program Files \ ATI Technologies \ ATI.ACE \ cli.exe
C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
C: \ Program Files \ Hewlett-Packard \ HP pro rychlé spuštění \ QlbCtrl.exe
C: \ Program Files \ QuickTime \ qttask.exe
C: \ Program Files \ HPQ \ HP ProtectTools Security Manager \ PTHOSTTR.EXE
C: \ WINDOWS \ System32 \ DLA \ DLACTRLW.EXE
C: \ Program Files \ HPQ \ HP WirelESS asistent \ HP Wireless Assistant.exe
C: \ WINDOWS \ system32 \ WLTRAY.exe
C: \ WINDOWS \ AGRSMMSG.exe
C: \ Program Files \ Nokia \ Nokia PC Suite 6 \ LaunchApplication.exe
C: \ Program Files \ Analog Devices \ Core \ smax4pnp.exe
C: \ Program Files \ OpenVPN \ bin \ OpenVPN-gui.exe
C: \ Program Files \ Hp \ HP Software Update \ HPWuSchd2.exe
C: \ Program Files \ PC řešení konektivity \ ServiceLayer.exe
C: \ Program Files \ Microsoft Security Essentials \ msseces.exe
C: \ Program Files \ Java \ jre6 \ bin \ jusched.exe
C: \ Program Files \ Common Files \ Adobe \ ARM \ 1,0 \ AdobeARM.exe
C: \ Program Files \ Google \ Google Desktop Search \ GoogleDesktop.exe
C: \ PROGRA ~ 1 \ HPQ \ Shared \ HPQTOA ~ 1.EXE
C: \ WINDOWS \ system32 \ Ctfmon.exe
C: \ Program Files \ Nokia \ Nokia PC Suite 6 \ PcSync2.exe
C: \ Program Files \ Spybot - Search & Destroy \ TeaTimer.exe
C: \ Program Files \ PC řešení konektivity \ NclBTHandler.exe
C: \ Program Files \ Common Files \ Nokia \ MPAPI \ MPAPI3s.exe
C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNotifier.exe
C: \ Program Files \ QIP Infium \ infium.exe
C: \ Program Files \ Skype \ Telefon \ Skype.exe
C: \ Program Files \ X1 \ X1FileMonitor.exe
C: \ Program Files \ Creative Shared \ Files \ CamTray.exe
C: \ Program Files \ DAEMON Tools Lite \ DTLite.exe
C: \ Program Files \ Windows Media Player \ WMPNSCFG.exe
C: \ PROGRA ~ 1 \ WIDCOMM \ BLUETO ~ 1 \ BTSTAC ~ 1.EXE
C: \ Program Files \ Common Files \ AVerMedia \ AVerQuick \ AVerQuick.exe
C: \ Program Files \ WIDCOMM \ Bluetooth Software \ BTTray.exe
C: \ Program Files \ chyb Střelba \ BugShooting.exe
C: \ Program Files \ Windows Desktop Search \ WindowsSearch.exe
C: \ Program Files \ OpenOffice.org 3 \ program \ soffice.exe
C: \ Program Files \ OpenOffice.org 3 \ program \ soffice.bin
C: \ Program Files \ ATI Technologies \ ATI.ACE \ cli.exe
C: \ Program Files \ Skype \ Plugin Manager \ skypePM.exe
C: \ Program Files \ Mozilla Firefox \ firefox.exe
C: \ Program Files \ Java \ jre6 \ bin \ java.exe
C: \ Program Files \ Java \ jre6 \ bin \ jucheck.exe
C: \ WINDOWS \ system32 \ mstsc.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ Windows Live \ Toolbar \ wltuser.exe
C: \ Program Files \ Skype \ Toolbars \ Shared \ SkypeNames2.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ wincmd \ Wincmd32.exe
C: \ WINDOWS \ system32 \ wuauclt.exe
C: \ Documents and Settings \ Petr Bláha \ Dokumenty \ Stažené soubory \ RSIT.exe
C: \ WINDOWS \ system32 \ SearchProtocolHost.exe
C: \ Program Files \ Trend Micro \ Petr Bláha.exe
C: \ WINDOWS \ system32 \ rundll32.exe

