VIRY.CZ

Dobrý den,prosím o kontrolu logu,mám problém s vypínaním notebooku,vyskakuje okno nsappshell event window ukončit program.Vopred za pomoc ďakujem.

Logfile of random's system information tool 1.08 (written by random/random)
Run by Milos at 2011-01-20 15:26:19
Systém Microsoft Windows XP Professional Service Pack 3, v.5973
System drive C: has 11 GB (27%) free of 40 GB
Total RAM: 895 MB (21% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:26:32, on 20. 1. 2011
Platform: Windows XP SP3, v.5973 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.21295)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ATK0100\HControl.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\Program Files\Wireless Console 2\wcourier.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\vsnp2std.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\LClock\LClock.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Documents and Settings\All Users\Application Data\LangSoft\OETRN.EXE
C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\Program Files\Styler\Styler.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Common Files\Nokia\NoA\nokiaaserver.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Milos\Desktop\RSIT.exe
C:\Program Files\trend micro\Milos.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.live.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - (no file)
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: StylerToolBar - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Program Files\Styler\TB\StylerTB.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - (no file)
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [Wireless Console 2] C:\Program Files\Wireless Console 2\wcourier.exe
O4 - HKLM\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [LClock] C:\Program Files\LClock\LClock.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [OEXPRESS] C:\Documents and Settings\All Users\Application Data\LangSoft\OETRN.EXE
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Milos\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O4 - Startup: Styler.lnk = ?
O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Prevziať cez IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Prevziať cez IDM všetky prepojenia - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Prevziať obsah FLV cez IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:\WINDOWS\system32\drivers\pclepci.sys
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

--
End of file - 12883 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-1757981266-1801674531-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-1757981266-1801674531-1003UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2009-05-07 169392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-10 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll [2010-01-24 798771]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-11-24 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-11-24 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - StylerToolBar - C:\Program Files\Styler\TB\StylerTB.dll [2006-05-02 102400]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll [2010-01-24 798771]
{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} -

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HControl"=C:\WINDOWS\ATK0100\HControl.exe [2006-10-14 110592]
"UnlockerAssistant"=C:\Program Files\Unlocker\UnlockerAssistant.exe [2008-05-02 15872]
"IMJPMIG8.1"=C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2008-04-14 208952]
"MSPY2002"=C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe [2008-04-14 59392]
"PHIME2002ASync"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2008-04-14 455168]
"PHIME2002A"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2008-04-14 455168]
"Wireless Console 2"=C:\Program Files\Wireless Console 2\wcourier.exe [2005-10-17 987136]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"SMSERIAL"=C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2006-11-22 630784]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-09-03 16841216]
"SkyTel"=C:\WINDOWS\SkyTel.EXE [2007-08-03 1826816]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"snp2std"=C:\WINDOWS\vsnp2std.exe [2006-09-15 675840]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2008-07-19 78008]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [2010-11-10 35736]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-10 932288]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"LClock"=C:\Program Files\LClock\LClock.exe [2004-09-19 65536]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-03-22 1271808]
"IDMan"=C:\Program Files\Internet Download Manager\IDMan.exe [2010-01-17 2815408]
"OEXPRESS"=C:\Documents and Settings\All Users\Application Data\LangSoft\OETRN.EXE [2010-01-24 26624]
"Google Update"=C:\Documents and Settings\Milos\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-05-09 136176]
""= []
"NokiaOviSuite2"=C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2010-09-02 672632]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IJKUK66HMN]
C:\DOCUME~1\Milos\LOCALS~1\Temp\Gjh.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Bluetooth Manager.lnk]
C:\PROGRA~1\Toshiba\BLUETO~1\TOSBTM~1.EXE [2006-05-24 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Milos^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~1\MICROS~2\Office12\ONENOTEM.EXE [2008-10-25 98696]

C:\Documents and Settings\Milos\Start Menu\Programs\Startup
Styler.lnk - C:\Documents and Settings\Milos\Application Data\Microsoft\Installer\{E9ECF354-2422-4FDB-9ABF-D8ADAC0EF941}\_585b207a.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2007-07-27 118784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WBSrv]
C:\Program Files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll [2008-05-12 210168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 239496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2008-05-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2011-01-20 15:26:20 ----D---- C:\Program Files\trend micro
2011-01-20 15:26:19 ----D---- C:\rsit
2011-01-19 09:20:35 ----D---- C:\Program Files\Common Files\Adobe AIR
2011-01-12 21:31:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2011-01-10 21:51:30 ----A---- C:\WINDOWS\system32\wvc1dmod.dll
2011-01-10 21:51:30 ----A---- C:\WINDOWS\system32\vp7vfw.dll
2011-01-05 14:47:14 ----A---- C:\WINDOWS\system32\javaws.exe
2011-01-05 14:47:14 ----A---- C:\WINDOWS\system32\javaw.exe
2011-01-05 14:47:14 ----A---- C:\WINDOWS\system32\java.exe
2010-12-30 18:29:27 ----D---- C:\Program Files\SmileyCentral_1vEI

======List of files/folders modified in the last 1 months======

2011-01-20 15:26:32 ----D---- C:\WINDOWS\Prefetch
2011-01-20 15:26:20 ----D---- C:\Program Files
2011-01-20 15:14:00 ----D---- C:\Program Files\Hunt Virus Utilities
2011-01-20 15:07:31 ----D---- C:\WINDOWS\Temp
2011-01-20 12:38:08 ----A---- C:\Program Files\TRANSLAT.INI
2011-01-20 12:38:07 ----D---- C:\Documents and Settings\Milos\Application Data\DMCache
2011-01-20 12:37:16 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-01-20 12:37:10 ----D---- C:\WINDOWS\system32\CatRoot2
2011-01-20 11:55:15 ----D---- C:\Program Files\PowerCmd
2011-01-20 09:45:43 ----D---- C:\Documents and Settings\Milos\Application Data\Desktopicon
2011-01-20 09:39:52 ----D---- C:\WINDOWS
2011-01-20 09:39:10 ----D---- C:\Config.Msi
2011-01-20 09:36:17 ----SD---- C:\Documents and Settings\Milos\Application Data\Microsoft
2011-01-20 09:36:17 ----D---- C:\Documents and Settings\Milos\Application Data\Adobe
2011-01-20 09:33:41 ----D---- C:\Program Files\Unlocker
2011-01-19 09:24:15 ----SHD---- C:\WINDOWS\Installer
2011-01-19 09:23:51 ----D---- C:\Program Files\Common Files\Adobe
2011-01-19 09:23:35 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2011-01-19 09:23:23 ----D---- C:\Program Files\Adobe
2011-01-19 09:22:22 ----D---- C:\WINDOWS\system32
2011-01-19 09:20:35 ----D---- C:\Program Files\Common Files
2011-01-16 22:35:48 ----D---- C:\Documents and Settings\Milos\Application Data\Vso
2011-01-15 18:27:11 ----A---- C:\moduleName.txt
2011-01-14 16:34:48 ----D---- C:\WINDOWS\SoftwareDistribution
2011-01-14 06:46:26 ----D---- C:\WINDOWS\Debug
2011-01-12 21:31:18 ----A---- C:\WINDOWS\system32\mrt.exe
2011-01-12 21:31:14 ----HD---- C:\WINDOWS\inf
2011-01-12 21:31:07 ----D---- C:\WINDOWS\system32\dllcache
2011-01-12 14:45:51 ----HD---- C:\WINDOWS\$hf_mig$
2011-01-10 21:51:55 ----D---- C:\WINDOWS\system32\drivers
2011-01-10 21:51:47 ----A---- C:\Documents and Settings\Milos\Application Data\inst.exe
2011-01-10 21:51:32 ----D---- C:\Program Files\VSO
2011-01-05 14:47:10 ----D---- C:\Program Files\Java
2011-01-05 14:02:34 ----D---- C:\WINDOWS\system32\CatRoot
2011-01-05 14:01:14 ----D---- C:\WINDOWS\system32\en-US
2011-01-04 21:25:06 ----D---- C:\Documents and Settings\Milos\Application Data\Skype
2011-01-04 21:22:15 ----D---- C:\Documents and Settings\Milos\Application Data\skypePM

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ohci1394;OHCI Compliant IEEE 1394 Host Controller; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-01-17 685816]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-07-13 91904]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2008-07-19 26944]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2008-07-19 78416]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2008-07-19 42912]
R1 Tosrfcom;Bluetooth RFCOMM from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2005-08-01 64896]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2008-04-14 12032]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-07-19 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2008-07-19 94416]
R2 rimmptsk;rimmptsk; C:\WINDOWS\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\WINDOWS\system32\DRIVERS\rimsptsk.sys [2007-01-23 42496]
R3 AR5211;Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2007-12-13 547904]
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-05-18 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2008-07-19 23152]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2007-07-27 2371584]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IFXTPM;IFXTPM; C:\WINDOWS\system32\DRIVERS\IFXTPM.SYS [2007-01-23 36608]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-09-05 4611072]
R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2007-01-04 171520]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-05-18 12160]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ATKACPI.sys [2005-02-17 5632]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-05-18 61824]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2011-01-10 47360]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-01-04 105856]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-14 79232]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\WINDOWS\system32\DRIVERS\seehcri.sys [2010-09-29 27632]
R3 smserial;smserial; C:\WINDOWS\system32\DRIVERS\smserial.sys [2006-11-22 982272]
R3 SNP2STD;USB2.0 PC Camera (SNP2STD); C:\WINDOWS\system32\DRIVERS\snp2sxp.sys [2007-03-30 12033024]
R3 tosporte;Bluetooth Port Driver from Toshiba; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2006-04-19 47488]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys []
S3 aprxslc8;aprxslc8; C:\WINDOWS\system32\drivers\aprxslc8.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files\MediaCoder\SysInfo.sys []
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2010-09-29 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2010-09-29 25512]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2010-02-26 18176]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2010-02-26 22528]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2008-04-14 5888]
S3 s1039bus;Sony Ericsson Device 1039 driver (WDM); C:\WINDOWS\system32\DRIVERS\s1039bus.sys [2009-11-19 98672]
S3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s1039mdfl.sys [2009-11-19 14960]
S3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s1039mdm.sys [2009-11-19 124016]
S3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s1039mgmt.sys [2009-11-19 117872]
S3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS); C:\WINDOWS\system32\DRIVERS\s1039nd5.sys [2009-11-19 25456]
S3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s1039obex.sys [2009-11-19 113904]
S3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM); C:\WINDOWS\system32\DRIVERS\s1039unic.sys [2009-11-19 123504]
S3 sffdisk;SFF Storage Class Driver; C:\WINDOWS\system32\DRIVERS\sffdisk.sys [2008-04-14 11904]
S3 sffp_sd;SFF Storage Protocol Driver for SDBus; C:\WINDOWS\system32\DRIVERS\sffp_sd.sys [2008-04-14 11008]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 toshidpt;TOSHIBA Bluetooth HID port driver; C:\WINDOWS\system32\drivers\Toshidpt.sys [2005-07-11 3712]
S3 Tosrfbd;Bluetooth RFBUS from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbd.sys [2006-05-18 110976]
S3 Tosrfbnp;Bluetooth RFBNEP from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2006-03-16 37632]
S3 Tosrfhid;Bluetooth RFHID from TOSHIBA; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2006-05-09 62848]
S3 tosrfnds;Bluetooth Personal Area Network from TOSHIBA; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
S3 TosRfSnd;Bluetooth Audio Device (WDM) from TOSHIBA; C:\WINDOWS\system32\drivers\TosRfSnd.sys [2006-03-15 52864]
S3 Tosrfusb;Bluetooth USB Controller; C:\WINDOWS\System32\Drivers\tosrfusb.sys [2006-05-09 40192]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2010-02-26 8192]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2010-02-26 8192]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2008-05-18 38528]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-07-13 132224]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2008-07-19 16056]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2007-07-27 483328]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2008-07-19 147640]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-11-12 153376]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-09-23 935208]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-02-25 1047880]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2008-07-19 250040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2008-07-19 348344]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-06-14 615936]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 PCLEPCI;PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [2005-02-09 14165]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2010-07-11 435016]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Zdravim

Stiahnes>>OTMoveIt3 by OldTimer >.podla navodu vloz text a klik-Moveit>>log po restarte vloz sem

Kód: Vybrat vše

:processes
explorer.exe

:files
C:\WINDOWS\system32\*.tmp.dll /s
C:\WINDOWS\system32\SET*.tmp /s
C:\WINDOWS\*.tmp /s
C:\DOCUME~1\Milos\LOCALS~1\Temp\Gjh.exe
ipconfig /flushdns /c 
:reg
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IJKUK66HMN]

:Commands
[emptytemp]
[clearallrestorepoints]
[start explorer]
[Reboot]

Stiahnes>>mbam-setup
Nainstalovat, aktualizovat, a spustit skan.
Spravit Uplny skan, co najde daj zmazat,
Log vloz sem.

Stiahnes na plochu TFC
zatvor vsetko co mas otvorene a spust-po skane restart.

PROSIM CITAJTE POZORNE NAVOD!!!,

Použij ComboFix podle tohoto návodu: http://www.bleepingcomputer.com/combofi ... t-combofix
Log znej vloz sem.

Po použití OTM mi uplne zamrzol notebook,musel som ho natvrdo vypnut....

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
C:\WINDOWS\SET3.tmp moved successfully.
C:\WINDOWS\SET4.tmp moved successfully.
C:\WINDOWS\SET8.tmp moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1D6.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP295.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2B2.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2E2.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2F5.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP475.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP53.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP553.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5A4.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP69F.tmp folder moved successfully.
C:\WINDOWS\CSC\csc1.tmp moved successfully.
C:\WINDOWS\Installer\MSI58.tmp moved successfully.
C:\WINDOWS\system32\CONFIG.TMP moved successfully.
C:\WINDOWS\system32\uxt2A6.tmp moved successfully.
C:\WINDOWS\system32\config\systemprofile\7zS2530.tmp folder moved successfully.
C:\WINDOWS\system32\config\systemprofile\7zS2536.tmp folder moved successfully.
C:\WINDOWS\system32\config\systemprofile\7zS2551.tmp folder moved successfully.
C:\WINDOWS\system32\config\systemprofile\7zS2553.tmp folder moved successfully.
C:\WINDOWS\system32\config\systemprofile\7zS2557.tmp folder moved successfully.
C:\WINDOWS\system32\config\systemprofile\7zS2559.tmp folder moved successfully.
File/Folder C:\DOCUME~1\Milos\LOCALS~1\Temp\Gjh.exe not found.
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Documents and Settings\Milos\Desktop\cmd.bat deleted successfully.
C:\Documents and Settings\Milos\Desktop\cmd.txt deleted successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IJKUK66HMN\ deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56502 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Milos
->Temp folder emptied: 1551947 bytes
->Temporary Internet Files folder emptied: 831714 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 165063882 bytes
->Google Chrome cache emptied: 263587081 bytes
->Flash cache emptied: 792 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 115171 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 138619772 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 544,00 mb

Restore points cleared and new OTM Restore Point set!

OTM by OldTimer - Version 3.1.17.2 log created on 01202011_200122

Files moved on Reboot...
C:\WINDOWS\temp\_avast4_\Webshlock.txt moved successfully.
C:\WINDOWS\temp\Perflib_Perfdata_128.dat moved successfully.

Registry entries deleted on Reboot...

Ano, to moze byt, mozno ze ti to chytil Firewall, nevadi, pokracuj dalej,podla navodu.

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Verze databáze: 5561

Windows 5.1.2600 Service Pack 3, v.5973
Internet Explorer 7.0.5730.13

20. 1. 2011 21:06:41
mbam-log-2011-01-20 (21-06-41).txt

Typ kontroly: Úplný test (C:\|D:\|)
Testované objekty: 233338
Uplynulý čas: 45 minut, 31 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 3
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 9

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
HKEY_CURRENT_USER\SOFTWARE\IJKUK66HMN (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\SMH2B46TDP (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Handle (Malware.Trace) -> Quarantined and deleted successfully.

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
c:\program files\internet download manager\Patch.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\documents and settings\Milos\my documents\downloads\keymaker\keymaker.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
d:\v3.7.2.188\keygen-paradox\keygen.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\program files\C4COM.DLL (Spyware.OnlineGames) -> Quarantined and deleted successfully.
c:\program files\CAGENT.DLL (Spyware.OnlineGames) -> Quarantined and deleted successfully.
c:\program files\CDV32.DLL (Spyware.OnlineGames) -> Quarantined and deleted successfully.
c:\program files\cnxfdg1en.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
c:\program files\OGGC.DLL (Spyware.OnlineGames) -> Quarantined and deleted successfully.
c:\program files\ZLIB.DLL (Spyware.OnlineGames) -> Quarantined and deleted successfully.

ok, este combofix.