R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.seznam.cz/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, hledání Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, místní page =
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, místní page =
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - (18DF081C-E8AD-4283-A596-FA578C2EBDC3) - C: \ Program Files \ Common Files \ Adobe \ Acrobat \ ActiveX \ AcroIEHelperShim.dll
O2 - BHO: Spybot-S & D IE Protection - (53707962-6F74-2D53-2644-206D7942484F) - C: \ Program Files \ Spybot - Search & Destroy \ SDHelper.dll
O2 - BHO: DriveLetterAccess - (5CA3D70E-1895-11CF-8E15-001234567890) - C: \ WINDOWS \ System32 \ DLA \ DLASHX_W.DLL
O2 - BHO: SafeOnline BHO - (69D72956-317C-B369-44bd-8E44D4EF9801) - C: \ WINDOWS \ system32 \ PxSecure.dll
O2 - BHO: Hledání Helper - (6EBF7485-159F-4bff-A14F-B9E3AAC4465B) - C: \ Program Files \ Microsoft \ Vyhledávání Vylepšení Pack \ Vyhledávání Helper \ SEPsearchhelperie.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Common Files \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8333-CF10577473F7) - C: \ Program Files \ Google \ Google Toolbar \ GoogleToolbar.dll
O2 - BHO: SkypeIEPluginBHO - (AE805869-2E5C-4ED4-8F7B-F1F7851A4497) - C: \ Program Files \ Skype \ Toolbars \ Internet Explorer \ skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - (AF69DE43-7D58-4638-B6FA-CE66B5AD205D) - C: \ Program Files \ Google \ GoogleToolbarNotifier \ 5.4.4525.1752 \ swg.dll
O2 - BHO: PDFCreator Toolbar Helper - (C451C08A-EC37-45DF-VŠUP-18B51AB5E837) - C: \ Program Files \ PDFCreator Toolbar \ v3.3.0.1 \ PDFCreator_Toolbar.dll
O2 - BHO: PDF-XChange Viewer IE-Plugin - (C5D07EB6-BBCE-4DAE-ACBB-D13A8D28CB1F) - C: \ Program Files \ Tracker Software \ PDF-XChange Viewer \ PDF-Viewer \ PDFXCviewIEPlugin.dll
O2 - BHO: Java (TM) Plug-in 2 SSV Helper - (DBC80044-A445-435b-BC74-9C25C1C588A9) - C: \ Program Files \ Java \ jre6 \ bin \ jp2ssv.dll
O2 - BHO: HP Správce pověření pro ProtectTools - (DF21F1DB-80C6-11D3-9483-B03D0EC10000) - C: \ Program Files \ HPQ \ IAM \ Bin \ ItIeAddIN.dll
O2 - BHO: Windows Live Toolbar Helper - (E15A8DC0-8516-42A1-81EA-DC94EC1ACF10) - C: \ Program Files \ Windows Live \ Toolbar \ wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - (E7E6F031-17CE-4C07-BC86-EABFE594F69C) - C: \ Program Files \ Java \ jre6 \ lib \ nasadit \ jqs \ tedy \ jqs_plugin.dll
O3 - Toolbar: PDFCreator Toolbar - (31CF9EBE-5755-4A1D-AC25-2834D952D9B4) - C: \ Program Files \ PDFCreator Toolbar \ v3.3.0.1 \ PDFCreator_Toolbar.dll
O3 - Toolbar: Google Toolbar - (2318C2B1-4965-11D4-9B18-009027A5CD4F) - C: \ Program Files \ Google \ Google Toolbar \ GoogleToolbar.dll
O3 - Toolbar: DAEMON Tools Toolbar - (32099AAC-C132-4136-9E9A-4E364A424E17) - C: \ Program Files \ DAEMON Tools Toolbar \ DTToolbar.dll
O3 - Toolbar: & Windows Live Toolbar - (21FA44EF-376D-4D53-9B0F-8A89D3229068) - C: \ Program Files \ Windows Live \ Toolbar \ wltcore.dll
O4 - HKLM \ .. \ Run: [MsmqIntCert] regsvr32 / s mqrt.dll
O4 - HKLM \ .. \ Run: [AccelerometerSysTrayApplet] C: \ WINDOWS \ system32 \ AccelerometerSt.exe
O4 - HKLM \ .. \ Run: [ATICCC] "C: \ Program Files \ ATI Technologies \ ATI.ACE \ cli.exe" runtime-Delay
O4 - HKLM \ .. \ Run: [SynTPEnh] C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
O4 - HKLM \ .. \ Run: [QlbCtrl]% ProgramFiles% \ Hewlett-Packard \ HP tlačítka pro rychlé spuštění \ QlbCtrl.exe / Start
O4 - HKLM \ .. \ Run: [Cpqset] C: \ Program Files \ HPQ \ Default Settings \ cpqset.exe
O4 - HKLM \ .. \ Run: [Recguard] C: \ WINDOWS \ Sminst \ Recguard.exe
O4 - HKLM \ .. \ Run: [Připomenutí] C: \ WINDOWS \ Vytvořil \ Remind_XP.exe
O4 - HKLM \ .. \ Run: [Plánovač] C: \ WINDOWS \ SMINST \ Scheduler.exe
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [PTHOSTTR] C: \ Program Files \ HPQ \ HP ProtectTools Security Manager \ PTHOSTTR.EXE / Start
O4 - HKLM \ .. \ Run: [CognizanceTS] rundll32.exe C: \ PROGRA ~ 1 \ HPQ \ IAM \ Bin \ AsTsVcc.dll, RegisterModule
O4 - HKLM \ .. \ Run: [DLA] C: \ WINDOWS \ System32 \ DLA \ DLACTRLW.EXE
O4 - HKLM \ .. \ Run: [hpWirelessAssistant] C: \ Program Files \ HPQ \ HP Wireless Assistant \ HP Wireless Assistant.exe
O4 - HKLM \ .. \ Run: [Broadcom Wireless Manager UI] C: \ WINDOWS \ system32 \ WLTRAY.exe
O4 - HKLM \ .. \ Run: [WatchDog] C: \ Program Files \ InterVideo \ DVD Zkontrolujte \ DVDCheck.exe
O4 - HKLM \ .. \ Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM \ .. \ Run: [PCSuiteTrayApplication] C: \ Program Files \ Nokia \ Nokia PC Suite 6 \ LaunchApplication.exe-startup
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ Program Files \ Common Files \ Ahead \ Lib \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [SoundMAXPnP] C: \ Program Files \ Analog Devices \ Core \ smax4pnp.exe
O4 - HKLM \ .. \ Run: [openvpn-gui] C: \ Program Files \ OpenVPN \ bin \ OpenVPN-gui.exe
O4 - HKLM \ .. \ Run: [LogMeIn GUI] "C: \ Program Files \ LogMeIn \ x86 \ LogMeInSystray.exe"
O4 - HKLM \ .. \ Run: [HP Software Update] C: \ Program Files \ Hp \ HP Software Update \ HPWuSchd2.exe
O4 - HKLM \ .. \ Run: [MSSE] "C: \ Program Files \ Microsoft Security Essentials \ msseces.exe"-skrýt-runkey
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre6 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [Adobe Reader rychlost Launcher] "C: \ Program Files \ Adobe \ Reader 9.0 \ Reader \ Reader_sl.exe"
O4 - HKLM \ .. \ Run: [Adobe ARM] "C: \ Program Files \ Common Files \ Adobe \ ARM \ 1,0 \ AdobeARM.exe"
O4 - HKLM \ .. \ Run: [Google Desktop Search] "C: \ Program Files \ Google \ Google Desktop Search \ GoogleDesktop.exe" / startup
O4 - HKCU \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe
O4 - HKCU \ .. \ Run: [Nokia.PCSync] C: \ Program Files \ Nokia \ Nokia PC Suite 6 \ PcSync2.exe / NoDialog
O4 - HKCU \ .. \ Run: [SpybotSD TeaTimer] C: \ Program Files \ Spybot - Search & Destroy \ TeaTimer.exe
O4 - HKCU \ .. \ Run: [COT] C: \ Program Files \ CleverApp \ Offline Nebudu II \ cot.exe
O4 - HKCU \ .. \ Run: [SWG] "C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNotifier.exe"
O4 - HKCU \ .. \ Run: [Infium] "C: \ Program Files \ QIP Infium \ infium.exe" / autorun
O4 - HKCU \ .. \ Run: [Skype] "C: \ Program Files \ Skype \ Telefon \ Skype.exe" / nosplash / minimalizovány
O4 - HKCU \ .. \ Run: [X1FileMonitor.exe] C: \ Program Files \ X1 \ X1FileMonitor.exe
O4 - HKCU \ .. \ Run: [Creative WebCam zásobníku] "C: \ Program Files \ Creative Shared \ Files \ CamTray.exe"
O4 - HKCU \ .. \ Run: [DAEMON Tools Lite] "C: \ Program Files \ DAEMON Tools Lite \ DTLite.exe"-autorun
O4 - HKCU \ .. \ Run: [DWQueuedReporting] "C: \ PROGRA ~ 1 \ Common ~ 1 \ MICROS ~ 1 \ DW \ dwtrig20.exe"-t
O4 - HKCU \ .. \ Run: [WMPNSCFG] C: \ Program Files \ Windows Media Player \ WMPNSCFG.exe
O4 - HKCU \ .. \ RunOnce: [Shockwave Updater] C: \ WINDOWS \ system32 \ Adobe \ Shockwave 11 \ SwHelper_1150596.exe-Update -1150596 - "Mozilla/4.0 (compatible; MSIE 8.0, Windows NT 5.1; Trident/4.0 , GTB6;. NET CLR 1.1.4322;. NET CLR 2.0.50727;. NET CLR 3.0.04506.30;. NET CLR 3.0.04506.648;. NET CLR 3.5.21022;. NET CLR 3.0.4506.2152;. NET CLR 3.5. 30729, OfficeLiveConnector.1.3, OfficeLivePatch.0.0) "-" http://www.hry.cz/games/gameShockwave.aspx?url=http://www.miniclip.com/games/air-barons/en/air_barons . DCR "
O4 - HKUS \ S-1-5-18 \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'System')
O4 - HKUS \ S-1-5-18 \ .. \ Run: [Nokia.PCSync] C: \ Program Files \ Nokia \ Nokia PC Suite 6 \ PcSync2.exe / NoDialog (User 'System')
O4 - HKUS \ S-1-5-18 \ .. \ Run: [DWQueuedReporting] "C: \ PROGRA ~ 1 \ Common ~ 1 \ MICROS ~ 1 \ DW \ dwtrig20.exe"-t (User 'System')
O4 - HKUS \. DEFAULT \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'Default user')
O4 - Startup: OpenOffice.org 3.0.lnk = C: \ Program Files \ OpenOffice.org 3 \ program \ quickstart.exe
O4 - Globální Startup: Aver HID Receiver.lnk = C: \ Program Files \ Common Files \ AVerMedia \ AVerQuick \ AVerHIDReceiver.exe
O4 - Globální Startup: AVerQuick.lnk = C: \ Program Files \ Common Files \ AVerMedia \ AVerQuick \ AVerQuick.exe
O4 - Globální Startup: Bluetooth.lnk =?
O4 - Globální Startup: Bug Shooting.lnk = C: \ Program Files \ chyb Střelba \ BugShooting.exe
O4 - Globální Startup: DVD Check.lnk = C: \ Program Files \ InterVideo \ DVD Zkontrolujte \ DVDCheck.exe
O4 - Globální Startup: Windows Search.lnk = C: \ Program Files \ Windows Desktop Search \ WindowsSearch.exe
O8 - Extra context menu item: E & xportovat do aplikace Microsoft Excel - res: / / C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ EXCEL.EXE/3000
O8 - Extra context menu item: Open s XmlPad - res: / / C: \ Program Files \ WMHelp Software \ WMHelp XmlPad \ WmhASPP.dll/101
O9 - Extra tlačítka: Přidat Na blog - (219C3416-8CB2-491a-A3C7-D9FCDDC9D600) - C: \ Program Files \ Windows Live \ Pisatel \ WriterBrowserExtension.dll
O9 - Extra 'MENUITEM Tools': & Přidat Na blogu Windows Live Writer - (219C3416-8CB2-491a-A3C7-D9FCDDC9D600) - C: \ Program Files \ Windows Live \ Pisatel \ WriterBrowserExtension.dll
O9 - Extra tlačítka: Skype add-on pro Internet Explorer - (898EA8C8-E7FF-479B-8935-AEC46303B9E5) - C: \ Program Files \ Skype \ Toolbars \ Internet Explorer \ skypeieplugin.dll
O9 - Extra 'MENUITEM Tools': Skype add-on pro Internet Explorer - (898EA8C8-E7FF-479B-8935-AEC46303B9E5) - C: \ Program Files \ Skype \ Toolbars \ Internet Explorer \ skypeieplugin.dll
O9 - Extra tlačítka: Počet online uživatelů informací - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MIA98D ~ 1 \ Office11 \ REFIEBAR.DLL
O9 - Extra tlačítka: (no name) - (DFB852A3-47F8-48C4-A200-58CAB36FD2A2) - C: \ Program Files \ Spybot - Search & Destroy \ SDHelper.dll
O9 - Extra 'MENUITEM Tools': Spybot - Search & & Destroy Configuration - (DFB852A3-47F8-48C4-A200-58CAB36FD2A2) - C: \ Program Files \ Spybot - Search & Destroy \ SDHelper.dll
O9 - Extra tlačítka: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ network diagnostic \ xpnetdiag.exe
O9 - Extra 'MENUITEM Tools': @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ network diagnostic \ xpnetdiag.exe
O9 - Extra tlačítka: Posel - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ Msmsgs.exe
O9 - Extra 'MENUITEM Tools': Windows Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ Msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL = http://www.hp.com
O15 - Trusted Oblast: http://mail.gpd.cz
O15 - Trusted Oblast: http://vois.gpd.cz
O15 - Trusted Oblast: http://voistrenazer.gpd.cz
O15 - Trusted Oblast: http://cz.tireonlineservice.com
O15 - Trusted IP rozsah: http://212.27.221 .*
O15 - Trusted IP rozsah: http://192.168.135 .*
O15 - Trusted IP rozsah: 192.168.135.2
O16 - DPF: (02061E9B-8AA5-4073-8A8E-6B14E8B05C32) (VOISSPS.CAB) - http://vois.gpd.cz/vois/ax/voissps.cab
O16 - DPF: (02F2506E-486F-46B7-9090-32CC12B3B193) (QWView.Cab) - http://vois.gpd.cz/vois/ax/qwview.cab
O16 - DPF: (0350C5D2-4BA5-4FE2-8D9C-135545FDC800) (EDW DB knihovna - OLEDB, SQL, MDX, ...) - http://192.168.135.246/vois/ax/edwdb.cab
O16 - DPF: (03AF2B66-B810-4FDD-B6BD-E39D60BEC889) (VOIS3WH.Cab) - http://192.168.135.246/vois/ax/vois3wh.cab
O16 - DPF: (066776BB-C048-47EC-91CC-0C3EB0E617D7) (EDW Data Mining - Store, tabulky, zobrazení, ...) - http://vois.gpd.cz/vois/ax/edwdatamining.cab
O16 - DPF: (06773F72-4C0C-48FC-92FE-D9522C59A4C4) (ArticleCover1.ArticleCover) - http://192.168.135.246/vois/ax/articlecover.cab
O16 - DPF: (074213F2-8FBC-451B-B04C-F66977D4E822) (EDW Zipo - Compress / Rozbalte archiv) - http://192.168.135.246/vois/ax/edwzipo.cab
O16 - DPF: (090A1FFB-215C-414D-8E1B-8CB8291C2D8F) (WHContactTools2.AddrHolder) - http://192.168.135.2/vois/ax/whcontacttools.cab
O16 - DPF: (0A094F59-DB90-4162-B3A8-CFCEDA3DF25D) (CGCCShipEditor.ShipEditor) - http://vois.gpd.cz/vois/ax/cgccshipeditor.cab
O16 - DPF: (0C44A8DD-C429-490B-B145-B7AF44423A4F) (VOIS3Doc.Cab) - http://192.168.135.246/vois/ax/vois3doc.cab
O16 - DPF: (0D957409-1464-421C-BA8F-A66D51CFEAFC) (CGCCDocCompensation.Cab) - http://192.168.135.246/vois/ax/cgccdoccompensation.cab
O16 - DPF: (0DEC2FE5-E7D6-422C-865F-CD81BB35ED5F) (VOIS5Doc.Cab) - http://vois.gpd.cz/vois/ax/vois5doc.cab
O16 - DPF: (0FA7CBD7-61CC-4DF0-B996-84E4B4E24123) (VOISContract.Cab) - http://192.168.135.246/vois/ax/voiscontract.cab
O16 - DPF: (12B763AE-022D-490A-B296-8E6E06551B8B) (VOIS5PackageGPD.TransportProviderFilter) - http://vois.gpd.cz/vois/ax/vois5packagegpd.cab
O16 - DPF: (13F458B1-8546-419B-89C4-85FC86BD00A3) (EDW poskytovatelů dat - HTTPConnector) - http://192.168.135.2/vois/ax/EDWHTTPConnector.cab
O16 - DPF: (14C1B87C-3342-445F-9B5E-365FF330A3AC) (Hewlett-Packard Online Support Services) - https: / / h50203.www5.hp.com/HPISWeb/Customer/cabs/HPISDataManager.CAB
O16 - DPF: (15DF5013-10DD-4069-AD5F-2938A7BDC016) (OLAPControlsLib.URFinishDetail) - http://192.168.135.2/vois/ax/OLAPControlsLib.CAB
O16 - DPF: (179819A1-5026-4D95-864C-3A58DB681A4A) (VOISItemAddOnCost.CAB) - http://vois.gpd.cz/vois/ax/voisitemaddoncost.cab
O16 - DPF: (1A27EBF4-3FAD-4619-B1E7-BA2BE9862BE2) (VOIS5PackageGPD.Doc_S) - http://vois.gpd.cz/vois/ax/vois5packagegpd.cab
O16 - DPF: (1B2D80CC-9349-47F9-B445-0B912CD6D4EC) (CasseDoc.CasseDocCtrl) - http://192.168.135.246/vois/ax/cassedoc.cab
O16 - DPF: (1DBEDAD6-FD35-44C9-B482-752C0E35312E) (BackFlowIN2.Cab) - http://vois.gpd.cz/vois/ax/backflowin2.cab
O16 - DPF: (1E16ADD2-26CF-4839-B59A-25CEEB780E4C) (CGCCAdvSearch.Cab) - http://192.168.135.246/vois/ax/cgccadvsearch.cab
O16 - DPF: (1E653C4B-BFD1-4811-9ED4-A4EB4D471D8F) (VOISInfoMap.Cab) - http://192.168.135.246/vois/ax/voisinfomap.cab
O16 - DPF: (1F9B9EA4-7512 do 4658-B4F3-6457E940A54F) (VOIS3FlowIn.Cab) - http://vois.gpd.cz/vois/ax/vois3flowin.cab
O16 - DPF: (2120F4D5-Beda-44E7-860B-F913954DEAB4) (VOIS4ArticleImport.ArticleImport) - http://vois.gpd.cz/vois/ax/VOIS4ArticleImport.cab
O16 - DPF: (2174F360-137f-11D4-9390-0050044A852B) (WHQueueArticle.QueueArticleCtl) - http://192.168.135.246/vois/ax/whqueuearticle.cab
O16 - DPF: (22A5BA47-7C5B-455b-A6E2-A9B208880874) (VOIS5OrderOut.Cab) - http://vois.gpd.cz/vois/ax/vois5orderout.cab
O16 - DPF: (2538E0F6-8DEE-47D7-9D27-F07D42FC974A) (VOISPackage.CAB) - http://vois.gpd.cz/vois/ax/voispackage.cab
O16 - DPF: (2746F4B1-24F1-4FD2-A31F-0127F199A0A7) (VOISProject.CAB) - http://192.168.135.246/vois/ax/voisproject.cab
O16 - DPF: (28301A7A-116C-4F5B-8BA5-F62B61878464) (VOIS5OrderIn.BatchProposal_S) - http://vois.gpd.cz/vois/ax/vois5orderin.cab
O16 - DPF: (283A5CEF-C567-11D4-93B0-0050044A852B) (CGCCHelper.MSTabs) - http://192.168.135.246/vois/ax/cgcchelper.cab
O16 - DPF: (29837538-3091-40A5-8C7B-57733D9CF3E6) (EDW Společné nastavení - zasedání Singleton, utils, ...) - http://192.168.135.246/VOIS/AX/edwcommonsetting.cab
O16 - DPF: (2DFF6C82-0AF2-11D4-BAE8-0080C785FC10) (ImportArticlePrj.ImportArticleCtl) - http://192.168.135.2/vois/ax/ImportArticlePrj.CAB
O16 - DPF: (2FB10944-E057-40DF-AB13-E17B2CAE84EE) (VOIS3Contact.Cab) - http://192.168.135.246/vois/ax/vois3contact.cab
O16 - DPF: (2FC36E80-5D15-401E-A6AE-20F0C3CCE21E) (GroupList Class) - http://192.168.135.246/vois/ax/cgccgrouplistlib.cab
O16 - DPF: (312C6F81-BBF6-4405-B29B-6012AEA0ED24) (VOIS5Article.Cab) - http://vois.gpd.cz/vois/ax/vois5article.cab
O16 - DPF: (31B50413-b069-4322-964B-8028FE21D5A8) (VOIS5Partner.Cab) - http://vois.gpd.cz/vois/ax/vois5partner.cab
O16 - DPF: (32FAE098-6127 do 4191-AAB9-AED5B5491F3D) (VOIS5Queue.DocForDispOut_S) - http://vois.gpd.cz/vois/ax/vois5queue.cab
O16 - DPF: (3538AEF2-44B1-4901-B00C-54E215CA99BC) (VOISOrderIn.CAB) - http://voistrenazer.gpd.cz/vois/ax/voisorderin.cab
O16 - DPF: (3589C3E4-A132-43AF-A6AD-6BA046E6149C) (Article.Cab) - http://voistrenazer.gpd.cz/vois/ax/article.cab
O16 - DPF: (374C4448-FA6C-468A-A4C8-646811EB79CD) (VOIS3KernIO.Cab) - http://vois.gpd.cz/vois/ax/vois3kernio.cab
O16 - DPF: (37AE00B0-28D0-49D2-8925-9BBB2AC57310) (VOIS3Order.CAB) - http://vois.gpd.cz/vois/ax/vois3order.cab
O16 - DPF: (38B947D6-ED14-4EC6-ADD2-899AC98D76F9) (VOIS5SerialNumber.PageOut) - http://voistrenazer.gpd.cz/vois/ax/vois5serialnumber.cab
O16 - DPF: (3B1234CC-8007-487C-9C10-F5F3E58BD5F5) (QWDebug.Cab) - http://vois.gpd.cz/vois/ax/qwdebug.cab
O16 - DPF: (3D63D15A-5DB7-44AC-B9B3-58341640F838) (FormDataDataStore.Cab) - http://vois.gpd.cz/vois/ax/formdatadatastore.cab
O16 - DPF: (3E2B76FD-A565-4035-B3FA-8CF39FFF334D) (VOISWMS.DocPrintQueue_S) - http://vois.gpd.cz/vois/ax/voiswms.cab
O16 - DPF: (40A3F5CE-2A80-442B-85F1-274DFF7D7081) (VOISOrderIn.CAB) - http://vois.gpd.cz/vois/ax/voisorderin.cab
O16 - DPF: (448CC3EB-77A8-4D6E-A6CA-E057BC00597D) (ContactPerson1.ContactPerson) - http://192.168.135.246/vois/ax/contactperson1.cab
O16 - DPF: (47678536-35CA-4236-99A5-21362896870E) (EDW RS knihovna - Recordset, RS.V1, V2, V3, ...) - http://192.168.135.246/vois/ax/edwrs.cab
O16 - DPF: (477E32BE-AE2F-11D3-ABF6-00104BDAE1E7) (SuperArtFlow.SuperArtFlowCtl) - http://192.168.135.246/vois/ax/superartflow.cab
O16 - DPF: (48282861-43E7-47B7-BCD5-027D49C20B38) (ToolTipLib.TTUser) - http://192.168.135.246/vois/ax/tooltiplib.cab
O16 - DPF: (4880890F-394F-11D5-BB94-0080C785FC10) (BackordoutChange.Wizard) - http://vois.gpd.cz/vois/ax/backordoutchange.cab
O16 - DPF: (48AC470F-ED85-4A3A-8D74-04B03D9D8F63) (VOIS5Tool.Cab) - http://vois.gpd.cz/vois/ax/vois5tool.cab
O16 - DPF: (4A27E6B4-B499-4DFF-AD65-6D9A448F30E6) (VOIS5Operate.Cab) - http://vois.gpd.cz/vois/ax/vois5operate.cab
O16 - DPF: (4A57D54D-485D-4D00-B3C6-F0D7F4FB08B7) (CGCCVTLocal.Cab) - http://vois.gpd.cz/vois/ax/cgccvtlocal.cab
O16 - DPF: (4A5CEDB8-6FA8-4541-B3B3-B1166CEC03DF) (VOIS5OrderOut.Cab) - http://vois.gpd.cz/vois/ax/vois5orderout.cab
O16 - DPF: (4AD3315F-D1E3-4153-A1CA-79CF0AC6245A) (ListTree2 Control (verze 2,1,0,19)) - http://192.168.135.246/vois/ax/listtree2.cab
O16 - DPF: (4EA83AED-14E4-49DB-BE1C-4E8204D93851) (MatchFinderPlus.ctlMatchFinderPlus) - http://192.168.135.2/VOIS/AX/MatchFinderPlus.CAB
O16 - DPF: (4F00F7B5-333E-4B6E-BAF8-8146569FF707) (VOISStockTakingExch.Cab) - http://voistrenazer.gpd.cz/vois/ax/voisstocktakingexch.cab
O16 - DPF: (5159AB2B-05A8-435C-B1E5-0A280210F8BD) (VOISContactStockTree.Cab) - http://192.168.135.246/vois/ax/voiscontactstocktree.cab
O16 - DPF: (551D08CE-288B-11D3-B85A-00105A0E5111) (RecSet Class) - http://192.168.135.246/vois/ax/wdbrecset.cab
O16 - DPF: (5663A3B0-4723-460C-AB90-8568AFCB80B5) (FastSearchLib.GridCombo) - http://192.168.135.246/vois/ax/fastsearchlib.cab
O16 - DPF: (56B5B5AC-BB24-4592-A24E-14E9500651AB) (QW.Cab) - http://vois.gpd.cz/vois/ax/qw.cab
O16 - DPF: (577C7570-5CAC-4641-BAE9-3BDAB9627137) (QWAdmin.CAB) - http://vois.gpd.cz/vois/ax/qwadmin.cab
O16 - DPF: (5EB3FF37-4355-4CD5-BECD-12A6E5944E30) (SysMessageModule.Cab) - http://192.168.135.246/vois/ax/sysmessagemodule.cab
O16 - DPF: (5ED80217-570B-4DA9-BF44-BE107C0EC166) (Windows Live Safety Center základní modul) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase8942.cab
O16 - DPF: (61059DAF-76C8-4CA3-885B-370A9456312A) (EDW Společné ovládací prvky - Rámcový AX-Control) - http://192.168.135.246/VOIS/AX/edwcommoncontrols.cab
O16 - DPF: (65119B75-636B-4118-84A6-06B10AFAF458) (VOISProducerTeam.CAB) - http://192.168.135.246/vois/ax/voisproducerteam.cab
O16 - DPF: (6577ACB9-0EE8-4A8A-BA27-370CFAD15CA5) (VOIS5Location.Cab) - http://vois.gpd.cz/vois/ax/vois5location.cab
O16 - DPF: (65EF3D87-34F7-467F-A509-7C9E92C9CCCD) (VOIS4ArticleImport.Cab) - http://voistrenazer.gpd.cz/vois/ax/vois4articleimport.cab
O16 - DPF: (679EEF61-199B-4CD3-B120-065C8E0704AF) (VOIS5OrderOut.Cab) - http://vois.gpd.cz/vois/ax/vois5orderout.cab
O16 - DPF: (690DC1C1-390C-4CB1-BB91-1154718A36FD) (CGCCTextPrinter.TextPrinter) - http://vois.gpd.cz/vois/ax/cgcctextprinter.cab
O16 - DPF: (6ACD9D44-0DAD-459F-90D5-B7EBAB86998B) (CGCCSearchCom.Cab) - http://vois.gpd.cz/vois/ax/cgccsearchcom.cab
O16 - DPF: (6B575BAD-41C5-44D8-957B-B055ECC89495) (VOIS5View.Cab) - http://vois.gpd.cz/vois/ax/vois5view.cab