ComboFix 11-01-19.04 - Milos . 01. 2011 21:27:31.1.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1033.18.895.325 [GMT 1:00]
Spuštěný z: c:\documents and settings\Milos\Desktop\ComboFix.exe
AV: avast! antivirus 4.8.1227 [VPS 110120-2] *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
* Vytvořen nový Bod Obnovení
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Default User\Application Data\Desktopicon
c:\documents and settings\Milos\Application Data\Desktopicon
c:\documents and settings\Milos\Application Data\inst.exe
c:\windows\system32\config\systemprofile\Application Data\Desktopicon
c:\windows\system32\Thumbs.db

.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_SSHNAS

((((((((((((((((((((((((( Soubory vytvořené od 2010-12-20 do 2011-01-20 )))))))))))))))))))))))))))))))
.

2011-01-20 20:35 . 2011-01-20 20:35 -------- d-----w- c:\windows\system32\xircom
2011-01-20 20:35 . 2011-01-20 20:35 -------- d-----w- c:\windows\system32\wbem\snmp
2011-01-20 19:17 . 2011-01-20 19:17 -------- d-----w- c:\documents and settings\Milos\Application Data\Malwarebytes
2011-01-20 19:17 . 2010-12-20 17:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-01-20 19:17 . 2011-01-20 19:17 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2011-01-20 19:17 . 2011-01-20 19:17 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-01-20 19:17 . 2010-12-20 17:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-01-20 19:01 . 2011-01-20 19:01 -------- d-----w- C:\_OTM
2011-01-20 17:08 . 2011-01-20 17:08 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer
2011-01-20 17:07 . 2011-01-20 17:07 -------- d-----w- c:\program files\Common Files\Apple
2011-01-20 16:25 . 2011-01-20 16:25 -------- d-----w- c:\program files\MozBackup
2011-01-20 14:26 . 2011-01-20 14:26 -------- d-----w- c:\program files\trend micro
2011-01-20 14:26 . 2011-01-20 14:26 -------- d-----w- C:\rsit
2011-01-19 08:20 . 2011-01-19 08:20 -------- d-----w- c:\program files\Common Files\Adobe AIR
2011-01-10 20:51 . 2009-09-02 11:44 626688 ----a-w- c:\windows\system32\vp7vfw.dll
2011-01-10 20:51 . 2009-09-02 11:44 1184984 ----a-w- c:\windows\system32\wvc1dmod.dll
2010-12-30 17:29 . 2010-12-30 17:29 -------- d-----w- c:\program files\SmileyCentral_1vEI

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-01-10 20:51 . 2010-01-17 21:03 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
2011-01-10 20:51 . 2010-01-17 21:03 47360 ----a-w- c:\documents and settings\Milos\Application Data\pcouffin.sys
2010-11-29 16:38 . 2010-11-29 16:38 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2010-11-29 16:38 . 2010-11-29 16:38 69632 ----a-w- c:\windows\system32\QuickTime.qts
2010-11-18 18:12 . 2010-01-17 17:11 81920 ----a-w- c:\windows\system32\isign32.dll
2010-11-12 17:53 . 2010-05-25 15:56 472808 ----a-w- c:\windows\system32\deployJava1.dll
2010-11-12 15:34 . 2010-05-25 15:56 73728 ----a-w- c:\windows\system32\javacpl.cpl
2010-11-09 14:52 . 2008-04-14 12:00 249856 ----a-w- c:\windows\system32\odbc32.dll
2010-11-06 00:34 . 2008-05-18 11:03 841216 ----a-w- c:\windows\system32\wininet.dll
2010-11-06 00:34 . 2008-04-14 12:00 1830912 ----a-w- c:\windows\system32\inetcpl.cpl
2010-11-06 00:34 . 2008-05-18 11:03 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-11-06 00:34 . 2008-05-18 11:03 17408 ----a-w- c:\windows\system32\corpol.dll
2010-11-03 12:00 . 2008-05-18 11:03 389120 ----a-w- c:\windows\system32\html.iec
2010-11-02 15:17 . 2008-04-14 12:00 40960 ----a-w- c:\windows\system32\drivers\ndproxy.sys
2010-10-28 13:13 . 2008-04-14 12:00 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-10-26 13:25 . 2008-04-14 12:00 1853312 ----a-w- c:\windows\system32\win32k.sys
2010-01-24 17:00 . 2010-01-24 17:00 2535476 ----a-w- c:\program files\TRNCOM.DLL
2010-01-24 17:00 . 2010-01-24 17:00 360448 ----a-w- c:\program files\tx4ole14.ocx
2010-01-24 16:59 . 2010-01-24 16:59 1466368 ----a-w- c:\program files\trnexe.exe
2010-01-24 16:59 . 2010-01-24 16:59 188416 ----a-w- c:\program files\trnprg.exe
2010-01-24 16:59 . 2010-01-24 16:59 1056768 ----a-w- c:\program files\TX14_DOX.DLL
2010-01-24 16:59 . 2010-01-24 16:59 65536 ----a-w- c:\program files\TX14_WND.DLL
2010-01-24 16:59 . 2010-01-24 16:59 385024 ----a-w- c:\program files\TX14_XML.DLL
2010-01-24 16:59 . 2010-01-24 16:59 131072 ----a-w- c:\program files\TX14_IC.DLL
2010-01-24 16:59 . 2010-01-24 16:59 331776 ----a-w- c:\program files\TX14_CSS.DLL
2010-01-24 16:59 . 2010-01-24 16:59 327680 ----a-w- c:\program files\TX14_OBJ.DLL
2010-01-24 16:59 . 2010-01-24 16:59 249856 ----a-w- c:\program files\TX14_HTM.DLL
2010-01-24 16:59 . 2010-01-24 16:59 217088 ----a-w- c:\program files\TX14_TLS.DLL
2010-01-24 16:59 . 2010-01-24 16:59 618496 ----a-w- c:\program files\TX14_PDF.DLL
2010-01-24 16:59 . 2010-01-24 16:59 557056 ----a-w- c:\program files\TX14_RTF.DLL
2010-01-24 16:59 . 2010-01-24 16:59 765952 ----a-w- c:\program files\TX14.DLL
2010-01-24 16:59 . 2010-01-24 16:59 667648 ----a-w- c:\program files\TX14_DOC.DLL
2010-01-24 16:59 . 2010-01-24 16:59 360448 ----a-w- c:\program files\TX4ole14.oc_
2010-01-24 16:59 . 2010-01-24 16:59 73728 ----a-w- c:\program files\TX14_tif.flt
2010-01-24 16:59 . 2010-01-24 16:59 53248 ----a-w- c:\program files\TX14_wmf.flt
2010-01-24 16:59 . 2010-01-24 16:59 61440 ----a-w- c:\program files\TX14_bmp.flt
2010-01-24 16:59 . 2010-01-24 16:59 57344 ----a-w- c:\program files\TX14_gif.flt
2010-01-24 16:59 . 2010-01-24 16:59 253952 ----a-w- c:\program files\TX14_png.flt
2010-01-24 16:59 . 2010-01-24 16:59 200704 ----a-w- c:\program files\TX14_jpg.flt
2010-01-24 16:59 . 2010-01-24 16:59 1675264 ----a-w- c:\program files\WtrTMX.dll
2010-01-24 16:59 . 2010-01-24 16:59 581632 ----a-w- c:\program files\MAILTRAN.EXE
2010-01-24 16:59 . 2010-01-24 16:59 62464 ----a-w- c:\program files\WRITE32.WPC
2010-01-24 16:59 . 2010-01-24 16:59 164352 ----a-w- c:\program files\MSWD6_32.WPC
2010-01-24 16:59 . 2010-01-24 16:59 798771 ----a-w- c:\program files\WEBIE.DL_
2010-01-24 16:59 . 2010-01-24 16:59 2535476 ----a-w- c:\program files\TRNCOM.DL_
2010-01-24 16:59 . 2010-01-24 16:59 98304 ----a-w- c:\program files\MAILTRANc.DLL
2010-01-24 16:59 . 2010-01-24 16:59 57344 ----a-w- c:\program files\WDCTM32c.DLL
2010-01-24 16:59 . 2010-01-24 16:59 356352 ----a-w- c:\program files\TRNOUTL.DL_
2010-01-24 16:59 . 2010-01-24 16:59 299008 ----a-w- c:\program files\TRNWORD.DL_
2010-01-24 16:59 . 2010-01-24 16:59 942080 ----a-w- c:\program files\WTRAN32c.DLL
2010-01-24 16:59 . 2010-01-24 16:59 847872 ----a-w- c:\program files\WDICT32c.DLL
2010-01-24 16:59 . 2010-01-24 16:59 244224 ----a-w- c:\program files\WEN.DLL
2010-01-24 16:59 . 2010-01-24 16:59 548864 ----a-w- c:\program files\C4DLL323.DLL
2010-01-24 16:59 . 2010-01-24 16:59 11264 ----a-w- c:\program files\WWWHOOK.DLL
2010-01-24 16:59 . 2010-01-24 16:59 246424 ----a-w- c:\program files\UNICOWS.DLL
2010-01-24 16:59 . 2010-01-24 16:59 45056 ----a-w- c:\program files\TRNOEH.DL_
2010-01-24 16:59 . 2010-01-24 16:59 40960 ----a-w- c:\program files\TRNConfigC.DLL
2010-01-24 16:59 . 2010-01-24 16:59 200704 ----a-w- c:\program files\TRNOET.DL_
2010-01-24 16:59 . 2010-01-24 16:59 69632 ----a-w- c:\program files\ATL.DLL
2010-01-24 16:59 . 2010-01-24 16:59 249856 ----a-w- c:\program files\CLIPDLL.DLL
2010-01-24 16:59 . 2010-01-24 16:59 155648 ----a-w- c:\program files\AutoCorrectDLL.DLL
2010-01-24 16:59 . 2010-01-24 16:59 348160 ----a-w- c:\program files\MSVCR71.DLL
2010-01-24 16:59 . 2010-01-24 16:59 225280 ----a-w- c:\program files\POLSPELL.DLL
2010-01-24 16:59 . 2010-01-24 16:59 1060864 ----a-w- c:\program files\MFC71.DLL
2010-01-24 16:59 . 2010-01-24 16:59 174352 ----a-w- c:\program files\RICHED32.DLL
2010-01-24 16:59 . 2010-01-24 16:59 244736 ----a-w- c:\program files\C4DLL320.DLL
2010-01-24 16:59 . 2010-01-24 16:59 209920 ----a-w- c:\program files\SETUPWEB.EXE
2010-01-24 16:59 . 2010-01-24 16:59 26624 ----a-w- c:\program files\OETRN.EX_
2010-01-24 16:59 . 2010-01-24 16:59 209920 ----a-w- c:\program files\TRNConfig.exe
2010-01-24 16:59 . 2010-01-24 16:59 581120 ----a-w- c:\program files\WTRDCTM.EXE
2010-01-24 16:59 . 2010-01-24 16:59 1783296 ----a-w- c:\program files\WTRAN32.EXE
2010-01-24 16:59 . 2010-01-24 16:59 243712 ----a-w- c:\program files\TRNIKONY.EXE
2010-01-24 16:59 . 2010-01-24 16:59 1173504 ----a-w- c:\program files\WDICT32.EXE
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]
"LClock"="c:\program files\LClock\LClock.exe" [2004-09-19 65536]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-03-22 1271808]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2010-01-17 2815408]
"OEXPRESS"="c:\documents and settings\All Users\Application Data\LangSoft\OETRN.EXE" [2010-01-24 26624]
"Google Update"="c:\documents and settings\Milos\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2010-05-09 136176]
"NokiaOviSuite2"="c:\program files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe" [2010-09-02 672632]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NokiaMServer"="c:\program files\Common Files\Nokia\MPlatform\NokiaMServer" [X]
"HControl"="c:\windows\ATK0100\HControl.exe" [2006-10-14 110592]
"UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2008-05-02 15872]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2008-04-14 208952]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2008-04-14 59392]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]
"Wireless Console 2"="c:\program files\Wireless Console 2\wcourier.exe" [2005-10-17 987136]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]
"SMSERIAL"="c:\program files\Motorola\SMSERIAL\sm56hlpr.exe" [2006-11-22 630784]
"RTHDCPL"="RTHDCPL.EXE" [2007-09-03 16841216]
"SkyTel"="SkyTel.EXE" [2007-08-03 1826816]
"snp2std"="c:\windows\vsnp2std.exe" [2006-09-15 675840]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2008-07-19 78008]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2010-11-10 35736]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-11-10 932288]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-11-29 421888]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]
"LClock"="c:\program files\LClock\LClock.exe" [2004-09-19 65536]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"ShowDeskFix"="shell32" [X]
"nltide_3"="advpack.dll" [2010-11-06 124928]

c:\documents and settings\Milos\Start Menu\Programs\Startup\
Styler.lnk - c:\documents and settings\Milos\Application Data\Microsoft\Installer\{E9ECF354-2422-4FDB-9ABF-D8ADAC0EF941}\_585b207a.exe [2010-1-17 15086]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WBSrv]
2008-05-12 09:49 210168 ----a-w- c:\program files\Stardock\Object Desktop\WindowBlinds\WbSrv.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Bluetooth Manager.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Bluetooth Manager.lnk
backup=c:\windows\pss\Bluetooth Manager.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^Milos^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
path=c:\documents and settings\Milos\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
backup=c:\windows\pss\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
"DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=

R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [17. 1. 2010 20:22 685816]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [17. 1. 2010 19:53 78416]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [17. 1. 2010 19:53 20560]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [25. 2. 2010 9:59 1047880]
R3 IFXTPM;IFXTPM;c:\windows\system32\drivers\ifxtpm.sys [17. 1. 2010 18:43 36608]
R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [29. 9. 2010 15:31 27632]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [25. 2. 2010 9:18 10064]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18. 3. 2010 13:16 130384]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [29. 9. 2010 15:31 13224]
S3 s1039bus;Sony Ericsson Device 1039 driver (WDM);c:\windows\system32\drivers\s1039bus.sys [25. 4. 2010 12:26 98672]
S3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter;c:\windows\system32\drivers\s1039mdfl.sys [25. 4. 2010 12:26 14960]
S3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver;c:\windows\system32\drivers\s1039mdm.sys [25. 4. 2010 12:26 124016]
S3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s1039mgmt.sys [25. 4. 2010 12:26 117872]
S3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS);c:\windows\system32\drivers\s1039nd5.sys [25. 4. 2010 12:26 25456]
S3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface;c:\windows\system32\drivers\s1039obex.sys [25. 4. 2010 12:26 113904]
S3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM);c:\windows\system32\drivers\s1039unic.sys [25. 4. 2010 12:26 123504]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18. 3. 2010 13:16 753504]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{D58F39FF-953E-4F45-898F-59F243B9A523}]
2010-11-06 00:34 124928 ----a-w- c:\windows\system32\advpack.dll
.
Obsah adresáře 'Naplánované úlohy'

2011-01-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-1757981266-1801674531-1003Core.job
- c:\documents and settings\Milos\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-05-09 05:46]

2011-01-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-1757981266-1801674531-1003UA.job
- c:\documents and settings\Milos\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-05-09 05:46]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.live.com
uInternet Connection Wizard,ShellNext = hxxp://www.google.com/
IE: &Winamp Search - c:\documents and settings\All Users\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Prevzia? cez IDM
IE: Prevzia? cez IDM všetky prepojenia
IE: Prevzia? obsah FLV cez IDM
IE: Prevziat cez IDM
IE: Prevziat cez IDM všetky prepojenia
IE: Prevziat obsah FLV cez IDM
IE: Prevzia? cez IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: Prevzia? cez IDM všetky prepojenia - c:\program files\Internet Download Manager\IEGetAll.htm
IE: Prevzia? obsah FLV cez IDM - c:\program files\Internet Download Manager\IEGetVL.htm
IE: Prevziať cez IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: Prevziať cez IDM všetky prepojenia - c:\program files\Internet Download Manager\IEGetAll.htm
IE: Prevziať obsah FLV cez IDM - c:\program files\Internet Download Manager\IEGetVL.htm
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\documents and settings\All Users\Application Data\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\documents and settings\All Users\Application Data\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\documents and settings\All Users\Application Data\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\documents and settings\All Users\Application Data\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\documents and settings\All Users\Application Data\LangSoft\WebIE.dll
LSP: c:\windows\system32\idmmbc.dll
FF - ProfilePath - c:\documents and settings\Milos\Application Data\Mozilla\Firefox\Profiles\0lxwbjwu.default\
FF - prefs.js: browser.search.defaulturl - hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=
FF - prefs.js: browser.search.selectedEngine - Winamp Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.sk/
FF - prefs.js: keyword.URL - hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampab&query=
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
FF - Ext: Firefox Synchronisation Extension: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70} - c:\program files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension
FF - Ext: IDM CC: mozilla_cc@internetdownloadmanager.com - c:\documents and settings\Milos\Application Data\IDM\idmmzcc3
FF - Ext: Winamp Toolbar: {0b38152b-1b20-484d-a11f-5e04a9b0661f} - %profile%\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
FF - Ext: Nelinka: nelinka@shabbi.cz - %profile%\extensions\nelinka@shabbi.cz
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