O16 - DPF: (6B5F895E-FE4A-4825-960B-A735EE98C978) (WHFinderHolder2.Holder) - http://192.168.135.246/vois/ax/whfinderholder2.cab
O16 - DPF: (6C323E3F-D7F2-4C28-A98A-AB9ACE0600C8) (VOIS3Host.Cab) - http://vois.gpd.cz/vois/ax/vois3host.cab
O16 - DPF: (6C42F8BE-C31C-11D4-93B0-0050044A852B) (BackFlowOut2.BackFlOutAdd) - http://192.168.135.2/VOIS/Ax/BackFlowOut2.CAB
O16 - DPF: (6E32070A-766D-879C-4EE6-DC1FA91D2FC3) (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1201335977453
O16 - DPF: (7063B06D-F7BA-4B33-BAE8-3FBE45B95D1D) (VOIS5WH.Cab) - http://vois.gpd.cz/vois/ax/vois5wh.cab
O16 - DPF: (70AF14FC-B500-45DE-BAB9-DBA06C8E183E) (VOIS3Msg.Cab) - http://vois.gpd.cz/vois/ax/vois3msg.cab
O16 - DPF: (73293BCA-CEDC-4A74-938A-A92399EEDB03) (EDW Ovládací prvky - Framework, nářadí, Xichts, ...) - http://vois.gpd.cz/vois/ax/edwcommoncontrols.cab
O16 - DPF: (7530BFB8-7293-4D34-9923-61A11451AFC5) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: (75A714E6-BB1B-423F-8F10-5C8C0EB816DB) (PriceListContact.PriceListContactCtrl) - http://192.168.135.2/vois/ax/PriceListContact.CAB
O16 - DPF: (76038F95-5947-4BFB-8FFA-01BCD8B8DDEE) (DistributionPages.DistributionPlanCtrl) - http://192.168.135.2/vois/ax/DistributionPages.CAB
O16 - DPF: (76C50ACD-C007-11D4-93B0-0050044A852B) (Order2.OrderCtl2) - http://192.168.135.2/VOIS/ax/Order2.CAB
O16 - DPF: (784797A8-342D-4072 do 9486-03C8D0F2F0A1) (Battlefield Heroes Updater) - https: / / www.battlefieldheroes.com/static/updater/BFHUpdater_4.0.21.0.cab
O16 - DPF: (787AA85E-18EE-4A52-9464-E1420770370D) (VOISItemGiveAway.CAB) - http://vois.gpd.cz/vois/ax/voisitemgiveaway.cab
O16 - DPF: (7934E7B0-14D7-4F23-87F6-8BE16EDAD31E) (QWFlow.Cab) - http://vois.gpd.cz/vois/ax/qwflow.cab
O16 - DPF: (7BBFDFD5-2B5E-4F41-B82E-0B18681ADCD3) (VOIS4SelectionList.Cab) - http://192.168.135.246/vois/ax/vois4selectionlist.cab
O16 - DPF: (7C8121F0-EDA7-4CED-B216-9E7E9EEF23A7) (VOIS5Price.Cab) - http://vois.gpd.cz/vois/ax/vois5price.cab
O16 - DPF: (7EDBFFD4-13D2-4436-A697-10432568FF51) (CGCCCommonPrint.Button) - http://192.168.135.246/vois/ax/cgcccommonprint.kabina
O16 - DPF: (8147F544-B779-49CE-81E4-8506412F6FDD) (VOIS3PriceList.OldPriceListEdit) - http://192.168.135.246/vois/ax/vois3pricelist.cab
O16 - DPF: (83BFBAB1-D95B-4DD1-9BDB-1B61689E1775) (VOIS3BackFlowOut.Cab) - http://vois.gpd.cz/vois/ax/vois3backflowout.cab
O16 - DPF: (874D7240-B10A-46BA-A8F9-4ADC7DA795EB) (VOISFM3000.CAB) - http://192.168.135.246/vois/ax/voisfm3000.cab
O16 - DPF: (87B7A250-D553-4E05-B933-058CECEF4A12) (ArticleExternal1.ArticleExternal) - http://192.168.135.246/vois/ax/articleexternal.cab
O16 - DPF: (89C50FE0-FA39-44D9-B441-1081025B2747) (CGCCOutput.XLSFileEDW) - http://192.168.135.246/vois/ax/cgccoutput.cab
O16 - DPF: (8A10C8B4-E89D-4F45-91B4-952DA72CA20D) (VOIS5Fast.Cab) - http://vois.gpd.cz/vois/ax/vois5fast.cab
O16 - DPF: (8A154B95-63F7-4092-83C0-9AF5F4115DE2) (VOIS5Host.Cab) - http://vois.gpd.cz/vois/ax/vois5host.cab
O16 - DPF: (8A21569C-29C4-4D89-B489-8DC8F5A99ABA) (QWApp.Cab) - http://vois.gpd.cz/vois/ax/qwapp.cab
O16 - DPF: (8A942387-242A-11D3-B856-00105A0E5111) (WHArtProp.PropEditor) - http://192.168.135.246/vois/ax/whartprop.cab
O16 - DPF: (8C00E794-C948-4577-A6FD-00CC6B6283B8) (VOIS3Package.CAB) - http://voistrenazer.gpd.cz/vois/ax/vois3package.cab
O16 - DPF: (8C4E2795-468C-4F59-A885-CEC0DE55A05C) (QWContact.Cab) - http://vois.gpd.cz/vois/ax/qwcontact.cab
O16 - DPF: (8F960EBA-2D32-48CE-B9D5-8384DD517BAC) (VOIS5Contact.Cab) - http://voistrenazer.gpd.cz/vois/ax/vois5contact.cab
O16 - DPF: (9007A6AB-63E7-4491-8E05-5E5CB39241C4) (Print Preview Control (verze 1,0,0,32)) - http://192.168.135.246/vois/ax/printpreview.cab
O16 - DPF: (9549AD26-A95D-4F65-BE3A-9BE8A6E7240A) (PHB4Pages.InstallMe) - http://192.168.135.246/vois/ax/phb4pages.cab
O16 - DPF: (95B66AB3-BA8C-4F04-8BC0-92C211CEB369) - http://voistrenazer.gpd.cz/vois/ax/vois5claim.cab
O16 - DPF: (99B3B379-C5F4-4E49-B4B6-1AD33679E50B) (VOISOfferIn.CAB) - http://vois.gpd.cz/vois/ax/voisofferin.cab
O16 - DPF: (99FF4677-FFC3-11D0-BD02-00C04FC2FB86) (StdDataFormats Object) - http://vois.gpd.cz/vois/ax/msstdfmt.cab
O16 - DPF: (9AA2FF2D-BD2A-41AD-B367-24ED2F0A3B81) (VOIS5OrderInRest.OrderInRestItem_S) - http://vois.gpd.cz/vois/ax/vois5orderinrest.cab
O16 - DPF: (9B0FEF27-C77A-4713-94D9-E9628E522DA9) (VOIS3PrintLib.Cab) - http://vois.gpd.cz/vois/ax/vois3printlib.cab
O16 - DPF: (9DF02A0E-914a-4C16-BA83-A3F0A8B79F1E) (VOISAdvances.CAB) - http://vois.gpd.cz/vois/ax/voisadvances.cab
O16 - DPF: (9E6BF495-9A50-4F58-BA3D-01211E8ED5D1) (CGCCShipTemplSelect.ShipTemplSelect) - http://voistrenazer.gpd.cz/vois/ax/cgccshiptemplselect.cab
O16 - DPF: (9ED94440-E5E8-101B-B9B5-444553540000) (Microsoft TabStrip Control, verze 5.0 (SP2)) - http://vois.gpd.cz/vois/ax/comctl32.cab
O16 - DPF: (9F2DEF90-BE4A-4500-BF16-396B528DA139) (QWItem.CAB) - http://vois.gpd.cz/vois/ax/qwitem.cab
O16 - DPF: (9F6885C1-78E4-11D4-B17C-00600813C963) (CGCSelectList 1,0 Type Library) - http://192.168.135.246/vois/ax/cgcselectlist.cab
O16 - DPF: (A00ABA71-9EFC-4EE3-B105-F8DE15FDD85A) (VOIS5FlowAmountLink.FlowAmountLink_S) - http://voistrenazer.gpd.cz/vois/ax/vois5flowamountlink.cab
O16 - DPF: (A1149E02-91A0-4A05-A5B0-8C73CA4BD1BB) (VOIS5App.Cab) - http://vois.gpd.cz/vois/ax/vois5app.cab
O16 - DPF: (A2F859AD-B5D0-4649-8F45-E6C885AAB3CC) (VOIS5Location.Cab) - http://vois.gpd.cz/vois/ax/vois5location.cab
O16 - DPF: (A3274462-834A-48FB-aded-E07867392CD4) (VOIS5OrderOut.Cab) - http://192.168.135.246/vois/ax/vois5orderout.cab
O16 - DPF: (A42C0BE6-794D-4A79-B0A7-A442B6E03F33) (VOIS5Msg.Cab) - http://voistrenazer.gpd.cz/vois/ax/vois5msg.cab
O16 - DPF: (A4E80F9F-786A-4033-B73B-B73DE463D3FF) (EDW datová centra Class) - http://192.168.135.246/VOIS/AX/edw.cab
O16 - DPF: (A584627F-EA2F-4D51-ACDA-698F53E9A81B) (VOISDocContact.Cab) - http://vois.gpd.cz/vois/ax/voisdoccontact.cab
O16 - DPF: (A7C422F6-2243 do 4187-B9E7-9D6C57EF90EA) (VOIS3OrderIn.CAB) - http://192.168.135.246/vois/ax/vois3orderin.cab
O16 - DPF: (A93B47FD-9BF6-4DA8-97FC-9270B9D64A6C) (VaPgCtrl Class) - http://192.168.135.90/plugin/h263ctrl.cab
O16 - DPF: (AB7E0F97-5059-4AC0-B374-16CE3529395E) (WHSalesInfo.Cab) - http://vois.gpd.cz/vois/ax/whsalesinfo.cab
O16 - DPF: (ABA09B04-6D0D-4561-8C98-CB15F549CE79) (VBRunCheck.Cab) - http://192.168.135.246/vois/ax/VBRunCheck.cab
O16 - DPF: (AC8E25D8-BCCE-11D4-93B0-0050044A852B) (FlowOut2.FlowOutEdit) - http://192.168.135.2/vois/ax/FlowOut.CAB
O16 - DPF: (ADB71877-3FA1-4F01-9A94-DB4AC8B0CA5F) (VOIS5FlowAmountLink.DocFilterGroup) - http://vois.gpd.cz/vois/ax/vois5flowamountlink.cab
O16 - DPF: (AF811796-9918 do 4613-8CB5-DCAF470F265C) (BackFlowIN2.BackFlInAdd) - http://192.168.135.246/vois/ax/backflowin2.cab
O16 - DPF: (B1E2B96C-12FE-45E2-BEF1-44A219113CDD) (SABScanProcesses Class) - http://www.superadblocker.com/activex/sabspx.cab
O16 - DPF: (B26A7085-A9E1-4725-AEFF-934F8BCE22FD) (VOIS3FlowOut.Cab) - http://vois.gpd.cz/vois/ax/vois3flowout.cab
O16 - DPF: (B47AC3E5-4BC0-43BE-9D87-5B4293D7DEF7) (VOIS5Print.Cab) - http://vois.gpd.cz/vois/ax/vois5print.cab
O16 - DPF: (B4E509D4-F1F2-4702-A711-771CDBA5F63A) (EDWWorkUtils.Cab) - http://192.168.135.2/vois/ax/EDWWorkUtils.CAB
O16 - DPF: (B652B335-F5D8-4E58-A020-53D70B5CA99D) (CGCCShipAssist.ShipAssist) - http://vois.gpd.cz/vois/ax/cgccshipassistant.cab
O16 - DPF: (B6C4C95B-C6F3-4763-945A-0E7EAF711162) (LabelPrint.ctlLabelPrint) - http://192.168.135.246/vois/ax/labelprint.cab
O16 - DPF: (B6DA2E5F-22F9-41F3-9180-76F58E175C73) (EUROPARK.CAB) - http://vois.gpd.cz/vois/ax/europark.cab
O16 - DPF: (B9BE8FCF-93E6-42A0-AA16-A3B51E4B61BF) (CGCCChartHelper.MSChart) - http://192.168.135.246/vois/ax/cgcccharthelper.cab
O16 - DPF: (BC951467-0725-4C29-908A-EE239C42F12F) (QWDoc.CAB) - http://vois.gpd.cz/vois/ax/qwdoc.cab
O16 - DPF: (BD50B6F3-2A12-11D3-B85A-00105A0E5111) (RealGrid2 Control) - http://192.168.135.246/vois/ax/realgrid2.cab
O16 - DPF: (BDC217C5-ED16-11cd-956C-0000C04E4C0A) (Microsoft záložkách Dialog Řízení 6.0 (SP4)) - http://vois.gpd.cz/vois/ax/tabctl32.cab
O16 - DPF: (BFE45165-10F2-463D-B430-1397C0A7372A) (VOISMessage.Messages) - http://192.168.135.246/vois/ax/voismessage.cab
O16 - DPF: (C021CA56-5DBF-461E-825A-74DD4B9ABD05) (VOIS5SerialNumber.Cab) - http://voistrenazer.gpd.cz/vois/ax/vois5serialnumber.cab
O16 - DPF: (C0920EA2-4840-477A-944C-3EF85FB0A1A9) (VOIS5OrderOut.Cab) - http://vois.gpd.cz/vois/ax/vois5orderout.cab
O16 - DPF: (C0DBF281-F0B2-11D4-93B1-0050044A852B) (CGCCFTEdit.FTEditCtrl) - http://192.168.135.246/vois/ax/cgccftedit.cab
O16 - DPF: (C143A827-DAC9-4CC4-8A40-DFC28A763AA7) (VOIS5DataEx.Cab) - http://voistrenazer.gpd.cz/vois/ax/vois5dataex.cab
O16 - DPF: (C1D395B2-EDDB-47C6-94F5-5C4CF84999C8) (FindDoc2Prj.FindDoc2) - http://voistrenazer.gpd.cz/vois/ax/finddoc2.cab
O16 - DPF: (C33427DC-4E0C-40EB-BCE1-008D281346E0) - http://voistrenazer.gpd.cz/vois/ax/vois5price.cab
O16 - DPF: (C39C29AB-57DC-11D4-8D78-00008371DDA6) (CLoCompression Class) - http://192.168.135.80/comp.cab
O16 - DPF: (C4CE563D-7EBC-464C-8495-A93534BFD962) (PHBook4.Cab) - http://192.168.135.246/vois/ax/phbook4.cab
O16 - DPF: (C6357F24-92E2-4E96-9721-A6CBA5425BF2) (VOIS4DataFilter.Cab) - http://192.168.135.246/vois/ax/vois4datafilter.cab
O16 - DPF: (C826AAD0-5A9D-44BC-AE1E-87DC10F5FC66) (VOIS3StockTaking.StockTaking) - http://vois.gpd.cz/vois/ax/vois3stocktaking.cab
O16 - DPF: (C8808373-25FB-11D2-AEA2-00600813C963) (FastCombo 1,0 Type Library) - http://192.168.135.246/vois/ax/fastcombo.cab
O16 - DPF: (C8C83B2F-9E35-412E-9256-A6E5B4A33C62) (CGCCOutputAx.OutputCtl) - http://192.168.135.246/vois/ax/cgccoutputax.cab
O16 - DPF: (CA2AC408-6578-479E-B629-EEBD0056620B) (VOIS3File.Cab) - http://192.168.135.246/vois/ax/vois3file.cab
O16 - DPF: (CF492A13-886B-11D2-AF1F-00600813C963) (EditForm Class) - http://192.168.135.246/vois/ax/cgcformat.cab
O16 - DPF: (D0520FA0-D80C-41E8-8EA2-D77AE2EAB5B2) (VOIS3Casse.Cab) - http://vois.gpd.cz/vois/ax/vois3casse.cab
O16 - DPF: (D104A7B6-798E-45FA-8D41-687AFFC77004) (VOIS5Host.Cab) - http://vois.gpd.cz/vois/ax/vois5host.cab
O16 - DPF: (D1E8A621-4A08-4376 do 9734-370697D143FF) (VOIS3InvoiceIn.Cab) - http://vois.gpd.cz/vois/ax/vois3invoicein.cab
O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: (D32F4E9E-BC32-45dB-B61E-5E548E77CDFC) (QWView.Cab) - http://vois.gpd.cz/vois/ax/qwview.cab
O16 - DPF: (D6E62A5A-2201-406A-8065-DA084D55F2BA) (VOIS3PrintLib.DocText) - http://vois.gpd.cz/vois/ax/vois3printlib.cab
O16 - DPF: (D89B0AAC-8B87-11D2-BD3C-60F97D000000) (ListTree Control (verze 1,0,0,6)) - http://192.168.135.246/vois/ax/listtree.cab
O16 - DPF: (D96466DE-746F-43F0-99D3-7A8F3B83B8A6) (ChangeItemItem.ChangeItemItemCtl) - http://vois.gpd.cz/vois/ax/changeitemitem.cab
O16 - DPF: (DA8CCCAB-36AB-4F11-B4D2-C4D293B08551) (VOIS5Group.Cab) - http://vois.gpd.cz/vois/ax/vois5group.cab
O16 - DPF: (DA8CEA01-AE49-11D4-B18E-00600813C963) (CGCButton 1,0 Type Library) - http://192.168.135.246/vois/ax/cgcbutton.cab
O16 - DPF: (DBC4195D-B1B7-4FDA-828F-5C9373429B43) (CGCCListPriceChange.ListPriceChange) - http://192.168.135.246/vois/ax/cgcclistpricechange.cab
O16 - DPF: (DC5CB56B-B9A7-11D4-AC6E-00104BDAE1E7) (FlowIN2.FlowINCtl) - http://192.168.135.2/VOIS/ax/FlowIN.CAB
O16 - DPF: (DDCB5D9B-1EF0-402F-B671-C3ADA9C162C8) (WHqueueKontaktprj.WHqueueKontakt) - http://vois.gpd.cz/vois/ax/whqueuekontaktprj.cab
O16 - DPF: (DE625294-70E6-45ED-B895-CFFA13AEB044) (AxisMediaControlEmb Class) - http://192.168.135.97/activex/AMC.cab
O16 - DPF: (E0B6746E-1D39-4C0F-A718-4B43E30388E7) (VOIS5User.Cab) - http://vois.gpd.cz/vois/ax/vois5user.cab
O16 - DPF: (E3872D0E-721B-4682-8AC8-00B6261650FD) (EDW poskytovatelů dat - Příkazy, manipulátory, Monitoring, ...) - http://192.168.135.2/vois/ax/EDWDataProviders.cab
O16 - DPF: (E5BC2BC3-4D32-47E5-B3DC-3154924E0DE8) (ArtBizChannel1.ArtBizChannel) - http://192.168.135.246/vois/ax/artbizchannel.cab
O16 - DPF: (E6575408-2BCF-44C0-9E5E-B177D87F98FA) (VOIS5PackageGPD.Doc_S) - http://vois.gpd.cz/vois/ax/vois5packagegpd.cab
O16 - DPF: (E742F6DB-37A9-4D79-99DA-B064B28D8568) (VOIS3InvoiceListGpd.CAB) - http://vois.gpd.cz/vois/ax/vois3invoicelistgpd.cab
O16 - DPF: (E8CA9D6E-E7D8-4DA6-ACB1-E2CDD1EADF31) (VOIS5Start.Cab) - http://vois.gpd.cz/vois/ax/vois5start.cab
O16 - DPF: (EB04CB7C-F551-441A-A1A9-C3595EF632B9) (QWTools.Cab) - http://voistrenazer.gpd.cz/vois/ax/qwtools.cab
O16 - DPF: (EB54A4BD-1583-4F1F-A9CC-D2006A1F100A) (EDW Skriptování - Aktivní šablona, kontext, ...) - http://192.168.135.2/vois/ax/EDWScripting.cab
O16 - DPF: (EB9A0E14-3604-4FAD-BB08-CBE5549B02D6) (VOIS3StockLocation.PageExchange) - http://vois.gpd.cz/vois/ax/vois3stocklocation.cab
O16 - DPF: (EBEEDACC-0FED-44EE-9599-65F0DD7E4D6A) (VOIS3ContactFlowBiz_S.CAB) - http://192.168.135.246/vois/ax/vois3contactflowbiz_s.cab
O16 - DPF: (ECAD39BF-D48A-4E10-A677-61E9FD1B5641) (VOIS5Casse.Cab) - http://vois.gpd.cz/vois/ax/vois5casse.cab
O16 - DPF: (ED224F39-16CE-4CB3-BB2B-3E6AC5DF278C) (CGCCVTLocal.VTJobCtrl) - http://192.168.135.246/vois/ax/cgccvtlocal.cab
O16 - DPF: (ED67B250-C777-4FC4-A5AA-6B3ECFA352AC) (VOISItemPartNum.wpItemProducer) - http://vois.gpd.cz/vois/ax/voisitempartnum.cab
O16 - DPF: (EF8C67AC-BBDE-4D2D-B0D6-92EA81D3A76E) (VOISOrderIn.CAB) - http://192.168.135.246/vois/ax/voisorderin.cab
O16 - DPF: (F0EA3088-A5BD-11D2-BD4F-70013D000000) (Cpt. hák Module (verze 1,0,0,1)) - http://192.168.135.246/vois/ax/cpthook.cab
O16 - DPF: (F152B3E9-59EF-43D6-BB93-BE4C339C57FB) (PriceListArticle1.PriceListArticle) - http://192.168.135.246/vois/ax/pricelistarticle1.cab
O16 - DPF: (F27E5A83-1FEB-4177-883D-A04B01F5D394) (EDW I / O knihovny - TCP, HTTP, Mpx, ...) - http://192.168.135.246/vois/ax/edwio.cab
O16 - DPF: (F2EF0AC2-4FD8-489A-ADF5-0A70C1C959C0) (VOISPromoStockPriceSaving.CAB) - http://192.168.135.246/vois/ax/voispromostockpricesaving.cab
O16 - DPF: (F4C0585A-772D-466C-9B5D-EAF71AD74C59) (CGCCAdvSearchKontakty.Cab) - http://vois.gpd.cz/vois/ax/cgccadvsearchkontakty.cab
O16 - DPF: (F5EF0F97-12B3-11D3-B84D-00105A0E5111) (WHGroupInput.ComboSet) - http://192.168.135.246/vois/ax/whgroupinput.cab
O16 - DPF: (F6E7C6D3-CD6E-4187-A668-B039275404B0) (CGCCTextPrnSupport.TextPrnHWSupport) - http://vois.gpd.cz/vois/ax/cgcctextprnsupport.cab
O16 - DPF: (F8C6AAA1-624B-4C2A-AB77-18A8AC9E5C26) (VOIS5User.Cab) - http://192.168.135.246/vois/ax/vois5user.cab
O16 - DPF: (FB2443BF-F2C9-4F3E-BC13-C8C18879283F) (VBListLib.LinePreviewCtrl) - http://192.168.135.246/vois/ax/vblistlib.cab
O16 - DPF: (FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9) (Performance Viewer ActiveX Control) - https: / / secure.logmein.com / ActiveX / ractrl.cab? Lmi = 100
O16 - DPF: (FE119961-EB1A-4D94-A6D0-E8114E4C18A0) (VOIS3Repair.Cab) - http://192.168.135.246/vois/ax/vois3repair.cab
O17 - HKLM \ System \ CCS \ Services \ Tcpip \ .. \ (8939B8D5-04AA-460B-ACAA-EF7E9DD66E43): NameServer = 10.0.0.138
O18 - Protocol: skype-IE-addon-data - (91774881-D725-4E58-B298-07617B9B86A8) - C: \ Program Files \ Skype \ Toolbars \ Internet Explorer \ skypeieplugin.dll
O18 - Protocol: skype4com - (FFC8B962-9B40-4DFF-9458-1830C7DD7F5D) - C: \ PROGRA ~ 1 \ Common ~ 1 \ Skype \ SKYPE4 ~ 1.dll
O18 - Protocol: wmh - (A1428E78-2D00-4590-A071-0CC9700A7768) - C: \ Program Files \ WMHelp Software \ WMHelp XmlPad \ WmhASPP.dll
O18 - Filtr: x-sdch - (B1759355-3EEC-4C1E-B0F1-B719FE26E377) - C: \ Program Files \ Google \ Google Toolbar \ Složka \ fastsearch_A8904FB862BD9564.dll
Ø20 - Winlogon Informujte:! SASWinLogon - C: \ Program Files \ SUPERAntiSpyware \ SASWINLO.DLL
Ø20 - Winlogon Informujte: OneCard - C: \ Program Files \ HPQ \ IAM \ Bin \ AsWlnPkg.dll
Ø22 - SharedTaskScheduler: browseui preloader - (438755C2-A8BA-11D1-B96B-00A0C90312E1) - C: \ WINDOWS \ system32 \ Browseui.dll
Ø22 - SharedTaskScheduler: Proces mezipaměti kategorii součástí - (8C7461EF-2B13-11D2-BE35-3078302C2030) - C: \ WINDOWS \ system32 \ Browseui.dll
O23 - Service: 602Updater (602XML Updater) - Software602 as - C: \ Program Files \ Common Files \ soft602 \ 602updsvc \ 602updsvc.exe
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C: \ Program Files \ Lavasoft \ Ad-Aware \ aawservice.exe
O23 - Service: Aladdin SQL Server - Neznámý vlastník - C: \ Program Files \ Aladdin \ Aladdin SQL Server \ AladdinSQL.exe
O23 - Service: Ati Hotkey Poller - ATI Technologies Inc - C: \ WINDOWS \ system32 \ Ati2evxx.exe
O23 - Service: AVerRemote - AVerMedia - C: \ Program Files \ Common Files \ AVerMedia \ Service \ AVerRemote.exe
O23 - Service: AVerScheduleService - Neznámý vlastník - C: \ Program Files \ Common Files \ AVerMedia \ Service \ AVerScheduleService.exe
O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C: \ Program Files \ WIDCOMM \ Bluetooth Software \ bin \ btwdins.exe
O23 - Service: CSIScanner - Prevx - C: \ Program Files \ Prevx \ prevx.exe
O23 - Service: FortiClient Service Plánovač (FA_Scheduler) - Fortinet Inc - C: \ Program Files \ Fortinet \ FortiClient \ scheduler.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - Firebird Project - C: \ Program Files \ Firebird \ Firebird_1_5 \ bin \ fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - Firebird Project - C: \ Program Files \ Firebird \ Firebird_1_5 \ bin \ fbserver.exe
O23 - Service: Google Desktop Manager 5.9.911.3589 (GoogleDesktopManager-110309 - 193829) - Google - C: \ Program Files \ Google \ Google Desktop Search \ GoogleDesktop.exe
O23 - Service: Služba Google Update (gupdate1c9ff089e85b76) (gupdate1c9ff089e85b76) - Google Inc - C: \ Program Files \ Google \ Update \ GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, LP - C: \ Program Files \ Hewlett-Packard \ Shared \ hpqwmiex.exe
O23 - Service: HW Virtual Serial Port (single) (HW_VSP3s_Service) - Neznámý vlastník - C: \ Program Files \ HW group \ HW VSP3s \ HW_VSP3s_srv.exe
O23 - Service: InstallDriver Tabulka Manager (IDriverT) - Macrovision Corporation - C: \ Program Files \ Common Files \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - C: \ WINDOWS \ system32 \ IFXSPMGT.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - C: \ WINDOWS \ system32 \ IFXTCS.exe
O23 - Service: Java Rychlé Starter (JavaQuickStarterService) - Sun Microsystems, Inc - C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C: \ Program Files \ Common Files \ LightScribe \ LSSrvc.exe
O23 - Service: NBService - Nero AG - C: \ Program Files \ Nero \ Nero 7 \ Nero BackItUp \ NBService.exe
O23 - Service: NMIndexingService - Nero AG - C: \ Program Files \ Common Files \ Ahead \ Lib \ NMIndexingService.exe
O23 - Service: OpenVPN Service (OpenVPNService) - Neznámý vlastník - C: \ Program Files \ OpenVPN \ bin \ openvpnserv.exe
O23 - Service: PC Angel (PCA) - Neznámý vlastník - C: \ WINDOWS \ TEMP \ UPDATE \ SMINST \ PCAngel.exe (file missing)
O23 - Service: Osobní Bezpečná disk Service (PersonalSecureDriveService) - Infineon Technologies AG - C: \ Program Files \ ProtectTools \ zabudovaný bezpečnostní Software \ PSDsrvc.EXE
O23 - Service: PML řidiče HPZ12 - HP - C: \ WINDOWS \ system32 \ HPZipm12.exe
O23 - Service: PnkBstrA - Neznámý vlastník - C: \ WINDOWS \ system32 \ PnkBstrA.exe
O23 - Service: Radia Management Agent (RMA) - Neznámý vlastník - C: / Novadigm / ManagementAgent / nvdkit.exe
O23 - Service: Remote Procedure Call (RPC) Čistá (rpcnet) - Absolute Software Corp. - C: \ WINDOWS \ system32 \ rpcnet.exe
O23 - Service: SolidConverterPDFReadSpool (SCPDFReadSpool) - Pevné Dokumenty, LLC - C: \ WINDOWS \ Installer \ MSIDD4.tmp
O23 - Service: ServiceLayer - Nokia. - C: \ Program Files \ PC řešení konektivity \ ServiceLayer.exe
O23 - Service: TuneUp disk Defrag Service (TuneUp.Defrag) - TuneUp Software - C: \ WINDOWS \ System32 \ TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistiky Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C: \ WINDOWS \ System32 \ TUProgSt.exe
O23 - Service: Broadcom Wireless LAN Zásobník Service (wltrysvc) - Neznámý vlastník - C: \ WINDOWS \ System32 \ WLTRYSVC.EXE