URLSearchHooks-{57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - (no file)
SafeBoot-WudfPf
SafeBoot-WudfRd

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-01-20 21:36
Windows 5.1.2600 Service Pack 3, v.5973 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7762df76-1506-4b9e-9313-9264fcbdd5f4}]
@Denied: (Full) (Everyone)
"Model"=dword:0000008c
"Therad"=dword:00000021
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,
1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):a8,68,76,68,65,cb,43,89,7c,2e,bc,eb,04,dc,82,db,b9,70,8f,16,a5,
b0,68,6d,fa,38,1e,86,8a,6f,d7,07,a5,66,5d,be,14,24,06,f1,00,00,00,00,00,00,\
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(1212)
c:\windows\system32\Ati2evxx.dll
c:\program files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll

- - - - - - - > 'lsass.exe'(1268)
c:\windows\system32\idmmbc.dll

- - - - - - - > 'explorer.exe'(3976)
c:\windows\system32\WININET.dll
c:\program files\RocketDock\RocketDock.dll
c:\program files\Styler\StylerHelper.dll
c:\documents and settings\All Users\Application Data\LangSoft\TrnOEH.dll
c:\program files\Internet Download Manager\idmmkb.dll
c:\windows\system32\ieframe.dll
c:\program files\LClock\LC.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Alwil Software\Avast4\aswUpdSv.exe
c:\program files\Alwil Software\Avast4\ashServ.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
c:\windows\RTHDCPL.EXE
c:\program files\Common Files\Nokia\MPlatform\NokiaMServer.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
c:\program files\Common Files\Nero\Nero BackItUp 4\NBService.exe
c:\windows\ATK0100\ATKOSD.exe
c:\program files\Styler\Styler.exe
c:\program files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
c:\program files\Alwil Software\Avast4\ashMaiSv.exe
c:\program files\Alwil Software\Avast4\ashWebSv.exe
c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
c:\program files\PC Connectivity Solution\ServiceLayer.exe
c:\program files\PC Connectivity Solution\Transports\NclUSBSrv.exe
c:\program files\PC Connectivity Solution\Transports\NclRSSrv.exe
c:\program files\Internet Download Manager\IEMonitor.exe
c:\windows\system32\wscntfy.exe
c:\program files\Common Files\Nokia\NoA\nokiaaserver.exe
.
**************************************************************************
.
Celkový čas: 2011-01-20 21:40:52 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-01-20 20:40

Před spuštěním: 14 632 144 896 bytes free
Po spuštění: 14 482 223 104 bytes free

WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect /noexecute=alwaysoff

- - End Of File - - 4C23CC26F4A94EAAA392FEA3C843BEA5

Vyzerá,že je to všetko OK.Ďakujem za odbornú pomoc.Mám ešte jeden dotaz.Tie programy,ktoré som na to posťahoval,môžem odstránit,alebo odinštalovat z notebooku???

Pri tejto akcii je nutné mať ComboFix na ploche.

Vypni>FIREWALL>Antivir>Antispyware>vsetko rezidentne.

Otvor Notepad (Poznámkový blok) a zkopíruj do neho celý zeleny tex:

Kód: Vybrat vše

KILLALL::
Registry::
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"=-
"IDMan"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IMJPMIG8.1"=-
"MSPY2002"=-
"PHIME2002ASync"=-
"PHIME2002A"=-
"SMSERIAL"=-
"Adobe Reader Speed Launcher"=-
"Adobe ARM"=-
"QuickTime Task"=-
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"=-
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"ShowDeskFix"=-
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"=-
DDS::
IE: &Winamp Search - c:\documents and settings\All Users\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
RegLock:: 
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7762df76-1506-4b9e-9313-9264fcbdd5f4}]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]

Potom klik na Subor -> Uložiť ako.. .. -> Ako je Názov souboru tak do toho riadku napiš:CFScript.txt
Typ súboru tak tam vyberies *všetky súbory
A ulož ho na plochu.> Pozor CFScript.txt>Neotvarat a nemoze byt ani>CFScript.txt.txt A Urobis Toto :
Obrázek

Po skonceni skenu vlož log čo ComboFix vytvorí

ComboFix 11-01-19.04 - Milos . 01. 2011 22:31:45.2.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1033.18.895.120 [GMT 1:00]
Spuštěný z: c:\documents and settings\Milos\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Milos\Desktop\CFScript.txt.txt
AV: avast! antivirus 4.8.1227 [VPS 110120-2] *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\All Users\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-12-20 do 2011-01-20 )))))))))))))))))))))))))))))))
.

2011-01-20 19:17 . 2011-01-20 19:17 -------- d-----w- c:\documents and settings\Milos\Application Data\Malwarebytes
2011-01-20 19:17 . 2011-01-20 19:17 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2011-01-20 19:01 . 2011-01-20 19:01 -------- d-----w- C:\_OTM
2011-01-20 17:08 . 2011-01-20 17:08 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer
2011-01-20 17:07 . 2011-01-20 17:07 -------- d-----w- c:\program files\Common Files\Apple
2011-01-20 14:26 . 2011-01-20 14:26 -------- d-----w- c:\program files\trend micro
2011-01-20 14:26 . 2011-01-20 14:26 -------- d-----w- C:\rsit
2011-01-19 08:20 . 2011-01-19 08:20 -------- d-----w- c:\program files\Common Files\Adobe AIR
2011-01-10 20:51 . 2009-09-02 11:44 626688 ----a-w- c:\windows\system32\vp7vfw.dll
2011-01-10 20:51 . 2009-09-02 11:44 1184984 ----a-w- c:\windows\system32\wvc1dmod.dll
2010-12-30 17:29 . 2010-12-30 17:29 -------- d-----w- c:\program files\SmileyCentral_1vEI

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-01-10 20:51 . 2010-01-17 21:03 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
2011-01-10 20:51 . 2010-01-17 21:03 47360 ----a-w- c:\documents and settings\Milos\Application Data\pcouffin.sys
2010-11-29 16:38 . 2010-11-29 16:38 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2010-11-29 16:38 . 2010-11-29 16:38 69632 ----a-w- c:\windows\system32\QuickTime.qts
2010-11-18 18:12 . 2010-01-17 17:11 81920 ----a-w- c:\windows\system32\isign32.dll
2010-11-12 17:53 . 2010-05-25 15:56 472808 ----a-w- c:\windows\system32\deployJava1.dll
2010-11-12 15:34 . 2010-05-25 15:56 73728 ----a-w- c:\windows\system32\javacpl.cpl
2010-11-09 14:52 . 2008-04-14 12:00 249856 ----a-w- c:\windows\system32\odbc32.dll
2010-11-06 00:34 . 2008-05-18 11:03 841216 ----a-w- c:\windows\system32\wininet.dll
2010-11-06 00:34 . 2008-04-14 12:00 1830912 ----a-w- c:\windows\system32\inetcpl.cpl
2010-11-06 00:34 . 2008-05-18 11:03 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-11-06 00:34 . 2008-05-18 11:03 17408 ----a-w- c:\windows\system32\corpol.dll
2010-11-03 12:00 . 2008-05-18 11:03 389120 ----a-w- c:\windows\system32\html.iec
2010-11-02 15:17 . 2008-04-14 12:00 40960 ----a-w- c:\windows\system32\drivers\ndproxy.sys
2010-10-28 13:13 . 2008-04-14 12:00 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-10-26 13:25 . 2008-04-14 12:00 1853312 ----a-w- c:\windows\system32\win32k.sys
2010-01-24 17:00 . 2010-01-24 17:00 2535476 ----a-w- c:\program files\TRNCOM.DLL
2010-01-24 17:00 . 2010-01-24 17:00 360448 ----a-w- c:\program files\tx4ole14.ocx
2010-01-24 16:59 . 2010-01-24 16:59 1466368 ----a-w- c:\program files\trnexe.exe
2010-01-24 16:59 . 2010-01-24 16:59 188416 ----a-w- c:\program files\trnprg.exe
2010-01-24 16:59 . 2010-01-24 16:59 1056768 ----a-w- c:\program files\TX14_DOX.DLL
2010-01-24 16:59 . 2010-01-24 16:59 65536 ----a-w- c:\program files\TX14_WND.DLL
2010-01-24 16:59 . 2010-01-24 16:59 385024 ----a-w- c:\program files\TX14_XML.DLL
2010-01-24 16:59 . 2010-01-24 16:59 131072 ----a-w- c:\program files\TX14_IC.DLL
2010-01-24 16:59 . 2010-01-24 16:59 331776 ----a-w- c:\program files\TX14_CSS.DLL
2010-01-24 16:59 . 2010-01-24 16:59 327680 ----a-w- c:\program files\TX14_OBJ.DLL
2010-01-24 16:59 . 2010-01-24 16:59 249856 ----a-w- c:\program files\TX14_HTM.DLL
2010-01-24 16:59 . 2010-01-24 16:59 217088 ----a-w- c:\program files\TX14_TLS.DLL
2010-01-24 16:59 . 2010-01-24 16:59 618496 ----a-w- c:\program files\TX14_PDF.DLL
2010-01-24 16:59 . 2010-01-24 16:59 557056 ----a-w- c:\program files\TX14_RTF.DLL
2010-01-24 16:59 . 2010-01-24 16:59 765952 ----a-w- c:\program files\TX14.DLL
2010-01-24 16:59 . 2010-01-24 16:59 667648 ----a-w- c:\program files\TX14_DOC.DLL
2010-01-24 16:59 . 2010-01-24 16:59 360448 ----a-w- c:\program files\TX4ole14.oc_
2010-01-24 16:59 . 2010-01-24 16:59 73728 ----a-w- c:\program files\TX14_tif.flt
2010-01-24 16:59 . 2010-01-24 16:59 53248 ----a-w- c:\program files\TX14_wmf.flt
2010-01-24 16:59 . 2010-01-24 16:59 61440 ----a-w- c:\program files\TX14_bmp.flt
2010-01-24 16:59 . 2010-01-24 16:59 57344 ----a-w- c:\program files\TX14_gif.flt
2010-01-24 16:59 . 2010-01-24 16:59 253952 ----a-w- c:\program files\TX14_png.flt
2010-01-24 16:59 . 2010-01-24 16:59 200704 ----a-w- c:\program files\TX14_jpg.flt
2010-01-24 16:59 . 2010-01-24 16:59 1675264 ----a-w- c:\program files\WtrTMX.dll
2010-01-24 16:59 . 2010-01-24 16:59 581632 ----a-w- c:\program files\MAILTRAN.EXE
2010-01-24 16:59 . 2010-01-24 16:59 62464 ----a-w- c:\program files\WRITE32.WPC
2010-01-24 16:59 . 2010-01-24 16:59 164352 ----a-w- c:\program files\MSWD6_32.WPC
2010-01-24 16:59 . 2010-01-24 16:59 798771 ----a-w- c:\program files\WEBIE.DL_
2010-01-24 16:59 . 2010-01-24 16:59 2535476 ----a-w- c:\program files\TRNCOM.DL_
2010-01-24 16:59 . 2010-01-24 16:59 98304 ----a-w- c:\program files\MAILTRANc.DLL
2010-01-24 16:59 . 2010-01-24 16:59 57344 ----a-w- c:\program files\WDCTM32c.DLL
2010-01-24 16:59 . 2010-01-24 16:59 356352 ----a-w- c:\program files\TRNOUTL.DL_
2010-01-24 16:59 . 2010-01-24 16:59 299008 ----a-w- c:\program files\TRNWORD.DL_
2010-01-24 16:59 . 2010-01-24 16:59 942080 ----a-w- c:\program files\WTRAN32c.DLL
2010-01-24 16:59 . 2010-01-24 16:59 847872 ----a-w- c:\program files\WDICT32c.DLL
2010-01-24 16:59 . 2010-01-24 16:59 244224 ----a-w- c:\program files\WEN.DLL
2010-01-24 16:59 . 2010-01-24 16:59 548864 ----a-w- c:\program files\C4DLL323.DLL
2010-01-24 16:59 . 2010-01-24 16:59 11264 ----a-w- c:\program files\WWWHOOK.DLL
2010-01-24 16:59 . 2010-01-24 16:59 246424 ----a-w- c:\program files\UNICOWS.DLL
2010-01-24 16:59 . 2010-01-24 16:59 45056 ----a-w- c:\program files\TRNOEH.DL_
2010-01-24 16:59 . 2010-01-24 16:59 40960 ----a-w- c:\program files\TRNConfigC.DLL
2010-01-24 16:59 . 2010-01-24 16:59 200704 ----a-w- c:\program files\TRNOET.DL_
2010-01-24 16:59 . 2010-01-24 16:59 69632 ----a-w- c:\program files\ATL.DLL
2010-01-24 16:59 . 2010-01-24 16:59 249856 ----a-w- c:\program files\CLIPDLL.DLL
2010-01-24 16:59 . 2010-01-24 16:59 155648 ----a-w- c:\program files\AutoCorrectDLL.DLL
2010-01-24 16:59 . 2010-01-24 16:59 348160 ----a-w- c:\program files\MSVCR71.DLL
2010-01-24 16:59 . 2010-01-24 16:59 225280 ----a-w- c:\program files\POLSPELL.DLL
2010-01-24 16:59 . 2010-01-24 16:59 1060864 ----a-w- c:\program files\MFC71.DLL
2010-01-24 16:59 . 2010-01-24 16:59 174352 ----a-w- c:\program files\RICHED32.DLL
2010-01-24 16:59 . 2010-01-24 16:59 244736 ----a-w- c:\program files\C4DLL320.DLL
2010-01-24 16:59 . 2010-01-24 16:59 209920 ----a-w- c:\program files\SETUPWEB.EXE
2010-01-24 16:59 . 2010-01-24 16:59 26624 ----a-w- c:\program files\OETRN.EX_
2010-01-24 16:59 . 2010-01-24 16:59 209920 ----a-w- c:\program files\TRNConfig.exe
2010-01-24 16:59 . 2010-01-24 16:59 581120 ----a-w- c:\program files\WTRDCTM.EXE
2010-01-24 16:59 . 2010-01-24 16:59 1783296 ----a-w- c:\program files\WTRAN32.EXE
2010-01-24 16:59 . 2010-01-24 16:59 243712 ----a-w- c:\program files\TRNIKONY.EXE
2010-01-24 16:59 . 2010-01-24 16:59 1173504 ----a-w- c:\program files\WDICT32.EXE
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LClock"="c:\program files\LClock\LClock.exe" [2004-09-19 65536]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-03-22 1271808]
"OEXPRESS"="c:\documents and settings\All Users\Application Data\LangSoft\OETRN.EXE" [2010-01-24 26624]
"Google Update"="c:\documents and settings\Milos\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2010-05-09 136176]
"NokiaOviSuite2"="c:\program files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe" [2010-09-02 672632]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NokiaMServer"="c:\program files\Common Files\Nokia\MPlatform\NokiaMServer" [X]
"HControl"="c:\windows\ATK0100\HControl.exe" [2006-10-14 110592]
"UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2008-05-02 15872]
"Wireless Console 2"="c:\program files\Wireless Console 2\wcourier.exe" [2005-10-17 987136]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]
"RTHDCPL"="RTHDCPL.EXE" [2007-09-03 16841216]
"SkyTel"="SkyTel.EXE" [2007-08-03 1826816]
"snp2std"="c:\windows\vsnp2std.exe" [2006-09-15 675840]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2008-07-19 78008]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"LClock"="c:\program files\LClock\LClock.exe" [2004-09-19 65536]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_3"="advpack.dll" [2010-11-06 124928]

c:\documents and settings\Milos\Start Menu\Programs\Startup\
Styler.lnk - c:\documents and settings\Milos\Application Data\Microsoft\Installer\{E9ECF354-2422-4FDB-9ABF-D8ADAC0EF941}\_585b207a.exe [2010-1-17 15086]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WBSrv]
2008-05-12 09:49 210168 ----a-w- c:\program files\Stardock\Object Desktop\WindowBlinds\WbSrv.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Bluetooth Manager.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Bluetooth Manager.lnk
backup=c:\windows\pss\Bluetooth Manager.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^Milos^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
path=c:\documents and settings\Milos\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
backup=c:\windows\pss\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnkStartup

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=

R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [17. 1. 2010 20:22 685816]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [17. 1. 2010 19:53 78416]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [17. 1. 2010 19:53 20560]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [25. 2. 2010 9:59 1047880]
R3 IFXTPM;IFXTPM;c:\windows\system32\drivers\ifxtpm.sys [17. 1. 2010 18:43 36608]
R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [29. 9. 2010 15:31 27632]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [25. 2. 2010 9:18 10064]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18. 3. 2010 13:16 130384]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [29. 9. 2010 15:31 13224]
S3 s1039bus;Sony Ericsson Device 1039 driver (WDM);c:\windows\system32\drivers\s1039bus.sys [25. 4. 2010 12:26 98672]
S3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter;c:\windows\system32\drivers\s1039mdfl.sys [25. 4. 2010 12:26 14960]
S3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver;c:\windows\system32\drivers\s1039mdm.sys [25. 4. 2010 12:26 124016]
S3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s1039mgmt.sys [25. 4. 2010 12:26 117872]
S3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS);c:\windows\system32\drivers\s1039nd5.sys [25. 4. 2010 12:26 25456]
S3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface;c:\windows\system32\drivers\s1039obex.sys [25. 4. 2010 12:26 113904]
S3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM);c:\windows\system32\drivers\s1039unic.sys [25. 4. 2010 12:26 123504]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18. 3. 2010 13:16 753504]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{D58F39FF-953E-4F45-898F-59F243B9A523}]
2010-11-06 00:34 124928 ----a-w- c:\windows\system32\advpack.dll
.
Obsah adresáře 'Naplánované úlohy'

2011-01-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-1757981266-1801674531-1003Core.job
- c:\documents and settings\Milos\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-05-09 05:46]

2011-01-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-1757981266-1801674531-1003UA.job
- c:\documents and settings\Milos\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-05-09 05:46]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.live.com
uInternet Connection Wizard,ShellNext = hxxp://www.google.com/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Prevzia? cez IDM
IE: Prevzia? cez IDM všetky prepojenia
IE: Prevzia? obsah FLV cez IDM
IE: Prevziat cez IDM
IE: Prevziat cez IDM všetky prepojenia
IE: Prevziat obsah FLV cez IDM
IE: Prevzia? cez IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: Prevzia? cez IDM všetky prepojenia - c:\program files\Internet Download Manager\IEGetAll.htm
IE: Prevzia? obsah FLV cez IDM - c:\program files\Internet Download Manager\IEGetVL.htm
IE: Prevziať cez IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: Prevziať cez IDM všetky prepojenia - c:\program files\Internet Download Manager\IEGetAll.htm
IE: Prevziať obsah FLV cez IDM - c:\program files\Internet Download Manager\IEGetVL.htm
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\documents and settings\All Users\Application Data\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\documents and settings\All Users\Application Data\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\documents and settings\All Users\Application Data\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\documents and settings\All Users\Application Data\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\documents and settings\All Users\Application Data\LangSoft\WebIE.dll
LSP: c:\windows\system32\idmmbc.dll
FF - ProfilePath - c:\documents and settings\Milos\Application Data\Mozilla\Firefox\Profiles\0lxwbjwu.default\
FF - prefs.js: browser.search.defaulturl - hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=
FF - prefs.js: browser.search.selectedEngine - Winamp Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.sk/
FF - prefs.js: keyword.URL - hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampab&query=
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
FF - Ext: Firefox Synchronisation Extension: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70} - c:\program files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension
FF - Ext: IDM CC: mozilla_cc@internetdownloadmanager.com - c:\documents and settings\Milos\Application Data\IDM\idmmzcc3
FF - Ext: Winamp Toolbar: {0b38152b-1b20-484d-a11f-5e04a9b0661f} - %profile%\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
FF - Ext: Nelinka: nelinka@shabbi.cz - %profile%\extensions\nelinka@shabbi.cz
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-01-20 22:38
Windows 5.1.2600 Service Pack 3, v.5973 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(1208)
c:\windows\system32\Ati2evxx.dll
c:\program files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll

- - - - - - - > 'lsass.exe'(1288)
c:\windows\system32\idmmbc.dll

- - - - - - - > 'explorer.exe'(2664)
c:\windows\system32\WININET.dll
c:\program files\Unlocker\UnlockerHook.dll
c:\program files\Styler\StylerHelper.dll
c:\documents and settings\All Users\Application Data\LangSoft\TrnOEH.dll
c:\windows\system32\ieframe.dll
c:\program files\LClock\LC.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Alwil Software\Avast4\aswUpdSv.exe
c:\program files\Alwil Software\Avast4\ashServ.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\Nero\Nero BackItUp 4\NBService.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
c:\windows\RTHDCPL.EXE
c:\program files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
c:\program files\Common Files\Nokia\MPlatform\NokiaMServer.exe
c:\windows\ATK0100\ATKOSD.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
c:\program files\Styler\Styler.exe
c:\program files\Alwil Software\Avast4\ashMaiSv.exe
c:\program files\Alwil Software\Avast4\ashWebSv.exe
c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
c:\program files\PC Connectivity Solution\ServiceLayer.exe
c:\program files\PC Connectivity Solution\Transports\NclUSBSrv.exe
c:\program files\PC Connectivity Solution\Transports\NclRSSrv.exe
c:\program files\Common Files\Nokia\NoA\nokiaaserver.exe
.
**************************************************************************
.
Celkový čas: 2011-01-20 22:43:15 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-01-20 21:43
ComboFix2.txt 2011-01-20 20:40

Před spuštěním: 14 576 513 024 bytes free
Po spuštění: 14 556 811 264 bytes free

- - End Of File - - 294F953166C51FAEFBF4EFDF2DE8FA4D

Premenuj ikonu combofixu na uninstall
a spust>.combofix sa odinstaluje.

CCleaner stiahneme nainštalujeme.
a)Download from Piriform.com CCleaner
Download from FileHippo.com CCleaner
b)Všetky spustené programy,prehliadač zatvoríme.
c)Spustíme CCleaner,nastavenie necháme tak ako je.Stlačte gombík Analyzovať a po analýze stlačte Gombík Spustiť Cleaner.
d)Kliknite na záložku Aplikácie a stlačte gombík Analyzovať a po analýze stlačte Gombík Spustiť Cleaner.
e)Kliknite na Register,stlačte Hľadaj problémy, po dokončení skenování kliknite na Opraviť vybrané problémy, zvoľte ANO pre vytvorenie zálohy, uložte súbor a kliknite na Opraviť všetky problémy.

Bolo by nainstalovat firewall:
Navod,bez spyware doctora
http://www.viry.cz/forum/viewtopic.php? ... 36#p868836

Ak vsetko bude ok, to je vsetko.

hmmm,problém s vyskakovaním okna ukončit program nsappshell event window pri vypinaní sa opakuje....

Stahni OTListIt2>> OTL
Označ položku Pro všechny uživatele.
Označ položky Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
do okna >vloz zeleny text a klik Klikn na tlačítko Prohledat
Po dokončení, sem vlož logy OTL.Txt a Extras.txt

Kód: Vybrat vše

msconfig
safebootminimal
activex
drivers32
netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\drivers\*.sys /90

OTL logfile created on: 21. 1. 2011 15:43:58 - Run 1
OTL by OldTimer - Version 3.2.20.3 Folder = C:\Documents and Settings\Milos\Desktop
Windows XP Professional Edition Service Pack 3, v.5973 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000041B | Country: Slovakia | Language: SKY | Date Format: d. M. yyyy

895,00 Mb Total Physical Memory | 109,00 Mb Available Physical Memory | 12,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 58,00% Paging File free
Paging file location(s): C:\pagefile.sys 1344 2688 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 13,53 Gb Free Space | 34,65% Space Free | Partition Type: NTFS
Drive D: | 109,98 Gb Total Space | 7,41 Gb Free Space | 6,73% Space Free | Partition Type: NTFS

Computer Name: MEMORY-0677335D | User Name: Milos | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011.01.21 15:41:24 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Milos\Desktop\OTL.exe
PRC - [2011.01.20 23:06:27 | 000,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2010.12.03 21:00:32 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010.12.03 21:00:32 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
PRC - [2010.11.29 11:55:44 | 002,676,696 | ---- | M] (PC Tools) -- C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe
PRC - [2010.11.17 10:29:38 | 000,287,024 | ---- | M] (PC Tools) -- C:\Program Files\PC Tools Firewall Plus\FWService.exe
PRC - [2010.09.02 10:26:02 | 000,672,632 | ---- | M] (Nokia) -- C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
PRC - [2010.07.27 14:27:00 | 000,280,960 | ---- | M] () -- C:\Program Files\Common Files\Nokia\NoA\nokiaaserver.exe
PRC - [2010.07.20 11:45:24 | 001,531,904 | ---- | M] (Nokia) -- C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
PRC - [2010.06.22 14:22:52 | 000,138,752 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
PRC - [2010.06.14 15:07:14 | 000,615,936 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
PRC - [2010.02.25 10:02:02 | 000,716,616 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
PRC - [2010.02.25 09:59:54 | 001,047,880 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
PRC - [2010.01.24 18:00:20 | 000,026,624 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\LangSoft\OETRN.EXE
PRC - [2010.01.17 20:16:01 | 002,815,408 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IDMan.exe
PRC - [2009.10.27 10:15:02 | 000,120,832 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
PRC - [2009.09.23 13:38:18 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2008.07.19 16:38:34 | 000,078,008 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2008.07.19 16:38:28 | 000,147,640 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2008.07.19 16:38:04 | 000,250,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2008.07.19 16:34:56 | 000,348,344 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2008.07.19 16:25:06 | 000,016,056 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2008.05.02 05:15:46 | 000,015,872 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerAssistant.exe
PRC - [2008.04.14 13:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.02.18 14:01:01 | 000,251,312 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe
PRC - [2007.05.28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2006.10.14 13:37:40 | 000,110,592 | ---- | M] () -- C:\WINDOWS\ATK0100\HControl.exe
PRC - [2006.09.15 13:21:00 | 000,675,840 | R--- | M] (Sonix) -- C:\WINDOWS\vsnp2std.exe
PRC - [2006.08.10 18:08:04 | 002,379,776 | ---- | M] () -- C:\WINDOWS\ATK0100\ATKOSD.exe
PRC - [2006.05.03 17:48:46 | 000,307,200 | ---- | M] (ta2027) -- C:\Program Files\Styler\Styler.exe
PRC - [2005.10.17 17:09:34 | 000,987,136 | ---- | M] () -- C:\Program Files\Wireless Console 2\wcourier.exe
PRC - [2004.09.19 19:27:44 | 000,065,536 | ---- | M] () -- C:\Program Files\LClock\LClock.exe

========== Modules (SafeList) ==========

MOD - [2011.01.21 15:41:24 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Milos\Desktop\OTL.exe
MOD - [2010.09.18 07:53:25 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42.dll
MOD - [2010.08.23 17:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2010.01.24 18:00:20 | 000,045,056 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\LangSoft\TrnOEH.dll
MOD - [2009.03.26 16:35:39 | 000,034,224 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\idmmkb.dll
MOD - [2008.07.19 16:36:30 | 000,139,264 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\AhJsctNs.dll
MOD - [2008.05.02 05:15:35 | 000,004,608 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerHook.dll
MOD - [2006.05.02 12:10:50 | 000,053,248 | ---- | M] (ta2027) -- C:\Program Files\Styler\StylerHelper.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - [2010.11.17 10:29:38 | 000,287,024 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\PC Tools Firewall Plus\FWService.exe -- (PCToolsFirewallPlus)
SRV - [2010.07.11 07:49:58 | 000,435,016 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2010.06.14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Running] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010.03.18 16:47:22 | 000,035,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe -- (aspnet_state)
SRV - [2010.03.18 13:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.03.18 13:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2010.02.25 09:59:54 | 001,047,880 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2010.02.25 09:56:02 | 000,030,024 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2009.09.23 13:38:18 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2008.07.19 16:38:28 | 000,147,640 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV - [2008.07.19 16:38:04 | 000,250,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2008.07.19 16:34:56 | 000,348,344 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2008.07.19 16:25:06 | 000,016,056 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV - [2007.05.28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2005.02.09 11:59:00 | 000,014,165 | ---- | M] (Pinnacle Systems GmbH) [Auto | Stopped] -- C:\WINDOWS\system32\drivers\Pclepci.sys -- (PCLEPCI)

========== Driver Services (SafeList) ==========

DRV - [2010.11.25 10:53:58 | 000,160,448 | ---- | M] (PC Tools) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\PCTAppEvent.sys -- (PCTAppEvent)
DRV - [2010.11.25 10:42:10 | 000,124,992 | ---- | M] (PC Tools) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pctplfw.sys -- (pctplfw)
DRV - [2010.11.24 09:18:16 | 000,089,192 | ---- | M] (PC Tools) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pctNdis-PacketFilter.sys -- (PCTFW-PacketFilter)
DRV - [2010.11.17 10:19:50 | 000,249,616 | ---- | M] (PC Tools) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\pctgntdi.sys -- (pctgntdi)
DRV - [2010.09.29 15:31:46 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\seehcri.sys -- (seehcri)
DRV - [2010.09.29 15:31:28 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2010.09.29 15:31:28 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt)
DRV - [2010.07.08 09:49:10 | 000,057,536 | ---- | M] (PC Tools) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pctNdis.sys -- (pctNdisMP)
DRV - [2010.07.08 09:49:10 | 000,057,536 | ---- | M] (PC Tools) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pctNdis.sys -- (pctNdis)
DRV - [2010.02.26 14:32:58 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010.02.26 14:32:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010.02.26 14:32:44 | 000,022,528 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010.02.26 14:32:44 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2010.02.25 09:18:08 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2010.01.17 20:22:53 | 000,685,816 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009.11.19 14:06:46 | 000,098,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039bus.sys -- (s1039bus) Sony Ericsson Device 1039 driver (WDM)
DRV - [2009.11.19 14:06:46 | 000,025,456 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039nd5.sys -- (s1039nd5) Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS)
DRV - [2009.11.19 14:06:45 | 000,124,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039mdm.sys -- (s1039mdm)
DRV - [2009.11.19 14:06:45 | 000,123,504 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039unic.sys -- (s1039unic) Sony Ericsson Device 1039 USB Ethernet Emulation (WDM)
DRV - [2009.11.19 14:06:45 | 000,117,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039mgmt.sys -- (s1039mgmt) Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM)
DRV - [2009.11.19 14:06:45 | 000,113,904 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039obex.sys -- (s1039obex)
DRV - [2009.11.19 14:06:44 | 000,014,960 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039mdfl.sys -- (s1039mdfl)
DRV - [2008.08.26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.07.19 16:37:42 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2008.07.19 16:37:21 | 000,094,416 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2008.07.19 16:35:18 | 000,078,416 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2008.07.19 16:33:42 | 000,023,152 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2008.07.19 16:32:36 | 000,042,912 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2008.07.19 16:32:15 | 000,026,944 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2008.04.14 13:00:00 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008.01.04 03:10:16 | 000,105,856 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2007.12.13 11:21:56 | 000,547,904 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ar5211.sys -- (AR5211)
DRV - [2007.09.05 17:31:30 | 004,611,072 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007.07.27 23:30:26 | 002,371,584 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007.03.30 14:41:00 | 012,033,024 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\snp2sxp.sys -- (SNP2STD) USB2.0 PC Camera (SNP2STD)
DRV - [2007.02.24 14:42:22 | 000,039,936 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2007.01.23 16:40:20 | 000,042,496 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2007.01.23 14:13:26 | 000,036,608 | ---- | M] (Infineon Technologies AG) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ifxtpm.sys -- (IFXTPM)
DRV - [2007.01.04 09:07:00 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\MarvinBus.sys -- (MarvinBus)
DRV - [2006.11.22 17:35:00 | 000,982,272 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\smserial.sys -- (smserial)
DRV - [2006.05.18 21:46:16 | 000,110,976 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tosrfbd.sys -- (Tosrfbd)
DRV - [2006.05.09 11:21:54 | 000,040,192 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tosrfusb.sys -- (Tosrfusb)
DRV - [2006.05.09 10:33:54 | 000,062,848 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tosrfhid.sys -- (Tosrfhid)
DRV - [2006.04.19 13:57:44 | 000,047,488 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tosporte.sys -- (tosporte)
DRV - [2006.03.16 10:45:12 | 000,037,632 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tosrfbnp.sys -- (Tosrfbnp)
DRV - [2006.03.15 10:52:40 | 000,052,864 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tosrfsnd.sys -- (TosRfSnd) Bluetooth Audio Device (WDM)
DRV - [2005.08.01 16:45:08 | 000,064,896 | ---- | M] (TOSHIBA Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tosrfcom.sys -- (Tosrfcom)
DRV - [2005.07.11 18:58:56 | 000,003,712 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\toshidpt.sys -- (toshidpt)
DRV - [2005.02.17 19:07:48 | 000,005,632 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ATKACPI.sys -- (MTsensor)
DRV - [2005.01.06 13:42:42 | 000,018,612 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tosrfnds.sys -- (tosrfnds)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - Reg Error: Key error. File not found