-
End of file - 46974 bytů

====== Složku Naplánované úlohy ======

C: \ WINDOWS \ úkoly \ 1-Click Maintenance.job
C: \ WINDOWS \ úkoly \ AppleSoftwareUpdate.job
C: \ WINDOWS \ úkoly \ Google Software Updater.job
C: \ WINDOWS \ úkoly \ GoogleUpdateTaskMachineCore.job
C: \ WINDOWS \ úkoly \ GoogleUpdateTaskMachineUA.job
C: \ WINDOWS \ úkoly \ MP Plánované Scan.job

[xaver100]

2. část

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
DriveLetterAccess - C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2005-08-31 110652]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{69D72956-317C-44bd-B369-8E44D4EF9801}]
SafeOnline BHO - C:\WINDOWS\system32\PxSecure.dll [2010-06-08 61952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-05-02 259696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-12-06 764912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C451C08A-EC37-45DF-AAAD-18B51AB5E837}]
PDFCreator Toolbar Helper - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll [2008-03-27 806912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C5D07EB6-BBCE-4DAE-ACBB-D13A8D28CB1F}]
PDF-XChange Viewer IE-Plugin - C:\Program Files\Tracker Software\PDF-XChange Viewer\pdf-viewer\PDFXCviewIEPlugin.dll [2008-08-31 1099032]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-03-16 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
HP Credential Manager for ProtectTools - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll [2005-03-03 50688]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-03-16 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - PDFCreator Toolbar - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll [2008-03-27 806912]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-05-02 259696]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MsmqIntCert"=regsvr32 /s mqrt.dll []
"AccelerometerSysTrayApplet"=C:\WINDOWS\system32\AccelerometerSt.exe [2006-01-16 53248]
"ATICCC"=C:\Program Files\ATI Technologies\ATI.ACE\cli.exe [2005-08-12 45056]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2005-11-10 761945]
"QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2006-03-02 131072]
"Cpqset"=C:\Program Files\HPQ\Default Settings\cpqset.exe [2006-02-22 40960]
"Recguard"=C:\WINDOWS\Sminst\Recguard.exe [2005-12-20 1187840]
"Reminder"=C:\WINDOWS\Creator\Remind_XP.exe [2006-03-09 806912]
"Scheduler"=C:\WINDOWS\SMINST\Scheduler.exe [2006-07-21 710296]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2007-06-11 98304]
"PTHOSTTR"=C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE [2006-02-14 122880]
"CognizanceTS"=C:\PROGRA~1\HPQ\IAM\Bin\AsTsVcc.dll [2003-12-22 17920]
"DLA"=C:\WINDOWS\System32\DLA\DLACTRLW.EXE [2005-08-31 122940]
"hpWirelessAssistant"=C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe [2006-02-14 454656]
"Broadcom Wireless Manager UI"=C:\WINDOWS\system32\WLTRAY.exe [2006-01-19 1236992]
"WatchDog"=C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2005-11-08 184320]
"AGRSMMSG"=C:\WINDOWS\AGRSMMSG.exe [2005-12-12 88203]
"CorelDRAW Graphics Suite 11b"=C:\Program Files\Corel\Corel Graphics 12\Languages\CZ\Programs\Registration.exe [2004-06-23 729088]
"PCSuiteTrayApplication"=C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe [2007-03-23 227328]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2007-01-05 872448]
"openvpn-gui"=C:\Program Files\OpenVPN\bin\openvpn-gui.exe [2005-04-21 98816]
"LogMeIn GUI"=C:\Program Files\LogMeIn\x86\LogMeInSystray.exe [2008-02-28 63048]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
"MSSE"=C:\Program Files\Microsoft Security Essentials\msseces.exe [2010-02-21 1093208]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2010-03-16 149280]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-03-24 952768]
"Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-05-06 30192]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Nokia.PCSync"=C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe [2007-03-27 1744896]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"COT"=C:\Program Files\CleverApp\Offline Timesheet II\cot.exe [2004-12-03 544768]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-04-03 39408]
"Infium"=C:\Program Files\QIP Infium\infium.exe [2009-10-08 5662720]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2010-05-13 26192168]
"X1FileMonitor.exe"=C:\Program Files\X1\X1FileMonitor.exe [2006-08-14 428544]
"Creative WebCam Tray"=C:\Program Files\Creative\Shared Files\CamTray.exe [2005-10-27 299008]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"DWQueuedReporting"=C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe [2008-11-04 435096]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2007-01-05 204288]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Shockwave Updater"=C:\WINDOWS\system32\Adobe\Shockwave 11\SwHelper_1150596.exe [2009-04-29 468408]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
AVer HID Receiver.lnk - C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
AVerQuick.lnk - C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
Bug Shooting.lnk - C:\Program Files\Bug Shooting\BugShooting.exe
DVD Check.lnk - C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe

C:\Documents and Settings\Petr Bláha\Nabídka Start\Programy\Po spuštění
OpenOffice.org 3.0.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2009-09-08 548352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-03-03 61440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\IfxWlxEN]
C:\WINDOWS\system32\IfxWlxEN.dll [2005-08-19 389120]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LMIinit]
C:\WINDOWS\system32\LMIinit.dll [2009-10-05 87352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\OneCard]
C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll [2005-07-25 40960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
WgaLogon.dll? []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0x00000000
"HideRunAsVerb"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\mqsvc.exe"="C:\WINDOWS\system32\mqsvc.exe:*:Enabled:Message Queuing"
"C:\WINDOWS\SMINST\Scheduler.exe"="C:\WINDOWS\SMINST\Scheduler.exe:*:Enabled:Scheduler "
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Trillian\trillian.exe"="C:\Program Files\Trillian\trillian.exe:*:Enabled:Trillian"
"C:\Program Files\OpenVPN\bin\openvpn.exe"="C:\Program Files\OpenVPN\bin\openvpn.exe:*:Enabled:openvpn"
"C:\Program Files\wincmd\Wincmd32.exe"="C:\Program Files\wincmd\Wincmd32.exe:*:Enabled:Windows Commander 32 bit international version, file manager replacement for Windows"
"C:\WINDOWS\system32\mstsc.exe"="C:\WINDOWS\system32\mstsc.exe:*:Enabled:Remote Desktop Connection"
"C:\WINDOWS\system32\spool\drivers\w32x86\3\HP1005MC.EXE"="C:\WINDOWS\system32\spool\drivers\w32x86\3\HP1005MC.EXE:*:Enabled:SMLMProxy Module - HP1005MC.EXE"
"C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe"="C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater"
"C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe"="C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process "
"C:\Program Files\HW group\HW VSP3s\HW_VSP3s_srv.exe"="C:\Program Files\HW group\HW VSP3s\HW_VSP3s_srv.exe:*:Enabled:HW Virtual Serial Port Single service"
"C:\Program Files\HW group\HW VSP3s\HW_VSP3s_client.exe"="C:\Program Files\HW group\HW VSP3s\HW_VSP3s_client.exe:*:Enabled:HW Virtual Serial Port Single client"
"C:\Program Files\TVUPlayer\TVUPlayer.exe"="C:\Program Files\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component"
"C:\WINDOWS\system32\mmc.exe"="C:\WINDOWS\system32\mmc.exe:*:Enabled:Konzola Microsoft Management Console"
"C:\Program Files\Elecard\Elecard Codec SDK G4 Eval\Bin\NW_Player.exe"="C:\Program Files\Elecard\Elecard Codec SDK G4 Eval\Bin\NW_Player.exe:*:Enabled:Elecard NWPlayer Sample"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\WINDOWS\system32\rtcshare.exe"="C:\WINDOWS\system32\rtcshare.exe:*:Enabled:Sdílení aplikací RTC"
"C:\Program Files\NetMeeting\conf.exe"="C:\Program Files\NetMeeting\conf.exe:*:Enabled:Windows® NetMeeting®"
"C:\WINDOWS\pchealth\helpctr\binaries\helpctr.exe"="C:\WINDOWS\pchealth\helpctr\binaries\helpctr.exe:*:Enabled:Vzdálená pomoc - Windows Messenger a přenos hlasu"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\Eclipse\eclipse\eclipse.exe"="C:\Program Files\Eclipse\eclipse\eclipse.exe:*:Enabled:eclipse"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\QIP Infium\infium.exe"="C:\Program Files\QIP Infium\infium.exe:*:Disabled:QIP Infium"
"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"C:\Program Files\Hamachi\hamachi.exe"="C:\Program Files\Hamachi\hamachi.exe:*:Enabled:Hamachi Client"
"C:\Program Files\Fortinet\FortiClient\FortiProxy.exe"="C:\Program Files\Fortinet\FortiClient\FortiProxy.exe:*:Enabled:FortiClient Proxy Service"
"C:\Program Files\Fortinet\FortiClient\ipsec.exe"="C:\Program Files\Fortinet\FortiClient\ipsec.exe:*:Enabled:FortiClient VPN Service"
"C:\Program Files\Fortinet\FortiClient\FortiWad.exe"="C:\Program Files\Fortinet\FortiClient\FortiWad.exe:*:Enabled:FortiClient Wan Optimization Service"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\mqsvc.exe"="C:\WINDOWS\system32\mqsvc.exe:*:Enabled:Message Queuing"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5ce49485-46b5-11dc-bf46-001a6b73f4b9}]
shell\AutoRun\command - wd_windows_tools\setup.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a596efcf-844f-11dc-bfd3-001a6b73f4b9}]
shell\AutoRun\command - setupSNK.exe


======List of files/folders created in the last 1 months======

2010-06-08 14:54:39 ----D---- C:\rsit
2010-06-08 12:56:58 ----A---- C:\WINDOWS\system32\PxSecure.dll
2010-06-08 12:56:51 ----D---- C:\Program Files\Prevx
2010-06-08 12:56:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\PrevxCSI
2010-06-08 11:59:30 ----A---- C:\TCleaner.txt
2010-06-08 11:38:33 ----A---- C:\WINDOWS\system32\agremove.exe
2010-06-08 11:32:36 ----SHD---- C:\RECYCLER
2010-06-08 11:32:10 ----D---- C:\záloha systemu
2010-06-08 10:52:24 ----A---- C:\Boot.bak
2010-06-08 10:52:20 ----RASHD---- C:\cmdcons
2010-06-08 10:45:09 ----A---- C:\WINDOWS\zip.exe
2010-06-08 10:45:09 ----A---- C:\WINDOWS\SWSC.exe
2010-06-08 10:45:09 ----A---- C:\WINDOWS\SWREG.exe
2010-06-08 10:45:09 ----A---- C:\WINDOWS\sed.exe
2010-06-08 10:45:09 ----A---- C:\WINDOWS\PEV.exe
2010-06-08 10:45:09 ----A---- C:\WINDOWS\NIRCMD.exe
2010-06-08 10:45:09 ----A---- C:\WINDOWS\grep.exe
2010-06-08 10:45:08 ----A---- C:\WINDOWS\SWXCACLS.exe
2010-06-08 10:42:41 ----D---- C:\WINDOWS\ERDNT
2010-06-08 09:49:26 ----A---- C:\WINDOWS\OEWABLog.txt
2010-06-07 18:40:04 ----N---- C:\WINDOWS\system32\rpcnet.exe
2010-06-07 18:40:04 ----A---- C:\WINDOWS\system32\rpcnet.dll
2010-06-07 18:22:00 ----A---- C:\WINDOWS\system32\rpcnetp.dll
2010-06-07 18:19:11 ----A---- C:\WINDOWS\system32\rpcnetp.exe
2010-05-31 08:12:58 ----D---- C:\Program Files\Common Files\soft602
2010-05-31 08:12:58 ----D---- C:\Documents and Settings\Petr Bláha\Data aplikací\602XML
2010-05-26 07:30:11 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2010-05-24 09:10:56 ----D---- C:\Pneuservis_demo
2010-05-18 16:54:44 ----D---- C:\Program Files\osFinancials
2010-05-18 14:52:11 ----D---- C:\Program Files\Penezni denik
2010-05-18 12:44:48 ----D---- C:\DECEPRAC
2010-05-18 11:32:34 ----D---- C:\Program Files\PROFIT
2010-05-12 10:17:53 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$

======List of files/folders modified in the last 1 months======

2010-06-08 14:55:51 ----D---- C:\Program Files\Trend Micro
2010-06-08 14:55:18 ----D---- C:\Documents and Settings\Petr Bláha\Data aplikací\Skype
2010-06-08 14:43:16 ----D---- C:\Program Files\AutoPlan
2010-06-08 14:35:07 ----A---- C:\WINDOWS\WINCMD.INI
2010-06-08 14:32:31 ----A---- C:\WINDOWS\ModemLog_Bluetooth Modem.txt
2010-06-08 14:32:23 ----A---- C:\WINDOWS\ModemLog_Agere Systems HDA Modem.txt
2010-06-08 13:58:25 ----D---- C:\WINDOWS
2010-06-08 13:57:23 ----D---- C:\WINDOWS\system32
2010-06-08 13:57:16 ----D---- C:\WINDOWS\Temp
2010-06-08 13:55:49 ----D---- C:\WINDOWS\system32\CatRoot2
2010-06-08 13:55:07 ----SD---- C:\WINDOWS\Tasks
2010-06-08 13:54:54 ----D---- C:\WINDOWS\system32\inetsrv
2010-06-08 13:50:54 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2010-06-08 13:49:46 ----SHD---- C:\WINDOWS\CSC
2010-06-08 12:56:57 ----D---- C:\WINDOWS\system32\drivers
2010-06-08 12:56:51 ----D---- C:\Program Files
2010-06-08 12:56:30 ----A---- C:\WINDOWS\wininit.ini
2010-06-08 12:23:31 ----D---- C:\Documents and Settings\Petr Bláha\Data aplikací\skypePM
2010-06-08 12:06:51 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-06-08 11:06:21 ----A---- C:\WINDOWS\system.ini
2010-06-08 11:02:46 ----D---- C:\WINDOWS\system32\config
2010-06-08 11:00:02 ----RD---- C:\WINDOWS\Fonts
2010-06-08 10:57:49 ----D---- C:\WINDOWS\AppPatch
2010-06-08 10:57:47 ----D---- C:\Program Files\Common Files
2010-06-08 10:52:24 ----RASH---- C:\boot.ini
2010-06-08 09:49:38 ----SHD---- C:\WINDOWS\Installer
2010-06-08 09:49:38 ----D---- C:\Config.Msi
2010-06-08 09:49:09 ----D---- C:\Documents and Settings
2010-06-08 08:52:50 ----D---- C:\WINDOWS\Prefetch
2010-06-07 17:28:54 ----D---- C:\Program Files\Pneuservis_2007
2010-06-05 16:14:58 ----D---- C:\Program Files\Microsoft Silverlight
2010-06-05 08:55:23 ----A---- C:\WINDOWS\wcx_ftp.ini
2010-06-04 12:11:05 ----D---- C:\WINDOWS\Registration
2010-06-04 07:20:15 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-06-03 15:34:00 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-06-01 11:55:56 ----D---- C:\WINDOWS\Minidump
2010-05-31 08:12:49 ----HD---- C:\WINDOWS\inf
2010-05-26 11:12:37 ----D---- C:\Program Files\PneuServis_SQL_Demo
2010-05-24 09:12:24 ----A---- C:\WINDOWS\ODBC.INI
2010-05-24 09:12:23 ----A---- C:\WINDOWS\ODBCINST.INI
2010-05-22 17:50:21 ----D---- C:\WINDOWS\network diagnostic
2010-05-18 15:45:25 ----D---- C:\Program Files\Mozilla Firefox
2010-05-18 14:09:18 ----D---- C:\Program Files\Aladdin
2010-05-17 16:26:14 ----D---- C:\WINDOWS\Help
2010-05-15 12:33:29 ----D---- C:\Program Files\Google
2010-05-13 07:33:46 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2010-05-13 07:28:12 ----D---- C:\Program Files\Spybot - Search & Destroy
2010-05-12 11:04:35 ----D---- C:\Program Files\Outlook Express
2010-05-12 10:18:34 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-05-12 10:18:05 ----A---- C:\WINDOWS\imsins.BAK
2010-05-12 10:17:57 ----RSHD---- C:\WINDOWS\system32\dllcache
2010-05-12 09:35:49 ----HD---- C:\WINDOWS\$hf_mig$
2010-05-10 11:40:48 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-05-10 09:32:02 ----A---- C:\WINDOWS\M3JPEG.INI

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 DLACDBHM;DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [2005-08-25 5628]
R1 DLARTL_N;DLARTL_N; C:\WINDOWS\System32\Drivers\DLARTL_N.SYS [2005-08-25 22684]
R1 eabfiltr;eabfiltr; C:\WINDOWS\system32\DRIVERS\eabfiltr.sys [2005-09-19 7808]
R1 EasyPos;EasyPos; C:\WINDOWS\System32\Drivers\EasyPos.sys [2008-12-12 2934]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
R1 eusk2par;EUTRON SmartKey Parallel Driver; \??\C:\WINDOWS\system32\Drivers\eusk2par.sys []
R1 FAFileMon;FAFileMon; C:\WINDOWS\system32\drivers\fortimon2.sys [2010-02-26 43112]
R1 FARegMon;FARegMon; C:\WINDOWS\system32\drivers\FortiRmon.sys [2010-02-26 46184]
R1 fortiapd;fortiapd; C:\WINDOWS\system32\drivers\fortiapd.sys [2010-02-26 13416]
R1 FortiPFW;FortiPFW; C:\WINDOWS\system32\drivers\FortiPFW.sys [2010-02-26 118504]
R1 Fortips;Fortips; C:\WINDOWS\system32\drivers\fortips.sys [2010-02-26 98024]
R1 FortiRdr;FortiRdr; C:\WINDOWS\system32\drivers\FortiRdr.sys [2010-02-26 29928]
R1 FortiShield;FortiShield; C:\WINDOWS\system32\drivers\FortiShield.sys [2010-02-26 37480]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2009-12-02 149040]
R1 PersonalSecureDrive;PersonalSecureDrive; C:\WINDOWS\System32\drivers\psd.sys [2005-10-25 35488]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys []
R1 truecrypt;truecrypt; C:\WINDOWS\System32\drivers\truecrypt.sys [2007-10-26 188576]
R1 vcdrom;Virtual CD-ROM Device Driver; \??\C:\WINDOWS\system32\drivers\VCdRom.sys []
R1 vmm;Virtual Machine Monitor; \??\C:\WINDOWS\system32\Drivers\vmm.sys []
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R2 DLABOIOM;DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [2005-08-31 25628]
R2 DLADResN;DLADResN; C:\WINDOWS\System32\DLA\DLADResN.SYS [2005-08-31 2496]
R2 DLAIFS_M;DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [2005-08-31 86524]
R2 DLAOPIOM;DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [2005-08-31 14684]
R2 DLAPoolM;DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [2005-08-31 6364]
R2 DLAUDF_M;DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [2005-08-31 87036]
R2 DLAUDFAM;DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [2005-08-31 94332]
R2 DRVNDDM;DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [2005-08-12 40544]
R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-02-06 55152]
R2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program Files\LogMeIn\x86\RaInfo.sys []
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\WINDOWS\system32\drivers\LMIRfsDriver.sys []
R2 pxrts;pxrts; C:\WINDOWS\System32\drivers\pxrts.sys [2010-06-08 61624]
R3 Accelerometer;Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2006-01-10 22016]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2007-10-01 281600]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2007-07-13 94976]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2005-12-12 1120352]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-03-03 1480704]
R3 ATSWPDRV;AuthenTec TruePrint USB Driver (AES2500); C:\WINDOWS\system32\DRIVERS\ATSwpDrv.sys [2006-03-10 130048]
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2005-10-26 142720]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2006-01-19 424320]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2006-02-15 30363]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2006-02-15 1342570]
R3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2006-02-15 148168]
R3 btwmodem;Bluetooth Modem; C:\WINDOWS\system32\DRIVERS\btwmodem.sys [2006-02-15 30189]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2006-02-15 57096]
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 Fortidrv2;Fortinet Packet Filter Service; C:\WINDOWS\system32\DRIVERS\fortidrv.sys [2010-01-04 22504]
R3 ft_vnic;Fortinet network virtual adapter; C:\WINDOWS\system32\DRIVERS\ftvnic.sys [2009-02-16 14496]
R3 GTIPCI21;GTIPCI21; C:\WINDOWS\system32\DRIVERS\gtipci21.sys [2005-05-31 87936]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2010-03-01 25280]
R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2005-09-19 9344]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IFXTPM;IFXTPM; C:\WINDOWS\system32\DRIVERS\IFXTPM.SYS [2005-06-10 35968]
R3 lmimirr;lmimirr; C:\WINDOWS\system32\DRIVERS\lmimirr.sys [2008-02-28 10144]
R3 MQAC;Message Queuing access control; \??\C:\WINDOWS\system32\drivers\mqac.sys []
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 pxkbf;pxkbf; C:\WINDOWS\System32\drivers\pxkbf.sys [2010-06-08 24400]
R3 RMCAST;Reliable Multicast Protocol driver; \??\C:\WINDOWS\system32\drivers\RMCast.sys []
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-18 5888]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2005-11-10 191936]
R3 tap0801;TAP-Win32 Adapter V8; C:\WINDOWS\system32\DRIVERS\tap0801.sys [2004-06-24 23552]
R3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys [2005-09-20 162432]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VPCNetS2;Virtual Machine Network Services Driver; C:\WINDOWS\system32\DRIVERS\VMNetSrv.sys [2007-01-29 59280]
R3 vsbus;Virtual Serial Bus Enumerator; C:\WINDOWS\system32\DRIVERS\vsb.sys [2006-12-20 17280]
S3 adusbmdm6501;AnyDATA CDMA USB Modem Driver (PID 6501); C:\WINDOWS\system32\DRIVERS\adusbmdm65.sys [2005-05-02 64896]
S3 adusbser6501;AnyDATA CDMA USB Serial Port (PID 6501); C:\WINDOWS\system32\DRIVERS\adusbser65.sys [2005-05-02 64896]
S3 AVerFx2hbtv;AVerMedia USB SW Hybrid Tuner; C:\WINDOWS\system32\drivers\AVerFx2hbtv.sys [2008-01-15 257024]
S3 axzt3mhp;axzt3mhp; C:\WINDOWS\system32\drivers\axzt3mhp.sys []
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 eabusb;eabusb; C:\WINDOWS\system32\DRIVERS\eabusb.sys [2005-09-19 5760]
S3 eusk3usb;SmartKey 3 USB; C:\WINDOWS\System32\Drivers\eusk3usb.sys [2004-11-18 45534]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 kvnet;Kerio Virtual Network Adapter; C:\WINDOWS\system32\DRIVERS\kvnet.sys [2009-03-23 29696]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2007-11-29 16896]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2007-11-29 19328]
S3 P1171VID;Creative WebCam Notebook #2; C:\WINDOWS\system32\DRIVERS\P1171Vid.sys [2004-03-19 91392]
S3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
S3 SABProcEnum;SABProcEnum; \??\C:\Program Files\Internet Explorer\SABProcEnum.sys []
S3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SMCIRDA;SMC IrCC Miniport Device Driver; C:\WINDOWS\system32\DRIVERS\smcirda.sys [2001-10-24 35913]
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 SYMIDSCO;SYMIDSCO; \??\C:\PROGRA~1\COMMON~1\SYMANT~1\SymcData\idsdefs\20070813.001\symidsco.sys []
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2007-11-29 8064]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;Nokia USB Serial Port; C:\WINDOWS\system32\DRIVERS\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2007-11-29 8064]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 vserial;ELTIMA Virtual Serial Ports Driver; C:\WINDOWS\System32\DRIVERS\vserial.sys [2006-12-20 45056]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688]
S4 LMIRfsClientNP;LMIRfsClientNP; C:\WINDOWS\system32\drivers\LMIRfsClientNP.sys []
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 602XML Updater;602Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [2010-04-14 73728]
R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-08-20 611664]
R2 Aladdin SQL Server;Aladdin SQL Server; C:\Program Files\Aladdin\Aladdin SQL Server\AladdinSQL.exe [2010-05-18 136192]
R2 ASChannel;Local Communication Channel; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-03-03 405504]
R2 AVerRemote;AVerRemote; C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe [2008-03-13 339968]
R2 AVerScheduleService;AVerScheduleService; C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe [2008-03-05 380928]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2006-02-15 258103]
R2 CSIScanner;CSIScanner; C:\Program Files\Prevx\prevx.exe [2010-06-08 6377352]
R2 FA_Scheduler;FortiClient Service Scheduler; C:\Program Files\Fortinet\FortiClient\scheduler.exe [2010-02-26 53266]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe [2007-12-12 65536]
R2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2006-01-12 98304]
R2 HW_VSP3s_Service;HW Virtual Serial Port (single); C:\Program Files\HW group\HW VSP3s\HW_VSP3s_srv.exe [2008-02-25 498968]
R2 IFXSpMgtSrv;Security Platform Management Service; C:\WINDOWS\system32\IFXSPMGT.exe [2006-01-10 458752]
R2 IFXTCS;Trusted Platform Core Service; C:\WINDOWS\system32\IFXTCS.exe [2005-09-02 647168]
R2 IISADMIN;Správa služby IIS; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-03-16 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-01-20 73728]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2006-10-26 335872]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Essentials\MsMpEng.exe [2009-12-09 17904]
R2 MSMQ;Message Queuing; C:\WINDOWS\system32\mqsvc.exe [2008-04-14 4608]
R2 MSMQTriggers;Message Queuing Triggers; C:\WINDOWS\system32\mqtgsvc.exe [2008-04-14 117248]
R2 MSSQL$KARSA;SQL Server (KARSA); c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2009-05-27 29262680]
R2 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
R2 PersonalSecureDriveService;Personal Secure Drive Service; C:\Program Files\ProtectTools\Embedded Security Software\PSDsrvc.EXE [2005-08-19 173600]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-08-22 75064]
R2 rma;Radia Management Agent; C:/Novadigm/ManagementAgent/nvdkit.exe []
R2 rpcnet;Remote Procedure Call (RPC) Net; C:\WINDOWS\system32\rpcnet.exe [2010-06-07 57752]
R2 SCPDFReadSpool;SolidConverterPDFReadSpool; C:\WINDOWS\Installer\MSIDD4.tmp [2009-03-18 189696]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
R2 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-24 239968]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-24 87904]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; C:\WINDOWS\System32\TUProgSt.exe [2009-05-14 604416]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 W3SVC;Publikování na webu; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808]
R2 wltrysvc;Broadcom Wireless LAN Tray Service; C:\WINDOWS\System32\WLTRYSVC.EXE [2006-01-19 18944]
R2 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe [2007-12-12 1531989]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2007-03-26 292864]
S2 gupdate1c9ff089e85b76;Služba Google Update (gupdate1c9ff089e85b76); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-07 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-06-27 183280]
S2 PCA;PC Angel; C:\WINDOWS\TEMP\UPDATE\SMINST\PCAngel.exe []
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 fsssvc;Windows Live Zabezpečení rodiny; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]
S3 GoogleDesktopManager-110309-193829;Google Desktop Manager 5.9.911.3589; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-05-06 30192]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2006-12-23 262144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 OpenVPNService;OpenVPN Service; C:\Program Files\OpenVPN\bin\openvpnserv.exe [2005-02-20 14336]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2009-05-14 361216]
S4 LMIMaint;LogMeIn Maintenance Service; C:\Program Files\LogMeIn\x86\RaMaint.exe [2009-10-05 116032]
S4 LogMeIn;LogMeIn; C:\Program Files\LogMeIn\x86\LogMeIn.exe [2008-02-28 63040]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-24 45408]