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1202660629-1757981266-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.live.com
IE - HKU\S-1-5-21-1202660629-1757981266-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Winamp Search"
FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/sli ... ie7&query="
FF - prefs.js..browser.search.selectedEngine: "Winamp Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.sk/"
FF - prefs.js..extensions.enabledItems: mozilla_cc@internetdownloadmanager.com:6.4
FF - prefs.js..extensions.enabledItems: {0b38152b-1b20-484d-a11f-5e04a9b0661f}:5.6.12.1
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: nelinka@shabbi.cz:1.3.4
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.3.42
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..keyword.URL: "http://slirsredirect.search.aol.com/sli ... pab&query="

FF - HKLM\software\mozilla\Firefox\Extensions\\{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\ [2010.11.16 19:07:24 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.01.20 18:39:43 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.01.20 18:09:11 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2010.11.16 19:07:26 | 000,000,000 | ---D | M]

[2010.05.08 17:27:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Milos\Application Data\mozilla\Extensions
[2011.01.21 15:33:54 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Milos\Application Data\mozilla\Firefox\Profiles\0lxwbjwu.default\extensions
[2010.03.14 17:58:46 | 000,000,000 | ---D | M] (Winamp Toolbar) -- C:\Documents and Settings\Milos\Application Data\mozilla\Firefox\Profiles\0lxwbjwu.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
[2011.01.19 09:15:49 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Milos\Application Data\mozilla\Firefox\Profiles\0lxwbjwu.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.07.11 07:23:42 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Milos\Application Data\mozilla\Firefox\Profiles\0lxwbjwu.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}(2)
[2010.09.29 13:53:23 | 000,000,000 | ---D | M] (Nelinka) -- C:\Documents and Settings\Milos\Application Data\mozilla\Firefox\Profiles\0lxwbjwu.default\extensions\nelinka@shabbi.cz
[2010.06.14 20:43:35 | 000,002,149 | ---- | M] () -- C:\Documents and Settings\Milos\Application Data\Mozilla\Firefox\Profiles\0lxwbjwu.default\searchplugins\MyStart Search.xml
[2011.01.15 15:34:13 | 000,001,196 | ---- | M] () -- C:\Documents and Settings\Milos\Application Data\Mozilla\Firefox\Profiles\0lxwbjwu.default\searchplugins\winamp-search.xml
[2011.01.21 15:33:54 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010.05.25 16:56:13 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.08.11 16:27:55 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.10.15 19:31:50 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011.01.05 14:47:16 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2010.01.17 20:11:10 | 000,000,000 | ---D | M] (IDM CC) -- C:\DOCUMENTS AND SETTINGS\MILOS\APPLICATION DATA\IDM\IDMMZCC3
[2010.05.25 16:56:00 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2010.11.16 19:07:24 | 000,000,000 | ---D | M] (Firefox Synchronisation Extension) -- C:\PROGRAM FILES\NOKIA\NOKIA OVI SUITE\CONNECTORS\BOOKMARKS CONNECTOR\FIREFOXEXTENSION
[2010.11.12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.12.03 19:10:43 | 000,001,583 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\atlas-sk.xml
[2010.12.03 19:10:43 | 000,001,380 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\azet-sk.xml
[2010.12.03 19:10:43 | 000,001,479 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\dunaj-sk.xml
[2010.12.03 19:10:43 | 000,001,473 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slovnik-sk.xml
[2010.12.03 19:10:43 | 000,001,104 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-sk.xml
[2010.12.03 19:10:43 | 000,000,830 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\zoznam-sk.xml

O1 HOSTS File: ([2011.01.20 22:37:33 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll (Tonec Inc.)
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll ()
O3 - HKLM\..\Toolbar: (StylerToolBar) - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Program Files\Styler\TB\StylerTB.dll (StyleFantasist)
O3 - HKLM\..\Toolbar: (no name) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - No CLSID value found.
O3 - HKU\S-1-5-21-1202660629-1757981266-1801674531-1003\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O4 - HKLM..\Run: [00PCTFW] C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe (PC Tools)
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe ()
O4 - HKLM..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe (Nokia)
O4 - HKLM..\Run: [SkyTel] C:\WINDOWS\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe (Sonix)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()
O4 - HKLM..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe ()
O4 - HKLM..\Run: [Wireless Console 2] C:\Program Files\Wireless Console 2\wcourier.exe ()
O4 - HKU\.DEFAULT..\Run: [LClock] C:\Program Files\LClock\LClock.exe ()
O4 - HKU\S-1-5-18..\Run: [LClock] C:\Program Files\LClock\LClock.exe ()
O4 - HKU\S-1-5-21-1202660629-1757981266-1801674531-1003..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.)
O4 - HKU\S-1-5-21-1202660629-1757981266-1801674531-1003..\Run: [LClock] C:\Program Files\LClock\LClock.exe ()
O4 - HKU\S-1-5-21-1202660629-1757981266-1801674531-1003..\Run: [NokiaOviSuite2] C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe (Nokia)
O4 - HKU\S-1-5-21-1202660629-1757981266-1801674531-1003..\Run: [OEXPRESS] C:\Documents and Settings\All Users\Application Data\LangSoft\OETRN.EXE ()
O4 - HKU\S-1-5-21-1202660629-1757981266-1801674531-1003..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - Startup: C:\Documents and Settings\Milos\Start Menu\Programs\Startup\Styler.lnk = C:\Documents and Settings\Milos\Application Data\Microsoft\Installer\{E9ECF354-2422-4FDB-9ABF-D8ADAC0EF941}\_585b207a.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-21-1202660629-1757981266-1801674531-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1202660629-1757981266-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1202660629-1757981266-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-21-1202660629-1757981266-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1202660629-1757981266-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Prevzia cez IDM - C:\Program Files\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: Prevzia cez IDM všetky prepojenia - C:\Program Files\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Prevzia obsah FLV cez IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm ()
O8 - Extra context menu item: Prevziať cez IDM - C:\Program Files\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: Prevziať cez IDM všetky prepojenia - C:\Program Files\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Prevziať obsah FLV cez IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm ()
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Application Data\LangSoft\WebIE.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\System32\idmmbc.dll (Tonec Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\System32\idmmbc.dll (Tonec Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\System32\idmmbc.dll (Tonec Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\System32\idmmbc.dll (Tonec Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\System32\idmmbc.dll (Tonec Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\System32\idmmbc.dll (Tonec Inc.)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\WBSrv: DllName - C:\Program Files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll - C:\Program Files\Stardock\Object Desktop\WindowBlinds\WbSrv.dll (Stardock Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Milos\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Milos\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.07.28 05:11:08 | 000,000,095 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Bluetooth Manager.lnk - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng1.exe - ()
MsConfig - StartUpFolder: C:^Documents and Settings^Milos^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE - (Microsoft Corporation)
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2

SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

ActiveX: {05E494AF-42EE-B081-0214-373B12231B90} - DirectAnimation
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vector Graphics Rendering (VML)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906)
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {2F6EFCE6-10DF-49F9-9E64-9AE3775B2588} - Microsoft .NET Framework 1.1 Security Update (KB2416447)
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Dynamic HTML Data Binding for Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Advanced Authoring
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - DirectAnimation Java Classes
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.7
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5E65E94D-69F2-4850-9E93-6459C53A0F50} - .NET Framework
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player 11
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {73fa19d0-2d75-11d2-995d-00c04f98bbc9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {ACC563BC-4266-43f0-B6ED-9D38C4202C7E} -
ActiveX: {B508B3F1-A24A-32C0-B310-85786919EF28} - .NET Framework
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Task Scheduler
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player
ActiveX: {D58F39FF-953E-4F45-898F-59F243B9A523} - RUNDLL32 advpack.dll,LaunchINFSection Sidebar.inf,Register
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE

Drivers32: msacm.ac3acm - C:\WINDOWS\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\WINDOWS\System32\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.MJPG - C:\WINDOWS\System32\pvmjpg30.dll (Pegasus Imaging Corporation)
Drivers32: VIDC.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: wave - C:\WINDOWS\System32\serwvdrv.dll (Microsoft Corporation)

NetSvcs: 6to4 - File not found
NetSvcs: HidServ - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: UxTuneUp - C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
NetSvcs: WmdmPmSp - File not found