-----------------EOF-----------------

[motji]

Otestujte na www.virustotal.com
C:\WINDOWS\system32\agremove.exe
-Na virustotalu dáte procházet, a do spodního okénka nakopírujete přímo cestu k souboru a dáte odeslat
-z prohlížeče zkopírujete adresu ke stránce s výsledky
-pokud se Vás zeptá, dejte soubor otestovat znovu, tak aby to byl soubor z Vašeho počítače


Vidím že jste použil combofix , nikde ale nevidím log, combofix Vám žádný nevytvořil? A přečtěte si varování v mém podpise, může poškodit systém

[xaver100]

K tomuto problému jsem objevil toto:
http://www.freakyacres.com/remove_compu ... ack?page=1

Zejména pak tato část:
One more easy way to stop Computrace activity for Win XP with NTFS file system users. SOrry for my English, and some wordings may differ as I'm using non-English version of XP but I'll try to explain...You just need to go to system32 folder, locate rpcnetp.exe, rpcnetp.dll, agremove.exe (if exists) and remove permissions for these files. BIOS Computrace program does not rewrite these files once OS boots. So, right click on properties of each file, open Security tab, remove all groups/users/permissions from the list by clicking on Advanced button below, then untick "Inherit from parent blah blah.." which is under permission list on the Permission tab thus clearing this list. Click Yes to close the pop-up warning that says something like "Nobody will be permitted to have an access to this file...". So, finally these files will remain in system32 folder but will have no groups/users and no permissions to access to and rpcnetp service will not start any more. It worked fine for me and I'm no longer notified by my antivirus about this.


Moc se mi tomu nechtělo věřit, ale podle popisu jsem si vyhledal všechny tři soubory, o kterých se zde hovoří a všechny mají jako tvůrce stejnou firmu.
Tou je Absolute Software Corp.
http://www.absolute.com/

Pak jsem si uvědomil, že mi měnili desku v notasu.
Tento problém u mě nastal právě po výměně desky.
Sakra že by to byla pravda a byl by problém v Computraci?

[motji]

Prosím můžete mi odpovědět na ten příspěvek výše? Já si zatím pročtu ten článek

[xaver100]

Výsledek testu na virustotal.
Jediný kdo s tím měl problém byl McAfee-GW-Edition

a-squared 5.0.0.26 2010.06.09 -
AhnLab-V3 2010.06.09.00 2010.06.09 -
AntiVir 8.2.2.6 2010.06.08 -
Antiy-AVL 2.0.3.7 2010.06.08 -
Authentium 5.2.0.5 2010.06.09 -
Avast 4.8.1351.0 2010.06.08 -
Avast5 5.0.332.0 2010.06.08 -
AVG 9.0.0.787 2010.06.08 -
BitDefender 7.2 2010.06.09 -
CAT-QuickHeal 10.00 2010.06.09 -
ClamAV 0.96.0.3-git 2010.06.09 -
Comodo 5035 2010.06.09 -
DrWeb 5.0.2.03300 2010.06.09 -
eSafe 7.0.17.0 2010.06.08 -
eTrust-Vet 36.1.7621 2010.06.09 -
F-Prot 4.6.0.103 2010.06.08 -
F-Secure 9.0.15370.0 2010.06.09 -
Fortinet 4.1.133.0 2010.06.08 -
GData 21 2010.06.09 -
Ikarus T3.1.1.84.0 2010.06.09 -
Jiangmin 13.0.900 2010.06.09 -
Kaspersky 7.0.0.125 2010.06.09 -
McAfee 5.400.0.1158 2010.06.09 -
McAfee-GW-Edition 2010.1 2010.06.08 Heuristic.BehavesLike.Win32.Downloader.C
Microsoft 1.5802 2010.06.08 -
NOD32 5183 2010.06.08 -
Norman 6.04.12 2010.06.08 -
nProtect 2010-06-09.01 2010.06.09 -
Panda 10.0.2.7 2010.06.08 -
PCTools 7.0.3.5 2010.06.09 -
Rising 22.51.02.01 2010.06.09 -
Sophos 4.53.0 2010.06.09 -
Sunbelt 6422 2010.06.09 -
Symantec 20101.1.0.89 2010.06.09 -
TheHacker 6.5.2.0.295 2010.06.08 -
TrendMicro 9.120.0.1004 2010.06.09 -
TrendMicro-HouseCall 9.120.0.1004 2010.06.09 -
VBA32 3.12.12.5 2010.06.08 -
ViRobot 2010.6.9.2344 2010.06.09 -
VirusBuster 5.0.27.0 2010.06.08 -
Rozšiřující informace
File size: 44544 bytes
MD5...: 9f2457cd8ec5e60ae852bf333385f2ac
SHA1..: bb6791894fc11ee68665411353411295af856e5d
SHA256: cd1dc21c324eec7f73f935f41cc4901e48709f1dcf62f4ed421f4db9dc708acb
ssdeep: 768:3ksbl3bHrH9BhVjGS2lqh+mX5xVYbwuxLBOZzSBvxgGstQ5q:3ksbxbpBDrF
hhz+bw24z6Cjtwq
PEiD..: -
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x1ae00
timedatestamp.....: 0x4422e82e (Thu Mar 23 18:25:50 2006)
machinetype.......: 0x14c (I386)

( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
UPX0 0x1000 0x10000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
UPX1 0x11000 0xa000 0xa000 7.90 9cd5adcec0ff888cb4ffa8a58934851e
.rsrc 0x1b000 0x1000 0xa00 3.34 49dfe60daf93bdfc68058446a7394ad2

( 4 imports )
> KERNEL32.DLL: LoadLibraryA, GetProcAddress, ExitProcess
> ADVAPI32.dll: FreeSid
> USER32.dll: wsprintfA
> WS2_32.dll: -

( 0 exports )
RDS...: NSRL Reference Data Set
-
trid..: UPX compressed Win32 Executable (39.5%)
Win32 EXE Yoda's Crypter (34.3%)
Win32 Executable Generic (11.0%)
Win32 Dynamic Link Library (generic) (9.8%)
Generic Win/DOS Executable (2.5%)
packers (Kaspersky): UPX
pdfid.: -
sigcheck:
publisher....: Absolute Software Corp.
copyright....: Copyright (c) 2005 Absolute Software Corp.
product......: agremove
description..: agremove.exe
original name: agremove.exe
internal name: agremove.exe
file version.: 0, 0, 0, 0
comments.....: Installation/Management Application
signers......: -
signing date.: -
verified.....: Unsigned
packers (F-Prot): UPX

Log mi combofix nevytvořil

[JaRon]

pokial sa neobjavi kolegyna, aby si nebol v necinnosti prescanuj PC s http://www.surfright.nl/en/hitmanpro

[xaver100]

udělal jsem a PC je čistý. Žádný problém nenalezen

[motji]

Máte v počítači nějak moc antivirů a antispyware , ponechte pouze 1 antivir, 1 antispyware a 1 firewall.

Zkuste to podle toho odkazu, ale předtím si vytvořte bod obnovy, pro jistotu

[motji]

Jak to tu vypadá?