========== Files/Folders - Created Within 30 Days ==========

[2011.01.21 15:41:17 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Milos\Desktop\OTL.exe
[2011.01.20 23:11:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Google
[2011.01.20 23:08:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milos\Application Data\PCToolsFirewallPlus
[2011.01.20 23:08:14 | 000,218,592 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\PCTCore.sys
[2011.01.20 23:08:14 | 000,160,448 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\PCTAppEvent.sys
[2011.01.20 23:08:11 | 000,249,616 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctgntdi.sys
[2011.01.20 23:06:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\PC Tools Firewall Plus
[2011.01.20 23:06:54 | 000,089,192 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctNdis-PacketFilter.sys
[2011.01.20 23:06:54 | 000,057,536 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctNdis.sys
[2011.01.20 23:06:54 | 000,032,808 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctNdis-DNS.sys
[2011.01.20 23:06:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PC Tools
[2011.01.20 23:06:44 | 000,124,992 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctplfw.sys
[2011.01.20 23:06:39 | 000,000,000 | ---D | C] -- C:\Program Files\PC Tools Firewall Plus
[2011.01.20 23:06:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Google
[2011.01.20 23:05:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Google
[2011.01.20 22:59:03 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Milos\Recent
[2011.01.20 22:59:03 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011.01.20 21:35:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2011.01.20 21:35:08 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2011.01.20 21:35:07 | 000,000,000 | ---D | C] -- C:\Program Files\msn gaming zone
[2011.01.20 21:35:07 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2011.01.20 21:26:04 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011.01.20 21:24:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011.01.20 20:17:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milos\Application Data\Malwarebytes
[2011.01.20 20:17:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2011.01.20 20:01:22 | 000,000,000 | ---D | C] -- C:\_OTM
[2011.01.20 18:08:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\QuickTime
[2011.01.20 18:08:15 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2011.01.20 18:08:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2011.01.20 18:07:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2011.01.20 17:35:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox
[2011.01.20 15:26:20 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.01.20 15:26:19 | 000,000,000 | ---D | C] -- C:\rsit
[2011.01.19 09:20:35 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2011.01.18 19:09:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milos\Desktop\Zumba Fitness Music
[2011.01.18 17:11:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milos\Desktop\Zumba Hits 2010
[2011.01.18 13:49:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milos\Desktop\Zumba Hits 2CDs.(2009
[2011.01.10 21:51:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\VSO
[2011.01.10 21:51:30 | 000,626,688 | ---- | C] (On2.com) -- C:\WINDOWS\System32\vp7vfw.dll
[2011.01.02 19:41:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Milos\Desktop\Nová složka
[2010.12.30 18:29:27 | 000,000,000 | ---D | C] -- C:\Program Files\SmileyCentral_1vEI
[2010.01.24 18:00:01 | 000,360,448 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\tx4ole14.ocx
[2010.01.24 17:59:37 | 000,188,416 | ---- | C] (LangSoft) -- C:\Program Files\trnprg.exe
[2010.01.24 17:59:36 | 001,056,768 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX14_DOX.DLL
[2010.01.24 17:59:35 | 000,385,024 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX14_XML.DLL
[2010.01.24 17:59:35 | 000,131,072 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX14_IC.DLL
[2010.01.24 17:59:35 | 000,065,536 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX14_WND.DLL
[2010.01.24 17:59:34 | 000,331,776 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX14_CSS.DLL
[2010.01.24 17:59:34 | 000,327,680 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX14_OBJ.DLL
[2010.01.24 17:59:34 | 000,249,856 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX14_HTM.DLL
[2010.01.24 17:59:34 | 000,217,088 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX14_TLS.DLL
[2010.01.24 17:59:33 | 000,618,496 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX14_PDF.DLL
[2010.01.24 17:59:33 | 000,557,056 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX14_RTF.DLL
[2010.01.24 17:59:32 | 000,765,952 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX14.DLL
[2010.01.24 17:59:32 | 000,667,648 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX14_DOC.DLL
[2010.01.24 17:59:32 | 000,360,448 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX4ole14.oc_
[2010.01.24 17:59:31 | 000,073,728 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX14_tif.flt
[2010.01.24 17:59:31 | 000,053,248 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX14_wmf.flt
[2010.01.24 17:59:30 | 000,253,952 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX14_png.flt
[2010.01.24 17:59:30 | 000,200,704 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX14_jpg.flt
[2010.01.24 17:59:30 | 000,061,440 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX14_bmp.flt
[2010.01.24 17:59:30 | 000,057,344 | ---- | C] (The Imaging Source Europe GmbH) -- C:\Program Files\TX14_gif.flt
[2010.01.24 17:59:15 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Program Files\MSWD6_32.WPC
[2010.01.24 17:59:15 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Program Files\WRITE32.WPC
[2010.01.24 17:59:13 | 000,356,352 | ---- | C] (METEOR Software) -- C:\Program Files\TRNOUTL.DL_
[2010.01.24 17:59:13 | 000,299,008 | ---- | C] (METEOR Software) -- C:\Program Files\TRNWORD.DL_
[2010.01.24 17:59:12 | 000,942,080 | ---- | C] (Langsoft & METEOR Software) -- C:\Program Files\WTRAN32c.DLL
[2010.01.24 17:59:12 | 000,847,872 | ---- | C] (LangSoft s.r.o.) -- C:\Program Files\WDICT32c.DLL
[2010.01.24 17:59:11 | 000,548,864 | ---- | C] (Sequiter Software Inc.) -- C:\Program Files\C4DLL323.DLL
[2010.01.24 17:59:10 | 000,246,424 | ---- | C] (Microsoft Corporation) -- C:\Program Files\UNICOWS.DLL
[2010.01.24 17:59:09 | 000,040,960 | ---- | C] (LangSoft s.r.o.) -- C:\Program Files\TRNConfigC.DLL
[2010.01.24 17:59:08 | 000,155,648 | ---- | C] (POLAR) -- C:\Program Files\AutoCorrectDLL.DLL
[2010.01.24 17:59:08 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ATL.DLL
[2010.01.24 17:59:07 | 001,060,864 | ---- | C] (Microsoft Corporation) -- C:\Program Files\MFC71.DLL
[2010.01.24 17:59:07 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\Program Files\MSVCR71.DLL
[2010.01.24 17:59:07 | 000,225,280 | ---- | C] (Polar) -- C:\Program Files\POLSPELL.DLL
[2010.01.24 17:59:06 | 000,174,352 | ---- | C] (Microsoft Corporation) -- C:\Program Files\RICHED32.DLL
[2010.01.24 17:59:05 | 000,244,736 | ---- | C] (Sequiter Software Inc.) -- C:\Program Files\C4DLL320.DLL
[2010.01.24 17:59:05 | 000,209,920 | ---- | C] (LangSoft s.r.o.) -- C:\Program Files\SETUPWEB.EXE
[2010.01.24 17:59:04 | 000,209,920 | ---- | C] (LangSoft s.r.o.) -- C:\Program Files\TRNConfig.exe
[2010.01.24 17:59:02 | 000,243,712 | ---- | C] (LangSoft s.r.o.) -- C:\Program Files\TRNIKONY.EXE
[2010.01.17 22:03:10 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Milos\Application Data\pcouffin.sys
[2010.01.17 19:39:21 | 000,077,824 | R--- | C] ( ) -- C:\WINDOWS\System32\csnp2std.dll
[6 C:\Documents and Settings\Milos\*.tmp files -> C:\Documents and Settings\Milos\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011.01.21 15:42:01 | 000,001,092 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-1757981266-1801674531-1003UA.job
[2011.01.21 15:41:24 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Milos\Desktop\OTL.exe
[2011.01.21 15:21:33 | 000,002,228 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.01.21 15:21:01 | 000,000,994 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.01.21 15:20:55 | 000,002,245 | ---- | M] () -- C:\Documents and Settings\Milos\Start Menu\Programs\Startup\Styler.lnk
[2011.01.21 15:20:53 | 000,001,064 | ---- | M] () -- C:\Program Files\TRANSLAT.INI
[2011.01.21 15:20:43 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.01.21 08:17:01 | 000,000,998 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.01.20 22:37:33 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011.01.20 21:40:24 | 000,535,522 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011.01.20 21:40:24 | 000,101,496 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011.01.20 21:26:11 | 000,000,348 | RHS- | M] () -- C:\boot.ini
[2011.01.20 17:35:22 | 000,001,620 | ---- | M] () -- C:\Documents and Settings\Milos\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011.01.20 17:35:22 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2011.01.20 17:28:10 | 000,070,104 | ---- | M] () -- C:\Firefox 3.6.13 (sk) - 2011-01-20.pcv
[2011.01.20 06:50:58 | 000,124,928 | ---- | M] () -- C:\Documents and Settings\Milos\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.01.20 05:42:00 | 000,001,040 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-1757981266-1801674531-1003Core.job
[2011.01.19 09:23:52 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk
[2011.01.19 07:24:25 | 003,967,104 | ---- | M] () -- C:\Documents and Settings\Milos\Desktop\Shakira - Waka Waka.mp3
[2011.01.19 07:21:10 | 007,740,939 | ---- | M] () -- C:\Documents and Settings\Milos\Desktop\Shakira - Loca.mp3
[2011.01.19 07:03:35 | 008,247,378 | ---- | M] () -- C:\Documents and Settings\Milos\Desktop\Spankers - Sex On The Beach - NajHudba.com - Sťahuj a počúvaj mp3 zadarmo..mp3
[2011.01.18 20:01:41 | 004,058,546 | ---- | M] () -- C:\Documents and Settings\Milos\Desktop\baila-pa-emociona-calypso.6274139.mp3
[2011.01.18 09:54:00 | 006,697,255 | ---- | M] () -- C:\Documents and Settings\Milos\Desktop\King Africa - E-O-Zumba-E.mp3
[2011.01.16 22:35:45 | 000,001,041 | ---- | M] () -- C:\Documents and Settings\Milos\Application Data\vso_ts_preview.xml
[2011.01.15 15:24:20 | 000,000,349 | ---- | M] () -- C:\Documents and Settings\All Users\Documents\PCLECHAL.INI
[2011.01.15 10:13:40 | 000,002,262 | ---- | M] () -- C:\Documents and Settings\Milos\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011.01.15 10:13:39 | 000,002,284 | ---- | M] () -- C:\Documents and Settings\Milos\Desktop\Google Chrome.lnk
[2011.01.10 21:51:47 | 000,047,360 | ---- | M] (VSO Software) -- C:\Documents and Settings\Milos\Application Data\pcouffin.sys
[2011.01.10 21:51:47 | 000,007,887 | ---- | M] () -- C:\Documents and Settings\Milos\Application Data\pcouffin.cat
[2011.01.10 21:51:47 | 000,001,144 | ---- | M] () -- C:\Documents and Settings\Milos\Application Data\pcouffin.inf
[2011.01.10 21:51:43 | 000,000,859 | ---- | M] () -- C:\Documents and Settings\Milos\Desktop\ConvertXtoDVD 4.lnk
[2011.01.10 21:51:43 | 000,000,845 | ---- | M] () -- C:\Documents and Settings\Milos\Application Data\Microsoft\Internet Explorer\Quick Launch\ConvertXtoDVD 4.lnk
[2011.01.10 16:40:08 | 000,002,411 | ---- | M] () -- C:\Documents and Settings\Milos\Desktop\Microsoft AutoRoute 2010.lnk
[2011.01.07 09:19:24 | 000,155,343 | ---- | M] () -- C:\Documents and Settings\Milos\Desktop\pravidla-sutaze-hlada-sa-milionar.pdf
[2011.01.04 21:21:22 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[6 C:\Documents and Settings\Milos\*.tmp files -> C:\Documents and Settings\Milos\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.01.20 23:06:35 | 000,000,998 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.01.20 23:06:34 | 000,000,994 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.01.20 21:26:11 | 000,000,232 | ---- | C] () -- C:\Boot.bak
[2011.01.20 21:26:07 | 000,261,312 | RHS- | C] () -- C:\cmldr
[2011.01.20 17:35:22 | 000,001,620 | ---- | C] () -- C:\Documents and Settings\Milos\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011.01.20 17:35:22 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2011.01.20 17:28:09 | 000,070,104 | ---- | C] () -- C:\Firefox 3.6.13 (sk) - 2011-01-20.pcv
[2011.01.19 09:23:52 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk
[2011.01.19 07:24:29 | 003,967,104 | ---- | C] () -- C:\Documents and Settings\Milos\Desktop\Shakira - Waka Waka.mp3
[2011.01.19 07:21:26 | 007,740,939 | ---- | C] () -- C:\Documents and Settings\Milos\Desktop\Shakira - Loca.mp3
[2011.01.19 07:04:24 | 008,247,378 | ---- | C] () -- C:\Documents and Settings\Milos\Desktop\Spankers - Sex On The Beach - NajHudba.com - Sťahuj a počúvaj mp3 zadarmo..mp3
[2011.01.18 20:01:17 | 004,058,546 | ---- | C] () -- C:\Documents and Settings\Milos\Desktop\baila-pa-emociona-calypso.6274139.mp3
[2011.01.18 09:54:05 | 006,697,255 | ---- | C] () -- C:\Documents and Settings\Milos\Desktop\King Africa - E-O-Zumba-E.mp3
[2011.01.10 21:51:43 | 000,000,859 | ---- | C] () -- C:\Documents and Settings\Milos\Desktop\ConvertXtoDVD 4.lnk
[2011.01.10 21:51:43 | 000,000,845 | ---- | C] () -- C:\Documents and Settings\Milos\Application Data\Microsoft\Internet Explorer\Quick Launch\ConvertXtoDVD 4.lnk
[2011.01.07 09:19:23 | 000,155,343 | ---- | C] () -- C:\Documents and Settings\Milos\Desktop\pravidla-sutaze-hlada-sa-milionar.pdf
[2010.07.31 09:33:07 | 000,000,017 | ---- | C] () -- C:\WINDOWS\MovingPicture.ini
[2010.07.28 05:29:46 | 000,000,024 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\__FileUploader.log
[2010.07.28 05:14:50 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\Milos\Local Settings\Application Data\fusioncache.dat
[2010.07.28 05:11:08 | 000,196,096 | ---- | C] () -- C:\WINDOWS\System32\macd32.dll
[2010.07.28 05:11:08 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\mase32.dll
[2010.07.28 05:11:08 | 000,136,192 | ---- | C] () -- C:\WINDOWS\System32\mamc32.dll
[2010.07.28 05:11:08 | 000,057,856 | ---- | C] () -- C:\WINDOWS\System32\masd32.dll
[2010.07.28 05:11:08 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\ma32.dll
[2010.02.01 19:17:19 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010.02.01 19:17:17 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010.02.01 19:17:13 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010.02.01 19:17:13 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010.02.01 19:17:09 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010.01.27 20:15:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\WB.ini
[2010.01.24 18:01:48 | 000,000,093 | ---- | C] () -- C:\Program Files\UKCS.INI
[2010.01.24 18:01:48 | 000,000,093 | ---- | C] () -- C:\Program Files\SVCS.INI
[2010.01.24 18:01:48 | 000,000,093 | ---- | C] () -- C:\Program Files\SPCS.INI
[2010.01.24 18:01:47 | 000,000,093 | ---- | C] () -- C:\Program Files\SLCS.INI
[2010.01.24 18:01:47 | 000,000,093 | ---- | C] () -- C:\Program Files\RUCS.INI
[2010.01.24 18:01:47 | 000,000,093 | ---- | C] () -- C:\Program Files\RMCS.INI
[2010.01.24 18:01:47 | 000,000,093 | ---- | C] () -- C:\Program Files\PRCS.INI
[2010.01.24 18:01:46 | 000,000,093 | ---- | C] () -- C:\Program Files\POCS.INI
[2010.01.24 18:01:46 | 000,000,093 | ---- | C] () -- C:\Program Files\MACS.INI
[2010.01.24 18:01:46 | 000,000,093 | ---- | C] () -- C:\Program Files\LACS.INI
[2010.01.24 18:01:46 | 000,000,093 | ---- | C] () -- C:\Program Files\ITCS.INI
[2010.01.24 18:01:45 | 000,000,093 | ---- | C] () -- C:\Program Files\GRCS.INI
[2010.01.24 18:01:45 | 000,000,093 | ---- | C] () -- C:\Program Files\FRCS.INI
[2010.01.24 18:01:45 | 000,000,093 | ---- | C] () -- C:\Program Files\FNCS.INI
[2010.01.24 18:01:45 | 000,000,093 | ---- | C] () -- C:\Program Files\FICS.INI
[2010.01.24 18:01:44 | 000,000,093 | ---- | C] () -- C:\Program Files\CZCS.INI
[2010.01.24 18:01:44 | 000,000,093 | ---- | C] () -- C:\Program Files\CRCS.INI
[2010.01.24 18:01:44 | 000,000,093 | ---- | C] () -- C:\Program Files\BUCS.INI
[2010.01.24 18:01:44 | 000,000,093 | ---- | C] () -- C:\Program Files\ANCS.INI
[2010.01.24 18:01:43 | 003,798,177 | ---- | C] () -- C:\Program Files\GRCS.DIC
[2010.01.24 18:01:43 | 000,721,220 | ---- | C] () -- C:\Program Files\FRCS.DIC
[2010.01.24 18:01:42 | 000,000,512 | ---- | C] () -- C:\Program Files\UKCS2.DBF
[2010.01.24 18:01:42 | 000,000,354 | ---- | C] () -- C:\Program Files\UKCSX1.DBF
[2010.01.24 18:01:42 | 000,000,289 | ---- | C] () -- C:\Program Files\UKCSY1.DBF
[2010.01.24 18:01:41 | 008,315,153 | ---- | C] () -- C:\Program Files\UKCS.DBF
[2010.01.24 18:01:41 | 000,000,354 | ---- | C] () -- C:\Program Files\SVCSX1.DBF
[2010.01.24 18:01:41 | 000,000,289 | ---- | C] () -- C:\Program Files\SVCSY1.DBF
[2010.01.24 18:01:40 | 005,781,022 | ---- | C] () -- C:\Program Files\SVCS.DBF
[2010.01.24 18:01:40 | 000,040,429 | ---- | C] () -- C:\Program Files\SVCS2.DBF
[2010.01.24 18:01:40 | 000,000,354 | ---- | C] () -- C:\Program Files\SPCSX1.DBF
[2010.01.24 18:01:40 | 000,000,289 | ---- | C] () -- C:\Program Files\SPCSY1.DBF
[2010.01.24 18:01:39 | 010,299,701 | ---- | C] () -- C:\Program Files\SPCS.DBF
[2010.01.24 18:01:39 | 000,056,931 | ---- | C] () -- C:\Program Files\SPCS2.DBF
[2010.01.24 18:01:38 | 000,170,661 | ---- | C] () -- C:\Program Files\SLCS2.DBF
[2010.01.24 18:01:38 | 000,000,354 | ---- | C] () -- C:\Program Files\SLCSX1.DBF
[2010.01.24 18:01:38 | 000,000,289 | ---- | C] () -- C:\Program Files\SLCSY1.DBF
[2010.01.24 18:01:37 | 010,756,272 | ---- | C] () -- C:\Program Files\SLCS.DBF
[2010.01.24 18:01:37 | 000,703,408 | ---- | C] () -- C:\Program Files\RUCS2.DBF
[2010.01.24 18:01:37 | 000,000,354 | ---- | C] () -- C:\Program Files\RUCSX1.DBF
[2010.01.24 18:01:37 | 000,000,289 | ---- | C] () -- C:\Program Files\RUCSY1.DBF
[2010.01.24 18:01:34 | 020,272,921 | ---- | C] () -- C:\Program Files\RUCS.DBF
[2010.01.24 18:01:34 | 000,000,289 | ---- | C] () -- C:\Program Files\RMCSY1.DBF
[2010.01.24 18:01:33 | 003,952,723 | ---- | C] () -- C:\Program Files\RMCS.DBF
[2010.01.24 18:01:33 | 000,000,735 | ---- | C] () -- C:\Program Files\RMCS2.DBF
[2010.01.24 18:01:33 | 000,000,354 | ---- | C] () -- C:\Program Files\RMCSX1.DBF
[2010.01.24 18:01:32 | 003,083,765 | ---- | C] () -- C:\Program Files\READERN.DBF
[2010.01.24 18:01:32 | 001,912,405 | ---- | C] () -- C:\Program Files\READERA.DBF
[2010.01.24 18:01:32 | 000,820,282 | ---- | C] () -- C:\Program Files\PRONSP.DBF
[2010.01.24 18:01:31 | 001,495,957 | ---- | C] () -- C:\Program Files\PRONRU.DBF
[2010.01.24 18:01:30 | 006,406,411 | ---- | C] () -- C:\Program Files\PRONGR.DBF
[2010.01.24 18:01:30 | 001,395,922 | ---- | C] () -- C:\Program Files\PRONIT.DBF
[2010.01.24 18:01:30 | 000,944,455 | ---- | C] () -- C:\Program Files\PRONFR.DBF
[2010.01.24 18:01:29 | 000,054,255 | ---- | C] () -- C:\Program Files\PRCS2.DBF
[2010.01.24 18:01:29 | 000,000,354 | ---- | C] () -- C:\Program Files\PRCSX1.DBF
[2010.01.24 18:01:29 | 000,000,289 | ---- | C] () -- C:\Program Files\PRCSY1.DBF
[2010.01.24 18:01:28 | 007,506,330 | ---- | C] () -- C:\Program Files\PRCS.DBF
[2010.01.24 18:01:28 | 000,000,289 | ---- | C] () -- C:\Program Files\POCSY1.DBF
[2010.01.24 18:01:27 | 005,720,521 | ---- | C] () -- C:\Program Files\POCS.DBF
[2010.01.24 18:01:27 | 000,176,682 | ---- | C] () -- C:\Program Files\POCS2.DBF
[2010.01.24 18:01:27 | 000,000,354 | ---- | C] () -- C:\Program Files\POCSX1.DBF
[2010.01.24 18:01:26 | 000,472,062 | ---- | C] () -- C:\Program Files\NAME.DBF
[2010.01.24 18:01:26 | 000,000,354 | ---- | C] () -- C:\Program Files\MACSX1.DBF
[2010.01.24 18:01:26 | 000,000,289 | ---- | C] () -- C:\Program Files\MACSY1.DBF
[2010.01.24 18:01:25 | 009,532,171 | ---- | C] () -- C:\Program Files\MACS.DBF
[2010.01.24 18:01:25 | 000,317,172 | ---- | C] () -- C:\Program Files\MACS2.DBF
[2010.01.24 18:01:25 | 000,000,289 | ---- | C] () -- C:\Program Files\LACSY1.DBF
[2010.01.24 18:01:24 | 000,110,674 | ---- | C] () -- C:\Program Files\LACS2.DBF
[2010.01.24 18:01:24 | 000,000,354 | ---- | C] () -- C:\Program Files\LACSX1.DBF
[2010.01.24 18:01:23 | 005,864,334 | ---- | C] () -- C:\Program Files\LACS.DBF
[2010.01.24 18:01:23 | 000,000,354 | ---- | C] () -- C:\Program Files\ITCSX1.DBF
[2010.01.24 18:01:23 | 000,000,289 | ---- | C] () -- C:\Program Files\ITCSY1.DBF
[2010.01.24 18:01:22 | 010,202,801 | ---- | C] () -- C:\Program Files\ITCS.DBF
[2010.01.24 18:01:22 | 000,141,225 | ---- | C] () -- C:\Program Files\ITCS2.DBF
[2010.01.24 18:01:21 | 000,616,884 | ---- | C] () -- C:\Program Files\GRCSY0.DBF
[2010.01.24 18:01:21 | 000,590,619 | ---- | C] () -- C:\Program Files\GRTCX70.DBF
[2010.01.24 18:01:21 | 000,571,583 | ---- | C] () -- C:\Program Files\GRCSX0.DBF
[2010.01.24 18:01:20 | 001,753,738 | ---- | C] () -- C:\Program Files\GRCS2.DBF
[2010.01.24 18:01:20 | 000,177,937 | ---- | C] () -- C:\Program Files\GRCSTCX2.DBF
[2010.01.24 18:01:20 | 000,082,758 | ---- | C] () -- C:\Program Files\GRCSTCX.DBF
[2010.01.24 18:01:15 | 045,367,770 | ---- | C] () -- C:\Program Files\GRCS.DBF
[2010.01.24 18:01:15 | 000,102,014 | ---- | C] () -- C:\Program Files\FRTCX70.DBF
[2010.01.24 18:01:14 | 000,132,353 | ---- | C] () -- C:\Program Files\FRCSX0.DBF
[2010.01.24 18:01:14 | 000,060,722 | ---- | C] () -- C:\Program Files\FRCSY0.DBF
[2010.01.24 18:01:14 | 000,000,354 | ---- | C] () -- C:\Program Files\FRCSX1.DBF
[2010.01.24 18:01:14 | 000,000,289 | ---- | C] () -- C:\Program Files\FRCSY1.DBF
[2010.01.24 18:01:13 | 000,495,572 | ---- | C] () -- C:\Program Files\FRCS2.DBF
[2010.01.24 18:01:13 | 000,094,240 | ---- | C] () -- C:\Program Files\FRCSTCX.DBF
[2010.01.24 18:01:13 | 000,042,823 | ---- | C] () -- C:\Program Files\FRCSTCX2.DBF
[2010.01.24 18:01:10 | 022,227,016 | ---- | C] () -- C:\Program Files\FRCS.DBF
[2010.01.24 18:01:09 | 000,017,014 | ---- | C] () -- C:\Program Files\FNCS2.DBF
[2010.01.24 18:01:09 | 000,000,354 | ---- | C] () -- C:\Program Files\FNCSX1.DBF
[2010.01.24 18:01:09 | 000,000,289 | ---- | C] () -- C:\Program Files\FNCSY1.DBF
[2010.01.24 18:01:08 | 004,261,172 | ---- | C] () -- C:\Program Files\FNCS.DBF
[2010.01.24 18:01:08 | 000,000,289 | ---- | C] () -- C:\Program Files\FICSY1.DBF
[2010.01.24 18:01:07 | 007,830,996 | ---- | C] () -- C:\Program Files\FICS.DBF
[2010.01.24 18:01:07 | 000,039,760 | ---- | C] () -- C:\Program Files\FICS2.DBF
[2010.01.24 18:01:07 | 000,000,354 | ---- | C] () -- C:\Program Files\FICSX1.DBF
[2010.01.24 18:01:06 | 001,996,091 | ---- | C] () -- C:\Program Files\CZL.DBF
[2010.01.24 18:01:06 | 000,148,184 | ---- | C] () -- C:\Program Files\CSGRTCX2.DBF
[2010.01.24 18:01:05 | 000,120,520 | ---- | C] () -- C:\Program Files\CSFRTCX.DBF
[2010.01.24 18:01:05 | 000,103,958 | ---- | C] () -- C:\Program Files\CSGRTCX.DBF
[2010.01.24 18:01:05 | 000,033,209 | ---- | C] () -- C:\Program Files\CSFRTCX2.DBF
[2010.01.24 18:01:05 | 000,000,289 | ---- | C] () -- C:\Program Files\CRCSY1.DBF
[2010.01.24 18:01:04 | 003,410,972 | ---- | C] () -- C:\Program Files\CRCS.DBF
[2010.01.24 18:01:04 | 000,003,857 | ---- | C] () -- C:\Program Files\CRCS2.DBF
[2010.01.24 18:01:04 | 000,000,354 | ---- | C] () -- C:\Program Files\CRCSX1.DBF
[2010.01.24 18:01:03 | 000,628,355 | ---- | C] () -- C:\Program Files\CORAN.DBF
[2010.01.24 18:01:03 | 000,627,862 | ---- | C] () -- C:\Program Files\CORGR.DBF
[2010.01.24 18:01:03 | 000,000,354 | ---- | C] () -- C:\Program Files\BUCSX1.DBF
[2010.01.24 18:01:03 | 000,000,289 | ---- | C] () -- C:\Program Files\BUCSY1.DBF
[2010.01.24 18:01:02 | 006,650,953 | ---- | C] () -- C:\Program Files\BUCS.DBF
[2010.01.24 18:01:02 | 000,614,914 | ---- | C] () -- C:\Program Files\PRONGR.DAT
[2010.01.24 18:01:02 | 000,001,404 | ---- | C] () -- C:\Program Files\BUCS2.DBF
[2010.01.24 18:01:01 | 000,001,783 | ---- | C] () -- C:\Program Files\UKCS.CET
[2010.01.24 18:01:01 | 000,001,730 | ---- | C] () -- C:\Program Files\SVCS.CET
[2010.01.24 18:01:01 | 000,000,009 | ---- | C] () -- C:\Program Files\PRONFR.DAT
[2010.01.24 18:01:00 | 000,001,674 | ---- | C] () -- C:\Program Files\RMCS.CET
[2010.01.24 18:01:00 | 000,001,594 | ---- | C] () -- C:\Program Files\SLCS.CET
[2010.01.24 18:01:00 | 000,001,583 | ---- | C] () -- C:\Program Files\POCS.CET
[2010.01.24 18:01:00 | 000,001,572 | ---- | C] () -- C:\Program Files\PRCS.CET
[2010.01.24 18:00:59 | 000,001,916 | ---- | C] () -- C:\Program Files\FNCS.CET
[2010.01.24 18:00:59 | 000,001,734 | ---- | C] () -- C:\Program Files\MACS.CET
[2010.01.24 18:00:59 | 000,001,358 | ---- | C] () -- C:\Program Files\GRCS.CET
[2010.01.24 18:00:59 | 000,001,286 | ---- | C] () -- C:\Program Files\FRCS.CET
[2010.01.24 18:00:58 | 000,003,072 | ---- | C] () -- C:\Program Files\UKCSY1.CDX
[2010.01.24 18:00:58 | 000,001,860 | ---- | C] () -- C:\Program Files\BUCS.CET
[2010.01.24 18:00:58 | 000,001,641 | ---- | C] () -- C:\Program Files\CRCS.CET
[2010.01.24 18:00:58 | 000,001,472 | ---- | C] () -- C:\Program Files\FICS.CET
[2010.01.24 18:00:57 | 000,851,968 | ---- | C] () -- C:\Program Files\UKCS.CDX
[2010.01.24 18:00:57 | 000,003,072 | ---- | C] () -- C:\Program Files\UKCSX1.CDX
[2010.01.24 18:00:56 | 000,602,112 | ---- | C] () -- C:\Program Files\SVCS.CDX
[2010.01.24 18:00:56 | 000,003,072 | ---- | C] () -- C:\Program Files\SVCSY1.CDX
[2010.01.24 18:00:56 | 000,003,072 | ---- | C] () -- C:\Program Files\SVCSX1.CDX
[2010.01.24 18:00:55 | 001,283,072 | ---- | C] () -- C:\Program Files\SPCS.CDX
[2010.01.24 18:00:55 | 000,003,072 | ---- | C] () -- C:\Program Files\SPCSY1.CDX
[2010.01.24 18:00:55 | 000,003,072 | ---- | C] () -- C:\Program Files\SPCSX1.CDX
[2010.01.24 18:00:55 | 000,003,072 | ---- | C] () -- C:\Program Files\SLCSY1.CDX
[2010.01.24 18:00:54 | 001,989,120 | ---- | C] () -- C:\Program Files\SLCS.CDX
[2010.01.24 18:00:54 | 000,003,072 | ---- | C] () -- C:\Program Files\SLCSX1.CDX
[2010.01.24 18:00:54 | 000,003,072 | ---- | C] () -- C:\Program Files\RUCSY1.CDX
[2010.01.24 18:00:53 | 003,584,512 | ---- | C] () -- C:\Program Files\RUCS.CDX
[2010.01.24 18:00:53 | 000,003,072 | ---- | C] () -- C:\Program Files\RUCSX1.CDX
[2010.01.24 18:00:53 | 000,003,072 | ---- | C] () -- C:\Program Files\RMCSY1.CDX
[2010.01.24 18:00:53 | 000,003,072 | ---- | C] () -- C:\Program Files\RMCSX1.CDX
[2010.01.24 18:00:52 | 000,495,104 | ---- | C] () -- C:\Program Files\READERN.CDX
[2010.01.24 18:00:52 | 000,402,432 | ---- | C] () -- C:\Program Files\RMCS.CDX
[2010.01.24 18:00:52 | 000,365,568 | ---- | C] () -- C:\Program Files\READERA.CDX
[2010.01.24 18:00:51 | 002,147,328 | ---- | C] () -- C:\Program Files\PRONGR.CDX
[2010.01.24 18:00:51 | 000,293,888 | ---- | C] () -- C:\Program Files\PRONFR.CDX
[2010.01.24 18:00:50 | 001,169,920 | ---- | C] () -- C:\Program Files\PRCS.CDX
[2010.01.24 18:00:50 | 000,003,072 | ---- | C] () -- C:\Program Files\PRCSY1.CDX
[2010.01.24 18:00:50 | 000,003,072 | ---- | C] () -- C:\Program Files\PRCSX1.CDX
[2010.01.24 18:00:50 | 000,003,072 | ---- | C] () -- C:\Program Files\POCSY1.CDX
[2010.01.24 18:00:49 | 000,916,480 | ---- | C] () -- C:\Program Files\POCS.CDX
[2010.01.24 18:00:49 | 000,003,072 | ---- | C] () -- C:\Program Files\POCSX1.CDX
[2010.01.24 18:00:49 | 000,003,072 | ---- | C] () -- C:\Program Files\MACSY1.CDX
[2010.01.24 18:00:48 | 001,164,800 | ---- | C] () -- C:\Program Files\MACS.CDX
[2010.01.24 18:00:48 | 000,003,072 | ---- | C] () -- C:\Program Files\MACSX1.CDX
[2010.01.24 18:00:48 | 000,003,072 | ---- | C] () -- C:\Program Files\LACSY1.CDX
[2010.01.24 18:00:48 | 000,003,072 | ---- | C] () -- C:\Program Files\LACSX1.CDX
[2010.01.24 18:00:47 | 001,022,464 | ---- | C] () -- C:\Program Files\LACS.CDX
[2010.01.24 18:00:47 | 000,003,072 | ---- | C] () -- C:\Program Files\ITCSY1.CDX
[2010.01.24 18:00:47 | 000,003,072 | ---- | C] () -- C:\Program Files\ITCSX1.CDX
[2010.01.24 18:00:46 | 001,462,784 | ---- | C] () -- C:\Program Files\ITCS.CDX
[2010.01.24 18:00:46 | 000,158,720 | ---- | C] () -- C:\Program Files\GRCSY0.CDX
[2010.01.24 18:00:46 | 000,145,920 | ---- | C] () -- C:\Program Files\GRCSX0.CDX
[2010.01.24 18:00:45 | 007,206,912 | ---- | C] () -- C:\Program Files\GRCS.CDX
[2010.01.24 18:00:45 | 000,073,728 | ---- | C] () -- C:\Program Files\GRCSTCX.CDX
[2010.01.24 18:00:45 | 000,003,072 | ---- | C] () -- C:\Program Files\FRCSY1.CDX
[2010.01.24 18:00:44 | 000,047,104 | ---- | C] () -- C:\Program Files\FRCSY0.CDX
[2010.01.24 18:00:44 | 000,043,520 | ---- | C] () -- C:\Program Files\FRCSX0.CDX
[2010.01.24 18:00:44 | 000,003,072 | ---- | C] () -- C:\Program Files\FRCSX1.CDX
[2010.01.24 18:00:43 | 003,081,728 | ---- | C] () -- C:\Program Files\FRCS.CDX
[2010.01.24 18:00:43 | 000,027,648 | ---- | C] () -- C:\Program Files\FRCSTCX.CDX
[2010.01.24 18:00:43 | 000,003,072 | ---- | C] () -- C:\Program Files\FNCSY1.CDX
[2010.01.24 18:00:43 | 000,003,072 | ---- | C] () -- C:\Program Files\FNCSX1.CDX
[2010.01.24 18:00:41 | 000,531,968 | ---- | C] () -- C:\Program Files\FNCS.CDX
[2010.01.24 18:00:41 | 000,003,072 | ---- | C] () -- C:\Program Files\FICSY1.CDX
[2010.01.24 18:00:40 | 000,975,360 | ---- | C] () -- C:\Program Files\FICS.CDX
[2010.01.24 18:00:40 | 000,003,072 | ---- | C] () -- C:\Program Files\FICSX1.CDX
[2010.01.24 18:00:39 | 000,861,696 | ---- | C] () -- C:\Program Files\CSUK.CDX
[2010.01.24 18:00:39 | 000,694,272 | ---- | C] () -- C:\Program Files\CSSV.CDX
[2010.01.24 18:00:38 | 001,920,512 | ---- | C] () -- C:\Program Files\CSSL.CDX
[2010.01.24 18:00:38 | 001,360,384 | ---- | C] () -- C:\Program Files\CSSP.CDX
[2010.01.24 18:00:37 | 003,401,728 | ---- | C] () -- C:\Program Files\CSRU.CDX
[2010.01.24 18:00:37 | 000,991,744 | ---- | C] () -- C:\Program Files\CSPR.CDX
[2010.01.24 18:00:37 | 000,454,144 | ---- | C] () -- C:\Program Files\CSRM.CDX
[2010.01.24 18:00:36 | 001,178,624 | ---- | C] () -- C:\Program Files\CSMA.CDX
[2010.01.24 18:00:36 | 000,961,024 | ---- | C] () -- C:\Program Files\CSLA.CDX
[2010.01.24 18:00:36 | 000,892,416 | ---- | C] () -- C:\Program Files\CSPO.CDX
[2010.01.24 18:00:35 | 001,544,704 | ---- | C] () -- C:\Program Files\CSIT.CDX
[2010.01.24 18:00:35 | 000,081,920 | ---- | C] () -- C:\Program Files\CSGRTCX.CDX
[2010.01.24 18:00:33 | 007,277,056 | ---- | C] () -- C:\Program Files\CSGR.CDX
[2010.01.24 18:00:33 | 003,126,784 | ---- | C] () -- C:\Program Files\CSFR.CDX
[2010.01.24 18:00:33 | 000,031,744 | ---- | C] () -- C:\Program Files\CSFRTCX.CDX
[2010.01.24 18:00:32 | 001,032,192 | ---- | C] () -- C:\Program Files\CSFI.CDX
[2010.01.24 18:00:32 | 000,756,224 | ---- | C] () -- C:\Program Files\CSBU.CDX
[2010.01.24 18:00:32 | 000,546,816 | ---- | C] () -- C:\Program Files\CSFN.CDX
[2010.01.24 18:00:32 | 000,458,240 | ---- | C] () -- C:\Program Files\CSCR.CDX
[2010.01.24 18:00:31 | 000,425,472 | ---- | C] () -- C:\Program Files\CRCS.CDX
[2010.01.24 18:00:31 | 000,003,072 | ---- | C] () -- C:\Program Files\CRCSY1.CDX
[2010.01.24 18:00:31 | 000,003,072 | ---- | C] () -- C:\Program Files\CRCSX1.CDX
[2010.01.24 18:00:31 | 000,003,072 | ---- | C] () -- C:\Program Files\BUCSY1.CDX
[2010.01.24 18:00:30 | 000,663,552 | ---- | C] () -- C:\Program Files\BUCS.CDX
[2010.01.24 18:00:30 | 000,003,072 | ---- | C] () -- C:\Program Files\BUCSX1.CDX
[2010.01.24 18:00:03 | 000,132,690 | ---- | C] () -- C:\Program Files\WEBTB.XPI
[2010.01.24 18:00:02 | 002,535,476 | ---- | C] () -- C:\Program Files\TRNCOM.DLL
[2010.01.24 17:59:59 | 006,771,200 | ---- | C] () -- C:\Program Files\ANCS.CDX
[2010.01.24 17:59:59 | 000,007,933 | ---- | C] () -- C:\Program Files\TRANSLAT.UNI
[2010.01.24 17:59:58 | 001,890,883 | ---- | C] () -- C:\Program Files\ANCS2.DBF
[2010.01.24 17:59:58 | 000,214,528 | ---- | C] () -- C:\Program Files\ANCSY0.CDX
[2010.01.24 17:59:58 | 000,189,440 | ---- | C] () -- C:\Program Files\ANCSX0.CDX
[2010.01.24 17:59:57 | 000,923,648 | ---- | C] () -- C:\Program Files\PRONAN.CDX
[2010.01.24 17:59:57 | 000,648,033 | ---- | C] () -- C:\Program Files\ANCSX0.DBF
[2010.01.24 17:59:57 | 000,418,637 | ---- | C] () -- C:\Program Files\ANCSY0.DBF
[2010.01.24 17:59:56 | 003,465,911 | ---- | C] () -- C:\Program Files\PRONAN.DBF
[2010.01.24 17:59:56 | 000,884,706 | ---- | C] () -- C:\Program Files\PRONAN.DAT
[2010.01.24 17:59:56 | 000,002,676 | ---- | C] () -- C:\Program Files\TRNCOM.CFG
[2010.01.24 17:59:55 | 000,002,203 | ---- | C] () -- C:\Program Files\MAILTRAN.CFG
[2010.01.24 17:59:55 | 000,001,581 | ---- | C] () -- C:\Program Files\WDICT32.CFG
[2010.01.24 17:59:54 | 000,979,968 | ---- | C] () -- C:\Program Files\CSANTCX.CDX
[2010.01.24 17:59:54 | 000,005,513 | ---- | C] () -- C:\Program Files\WTRAN32.CFG
[2010.01.24 17:59:52 | 005,755,549 | ---- | C] () -- C:\Program Files\CSANTCX2.DBF
[2010.01.24 17:59:52 | 001,218,113 | ---- | C] () -- C:\Program Files\CSANTCX.DBF
[2010.01.24 17:59:52 | 000,509,952 | ---- | C] () -- C:\Program Files\ANCSTCX.CDX
[2010.01.24 17:59:51 | 006,145,247 | ---- | C] () -- C:\Program Files\ANCSTCX2.DBF
[2010.01.24 17:59:51 | 000,591,778 | ---- | C] () -- C:\Program Files\ANCSTCX.DBF
[2010.01.24 17:59:48 | 015,959,223 | ---- | C] () -- C:\Program Files\ANTCX70.DBF
[2010.01.24 17:59:48 | 001,030,343 | ---- | C] () -- C:\Program Files\ANCS.DIC
[2010.01.24 17:59:47 | 006,992,384 | ---- | C] () -- C:\Program Files\CSAN.CDX
[2010.01.24 17:59:47 | 000,001,170 | ---- | C] () -- C:\Program Files\ANCS.CET
[2010.01.24 17:59:40 | 045,346,888 | ---- | C] () -- C:\Program Files\ANCS.DBF
[2010.01.24 17:59:38 | 001,466,368 | ---- | C] () -- C:\Program Files\trnexe.exe
[2010.01.24 17:59:38 | 000,007,832 | ---- | C] () -- C:\Program Files\pauza.wav
[2010.01.24 17:59:37 | 000,026,457 | ---- | C] () -- C:\Program Files\Wtran32.jpg
[2010.01.24 17:59:37 | 000,000,078 | ---- | C] () -- C:\Program Files\SLOZENI.DTC
[2010.01.24 17:59:36 | 000,503,706 | ---- | C] () -- C:\Program Files\TX14_DOC.DOC
[2010.01.24 17:59:36 | 000,163,121 | ---- | C] () -- C:\Program Files\WEBFF.XPI
[2010.01.24 17:59:32 | 000,000,530 | ---- | C] () -- C:\Program Files\TX14_ic.ini
[2010.01.24 17:59:31 | 000,002,045 | ---- | C] () -- C:\Program Files\TX4ole14.dep
[2010.01.24 17:59:29 | 001,675,264 | ---- | C] () -- C:\Program Files\WtrTMX.dll
[2010.01.24 17:59:29 | 000,010,474 | ---- | C] () -- C:\Program Files\tmx14a.dtd
[2010.01.24 17:59:29 | 000,002,201 | ---- | C] () -- C:\Program Files\TX.INF
[2010.01.24 17:59:28 | 000,010,481 | ---- | C] () -- C:\Program Files\tmx14.dtd
[2010.01.24 17:59:28 | 000,010,179 | ---- | C] () -- C:\Program Files\tmx13.dtd
[2010.01.24 17:59:28 | 000,009,173 | ---- | C] () -- C:\Program Files\tmx12.dtd
[2010.01.24 17:59:28 | 000,008,109 | ---- | C] () -- C:\Program Files\tmx11.dtd
[2010.01.24 17:59:27 | 000,581,632 | ---- | C] () -- C:\Program Files\MAILTRAN.EXE
[2010.01.24 17:59:27 | 000,001,064 | ---- | C] () -- C:\Program Files\TRANSLAT.INI
[2010.01.24 17:59:27 | 000,000,050 | ---- | C] () -- C:\Program Files\WTRDCTM.CFG
[2010.01.24 17:59:26 | 000,015,148 | ---- | C] () -- C:\Program Files\CORR.RU
[2010.01.24 17:59:26 | 000,000,002 | ---- | C] () -- C:\Program Files\CORRECT.RU
[2010.01.24 17:59:26 | 000,000,002 | ---- | C] () -- C:\Program Files\CORRECT.IT
[2010.01.24 17:59:26 | 000,000,002 | ---- | C] () -- C:\Program Files\CORRECT.FR
[2010.01.24 17:59:25 | 000,017,985 | ---- | C] () -- C:\Program Files\CORRECT.CZS
[2010.01.24 17:59:25 | 000,017,985 | ---- | C] () -- C:\Program Files\CORRECT.CZR
[2010.01.24 17:59:25 | 000,017,985 | ---- | C] () -- C:\Program Files\CORRECT.CZI
[2010.01.24 17:59:25 | 000,017,985 | ---- | C] () -- C:\Program Files\CORRECT.CZF
[2010.01.24 17:59:24 | 000,022,779 | ---- | C] () -- C:\Program Files\CORRECT.CZN
[2010.01.24 17:59:24 | 000,012,915 | ---- | C] () -- C:\Program Files\CORRECT.CZA
[2010.01.24 17:59:24 | 000,000,682 | ---- | C] () -- C:\Program Files\SLOZENI.DTA
[2010.01.24 17:59:24 | 000,000,332 | ---- | C] () -- C:\Program Files\SLOZENI.DTN
[2010.01.24 17:59:23 | 000,043,860 | ---- | C] () -- C:\Program Files\CORRECT.AN
[2010.01.24 17:59:23 | 000,018,572 | ---- | C] () -- C:\Program Files\CORRECTF.AN
[2010.01.24 17:59:23 | 000,002,665 | ---- | C] () -- C:\Program Files\CORRECT.AN0
[2010.01.24 17:59:23 | 000,001,800 | ---- | C] () -- C:\Program Files\CORRECTX.AN
[2010.01.24 17:59:22 | 001,678,504 | ---- | C] () -- C:\Program Files\CZCS.DIC
[2010.01.24 17:59:22 | 000,683,008 | ---- | C] () -- C:\Program Files\SYNON1.CDX
[2010.01.24 17:59:22 | 000,571,392 | ---- | C] () -- C:\Program Files\SYNON2.CDX
[2010.01.24 17:59:22 | 000,013,285 | ---- | C] () -- C:\Program Files\ANCS.GRM
[2010.01.24 17:59:21 | 000,855,479 | ---- | C] () -- C:\Program Files\SYNON.DBF
[2010.01.24 17:59:21 | 000,774,457 | ---- | C] () -- C:\Program Files\CZL4.DBF
[2010.01.24 17:59:21 | 000,747,520 | ---- | C] () -- C:\Program Files\CZL4.CDX
[2010.01.24 17:59:20 | 002,864,128 | ---- | C] () -- C:\Program Files\COR4AN2.CDX
[2010.01.24 17:59:20 | 000,113,359 | ---- | C] () -- C:\Program Files\CORRECT.CS0
[2010.01.24 17:59:20 | 000,033,204 | ---- | C] () -- C:\Program Files\CORRECT.CS
[2010.01.24 17:59:20 | 000,007,129 | ---- | C] () -- C:\Program Files\CORRECT.PJS
[2010.01.24 17:59:19 | 003,437,196 | ---- | C] () -- C:\Program Files\COR4AN.DBF
[2010.01.24 17:59:19 | 003,425,280 | ---- | C] () -- C:\Program Files\COR4AN.CDX
[2010.01.24 17:59:19 | 000,132,690 | ---- | C] () -- C:\Program Files\WEBTB.XP_
[2010.01.24 17:59:18 | 000,163,121 | ---- | C] () -- C:\Program Files\WEBFF.XP_
[2010.01.24 17:59:18 | 000,038,754 | ---- | C] () -- C:\Program Files\TRNCOMc.CHM
[2010.01.24 17:59:18 | 000,037,641 | ---- | C] () -- C:\Program Files\MAILTRANc.CHM
[2010.01.24 17:59:18 | 000,024,011 | ---- | C] () -- C:\Program Files\WDCTM32c.CHM
[2010.01.24 17:59:17 | 000,343,689 | ---- | C] () -- C:\Program Files\APPEND.DTN
[2010.01.24 17:59:17 | 000,323,586 | ---- | C] () -- C:\Program Files\WTRAN32c.CHM
[2010.01.24 17:59:17 | 000,131,233 | ---- | C] () -- C:\Program Files\WDICT32c.CHM
[2010.01.24 17:59:17 | 000,105,456 | ---- | C] () -- C:\Program Files\APPENDO.DTN
[2010.01.24 17:59:16 | 000,406,129 | ---- | C] () -- C:\Program Files\WEN.DAT
[2010.01.24 17:59:16 | 000,032,109 | ---- | C] () -- C:\Program Files\APPEND.DTA
[2010.01.24 17:59:16 | 000,010,401 | ---- | C] () -- C:\Program Files\APPENDO.DTA
[2010.01.24 17:59:15 | 000,499,878 | ---- | C] () -- C:\Program Files\WINTRAN.DCZ
[2010.01.24 17:59:15 | 000,000,354 | ---- | C] () -- C:\Program Files\TRNIKONY.IST
[2010.01.24 17:59:14 | 002,535,476 | ---- | C] () -- C:\Program Files\TRNCOM.DL_
[2010.01.24 17:59:14 | 000,798,771 | ---- | C] () -- C:\Program Files\WEBIE.DL_
[2010.01.24 17:59:14 | 000,557,622 | ---- | C] () -- C:\Program Files\TRNIKONY.BMP
[2010.01.24 17:59:13 | 000,098,304 | ---- | C] () -- C:\Program Files\MAILTRANc.DLL
[2010.01.24 17:59:13 | 000,057,344 | ---- | C] () -- C:\Program Files\WDCTM32c.DLL
[2010.01.24 17:59:12 | 000,244,224 | ---- | C] () -- C:\Program Files\WEN.DLL
[2010.01.24 17:59:11 | 000,011,264 | ---- | C] () -- C:\Program Files\WWWHOOK.DLL
[2010.01.24 17:59:09 | 000,200,704 | ---- | C] () -- C:\Program Files\TRNOET.DL_
[2010.01.24 17:59:09 | 000,045,056 | ---- | C] () -- C:\Program Files\TRNOEH.DL_
[2010.01.24 17:59:08 | 000,249,856 | ---- | C] () -- C:\Program Files\CLIPDLL.DLL
[2010.01.24 17:59:04 | 000,026,624 | ---- | C] () -- C:\Program Files\OETRN.EX_
[2010.01.24 17:59:03 | 001,783,296 | ---- | C] () -- C:\Program Files\WTRAN32.EXE
[2010.01.24 17:59:03 | 000,581,120 | ---- | C] () -- C:\Program Files\WTRDCTM.EXE
[2010.01.24 17:59:02 | 001,173,504 | ---- | C] () -- C:\Program Files\WDICT32.EXE
[2010.01.24 17:59:02 | 000,000,004 | ---- | C] () -- C:\Program Files\USER.NET
[2010.01.21 19:14:37 | 000,000,098 | ---- | C] () -- C:\WINDOWS\WirelessFTP.INI
[2010.01.21 18:54:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\tosOBEX.INI
[2010.01.21 14:21:43 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Milos\Application Data\downloads.m3u
[2010.01.19 19:46:35 | 000,000,158 | ---- | C] () -- C:\Documents and Settings\Milos\Application Data\default.rss
[2010.01.19 19:45:23 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010.01.17 22:03:44 | 000,001,041 | ---- | C] () -- C:\Documents and Settings\Milos\Application Data\vso_ts_preview.xml
[2010.01.17 22:03:16 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\Milos\Application Data\pcouffin.log
[2010.01.17 22:03:10 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Milos\Application Data\pcouffin.cat
[2010.01.17 22:03:10 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Milos\Application Data\pcouffin.inf
[2010.01.17 21:06:02 | 000,124,928 | ---- | C] () -- C:\Documents and Settings\Milos\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.01.17 20:22:53 | 000,685,816 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010.01.17 19:39:21 | 000,015,497 | R--- | C] () -- C:\WINDOWS\snp2std.ini
[2010.01.17 19:39:13 | 012,033,024 | R--- | C] () -- C:\WINDOWS\System32\drivers\snp2sxp.sys
[2010.01.17 19:39:12 | 000,025,472 | R--- | C] () -- C:\WINDOWS\System32\drivers\sncamd.sys
[2010.01.17 18:46:39 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010.01.17 18:43:38 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\ATKACPI.sys
[2010.01.17 18:18:56 | 000,000,096 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2009.05.04 17:05:59 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\unrar_mpfc.dll
[2008.05.18 12:01:22 | 000,058,792 | ---- | C] () -- C:\WINDOWS\System32\wbload.dll
[2008.04.14 13:00:00 | 000,676,224 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
[2005.09.02 14:44:08 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\TosBtAcc.dll
[2005.07.22 21:30:20 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\TosCommAPI.dll
[2004.07.20 17:04:02 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\TosBtHcrpAPI.dll
[2004.01.15 14:43:28 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\TBTMonUI.dll

========== LOP Check ==========

[2010.03.12 07:16:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Easy CD-DA Extractor
[2010.06.14 20:46:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IM
[2010.06.14 20:45:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IncrediMail
[2010.01.24 18:00:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LangSoft
[2010.01.17 20:46:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Navigator
[2010.11.16 19:05:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NokiaInstallerCache
[2010.12.06 07:56:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2010.07.28 05:19:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Pinnacle
[2010.07.28 05:19:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Pinnacle Studio
[2011.01.21 15:21:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2010.01.24 19:16:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TreeCardGames
[2010.02.23 16:53:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2010.01.24 10:58:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\vsosdk
[2010.02.23 16:52:35 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2010.01.17 18:09:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Application Data\uTorrent
[2010.12.07 19:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\Acumen Business Systems Ltd
[2010.11.08 17:30:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\Broad Intelligence
[2010.03.03 18:21:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\BSplayer PRO
[2011.01.21 15:20:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\DMCache
[2010.02.20 18:14:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\IDM
[2010.12.07 19:44:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\Jpeg Resampler
[2010.04.05 08:47:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\LangSoft
[2010.04.29 13:26:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\MahJong Suite
[2010.01.17 20:46:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\Navigator
[2010.11.16 19:20:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\Nokia
[2010.11.16 19:20:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\Nokia Ovi Suite
[2010.12.06 07:58:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\PC Suite
[2011.01.20 23:09:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\PCToolsFirewallPlus
[2010.07.31 09:32:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\proDAD
[2010.09.23 06:50:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\SolSuite
[2010.01.17 18:22:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\Styler
[2010.01.31 09:24:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\SumatraPDF
[2010.02.23 16:53:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\TuneUp Software
[2011.01.20 15:49:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\uTorrent
[2011.01.16 22:35:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Milos\Application Data\Vso

========== Purity Check ==========

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.exe >

VIRY.CZ

Prosím o kontrolu logu...

Prosím o kontrolu logu...

Re: Prosím o kontrolu logu...

Re: Prosím o kontrolu logu...

Re: Prosím o kontrolu logu...

Re: Prosím o kontrolu logu...

Re: Prosím o kontrolu logu...

Re: Prosím o kontrolu logu...

Re: Prosím o kontrolu logu...

Re: Prosím o kontrolu logu...

Re: Prosím o kontrolu logu...

Re: Prosím o kontrolu logu...

Re: Prosím o kontrolu logu...

Re: Prosím o kontrolu logu...

Re: Prosím o kontrolu logu...

Re: Prosím o kontrolu logu...